kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
11,992 Commits 31 Branches 256 Tags 544 MiB
Commit Graph

71 Commits

Author SHA1 Message Date
Ciprian Hacman e68ee80a93 Move and rename the "distros" package 2020-08-17 07:25:43 +03:00
Peter Rifel 4d9f0128a3
Upgrade to klog2 
This splits up the kubernetes 1.19 PR to make it easier to keep up to date until we get it sorted out.
 2020-08-16 20:56:48 -05:00
John Gardiner Myers 9c01e1f44d Send bootstrap query from nodeup to kops-controller 2020-08-15 09:50:08 -07:00
John Gardiner Myers 00c60ddff6 Add server code to kops-controller 2020-08-15 09:46:30 -07:00
Kubernetes Prow Robot 0c62641dad
Merge pull request #9354 from johngmyers/refactor-certs-2 
Continue refactoring certs into nodeup
 2020-07-06 17:13:57 -07:00
Kubernetes Prow Robot 734a0eb5f3
Merge pull request #9415 from johngmyers/refactor-nodeup-2 
Continue moving InstanceGroup data to NodeupConfig
 2020-07-02 20:50:47 -07:00
Ciprian Hacman a7c8d2087c Use github.com/blang/semver/v4 2020-07-01 08:54:42 +03:00
John Gardiner Myers f4f4763dc2 Refactor more certs to be issued by nodeup 2020-06-28 23:12:13 -07:00
John Gardiner Myers 5e5f25703d Move KubeletConfig into the NodeupConfig 2020-06-28 18:51:16 -07:00
Ciprian Hacman 95aca3def5 ARM64 support - Update bazel files 2020-06-19 04:42:11 +03:00
John Gardiner Myers 8a2dfeb377 Refactor buildMasterKubeletKubeconfig 2020-06-16 21:37:56 -07:00
John Gardiner Myers 4bf8302f14 Move kube-apiserver-healthcheck to port 3990 2020-06-12 22:00:14 -07:00
John Gardiner Myers 87010c9c9b Issue kubecfg cert in nodeup 2020-06-11 23:54:56 -07:00
Justin Santa Barbara 64273a661b More nodeup golden tests 
kube-controller-manager, kube-proxy, kube-scheduler
 2020-06-07 10:39:14 -04:00
Justin Santa Barbara ce577b0518 Richer mocking of keystore in nodeup tests 2020-06-07 10:39:11 -04:00
Kubernetes Prow Robot 9e4bf1699a
Merge pull request #9216 from hakman/prepare-multi-arch 
Prepare Kops for multi-architecture support
 2020-06-04 21:35:43 -07:00
Ole Markus With eb06f2787e EtcdTLSBuilder moved to networking and renamed to CalicoBuilder 
EtcdTLSBuilder is now only used in legacy configurations of calico so renaming appropriatly
 2020-06-04 17:32:45 +02:00
Ole Markus With b62f6aa894 Move networking in nodeup to dedicated subpackage 2020-06-04 17:32:41 +02:00
Ciprian Hacman 654a0d2d8a Detect supported architecture during node setup 2020-06-03 17:23:59 +03:00
Ole Markus With 89fba09caa Remove vsphere vendor stuff and related build files 2020-05-30 13:34:39 +02:00
Kubernetes Prow Robot 2c899d859a
Merge pull request #9104 from hakman/containerd-kubenet 
Add support for Kubenet with containerd
 2020-05-21 22:20:38 -07:00
Ciprian Hacman 9d666c73bc Use components.UsesKubenet to check if Kubenet is required 2020-05-19 20:43:33 +03:00
Justin Santa Barbara 35c6056fb2 Create golden image test for nodeup kube-apiserver 
The building of the manifests for nodeup tasks can be a little opaque;
create a test to verify and expose what is happening.
 2020-05-18 06:42:16 -04:00
Justin SB 75fd939a62
kube-apiserver: healthcheck via sidecar container 
kube-apiserver doesn't expose the healthcheck via a dedicated
endpoint, instead relying on anonyomous-access being enabled.  That
has previously forced us to enable the unauthenticated endpoint on
127.0.0.1:8080.

Instead we now run a small sidecar container, which
proxies /healthz and /readyz requests (only) adding appropriate
authentication using a client certificate.

This will also enable better load balancer checks in future, as these
have previously been hampered by the custom CA certificate.

