kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
4,766 Commits 31 Branches 256 Tags 544 MiB
Commit Graph

4766 Commits

Author SHA1 Message Date
Kubernetes Submit Queue be717cf0d2
Merge pull request #3940 from justinsb/bump_base_images 
Automatic merge from submit-queue.

Bump all our base docker images
 2017-11-28 08:30:27 -08:00
Arto Jantunen dd64f1ed6c Include ELB hostname in certificate when using private DNS 2017-11-28 11:48:57 +02:00
Arto Jantunen 53669b8217 Make ELB somewhat mockable 2017-11-28 11:48:57 +02:00
Marcin Maciaszczyk 11f4343407
Update v1.8.0 2017-11-28 10:29:52 +01:00
Marcin Maciaszczyk aca494822e
Update addon.yaml 2017-11-28 10:28:39 +01:00
Justin Santa Barbara 5a056a3872 Bump all our base docker images 2017-11-28 02:41:03 -05:00
Rodrigo Menezes 2594d382ae Merge remote-tracking branch 'upstream/master' into additional_cidr 2017-11-27 23:30:42 -08:00
Kubernetes Submit Queue 048a3ef770
Merge pull request #3939 from itskingori/add_hpa_use_clients_flag 
Automatic merge from submit-queue.

Map horizontal-pod-autoscaler-use-rest-clients flag

Maps `--horizontal-pod-autoscaler-use-rest-clients` flag which is required for [Horizontal Pod Autoscaling][1]. See Kubernetes code in [kubernetes/kubernetes/blob/v1.7.11/cmd/kube-controller-manager/app/autoscaling.go#L36-L39][2].

Seems this is the missing piece for fulfilment of HPA pre-requisites, which are:

*  Enable the [Aggregation Layer][4] via the following kube-apiserver flags
   *  `--requestheader-client-ca-file=<path to aggregator CA cert>` (see https://github.com/kubernetes/kops/pull/3679)
   *  `--requestheader-allowed-names=aggregator` (see https://github.com/kubernetes/kops/pull/3679)
   *  `--requestheader-extra-headers-prefix=X-Remote-Extra-` (see https://github.com/kubernetes/kops/pull/3679)
   *  `--requestheader-group-headers=X-Remote-Group` (see https://github.com/kubernetes/kops/pull/3679)
   *  `--requestheader-username-headers=X-Remote-User` (see https://github.com/kubernetes/kops/pull/3679)
   *  `--proxy-client-cert-file=<path to aggregator proxy cert>` (see https://github.com/kubernetes/kops/pull/3165)
   *  `--proxy-client-key-file=<path to aggregator proxy key>` (see https://github.com/kubernetes/kops/pull/3165)
*  [Horizontal Pod Scaling][3] ... set the appropriate flags for `kube-controller-manager`:
  *   `--horizontal-pod-autoscaler-use-rest-clients` should be `true`.
  *  `--kubeconfig <path-to-kubeconfig>` (already set)

**Relevant Documentation:**

* https://v1-7.docs.kubernetes.io/docs/tasks/run-application/horizontal-pod-autoscale/
* https://v1-7.docs.kubernetes.io/docs/tasks/access-kubernetes-api/configure-aggregation-layer/

**Relevant Issues & PRs:**

* https://github.com/kubernetes/kops/pull/3679
* https://github.com/kubernetes/kops/issues/3152
* https://github.com/kubernetes/kops/issues/2691
* https://github.com/kubernetes/kops/issues/2652
* https://github.com/kubernetes/kops/pull/3165

[1]: https://v1-7.docs.kubernetes.io/docs/tasks/run-application/horizontal-pod-autoscale/
[2]: https://github.com/kubernetes/kubernetes/blob/v1.7.11/cmd/kube-controller-manager/app/autoscaling.go#L36-L39
[3]: https://v1-7.docs.kubernetes.io/docs/tasks/run-application/horizontal-pod-autoscale/
[4]: https://v1-7.docs.kubernetes.io/docs/tasks/access-kubernetes-api/configure-aggregation-layer/
 2017-11-27 22:01:42 -08:00
Kubernetes Submit Queue 967ed4acf5
Merge pull request #3928 from justinsb/kopeio_auth 
Automatic merge from submit-queue.

Update kopeio auth
 2017-11-27 15:02:12 -08:00
King'ori Maina 28ff1bfe06
Add API machinery generated code 2017-11-27 23:12:33 +02:00
Kubernetes Submit Queue fe1ab92dac
Merge pull request #3932 from justinsb/bump_alpha 
Automatic merge from submit-queue.

Bump alpha channel k8s versions
 2017-11-27 12:03:45 -08:00
King'ori Maina 2d59315b96
Map horizontal-pod-autoscaler-use-rest-clients flag 2017-11-27 21:41:27 +02:00
Kubernetes Submit Queue 6a031a2b00
Merge pull request #3930 from justinsb/put_18_image_into_alpha 
Automatic merge from submit-queue.

