kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
7,614 Commits 31 Branches 256 Tags 544 MiB
Commit Graph

243 Commits

Author SHA1 Message Date
Rohith aa700961b5 - fixing up the prometheus metrics annotation to indicates a https scheme 2018-10-03 11:39:35 +01:00
Rohith 97dc2beb71 Node Authorizer Client Fix 
- fixing up the client for reboots ... somewhat of a oversight on my part :-)
- added the reason to the node denial message
 2018-10-03 11:39:35 +01:00
Rohith 8401273b06 - fixing the reference to the import, goimports made an error 
- updating the version of the node-authorizer manifest
 2018-09-27 10:21:10 +01:00
k8s-ci-robot 403a22a750
Merge pull request #5290 from ripta/avpc-k8s-1.8 
Amazon VPC CNI: Kubernetes 1.8+ Manifests
 2018-09-21 08:27:48 -07:00
Joe Hohertz 2dbc044a16 bump verions in the boostrapchannelbuilder per @mikesplain 2018-09-19 15:31:46 -04:00
Will Thames 142d71f33f Update k8s-ec2-srcdst to v0.2.2 
v0.2.2 fixes a bug where k8s-ec2-srcdst can crash on node deletion.
This crash causes SourceDestinationCheck to remain set to true on
nodes created after this check. Such nodes cannot talk to calico
destinations in the *same* subnet.

Fixes kubernetes/kubernetes#66432
 2018-09-06 09:46:21 +10:00
Sandeep Rajan 0bdf97897f update version and manifest 2018-08-30 14:51:43 -04:00
Justin Santa Barbara 4d216cb001 Release 1.10.0 2018-08-18 07:06:02 -04:00
k8s-ci-robot 5ec34189d9
Merge pull request #5608 from rajansandeep/updatedeployment 
Update CoreDNS deployment
 2018-08-15 10:02:00 -07:00
Sandeep Rajan 7a262f7e6f update deployment 
update version
 2018-08-15 11:16:31 -04:00
Justin Santa Barbara 0b622a5853 weave: bump version for 2.3.0 
We forgot to do this in #5595
 2018-08-14 19:30:06 -04:00
k8s-ci-robot 5f13be3741
Merge pull request #5552 from brb/weave-2.4.0 
Bump Weave Net to v2.4.0
 2018-08-14 15:41:51 -07:00
Martynas Pumputis 6026498e4b Bump Weave Net to v2.4.0 
- New manifest for k8s 1.8.0 due to FileOrCreate mount type.
- RBAC for updating NetworkUnavailable node status.
- Dropped support for legacy NetworkPolicy (k8s pre-1.7).

