kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
15,395 Commits 31 Branches 256 Tags 544 MiB
Commit Graph

1194 Commits

Author SHA1 Message Date
Kubernetes Prow Robot 74f9a8e2fb
Merge pull request #12342 from eddycharly/irsa-wildcard 
feat: add support for wildcard in roles generated for IRSA
 2021-09-22 16:09:10 -07:00
Charles-Edouard Brétéché 5f523366d6 feat: add support for wildcard in roles generated for IRSA 2021-09-23 00:24:45 +02:00
Kubernetes Prow Robot d60469ff09
Merge pull request #12391 from olemarkus/sleep-test 
Add sleep to upgrade-ab scenario
 2021-09-22 11:30:33 -07:00
Ole Markus With 5cdcff163c Add sleep to upgrade-ab scenario 2021-09-22 19:51:30 +02:00
Ole Markus With f06fcc5af2 Add specific taints to dns-controller. 
Also set kops-controller as cluster critical, not node critical
 2021-09-22 16:40:08 +02:00
Kubernetes Prow Robot bb81c744f0
Merge pull request #12379 from rifelpet/dump-k8s-ssh 
kubetest2 - fix parsing output from toolbox dump
 2021-09-21 07:34:24 -07:00
Peter Rifel e423650857
Fix parsing output of kops toolbox dump 2021-09-21 08:54:52 -05:00
justinsb 3e83b771d6 GCE: For IPAlias or Custom Routes, we must recognize source by CIDR 
SourceTags are not recognized when using IPAlias or custom routes (aka
kubenet), so we must recognize by CIDR instead.
 2021-09-21 08:20:17 -04:00
Kubernetes Prow Robot be2676076c
Merge pull request #12334 from dntosas/bump-amis 
[channels] Bump AWS/GCP/Azure Ubuntu AMIs to latest
 2021-09-21 04:52:24 -07:00
Kubernetes Prow Robot 8f42a4a689
Merge pull request #12368 from justinsb/gce_firewall_rules_always_ipv6 
GCE: Always have IPv6 rules in "ipv6 mode"
 2021-09-20 20:38:23 -07:00
justinsb 16fc5e8cec GCE: Don't create utility subnets in private topology 
We don't need them on GCE, and in fact we don't support them with IP Alias.
 2021-09-20 09:31:33 -04:00
justinsb 76f816f483 GCE: Always have IPv6 rules in "ipv6 mode" 
If we don't specify some SourceRanges, it defaults to 0.0.0.0/0, which
is IPv4 and confusing.
 2021-09-20 09:26:28 -04:00
Peter Rifel 6deeda1ea2
Fix parsing of kops toolbox dump yaml output 
Also add logging to help troubleshoot which command is failing
 2021-09-20 07:06:08 -05:00
Kubernetes Prow Robot 3101180638
Merge pull request #12372 from rifelpet/dump-k8s-ssh 
kubetest2 - add support for dumping k8s resources via SSH
 2021-09-19 21:26:09 -07:00
Peter Rifel 5526744471
kubetest2 - add support for dumping k8s resources via SSH 
Some of our jobs are currently failing because `kops validate cluster` times out waiting for the k8s API DNS record to be updated.
To assist in troubleshooting, we can get insight into the k8s resources present on the cluster even though the DNS record hasnt been set if we use kubectl on the control plane host via SSH.

