kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
8,869 Commits 31 Branches 256 Tags 544 MiB
Commit Graph

2031 Commits

Author SHA1 Message Date
Kubernetes Prow Robot 4882a6f332
Merge pull request #7430 from rifelpet/critical-pod-annotation 
Dont set ExperimentalCriticalPodAnnotation feature gate in k8s 1.16
 2019-08-20 10:38:56 -07:00
Srikanth 704d32a87f Go Fmt code 2019-08-20 07:18:30 +05:30
Srikanth e4f4767ed9 Update documentation to remove the override flag 2019-08-19 23:46:09 +05:30
Srikanth 706c0e3777 Update model.go after rebase with master 2019-08-19 23:26:13 +05:30
Srikanth 2bfd3ff356 Update to use the latest etcdmanager image 2019-08-19 23:11:26 +05:30
Srikanth 6f71e27229 Update to etcdManager model to pass DO specific environment variables 2019-08-19 23:10:32 +05:30
Guangming Wang 129dd69f7d
ali.go: cleanup error words in messages 
Signed-off-by: Guangming Wang <guangming.wang@daocloud.io>
 2019-08-19 21:55:21 +08:00
Peter Rifel 3d8f57fa24 Dont set CriticalPodAnnotation feature gate in k8s 1.16 
The E2E tests are currently failing [0] due to this kubelet error [1]:

`F0818 22:43:57.642896    6424 server.go:179] unrecognized feature gate: ExperimentalCriticalPodAnnotation`

This feature gate was removed in Kubernetes 1.16 [2]

[0] https://testgrid.k8s.io/sig-cluster-lifecycle-kops#kops-aws-1.14
[1] https://storage.googleapis.com/kubernetes-jenkins/logs/ci-kubernetes-e2e-kops-aws-beta/1163216201782923264/artifacts/52.77.251.45/kubelet.log
[2] https://github.com/kubernetes/kubernetes/pull/80342
 2019-08-18 19:53:15 -04:00
Reilly Brogan 79e8f26e73 Add support for netExtraArgs 2019-08-16 15:13:56 -05:00
Kubernetes Prow Robot 6ea097da1f
Merge pull request #7395 from zetaab/openstack/etcd-manager 
add OpenStack etcd-manager support
 2019-08-16 08:47:00 -07:00
Kubernetes Prow Robot eeb383826f
Merge pull request #7377 from justinsb/download_nodeup_from_mirrors_also 
Support mirroring for nodeup also
 2019-08-16 08:00:29 -07:00
Jesse Haka 1adaf0ccea update etcd-manager to 3.0.20190816 2019-08-16 16:54:37 +03:00
Kubernetes Prow Robot 2d1b010071
Merge pull request #7346 from ripta/max-pd-vols 
Add maxPersistentVolumes to support the KUBE_MAX_PD_VOLS scheduler setting
 2019-08-15 22:54:32 -07:00
Jesse Haka 0b9a5fe2c9 add openstack env values for swift 2019-08-13 16:48:59 +03:00
Jesse Haka 74bf559afa open ports for etcd-manager 2019-08-13 16:48:59 +03:00
Jesse Haka 0a1d85639d add env variables 2019-08-13 16:48:59 +03:00
Jesse Haka a7fc695ce2 add OpenStack etcd-manager support 2019-08-13 16:48:53 +03:00
Justin SB 330ccfcd55
Support mirroring for nodeup also 
We weren't using mirrors for nodeup (just protokube), though the
existing bash script supports mirrors.
 2019-08-04 01:34:39 -04:00
GuyTempleton a7d30267b5
[Feature] CoreDNS: Allow for Specification of external CoreFile 
Allow users to provide entirely custom CoreFile for CoreDNS to provide improved flexibility.
 2019-08-03 16:38:14 +01:00
Kashif Saadat 2756d58dbb Don't default adding MIMEBOUNDARY headers when a mixed instances policy is set 2019-08-02 11:12:05 +01:00
Kubernetes Prow Robot 61bcc5bf43
Merge pull request #7355 from appvia/bugfix-flexvolume-dir-mount 
Set and mount the correct volume plugin dir based on OS
 2019-08-01 16:43:51 -07:00
Kubernetes Prow Robot feb1a910f4
Merge pull request #7344 from Bisnode/support-authorization-webhook 
Add mappings for Webhook authorization mode.
 2019-08-01 11:18:21 -07:00
Kashif Saadat 4514215656 Set and mount the correct volume plugin dir based on OS 2019-08-01 17:54:08 +01:00
Justin SB 62e8ebff8f
Bump etcd-manager to 3.0.20190801 
Relnotes are at https://github.com/kopeio/etcd-manager/blob/master/docs/relnotes/3.0.20190801.md