Co-authored-by: John Gardiner Myers <jgmyers@proofpoint.com>
 2020-05-07 08:06:52 -04:00
John Gardiner Myers 935d757a7c Use KOPS_RSA_PRIVATE_KEY_SIZE for more keys 2020-04-26 20:17:02 -07:00
Ole Markus With 869ab75dea Use etcd-manager for the cilium etcd cluster 2020-04-16 08:42:59 +02:00
Kubernetes Prow Robot 116ec23d47
Merge pull request #8599 from olemarkus/cilium-fix-bpffs-check 
Cilium fix bpffs check
 2020-02-22 11:14:47 -08:00
John Gardiner Myers 3e95a88717 Fix Test_KubeAPIServer_Builder to use a supported version of Kubernetes 2020-02-21 22:46:36 -08:00
Ole Markus With f2f29d92d6 Properly detect that bpffs has been mounted 2020-02-21 21:52:35 +01:00
Justin SB 0cb35638f2
Stop logging to /var/log/kops-controller.log 
Writing to a hostPath from a non-root container requires file
ownership changes, which is difficult to roll out today.  See
discussion in #8454

We were primarily using the logfile for e2e diagnostics, so we're
going to look into collecting the information via other means instead.

We also haven't yet shipped this logfile in a released version (though
we have shipped it in beta releases)
 2020-02-04 06:41:25 -05:00
Roberto Rodriguez Alcala 1298d541cc Updates based on feedback 2020-01-25 12:32:40 -08:00
Roberto Rodriguez Alcala 447b46d109 Fix for copyright and ran update-bazel.sh 2020-01-23 20:11:41 -08:00
Justin SB 1d58f16d29
Fix & test docker package versions as well as hashes 
Extend the existing "unit" test to check package versions, because
some of the docker packages now have a '5:' prefix.

Also correct the package versions that didn't have the prefix.
 2020-01-17 09:30:02 -05:00
Justin Santa Barbara fc21f4255f Replace kubernetes mount code with utils 
This will remove one of the main dependencies on the
kubernetes/kubernetes repo.
 2020-01-04 17:34:31 -05:00
Ciprian Hacman 92cd1842c6 Add support for containerd container runtime - generated 2019-12-15 21:37:57 +02:00
Peter Rifel ea106478e0
Run ./hack/update-bazel.sh 2019-12-15 09:47:57 -06:00
mmerrill3 5cf94c8ddf Implementing audit dynamic configuration (#7392) 
Signed-off-by: mmerrill3 <michael.merrill@vonage.com>
 2019-10-24 10:21:27 -04:00
Justin SB 728e582360
Fill out kops controller functionality 
k8s 1.16 requires that we move label setting away from the kubelet, to
a central controller.  kops-controller is that controller.
 2019-09-25 12:04:34 -04:00
Justin SB 810c65eb46
Copy well-known users from apiserver 
This should eliminate the dependency on k8s.io/apiserver
 2019-08-31 08:50:09 -07:00
Justin SB 17186ff7ba
Generated vendor & bazel from `make gomod` 
Automatically generated vendor & BUILD.bazel files
 2019-08-25 16:00:41 -04:00
Kubernetes Prow Robot 2178721764
Merge pull request #6236 from justinsb/fixup_ntp_install 
Move NTP and misc packages initialization to code
 2019-07-22 07:18:52 -07:00
Justin SB 10a7f9afb0
Move NTP and misc package initialization to code 
Paring down the nodeup portion of gobindata
 2019-07-19 07:34:44 -04:00
Thomas Jackson ea61fb8de0 Replace behavior for aws hostnameOverride 
If the cluster's VPC includes DHCP options the local-hostname includes
the DHCP zone instead of the private DNS name from AWS (which is what
k8s uses regardless of flags). This patch simply makes the
hostnameOverride implementation match by using the AWS api to get the
private DNS name

Related to #7172
 2019-07-17 10:30:07 -07:00
Kubernetes Prow Robot 1f98ecf8a3
Merge pull request #7124 from srikiz/UnitTestKubeProxy 
[Unit Tests] Added unit test for kube proxy builder
 2019-06-20 11:31:01 -07:00
Srikanth cdb18bd063 Update BUILD.bazel file 2019-06-10 08:25:22 -05:00
Austin Moore 67d9f5f190
Move getProxyEnvVars into a util package 2019-06-05 15:59:19 -04:00
Justin SB 76d03b3f71
Generated files: glog -> klog 2019-05-06 12:56:03 -04:00
Justin SB 31f408c978
Support etcd-manager in kops 1.12 
In 1.12 (kops & kubenetes):

* We default etcd-manager on
* We default to etcd3
* We default to full TLS for etcd (client and peer)
* We stop allowing external access to etcd
 2019-03-14 23:13:06 -04:00
Justin SB dd7533398d
Support etcd-manager v3, suitable for backporting 
Add etcd-manager v3 in a way that we can safely backport.
 2019-01-29 23:51:26 -05:00
Rohith 6c814f3e73 Changes 
- removed all the systemd unit creation and use the volume mount code from kubele (SafeFormatAndMount)
- added some documentation to highlight the feature and show how it might be used in both ebs and ephemeral storage
 2019-01-18 22:49:54 +00:00