kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
18,698 Commits 31 Branches 256 Tags 544 MiB
Commit Graph

1805 Commits

Author SHA1 Message Date
Ciprian Hacman 7c7350d77c Add validation that prevents using dedicated API servers for clusters without DNS 2022-11-04 20:59:27 +02:00
Ciprian Hacman edb44610f7 aws: Create cluster without DNS or Gossip 2022-11-02 12:54:27 +02:00
Ciprian Hacman c9d1eb9761 hetzner: Use kops-controller for node bootstrap 2022-11-02 12:43:25 +02:00
Kubernetes Prow Robot 2c4808c5bd
Merge pull request #14440 from hakman/hetzner_no-dns_master 
hetzner: Create cluster without DNS or Gossip
 2022-11-02 02:02:47 -07:00
Ciprian Hacman 312d9b7ffd Address feedback 2022-11-01 13:29:23 +02:00
Kubernetes Prow Robot 3e7386f06e
Merge pull request #14443 from johngmyers/gce-config 
Move GCE project under CloudProvider in v1alpha3 API
 2022-11-01 03:46:45 -07:00
John Gardiner Myers 25b7dc21fa Create NLB instead of CLB for bastion 2022-10-29 17:00:00 -07:00
Ciprian Hacman 4e5ded6dc3 hetzner: Create cluster without DNS or Gossip 2022-10-27 11:29:37 +03:00
John Gardiner Myers 87dbab9062 Remove dead code 2022-10-22 22:05:18 -07:00
John Gardiner Myers 4b95aec920 Move GCE project under CloudProvider in v1alpha3 API 2022-10-21 15:59:20 -07:00
Ciprian Hacman dc98c74428 Move Gossip check to cluster struct 2022-10-21 09:48:07 +03:00
Thomas Colomb e5ddd5b0c3 cluster-autoscaler : Add scaleDownUnneededTime and scaleDownUnreadyTime 2022-10-04 18:57:21 +02:00
Ciprian Hacman 85026145a1 Always infer gossip DNS from cluster name 2022-10-02 12:54:37 +03:00
Ole Markus With 8ff240fb09 Add docs to kubelet and masterkubelet making it explicit control plane does not use spec.kubelet 2022-09-29 10:49:24 +02:00
Leïla MARABESE 01d480de8b added scaleway to v1alpha3 2022-09-26 13:55:44 +02:00
Leïla MARABESE b562cffd31 added scw env vars to update-expected.sh 2022-09-26 13:55:08 +02:00
Leïla MARABESE 9654cbd1d5 nodeup is operational 2022-09-26 13:55:08 +02:00
Leïla MARABESE 0fa996890d featureflag and env vars for nodeup ready for testing 2022-09-26 13:55:08 +02:00
Kubernetes Prow Robot aae66ac6e1
Merge pull request #14323 from yurrriq/update-nth-docs 
Add more details to the NTH documentation
 2022-09-24 00:56:03 -07:00
Ciprian Hacman ff40d18a7d Avoid spurious changes with NLB due to access log config 2022-09-23 20:57:57 +03:00
Eric Bailey 44d610e38d Add more details to the NTH documentation 
When trying to enable Prometheus metrics for NTH, I naively set
nodeTerminationHandler.enablePrometheusMetrics=true.

