kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
21,067 Commits 31 Branches 256 Tags 544 MiB
Commit Graph

445 Commits

Author SHA1 Message Date
Steven E. Harris f63a5d3911 Define "ManageStorageClasses" cloud config field 2021-02-11 10:48:32 -05:00
Ole Markus With e106e5f752 Apply suggestions from code review 
Co-authored-by: Ciprian Hacman <ciprianhacman@gmail.com>
 2021-02-11 10:15:26 +01:00
Ole Markus With 56330188d0 Add AWS LoadBalancerController 2021-02-11 08:47:03 +01:00
Alexander Block 6facd1b8ab Allow to explicitely choose subnets and private IPs for the API loadbalancer 2021-02-05 17:53:20 +01:00
shil a0350a0dfa Use the kubeApiServerConfig clientCAFile field 2021-02-01 15:26:09 -08:00
Ole Markus With 1db7b72843 Use serving cert for metrics-server 2021-01-30 09:01:36 +01:00
Ole Markus With 35d6ac5e21 enableRemoteNodeIdentity actually defaults to true 2021-01-22 10:52:22 +01:00
Ciprian Hacman d889d61ddb Set default IMDS v2 to "required" for instances in AWS 2021-01-21 11:35:41 +02:00
Kubernetes Prow Robot 04e61e4965
Merge pull request #10616 from ottosulin/azhints 
Add network and router availability zone hints to OpenStack
 2021-01-20 08:56:00 -08:00
Otto Sulin c66a079e3e Add network and router availability zone hints to OpenStack 
This pull request makes it possible to add availability zone hints to routers and networks if the hints are supported.
 2021-01-20 13:34:08 +02:00
Ciprian Hacman 51cc462793 Add support for container-log-max-size/files with kubelet 2021-01-20 05:49:26 +02:00
Kubernetes Prow Robot a051af8dc0
Merge pull request #10564 from bjhaid/master 
Make cluster proportional autoscaler image configurable.
 2021-01-15 11:03:52 -08:00
bjhaid f299566822 Make cluster proportional autoscaler image configurable. 
Similar to how we can configure coreDNS image we will like to configure
cluster Proportional autoscaler so we can use our internal docker
registry rather than gcr.io.
 2021-01-12 13:30:42 -06:00
Ole Markus With f5ae5f8808 AWS CSI driver 2021-01-12 07:09:10 +01:00
dntosas 56fe4bab24
[addons/CA] Add support for specifying resources and metrics 
- Resources
We enable users to set their desired capacity for cluster-autoscaler addon.
There are edge cases, especially in big clusters, where autoscaler needs
to reconcile a large number of objects thus may need increased memory or
increased cpu to avoid saturation.

- Metrics
Cluster autoscaler provides valuable insights for monitoring capacity
allocation and scheduling aspects of a cluster. In this commit, we
add proper annotation on deployment to enable Prometheus scrape metrics.

We also bump patch version of container images.

Signed-off-by: dntosas <ntosas@gmail.com>
 2021-01-11 20:53:08 +02:00
Ciprian Hacman a7bb949936 Add possibility to set volume throughput for gp3 volumes 2021-01-05 13:18:32 +02:00
Kubernetes Prow Robot 6d5549e730
Merge pull request #10453 from msidwell/gp3-etcd 
Add gp3 Volume Type to etcd
 2021-01-04 11:29:57 -08:00
msidwell ebf05facc2 add gp3 volume default params 
add io2 case and correct IOPS minimum value check