Highlights:

* etcd-manager-ctl is now available in the image, and for download from github
* etcd 3.3.13 is included
* etcd-manager will now run a compatible version of etcd if it is available (for example, etcd 3.3.13 instead of 3.3.11), to better import backups or support migration
* listen-metrics-urls can now be specified and will be passed through to etcd
* improved docs around internals
 2019-08-01 01:56:48 -04:00
Kubernetes Prow Robot c7051166cf
Merge pull request #6958 from austinmoore-/api-elb-cross-zone 
Cross-Zone Load Balancing for API ELB
 2019-07-31 19:32:13 -07:00
Anders Eknert c167a84932 Update generated files 2019-07-31 17:07:16 +02:00
Ripta Pasay a31a6b60ca Add maxPersistentVolumes to support the KUBE_MAX_PD_VOLS scheduler setting 2019-07-30 11:44:45 -07:00
Anders Eknert bc967536ca Add mappings for Webhook authorization mode. 2019-07-30 16:02:13 +02:00
Kubernetes Prow Robot 1d79cbf928
Merge pull request #7340 from justinsb/check_etcd_version 
Warn/prevent if the version of etcd is unsupported with etcd-manager
 2019-07-29 18:48:50 -07:00
Justin SB 1795d2586d
Default etcd-version to 3.3.10 for >= 1.14 
This is the current recommended etcd version for 1.14 / 1.15
 2019-07-29 18:29:05 -04:00
Justin SB 72b4563729
Warn/prevent if the version of etcd is unsupported with etcd-manager 
Should prevent the scenario where etcd-manager can't come up because of a different version.

Can be bypassed with the SkipEtcdVersionCheck feature flag.
 2019-07-29 18:28:15 -04:00
Austin Moore 4485b115f4
Default CrossZoneLoadBalancing to false if not set 2019-07-26 12:21:43 -04:00
Austin Moore d59ac283ed
Add configuration to set cross-zone load balancing on api load balancer 2019-07-26 12:21:42 -04:00
Kubernetes Prow Robot 0e27206973
Merge pull request #7290 from justinsb/rationalize_golden_output_comparison 
Rationalize golden-output comparison
 2019-07-23 00:20:55 -07:00
Kubernetes Prow Robot cdd3496c8a
Merge pull request #6229 from justinsb/gce_ipalias 
GCE: support ipalias networking mode, named "gce"
 2019-07-22 06:26:51 -07:00
Justin SB 512378b335
Rationalize golden-output comparison 
Create a single helper function: AssertMatchesFile

Also a few output files that weren't consistent.
 2019-07-21 23:08:48 -04:00
Kubernetes Prow Robot 039cee170f
Merge pull request #7221 from srikiz/DO-7148-legacyetcdSupport 
[Issue-7148] Legacyetcd support for Digital Ocean
 2019-07-19 09:55:15 -07:00
Kubernetes Prow Robot 25a3b33e59
Merge pull request #7251 from spotinst/fix-spotinst-rolling-update 
Spotinst: Rolling update always reports NeedsUpdate
 2019-07-19 07:23:12 -07:00
Justin SB e41f41f47b
Update apimachinery 2019-07-19 07:57:48 -04:00
Justin SB 4a8997a71d
GCE: support subnet deletion 2019-07-19 07:57:44 -04:00
Justin SB 62f7c26f98
Support "gce" networking mode, which uses ip aliases 2019-07-19 07:54:13 -04:00
Rodrigo Menezes e51b364d1d Allow setting Limit & Request for aws-iam-authenticator 2019-07-17 14:38:22 -07:00
Srikanth 63927250ba Initial changes to add DO models for etcd-manager 
update template

Update notes for digital ocean

Update TTL to 60 seconds and version upgrade to 0.1.15 for DO Cloud Controller Manager

