kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
16,941 Commits 31 Branches 256 Tags 544 MiB
Commit Graph

1681 Commits

Author SHA1 Message Date
Ole Markus With 2625264fe5 Add support for graceful node shutdown 
Update docs/cluster_spec.md

Co-authored-by: Ciprian Hacman <ciprianhacman@gmail.com>
 2022-02-11 20:51:02 +01:00
Moshe Shitrit 46ba2882d2 Update expected 2022-02-10 12:13:21 -05:00
Kubernetes Prow Robot 95fc0ac5b8
Merge pull request #13212 from olemarkus/irsa-119 
Fix irsa for k8s < 1.20
 2022-02-09 12:25:49 -08:00
Kubernetes Prow Robot 7ceb4b78a0
Merge pull request #13092 from ryan-dyer-sp/Issue-12776-node-termination-handler 
Update aws node termination handler to 1.14.0
 2022-02-09 00:52:18 -08:00
Ole Markus With f4d8334050 Add test for irsa on k8s 1.19 2022-02-09 08:53:04 +01:00
Moshe Shitrit 7fc89bdfe1 Update expected 2022-02-08 22:16:26 -05:00
Moshe Shitrit 120f4647f9 Update expected 2022-02-08 22:05:09 -05:00
Ryan Dyer 52d5ae3394 update tests 2022-02-08 14:26:37 -06:00
Ryan Dyer f2f10e9011 Update tests (via hack) 2022-02-08 14:15:09 -06:00
Ciprian Hacman 934827e213 Run hack/update-expected.sh 
Signed-off-by: Ciprian Hacman <ciprian@hakman.dev>
 2022-02-08 20:05:33 +02:00
Kubernetes Prow Robot 7f9bf4ecab
Merge pull request #13219 from jiahuif-forks/feature/ccm-flagbuilder 
CCM: use flagbuilder instead of manually building argv
 2022-02-07 23:26:54 -08:00
Kubernetes Prow Robot 147052818b
Merge pull request #13203 from olemarkus/csi-featuregates 
Fix CSI migration feature gates
 2022-02-07 21:36:53 -08:00
Jiahui Feng 33e2094569 generated: ./hack/update-expected.sh 2022-02-07 15:26:51 -08:00
Kubernetes Prow Robot 08d532389b
Merge pull request #13208 from olemarkus/hash-version 
Use short commit sha for default stage location instead of git-describe
 2022-02-05 09:12:50 -08:00
Kubernetes Prow Robot 70f3a2ec7f
Merge pull request #13187 from jiahuif-forks/feature/enable-leader-election 
Always enable Leader Election for cloud-controller-manager
 2022-02-05 06:30:50 -08:00
Ole Markus With 709e0bf36a Use short commit sha for default stage location instead of git-describe 2022-02-05 12:36:19 +01:00
Ole Markus With ab4c83b021 Use non-legacy tag in karpenter subnet selector 2022-02-04 22:47:39 +01:00
Ole Markus With 66e3202f34 Fix CSI migration feature gates 
We had a bug for KCM feature gate, and the scheuler and apiserver gate was missing entirely.
 2022-02-04 15:29:28 +01:00
Kubernetes Prow Robot 2fbc3e0671
Merge pull request #13198 from hakman/containerd-1.6.0-rc.2 
Update containerd to v1.6.0-rc.2
 2022-02-03 18:28:11 -08:00
Kubernetes Prow Robot 4afc826e33
Merge pull request #13174 from olemarkus/ab-version 
Add support for AB tests starting out with released kops version
 2022-02-03 18:27:59 -08:00
Kubernetes Prow Robot ecef0b99fe
Merge pull request #13194 from justinsb/gce_iptables_from_gcr 
Pull k8s-custom-iptables from k8s.gcr.io
 2022-02-03 10:19:46 -08:00
Ciprian Hacman 84fd622189 Run hack/update-expected.sh 
Signed-off-by: Ciprian Hacman <ciprian@hakman.dev>
 2022-02-03 19:33:10 +02:00
justinsb 4f89c2e689 Update expected test output for etcd-manager bump 2022-02-03 11:21:54 -05:00
justinsb 3ff0ed0d08 Pull k8s-custom-iptables from k8s.gcr.io 
This is more correct anyway, but also ensures it will be rewritten
correctly by mirroring.