add gp3 case

add io2 and gp3 parameter ratio validation logic

add volumeThroughput parameter for disks that support it

add volumeThroughput components throughout ebs structs

add volumeThroughput to versioned api

updated api machinery and crds

apimachinery update
 2021-01-04 17:08:11 +00:00
Ciprian Hacman 66039f150e Add containerd option for registry mirrors 2020-12-28 19:32:06 +02:00
Kubernetes Prow Robot b5afd1d6c4
Merge pull request #10473 from hakman/custom-container-runtime-package 
Add config options for container runtime package URL and Hash
 2020-12-23 04:48:28 -08:00
Ciprian Hacman ff6a782303 Add config options for container runtime package URL and Hash 2020-12-23 13:29:22 +02:00
Kubernetes Prow Robot 4266a3ed62
Merge pull request #10486 from DOboznyi/feature-6356/add-event-qps-flag 
Added event-qps and event-burst flags to kubelet
 2020-12-22 03:12:27 -08:00
Dmytro Oboznyi 334ff1d482
Added event-qps to kubelet flags 
Change default value for event-qps to 0
Added event-burst parametr

Signed-off-by: Dmytro Oboznyi <dobozniy@gmail.com>
 2020-12-22 10:31:15 +02:00
Kenji Kaneda a61caea8d2 Add Azure support 
This commit contains all changes required to support Azure
(https://github.com/kubernetes/kops/issues/3957).
 2020-12-21 08:27:54 -08:00
Justin SB 97d0e4d4c6 Avoid recursive type definitions in schema 
The CRD generation produces an invalid CRD in this case.
 2020-12-20 18:02:52 -05:00
Akshansh Gupta 830fef7959 addons(cluster-autoscaler): Add newPodScaleUpDelay in clusterAutoscaler spec 2020-12-19 14:30:18 +05:30
Steven E. Harris f0f45b71fd Allow use of Calico's VXLAN networking backend 
Introduce a new "encapsulationMode" field in Calico's portion of the
Cluster specification to allow switching between the the IP-in-IP and
VXLAN encapsulation protocols. For now, we accept the values "ipip"
and "vxlan," and forgo a possible "none" value that would disable
encapsulation altogether (at least for the default Calico IP pool).

Augment the default-populating procedure for Calico to take this field
into account when deciding both which networking backend to use and
whether to use IP-in-IP or VXLAN encapsulation for the default IP
pool. Note that these values supplied for the "CALICO_IPV4POOL_IPIP"
and "CALICO_IPV4POOL_VXLAN" environment variables in the "calico-node"
DaemonSet pod spec only matter for creating the "default" IPPool pool
object when no such objects already exist.

Generalize the documentation for the "crossSubnet" field to cover
environments more broad than just AWS, as Calico can employ this
selective encapsulation in any environment in which it can detect
boundaries between subnets.
 2020-12-18 10:55:11 -05:00
Ciprian Hacman ab9d30a015 Order by name fields in CalicoNetworkingSpec 2020-12-11 18:23:49 +02:00
Ciprian Hacman 372fde0949 Allow override of registry and tag for Calico images 2020-12-11 16:22:09 +02:00
Peter Rifel 3a616b6721
make gomod crds 2020-12-08 23:06:45 -06:00
Kubernetes Prow Robot bee16c052d
Merge pull request #10324 from bharath-123/feature/aws-imdv2 
Add support for AWS IMDS v2
 2020-12-07 22:55:11 -08:00
Ciprian Hacman 265bf4d106 Add option for setting the volume encryption key in AWS 2020-12-08 07:08:09 +02:00
Bharath Vedartham 7f6e125733 Add support for aws ec2 instance metadata v2 
A new field is add to the InstanceGroup spec with 2 sub fields,
HTTPPutResponseHopLimit and HTTPTokens. These fields enable the user
to disable IMDv1 for instances within an instance group.