Update review comments

Format go code
 2019-07-17 20:08:04 +05:30
liranp ff58f4aac9
fix(spotinst): rolling-update workaround 2019-07-16 01:08:53 +03:00
Kubernetes Prow Robot dd6b0314fc
Merge pull request #6897 from vainu-arto/set-priority-for-static-pods 
Set priority for static pods
 2019-07-12 00:41:07 -07:00
Kubernetes Prow Robot 7b415c44f6
Merge pull request #7211 from jacksontj/node_authorizer_options 
Use NodeAuthorizer config options instead of soely hard-codes
 2019-07-10 08:00:41 -07:00
Kubernetes Prow Robot 48389691bd
Merge pull request #7182 from zetaab/fix/appendadmission 
Clear append admission plugins before inserting flags to kube-apiserver
 2019-07-10 08:00:29 -07:00
Kubernetes Prow Robot 2f14693552
Merge pull request #7178 from zetaab/feature/nonlb 
Possibility to use OpenStack without lbaas (loadbalancer)
 2019-07-09 11:26:04 -07:00
Thomas Jackson 0a4b18e051 make apimachinery 2019-07-09 09:48:43 -07:00
Thomas Jackson 270a028c94 Use NodeAuthorizer config options instead of soely hard-codes 
Without this patch the timeout is 5m and the interval is 10m --
hard-coded with no mechanism to change, even though the config struct
already had a timeout option (which was completely unused)
 2019-07-09 09:48:43 -07:00
Kubernetes Prow Robot 2741e9656f
Merge pull request #7202 from jayunit100/cluster-path-debugging 
Add more debug info for when cluster path doesnt match
 2019-07-09 05:00:01 -07:00
Kashif Saadat 2b61ace49c goimports update 2019-07-03 16:43:20 +01:00
Jay V d4688c9a74 Add more debug info for when cluster path doesnt match 2019-06-30 17:52:56 -07:00
Jesse Haka 4d5ce12714 do not append admissionplugins 2019-06-27 08:26:31 +03:00
Jesse Haka ad3a14f994 move getserver floatingip to common function 2019-06-25 10:00:07 +03:00
Jesse Haka 97301ebf30 add api sg group only to masters 2019-06-24 10:15:32 +03:00
Jesse Haka ddaa0dd502 Possibility to use openstack without lbaas 2019-06-24 08:56:34 +03:00
mikesplain adaf3ad5fd First pass at instance protection 2019-06-21 14:00:37 -04:00
Kubernetes Prow Robot 9a3e1a5909
Merge pull request #7160 from camilosantana/patch-1 
add masterPublicName support in kops set cluster
 2019-06-20 18:50:36 -07:00
Camilo Santana 78d16f2467
fixes typo - s/(Spec.)m(asterPublicName)/$1M$2/ 
pull-kops-e2e-kubernetes-aws — Job failed. [Details](https://prow.k8s.io/view/gcs/kubernetes-jenkins/pr-logs/pull/kops/7160/pull-kops-e2e-kubernetes-aws/1141685394924900352/)
```
I0620 12:37:27.976] /root/.cache/bazel/_bazel_prow/ae5d1f01453377487c630b230ced7d61/sandbox/linux-sandbox/836/execroot/__main__/pkg/commands/set_cluster.go:97:16: cluster.Spec.masterPublicName undefined (type "k8s.io/kops/pkg/apis/kops".ClusterSpec has no field or method masterPublicName, but does have MasterPublicName)
```

fixes typo
 2019-06-20 13:43:46 -07:00
Kubernetes Prow Robot a8e7109129
Merge pull request #7040 from spotinst/feature-spotinst-ocean 
Spotinst: New instance group type: Ocean
 2019-06-20 12:24:10 -07:00
Kubernetes Prow Robot 96704f24cd
Merge pull request #7103 from austinmoore-/egress-proxy-for-etcd-manager 
Egress proxy for etcd manager
 2019-06-20 11:30:49 -07:00
Camilo Santana 1bff3f1841
add masterPublicName support in kops set cluster 2019-06-18 13:07:49 -07:00
Rodrigo Menezes 4771c40c27 add --kube-api-burst flag 2019-06-17 23:06:26 -07:00
Rodrigo Menezes 1b9a501a0b Allow user to set the --kube-api-qps on KubeControllerManager 2019-06-17 14:36:01 -07:00
Austin Moore de339bf72d
Add configuration to skip docker installs 2019-06-12 14:16:11 -04:00
Kubernetes Prow Robot c511f6fe4d
Merge pull request #7109 from r0fls/issue-5170 
support apiserver admission-control-config-file flag
 2019-06-11 07:14:24 -07:00
Kubernetes Prow Robot 825b0db73e
Merge pull request #7066 from rifelpet/mixed-instances-spot-price 
Add support for SpotPrice and Mixed Instance ASGs
 2019-06-11 06:30:20 -07:00
Kubernetes Prow Robot b211ee5134
Merge pull request #7122 from rifelpet/aws-vpc-cni-upgrade 
Upgrade AWS VPC CNI provider to 1.5.0
 2019-06-08 07:29:07 -07:00
Kubernetes Prow Robot 19f0da030b
Merge pull request #7050 from drekle/openstack_rolling_update 
Openstack support for rolling-update status
 2019-06-08 04:35:05 -07:00
Peter Rifel 79474ffc0b Upgrade AWS VPC CNI provider to 1.5.0 
Released a few days ago: https://github.com/aws/amazon-vpc-cni-k8s/releases/tag/v1.5.0
 2019-06-07 16:33:55 -07:00
Peter Rifel adef332fe3 Add integration test for mixed instances / launch templates 2019-06-07 14:29:34 -07:00
Peter Rifel dc3c88af9c Add support for SpotPrice and Mixed Instance ASGs 2019-06-07 14:12:17 -07:00
Raphael Deem 1b3a326d8e support apiserver admission-control-config-file flag 2019-06-06 10:17:23 -07:00
Austin Moore 00ad7316a4
Read egressProxy spec into etcdmanager 2019-06-05 15:59:19 -04:00
Kubernetes Prow Robot d4bf54cb7c
Merge pull request #7045 from drekle/openstack_delete_dynamic_floating_ip 
Openstack delete dynamic floating ip in delete cluster
 2019-06-03 06:34:21 -07:00
liranp 80020052d3
feat(spotinst): new instance group type: ocean 2019-06-03 12:38:46 +03:00
Derek Lemon (delemon) 9542e9d1d7 Removing Unused type 2019-05-31 11:18:12 -06:00
Derek Lemon (delemon) 7b433cfae7 Openstack port resources derived from network 2019-05-29 07:42:09 -06:00
Derek Lemon (delemon) 2f25db8abc Simple generation check to see if instance groups may need updated 
Ignoring replace with no spec changes

