kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
14,404 Commits 31 Branches 256 Tags 544 MiB
Commit Graph

4381 Commits

Author SHA1 Message Date
John Gardiner Myers e0915887ed Move asset copying out of apply_cluster 2021-06-05 21:17:50 -07:00
John Gardiner Myers 12465ac27c Simplify extraction of service-account public keys 2021-06-05 16:38:28 -07:00
John Gardiner Myers bceb901ce4 Fix merge error 2021-06-05 16:38:27 -07:00
John Gardiner Myers 7240c5bb8d Preserve old keys/certs in Keypair.Render() 2021-06-05 16:38:27 -07:00
John Gardiner Myers 15319ae432 Make serialization of keyset items stable 2021-06-05 16:38:27 -07:00
John Gardiner Myers fa77f8b964 Rename fi.Keystore.StoreKeypair to StoreKeyset 2021-06-05 16:38:26 -07:00
John Gardiner Myers 2300d89591 Rename pki.FindKeypair to FindPrimaryKeypair 2021-06-05 16:38:26 -07:00
John Gardiner Myers 3127dacc0c Expose all service-account keys through OIDC 2021-06-05 16:38:25 -07:00
John Gardiner Myers ed1f6ff79e Refactor StoreKeypair and AddCert 2021-06-05 16:38:25 -07:00
John Gardiner Myers 0364a3af25 Refactor FindKeypair interfaces 2021-06-05 16:38:24 -07:00
John Gardiner Myers 927b321e45 Make parsed Keyset type public 2021-06-05 16:38:24 -07:00
John Gardiner Myers 6b2250a9af Have apiserver trust all service-account keys 2021-06-05 16:38:08 -07:00
Kubernetes Prow Robot 7001de3486
Merge pull request #11688 from hakman/ipv6-calico 
Add options for configuring IPv4 and IPv6 support with Calico
 2021-06-05 16:06:38 -07:00
John Gardiner Myers b21370d118 Add PrimaryId field to KeysetSpec 2021-06-05 16:00:54 -07:00
John Gardiner Myers 91852b9313 Simplify keyset loading 2021-06-05 16:00:54 -07:00
Kubernetes Prow Robot fdd5b68b58
Merge pull request #11698 from johngmyers/fix-dryrun 
Fix panic in dryrun report
 2021-06-05 12:14:38 -07:00
John Gardiner Myers 3d2cd26eff Fix panic in dryrun report 2021-06-05 11:05:25 -07:00
Kubernetes Prow Robot 83cd195aa2
Merge pull request #11329 from olemarkus/ig-max-hop-limit 
Set IMDSv2 on by default for nodes and apiservers
 2021-06-05 01:14:38 -07:00
Ole Markus With b3a60d3bc2 Set IMDSv2 on by default for nodes 
Bastion, nodes, and api servers get limit of 1
API servers tend to run pods requiring metadata access. The hop limit
depends on CNI, but all should work with a limit of 3.
 2021-06-05 08:17:12 +02:00
Ciprian Hacman 70f77a34d1 Add options for configuring IPv4 and IPv6 support with Calico 2021-06-04 17:05:40 +03:00
John Gardiner Myers b45c0b4489 Remove InstanceGroup from NodeupModelContext 2021-06-03 21:27:01 -07:00
John Gardiner Myers 5d5a410ea8 Move EnableLifecycleHook to NodeConfig 2021-06-03 21:27:01 -07:00
John Gardiner Myers c3c1aca3c1 Include AuxConfig output in TestBootstrapUserData 2021-06-03 21:09:45 -07:00
John Gardiner Myers eb09d31a3c Pass AuxConfig to nodeup 2021-06-03 21:04:21 -07:00
John Gardiner Myers 2e1629c610 Introduce nodeup.AuxConfig 2021-06-03 20:37:22 -07:00
Kubernetes Prow Robot 874d476cc4
Merge pull request #11673 from johngmyers/simplify-lifecycle 
Make Lifecycle field non-pointer
 2021-06-03 18:41:26 -07:00
Ciprian Hacman 88e60e8f3e Add support for Docker v20.10.7 2021-06-03 11:16:08 +03:00