By default, both IMDv1 and IMDv2 are enabled in instances in an instance group.
 2020-12-07 02:57:02 +05:30
Kubernetes Prow Robot 7140d96e92
Merge pull request #10318 from olemarkus/cert-manager-addon 
Add minimal cert-manager addon
 2020-12-04 22:57:25 -08:00
Ole Markus With 1ae09e86a5 Add minimal cert-manager addon 2020-12-04 21:52:07 +01:00
Rodrigo Menezes 3fb12c66ae gzip and base64 encode the heredocs in the nodeup.sh portion of user-data 2020-12-04 10:46:18 -08:00
Kubernetes Prow Robot 443567426e
Merge pull request #9704 from nckturner/aws-cloud-controller 
Add aws-cloud-controller-manager config to addons
 2020-12-02 12:17:00 -08:00
AkiraFukushima 3279b95326 Add paramaeters related to Taint based Evictions in kube-apiserver 2020-12-02 18:20:27 +09:00
Nick Turner c9feb36f3f Add aws-cloud-controller-manager config to addons 
- Config at aws-cloud-controller.addons.k8s.io/k8s-1.18.yaml.template
- AWSCCMTag function for CCM image tag
 2020-11-30 01:35:07 -08:00
Kubernetes Prow Robot e789c24c3a
Merge pull request #10275 from rdrgmnzs/kubeapi-mem-cpu-request-limit 
Allow setting CPU limit and Mem request / limit for kube API server
 2020-11-23 11:23:02 -08:00
Rodrigo Menezes da773ba35c Allow setting CPU limit and Mem request / limit for kube API 2020-11-23 10:03:34 -08:00
dntosas b7a2d0a1b1
[weave] Add support for default version override 
In this commit, we enable users to override default version
of networking/Weave specs.

Signed-off-by: dntosas <ntosas@gmail.com>
 2020-11-20 14:26:50 +02:00
Frank Yang 93dcaddc48 feat(aws): add PolicyNames for ELB to change listener's security policy 2020-11-19 16:07:21 +08:00
John Gardiner Myers 1165fd381e Remove more code specific to unsupported etcd v2 2020-11-15 22:21:24 -08:00
Joel Carter d94f67097f Add generated CRDs 2020-11-15 08:57:37 -06:00
Bharath Vedartham c294e3df58 dockerconfig: Add default runtime and runtimes fields 2020-11-15 01:21:19 +05:30
Kubernetes Prow Robot db473a11cd
Merge pull request #10194 from elblivion/etcdmanager-logverbosity 
Make etcd-manager log verbosity configurable
 2020-11-12 10:39:07 -08:00
Anthony Stanton c117d8d924 feat: Make etcd-manager log verbosity configurable 2020-11-12 09:58:09 +01:00
Jesse Haka cbee601739 make crds 2020-11-11 09:57:59 +02:00
Christian Joun e91ed11449
Implement API load balancer class with NLB and ELB support on AWS (#9011) 
* refactor TargetLoadBalancer to use DNSTarget interface instead of LoadBalancer

* add LoadBalancerClass fields into api

* make api machinery

* WIP: Implemented API loadbalancer class, allowing NLB and ELB support on AWS for new clusters.

* perform vendoring related tasks and apply fixes identified from hack/

dissallow spotinst + nlb
remove reflection in status_discovery.go
Add precreated additional security groups to the Master nodes in case of NLB
Remove support for attaching individual instances to NLB; only rely on ASG attachments
Don't specify Classic loadbalancer in GCE integration test

* add utility function to the kops model context to make LoadBalancer comparisons simpler

* use DNSTarget interface when locating DNSName of API ELB

* wip: create target group task

* Consolidate TargetGroup tasks

* Use context helper for determining api load balancer type to avoid nil pointers

* Update NLB creation to use target group ARN from separate task rather than creating a TG in-line

* Address staticcheck and bazel failures

* Removing NLB Attachment tasks because they're not used since we switched to defining them as a part of the ASGs

* Address PR review feedback

* Only set LB Class field for AWS clusters, fix nil pointer

* Move target group attributes from NLB task to TG task, removing unused attributes

* Add terraform and cloudformation support for NLBs, listeners, and target groups

* Update integration test for NLB support

* Fix NLB name format to pass terraform validation

* Preserve security group rule names when switching ELB to NLB to reduce destructive terraform changes