Updating replace cancellation to only not set generation, instead of not performing the update

Bazel updates

Setting generation in common clientset code

Bazel updates
 2019-05-28 12:42:13 -06:00
Jesse Haka 4cad3676a7 implement append admission controllers 2019-05-26 12:38:16 +03:00
Derek Lemon (delemon) 7c53b35c9d Delete floating IP's based on the subnet resource, to clean up dynamically added ones as well, allowing for subnet deletion 
Bazel updates

Updating deletion logic for octavia clusters
 2019-05-23 07:53:09 -06:00
Kubernetes Prow Robot fca8ccf693
Merge pull request #7008 from justinsb/recognize_vpc_not_found 
VPC cleanup: recognize the error code for concurrent VPC deletion
 2019-05-16 15:48:26 -07:00
Kubernetes Prow Robot 1725c1a436
Merge pull request #7007 from justinsb/bump_etcd_manager 
etcd-manager: update to 3.0.20190516
 2019-05-16 14:24:28 -07:00
Justin SB 49b40c9150
VPC cleanup: recognize the error code for concurrent VPC deletion 
Hit this when I was cleaning up my VPCs manually.
 2019-05-16 16:06:41 -04:00
Kubernetes Prow Robot 898f11d6f5
Merge pull request #6991 from zetaab/feature/kopsigtometadata 
add kops instancegroup tag to metadata
 2019-05-16 11:52:28 -07:00
Justin SB b29426e2b4
etcd-manager: update to 3.0.20190516 
Main fixes:

https://github.com/kopeio/etcd-manager/pull/208

https://github.com/kopeio/etcd-manager/pull/209

https://github.com/kopeio/etcd-manager/pull/210
 2019-05-16 11:18:13 -07:00
Justin SB 080febe1c5
Add shortNames and columns to InstanceGroup CRD 
This makes the appearance in `kubectl get ig` very similar to the
`kops get ig` format.
 2019-05-16 03:20:08 -07:00
Jesse Haka 3e9b768600 add kops instancegroup tag to metadata 2019-05-16 12:35:54 +03:00
Kubernetes Prow Robot f2bd5a5ef2
Merge pull request #6944 from zetaab/allow_node_exporter 
add node-exporter to allowed ports
 2019-05-14 10:35:19 -07:00
Justin SB 7b858f7cfa
etcd-manager: Update to 3.0.20190513 
In particular, we are picking up the fix for #6098.
 2019-05-13 17:59:06 -07:00
Kubernetes Prow Robot 5ad42723b0
Merge pull request #6941 from drekle/openstack_subnet_member_comparison 
Subnet Update Consistency
 2019-05-13 08:36:15 -07:00
Derek Lemon (delemon) 59fb88775d Subnet Update Consistency 
Executing gofmt
 2019-05-13 08:06:28 -06:00
Kashif Saadat 3b9305f002 Canal v3.7.2 for k8s v1.12+ 2019-05-13 14:57:42 +01:00
Jesse Haka 53834635ad add node-exporter to allowed ports 2019-05-13 13:13:28 +03:00
Justin SB 8809b5aeaf
Update to etcd-manager 3.0.20190509 
Includes the fixes for concurrent file writes
 2019-05-09 22:58:32 -04:00
Arto Jantunen 238fdaf1c1 Give etcd pods system-cluster-critical priority 
Again unlikely to matter since master nodes aren't expected to run out of
capacity, done mostly for completeness (all pods should usually have a
priority defined if the cluster is running with PodPriority enabled).
 2019-05-09 16:03:08 +03:00
Arto Jantunen 555d879cb2 Add helpers to set the built-in pod priorities 2019-05-09 16:03:08 +03:00
Kubernetes Prow Robot a8a1f7e33d
Merge pull request #6887 from justinsb/kops_apigroup 
Start CRDification: Change apigroup to kops.k8s.io
 2019-05-07 07:13:50 -07:00
Kubernetes Prow Robot a6ee3cd767
Merge pull request #6886 from rralcala/master 
Use existing SSHKeyName if no public key is created.
 2019-05-07 06:33:46 -07:00
Roberto Rodriguez Alcala c6aa23cf91 Based on the Readme, if you specify a SSHKeyName in the cluster.spec, 
you don't need to add an ssh public key, this change allows that
combination to work on aws.

