e2f7895700
GCE: When using calico, need to open up ipip protocol
...
We need to open up the ipip protocol, which wasn't previously enabled.
Future work could construct the firewall rules in a common library,
and then adapt them to the various clouds.
2021-09-21 21:20:24 -04:00
6be5fa97d3
Merge pull request #12375 from hakman/go-1.17.1
...
Update Go to v1.17.1
2021-09-21 09:20:24 -07:00
bb81c744f0
Merge pull request #12379 from rifelpet/dump-k8s-ssh
...
kubetest2 - fix parsing output from toolbox dump
2021-09-21 07:34:24 -07:00
e423650857
Fix parsing output of kops toolbox dump
2021-09-21 08:54:52 -05:00
6de7bce8b6
Merge pull request #12371 from justinsb/gce_source_tags_not_on_additional_ips
...
GCE: For IPAlias or Custom Routes, we must recognize source by CIDR
2021-09-21 06:00:24 -07:00
3e83b771d6
GCE: For IPAlias or Custom Routes, we must recognize source by CIDR
...
SourceTags are not recognized when using IPAlias or custom routes (aka
kubenet), so we must recognize by CIDR instead.
2021-09-21 08:20:17 -04:00
be2676076c
Merge pull request #12334 from dntosas/bump-amis
...
[channels] Bump AWS/GCP/Azure Ubuntu AMIs to latest
2021-09-21 04:52:24 -07:00
8f42a4a689
Merge pull request #12368 from justinsb/gce_firewall_rules_always_ipv6
...
GCE: Always have IPv6 rules in "ipv6 mode"
2021-09-20 20:38:23 -07:00
252f52f53d
Merge pull request #12370 from justinsb/gce_subnet_deletion
...
GCE: Fix subnet deletion
2021-09-20 17:12:23 -07:00
06924c58b7
Merge pull request #12373 from justinsb/gce_no_utility_subnets
...
GCE: Don't create utility subnets in private topology
2021-09-20 15:32:23 -07:00
5175875e67
Merge pull request #11578 from justinsb/promote_cidrmap_package
...
Move cidrmap to subnet package
2021-09-20 07:42:10 -07:00
1db266f15a
Move cidrmap to subnet package
...
This will enable reuse outside of gce.
2021-09-20 09:33:10 -04:00
16fc5e8cec
GCE: Don't create utility subnets in private topology
...
We don't need them on GCE, and in fact we don't support them with IP Alias.
2021-09-20 09:31:33 -04:00
1823bc5963
GCE: Fix subnet deletion
...
Subnets are created & owned for IPAlias mode. We weren't deleting
them because of a bug deleting when there is a hyphen in the name (and
by default they are named after the region, which has a hyphen).
2021-09-20 09:29:08 -04:00
76f816f483
GCE: Always have IPv6 rules in "ipv6 mode"
...
If we don't specify some SourceRanges, it defaults to 0.0.0.0/0, which
is IPv4 and confusing.
2021-09-20 09:26:28 -04:00
8b9f4ec41c
Merge pull request #12377 from rifelpet/dump-k8s-ssh
...
Fix parsing of kops toolbox dump yaml output
2021-09-20 05:44:09 -07:00
6deeda1ea2
Fix parsing of kops toolbox dump yaml output
...
Also add logging to help troubleshoot which command is failing
2021-09-20 07:06:08 -05:00
fb9a7f87c6
Merge pull request #12376 from justinsb/setlifecycleoverride_log_cleanup
...
Better logging in setLifecycleOverride
2021-09-20 05:02:10 -07:00
856a321a6f
Better logging in setLifecycleOverride
...
Remove the log message at V(8), it doesn't include any real
signal. This method also gets called a lot!
Also differentiate between the expected and unexpected cases when a
task implements/does not implement HasLifecycle.
2021-09-20 07:13:55 -04:00
19564888f4
Use "//go:build" lines together with "// +build" lines
...
The go command now understands //go:build lines and prefers them over // +build lines. The new syntax uses boolean expressions, just like Go, and should be less error-prone. As of this release, the new syntax is fully supported, and all Go files should be updated to have both forms with the same meaning. To aid in migration, gofmt now automatically synchronizes the two forms. For more details on the syntax and migration plan, see https://golang.org/design/draft-gobuild .
2021-09-20 07:35:31 +03:00
3101180638
Merge pull request #12372 from rifelpet/dump-k8s-ssh
...
kubetest2 - add support for dumping k8s resources via SSH
2021-09-19 21:26:09 -07:00
5399c8d627
Update Go to v1.17.1
2021-09-20 06:47:49 +03:00
a14f822f81
Merge pull request #12374 from justinsb/check_for_containerd_nil
...
Fix nil pointer error where containerd is not in use
2021-09-19 20:34:09 -07:00
8c66610b8d
Fix nil pointer error where containerd is not in use
...
We need to check for nil.
We could consider using Getters.