* Use elbv2 enums and address some TODOs

* Set healthcheck values in target group

* Find TG tags, fix NLB name detection

* Fix more spurious changes reported by lifecycle integration test

* Fix spotinst validation, more code cleanup

* Address more PR feedback

* ReconcileTargetGroups unit test + more code simplification

* Addressing PR feedback Renaming task 1. awstasks.LoadBalancer -> awstasks.ClassicLoadBalancer

* Addressing PR feedback Renaming task: ELBName() -> CLBName() / LinkToELB() -> LinkToCLB()

* Addressing PR feedback: Various text changes

* fix export of kubecfg

* address TargetGroup should have the same name as the NLB

* should address error when fetching tags due to missing ARN

* Update expected and crds

* Add feature table to NLB docs

* Address more feedback and remove some TODOs that arent applicable anymore

* Update spotinst validation error message

Co-authored-by: Peter Rifel <pgrifel@gmail.com>
 2020-11-02 05:28:52 -08:00
Ciprian Hacman a999ac2d94 Deprecate field calico.majorVersion 2020-10-30 08:37:21 +02:00
John Gardiner Myers 2ac17bee69 Remove code for no-longer-supported k8s releases 2020-10-29 16:45:53 -07:00
Kubernetes Prow Robot 5700af84ac
Merge pull request #10111 from javipolo/nodeLocalDnsCacheKubeDnsOnly 
Add nodeLocalDNSCache.kubeDnsOnly option
 2020-10-28 00:03:56 -07:00
Javi Polo c2684bcf7b Add nodeLocalDNSCache.kubeDnsOnly option 2020-10-27 10:46:25 +01:00
Ciprian Hacman 7b9a073da9 Add option for Calico to cleanup kube-proxy rules when running in eBPF mode 2020-10-27 07:35:08 +02:00
Ciprian Hacman a04cea6371 Add eBPF dataplane support for Calico CNI 2020-10-19 20:04:27 +03:00
Kubernetes Prow Robot 6f85cd98c0
Merge pull request #10037 from h3poteto/iss-9753 
Add WireGuard support for Calico CNI
 2020-10-11 06:10:47 -07:00
Kubernetes Prow Robot 5266619970
Merge pull request #10038 from dntosas/apiserver-include-reqTimeout-conf 
Add support for KubeAPIServer --request-timeout flag
 2020-10-11 04:54:47 -07:00
dntosas 66f42d8a9b
Add support for KubeAPIServer --request-timeout flag 
In this commit, we initialize the support of --request-timeout flag on
the configuration of KubeAPIServer so as to enable users for setting
timeout duration value for all kinds of handlers.

Signed-off-by: dntosas <ntosas@gmail.com>
 2020-10-11 14:17:44 +03:00
AkiraFukushima 51e7f2a691 Add wireguardEnabled option in networking Calico 2020-10-11 15:53:07 +09:00
Kubernetes Prow Robot cc41bba0cf
Merge pull request #10022 from olemarkus/metrics-server 
Kubelet serving certificate and metrics server addon
 2020-10-09 03:09:07 -07:00
Ole Markus With e7070e334d Add metrics-server addon 2020-10-09 08:27:08 +02:00
monicagangwar a63ccd5163 [calico] awsSrcDstCheck to disable src/dest checks in AWS 
* replacing k8s-ec2-srcdst with calico's config awsSrcDstCheck and
  flag FELIX_AWSSRCDSTCHECK
* documentation and iam changes for calico awsSrcDstCheck
 2020-10-08 17:17:23 +05:30
nareshku dca69323b7 enable kubelet --housekeeping-interval flag 2020-10-07 08:00:41 -07:00
Ole Markus With b9212f85ad Add addon for aws node termination handler 2020-09-17 21:09:28 +02:00
Adam Smith 2fb1a4ecd2 Support ChainInsertMode config option for Calico Networking 2020-09-16 10:38:45 +01:00
Chris Loukas 65610dbcee Update NodeLocalDNSConfig with Mem/CPU requests 
Add NodeLocalDNS.CPURequest and NodeLocalDNS.MemoryRequest to
configure resource requests.