John Gardiner Myers 7c9e7e9286 Make Lifecycle field non-pointer 2021-06-02 23:02:16 -07:00
Kubernetes Prow Robot 043d0a8b37
Merge pull request #11672 from johngmyers/dead-code 
Remove dead code
 2021-06-02 22:37:38 -07:00
John Gardiner Myers 969e95a36b Remove dead code 2021-06-02 21:17:55 -07:00
John Gardiner Myers 1b1b18f5ab Clean up straggling autogenerated code 2021-06-02 20:59:24 -07:00
Kubernetes Prow Robot 91d8ffeea5
Merge pull request #11592 from srikiz/DO-Use-Interfaces 
[Digital Ocean] Code cleanup with no functional modifications
 2021-06-01 07:18:27 -07:00
srikiz 4f295dc214 Incorporate review comments 2021-06-01 18:47:19 +05:30
Kubernetes Prow Robot 373c37d948
Merge pull request #11659 from olemarkus/cilium-1-10-default 
Bump default cilium to 1.10
 2021-06-01 01:06:27 -07:00
Ole Markus With 553fdd5840 Bump default cilium to 1.10 2021-06-01 08:12:20 +02:00
John Gardiner Myers 84807874fc Reduce logging chatter 2021-05-31 20:48:37 -07:00
John Gardiner Myers fcf5495f1d Skip some steps if not doing cluster lifecycle 2021-05-31 20:48:32 -07:00
John Gardiner Myers b6f3da617b Fix copying of images from docker.io 2021-05-31 20:29:20 -07:00
Peter Rifel 708a5db365
Consolidate CSI livenessprobe images for multi-arch support 
This manifest includes two liveness-probe containers but they use different images.
The k8s.gcr.io image is multi-arch but the quay.io image is not.
By only using the k8s.gcr.io one we should fix arm64 clusters now that EBS CSI is enabled by default.
 2021-05-31 14:19:00 -05:00
John Gardiner Myers 02f3ba8cd0 Set lifecycle in unit tests 2021-05-31 10:39:33 -07:00
John Gardiner Myers 3fd0b6c104 Require all HasLifecycle tasks to have lifecycle set 2021-05-31 10:39:32 -07:00
Kubernetes Prow Robot 77b1bfcdfb
Merge pull request #11640 from johngmyers/copy-image 
Rename CopyDockerImage to CopyImage
 2021-05-31 01:20:26 -07:00
John Gardiner Myers b82b129a54 Remove fallback support for legacy IAM 2021-05-30 16:52:42 -07:00
John Gardiner Myers d70a11aaa6 Rename CopyDockerImage to CopyImage 2021-05-30 16:16:26 -07:00
Kubernetes Prow Robot 10cc4392c3
Merge pull request #11618 from johngmyers/warmpool-lifecycle 
Set lifecycle on WarmPool task
 2021-05-30 11:34:25 -07:00
John Gardiner Myers 95aa3fd13e Rename "DockerImage" to "DownloadLocation" 2021-05-29 16:40:56 -07:00
John Gardiner Myers 34c6f7f295 Rename "ContainerAssets" to "ImageAssets" 2021-05-29 16:36:55 -07:00
John Gardiner Myers 4c2508b6ec Add "kops get assets" command 2021-05-28 21:33:46 -07:00
John Gardiner Myers 1c33270f91 Always set canonical location of assets 2021-05-28 21:33:46 -07:00
John Gardiner Myers 024b3653c0 Set lifecycle on WarmPool task 2021-05-28 20:05:44 -07:00
srikiz b5154bb360 Fix upup cloud.go dependencies based on the new interface spec, also update protokube 2021-05-28 22:37:47 +05:30
Kubernetes Prow Robot d93bafce05
Merge pull request #11620 from johngmyers/no-stage-kops 
Don't stage kops as file assets
 2021-05-28 02:58:24 -07:00
John Gardiner Myers 4bae3ee5b7 Don't stage kops as file assets 2021-05-28 00:11:07 -07:00
John Gardiner Myers 4338590270 Fix duplicate CopyFile tasks 2021-05-28 00:08:07 -07:00