Only used on GCE.
 2022-02-03 10:45:50 -05:00
Kubernetes Prow Robot 56dd0136cb
Merge pull request #13189 from hakman/calico-3.21.4 
Update Calico and Canal to v3.21.4
 2022-02-03 05:29:46 -08:00
Kubernetes Prow Robot aa29a15d76
Merge pull request #13191 from olemarkus/fix-not-found-check-2 
Fix etcd-manager for ipv6
 2022-02-03 04:45:45 -08:00
Ole Markus With 6327cc378f Fix etcd-manager for ipv6 2022-02-03 12:59:26 +01:00
Kubernetes Prow Robot f555027deb
Merge pull request #13181 from zetaab/updateos 
update GCE default images
 2022-02-03 01:07:45 -08:00
Ciprian Hacman 01f75f4a78 Run hack/update-expected.sh 
Signed-off-by: Ciprian Hacman <ciprian@hakman.dev>
 2022-02-03 10:24:22 +02:00
Kubernetes Prow Robot f40bdef005
Merge pull request #13186 from nckturner/more-descriptive-error 
More descriptive error message when public key file can't be opened
 2022-02-02 12:48:05 -08:00
Jiahui Feng a0fe9ee638 generated: ./hack/update-expected.sh 2022-02-02 11:44:47 -08:00
Kubernetes Prow Robot 6913f645e0
Merge pull request #13185 from olemarkus/karpenter-60 
Bump karpenter to 0.6.0
 2022-02-02 07:04:21 -08:00
Ole Markus With dcf06e320c Bump karpenter to 0.6.0 2022-02-02 13:56:00 +01:00
Ole Markus With af4d69cab3 Use etcd-manager pre-release until final release has been cut 2022-02-02 13:10:32 +01:00
Jesse Haka d591ee9c80 update GCE default images 2022-02-02 13:57:50 +02:00
Nick Turner 84f41e424a More descriptive error message when public key file can't be opened 2022-02-02 03:08:16 -08:00
Ole Markus With 7620c232d8 Add support for AB tests starting out with released kops version 2022-01-31 19:51:29 +01:00
justinsb 16a676ffb3 JWKS / IRSA: Expose public ACLs to terraform 
Otherwise terraform wasn't correctly / consistently exposing these
files for JWKS/IRSA/OIDC.
 2022-01-30 15:02:50 -05:00
Ole Markus With 994588c0fd Bump etcd-manager to v3.0.20220128 2022-01-30 07:13:32 +01:00
Kubernetes Prow Robot 6ed628cff2
Merge pull request #13154 from olemarkus/bump-cas-2232 
Bump cert-manager and related godep to 1.6.2
 2022-01-27 09:57:59 -08:00
Ole Markus With 3fe8a56291 Add missing v prefix to default upgrade test version 2022-01-27 12:02:31 +01:00
Ole Markus With 85a7877666 Bump cert-manager and related godep to 1.6.2 2022-01-26 20:28:23 +01:00
Kubernetes Prow Robot 3b5998d4b4
Merge pull request #13152 from yurrriq/CVE-2022-0185 
Promote alpha AMIs to stable
 2022-01-25 23:16:25 -08:00
Eric Bailey 4033d83adc Promote alpha AMIs to stable 
https://ubuntu.com/security/CVE-2022-0185
 2022-01-26 00:23:03 -06:00
Ole Markus With be49fce8f7 Bump karpenter to 0.5.6 2022-01-25 21:49:58 +01:00
Ole Markus With 71a144136e Bump CCM images 2022-01-21 13:24:40 +01:00
Kubernetes Prow Robot fd242709f3
Merge pull request #12911 from olemarkus/tag-on-create 
