kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
16,269 Commits 31 Branches 256 Tags 544 MiB
Commit Graph

16269 Commits

Author SHA1 Message Date
Peter Rifel 9d0d1998cb
Move CLB CreateLoadBalancer* IAM actions to cluster-tagged 
Manual testing confirmed that these require aws:ResourceTag rater than aws:RequestTag
 2021-11-03 22:16:30 -05:00
Peter Rifel c3e8420731
Revert "Move some AWS IAM policy actions from tagged conditions to wildcard" 
This reverts commit 91e4767851.
 2021-11-03 21:59:43 -05:00
Kubernetes Prow Robot 10cbb9bc91
Merge pull request #12677 from angeloskaltsikis/fix-delete-iam-instance-profile 
Fix that states AWS IAM Instance Profile blocks IAM Role
 2021-11-03 18:00:16 -07:00
angeloskaltsikis b284537885
Fix that states AWS IAM Instance Profile blocks IAM Role 
According to [aws-cli docs](https://awscli.amazonaws.com/v2/documentation/api/latest/reference/iam/delete-role.html#examples),
it is needed to delete any Instance profile that uses a role before deleting
the actual role. This fix adds a "blocks" statement to the IAM Instance Profile,
to declare that it should block the IAM Role deletion.
 2021-11-03 18:28:36 +02:00
Kubernetes Prow Robot e6eadbb215
Merge pull request #12675 from johngmyers/arch-nodeup 
Add arch specific dev-upload-nodeup targets
 2021-11-03 03:06:58 -07:00
Kubernetes Prow Robot 1e97b0cf76
Merge pull request #12674 from rifelpet/fix-iam-conditions 
Remove tag conditions on certain AWS IAM actions
 2021-11-03 02:24:59 -07:00
John Gardiner Myers 3d5d5b38d6 Update automatically generated files 2021-11-02 23:08:03 -07:00
John Gardiner Myers 56c054cda7 Migrate to AWS CCM in k8s 1.24 2021-11-02 23:08:03 -07:00
John Gardiner Myers b582c703fb Add arch specific dev-upload-nodeup targets 2021-11-02 22:02:25 -07:00
Kubernetes Prow Robot e43ee0b050
Merge pull request #12672 from rifelpet/iam-clustername 
Fix cluster name used in IAM policies
 2021-11-02 21:02:58 -07:00
Peter Rifel a8f7fee499
./hack/update-expected.sh 2021-11-02 20:21:37 -05:00
Peter Rifel 91e4767851
Move some AWS IAM policy actions from tagged conditions to wildcard 
I checked these against the IAM docs for each API and moved the actions that dont support tag conditions:
https://docs.aws.amazon.com/service-authorization/latest/reference/list_elasticloadbalancing.html#elasticloadbalancing-actions-as-permissions
https://docs.aws.amazon.com/service-authorization/latest/reference/list_elasticloadbalancingv2.html#elasticloadbalancingv2-actions-as-permissions
https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazonec2.html#amazonec2-actions-as-permissions
https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazonec2autoscaling.html#amazonec2autoscaling-actions-as-permissions
 2021-11-02 20:06:35 -05:00
Peter Rifel dede42efd2
Fix cluster name used in IAM policies 2021-11-02 17:39:57 -05:00
Peter Rifel df902cca65
Enable lifecycle hook in integration test 2021-11-02 17:38:23 -05:00
Kubernetes Prow Robot e841be27b8
Merge pull request #12668 from rifelpet/revert-kube-proxy 
Revert "Migrate kube-proxy manifest to use go-runner for logging"
 2021-11-02 06:06:59 -07:00
Kubernetes Prow Robot 8aa9379dfa
Merge pull request #12667 from rifelpet/kubetest2-dumplogs 
Fix error handling in kubetest2 dumplogs
 2021-11-02 05:20:58 -07:00
Peter Rifel 3442f95d59
Revert "Migrade kube-proxy manifest to use go-runner for logging" 
This reverts commit b0e585c751.