Put the 1.8 image into the alpha channel
 2017-11-27 11:28:49 -08:00
Kubernetes Submit Queue 2967daabb2
Merge pull request #3931 from justinsb/promote_to_stable 
Automatic merge from submit-queue.

Promote 1.5.8 and 1.6.11 to stable channel
 2017-11-27 10:29:23 -08:00
Marcin Maciaszczyk 2971a60f6f
Add Dashboard v1.8.0 deployment 2017-11-27 13:11:01 +01:00
Justin Santa Barbara f3f5e6dba0 Include roles in toolbox dump structured output 
Proves very handy when diagnosing problems.
 2017-11-26 23:37:16 -05:00
Rodrigo Menezes f908dcb3bf Check and docs 2017-11-26 20:37:16 -08:00
Justin Santa Barbara ad60069d71 SSH keys - be lazier about keystore creation 2017-11-26 23:35:58 -05:00
Justin Santa Barbara 31326059b1 Bump alpha channel k8s versions 2017-11-26 23:35:27 -05:00
Justin Santa Barbara 0112cc225e Promote 1.5.8 and 1.6.11 to stable channel 2017-11-26 23:31:40 -05:00
Justin Santa Barbara 660c45a01c Add initial docs on the kops side of authentication 2017-11-26 23:28:33 -05:00
Justin Santa Barbara 726ce3651f Put the 1.8 image into the alpha channel 2017-11-26 23:11:44 -05:00
Kubernetes Submit Queue 0a2f949fd9
Merge pull request #3929 from justinsb/add_service_extension_if_not_exists 
Automatic merge from submit-queue.

Don't add .service extension if already there
 2017-11-26 16:45:29 -08:00
Kubernetes Submit Queue e33a3ecee5
Merge pull request #3923 from justinsb/lockdown_etcd_peer_ports 
Automatic merge from submit-queue.

Block etcd peer port from nodes
 2017-11-26 16:17:13 -08:00
Kubernetes Submit Queue 8f0566d8a8
Merge pull request #3926 from justinsb/kubernetes_assets 
Automatic merge from submit-queue.

Use EnsureTask so we don't have to track directories as closely
 2017-11-26 15:43:20 -08:00
Kubernetes Submit Queue 0ade1dd2c4
Merge pull request #3822 from gambol99/dns_controller_optional 
Automatic merge from submit-queue.

DNS Controller Optional

The current implementation enforces a dns-controller is running; given the user can switch the make the kube-apiserver server Internal and then reuse the dns for the masterInternalName; this effectlively removes the need to run the service (assuming your not using it for pods, node and service dns)

- adding a disableDnsController to the ExternalDNS spec provides a toggle on the addon (name is definitely up for debate)
- the default behaviour remains, the dns-controller is always pushed as an addon
 2017-11-26 15:03:47 -08:00
Kubernetes Submit Queue 13451ad650
Merge pull request #3920 from aleerizw/fix/add_service_extension 
Automatic merge from submit-queue.

Added .service to hooks unit files

Recent versions of systemd (version 229 at least) included in Ubuntu
16.04 and Debian 9 require the systemd unit files to have a .service
extension.

Fixes #3919

Signed-off-by: Ali Rizwan <ari@hellofresh.com>
 2017-11-26 14:29:24 -08:00
Justin Santa Barbara 079464c223 Don't add .service extension if already there 2017-11-26 17:05:59 -05:00
Justin Santa Barbara d0944714f4 Update kopeio auth 2017-11-26 15:32:14 -05:00
Justin Santa Barbara b2cd5c961c Use EnsureTask so we don't have to track directories as closely 
Issue #3921
 2017-11-26 01:49:19 -05:00
Kubernetes Submit Queue b87689d844
Merge pull request #3925 from justinsb/avoid_ca_create_race 
Automatic merge from submit-queue.

Avoid generating a CA keypair on-demand
 2017-11-25 21:12:41 -08:00
Kubernetes Submit Queue 36abd6f418
Merge pull request #3922 from justinsb/bazel_fix_tests 
Automatic merge from submit-queue.

bazel: fix tests/ directory
 2017-11-25 20:41:24 -08:00
Justin Santa Barbara e3c7f03aaa Avoid generating a CA keypair on-demand 
Instead we must explicitly create it; this avoids races where we are
reading the private key and creating CA certs.

Issue #3875
 2017-11-25 23:12:55 -05:00
Justin Santa Barbara 581e954062 Block etcd peer port from nodes 
Ports 2380 & 2381 should not be exposed to nodes.