Tag on create for remaining CCM privileges
 2022-01-21 00:11:59 -08:00
Ole Markus With 9d476c0e9c Add CreateSecurityGroup permission for vpcs 2022-01-20 17:49:36 +01:00
Ole Markus With 666cf710a2 Push partition into the policy struct 2022-01-20 17:49:36 +01:00
Jin c17ddb1600 Update to aws-sdk-go to v1.42.37 2022-01-21 00:36:31 +08:00
Ole Markus With dc0e7675ba Add a k8s 1.23 version of the ccm test 2022-01-20 15:32:46 +01:00
Ole Markus With 0a082fed12 Require tag on create for external AWS CCM 2022-01-20 15:32:46 +01:00
Ciprian Hacman df29b6e406 Run hack/update-expected.sh 
Signed-off-by: Ciprian Hacman <ciprian@hakman.dev>
 2022-01-19 13:00:36 +02:00
Kubernetes Prow Robot 4b1ea96448
Merge pull request #13111 from olemarkus/no-kubelet-section 
Don't set unsupported configs by default
 2022-01-19 01:10:05 -08:00
Kubernetes Prow Robot 4eb54f2260
Merge pull request #13114 from olemarkus/nodeup-describe-regions 
Add DescribeRegions to nodeup privs
 2022-01-18 22:14:05 -08:00
Kubernetes Prow Robot fda6210e29
Merge pull request #13104 from olemarkus/tag-on-create-func 
Create helper function for ec2 create/tag-on-create IAM permissions
 2022-01-18 19:30:06 -08:00
Ole Markus With 3f265a43bb Remove networking flags as of k8s 1.24 2022-01-18 22:15:16 +01:00
Kubernetes Prow Robot 85732b4c4d
Merge pull request #13030 from johngmyers/v6-topology 
Use IPv6-only subnets for worker nodes in private IPv6 topology
 2022-01-18 10:58:40 -08:00
Ole Markus With b80488906f Add DescribeRegions to nodeup privs 2022-01-17 09:34:29 +01:00
Ole Markus With da31a1198f Don't set legacy IAM by default 2022-01-16 14:54:56 +01:00
Ole Markus With c8e6d93304 No need to set kubelet in tests 2022-01-16 14:39:46 +01:00
Ole Markus With 0ef596dd49 Do not create an IAM role for dns-controller on gossip clusters 2022-01-16 10:31:11 +01:00
Ole Markus With f4e538508f Create helper function for ec2 create/tag-on-create IAM permissions 2022-01-14 18:41:28 +01:00
Ciprian Hacman de80986019 Run hack/update-expected.sh 
Signed-off-by: Ciprian Hacman <ciprian@hakman.dev>
 2022-01-13 07:42:06 +02:00
Ciprian Hacman 83804334d8 Run hack/update-expected.sh 2022-01-07 10:18:10 +02:00
John Gardiner Myers 8faa80361e hack/update-expected.sh 2022-01-06 21:02:34 -08:00
John Gardiner Myers 5385381633 Use IPv6-only subnets for worker nodes in private IPv6 topology 2022-01-06 21:00:00 -08:00
Kubernetes Prow Robot 4ffc83d811
Merge pull request #13028 from rifelpet/ipv6-tf 
Extend terraform support for IPv6
 2022-01-06 17:08:30 -08:00
John Gardiner Myers d5ac8862d5 Release 1.24.0-alpha.2 2022-01-01 10:35:11 -08:00
Ole Markus With 844c36b6d2 Bump external-snapshotted to v5.0.0 2022-01-01 07:53:28 +01:00
Ole Markus With ea9d0de847 Handle default in templating instead of ig population 2021-12-30 09:01:43 +01:00
