kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
12,463 Commits 31 Branches 256 Tags 544 MiB
Commit Graph

456 Commits

Author SHA1 Message Date
Elad Dolev 16da5f1967 bump version 2019-10-30 17:25:45 +02:00
Jesse Haka c320ec29c8 Set default image tag for OpenStack CCM 2019-10-27 20:05:30 +02:00
GuyTempleton e87b1fddbe
Allow for override of CoreDNS version 
Allow users to override the CoreDNS image version to take advantage of local image registries or differing versions of the image to allow quicker access to new/improved CoreDNS plugins.
 2019-10-15 21:07:12 +01:00
Justin SB d3bad10aa9
Move kops-controller to use a yaml configuration file 
This is more in keeping with componentconfig, and lets us add more
options easily in future.
 2019-10-13 07:27:52 -07:00
Peter Rifel 699fe56619 Upgrade Amazon VPC CNI plugin to 1.5.4 
See: https://github.com/aws/amazon-vpc-cni-k8s/releases/tag/v1.5.4
 2019-10-11 07:55:26 -07:00
Kubernetes Prow Robot 32715d3822
Merge pull request #7694 from mikesplain/calico_3.9.1 
Add calico 3.9.1
 2019-09-30 06:33:38 -07:00
Justin SB c9bcf45284
kops-controller version should match version of kops 
So (counterintuitively) we set it to 1.15.0-alpha.1, because that is the version on the master branch.
 2019-09-28 19:41:13 -04:00
mikesplain 7a980efd7e
Add calico 3.9.1 2019-09-27 12:59:09 -04:00
Kubernetes Prow Robot ac36e9c41d
Merge pull request #7689 from justinsb/upgrade_pod2daemon_only 
Calico: upgrade pod2daemon (only)
 2019-09-27 07:39:36 -07:00
Kubernetes Prow Robot 942c8915db
Merge pull request #7496 from justinsb/label_controller 
kops-controller
 2019-09-27 03:43:35 -07:00
Justin SB 70dd5c3f22
Calico: upgrade pod2daemon (only) 
We want to pick up https://github.com/projectcalico/pod2daemon/pull/28 , to address https://github.com/kubernetes/kops/issues/7592 .

This is not ideal, but looking at the commit changes the only
potentially problematic change in the diff is
https://github.com/projectcalico/pod2daemon/pull/21 , which seems like
it shouldn't cause ay skew issues.
 2019-09-27 00:14:26 -04:00
Justin SB ba76db7f41
Limit calico cpu request to 100m 
Per docs/development/instancesizes.md we don't have much cpu on a 1
core machine.  Note that this is only requests, not limits, so calico
can still burst.

