kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
5,139 Commits 31 Branches 256 Tags 544 MiB
Commit Graph

371 Commits

Author SHA1 Message Date
k8s-ci-robot 4b8db1eee0
Merge pull request #4137 from thockin-tmp/gcr-vanity 
Convert registry to k8s.gcr.io
 2018-02-20 08:54:39 -08:00
Justin Santa Barbara 6e562e0742 Support updating autoscaling metrics 2018-02-20 00:53:24 -05:00
Rohith c8e4a1caf8 Kubernetes Calico TLS 
The current implementation when Etcd TLS was added does not support using calico as the configuration and client certificates are not present. This PR updates the calico manifests and adds the distribution of the client certificate
 2018-02-14 23:41:45 +00:00
Tim Hockin 79d5f793e7 Convert registry to k8s.gcr.io 2018-02-14 10:08:41 -08:00
k8s-ci-robot 8629f60d22
Merge pull request #4371 from appvia/bootstrapscript-etcdClusterSpec 
Pick up etcd version changes for a rolling update on master nodes
 2018-02-12 10:43:59 -08:00
Kashif Saadat ac25853cd5 - Add etcdClusterSpec Image & Version in bootstrap data for Master nodes 
- Reuse execWithTee fn for ETCD Command (tee & mkfifo in different path for newer image versions)
 2018-02-10 12:14:36 +00:00
Shane Starcher b1fdb35118 fixing ecr policy test 2018-02-08 11:12:51 -05:00
Shane Starcher ffc92d4da3 updating the test 2018-02-08 10:52:07 -05:00
Shane Starcher fc022db0cf master node requires DescribeRegions when using a bucket from another account 2018-02-08 08:15:41 -05:00
k8s-ci-robot 4e284e9966
Merge pull request #4357 from zhangxiaoyu-zidif/fix-check-kube-version 
modify check require-kubeconfig kube version
 2018-02-02 07:30:07 -08:00
Caleb Gilmour 1e74216b94 Update route-related IAM permissions for Romana 2018-02-02 00:37:46 +00:00
zhangxiaoyu-zidif 30b10cb1c8 modify check require-kubeconfig 2018-01-30 17:53:16 +08:00
k8s-ci-robot f9748b7ebf
Merge pull request #4270 from int128/root-volume-type 
Fix rootVolumeType accepts all volume types
 2018-01-26 11:36:35 -08:00
k8s-ci-robot cbf16fd6e2
Merge pull request #4245 from ottoyiu/etcd-override 
Allow image override for etcd
 2018-01-26 10:11:33 -08:00
Johannes Würbach 02855fc13f
Enable metrics for AutoScalingGroups 
Those metrics simplify monitoring the created ASGs and are free [0].

Enable them by default.

[0] https://aws.amazon.com/about-aws/whats-new/2016/08/free-auto-scaling-group-metrics-with-graphs/
 2018-01-25 20:06:10 +01:00
k8s-ci-robot d2bb0ba233
Merge pull request #4317 from justinsb/ensure_gce_disk_name_does_not_start_with_number 
Ensure GCE disk name does not start with a number
 2018-01-24 12:02:33 -08:00
k8s-ci-robot e190741cc7
Merge pull request #4320 from mikn/iam_region_fix 
Fix ASG scaling by adding in ec2:DescribeRegions permission to the nodes IAM role
 2018-01-23 17:22:30 -08:00
k8s-ci-robot b68ff3893f
Merge pull request #4308 from justinsb/stop_specifying_require_kubeconfig 
Don't specify require-kubeconfig from 1.10
 2018-01-23 15:44:01 -08:00
Mikael Knutsson 1dbd435019 Fix ASG scaling by adding in ec2:DescribeRegions permission 2018-01-22 17:11:49 +08:00
Justin Santa Barbara ec4a916f62 Ensure GCE disk name does not start with a number 
As this could not have worked before, we don't have to worry about
compatability with existing users.
 2018-01-22 00:24:16 -05:00
Justin Santa Barbara 4dccf6d56d Don't specify require-kubeconfig from 1.10 
Should fix https://github.com/kubernetes/kubernetes/pull/58367
 2018-01-20 17:57:58 -05:00
Blake e37be9a88c Update list of AdmissionControllers for k8s 1.9 2018-01-18 13:40:23 -08:00
Hidetake Iwata d97e0e6205 Fix rootVolumeType accepts all volume types #4256 2018-01-14 17:57:35 +09:00
Otto Yiu 2b12b59d75 add ability to override etcd image and update apimachinery generated files from EtcdClusterSpec changes 2018-01-10 13:39:07 -08:00
Kashif Saadat 5850b434b4 Add SubnetType Tag to Subnets 2018-01-08 10:53:58 +00:00
k8s-ci-robot 2f3f0548c2
Merge pull request #4154 from chrislovecnm/missed-lifecycle-elb 
adding missed lifecycles in elb code
 2018-01-05 12:14:12 -08:00
Justin Santa Barbara ec8db8b78c Initial implementation of bundle command 
The bundle command will support enrollment of a machine via SSH.
 2018-01-04 18:55:28 -05:00
chrislovecnm 88baba38de fixing security lifecycle for additional security groups 2017-12-30 09:00:11 -07:00
chrislovecnm 4dd3bb1dea Updating bazel BUILD files with new go_rules version 2017-12-29 15:03:14 -07:00
chrislovecnm 9c2f6cc890 adding missed lifecycles in elb code 2017-12-27 16:19:34 -07:00
Albert c52472cfa8 Add support for cn-northwest-1. 2017-12-27 15:37:09 +08:00
Justin Santa Barbara bf24a6443c Avoid ListSecrets call in nodeup 
This helps up with GCE permissions, but also helps us get rid of auth
tokens.
 2017-12-19 11:45:04 -05:00
Kubernetes Submit Queue 15c7d61dfb
Merge pull request #3997 from aledbf/amazon-vpc-cni 
Automatic merge from submit-queue.