If not explicitly set, fall back to 25m and 5Mi
 2020-09-09 18:40:14 +03:00
Barry Melbourne 21fe46ce12 Add kubelet cgroup driver property 2020-09-07 17:11:33 +01:00
Ole Markus With a0e9fab104 Implement cluster autoscaler as bootstrap addon 
Use provider-agnostic node definition for cas instead of aws auto-discovery

Validate clusterAutoscalerSpec

Add spec documentation

Add cas docs

Make CRDs

Apply suggestions from code review

Co-authored-by: John Gardiner Myers <jgmyers@proofpoint.com>

Add enabled flag to cas config

Apply suggestions from code review

Co-authored-by: Guy Templeton <guyjtempleton@googlemail.com>

Add support for custom cas image

Support more k8s versions

Use full image names
 2020-09-03 09:52:13 +02:00
etwillbefine 2b0970376e use list of strings for CORS 2020-08-29 22:11:24 +02:00
etwillbefine 1b6ee2c7e8 add support for cors-allowed-origins 
closes https://github.com/kubernetes/kops/issues/2045

correct typo in flag attribute

run code-gen, correct field description
 2020-08-29 19:14:39 +02:00
Peter Rifel dd75c1ed91
make apimachinery crds gomod, update-expected.sh 2020-08-24 10:58:09 -05:00
Kubernetes Prow Robot 6c5150f786
Merge pull request #9793 from hakman/root-vol-encrypt 
Add flag for root volume encryption
 2020-08-21 09:15:40 -07:00
Ciprian Hacman 2880e22bce Add flag for root volume encryption 2020-08-21 18:31:21 +03:00
Kubernetes Prow Robot 076df5ec84
Merge pull request #9782 from hakman/ignore-flannel-workaround 
Ignore the disableTxChecksumOffloading flag for Flannel and Canal
 2020-08-21 04:47:40 -07:00
Ciprian Hacman 68474f7793 Ignore the disableTxChecksumOffloading flag for Flannel and Canal 2020-08-21 07:55:25 +03:00
Victor Ferreira 3aaa9a7c0f feat(aws): adding support to permission boundaries for IAM Roles 2020-08-19 01:16:13 -03:00
Kubernetes Prow Robot 46ebae1b4e
Merge pull request #9726 from Evalle/ISSUE-9695 
Add missing cli options for kube-controller-manager and kube-scheduler
 2020-08-12 01:01:45 -07:00
Evgeny Shmarnev 17b2ff0c14 Add authorization-always-allow-paths 2020-08-12 09:10:31 +02:00
Evgeny Shmarnev fd9f4e481f Add missing cli options for kube-controller-manager and kube-scheduler 2020-08-12 08:40:59 +02:00
Ole Markus With 25d98796e2 Add cinder plugin 2020-08-11 10:15:12 +02:00
Robert Russell 6e5544f615 Allow configurable backend modes for aws-iam-authenticator 2020-08-06 21:37:55 -07:00
John Gardiner Myers 70926d43fc Use a stable key for signing service account tokens 2020-07-11 13:18:50 -07:00
Ole Markus With 263172caac Use new templates for cilium 1.8 2020-07-03 07:56:35 +02:00
John Gardiner Myers 16daa3ecac Fix field name 2020-07-01 14:25:49 -07:00
John Gardiner Myers cc2b647d06 Create separate field for disabling rolling updates 2020-06-19 22:19:26 -07:00
Ciprian Hacman 51ebd187f0 Add "--selinux-enabled" flag for Docker 2020-06-12 06:19:09 +03:00
Ole Markus With 9732179d40 Tag all cilium keys with omitempty 2020-06-04 15:46:32 +02:00
Kubernetes Prow Robot c6dcaa8199
Merge pull request #9154 from MoShitrit/issue-9031 
Add support for encryption in Cilium
 2020-06-04 03:11:15 -07:00
Kubernetes Prow Robot c8674f23a0
Merge pull request #9253 from olemarkus/cilium-ipv4 
Don't make it possible to toggle ipv4/6. We only support ipv4 anyway
 2020-06-03 14:02:43 -07:00
Kubernetes Prow Robot c78b24fa41
Merge pull request #9140 from olemarkus/docs-networking-support 
Add table of networking providers and their status
 2020-06-03 07:00:19 -07:00
Kubernetes Prow Robot 4ef6bbe229
Merge pull request #9175 from mtl-wgtwo/calico-ip-detection-method 
Enable configuration of the calico IP_AUTODETECTION_METHOD  and IP6_AUTODETECTION_METHOD
 2020-06-03 06:24:18 -07:00
Ole Markus With e994bb80a6 Add Romana deprecation/removal notices to godoc 2020-06-03 08:12:11 +02:00
Ole Markus With 972d7a3509 Don't make it possible to toggle ipv4/6. We only support ipv4 anyway 2020-06-03 06:58:13 +02:00
Ole Markus With 7342525872 Remove vsphere from kops files 2020-05-30 13:36:55 +02:00
Matt Long c00464f11d Update crds, apis, models. Add limited field validation 2020-05-27 15:24:01 +02:00
MoShitrit 316a0e2b00 Adding encryption support for Cilium 
Adding support for 'secret-name' flag