Add prometheusEnable to the docs to try to prevent such mistakes in the
future. Also add enableRebalanceMonitoring for good measure, and a couple
missing defaults to the struct field docstrings.
 2022-09-23 12:16:17 -05:00
Kubernetes Prow Robot d2f8b98f94
Merge pull request #14309 from hakman/hetzner_ccm_config 
Hetzner: Generate CCM args from external CCM config
 2022-09-21 00:36:53 -07:00
Ciprian Hacman d8b92aafae hetzner: Generate CCM args from external CCM config 2022-09-21 08:17:32 +03:00
Ole Markus With 74afb7aed0 Remove checks for k8s < 1.21 2022-09-19 19:12:53 +02:00
Kubernetes Prow Robot d8ce157d81
Merge pull request #14294 from hakman/hetzner_network_id 
Add support for using an existing network for Hetzner
 2022-09-18 03:52:28 -07:00
Ciprian Hacman c783aa357d Add support for using an existing network for Hetzner 2022-09-18 12:35:23 +03:00
Ole Markus With e5d33401dc Remove k8s GTE 1.20 checks as it is always true 2022-09-17 20:17:23 +02:00
Ole Markus With 36bd9e6ff1 kOps managed OIDC provider is no longer needed for IRSA 
It's assumed users will manage the OIDC provider themselves in that case
 2022-09-09 21:12:53 +02:00
Daniel Franca cdd0013b1f
Add support to --cordon-node-before-terminating on the cluster autoscaler addon (CordonNodeBeforeTerminating) 2022-09-06 17:03:24 +02:00
Ole Markus With 3518182e44 Add support for cert-manager dns-01 challenges 2022-09-04 08:19:22 +02:00
Kubernetes Prow Robot 9faeb5b8a9
Merge pull request #14203 from olemarkus/dcgm 
Add support for installing dcgm exporter
 2022-09-02 09:22:05 -07:00
Ciprian Hacman 9fa7cf6741 Show the reason for which an AWS image is invalid 2022-08-31 08:26:23 +03:00
Ole Markus With 98cd242673 Add support for installing dcgm exporter 2022-08-30 14:54:13 +02:00
Ole Markus With 79a56643be Bump nvidia driver to 515 2022-08-25 17:17:44 +02:00
Kubernetes Prow Robot e23b852aa7
Merge pull request #14114 from olemarkus/merge-kubelet-earlier 
Merge kubeletConfigs earlier
 2022-08-25 00:36:08 -07:00
Kubernetes Prow Robot fa377131b2
Merge pull request #14177 from olemarkus/bump-nth-125 
Bump node termination handler to 1.17.0
 2022-08-24 19:12:05 -07:00
Ole Markus With 0cd110d723 Bump node termination handler to 1.17.1 2022-08-24 21:52:52 +02:00
torredil 230ff7eb57 Allow self-managed aws-ebs-csi-driver 
Signed-off-by: torredil <torredil@amazon.com>
 2022-08-24 18:40:27 +00:00
Ole Markus With d471845dce Move merging of kubelet configs to populate instance groups so we have only one place to fetch them 
The kubelet config can be configured in a number of places. Merge them earlier so we only need to check the config in the IG kubeletConfig
 2022-08-20 15:35:15 +02:00
Ole Markus With dd578430e8 Create a better image validation test 2022-08-20 07:02:34 +02:00
Ole Markus With 29bbfeff70 Bump karpenter to 0.15 and enable consolidation 2022-08-18 20:46:25 +02:00
Ciprian Hacman 11a0f64cd8 Add option to configure runc version for containerd 2022-08-04 09:48:46 +03:00
justinsb e4d8dff835 kube-scheduler: MVP configuration validation 
We check that users haven't specified the kubeconfig file path, as
this file is created / managed by kOps.  We don't try to reuse the
upstream configuration validation, as this allows the user to specify
a partial configuration, and this means that we don't have to pull in
the upstream libraries.

We could in future accept the "correct" value or just treat providing
a value as a signal that kOps should not manage the file; for now we
are starting with the most restrictive configuration, as we can then
relax it in future if needed.
 2022-08-03 09:51:16 -04:00
justinsb 9bb1d3e114 Configuration file for kube-scheduler 
We generate a kube-scheduler configuration file in the kops CLI, and
nodeup will use it if provided (instead of generating one).

We put the configuration file into the fileAssets.

Users can provide a kube-scheduler configuration in additional
objects, and this will be used as the base configuration (we add the
kubeconfig path).