Ole Markus With 655d63cec1 Use instance requirements to get a wider set of instance types by default 2021-12-29 20:14:58 +01:00
Kubernetes Prow Robot 4c664ad915
Merge pull request #13050 from olemarkus/bump-cas-223 
Bump Cluster Autoscaler and update manifest
 2021-12-29 09:53:35 -08:00
Ole Markus With dd06cd337f Bump Cluster Autoscaler and update manifest 2021-12-29 18:06:27 +01:00
Jesse Haka 2bad52ea8c update deps 2021-12-29 13:22:05 +02:00
John Gardiner Myers dae281d30e Migrate to GCE CCM in k8s 1.24 2021-12-28 19:33:07 -08:00
Ole Markus With 52aa9734d8 Prefix karpenter logging-config name 2021-12-27 11:17:41 +01:00
Ole Markus With 375b706dab Run karpenter in HA 2021-12-26 07:18:25 +01:00
Ole Markus With 85d347b8ee LBC has to run on the control plane, so set replicas accordingly 2021-12-25 19:54:35 +01:00
Peter Rifel e6305aa81e
./hack/update-expected.sh 2021-12-25 08:39:02 -06:00
Peter Rifel 23686f0ead
./hack/update-expected.sh 2021-12-25 08:38:22 -06:00
Kubernetes Prow Robot e95e359e3a
Merge pull request #13026 from johngmyers/ipv6-only 
Allow IPv6-only subnets
 2021-12-24 02:24:14 -08:00
Kubernetes Prow Robot 6ba44ea236
Merge pull request #12975 from olemarkus/karpenter-only 
Add a CLI flag for creating one karpenter-managed IG for worker nodes instead of ASG-managed ones
 2021-12-24 01:40:15 -08:00
Ole Markus With 8e59f5bc23 Create create_cluster test for karpenter 2021-12-24 09:20:06 +01:00
Ole Markus With 8f276cf944 Make it possible to create clusters with only karpenter-managed worker nodes 
Apply suggestions from code review

Co-authored-by: John Gardiner Myers <jgmyers@proofpoint.com>
 2021-12-24 09:12:59 +01:00
Ole Markus With 0ead405b30 Set karpenter dns policy to default, lower requests and remove cpu limits 2021-12-24 09:12:58 +01:00
Ole Markus With 468280d3f2 Improve HA for various addons 2021-12-24 08:53:27 +01:00
John Gardiner Myers 46404a9b19 hack/update-expected.sh 2021-12-23 19:50:46 -08:00
John Gardiner Myers f9071dd0d5 Allow IPv6-only subnets 2021-12-23 19:50:46 -08:00
Ciprian Hacman d3bdba29e1 Update k8s dependencies to v1.23.1 2021-12-23 14:56:18 +02:00
Ole Markus With f7e86b9521 Tag ENIs with k8s tags 2021-12-22 21:16:19 +01:00
Kubernetes Prow Robot 2f31054e19
Merge pull request #13007 from hakman/skip_non-masquerade-cidr 
Use kubelet --non-masquerade-cidr only for Docker with kubenet
 2021-12-21 18:49:36 -08:00
Peter Rifel 7474a727e8
kubetest2 - Use the same binary path and env when fetching instance groups 
The GetInstanceGroup function was used in kubetest2-tester-kops which has the desired `kops` set in PATH and KOPS_STATE_STORE already set.
Now that we're using GetInstanceGroups in kubetest2-kops (the deployer) we need to override these to the values that the deployer determines.