Basically, if a key name is set on the spec and there's no admin key
file, the key name will be used and the key will not be managed in
terraform.
 2019-05-06 21:22:36 -07:00
Justin SB ba9a4afc43
apigroup -> kops.k8s.io: Tests & supporting changes 
Autogenerated code, docs & test changes

Also a new test for the older "kops" apiGroup, to make sure that
continues to work.
 2019-05-06 22:26:29 -04:00
Justin SB 25910da0a2
Rename kops API group to be compatible with CRDS: kops.k8s.io 
We will continue to accept the kops/v1alphaN format, but we rewrite it
(via string manipulation) to kops.k8s.io/v1alphaN.

This allows us to register the kops types as CRDs, which in turn
should enable kops server to work without API aggregation, and also
reduce our dependencies on less-stable API machinery.
 2019-05-06 22:26:29 -04:00
Justin SB 76d03b3f71
Generated files: glog -> klog 2019-05-06 12:56:03 -04:00
Justin SB 3e33ac7682
Change code from glog to klog 
We don't call klog.InitFlags yet, because that will cause a flag
redefinition error until we get everyone to stop using glog.  That
will happen when we update to k8s 1.13.
 2019-05-06 12:54:51 -04:00
Justin SB 6adc6085e8
Remove test that causes klog conflict 2019-05-06 10:08:17 -04:00
Justin SB f3efa04870
Generated apimachinery 2019-05-06 09:58:38 -04:00
Justin SB 78ebe93f9f
Update kubernetes dependencies to 1.13.5 
Notable changes:

* openapi-gen moved to k8s.io/kube-openapi/cmd/openapi-gen
* templates moved to k8s.io/kubernetes/pkg/kubectl/util/templates
 2019-05-06 09:58:37 -04:00
Ryan Bonham 54ef99ef54 Update Tests 2019-04-30 09:15:08 -05:00
Ryan Bonham 9b03f36463 Support Scale from 0 with Lauch Templates 2019-04-30 09:01:35 -05:00
Justin SB 9f213c515b
Protect against nil derefence 2019-04-29 21:05:09 -07:00
Kubernetes Prow Robot 6d3c67a866
Merge pull request #6826 from srikiz/MoreUnitTests 
[Unit Tests] Add unit tests for create_kubecfg file
 2019-04-28 10:16:31 -07:00
Srikanth e4cabe7b5f Format GO code 2019-04-26 14:26:20 -05:00
Kubernetes Prow Robot 0709200c3f
Merge pull request #6840 from rifelpet/aws-iam-authenticator-api-typo 
Fix typo in aws-iam-authenticator image field name
 2019-04-26 11:24:28 -07:00
Srikanth a8e8e766ee Update BUILD.bazel file for create kubeconfig file 2019-04-26 12:47:39 -05:00
Peter Rifel 81d81d08f2 Fix typo in aws-iam-authenticator image field name 2019-04-26 09:18:18 -07:00
Srikanth 230cfdf686 Add more unit tests for kubeconfig build 2019-04-25 01:42:12 -05:00
Srikanth 672dc61c5b Add tests for updating kube config 2019-04-24 16:19:24 -05:00
Kashif Saadat 4b40a24695 Canal manifest updates for k8s v1.12+ 2019-04-24 17:37:28 +01:00
xichengliudui c02802f36d Using const() defines constants together (part:4) 2019-04-20 05:12:51 -04:00
Justin SB de581b1b64
Switch to golang 1.11.5 
For cherry-picking to 1.13