Fix #3746
 2017-11-25 16:36:46 -05:00
Justin Santa Barbara b9ced1957b bazel: fix tests/ directory 2017-11-25 16:03:27 -05:00
Rodrigo Menezes 498e3b29d7 Merge remote-tracking branch 'upstream/master' into update_aws-sdk 2017-11-24 17:13:56 -08:00
Ali Rizwan c324b01b7a Added .service to hooks unit files 
Recent versions of systemd (version 229 at least) included in Ubuntu
16.04 and Debian 9 require the systemd unit files to have a .service
extension.

Signed-off-by: Ali Rizwan <ari@hellofresh.com>
 2017-11-24 17:07:58 +01:00
Kubernetes Submit Queue 875b41627d
Merge pull request #3913 from justinsb/aws_set_sleepdelay 
Automatic merge from submit-queue.

Set SleepDelay function in AWS
 2017-11-22 17:02:56 -08:00
Justin Santa Barbara b05faa0068 Set SleepDelay function in AWS 
Works around nil SleepDelay problem: latest aws-sdk-go (in k8s 1.9 and
kops 1.8) has updated SleepDelay logic; fix is in
https://github.com/kubernetes/kubernetes/pull/55307 but that is only in
1.9.

Set the SleepDelay to work around the problem.
 2017-11-22 16:50:19 -05:00
Kubernetes Submit Queue 8eac358795
Merge pull request #3869 from chrislovecnm/calico-2.6-update 
Automatic merge from submit-queue.

Updating Calico manifests to Calico release 2.6.2

Renamed the k8s-1.8 manifest to a k8s-1.7. This is required because of config
change that occurs between k8s 1.6 and k8s 1.7. This refactor will also
be re-used when Calico Kubernetes data source support is added to kops.
Updated bootstrapchannelbuilder with the new Calico version numbers.

The diffs for the k8s-1.6 version is pretty rough, tried to make it cleaner, but nada.

FIXES: https://github.com/kubernetes/kops/issues/3866
FIXES: https://github.com/kubernetes/kops/issues/3867

Line: https://github.com/kubernetes/kops/compare/master...chrislovecnm:calico-2.6-update?expand=1#diff-891cbc61587adb202b66b7c9bc6896daR209  is why Calico would not start on k8s 1.6 - thanks @caseydavenport 

 **TODO**
Testing K8s versions

- [x] test 1.5
- [x] test 1.6
- [x] test 1.7
- [x] test 1.8

/cc @blakebarnett @itajaja
 2017-11-22 10:20:04 -08:00
Kubernetes Submit Queue ee6762dbbe
Merge pull request #3908 from KashifSaadat/canal-calico-upgrade-steps 
Automatic merge from submit-queue.

Updated 1.8 release notes to cover Canal manual upgrade steps.
 2017-11-22 09:40:34 -08:00
chrislovecnm 3067a21341 Updating Calico manifests to Calico release 2.6.2. 
Renamed the k8s-1.8 manifest to a k8s-1.7. This is required because of config
change that occurs between k8s 1.6 and k8s 1.7. This refactor will also
be re-used when Calico Kubernetes data source support is added to kops.
Updated bootstrapchannelbuilder with the new Calico version numbers.
 2017-11-22 09:45:21 -07:00
Kubernetes Submit Queue 7a4ea8829a
Merge pull request #3826 from mikesplain/add_brew_devel_docs 
Automatic merge from submit-queue.

Add homebrew devel and HEAD notes to docs.
 2017-11-22 08:30:04 -08:00
Justin Santa Barbara 1b58585c8c
Merge pull request #3892 from romana/romana-networking-update 
Version and validation updates for romana networking.
 2017-11-22 11:25:35 -05:00
Kashif Saadat 5ebde989be Updated 1.8 release notes to cover Canal manual upgrade steps. 2017-11-22 15:25:34 +00:00
Kubernetes Submit Queue be898c114a
Merge pull request #3906 from gambol99/owners 
Automatic merge from submit-queue.

Owners files
 2017-11-22 07:15:29 -08:00
Rohith fb675ac896 Owners 
- adding myself and kashifsaadat to the owners file .. proud moment :-)
 2017-11-22 12:12:14 +00:00
Kubernetes Submit Queue e5194cf08b
Merge pull request #3904 from zengchen1024/generate_codes_for_cinder_volume_tasks 
Automatic merge from submit-queue.

generate gazelle for cinder volume tasks

for issue #3886
 2017-11-22 00:25:29 -08:00
zengchen1024 769a9e9dbb update gazelle 2017-11-22 14:29:14 +08:00
Kubernetes Submit Queue cabe97230f
Merge pull request #3887 from georgebuckerfield/fix-routetable-deletion 
Automatic merge from submit-queue.

Respect the shared tag when deleting route tables

Fixes #3828.

Modifies the `buildTrackerForRouteTable` function (used by `ListRouteTables`) to set the `Shared` field of each returned route table resource, based on the presence of the `kubernetes.io/cluster/<clustername>: shared` tag. This prevents route tables with this tag from being deleted.

WIP while I add some more tests.
 2017-11-21 21:05:31 -08:00