This will SSH into a control plane host when the local kubectl dump fails.
 2021-09-19 18:21:37 -05:00
Kubernetes Prow Robot 9eb28b93fe
Merge pull request #12365 from rifelpet/sctp 
Fix version check in cilium SCTP test skipping
 2021-09-19 08:38:08 -07:00
Kubernetes Prow Robot 34bad9bfc9
Merge pull request #12360 from hakman/calico-3.20.1 
Update Calico to v3.20.1
 2021-09-19 07:54:08 -07:00
Peter Rifel cf16b4a6bf
Fix version check in cilium SCTP test skipping 2021-09-19 09:12:05 -05:00
Kubernetes Prow Robot 8ab1f8bbc4
Merge pull request #12355 from justinsb/gate_ipv6_permissions 
Only add IPv6 IAM permissions if using IPv6
 2021-09-19 00:54:08 -07:00
dntosas dc5926520d
[channels] Bump AWS/GCP/Azure Ubuntu AMIs to latest 
Signed-off-by: dntosas <ntosas@gmail.com>
 2021-09-19 10:03:52 +03:00
Ciprian Hacman faa66c6597 Update Calico to v3.20.1 2021-09-19 09:31:39 +03:00
justinsb db1ba01e94 Only add IPv6 IAM permissions if using IPv6 
This avoids users wondering what these permissions are for until we
need them.
 2021-09-18 13:49:40 -04:00
Kubernetes Prow Robot 7f7a78a285
Merge pull request #12322 from rifelpet/managed-files2 
Create a second Terraform provider for managed files
 2021-09-18 10:30:08 -07:00
Peter Rifel 8d14376708
Skip SCTP e2e tests on cilium + k8s 1.23 2021-09-17 19:30:20 -05:00
Peter Rifel 476eb96970
./hack/update-expected.sh 2021-09-17 18:08:59 -05:00
Peter Rifel 3cc7162089
Remove TerraformJSON test 
The FF is deprecated and would require a lot of effort to support disabling TerraformManagedFiles (which is required) in this one integration test case
 2021-09-17 06:42:27 -05:00
Peter Rifel 9a193d4001
Fix example permissions boundary ARN 2021-09-16 20:11:33 -05:00
Peter Rifel 5247bb8cc2
./hack/update-expected.sh 2021-09-16 20:04:36 -05:00
Ole Markus With dc4c559d41 Set some needed defaults for cloud ipam 2021-09-16 21:11:09 +02:00
Ole Markus With 1323ed9040 Add more tolerations to kops-controller and CCM . 
CCM and kops-controller taint each other out. This will make them
schedule, and schedule earlier.
 2021-09-16 21:09:45 +02:00
Ole Markus With a3a2a9c3bf Have nodeup assign an ipv6 prefix 2021-09-16 19:28:07 +02:00
Ole Markus With 384b9796f7 Don't set cluster ip if we use cloud ipam 2021-09-16 19:26:48 +02:00
Ole Markus With 88bd1953ce Have kops-controller assign instance ipv6 prefix to node 2021-09-16 19:25:19 +02:00
Ole Markus With 02f29bdfe7 Add test for cloudipam 2021-09-16 19:25:16 +02:00
Peter Rifel 62a232866b
Upgrade hcl to 2.10.1 2021-09-12 07:32:30 -04:00
Kubernetes Prow Robot 1b431b4c9c
Merge pull request #11628 from olemarkus/gpu-runtime 
Pre-install nvidia container runtime + drivers on GPU instances
 2021-09-11 13:00:07 -07:00
Ole Markus With bba3c3abfe Bump aws ebs csi driver to 1.2.1 2021-09-11 14:15:31 +02:00
Kubernetes Prow Robot 900e4e15c7
Merge pull request #12303 from olemarkus/bump-snapshot-controller-221 
Bump snapshot-controller to 4.2.1
 2021-09-11 01:14:05 -07:00
Ole Markus With e44d0061f3 Bump snapshot-controller to 4.2.1 2021-09-11 08:37:54 +02:00
Peter Rifel 0d13da839a
Use MasterInternalName for gossip cluster SA issuer 
This reverts a change introduced earlier in 1.22 that resulted in existing service account tokens becoming invalid after a kops upgrade.
 2021-09-10 14:40:07 -04:00
Kubernetes Prow Robot 39eb930646
Merge pull request #12290 from rifelpet/imds-ipv6 
Enable IMDS IPv6 endpoint
 2021-09-09 06:04:11 -07:00
Peter Rifel e5bb1f5800
./hack/update-expected.sh 2021-09-08 20:57:49 -05:00
Peter Rifel 37d8c5a996
Fix cluster spec typo in CCM integration tests 2021-09-08 20:52:52 -05:00
Peter Rifel d2c8d4a4fb
Update aws-sdk-go 2021-09-08 10:39:04 -05:00
Ole Markus With f5fed2a08d Move nvidia config under containerd 2021-09-05 20:28:07 +02:00
Ole Markus With dae4b123ba Add labels and taints to gpu nodes 2021-09-05 20:17:06 +02:00
Ole Markus With b144304240 Install nvidia device driver addon 2021-09-05 20:09:04 +02:00
Ole Markus With 4ab75b01cb Have instances learn about their GPU capabilities 2021-09-05 20:09:04 +02:00
Kubernetes Prow Robot d06394def8
Merge pull request #12268 from olemarkus/fix-core 
Fix core manifest
 2021-09-05 00:57:19 -07:00
Kubernetes Prow Robot 8430efaf24
Merge pull request #12264 from hakman/controller-runtime-0.9.7 
Update controller-runtime to v0.9.7
 2021-09-04 05:59:18 -07:00