Add support for Amazon VPC CNI plugin

TODO:
- [x] IAM perms so that the CNI provider only has perms for the nodes in the cluster
- [x] Cleanup of security groups
- [ ] Replace image aledbf/k8s-ec2-srcdst:v0.1.0-5 with the official after https://github.com/ottoyiu/k8s-ec2-srcdst/pull/5 and https://github.com/ottoyiu/k8s-ec2-srcdst/pull/6
 2017-12-17 21:41:13 -08:00
Kubernetes Submit Queue dd49d69399
Merge pull request #3254 from chrislovecnm/file-assets 
Automatic merge from submit-queue.

work on using files assets

Basic MVP for file assests.

- using file assest builder
- able to upload files
- using URL structs instead of strings everywhere
 2017-12-17 16:10:23 -08:00
chrislovecnm 7057aaf1bb Enabling the file assets 
File assets and the SHA files are uploaded to the new location. Files
when are users uses s3 are upload public read only. The copyfile task
uses only the existing SHA value.

This PR include major refactoring of the use of URLs.  Strings are no
longer categnated, but converted into a URL struct and path.Join is
utlilized.

A new values.go file is included so that we can start refactoring more
code out of the "fi" package.

A
 2017-12-17 15:26:57 -07:00
Manuel de Brito Fontes 2e05dd17aa Add support for Amazon VPC CNI plugin 2017-12-17 18:08:24 -03:00
Eric Hole 59bc52a05a Adds permissions for ELB and NLB req'd by 1.9 2017-12-17 13:03:54 -08:00
Kubernetes Submit Queue bea129142a
Merge pull request #4051 from robinpercy/autoscaler-perms 
Automatic merge from submit-queue.

Adding DescribeTags to masters

/fixes #2681
 2017-12-14 09:25:42 -08:00
Kubernetes Submit Queue d533714aa8
Merge pull request #4036 from almariah/feature-api-elb-security-groups 
Automatic merge from submit-queue.

Allow additional SGs to be added to API loadbalancer

Allow adding precreated additional security groups to the API loadbalancer using cluster spec:
```yaml
spec:
  api:
    loadBalancer:
      type: Public
      additionalSecurityGroups:
      - sg-exampleid3
      - sg-exampleid4
```

- [x] Adding additionalSecurityGroups cluster spec
- [x] Adding validation for repeated security groups
- [x] Adding validation for API loadbalancer security groups
- [x] Integration test for API loadbalancer and its security groups
- [x] Update API docs and cluster.spec docs
 2017-12-14 02:25:40 -08:00
Kubernetes Submit Queue ac7ae3fd58
Merge pull request #3809 from rdrgmnzs/hostnameOverride_use_hostname 
Automatic merge from submit-queue.

Let a user set a hostnameOverride when the cloud provider is aws.

Let a user use the hostname or set a hostnameOverride when the cloud provider is aws. This would allow for a more descriptive name to be used. The name of the hosts when using @hostname can be set by using a hook or some other method.
 2017-12-13 17:46:21 -08:00
Robin Percy 6a2ded4681 Adding DescribeTags to masters 2017-12-13 11:48:24 -08:00
Abdullah Almariah 1dbc6064a5 Allow additional SGs to be added to API loadbalancer 2017-12-11 15:24:08 +01:00
Kubernetes Submit Queue 23319a0974
Merge pull request #3941 from vainu-arto/private_dns_cert_fix 
Automatic merge from submit-queue.

When using private DNS add ELB name to the api certificate

This fixes issue #2032 by using the gossip paths with private dns as well:

* When creating the api server certificate, include the ELB hostname
* When generating kubeconfig, use the ELB hostname as the api server name
 2017-12-04 06:01:25 -08:00
Kubernetes Submit Queue 26d931eab1
Merge pull request #3976 from aledbf/missing-elb-permission 
Automatic merge from submit-queue.

Add missing permissions for NLB creation

Without this permissions is not possible to create a network load balancer (alpha in k8s >= 1.9)
 2017-12-03 19:03:42 -08:00
Justin Santa Barbara 0872cb74d7 Allow GCE network to be reconfigured 2017-12-02 02:43:21 -05:00
Manuel de Brito Fontes 683799c9ab Add missing permissions for NLB creation 2017-12-01 08:56:55 -03:00
Arto Jantunen dd64f1ed6c Include ELB hostname in certificate when using private DNS 2017-11-28 11:48:57 +02:00
Justin Santa Barbara 581e954062 Block etcd peer port from nodes 
Ports 2380 & 2381 should not be exposed to nodes.

Fix #3746
 2017-11-25 16:36:46 -05:00
zengchen1024 769a9e9dbb update gazelle 2017-11-22 14:29:14 +08:00
zengchen1024 0949d597b7 build volume task 2017-11-20 11:52:19 +08:00