At least related to issue #7592
 2019-09-26 22:57:42 -04:00
Justin SB 97f552778f
Add env vars, update tests 2019-09-25 12:48:13 -04:00
Justin SB 6cb341dfeb
Add kops-controller to default adddons 2019-09-25 12:04:37 -04:00
Ole Markus With 55ffbf060e Fix Cilium addon version 
Addon manager seems to fail at parsing the version because it only had
major.minor version.
 2019-09-21 14:23:08 +02:00
Mike Splain 5f92e1a2bb
Update bootstrapchannelbuilder.go 2019-09-10 16:10:30 -04:00
Mike Splain a17183f1f2
Merge branch 'master' into External-CoreFile 2019-09-10 16:08:32 -04:00
Kubernetes Prow Robot a7eb9a202d
Merge pull request #7528 from mikesplain/calico_update_and_typha 
Calico update and typha
 2019-09-09 21:32:54 -07:00
mikesplain 9e55b8230a Update copyright notices 
Also cleans some white spaces
 2019-09-09 14:47:51 -04:00
GuyTempleton 948373a4ae Update calico and update manifest 2019-09-09 10:00:50 -04:00
Justin SB ee055ffe01
Release 1.15.0-alpha.1 2019-09-08 15:48:40 -04:00
Kubernetes Prow Robot d90b75cf1b
Merge pull request #7492 from grupozap/coredns_missing_dir_workaround 
fix(addons/coredns.addons.k8s.io) Workaound to stop coredns crashing on 1.3.1 version
 2019-09-04 07:58:59 -07:00
Pedro H. Spagiari 7746e8c726 chore(upup/pkg/fi/cloudup) Bumping coredns to 1.3.1 2019-09-04 11:08:31 -03:00
Alex Simenduev 4c43384e7a Support for using hostPort when using flannel 2019-08-24 16:01:58 +03:00
while1eq1 c32fe97921 upgrade weave to 2.5.2 to address the issues in https://github.com/weaveworks/weave/releases/tag/v2.5.2 2019-08-21 16:00:06 -04:00
GuyTempleton a7d30267b5
[Feature] CoreDNS: Allow for Specification of external CoreFile 
Allow users to provide entirely custom CoreFile for CoreDNS to provide improved flexibility.
 2019-08-03 16:38:14 +01:00
Kubernetes Prow Robot f5e272f8b3
Merge pull request #7326 from zacblazic/scrape-weave-metrics 
Enable scraping of weave metrics
 2019-08-01 10:14:27 -07:00
Kubernetes Prow Robot b6dee3963b
Merge pull request #7317 from combor/master 
Update kube-router to 0.3.1
 2019-08-01 10:14:15 -07:00
Zac Blazic 32a7f91e8c Bump kops versions for weave manifests 2019-07-26 16:55:36 +02:00
Piotr Komborski d03d476e16
Update kube-router to 0.3.1 2019-07-24 16:44:13 +02:00
Kubernetes Prow Robot 39d03b1f97
Merge pull request #7312 from justinsb/small_cleanup_to_hashing 
Manifest hashing: move trimming out of hash function
 2019-07-24 05:06:15 -07:00
Kubernetes Prow Robot f21ec59686
Merge pull request #7257 from tmjd/update-calico-v3-8 
Update Calico to v3.8.0
 2019-07-24 03:18:15 -07:00
Justin SB e098f0f353
Manifest hashing: move trimming out of hash function 
It's a little confusing to have a hash function which auto-trims.  But
trimming the manifests does make sense.  We also want to be sure that
the hash matches the raw hash of the manifest, which it didn't when we
transformed the manifest "inside the hash".
 2019-07-23 08:02:20 -07:00
Ryan Bonham 84e57f2871
Remove commented code block 2019-07-22 07:26:07 -07:00
Ryan Bonham 62d4b128ce
Improve channel updates, to use hash of manifests to ensure we always update on changes 2019-07-22 07:26:06 -07:00
Erik Stidham 0b004a3f0c Update Calico to v3.8.0 2019-07-19 15:48:43 -07:00
Justin SB 4e4e8ce56e
Calico -> 3.7.4 
Both in bootstrapchannelbuilder (follow-up to #7249), but also in
older versions, because it is a security fix for TTA-2019-002.
 2019-07-19 06:43:42 -04:00
Kubernetes Prow Robot 26f48f5c59
Merge pull request #7051 from asincu/calico_upgrade 
Upgrade Calico to 3.7.2
 2019-07-09 07:50:04 -07:00
Kashif Saadat 4ee4c2b7be Canal v3.7.4 2019-07-02 16:05:34 +01:00
Kubernetes Prow Robot 223c5d9874
Merge pull request #6803 from rifelpet/aws-iam-authenticator-update 
Update aws-iam-authenticator image to 0.4.0
 2019-06-20 19:40:35 -07:00
Kubernetes Prow Robot a8e7109129
Merge pull request #7040 from spotinst/feature-spotinst-ocean 
Spotinst: New instance group type: Ocean
 2019-06-20 12:24:10 -07:00
Kashif Saadat 4196a1378f Update Canal to v3.7.3 2019-06-20 10:51:15 +01:00
Peter Rifel 79474ffc0b Upgrade AWS VPC CNI provider to 1.5.0 
Released a few days ago: https://github.com/aws/amazon-vpc-cni-k8s/releases/tag/v1.5.0
 2019-06-07 16:33:55 -07:00
liranp 80020052d3
feat(spotinst): new instance group type: ocean 2019-06-03 12:38:46 +03:00
asincu 010942c8ea Upgrade Calico to 3.7.2 2019-05-22 15:21:51 -07:00
Kashif Saadat 3b9305f002 Canal v3.7.2 for k8s v1.12+ 2019-05-13 14:57:42 +01:00
Justin SB 9f2b671a9a
Include aws-cloud-provider roles in 1.15 
We consider it part of the storage configuration for AWS now.

Upstream change: https://github.com/kubernetes/kubernetes/pull/66635
 2019-05-09 02:03:21 -04:00
Kashif Saadat 4b40a24695 Canal manifest updates for k8s v1.12+ 2019-04-24 17:37:28 +01:00
Peter Rifel 152f3a85b8 Update aws-iam-authenticator image to 0.4.0 
See https://github.com/kubernetes-sigs/aws-iam-authenticator/releases/tag/v0.4.0
 2019-04-22 14:38:47 -07:00
Justin SB 6779429e13
Release 1.14.0-alpha.1 2019-04-12 08:27:58 -07:00
Justin SB 2a1df6b8ee
kube-dns: Update to 1.14.13 
Following updates to k8s 1.12 in k/k
 2019-04-07 11:22:10 -07:00
Justin SB 8dd9408348
kube-dns-autoscaler: Add node watch to permissions 
We had to bump the channel version to 1.14.11-kops.1, even though it's
still 1.14.10, because we didn't have the kops suffix yet.  A little
awkward now, but will get better once kube-dns is updated!