 2021-11-02 06:48:01 -05:00
Peter Rifel 030a657690
Add --request-timeout to some kubectl commands to shorten wait times when the cluster isnt up 2021-11-02 06:37:20 -05:00
Peter Rifel 13af636d57
kubetest2 dumplogs - Make directories prior to creating files in them 
Also cleanup some error handling so that the remaining teardown steps can run even if dumplogs fails
 2021-11-02 06:36:39 -05:00
Kubernetes Prow Robot 67be37e4cb
Merge pull request #12664 from rifelpet/go-runner-kube-proxy 
Migrade kube-proxy manifest to use go-runner for logging
 2021-11-01 18:38:58 -07:00
Peter Rifel b0e585c751
Migrade kube-proxy manifest to use go-runner for logging 2021-11-01 17:01:19 -05:00
Kubernetes Prow Robot b73c2ac0bd
Merge pull request #12658 from hakman/ipv6_cidr_no 
Start IPv6 CIDR numbering from 0
 2021-11-01 08:33:19 -07:00
Ciprian Hacman a5ae36b9d1 Run hack/update-expected.sh 2021-11-01 16:31:29 +02:00
Ciprian Hacman 6ca361355d Set cloud provider for external CCM 2021-11-01 16:31:20 +02:00
Ciprian Hacman 6b33db3312 Run hack/update-expected.sh 2021-11-01 13:27:03 +02:00
Ciprian Hacman f11aa9b014 Start IPv6 CIDR numbering from 0 2021-11-01 13:26:10 +02:00
Kubernetes Prow Robot 9746c10ff4
Merge pull request #12649 from johngmyers/ipv6-doc 
Add initial IPv6 documentation
 2021-10-31 20:55:19 -07:00
Kubernetes Prow Robot 2689a49eb8
Merge pull request #12656 from johngmyers/release-doc 
Switch release process to official GitHub client
 2021-10-31 19:41:18 -07:00
John Gardiner Myers 749e3e444f Switch release process to official GitHub client 2021-10-31 17:09:35 -07:00
Kubernetes Prow Robot 35110699c7
Merge pull request #12655 from johngmyers/relnotes_1.23.0-alpha.2 
Release notes for 1.23.0-alpha.2
 2021-10-31 15:15:18 -07:00
John Gardiner Myers 293a4dc986
Apply review comment 
Co-authored-by: Ciprian Hacman <ciprian@hakman.dev>
 2021-10-31 14:43:53 -07:00
John Gardiner Myers 535826f0f4 Release notes for 1.23.0-alpha.2 2021-10-31 14:35:08 -07:00
Kubernetes Prow Robot 90db99e378
Merge pull request #12654 from johngmyers/rel-1.23.0-alpha.2 
Release 1.23.0-alpha.2
 2021-10-31 14:25:18 -07:00
John Gardiner Myers 3a97dbaa8d Release 1.23.0-alpha.2 2021-10-31 13:46:07 -07:00
Kubernetes Prow Robot 242ed2eb89
Merge pull request #12651 from johngmyers/ipv6-ccm 
IPv6 requires external CCM
 2021-10-31 13:05:18 -07:00
John Gardiner Myers a2269c886c hack/update-expected.sh 2021-10-31 12:26:30 -07:00
John Gardiner Myers 9f99d41323 IPv6 requires external CCM 2021-10-31 12:26:30 -07:00
Kubernetes Prow Robot 2772b65a56
Merge pull request #12652 from hakman/ipv_debian11_accept_ra 
Enable Router Advertisements for Debian 11 on  ens* interfaces
 2021-10-31 11:05:18 -07:00
Ciprian Hacman d1375353b0 Enable Router Advertisements for Debian 11 on ens* interfaces 2021-10-31 15:16:10 +02:00
John Gardiner Myers 41f9e23ca0 Add initial IPv6 documentation 2021-10-30 23:15:38 -07:00
Kubernetes Prow Robot 9916733b31
Merge pull request #12648 from johngmyers/docs-cleanup 
Remove obsolete documents
 2021-10-30 22:11:17 -07:00
Kubernetes Prow Robot ad45d2a89e
Merge pull request #12610 from johngmyers/apiv3-cilium 
Remove unused Cilium fields from v1alpha3 API
 2021-10-30 21:19:17 -07:00
Kubernetes Prow Robot 7f0845e7c4
Merge pull request #12650 from johngmyers/validate-ipv6-cni 
Validate CNI can support IPv6
 2021-10-30 20:35:17 -07:00
John Gardiner Myers a50047cacb Fix Calico encapsulationMode validation error types 2021-10-30 17:16:06 -07:00
John Gardiner Myers 80d73efb5a Validate CNI can support IPv6 2021-10-30 17:08:12 -07:00
Kubernetes Prow Robot e9da89f1f2
Merge pull request #12647 from johngmyers/ipv6-nomasq 
Prohibit masquerading in IPv6 clusters
 2021-10-30 15:01:17 -07:00
John Gardiner Myers fbe9cf6f6c Remove obsolete documents 2021-10-30 14:24:38 -07:00
Kubernetes Prow Robot 0a95a6701d
Merge pull request #12640 from johngmyers/internal-alias 
dns-controller: use aliases for internal host-network pods
 2021-10-30 14:17:18 -07:00
John Gardiner Myers 1ec56c509e hack/update-expected.sh 2021-10-30 13:28:39 -07:00
John Gardiner Myers 1bd88a441d dns-controller: Use aliases for internal pod records 2021-10-30 13:28:39 -07:00