https://github.com/kubernetes/kubernetes/blob/release-1.13/build/build-image/cross/Dockerfile
 2019-04-20 17:36:56 -04:00
Kubernetes Prow Robot 4d7df29ca5
Merge pull request #6420 from justinsb/rename_urls 
Refactor names of URLs in assets to clarify their purpose
 2019-04-19 05:25:55 -07:00
Kubernetes Prow Robot 24edaf8bf1
Merge pull request #6787 from gambol99/http2_param 
KubeAPIServer HTTP2 Stream Parameter
 2019-04-19 01:29:54 -07:00
Kubernetes Prow Robot d517e0c58e
Merge pull request #6791 from xichengliudui/update-go-const-part3 
Using const() defines constants together (part:3)
 2019-04-17 23:26:10 -07:00
Kubernetes Prow Robot ffff5dd733
Merge pull request #6789 from xichengliudui/update-go-const-part1 
Using const() defines constants together (part:1)
 2019-04-17 20:24:03 -07:00
Rohith aeb80939c6 KubeAPIServer HTTP2 Stream Parameter 
- just adding another configurable parameter as we hit issues due to pod levels
 2019-04-17 12:53:14 +01:00
Lars Lehtonen 677f19f32d pkg/model: Fix dropped error 2019-04-11 19:35:36 -07:00
xichengliudui 3cd5c71330 Using const() defines constants together (part:3) 2019-04-11 15:19:27 -04:00
xichengliudui b4ef490a0f Using const() defines constants together (part:1) 
update pull request

update pull request
 2019-04-11 14:38:46 -04:00
Lars Lehtonen 77f5935b2a pkg/model: Fix dropped error 2019-04-11 14:37:00 -04:00
Kubernetes Prow Robot b91db4f360
Merge pull request #6706 from granular-ryanbonham/apiserver_cpurequest 
Add ability to specify cpuRequest for API Server
 2019-04-10 08:04:13 -07:00
Kubernetes Prow Robot 1ff341450b
Merge pull request #6357 from sp-joseluis-ledesma/kubelet/registry_qps 
add the registry-qps kubelet flag
 2019-04-10 07:14:13 -07:00
José Luis Ledesma 0699f422ab Rename RegistryQPS to RegistryPullQPS + add RegistryBurst 2019-04-10 08:17:01 +02:00
José Luis Ledesma c4a9b2a9bb add the registry-qps kubelet flag 2019-04-10 08:14:15 +02:00
Chris Stein 54a8c81718 use dynamic s3 prefix in addAmazonVPCCNIPermissions func 2019-04-08 15:36:45 -05:00
Rodrigo Menezes d931c1ff60 defer the base64 encoding so that users get usable diffs 2019-04-07 14:31:45 -07:00
Rodrigo Menezes 869ed0e4d7 (WIP) Fix issue 6700: User Data for launch templates when using terraform. 2019-04-07 14:17:13 -07:00
Kubernetes Prow Robot 1152bcafab
Merge pull request #6730 from rifelpet/aws-iam-authenticator-image 
Allow the AWS IAM Authenticator image name to be overridden
 2019-04-06 17:42:36 -07:00
Matteo Ruina c668cda6a6 Add min-resync-period for Controller Manager 2019-04-05 23:30:53 +02:00
Peter Rifel c24b0a0918 Allow the AWS IAM Authenticator image name to be overridden 2019-04-05 09:35:30 -05:00
Ryan Bonham 415472a76e Update comment to correct reflect api server and not kube proxy. specify default in comment 2019-04-03 09:34:12 -05:00
Ryan Bonham 189ccfe919 Fix spelling error. 2019-04-02 10:50:58 -05:00
Ryan Bonham 73845e200d Fix handling of nil and set correct defaults for memory. 2019-04-02 10:38:12 -05:00
Ryan Bonham 88a2a3f11f Cleanup changes to kubedns 2019-04-01 14:04:28 -05:00
Ryan Bonham 1fe925e01f Update BUILD.bazel 2019-04-01 13:51:56 -05:00
Ryan Bonham 9e2233ec31 API Machinery Updates 2019-04-01 11:52:02 -05:00
Ryan Bonham 9d36a0ab13 Add missing dep. 2019-04-01 08:49:46 -05:00
Ryan Bonham 160450f6e1 Fix Provider 2019-04-01 08:14:58 -05:00
Ryan Bonham 2fc67b4678 Add DNS Resource Settings 2019-04-01 08:09:29 -05:00
Ryan Bonham ec418400f6 Update API for CPURequest 2019-03-29 15:06:20 -05:00
Ryan Bonham 98a56827dd Merge branch 'master' into apiserver_cpurequest 2019-03-29 14:07:30 -05:00
Ryan Bonham a75dcdda35 Add Ability to set cpu request for api server 2019-03-29 13:56:21 -05:00
Kubernetes Prow Robot 59c8dcaac3
Merge pull request #6703 from mikesplain/fix_elb_tagging 
Fix elb tagging
 2019-03-29 11:32:12 -07:00
mikesplain 14cbad9bc0 Fix tagging and remove tagging elbs 2019-03-29 13:29:11 -04:00
Charles cb579647ac remove the poorly named version 
it looks like I had the right idea renaming it but I added another
option rather than replacing. this commit removes the old one
 2019-03-29 09:07:39 -07:00
Charles e464677940 consistent naming 
changed from management to manager as it more closely ties to the
kubelet flag
 2019-03-29 08:56:06 -07:00
Charles 345e468926 Add cpu management policy config 
This adds the --cpu-manager-policy to the kubelet config
 2019-03-29 08:49:17 -07:00
Justin Santa Barbara 4999f95c26 Update etcd-manager to 1.0.20190328 
Significant changes:

* Support adoption of tls-enabled etcd databases (i.e. migration from
  legacy to etcd-manager when using https)
 2019-03-28 07:23:18 -04:00
Justin SB 7bd4a7e262
Support download protokube from mirror 2019-03-26 00:45:54 -04:00
Kubernetes Prow Robot 49ea1ad9df
Merge pull request #6646 from ryan-dyer/2048 
2048 - Add cloudLabels as tags to API ELB resource
 2019-03-25 15:16:18 -07:00
Kubernetes Prow Robot 9759edec7d
Merge pull request #6664 from justinsb/bump_etcd_manager_for_6562 
Bump etcd-manager / etcd-backup to 3.0.20190325
 2019-03-25 13:18:20 -07:00
Kubernetes Prow Robot 24b36668f8
Merge pull request #6470 from rochacon/custom-tls-cipher-suites 
Add flags for TLS Cipher suites customization for API Server, Kubelet and Controller-Manager
 2019-03-25 11:24:19 -07:00
Justin SB 29445998e7
Bump etcd-manager / etcd-backup to 3.0.20190325 
Picking up kopeio/etcd-manager#192, for #6562
 2019-03-25 13:01:50 -04:00
Justin Santa Barbara 080b2fb01f
Merge pull request #6660 from gordonbondon/flannes-0.11.0 
Updated Flannel manifest to 0.11.0
 2019-03-25 12:43:24 -04:00
Kubernetes Prow Robot d5657068f5
Merge pull request #6655 from zetaab/overridevolumeaz 
Override volume zone name
 2019-03-25 09:23:24 -07:00
Kubernetes Prow Robot 9ecabb9159
Merge pull request #6628 from AliyunContainerService/flags 
add ALI flags
 2019-03-25 09:23:09 -07:00
Artem Yarmoliuk bfae48c08d
Add IptablesResyncSeconds to flannel spec 2019-03-23 19:01:32 +02:00
Jesse Haka 8f945d31c4 Override volume zone name 2019-03-22 13:44:29 +02:00
Derek Lemon (delemon) b09bb9eb37 Openstack environment escaping 2019-03-21 15:56:57 -06:00
Rodrigo Chacon 6532ecf377 Add TLS Cipher suite configuration flags for apiserver, controller-manager and kubelet 
Signed-off-by: Rodrigo Chacon <rochacon@gmail.com>
 2019-03-20 13:40:38 -03:00
ryan-dyer fd2ed53f79 2048 - Add cloudLabels as tags to API ELB resource 2019-03-20 09:00:05 -05:00
Kubernetes Prow Robot 5d3497ade5
Merge pull request #6629 from Smirl/duplicate-api-route53 
Use EnsureTask for internal api route53 record
 2019-03-19 13:26:24 -07:00
Kubernetes Prow Robot 93988d8fdd
Merge pull request #6359 from justinsb/integration_etcd 
Enable etcd-manager / etcd3 / etcd-tls in kops 1.12
 2019-03-19 10:28:23 -07:00
Kubernetes Prow Robot 0ab385c46b
Merge pull request #6632 from zetaab/managesecgroups 
Add manage security groups for loadbalancers
 2019-03-18 18:52:20 -07:00
Kubernetes Prow Robot 08bece4085
Merge pull request #6626 from justinsb/more_flag_tests_apiserver 
Sync data-types for webhook config with upstream
 2019-03-18 18:00:21 -07:00
Rohith 5ecc256f96 - cleaning up the UseLaunchTemplate(), we need the check for the LT and 
mixed policies to be seperate as you can have a mixed instance policy
without going full LT
 2019-03-18 13:51:12 +00:00
Jesse Haka dab9c1800a add manage sec groups for loadbalancers 2019-03-18 11:27:31 +02:00
Kubernetes Prow Robot a60dc513e9
Merge pull request #6512 from gambol99/launch_templates 
Launch Template Feature Flag
 2019-03-17 22:37:09 -07:00
Justin SB 720174c678
Sync data-types for webhook config with upstream 
This is going to be in componentconfig soon, so it would be nice to
have the same types.