Full changelog: https://github.com/weaveworks/weave/releases/tag/v2.4.0
 2018-07-30 09:57:43 +02:00
Zivago Lee a846b217c1 bump version 2018-07-26 07:45:42 -07:00
Justin Santa Barbara 9320948a8a Mark 1.10.0-beta.1 2018-07-23 11:16:03 -04:00
k8s-ci-robot 56ccfac26d
Merge pull request #5317 from gambol99/node_registration 
Node Authorization Service
 2018-07-19 05:17:41 -07:00
k8s-ci-robot 00d7237b19
Merge pull request #5426 from aleerizw/update-kube-router-manifest 
Added metrics port and health check to kube-router
 2018-07-15 12:15:05 -07:00
Ali Rizwan 7dfdc5d632 Update version 2018-07-11 12:11:42 +02:00
Rodrigo Menezes 414b3a780b Rename hept.io authenticator to aws authenticator 2018-07-08 10:10:19 -07:00
Rohith 79cff25eb4 - fixing up on the comments raised by on the review 2018-07-06 20:14:35 +01:00
Rohith 528117b631 - adding the node authorization service into kops 
- updated the Makefile to build the image (i think)
 2018-07-06 20:14:35 +01:00
Ripta Pasay 106eb3861c Add amazon-vpc-routed-eni manifest for k8s >=1.10 without the use of k8s-ec2-srcdst 2018-07-02 23:24:59 +00:00
Ripta Pasay 6b8331f42b Add new amazon-vpc-routed-eni manifest for k8s >=1.8 using rbac.authorization.k8s.io/v1 instead of v1beta1 2018-07-02 23:16:43 +00:00
k8s-ci-robot 02daea62ae
Merge pull request #5119 from ripta/avpc-custom-image 
Amazon VPC CNI: Upgrade to v1.0 and Allow Custom Images
 2018-06-10 22:40:27 -07:00
Ripta Pasay 3610bf20d0 Upgrade default Amazon VPC Networking image to v1.0.0 2018-06-05 15:39:36 -07:00
Rodrigo Menezes 1fdbb2fe47 Update heptio authenticator 2018-06-05 11:45:08 -07:00
k8s-ci-robot 53b2715413
Merge pull request #5095 from martinhoefling/upgrade_flannel_v0.10.0 
Upgrade to flannel v0.10.0 and explicitly specify amd64 arch
 2018-06-01 23:04:57 -07:00
Kashif Saadat 1b9162b7b6 Correct PSP RoleBinding with namespace for kube-system 2018-06-01 17:52:42 +01:00
k8s-ci-robot 775b877a10
Merge pull request #5197 from rdrgmnzs/heptio_authenticator 
Setup heptio authenticator
 2018-06-01 07:12:55 -07:00
k8s-ci-robot 56310f2783
Merge pull request #5208 from nebril/bump-cilium 
Bump Cilium version to released
 2018-05-31 19:06:59 -07:00
Kashif Saadat e9dae6121b PSP Updates, new apiGroup for k8s v1.10 and limit kube-system SA access to its own namespace 2018-05-30 12:30:03 +01:00
Maciej Kwiek 0c987d4dbd Bump Cilium version 
Signed-off-by: Maciej Kwiek <maciej@covalent.io>
 2018-05-30 12:26:16 +02:00
Sandeep Rajan f173476007 update manifest 2018-05-24 08:20:41 -04:00
Rodrigo Menezes 5ce8f9e712 Setup heptio authenticator 2018-05-23 17:48:33 -07:00
Martin Hoefling a5b2778aa5 Upgrade to flannel to v0.10.0 in bootstrapchannelbuilder.go 2018-05-11 15:45:55 +02:00
k8s-ci-robot cc25a5a977
Merge pull request #4041 from rajansandeep/corednskops 
CoreDNS in Kops as an addon
 2018-05-10 15:26:54 -07:00
Kashif Saadat 0057405d3b Make LogSeveritySys configurable for Canal Networking 2018-04-26 15:47:29 +01:00
Sandeep Rajan eaac019e34 CoreDNS in kops as an addon 
fix test
 2018-04-20 17:03:17 -04:00
JuanJo Ciarlante 01ca06ef2b upgrade kube-dns to 1.14.10, fixes #4986 2018-04-18 08:58:15 -03:00
Justin Santa Barbara a5e58b243e Release 1.9.0 2018-04-11 10:07:36 -04:00
k8s-ci-robot 063afb28d7
Merge pull request #4954 from brb/weave-net-2.3.0 
Bump Weave Net to 2.3.0
 2018-04-10 22:24:55 -07:00
k8s-ci-robot 22a34586cc
Merge pull request #3498 from gambol99/psp 
Pod Security Policies
 2018-04-10 07:43:09 -07:00
Rohith cc695c3805 - changing the version to >= 1.9 as it only really makes sense on theses versions 2018-04-10 14:20:41 +01:00