srikiz 4cecc64f67 Move cloud.do from pkg/resources/digitalocean/ckoud.go to upup/pkg/fi/cloudup/do directory 2021-05-28 02:17:55 +05:30
Kubernetes Prow Robot cd898d095b
Merge pull request #11602 from ryan-dyer-sp/Issue-11599 
Add init image field for Amazon VPC CNI
 2021-05-27 07:56:24 -07:00
Kubernetes Prow Robot 46e1616467
Merge pull request #11605 from olemarkus/enable-aws-csi-by-default 
Enable AWS EBS CSI driver by default
 2021-05-26 21:34:23 -07:00
Ole Markus With 04b15e404e Enable AWS EBS CSI driver by default 2021-05-26 08:47:14 +02:00
liranp 1d97fbd78c
feat(spot): support for api load balancer with aws/nlb 2021-05-26 03:35:37 +03:00
Ryan Dyer 65b750e732 add init image field 2021-05-25 17:57:49 +00:00
Justin Santa Barbara 1588a506a6 First operator integration: CoreDNS 
Hidden behind a feature-flag, but when the UseAddonOperators feature
flag is set, we now use the cluster-addons CoreDNS operator instead of
our built-in manifests.
 2021-05-25 06:29:07 -04:00
Kubernetes Prow Robot fcef4fc1bf
Merge pull request #11594 from hakman/calico-3.19.1 
Update Calico to v3.19.1
 2021-05-24 23:32:22 -07:00
Ciprian Hacman ca39686c29 Update Calico to v3.19.1 2021-05-25 07:34:50 +03:00
John Gardiner Myers 6ac345e23d Use the OnDelete updateStrategy for AWS VPC CNI DaemonSet 2021-05-24 19:55:19 -07:00
John Gardiner Myers 5e62235403 Remove unused files 2021-05-24 08:25:58 -07:00
Kubernetes Prow Robot 3a376e9048
Merge pull request #11387 from johngmyers/aws-config 
Enable reading shared config when possibly from CLI
 2021-05-23 15:15:38 -07:00
Ole Markus With 2d643fff11 Don't set the master address for aws ccm 
Use the kubernetes.default service for now. Ideally we would not rely on this as this in turn relies on CNI. But fixing this means also fixing PKI, so we have to revisit this later
 2021-05-23 22:24:31 +02:00
Justin Santa Barbara 53ff00cf5d Avoid error when first creating VPC with IPv6 
When the VPC isn't yet created, the search for associations was failing
as we were trying to pass an empty ID.
 2021-05-23 09:49:28 -04:00
Kubernetes Prow Robot 76e829987c
Merge pull request #11566 from olemarkus/ccm-fixes 
Set flags on AWS CCM mimicking KCM
 2021-05-23 01:03:37 -07:00
Kubernetes Prow Robot b0cb52899d
Merge pull request #11558 from johngmyers/fix-remove-role 
Fix deletion of IAM roles and policies
 2021-05-22 11:29:37 -07:00
Ole Markus With 3d90769e1c Set flags on AWS CCM mimicking KCM 2021-05-22 14:15:53 +02:00
Kubernetes Prow Robot d906f83121
Merge pull request #11561 from olemarkus/actually-add-snapshot-controller 
Add snapshot-controller
 2021-05-22 02:03:37 -07:00
Ole Markus With 1868313497 Add snapshot-controller 2021-05-22 09:19:35 +02:00
Ciprian Hacman 93a09e5419 Update metrics-server to v0.4.4 2021-05-22 09:39:14 +03:00
Ciprian Hacman 2df8e56fc9 Allow using insecure TLS for metrics-server with Kubernetes 1.19+ 2021-05-22 09:38:31 +03:00
John Gardiner Myers 2cf967b2de Fix deletion of IAM roles and policies 2021-05-21 17:46:15 -07:00
Ole Markus With 5869d4e6d4 Bump default cilium to 1.9.7 2021-05-21 18:54:03 +02:00
Ole Markus With 46e13c0009 Bump snapshot-controller version 
Update upup/models/cloudup/resources/addons/storage-aws.addons.k8s.io/v1.15.0.yaml.template