Adding instructions to enable encryption

Updating docs for cli

Addressing comments

Adding ciliumpassword subcommand to 'kops create secret'

Updating command to generate ciliumpassword secret
 2020-05-25 01:54:24 -04:00
Ole Markus With 1698069ae2 Update pkg/apis/kops/networking.go 
Co-authored-by: John Gardiner Myers <jgmyers@proofpoint.com>
 2020-05-23 08:04:34 +02:00
Ole Markus With 6e04586361 Docs fixes 2020-05-22 08:08:58 +02:00
Ole Markus With 82c4670f04 Small comment adjustments 2020-05-22 08:08:58 +02:00
Ole Markus With 77aab657cc Copy comments 2020-05-22 08:08:58 +02:00
Ole Markus With 95d2170fa6 Update networking in kops create 
* Remove classic from cli docs. Add missing providers
* Use cilium instead of weave in example since we don't consider weave stable
 2020-05-22 08:08:58 +02:00
Kubernetes Prow Robot 26421c3081
Merge pull request #9133 from justinsb/service_account_jwks_uri_flag 
Map kube-apiserver service-account-jwks-uri flag
 2020-05-19 20:54:18 -07:00
Peter Rifel 9de299f70f
make crds 2020-05-19 22:16:08 -05:00
Kubernetes Prow Robot bda2a15ee6
Merge pull request #9024 from tomesm/support_launch_template 
Added Launch Template support for instance interruption behavior
 2020-05-17 15:35:36 -07:00
Martin Tomes 3e725092e9 Launch template target updated 
Added InstanceInterruptionBehavior to RenderAWS and Find. Fixed typo in instancegroups
 2020-05-07 17:35:57 +02:00
Anders Østhus 9409e2af67 Added support for configuring disable-attach-detach-reconcile-sync in k-c-m config 2020-05-05 15:26:58 +02:00
John Gardiner Myers 843e5b9b16 Move GCEServiceAccount into CloudConfig 2020-05-03 20:35:32 -07:00
Martin Tomes c66180bc58 Added support for instance interruption behavior 2020-04-29 14:53:17 +02:00
Kubernetes Prow Robot f6068ddcb4
Merge pull request #8967 from michalschott/profiling_and_protect_kernel_defaults_flags 
Profiling and protect kernel defaults flags
 2020-04-27 10:09:29 -07:00
mosheshitrit 9fffc5f8e0 Make CPU Requests for Calico configurable instead of hard-coded 
Update bindata.go

Apply suggestions from code review

Applying suggested changes.