 2021-12-20 20:34:48 -06:00
justinsb e8ddfa4328 Update test data for bash return change 2021-12-20 10:12:07 -05:00
Kubernetes Prow Robot 219cadb2ab
Merge pull request #13002 from olemarkus/karpenter-rbn 
Bump karpenter to 0.5.3 and RBN support
 2021-12-20 02:09:25 -08:00
Kubernetes Prow Robot dd3296c881
Merge pull request #12961 from olemarkus/spread-not-affinity 
Use spread constraints rather than affinity to spread pods
 2021-12-20 01:21:25 -08:00
Ole Markus With 1ee6f347c5 Use spread constraints rather than affinity to spread pods (golden outputs) 2021-12-20 09:37:45 +01:00
Kubernetes Prow Robot 681b5006d6
Merge pull request #13008 from olemarkus/skip-sctp-check 
Skip SCTP check for all versions of k8s 1.23/1.24
 2021-12-20 00:31:25 -08:00
Ole Markus With 244aadd4fb Skip SCTP check for all versions of k8s 1.23/1.24 2021-12-20 08:50:18 +01:00
Ciprian Hacman b20dfe162a Run hack/update-expected.sh 2021-12-20 08:47:25 +02:00
Peter Rifel 7c55698a36
Add kubetest2-kops flags for overriding instance group fields 
This allows us to disable IMDSv2 on flatcar tests
 2021-12-19 16:26:46 -06:00
Ole Markus With b2104ab274 Bump karpenter to 0.5.3 and RBN support 2021-12-19 21:53:07 +01:00
Ciprian Hacman 1e565d8d83 Skip RuntimeClass tests for older Kubernetes versions 2021-12-19 21:38:52 +02:00
Kubernetes Prow Robot 23622237a9
Merge pull request #12995 from rifelpet/tf-gcp-sa 
Use terraform literals in GCP service account references
 2021-12-19 00:09:24 -08:00
justinsb b2cfc5c4c4 dep: update github.com/pkg/sftp 
This picks up changes to use go errors, instead of the (deprecated?)
pkg/errors.
 2021-12-18 19:37:16 -05:00
Peter Rifel 117639f7ec
Use terraform literals in GCP service account references 2021-12-18 16:39:16 -06:00
justinsb 61e2cb2b73 gce: Fix google_project_iam_binding member -> members 2021-12-17 18:29:29 -05:00
justinsb 7270fd9165 Update expected test output 2021-12-17 12:57:14 -05:00
Kubernetes Prow Robot 9ed4ec13f0
Merge pull request #12979 from olemarkus/quote-values 
Quote values and remove limits in karpenter provisioners
 2021-12-15 12:35:52 -08:00
Ole Markus With 911e541360 Quote values and remove limits in karpenter provisioners 2021-12-15 20:51:55 +01:00
Ciprian Hacman 2cb6e0e0d4 Do not skip RuntimeClass tests 2021-12-15 16:39:41 +02:00
Ciprian Hacman c177ab09c2 Do not skip HPA tests 2021-12-15 10:21:22 +02:00
Kubernetes Prow Robot 7ccf0d6b7a
Merge pull request #12967 from hakman/controller-runtime-0.11.0 
Update controller-runtime to v0.11.0
 2021-12-15 00:12:19 -08:00
Ciprian Hacman 48333f1bc6 Run hack/update-expected.sh 2021-12-15 08:34:52 +02:00
Ciprian Hacman e529bac103 Update controller-runtime to v0.11.0 2021-12-15 07:49:53 +02:00
Kubernetes Prow Robot 424452a855
Merge pull request #12906 from olemarkus/karpenter 
Support Karpenter
 2021-12-14 13:58:50 -08:00
Kubernetes Prow Robot 8aed137a50
Merge pull request #12960 from hakman/unskip_calico_nodeport 
Do not skip NodePort tests for Calico
 2021-12-14 06:37:48 -08:00
Ole Markus With 9529073f3a Add KubernetesCluster as selector as well to avoid trying to schedule outside the cluster 2021-12-14 12:05:21 +01:00
Ole Markus With eef4652c34 Quote 1 in label selector 2021-12-14 12:02:24 +01:00
Ciprian Hacman 8a6ac67739 Do not skip NodePort tests for Calico 2021-12-14 10:29:20 +02:00
Ciprian Hacman 07ae296531 Do not explicitly skip Dashboard tests 2021-12-14 10:27:55 +02:00
Ole Markus With 0a6e329477 Use internal-elb as karpenter subnet selector 2021-12-13 21:11:56 +01:00