Issue #13352

Co-authored-by: Ciprian Hacman <ciprian@hakman.dev>
 2022-08-03 09:51:05 -04:00
Kubernetes Prow Robot dba1e5d594
Merge pull request #14017 from infonova/add-occm-networking-config-options 
Allow configuring OpenStack CCM networking options
 2022-07-31 11:06:28 -07:00
Ole Markus With 27306943d9 Do not allow PodSecurityPolicy using K8s 1.25 2022-07-28 09:36:35 +02:00
ederst 8b9521b225 Allow configuring OpenStack CCM networking options 2022-07-21 22:44:37 +02:00
Kubernetes Prow Robot 02433a6785
Merge pull request #13946 from jonasasx/feature/gce_spot 
Adding GCE SPOT support
 2022-07-16 14:06:53 -07:00
Ciprian Hacman a76fef1b2d Add option to set number of replicas for pod-identity-webhook 2022-07-16 07:23:54 +03:00
Ivan Volynkin 329c60cc62 Adding GCE SPOT support 2022-07-14 20:19:50 +03:00
Ciprian Hacman 19ca0861a1 Add option to set etcd-manager backup interval 2022-07-14 09:58:19 +03:00
Nicolas Sterchele 73b6ed4150
aws: introduce maximum instance lifetime in cluster 
The maximum instance lifetime is an AWS only feature and specifies the
maximum amount of time (in seconds) that an instance can be in service
before it is terminated and replaced.
A common use case might be a requirement to replace your instances on a
schedule because of internal security policies or external compliance
controls.
 2022-07-04 20:38:33 +02:00
Kubernetes Prow Robot d1c338ff19
Merge pull request #13917 from ReillyBrogan/reilly/cilium1116 
Update Cilium to 1.11.6
 2022-06-30 11:32:08 -07:00
Ole Markus With afd7c60d77 Make it possible to enable the shield addon for LBC 2022-06-30 16:23:08 +02:00
Reilly Brogan f3a421d600 Update Cilium to 1.11.6 2022-06-29 13:18:21 -05:00
AkiraFukushima 5b31fe3a31
Add validation for IRSA bucket name which contains dots 2022-06-28 23:39:54 +09:00
Ivan Volynkin 4264d78839 Adding GuestAccelerators to InstanceTemplate 2022-06-23 10:00:02 +03:00
Ole Markus With 2ed2a819f6 Apply suggestions from code review 
Co-authored-by: Peter Rifel <rifelpet@users.noreply.github.com>
 2022-06-17 19:58:27 +02:00
Ole Markus With d893c95059 Ensure clusters with internal load balancers have a private subnet 2022-06-17 19:58:27 +02:00
Eric Bailey 34caed893b Add support for setting mode field on file assets 2022-06-09 10:37:29 -05:00
Ole Markus With 4029d2bf33 Remove support for older cilium versions 2022-06-07 20:39:25 +02:00
Ole Markus With 921d1b8ce0 OIDC flags are no longer optional 2022-06-07 15:45:56 +02:00
Ole Markus With e4c10aa124 Rename default etcd variable 2022-06-07 15:38:09 +02:00
Ole Markus With 77ebba84b8 Add support for configuring which metrics cilium will export 2022-05-26 09:33:19 +02:00
Kubernetes Prow Robot 7a90131d54
Merge pull request #13567 from HealthEngineAU/cert-manager-nameservers 
Add a nameservers parameter for cert-manager.
 2022-05-18 00:28:53 -07:00
Jim Barber 0fa178106a Add a nameservers parameter for cert-manager 
Provide a way to override the pod's list of DNS nameservers to use so
that split-view DNS zones still work for things like DNS01 challenges.
Without this the DNS TXT records are searched for in the private DNS
zone instead of the public one and the challenge will never succeed.
 2022-05-18 13:23:26 +08:00
Steven E. Harris a1495ac4c8
Allow the AWS LB Controller to use WAFs 
By introducing a few new fields within the Cluster spec's
"awsLoadBalancerController" field, allow users to enable the AWS Load
Balancer Controller to associate WAFs with EC2 Application Load
Balancers (ALBs). It's possible to enable separately use of two kinds
of WAF: WAF Classic and the never version 2-era WAF, the latter of
which bears no distinguishing name.

Retain our default configuration of the AWS Load Balancer Controller
in which this capability remains disabled via command-line flags,
overriding the controller program's enabling of this capability by
default.

