kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
10,182 Commits 31 Branches 256 Tags 544 MiB
Commit Graph

178 Commits

Author SHA1 Message Date
Justin Santa Barbara fd70778ccf Fix tests that crossed during PR merges 2018-07-19 22:07:02 -04:00
Justin Santa Barbara 630ea429ae
Merge pull request #4677 from usabilla/external-load-balancers 
Add the ability to specify external loadbalancers for instancegroups
 2018-07-19 21:54:00 -04:00
Justin Santa Barbara c5c2bd1acb Don't repeatedly download nodeup 
Only delete if the file doesn't match the hash.

Should help with retry issues / bandwidth
 2018-07-19 12:09:13 -04:00
Christian Kampka 978f66266c Generate locals for terraform target 2018-07-13 22:28:27 +02:00
Gijs Kunze 8256c3cc73 Fixed integration tests after rebasing 2018-06-29 12:42:06 +02:00
Gijs Kunze 2c5edfe992 Added integration test for external load balancers 2018-06-29 11:39:21 +02:00
Justin Santa Barbara e2debd99a6 Update expected TF output for latest master 2018-06-11 11:12:23 -04:00
Justin Santa Barbara 93b5e24801
Merge pull request #5030 from chrissnell/export-addl-tf-outputs 
Export outputs to aid with VPC peering in Terraform
 2018-06-11 11:11:52 -04:00
k8s-ci-robot 1b29b54d5b
Merge pull request #4171 from rifelpet/rifelpet_iam 
Add support for external IAM Instance Profiles
 2018-06-10 14:54:00 -07:00
k8s-ci-robot a57a6de4a8
Merge pull request #5139 from justinsb/fix_subnet_egress_indexing 
Fix issue where we assumed that private zone were in order
 2018-06-09 09:27:01 -07:00
Peter Rifel 5f0b63100d Add support for using existing instance profiles 2018-06-08 10:33:09 -07:00
Chris Snell 78b81dd172
Merge branch 'master' into export-addl-tf-outputs 2018-06-08 12:22:43 -05:00
Justin Santa Barbara ef5936d8b5 Support overlay2 in docker 
We also have to stop passing the flag on ContainerOS, because it's set
in /etc/docker/default.json and it's now an error to pass the flag.

That in turn means we move those options to code, which are the last of
those legacy config options.  (We still have a few tasks declaratively
defined though)
 2018-06-07 17:11:11 -04:00
Rodrigo Menezes 4a131f2a50 Implement AdditionalCIDR configuration on non-shared VPCs 2018-06-05 01:12:06 -07:00
Justin Santa Barbara e24aa79aa9 Updated terraform expected test output 2018-06-04 10:52:08 -07:00
k8s-ci-robot 6741158c97
Merge pull request #5056 from povilasv/gce-ssh 
Add public ssh keys for GCE
 2018-06-03 10:59:53 -07:00
Justin Santa Barbara bc79f0a69b tests: failing test when multiple egress 
Also requires that the subnets be out of order, which is likely why we
didn't hit it in practice.
 2018-05-10 13:28:05 -04:00
k8s-ci-robot 827357ef0a
Merge pull request #4958 from appvia/iam-remove-sids 
Remove custom Statement IDs from IAM Policy Statements
 2018-05-09 18:37:54 -07:00
Povilas Versockas 8bfa93c304 Add public ssh keys for GCE 2018-04-21 20:15:29 +03:00
Justin Santa Barbara e158f84e9f Set AWS_REGION into bootstrapscript 
Fix #4451
 2018-04-12 17:39:24 -04:00
Kashif Saadat bf30b2559f Update AWS IAM Policy tests following Statement ID removal 2018-04-10 15:33:51 +01:00
andrewsykim b480898af7 digitalocean: add protokube support 2018-04-01 21:47:31 -04:00
Justin Santa Barbara 51cc74c783 lifecycle tests: check no legacy tags on shared resources 2018-03-26 00:20:07 -04:00
k8s-ci-robot 5cda02ca2b
Merge pull request #4695 from vendrov/instnace_monitroing_support 
Add support for instance monitoring
 2018-03-25 14:17:01 -07:00
Justin Santa Barbara a148c67cad ElasticIP tags for cloudformation & terraform 
We previously weren't populating the terraform configuration with these
tags.
 2018-03-25 15:52:50 -04:00
k8s-ci-robot 63225eb674
Merge pull request #4784 from justinsb/always_tag_volumes 
Make sure volumes are tagged
 2018-03-24 23:32:00 -07:00
Justin Santa Barbara 0ce7dbf4bd Update tests for new volume tags 2018-03-25 00:08:24 -04:00
Justin Santa Barbara 0e22bf4ab5 Update tests for new security group tags 2018-03-24 22:19:59 -04:00
devops d734f35126 Add support for instance monitoring 
Add API backward comptability