Fix #6711
 2019-04-06 21:45:20 -07:00
Peter Rifel c24b0a0918 Allow the AWS IAM Authenticator image name to be overridden 2019-04-05 09:35:30 -05:00
Kubernetes Prow Robot 0d75160bd6
Merge pull request #6723 from mikesplain/update_aws_vpc_cni 
Update 1.3.0 to 1.3.3
 2019-04-05 07:11:21 -07:00
Ryan Bonham acf713d28f Bump version numbers 2019-04-04 09:10:08 -05:00
mikesplain b3ce20e28a Bump version 2019-04-03 11:27:18 -04:00
Justin SB be772f23cf
Update flannel version in bootstrapchannelbuilder 
A follow on to #6660 - we need to update the manifest also.
 2019-03-25 11:16:46 -04:00
Kubernetes Prow Robot 024749ec55
Merge pull request #6358 from justinsb/calico_with_crds 
kops 1.12 configuration for calico: use CRDs
 2019-03-18 00:25:11 -07:00
Kubernetes Prow Robot 04ccfb2f27
Merge pull request #6622 from justinsb/followup_6502 
Apply scope fix in #6502 to all manifest versions
 2019-03-15 09:47:12 -07:00
Justin SB 7f4dbb59ad
Apply scope fix in #6502 to all manifest versions 
In #6502 we fixed an invalid CRD, but we need to fix in all versions.
Also bump the manifest version so it applies correctly!
 2019-03-14 23:01:27 -04:00
Kubernetes Prow Robot 35679b5052
Merge pull request #6444 from zetaab/ccm 
External out-of-tree CloudControllerManager support for openstack
 2019-03-14 14:21:00 -07:00
Justin SB b4cb55db1f
kops 1.12 configuration for calico: use CRDs 2019-03-14 01:03:10 -04:00
JuanJo Ciarlante e85e4d48ad Update Weave Net to version 2.5.1 
This release fixes #6369 syslog flooding as reported at
weaveworks/weave#3449.