Co-authored-by: Peter Rifel <rifelpet@users.noreply.github.com>

Update upup/models/cloudup/resources/addons/storage-aws.addons.k8s.io/v1.15.0.yaml.template

Co-authored-by: Peter Rifel <rifelpet@users.noreply.github.com>
 2021-05-21 15:40:40 +02:00
Kubernetes Prow Robot 06835e219d
Merge pull request #11542 from rifelpet/tf-fn 
Add support for arbitrary terraform functions
 2021-05-21 06:30:53 -07:00
Kubernetes Prow Robot 8a6ec1416c
Merge pull request #11491 from olemarkus/cas-update-manifest 
Update CAS manifest
 2021-05-21 04:52:46 -07:00
Kubernetes Prow Robot 8e938ba5ee
Merge pull request #11500 from dntosas/coredns-bump-manifest 
Bump CoreDNS manifests to latest stable version 1.8.3
 2021-05-21 00:28:57 -07:00
Peter Rifel 01138a3995
Add support for arbitrary terraform functions 
This allows terraformWriter.LiteralFunctionExpression to be used with any terraform function.

The arguments must be strings, which means that any string arguments must include quotes.
 2021-05-19 22:40:34 -05:00
Kubernetes Prow Robot 6fa20ebe83
Merge pull request #11540 from rifelpet/tf-b64 
Support terraform 0.12+'s filebase64() in json output
 2021-05-19 20:35:04 -07:00
Kubernetes Prow Robot 4a5d04d94f
Merge pull request #11497 from johngmyers/cleanup-iam 
Cleanup orphaned IAM service account roles in direct render
 2021-05-19 18:35:05 -07:00
Peter Rifel c9f810d57e
Support terraform 0.12+'s filebase64() in json output 
Originally the JSON output was meant as a bridge between the 0.11 and 0.12 support.
Now that we've dropped support for 0.11, we can use filebase64() instead of encoding the userdata in the file ourselves.
 2021-05-19 17:42:50 -05:00
Kubernetes Prow Robot 12b98196aa
Merge pull request #11535 from hakman/containerd-1.4.6 
Update containerd to v1.4.6
 2021-05-19 12:00:51 -07:00
Kubernetes Prow Robot da6eee03b0
Merge pull request #11531 from mitch000001/openstack-configurable-server-group-affinity 
feat(openstack): enable configuration of servergroup affinities
 2021-05-19 11:10:50 -07:00
Ciprian Hacman 6e6a224f9d Update containerd to v1.4.6 2021-05-19 20:27:28 +03:00
Kubernetes Prow Robot c28783c581
Merge pull request #11514 from ulfox/cilium/prometheus-scrape-annotations 
[addons/networking.cilium.io] enable prometheus scraping
 2021-05-19 10:12:51 -07:00
Ole Markus With 2fb1861528 Update CAS manifest 
Upstream examples were missing a number of improvements.
This commit also adds template functions for making controllers such as CAS more HA on HA clusters
 2021-05-19 16:12:51 +02:00
Michael Wagner e4a2a5b86c feat(openstack): enable configuration of servergroup affinities 
This enables us to change the ServerGroup affinity policies using
annotations on instance groups.

The default affinity policy still is "anti-affinity".
 2021-05-19 13:11:08 +02:00
Kubernetes Prow Robot 16f7208c8c
Merge pull request #11525 from olemarkus/ebs-csi-default-fs 
Set default fstype for ebs volumes to ext4
 2021-05-19 02:38:51 -07:00
Ole Markus With 05cac12c19 Set default fstype for ebs volumes to ext4 2021-05-19 09:54:31 +02:00
Christos Kotsis 34ac1ad8d4
[feedback/tests] 2021-05-19 09:59:16 +03:00
Kubernetes Prow Robot e8e5bf2ed3
Merge pull request #11517 from olemarkus/aws-lb-default-tags 
Add default tags to LB controller and cilium eni resources
 2021-05-18 21:50:50 -07:00
Kubernetes Prow Robot fe7d6e5516
Merge pull request #11442 from hakman/ipv6 
Add initial support for configuring IPv6 with AWS
 2021-05-18 21:02:50 -07:00
Ciprian Hacman cedbe1f360 Add initial support for configuring IPv6 with AWS 2021-05-19 06:21:07 +03:00
Ole Markus With 22f3a4aff8 Add default tags to LB controller and cilium eni resources 2021-05-18 19:02:40 +02:00
Christos Kotsis bb98caeed3
[tests/feedback] fix missing quote function with printf 2021-05-18 19:42:50 +03:00
Christos Kotsis 2ba0843c91
Update upup/models/cloudup/resources/addons/networking.cilium.io/k8s-1.16-v1.10.yaml.template 
Co-authored-by: John Gardiner Myers <jgmyers@proofpoint.com>
 2021-05-18 19:14:15 +03:00