These flags were recently mapped in #6361 and have not yet been in a
release - it's now or never!  (Though technically it is only the
AuditWebhookBatchThrottleEnable that won't parse identically)

Also added tests!
 2019-03-17 22:13:24 -07:00
Alex Williams 834a63973d
Use EnsureTask for internal api route53 record 2019-03-16 17:43:31 +00:00
Lily e4cbd3c17c add ALI flags 2019-03-16 17:26:44 +08:00
Kubernetes Prow Robot 79c4c19680
Merge pull request #6619 from phedoreanu/set_cluster_spec_kubelet 
add support to set cluster spec.kubelet
 2019-03-15 10:39:08 -07:00
Kubernetes Prow Robot 09e5cad1cb
Merge pull request #5955 from adamyy/export_kubecfg_add_kubeconfig_option 
Add --kubeconfig flag to `kops export kubecfg`
 2019-03-15 10:38:56 -07:00
Adrian Fedoreanu e3f7fa5768
add support to set cluster spec.kubelet 
* spec.kubelet.authorizationMode
* spec.kubelet.authenticationTokenWebhook
 2019-03-15 11:04:45 +01:00
Lily dafbc17c5a add natGateways tasks for ALICloud 2019-03-15 16:39:37 +08:00
Kubernetes Prow Robot b25ff1c814
Merge pull request #6361 from mbelangerupgrade/webhook 
Added Audit Webhook config
 2019-03-14 23:32:56 -07:00
Justin SB 31f408c978
Support etcd-manager in kops 1.12 
In 1.12 (kops & kubenetes):

* We default etcd-manager on
* We default to etcd3
* We default to full TLS for etcd (client and peer)
* We stop allowing external access to etcd
 2019-03-14 23:13:06 -04:00
Kubernetes Prow Robot 908b6d1ed2
Merge pull request #6570 from gtrafimenkov/correcly-handle-crlf-in-manifest 
Correcly handle CRLF in the manifest
 2019-03-14 19:53:08 -07:00
Justin SB 9360887551
Refactor names of URLs in assets to clarify their purpose 2019-03-14 00:37:25 -04:00
Sergiu Marsavela (smarsave) ac0b62680f Omit protocols in Openstack CNI Rules 2019-03-13 18:28:15 +01:00
Kubernetes Prow Robot 4a57f8fb2d
Merge pull request #6578 from Smirl/add-service-account-key-file 
Add ServiceAccountKeyFile to KubeAPIServerConfig
 2019-03-13 08:13:39 -07:00
Kubernetes Prow Robot 181e447f09
Merge pull request #6586 from kimxogus/docker/insecure-registries 
add docker.insecureRegistries flag
 2019-03-11 18:24:37 -07:00
Kubernetes Prow Robot 288d253a4a
Merge pull request #6521 from cisco-sso/openstack_sg_hardening 
Openstack Security Group hardening
 2019-03-07 07:26:59 -08:00
Taehyun Kim b606c8fa86 add insecure-registries flag 2019-03-06 11:48:40 +09:00
Kubernetes Prow Robot c2bcefd82f
Merge pull request #6340 from mtaufen/rm-allow-privileged 
Stop setting deprecated --allow-privileged Kubelet flag in 1.14
 2019-03-05 18:48:03 -08:00
Michael Taufen 798044b720 Stop setting deprecated --allow-privileged Kubelet flag in 1.14 2019-03-04 13:28:41 -08:00
Alex Williams fa458b759f
Add ServiceAccountKeyFile to KubeAPIServerConfig 2019-03-04 16:13:23 +00:00
Gennady Trafimenkov acf9c9f016 Update bazel configuration 2019-03-03 16:11:33 +03:00
Gennady Trafimenkov 15bd566746 Correcly handle CRLF in the manifest 
kops replace/create/delete now correctly handle crlf in the manifest.

This fixes issue #6532
 2019-03-03 14:33:49 +03:00
Kashif Saadat 72882ed370 update bazel 2019-03-01 12:31:55 +00:00