Signed-off-by: Steven E. Harris <seh@panix.com>
 2022-05-16 12:20:28 -04:00
avish42 638ab6c8c7 add annotation support to aws-ebs-csi pods 2022-05-12 22:23:55 +05:30
Ciprian Hacman b5f14b589b Add initial support for Hetzner Cloud 2022-05-09 06:12:15 +03:00
Ciprian Hacman 0b095068f3 Add support for installing additional packages 2022-05-03 06:47:44 +03:00
Ole Markus With e622736992 Bump nvidia device plugin to 0.11 and nvidia driver to 510 2022-04-30 16:01:47 +02:00
Guillaume Le Biller 467424d6a5
Add NodeTerminationHandler cpu resources settings 2022-04-29 10:50:16 +02:00
Bronson Mirafuentes 89f12ad9d2 add apimachinery generations 2022-04-18 10:50:07 -07:00
Bronson Mirafuentes 7c4f1646e3 add cluster autoscaler pod annotations 2022-04-18 10:32:52 -07:00
Ole Markus With ce2e877aeb Remove bazel files from vendor 2022-04-12 13:29:03 +02:00
Kubernetes Prow Robot 8120147889
Merge pull request #13326 from johngmyers/move-openstack 
Move Openstack settings to cloudProvider.openstack
 2022-04-10 00:10:05 -07:00
DingGGu 24965f43b2
Run apimachinery for nth excludeLoadBalancers 2022-04-09 17:04:23 +09:00
DingGGu 1b9cf91684
Bump NTH to 1.16.1, use WithDefaultBool in gotemplate, set ExcludeLoadBalancers default true 2022-04-09 17:04:23 +09:00
DingGGu c1042f4a3b
Bump NTH 1.16 and add excludeFromLoadBalancers option 2022-04-09 17:04:16 +09:00
John Gardiner Myers aff5f587f3 Move Openstack settings to cloudProvider.openstack 2022-04-07 10:04:19 -07:00
Kubernetes Prow Robot 5cbb338528
Merge pull request #13065 from johngmyers/move-azure 
Move Azure settings to cloudProvider.azure
 2022-04-07 09:37:57 -07:00
Kubernetes Prow Robot feb66910b1
Merge pull request #13318 from guillomep/allow_to_add_additional_routes 
Possibility to add additional routes in route tables of subnets
 2022-04-03 13:46:09 -07:00
Kubernetes Prow Robot 7684da6eca
Merge pull request #13396 from anthonyhaussman/feat/tone/PodAnnotations_NodeLocalDNS 
Add possibility to set PodAnnotations into NodeLocalDNS
 2022-04-01 10:56:47 -07:00
Guillaume Perrin 1235b63a0d Only authorize additionalRoute for private subnets 
Signed-off-by: Guillaume Perrin <guillaume28.perrin@gmail.com>
 2022-03-28 15:49:03 +02:00
Guillaume Perrin db27c00fa0 Apply suggestions from code review 
Co-authored-by: Peter Rifel <rifelpet@users.noreply.github.com>
Signed-off-by: Guillaume Perrin <guillaume28.perrin@gmail.com>
 2022-03-28 14:57:21 +02:00
Guillaume Perrin 2b7f9a4aeb Do not add additional routes for shared subnets 
Signed-off-by: Guillaume Perrin <guillaume28.perrin@gmail.com>
 2022-03-28 14:57:21 +02:00
Guillaume Perrin e501ac62a4 Possibility to add additional routes in route tables of subnets 
Signed-off-by: Guillaume Perrin <guillaume28.perrin@gmail.com>
 2022-03-28 14:57:21 +02:00
Anthony Hausman 308a886557
AWS-NODE-TERMINATION: Add possibility to set a tune image version 
Add the possibility into the AWS `node-termination-handler` addon to set a different image tag version.
It can help to have last fixes if it's needed.
 2022-03-23 10:59:51 +01:00
Anthony Hausman 7752cfc932
Add possibility to set PodAnnotations into NodeLocalDNS 
Annotations is pretty useful when you need third-party tool to add additional behavior for a k8s resource.
Lots of auto-discovery tools are based on this annotations.

This PR add the possibility to set tune pod annotations in the node-local-dns daemonsets.app.
 2022-03-21 16:15:10 +01:00
Kubernetes Prow Robot 6180ebc491
Merge pull request #13366 from olemarkus/allow-duplicate-taint-keys 
Allow duplicate taint keys
 2022-03-17 20:51:16 -07:00
Ole Markus With 1667d10833 Allow taints with unique key,value,effect 2022-03-16 07:18:12 +01:00
Jesse Haka a800218840 fixes 2022-03-11 12:01:20 +02:00
Jesse Haka 28caf02878 Support GPU in OpenStack 2022-03-11 09:19:09 +02:00
John Gardiner Myers 08ed25e7eb Fix capitalization to match Go conventions 2022-03-03 15:18:25 -08:00
John Gardiner Myers 591dd1aba9 Move Azure settings to cloudProvider.azure 2022-03-03 15:18:23 -08:00
John Gardiner Myers cac727c357 Make cloudProvider a struct in v1alpha3 API 2022-03-02 21:59:49 -08:00
John Gardiner Myers 70f7d9bdb2 Use function to get cloud provider from cluster spec 2022-03-02 21:59:47 -08:00
Kubernetes Prow Robot 2419eb7225
Merge pull request #13176 from h3poteto/iss-12436 
Add support to install EKS Pod Identity Webhook
 2022-03-01 05:37:48 -08:00
AkiraFukushima c8710203ba
Add support to install EKS Pod Identity Webhook 2022-02-20 18:33:50 +09:00
Kubernetes Prow Robot e29591e21e
Merge pull request #13060 from srikiz/DO-Add-New-VPC 
[DigitalOcean] Implement new VPC if network-cidr flag is specified
 2022-02-18 12:44:23 -08:00