Release notes
https://github.com/weaveworks/weave/releases/tag/v2.5.1

Signed-off-by: JuanJo Ciarlante <juanjosec@gmail.com>
 2019-02-22 10:31:49 -03:00
Jesse Haka d4fbc4f3c3 external out-of-tree cloudcontrollermanager to openstack 2019-02-20 20:05:25 +02:00
Jordan Liggitt 077c7e44dc Update channel builder 2019-02-20 09:22:48 -05:00
Sandeep Rajan 42d6d9e888 Update the coredns manifest 2019-02-19 15:54:01 -05:00
Kubernetes Prow Robot 1d55996e29
Merge pull request #6469 from appvia/canal-v3.5 
Updated Canal manifest to v3.5.0 for k8s v1.12+
 2019-02-16 06:24:21 -08:00
Kubernetes Prow Robot 307ccd8556
Merge pull request #6468 from appvia/node-authorizer-proxy 
Allow NodeAuthorizer to speak via HTTP Proxy if configured
 2019-02-16 06:24:16 -08:00
Kubernetes Prow Robot 5d2ebfae92
Merge pull request #6424 from rajansandeep/proxytoforward 
Use the forward plugin instead of proxy plugin in CoreDNS
 2019-02-16 05:25:11 -08:00
Kashif Saadat 2e7229398e Update Canal manifest to v3.5.0 for k8s v1.12+ 2019-02-14 14:13:28 +00:00
Kashif Saadat 4484dd3591 Allow NodeAuthorizer to speak via HTTP Proxy if configured 2019-02-14 13:02:17 +00:00
Sandeep Rajan 57326d3493 Use the forward plugin instead of proxy 2019-01-31 13:44:44 -05:00
Wenhua Zhao 818490de2b upgrade calico to 2.6.12 to fix TTA-2018-001 2019-01-31 09:57:30 -08:00
Kubernetes Prow Robot 9c8b945e4e
Merge pull request #6257 from justinsb/mark_1_12_0_alpha_1 
Release 1.12.0-alpha.1
 2019-01-12 10:33:47 -08:00
Harshal Shah 1f33f9581f Upgrading coredns version to 1.3.0 
Signed-off-by: Harshal Shah <harshal2623@gmail.com>
 2019-01-11 18:59:42 +01:00
Rohith 2429997121 Kubelet API RBAC Manifest 
I was mistaken how the key in the namespace is used, looks like you can only have the one key per addon as the anonnotations on the namespace are addon_name -> version, so if you already have a old rbac.addons.k8s.io referenced it won't work. I didn't notice before as the cluster was new.
 2019-01-09 14:46:33 +00:00
Rohith ebd91354bb - fixing the unit test for the bootstrap code 2019-01-08 15:54:04 +00:00
Rohith 83ba980f40 - changing this to a default install and its a breaking change and won't effect unless the webhook is enabled 2019-01-08 15:38:44 +00:00
Rohith 4b08a05274 Kubelet API Admin for Webhook Mode 
- adding a default binding for the kubelet-api for when kubelet webhook is enabled
 2019-01-08 15:21:02 +00:00
Justin SB a246313c2e
Release 1.12.0-alpha.1 2019-01-03 19:00:33 -05:00
Christian Jantz b14c014ac3 update calico version to version 3.4.0 2018-12-23 14:44:31 +01:00
Erik Stidham d2e9fcbd7f Fix Calico upgrade job to use the correct version 2018-12-04 13:42:15 -06:00
Kubernetes Prow Robot e6d9545a6e
Merge pull request #6129 from spotinst/feature-spotinst-controller 
Spotinst: Bump controller image
 2018-12-03 06:43:08 -08:00
Liran Polak a4719388d7 fix: update bootstrapchannelbuilder 2018-11-29 15:59:42 -08:00
mikesplain 6b44333ac5 Update amazon cni to 1.3.0 2018-11-28 17:01:31 -05:00
Sandeep Rajan 5943b13264 CoreDNS version 1.2.6 2018-11-19 11:25:41 -05:00
Justin SB fbcf95f611
Bump version of amazon-vpc-cni in bootstrapchannelbuilder 
We need to bump this version whenever we change the manifest, to
ensure that updates are actually applied.  Bump it to catch up.
 2018-11-18 14:29:15 -05:00
Alex Williams 18ed48e99b
Remove trailing comma from from k8s-1.7-v3.yaml.template 2018-11-16 13:41:18 +00:00
Casey Davenport 4c5f52b867 Update Calico to v3.3.1 2018-11-14 14:40:29 -08:00
k8s-ci-robot bac89b8de5
Merge pull request #5102 from tmjd/calico-v3-upgrade 
Calico v3 upgrade
 2018-11-13 12:55:18 -08:00
Justin SB d8a80a79ee
Bump kopeio-networking to latest version 
Also add the RBAC permissions needed for operation on GCE.
 2018-11-09 00:40:24 -05:00
Erik Stidham 3da3b415e0 Adding Calico V3 
- Add Calico configuration field to specify MajorVersion
- Add Calico V3 manifest
- Default new installations to Calico V3
  - Set etcd to V3 when calico is specified for networking
- Validate that etcd is V3 when Calico MajorVersion is v3
- Using Calico v3.2.1
 2018-11-07 14:00:54 -06:00
k8s-ci-robot 560a0a2a40
Merge pull request #6043 from bboreham/weave-net-2-5 
Update Weave Net to version 2.5.0
 2018-11-06 07:11:41 -08:00
Bryan Boreham c649312a4a Update Weave Net to version 2.5.0 
This release adds support for Kubernetes `hostPort` mapping and the
`ipBlock` NetworkPolicy feature, plus many other improvements.