Martynas Pumputis 85758f8909 Bump Weave Net to 2.3.0 2018-04-10 10:57:38 +02:00
k8s-ci-robot a8ca362e6b
Merge pull request #4851 from sergeylanzman/bump-kube-dns 
Update kube-dns to 1.14.9
 2018-04-09 15:50:08 -07:00
Rohith e8e3ac0c91 Pod Security Policies 
The current implementation doesn't work with PodSecurityPolicies enabled due to no psp policies. This PR adds a default psp policy for the kubelet users and and the kube-system namespace
 2018-04-04 17:43:11 +01:00
Justin Santa Barbara 367f534f89 Release 1.9.0-beta.2 2018-04-04 06:21:12 -07:00
Justin Santa Barbara 98ff1bf726 Release 1.9.0-beta.1 2018-04-02 06:12:53 -07:00
k8s-ci-robot 7d2b1cb5b0
Merge pull request #4698 from andrewsykim/digitalocean-addons 
digitalocean: external cloud controller addon
 2018-04-01 19:02:02 -07:00
Sergey Lanzman 4df6c29828 Update kube-dns to 1.14.9 2018-04-02 00:39:19 +03:00
Justin Santa Barbara 4fc3e7114d kops release 1.9.0 alpha.3 2018-03-26 13:07:59 -04:00
k8s-ci-robot fc1bed4353
Merge pull request #4224 from nebril/cilium-support 
Add Cilium as CNI plugin
 2018-03-26 07:49:02 -07:00
Justin Santa Barbara d49ac2268a Release 1.9.0-alpha.2 2018-03-22 01:23:06 -04:00
Maciej Kwiek bca52dede9 Add Cilium as CNI plugin 
Signed-off-by: Maciej Kwiek <maciej@covalent.io>
 2018-03-20 13:07:26 +01:00
Justin Santa Barbara bf588f925d Update kopeio-networking to 1.0.20180319 2018-03-19 23:36:24 -04:00
andrewsykim b6bdc29d01 digitalocean: external cloud controller addon 2018-03-19 11:14:08 -04:00
Felipe Cavalcanti 4d7d8b86b3 roll back calico version in bootstrapchannelbuilder to 2.6.7, increment the suffix and little docs improvement 2018-03-06 19:43:00 -03:00
Felipe Cavalcanti 468d941d99 [Calico] Activate node controller in calico-kube-controllers and add CALICO_K8S_NODE_REF in calico-node, this commit fixes #3224 and #4533 2018-03-06 12:33:26 -03:00
Justin Santa Barbara 16f7b31e1a Release 1.9.0-alpha.1 2018-03-01 01:23:22 -05:00
Justin Santa Barbara cfedee8801
Update canal channel version 2018-02-28 22:16:03 -05:00
Justin Santa Barbara 5809592f35
Merge branch 'master' into canal-n-calico-to-2-6-7 2018-02-28 22:06:28 -05:00
Erik Stidham 3484febe0d Update Calico and Canal to use calico node v2.6.7 
- Canal updated cni to v1.11.2
 2018-02-28 09:54:39 -06:00
Aleksandar Topuzovic d0acd90b3d
Bump versions with `-kops.1` 2018-02-28 10:36:22 +00:00
Justin Santa Barbara 7b647431b1 Update kube-dns to 1.14.8 2018-02-20 21:09:16 -05:00
Rohith c8e4a1caf8 Kubernetes Calico TLS 
The current implementation when Etcd TLS was added does not support using calico as the configuration and client certificates are not present. This PR updates the calico manifests and adds the distribution of the client certificate
 2018-02-14 23:41:45 +00:00
Justin Santa Barbara d96b6ee865 Bump weave version to 2.2.0 
Follow-on to #4413
 2018-02-11 12:57:19 -05:00
k8s-ci-robot 357eadd244
Merge pull request #4405 from romana/romana-v2.0.2 
Update versions for romana container images
 2018-02-07 18:00:43 -08:00
Caleb Gilmour d132c0c1a0 Update versions for romana container images. 2018-02-07 23:06:08 +00:00
Chris Phillips b620deba0f adds CONN_LIMIT to the WeaveNetworkingSpec 
Weave limits the number of connections between peers and the default is 30.
As described here: ce9c5162bd/site/kubernetes/kube-addon.md
Setting the CONN_LIMIT environment variable controls this setting. Adding a field in the
WeaveNetworkingSpec and adding the env var to the associated templates lets users
have clusters larger than 30 nodes and still use weave's peer discovery