Add api generated files

documenting detailed-monitoring

instance-group json typo

Update test expected result
to support enable_monitroing

Add instance-monitroing support to CF

Improve doc, test and rename InstanceMonitoring

Rename instnace-monitoring to fit the YAML kops form

typo detailedInstanceMonitoring
 2018-03-21 23:06:38 +02:00
Justin Santa Barbara 6ff56e2f05 Fix shared network objects 
RouteTables should be created (and owned) only for non-shared subnets.
 2018-03-18 17:09:30 -04:00
Justin Santa Barbara 650bd98ea2 Update integration tests with new tags 2018-03-15 20:11:54 -04:00
Justin Santa Barbara 681538831f Use newer version of k8s in shared tests 
This enables the non-legacy shared tags.
 2018-03-15 20:11:54 -04:00
Gijs Kunze d4b8806b6f Fix integration test 2018-03-14 13:33:16 +01:00
Justin Santa Barbara 5d36f9e37d Update kops version in tests 
We need to satisfy the new minimum supported version.
 2018-03-12 02:17:49 -04:00
Mike Splain cd0f5b5b3f Update tests 2018-03-08 13:26:34 -05:00
chrislovecnm 5fef961439 Fixing integration tests 2018-02-28 11:47:20 -07:00
k8s-ci-robot 0ff7d4de99
Merge pull request #4452 from duboisf/support-bastion-user-data 
Add support for bastion aws user-data
 2018-02-28 03:54:45 -08:00
k8s-ci-robot aa6e801e18
Merge pull request #3829 from mikesplain/suspendAZRebalance 
Add Instance Group Suspend Processes
 2018-02-25 22:20:52 -08:00
chrislovecnm 6e32329fb0 updating integration tests 2018-02-23 14:02:50 -07:00
k8s-ci-robot 4d4f86bfba
Merge pull request #4494 from justinsb/gcr_alias_only_for_1_10 
Use k8s.gcr.io alias only for 1.10
 2018-02-23 07:01:44 -08:00
Justin Santa Barbara e4fafa6065 Use legacy image registry gcr.io/google_containers for <= 1.9 
The k8s.gcr.io prefix is an alias, but for CI builds we run from a
docker load, and we only double-tag from 1.10 onwards.  For versions
prior to 1.10, remap k8s.gcr.io to the old name.  This also means that
we won't start using the aliased names on existing clusters, which could
otherwise be surprising to users.
 2018-02-22 21:42:33 -08:00
Fernando Battistella 1fb4de5b12 fixes cloudformation tests for #4499 2018-02-22 16:30:15 -05:00
Justin Santa Barbara dde7600dae Initial support for standalone etcd-manager backups 
The etcd-manager will (ideally) take over etcd management.  To provide a
nice migration path, and because we want etcd backups, we're creating a
standalone image that just backs up etcd in the etcd-manager format.

This isn't really ready for actual usage, but should be harmless because
it runs as a sidecar container.
 2018-02-20 20:06:08 -05:00
k8s-ci-robot 4b8db1eee0
Merge pull request #4137 from thockin-tmp/gcr-vanity 
Convert registry to k8s.gcr.io
 2018-02-20 08:54:39 -08:00
Mike Splain fdc2695fe1 Add suspendProcesses to IGs 2018-02-20 09:30:18 -05:00
Justin Santa Barbara 6e562e0742 Support updating autoscaling metrics 2018-02-20 00:53:24 -05:00
Fred Dubois 6b38b2c3a6
Add support for bastion aws user-data 
Fixes #4444
 2018-02-19 08:52:10 -05:00
Tim Hockin 79d5f793e7 Convert registry to k8s.gcr.io 2018-02-14 10:08:41 -08:00
Kashif Saadat ac25853cd5 - Add etcdClusterSpec Image & Version in bootstrap data for Master nodes 
- Reuse execWithTee fn for ETCD Command (tee & mkfifo in different path for newer image versions)
 2018-02-10 12:14:36 +00:00
Johannes Würbach 02855fc13f
Enable metrics for AutoScalingGroups 
Those metrics simplify monitoring the created ASGs and are free [0].

Enable them by default.

[0] https://aws.amazon.com/about-aws/whats-new/2016/08/free-auto-scaling-group-metrics-with-graphs/
 2018-01-25 20:06:10 +01:00
k8s-ci-robot d2bb0ba233
Merge pull request #4317 from justinsb/ensure_gce_disk_name_does_not_start_with_number 
Ensure GCE disk name does not start with a number
 2018-01-24 12:02:33 -08:00
Mikael Knutsson e6ebf365d6 Fix cloudformation integration tests 2018-01-22 17:52:29 +08:00
Justin Santa Barbara ec4a916f62 Ensure GCE disk name does not start with a number 
As this could not have worked before, we don't have to worry about
compatability with existing users.
 2018-01-22 00:24:16 -05:00
Kashif Saadat 5850b434b4 Add SubnetType Tag to Subnets 2018-01-08 10:53:58 +00:00
chrislovecnm 7057aaf1bb Enabling the file assets 
File assets and the SHA files are uploaded to the new location. Files
when are users uses s3 are upload public read only. The copyfile task
uses only the existing SHA value.