Release notes https://github.com/weaveworks/weave/releases/tag/v2.5.0

Signed-off-by: Bryan Boreham <bjboreham@gmail.com>
 2018-11-05 17:29:03 +00:00
Kashif Saadat 1ada8a98e5 Canal v3.3.0 for Kubernetes v1.12+ 2018-11-02 15:47:37 +00:00
k8s-ci-robot f7a0b38610
Merge pull request #5985 from rajansandeep/1.2.4 
Bump CoreDNS version to 1.2.4 and update manifest
 2018-10-27 07:52:24 -07:00
k8s-ci-robot 9078a23561
Merge pull request #5946 from jhohertz/cni-taint-tolerations 
More CNI toleration for tainted nodes.
 2018-10-23 04:02:35 -07:00
Sandeep Rajan b6b6c6661c bump version to 1.2.4 and update manifest 2018-10-22 10:44:34 -04:00
Justin Santa Barbara 30e2adcf92 Mark release 1.11.0-alpha.1 2018-10-16 11:59:12 -04:00
k8s-ci-robot 1fbc6331c6
Merge pull request #5922 from spotinst/feature-spotinst-aws 
New integration: Spotinst
 2018-10-15 09:26:13 -07:00
Joe Hohertz cae07120b1 More CNI toleration for tainted nodes. 2018-10-15 11:45:45 -04:00
k8s-ci-robot 09654b1189
Merge pull request #5927 from gambol99/canal_v3 
Canal v3
 2018-10-15 03:15:38 -07:00
Liran Polak 9f94c06e67 fix: rename spotinst's feature flag 2018-10-14 11:37:31 +03:00
Liran Polak 7654a923f1 feature: new integration: spotinst 2018-10-14 11:37:31 +03:00
Rohith 01bc597d29 - actually dropping the check on the ipvs module is feels hacky with the check in validation due to blocking, or locking the version to 1.9.3, as they might not be using ipvs anyway. I'm gonna leave it for another PR or perhaps leave kube admins to decide for now 2018-10-12 14:49:22 +01:00
Rohith 19f50945f8 Canal v3.2.3 
Adding the manifests for kubernetes >=1.9 to move to canal version 3.2.3. Admittedly I don't like the fact the users are unable to override or select the version of canal they wish to use, but as none of the networking spec have this feature i'm reluctant to add it. The PR upgrades kops cluster running kubernetes >=1.9.0 to canal v3.2.3
 2018-10-12 13:29:03 +01:00
Rohith 2a7e349917 Disable RBAC Addons 
The current implementation applys the rbac addons regardless. When node authorization is enable this manifests is skipped. In regard to rollouts from RBAC -> Node, the process will be disable manifest, though the clusterrolebindings will still exist. Once all the nodes have been upgraded to use Node authorization the administrator can delete the binding maunally.
 2018-10-12 10:23:26 +01:00
k8s-ci-robot 201e30b4d4
Merge pull request #5903 from justinsb/5845_bump_bootstrapchannel 
Update weave bootstrapchannelbuilder version
 2018-10-10 06:28:03 -07:00
k8s-ci-robot f4c1da63de
Merge pull request #5910 from gambol99/fix_canal_manifest 
Canal Manifest Fix (Kubernetes >= v1.12.0)
 2018-10-10 05:25:03 -07:00
Rohith d1ea6ad028 Canal Manifest Fix (Kubernetes >= v1.12.0) 
So the current canal manifest contains a 'description' field which as far as I can tell from the API documentation never existed (in apimachinery). Previous versions probably ignored the field but while testing v1.12.1 I noticed canal no longer deployed correctly due to the validation error. I've bumped the versions and removed the field from the manifest; this shouldn't have any impact on those already deployed, but as an alternative we could copy and paste 1.8 manifest, add an exclusion in the [bootstrapchannelbuilder.go](https://github.com/kubernetes/kops/blob/master/upup/pkg/fi/cloudup/bootstrapchannelbuilder.go#L685-L699) to use >1.8.0 <=1.12.0 etc and use new manifest for >=1.12.0 (if you get what i know :-))

Post removing the `description` field the networking works again ..
 2018-10-10 11:49:10 +01:00
Justin Santa Barbara 20cb6fce23 Update weave bootstrapchannelbuilder version 
Follow on to #5845
 2018-10-09 09:03:14 -04:00
k8s-ci-robot 7b4133c823
Merge pull request #5812 from arturo-c/weave 
Add no_masq_local to weave network options.
 2018-10-05 16:55:53 -07:00
Arturo Contreras 5cbeb85ba8 Bump kops.2 for k8s 1.8. 2018-10-04 07:55:48 -06:00
Rohith aa700961b5 - fixing up the prometheus metrics annotation to indicates a https scheme 2018-10-03 11:39:35 +01:00
Rohith 97dc2beb71 Node Authorizer Client Fix 
- fixing up the client for reboots ... somewhat of a oversight on my part :-)
- added the reason to the node denial message
 2018-10-03 11:39:35 +01:00
Rohith 8401273b06 - fixing the reference to the import, goimports made an error 
- updating the version of the node-authorizer manifest
 2018-09-27 10:21:10 +01:00
k8s-ci-robot 403a22a750
Merge pull request #5290 from ripta/avpc-k8s-1.8 
Amazon VPC CNI: Kubernetes 1.8+ Manifests
 2018-09-21 08:27:48 -07:00
Joe Hohertz 2dbc044a16 bump verions in the boostrapchannelbuilder per @mikesplain 2018-09-19 15:31:46 -04:00
Will Thames 142d71f33f Update k8s-ec2-srcdst to v0.2.2 
v0.2.2 fixes a bug where k8s-ec2-srcdst can crash on node deletion.
This crash causes SourceDestinationCheck to remain set to true on
nodes created after this check. Such nodes cannot talk to calico
destinations in the *same* subnet.