The weave authors have indicated that 100 is not an unreasonable setting.
https://github.com/weaveworks/weave/issues/1621#issuecomment-152713060
 2018-02-07 09:52:12 -08:00
Justin Santa Barbara 712144a84a Update kopeio-networking to 1.0.20180203 
No major changes, just version updates.
 2018-02-03 13:14:23 -05:00
k8s-ci-robot 752c7bd96d
Merge pull request #4306 from justinsb/update_kopeio_networking 
Bump kopeio-networking to 1.0.20180120
 2018-01-21 12:45:25 -08:00
Justin Santa Barbara 54af8e41b9 Bump kopeio-networking to 1.0.20180120 2018-01-20 16:33:09 -05:00
Blake c78336fa99 Update bootstrap calico versions 2018-01-19 13:42:00 -08:00
Manuel de Brito Fontes 2e05dd17aa Add support for Amazon VPC CNI plugin 2017-12-17 18:08:24 -03:00
Kubernetes Submit Queue 96ee92a4b3
Merge pull request #4063 from rajivm/fix-canal-hostport 
Automatic merge from submit-queue.

Support for hostPort when using canal

Similar to: https://github.com/kubernetes/kops/pull/3206

Without this, we are unable to get `hostPort` working with `canal`. The same is true for `flannel`, but this does add support for plain flannel.
 2017-12-15 07:00:22 -08:00
Rajiv Makhijani 2c42970c24 Bump canal version for kops manifest tweaks 2017-12-14 14:42:37 -08:00
Kubernetes Submit Queue a19d90143f
Merge pull request #4062 from justinsb/bump_weave_for_212 
Automatic merge from submit-queue.

Bump weave version in bootstrapchannelbuilder

2.1.3 upstream becomes 2.1.3-kops.1, so if we need to make our own
"packaging" changes, we can do 2.1.3-kops.2 etc.
 2017-12-14 06:25:41 -08:00
Kubernetes Submit Queue 9487dd4102
Merge pull request #4064 from justinsb/bump_flannel_version_for_3952 
Automatic merge from submit-queue.

Bump flannel packaging version
 2017-12-14 05:25:42 -08:00
Justin Santa Barbara 3e236283f3 Tag 1.8.0 2017-12-13 22:13:27 -05:00
Justin Santa Barbara e65d1b0608 Bump flannel packaging version 
For #3952
 2017-12-13 21:55:48 -05:00
Justin Santa Barbara 6f5036f0cd Bump weave version in bootstrapchannelbuilder 
2.1.3 upstream becomes 2.1.3-kops.1, so if we need to make our own
"packaging" changes, we can do 2.1.3-kops.2 etc.
 2017-12-13 21:29:20 -05:00
Mike Splain 96aefac318 Fix flannel error on starting 2017-11-28 21:39:08 -05:00
Mike Splain a2aa1da816 Fix flannel version 2017-11-28 16:26:46 -05:00
Justin Santa Barbara b8b7287e4a Bump versions to 1.8.0-beta.2 2017-11-28 13:27:58 -05:00
Kubernetes Submit Queue 967ed4acf5
Merge pull request #3928 from justinsb/kopeio_auth 
Automatic merge from submit-queue.

Update kopeio auth
 2017-11-27 15:02:12 -08:00
Kubernetes Submit Queue 0ade1dd2c4
Merge pull request #3822 from gambol99/dns_controller_optional 
Automatic merge from submit-queue.