Ciprian Hacman 133177f0c1 Skip IPv6 LB test in the k/s e2e 2021-12-13 15:56:19 +02:00
Ole Markus With b785965c50 Rename InstanceManager to Manager 2021-12-13 09:14:24 +01:00
Ciprian Hacman 6a324b122c Run hack/update-expected.sh 2021-12-13 09:08:24 +02:00
Ole Markus With 75d2b97754 Set provider name on karpenter-managed node 2021-12-12 19:33:41 +01:00
Ole Markus With d4ec7cc7e0 Make kops get instances work with karpenter 2021-12-12 19:33:41 +01:00
Ole Markus With 043dd91417 Add karpenter feature flag 2021-12-12 19:33:41 +01:00
Ole Markus With 794cb72112 Karpenter addon 
Constrain the instance types to what is supported by the AMI

Add taints and label to karpenter provisioner

Add instance types to karpenter provisioner
 2021-12-12 19:33:41 +01:00
Ole Markus With 67e6b3486f Add integration test for karpenter 2021-12-12 19:33:41 +01:00
Kubernetes Prow Robot 600c47f635
Merge pull request #12918 from olemarkus/cilium-service-topology 
Make service topology for cilium configurable
 2021-12-12 10:11:58 -08:00
Ole Markus With 57fd343e1d Make service topology for cilium configurable 2021-12-12 07:54:21 +01:00
John Gardiner Myers a0736b3c29 Remove support for Aliyun/Alibaba Cloud 2021-12-11 21:49:13 -08:00
Kubernetes Prow Robot 25a6deeed5
Merge pull request #12926 from olemarkus/remove-insecure-port 
Do not set insecure-port as of k8s 1.20
 2021-12-11 06:09:58 -08:00
Kubernetes Prow Robot 03bcd3bce7
Merge pull request #12930 from olemarkus/integration-minimal-bump 
Add integration test for k8s 1.24
 2021-12-11 04:03:58 -08:00
Ole Markus With 2088849768 Do not set insecure port on k8s 1.20+ 2021-12-11 12:44:56 +01:00
Ole Markus With 35291c9d49 Add integration test for k8s 1.24 2021-12-11 10:59:45 +01:00
Ciprian Hacman d00310b0e6 Fix failing test 2021-12-11 11:39:37 +02:00
Ciprian Hacman f5f35ab755
Release 1.24.0-alpha.1 (#12928) 2021-12-11 00:01:57 -08:00
Ciprian Hacman 473018f64f
Release 1.23.0-beta.1 (#12924) 2021-12-10 22:31:58 -08:00
Kubernetes Prow Robot 9e9c8d5713
Merge pull request #12891 from justinsb/fix_e2e_flake_zone 
e2e: fix test flakes where we specify a non-schedulable zone
 2021-12-10 10:37:11 -08:00
justinsb 57f14f4d23 e2e: fix test flakes where we specify a non-schedulable zone 
If we specify a zone to the e2e tests, it will try to pre-provision
volumes into it for the inline tests.  We then will be unable to
attach a volume to test pods if we don't have (normal) nodes in that
zone.

Pick a zone that is schedulable for test pods.
 2021-12-10 12:56:23 -05:00
Ciprian Hacman 584f452595 Run hack/update-expected.sh 2021-12-10 14:36:34 +02:00
Kubernetes Prow Robot cfa4629ce0
Merge pull request #12915 from heybronson/dns-pdb 
Set DNS PDB to a maxUnavailable percentage
 2021-12-09 12:51:04 -08:00
Bronson Mirafuentes ed7d287052 set dns pdb to 50% maxUnavailable 2021-12-09 08:57:33 -08:00
Ciprian Hacman 620426bf84 Update k8s dependencies to v1.23.0 2021-12-08 00:22:34 +02:00
Ciprian Hacman c9aa6a8633 Fix error applying AWS CCM leader migration 2021-12-07 19:07:14 +02:00
Kubernetes Prow Robot 7987714cdb
Merge pull request #12893 from johngmyers/fix-external-dns 
Fix external-dns service name
 2021-12-07 04:50:00 -08:00
John Gardiner Myers 0775a4ee20 hack/update-expected.sh 2021-12-06 21:11:49 -08:00
Kubernetes Prow Robot e146bb4334
Merge pull request #12881 from heybronson/enable-conn-draining 
enable connection-draining for aws classic lb
 2021-12-05 21:18:33 -08:00