Fixes kubernetes/kubernetes#66432
 2018-09-06 09:46:21 +10:00
Sandeep Rajan 0bdf97897f update version and manifest 2018-08-30 14:51:43 -04:00
Justin Santa Barbara 4d216cb001 Release 1.10.0 2018-08-18 07:06:02 -04:00
k8s-ci-robot 5ec34189d9
Merge pull request #5608 from rajansandeep/updatedeployment 
Update CoreDNS deployment
 2018-08-15 10:02:00 -07:00
Sandeep Rajan 7a262f7e6f update deployment 
update version
 2018-08-15 11:16:31 -04:00
Justin Santa Barbara 0b622a5853 weave: bump version for 2.3.0 
We forgot to do this in #5595
 2018-08-14 19:30:06 -04:00
k8s-ci-robot 5f13be3741
Merge pull request #5552 from brb/weave-2.4.0 
Bump Weave Net to v2.4.0
 2018-08-14 15:41:51 -07:00
Martynas Pumputis 6026498e4b Bump Weave Net to v2.4.0 
- New manifest for k8s 1.8.0 due to FileOrCreate mount type.
- RBAC for updating NetworkUnavailable node status.
- Dropped support for legacy NetworkPolicy (k8s pre-1.7).

Full changelog: https://github.com/weaveworks/weave/releases/tag/v2.4.0
 2018-07-30 09:57:43 +02:00
Zivago Lee a846b217c1 bump version 2018-07-26 07:45:42 -07:00
Justin Santa Barbara 9320948a8a Mark 1.10.0-beta.1 2018-07-23 11:16:03 -04:00
k8s-ci-robot 56ccfac26d
Merge pull request #5317 from gambol99/node_registration 
Node Authorization Service
 2018-07-19 05:17:41 -07:00
k8s-ci-robot 00d7237b19
Merge pull request #5426 from aleerizw/update-kube-router-manifest 
Added metrics port and health check to kube-router
 2018-07-15 12:15:05 -07:00
Ali Rizwan 7dfdc5d632 Update version 2018-07-11 12:11:42 +02:00
Rodrigo Menezes 414b3a780b Rename hept.io authenticator to aws authenticator 2018-07-08 10:10:19 -07:00
Rohith 79cff25eb4 - fixing up on the comments raised by on the review 2018-07-06 20:14:35 +01:00
Rohith 528117b631 - adding the node authorization service into kops 
- updated the Makefile to build the image (i think)
 2018-07-06 20:14:35 +01:00
Ripta Pasay 106eb3861c Add amazon-vpc-routed-eni manifest for k8s >=1.10 without the use of k8s-ec2-srcdst 2018-07-02 23:24:59 +00:00
Ripta Pasay 6b8331f42b Add new amazon-vpc-routed-eni manifest for k8s >=1.8 using rbac.authorization.k8s.io/v1 instead of v1beta1 2018-07-02 23:16:43 +00:00
k8s-ci-robot 02daea62ae
Merge pull request #5119 from ripta/avpc-custom-image 
Amazon VPC CNI: Upgrade to v1.0 and Allow Custom Images
 2018-06-10 22:40:27 -07:00
Ripta Pasay 3610bf20d0 Upgrade default Amazon VPC Networking image to v1.0.0 2018-06-05 15:39:36 -07:00
Rodrigo Menezes 1fdbb2fe47 Update heptio authenticator 2018-06-05 11:45:08 -07:00
k8s-ci-robot 53b2715413
Merge pull request #5095 from martinhoefling/upgrade_flannel_v0.10.0 
Upgrade to flannel v0.10.0 and explicitly specify amd64 arch
 2018-06-01 23:04:57 -07:00
Kashif Saadat 1b9162b7b6 Correct PSP RoleBinding with namespace for kube-system 2018-06-01 17:52:42 +01:00
k8s-ci-robot 775b877a10
Merge pull request #5197 from rdrgmnzs/heptio_authenticator 
Setup heptio authenticator
 2018-06-01 07:12:55 -07:00
k8s-ci-robot 56310f2783
Merge pull request #5208 from nebril/bump-cilium 
Bump Cilium version to released
 2018-05-31 19:06:59 -07:00
Kashif Saadat e9dae6121b PSP Updates, new apiGroup for k8s v1.10 and limit kube-system SA access to its own namespace 2018-05-30 12:30:03 +01:00
Maciej Kwiek 0c987d4dbd Bump Cilium version 
Signed-off-by: Maciej Kwiek <maciej@covalent.io>
 2018-05-30 12:26:16 +02:00
Sandeep Rajan f173476007 update manifest 2018-05-24 08:20:41 -04:00
Rodrigo Menezes 5ce8f9e712 Setup heptio authenticator 2018-05-23 17:48:33 -07:00
Martin Hoefling a5b2778aa5 Upgrade to flannel to v0.10.0 in bootstrapchannelbuilder.go 2018-05-11 15:45:55 +02:00
k8s-ci-robot cc25a5a977
Merge pull request #4041 from rajansandeep/corednskops 
CoreDNS in Kops as an addon
 2018-05-10 15:26:54 -07:00
Kashif Saadat 0057405d3b Make LogSeveritySys configurable for Canal Networking 2018-04-26 15:47:29 +01:00
Sandeep Rajan eaac019e34 CoreDNS in kops as an addon 
fix test
 2018-04-20 17:03:17 -04:00
JuanJo Ciarlante 01ca06ef2b upgrade kube-dns to 1.14.10, fixes #4986 2018-04-18 08:58:15 -03:00