This PR include major refactoring of the use of URLs.  Strings are no
longer categnated, but converted into a URL struct and path.Join is
utlilized.

A new values.go file is included so that we can start refactoring more
code out of the "fi" package.

A
 2017-12-17 15:26:57 -07:00
Kubernetes Submit Queue bea129142a
Merge pull request #4051 from robinpercy/autoscaler-perms 
Automatic merge from submit-queue.

Adding DescribeTags to masters

/fixes #2681
 2017-12-14 09:25:42 -08:00
Kubernetes Submit Queue d533714aa8
Merge pull request #4036 from almariah/feature-api-elb-security-groups 
Automatic merge from submit-queue.

Allow additional SGs to be added to API loadbalancer

Allow adding precreated additional security groups to the API loadbalancer using cluster spec:
```yaml
spec:
  api:
    loadBalancer:
      type: Public
      additionalSecurityGroups:
      - sg-exampleid3
      - sg-exampleid4
```

- [x] Adding additionalSecurityGroups cluster spec
- [x] Adding validation for repeated security groups
- [x] Adding validation for API loadbalancer security groups
- [x] Integration test for API loadbalancer and its security groups
- [x] Update API docs and cluster.spec docs
 2017-12-14 02:25:40 -08:00
Robin Percy 6a2ded4681 Adding DescribeTags to masters 2017-12-13 11:48:24 -08:00
Abdullah Almariah 22194c982d Update kubernetes.tf for API loadbalancer 2017-12-13 01:29:16 +01:00
Abdullah Almariah 16ed8982e6 update_cluster complex integration test 2017-12-13 00:31:59 +01:00
Peter Rifel 358e2e222c Create mock igw in integration tests 2017-12-07 16:38:06 -08:00
Justin Santa Barbara 581e954062 Block etcd peer port from nodes 
Ports 2380 & 2381 should not be exposed to nodes.

Fix #3746
 2017-11-25 16:36:46 -05:00
Kashif Saadat f0c3ed8965 Include encryptionConfig setting within userdata for masters. 2017-11-16 15:58:59 +00:00
Rodrigo Menezes ef24cec62b Fixing naming convention and adding running API machinery. 2017-11-09 14:30:48 -08:00
Rodrigo Menezes 1fe56a1603 Move user-data to IG spec 2017-11-06 23:25:37 -08:00
Rodrigo Menezes 58faa71d89 Merge remote-tracking branch 'origin/master' into extra_user-data 2017-10-30 20:44:00 -07:00
chrislovecnm 0dc7a6e671 network and security tests are working 2017-10-26 13:17:34 -06:00
chrislovecnm dc338c4829 Refactoring phases to work in sequence properly 2017-10-26 13:17:34 -06:00
chrislovecnm 384c74d66c Refactoring IAM phase to Security Phase 2017-10-26 12:28:50 -06:00
Rodrigo Menezes d803480485 Merge remote-tracking branch 'upstream/master' into extra_user-data 2017-10-24 12:52:19 -07:00
Kashif Saadat 5bfb22ac92 Make the IAM ECR Permissions optional, can be specified within the Cluster Spec. 2017-10-24 09:20:17 +01:00
Eric Hole 239199caed Updates to test files 2017-10-22 11:47:54 -07:00
Rodrigo Menezes 75aa120f43 Merge remote-tracking branch 'upstream/master' into extra_user-data 2017-10-15 17:17:12 -07:00
Rodrigo Menezes e77cda1af1 Allow passing in extra user-data to cloud-init 2017-10-15 17:10:03 -07:00
chrislovecnm eeafe6467c Integration tests for phases - iam works - others are WIP 2017-10-12 14:13:17 -06:00
Justin Santa Barbara d71bd09a6c GCE: Limit length of InstanceTemplate 
We explicitly set a separate prefix for the names, and we ensure it is
not too long
 2017-10-10 09:48:38 -04:00
chrislovecnm 3e09c2e2fd updating kops version so that we do not get warnings, fixing cf tests 2017-10-05 20:15:48 -06:00
Justin Santa Barbara 3ab5264ee4 Fix update cluster integration test for bazel 
Bazel doesn't like overlapping file paths; this is much cleaner anyway.
 2017-10-03 20:51:00 -04:00