DNS Controller Optional

The current implementation enforces a dns-controller is running; given the user can switch the make the kube-apiserver server Internal and then reuse the dns for the masterInternalName; this effectlively removes the need to run the service (assuming your not using it for pods, node and service dns)

- adding a disableDnsController to the ExternalDNS spec provides a toggle on the addon (name is definitely up for debate)
- the default behaviour remains, the dns-controller is always pushed as an addon
 2017-11-26 15:03:47 -08:00
Justin Santa Barbara d0944714f4 Update kopeio auth 2017-11-26 15:32:14 -05:00
Kubernetes Submit Queue 8eac358795
Merge pull request #3869 from chrislovecnm/calico-2.6-update 
Automatic merge from submit-queue.

Updating Calico manifests to Calico release 2.6.2

Renamed the k8s-1.8 manifest to a k8s-1.7. This is required because of config
change that occurs between k8s 1.6 and k8s 1.7. This refactor will also
be re-used when Calico Kubernetes data source support is added to kops.
Updated bootstrapchannelbuilder with the new Calico version numbers.

The diffs for the k8s-1.6 version is pretty rough, tried to make it cleaner, but nada.

FIXES: https://github.com/kubernetes/kops/issues/3866
FIXES: https://github.com/kubernetes/kops/issues/3867

Line: https://github.com/kubernetes/kops/compare/master...chrislovecnm:calico-2.6-update?expand=1#diff-891cbc61587adb202b66b7c9bc6896daR209  is why Calico would not start on k8s 1.6 - thanks @caseydavenport 

 **TODO**
Testing K8s versions

- [x] test 1.5
- [x] test 1.6
- [x] test 1.7
- [x] test 1.8

/cc @blakebarnett @itajaja
 2017-11-22 10:20:04 -08:00
chrislovecnm 3067a21341 Updating Calico manifests to Calico release 2.6.2. 
Renamed the k8s-1.8 manifest to a k8s-1.7. This is required because of config
change that occurs between k8s 1.6 and k8s 1.7. This refactor will also
be re-used when Calico Kubernetes data source support is added to kops.
Updated bootstrapchannelbuilder with the new Calico version numbers.
 2017-11-22 09:45:21 -07:00
Rohith 4816ed5e36 DNS Controller Optional 
The current implementation requires enforces a dns-controller is running; given the user can switch the make the kube-apiserver server Internal and then reuse the dns for the masterInternalName; this effectlively removes the need to run the service (assuming your not using it for pods, node and service dns)

- adding a disableDnsController to the ExternalDNS spec provides a toggle on the addon (name is definitely up for debate)
- the default behaviour remains, the dns-controller is always pushed as an addon
 2017-11-20 22:06:50 +00:00
Caleb Gilmour 04ef7ee0a3 Version and validation updates for romana networking. 2017-11-16 23:37:04 +00:00
Justin Santa Barbara dedf88c52b Apply gossip dns changes to 1.8 calico version also 2017-11-14 03:14:15 -05:00
Giacomo Tagliabue b7a16a28cc add version map 2017-11-13 17:52:35 -05:00
Giacomo Tagliabue 3719d15c6b update templates and bootstrapper 2017-11-13 17:11:10 -05:00
Giacomo Tagliabue af64c2894c update calico template 2017-11-13 17:11:10 -05:00
Justin Santa Barbara 148a65e1ad Fix CNI CPU allocations 
* Limit each CNI provider to 100m

* Remove CPU limits - they cause serious problems
(https://github.com/kubernetes/kubernetes/issues/51135), but this also
makes the CPU allocation less problematic.

* Bump versions and start introducing the `-kops.1` suffix preemptively.

* Upgrade flannel to 0.9.0 as it fixes a lot.
 2017-11-13 01:28:40 -05:00
Kashif Saadat 657a91729e Update Canal to use Calico v2.6.2. 2017-11-07 09:26:18 +00:00
Justin Santa Barbara 9b71713d68 Tag 1.8.0-beta.1 2017-11-06 23:24:51 -05:00
Manatsawin Hanmongkolchai a708919bf4 Generate scheduler policy by dynamic cluster addons 2017-10-27 08:56:07 +07:00
Mike Splain e000d21673 Add a v1.7.0 storage addon resource. 
Fixes #3298
 2017-10-23 22:11:28 -04:00