Justin Santa Barbara a5e58b243e Release 1.9.0 2018-04-11 10:07:36 -04:00
k8s-ci-robot 063afb28d7
Merge pull request #4954 from brb/weave-net-2.3.0 
Bump Weave Net to 2.3.0
 2018-04-10 22:24:55 -07:00
k8s-ci-robot 22a34586cc
Merge pull request #3498 from gambol99/psp 
Pod Security Policies
 2018-04-10 07:43:09 -07:00
Rohith cc695c3805 - changing the version to >= 1.9 as it only really makes sense on theses versions 2018-04-10 14:20:41 +01:00
Martynas Pumputis 85758f8909 Bump Weave Net to 2.3.0 2018-04-10 10:57:38 +02:00
k8s-ci-robot a8ca362e6b
Merge pull request #4851 from sergeylanzman/bump-kube-dns 
Update kube-dns to 1.14.9
 2018-04-09 15:50:08 -07:00
Rohith e8e3ac0c91 Pod Security Policies 
The current implementation doesn't work with PodSecurityPolicies enabled due to no psp policies. This PR adds a default psp policy for the kubelet users and and the kube-system namespace
 2018-04-04 17:43:11 +01:00
Justin Santa Barbara 367f534f89 Release 1.9.0-beta.2 2018-04-04 06:21:12 -07:00
Justin Santa Barbara 98ff1bf726 Release 1.9.0-beta.1 2018-04-02 06:12:53 -07:00
k8s-ci-robot 7d2b1cb5b0
Merge pull request #4698 from andrewsykim/digitalocean-addons 
digitalocean: external cloud controller addon
 2018-04-01 19:02:02 -07:00
Sergey Lanzman 4df6c29828 Update kube-dns to 1.14.9 2018-04-02 00:39:19 +03:00
Justin Santa Barbara 4fc3e7114d kops release 1.9.0 alpha.3 2018-03-26 13:07:59 -04:00
k8s-ci-robot fc1bed4353
Merge pull request #4224 from nebril/cilium-support 
Add Cilium as CNI plugin
 2018-03-26 07:49:02 -07:00
Justin Santa Barbara d49ac2268a Release 1.9.0-alpha.2 2018-03-22 01:23:06 -04:00
Maciej Kwiek bca52dede9 Add Cilium as CNI plugin 
Signed-off-by: Maciej Kwiek <maciej@covalent.io>
 2018-03-20 13:07:26 +01:00
Justin Santa Barbara bf588f925d Update kopeio-networking to 1.0.20180319 2018-03-19 23:36:24 -04:00
andrewsykim b6bdc29d01 digitalocean: external cloud controller addon 2018-03-19 11:14:08 -04:00
Felipe Cavalcanti 4d7d8b86b3 roll back calico version in bootstrapchannelbuilder to 2.6.7, increment the suffix and little docs improvement 2018-03-06 19:43:00 -03:00
Felipe Cavalcanti 468d941d99 [Calico] Activate node controller in calico-kube-controllers and add CALICO_K8S_NODE_REF in calico-node, this commit fixes #3224 and #4533 2018-03-06 12:33:26 -03:00
Justin Santa Barbara 16f7b31e1a Release 1.9.0-alpha.1 2018-03-01 01:23:22 -05:00
Justin Santa Barbara cfedee8801
Update canal channel version 2018-02-28 22:16:03 -05:00
Justin Santa Barbara 5809592f35
Merge branch 'master' into canal-n-calico-to-2-6-7 2018-02-28 22:06:28 -05:00
Erik Stidham 3484febe0d Update Calico and Canal to use calico node v2.6.7 
- Canal updated cni to v1.11.2
 2018-02-28 09:54:39 -06:00
Aleksandar Topuzovic d0acd90b3d
Bump versions with `-kops.1` 2018-02-28 10:36:22 +00:00
Justin Santa Barbara 7b647431b1 Update kube-dns to 1.14.8 2018-02-20 21:09:16 -05:00
Rohith c8e4a1caf8 Kubernetes Calico TLS 
The current implementation when Etcd TLS was added does not support using calico as the configuration and client certificates are not present. This PR updates the calico manifests and adds the distribution of the client certificate
 2018-02-14 23:41:45 +00:00
Justin Santa Barbara d96b6ee865 Bump weave version to 2.2.0 
Follow-on to #4413
 2018-02-11 12:57:19 -05:00
k8s-ci-robot 357eadd244
Merge pull request #4405 from romana/romana-v2.0.2 
Update versions for romana container images
 2018-02-07 18:00:43 -08:00
Caleb Gilmour d132c0c1a0 Update versions for romana container images. 2018-02-07 23:06:08 +00:00
Chris Phillips b620deba0f adds CONN_LIMIT to the WeaveNetworkingSpec 
Weave limits the number of connections between peers and the default is 30.
As described here: ce9c5162bd/site/kubernetes/kube-addon.md
Setting the CONN_LIMIT environment variable controls this setting. Adding a field in the
WeaveNetworkingSpec and adding the env var to the associated templates lets users
have clusters larger than 30 nodes and still use weave's peer discovery