2021-09-19 21:59:22 -04:00
5526744471
kubetest2 - add support for dumping k8s resources via SSH
...
Some of our jobs are currently failing because `kops validate cluster` times out waiting for the k8s API DNS record to be updated.
To assist in troubleshooting, we can get insight into the k8s resources present on the cluster even though the DNS record hasnt been set if we use kubectl on the control plane host via SSH.
This will SSH into a control plane host when the local kubectl dump fails.
2021-09-19 18:21:37 -05:00
5ef81d99c6
Merge pull request #12367 from justinsb/aws_refactor_subnet
...
AWS: Move some subnet functions into AWS model
2021-09-19 15:22:08 -07:00
07ef70f34d
Merge pull request #12369 from justinsb/imdbv2_is_only-for_aws
...
Only configure IMDSv2 on AWS
2021-09-19 11:42:08 -07:00
e21a20e863
Only configure IMDSv2 on AWS
...
These aren't used on other clouds.
2021-09-19 14:00:54 -04:00
99764fb168
AWS: Move some subnet functions into AWS model
...
We want to move all these eventually, and this is preparing for better
GCE subnet support.
2021-09-19 12:08:09 -04:00
9eb28b93fe
Merge pull request #12365 from rifelpet/sctp
...
Fix version check in cilium SCTP test skipping
2021-09-19 08:38:08 -07:00
34bad9bfc9
Merge pull request #12360 from hakman/calico-3.20.1
...
Update Calico to v3.20.1
2021-09-19 07:54:08 -07:00
cf16b4a6bf
Fix version check in cilium SCTP test skipping
2021-09-19 09:12:05 -05:00
66edcba37b
Merge pull request #12354 from justinsb/kcm_conditions_fix
...
Fix controller defaults for both bootstrap tokens and ipv6
2021-09-19 06:48:08 -07:00
8ab1f8bbc4
Merge pull request #12355 from justinsb/gate_ipv6_permissions
...
Only add IPv6 IAM permissions if using IPv6
2021-09-19 00:54:08 -07:00
14ee53b1a7
Merge pull request #12356 from justinsb/dev-build-aws
...
Script for iterating development on AWS
2021-09-19 00:08:08 -07:00
dc5926520d
[channels] Bump AWS/GCP/Azure Ubuntu AMIs to latest
...
Signed-off-by: dntosas <ntosas@gmail.com>
2021-09-19 10:03:52 +03:00
faa66c6597
Update Calico to v3.20.1
2021-09-19 09:31:39 +03:00
a68294c03f
Merge pull request #12357 from justinsb/ec2_pending_should_be_terminated
...
Recognize pending EC2 instances as needed deletion
2021-09-18 23:20:08 -07:00
fc04d91bc7
Recognize pending EC2 instances as needed deletion
...
They should be deleted as they will presumably be running shortly.
Also, this function is used from `kops dump cluster` where presumably
instances are more likely to be pending.
2021-09-18 16:10:29 -04:00
db1ba01e94
Only add IPv6 IAM permissions if using IPv6
...
This avoids users wondering what these permissions are for until we
need them.
2021-09-18 13:49:40 -04:00
1562ce4e8a
Script for iterating development on AWS
...
Somewhat opinionated, but should be an easy and quick way to build for
dev in most cases.
2021-09-18 13:42:14 -04:00
7f7a78a285
Merge pull request #12322 from rifelpet/managed-files2
...
Create a second Terraform provider for managed files
2021-09-18 10:30:08 -07:00
345f3d85f1
Fix controller defaults for both bootstrap tokens and ipv6
...
The previous logic would override the controller slice in each
condition, instead of building it up.
2021-09-18 13:12:26 -04:00
e8e09d5956
Merge pull request #12353 from hakman/ebs-csi-ipv6
...
Fix EC2 IPv6 endpoint for EBS CSI Driver controller
2021-09-18 09:16:07 -07:00
fa853add24
Fix EC2 IPv6 endpoint for EBS CSI Driver controller
2021-09-18 18:34:13 +03:00
8d49409d1f
Merge pull request #12352 from eddycharly/fix-docs-etcd-backups
...
fix: etcd backup docs
2021-09-18 06:52:08 -07:00
e1d8d12efb
Merge pull request #12351 from eddycharly/clean-comment
...
fix: remove inconsistent comment
2021-09-18 05:50:09 -07:00
735497442d
fix: etcd backup docs
2021-09-18 14:15:31 +02:00
1353039fac
fix: remove inconsistent comment
2021-09-18 14:04:22 +02:00
f5cc9f6729
Merge pull request #12349 from hakman/aws-ebs-csi-ipv6
...
Use EC2 and Metadata IPv6 endpoints in IPv6 mode for EBS CSI Driver
2021-09-18 05:02:07 -07:00
justinsb
Kubernetes Prow Robot
Peter Rifel
Ciprian Hacman
dntosas
Charles-Edouard Brétéché