The weave authors have indicated that 100 is not an unreasonable setting.
https://github.com/weaveworks/weave/issues/1621#issuecomment-152713060
 2018-02-07 09:52:12 -08:00
Justin Santa Barbara 712144a84a Update kopeio-networking to 1.0.20180203 
No major changes, just version updates.
 2018-02-03 13:14:23 -05:00
k8s-ci-robot 752c7bd96d
Merge pull request #4306 from justinsb/update_kopeio_networking 
Bump kopeio-networking to 1.0.20180120
 2018-01-21 12:45:25 -08:00
Justin Santa Barbara 54af8e41b9 Bump kopeio-networking to 1.0.20180120 2018-01-20 16:33:09 -05:00
Blake c78336fa99 Update bootstrap calico versions 2018-01-19 13:42:00 -08:00
Manuel de Brito Fontes 2e05dd17aa Add support for Amazon VPC CNI plugin 2017-12-17 18:08:24 -03:00
Kubernetes Submit Queue 96ee92a4b3
Merge pull request #4063 from rajivm/fix-canal-hostport 
Automatic merge from submit-queue.

Support for hostPort when using canal

Similar to: https://github.com/kubernetes/kops/pull/3206

Without this, we are unable to get `hostPort` working with `canal`. The same is true for `flannel`, but this does add support for plain flannel.
 2017-12-15 07:00:22 -08:00
Rajiv Makhijani 2c42970c24 Bump canal version for kops manifest tweaks 2017-12-14 14:42:37 -08:00
Kubernetes Submit Queue a19d90143f
Merge pull request #4062 from justinsb/bump_weave_for_212 
Automatic merge from submit-queue.

Bump weave version in bootstrapchannelbuilder

2.1.3 upstream becomes 2.1.3-kops.1, so if we need to make our own
"packaging" changes, we can do 2.1.3-kops.2 etc.
 2017-12-14 06:25:41 -08:00
Kubernetes Submit Queue 9487dd4102
Merge pull request #4064 from justinsb/bump_flannel_version_for_3952 
Automatic merge from submit-queue.

Bump flannel packaging version
 2017-12-14 05:25:42 -08:00
Justin Santa Barbara 3e236283f3 Tag 1.8.0 2017-12-13 22:13:27 -05:00
Justin Santa Barbara e65d1b0608 Bump flannel packaging version 
For #3952
 2017-12-13 21:55:48 -05:00
Justin Santa Barbara 6f5036f0cd Bump weave version in bootstrapchannelbuilder 
2.1.3 upstream becomes 2.1.3-kops.1, so if we need to make our own
"packaging" changes, we can do 2.1.3-kops.2 etc.
 2017-12-13 21:29:20 -05:00
Mike Splain 96aefac318 Fix flannel error on starting 2017-11-28 21:39:08 -05:00
Mike Splain a2aa1da816 Fix flannel version 2017-11-28 16:26:46 -05:00
Justin Santa Barbara b8b7287e4a Bump versions to 1.8.0-beta.2 2017-11-28 13:27:58 -05:00
Kubernetes Submit Queue 967ed4acf5
Merge pull request #3928 from justinsb/kopeio_auth 
Automatic merge from submit-queue.

Update kopeio auth
 2017-11-27 15:02:12 -08:00
Kubernetes Submit Queue 0ade1dd2c4
Merge pull request #3822 from gambol99/dns_controller_optional 
Automatic merge from submit-queue.

DNS Controller Optional

The current implementation enforces a dns-controller is running; given the user can switch the make the kube-apiserver server Internal and then reuse the dns for the masterInternalName; this effectlively removes the need to run the service (assuming your not using it for pods, node and service dns)

- adding a disableDnsController to the ExternalDNS spec provides a toggle on the addon (name is definitely up for debate)
- the default behaviour remains, the dns-controller is always pushed as an addon
 2017-11-26 15:03:47 -08:00
Justin Santa Barbara d0944714f4 Update kopeio auth 2017-11-26 15:32:14 -05:00