Co-Authored-By: Ciprian Hacman <ciprianhacman@gmail.com>

Applying changes after running `make gofmt`

Applying changes after running `make crds`

Apply suggestions from code review

Applying suggested changes.

Co-Authored-By: Ciprian Hacman <ciprianhacman@gmail.com>

Applying changes after running `make gofmt`

Fixing broken things

Typo fixes

Apply suggestions from code review

Co-Authored-By: Ciprian Hacman <ciprianhacman@gmail.com>

Apply suggested changes and run necessary `make` steps
 2020-04-26 12:44:14 -04:00
Michal Schott 91ac57acb1
Make crds. 2020-04-25 14:36:04 +02:00
Michal Schott 8a17c722c5
Test update. 2020-04-24 10:40:36 +02:00
Michal Schott 115fdd22d5
make apimachinery. 2020-04-23 23:50:49 +02:00
Kubernetes Prow Robot 982496c539
Merge pull request #8930 from justinsb/enabled_to_pointer 
Change NodeLocalDNS Enabled to *bool
 2020-04-16 21:55:06 -07:00
Justin Santa Barbara f3a40cf87c Change NodeLocalDNS Enabled to *bool 
As discussed in #8780 so we differentiate between false and not-set.
Also tweak the comment.
 2020-04-17 00:09:35 -04:00
Nicolas Vanheuverzwijn 4ceb324f0a refresh apis 2020-04-16 12:04:59 -04:00
Ole Markus With d5019a6c11 Simplify the spec and templates a bit 2020-04-10 10:48:21 +02:00
Salvatore Mazzarino f754cbda7d NodeLocal DNSCache 
Signed-off-by: Salvatore Mazzarino <dev@mazzarino.cz>
 2020-04-10 10:44:53 +02:00
Peter Rifel 10e4fb499a Generate v1 CRDs 2020-04-08 15:21:18 -05:00
Kubernetes Prow Robot f1cb72eac4
Merge pull request #8833 from olemarkus/numa 
Make kubelet topology-manager-policy configurable
 2020-04-05 15:15:46 -07:00
Ole Markus With 4000988b01 Apply suggestions from code review 
Co-Authored-By: John Gardiner Myers <jgmyers@proofpoint.com>
 2020-04-05 21:31:47 +02:00
eric-hole c59314a799 Adds some initial tests. Fixes some logic 
Need to fix service account implementation first

Fixing tests and iterating on the serviceaccount logic

Run the gce_byo_sa test
 2020-04-04 21:20:31 -07:00
eric-hole b3d65ffce0 Adds a gce-service-account flag so you BYO service-account 
Generated code and some cleanup

Not sure where that code went

Tests for service account

fixes case on gceserviceaccount
 2020-04-04 21:15:56 -07:00
Ole Markus With cf42d2b92d Make topologymanagerpolicy configurable 2020-04-03 14:34:53 +02:00
Thejas B dda8dc3f37 Add support for Spot block in launch template 
- Launch configuration does not support the field SpotDurationInMinutes which is used to reserve the spot instances, but however Launch Template does
 2020-03-31 20:07:01 +05:30
Kubernetes Prow Robot 4a740942fb
Merge pull request #8779 from fentas/master 
Add cilium option tofqdns-dns-reject-response-code
 2020-03-24 11:25:03 -07:00
Ciprian Hacman 5c8cc493af Set default log level to "info" for containerd 2020-03-22 20:53:58 +02:00
fentas 49b18cd3f7 Add cilium option tofqdns-dns-reject-response-code 2020-03-21 16:52:08 +01:00
Ole Markus With e77a7d495c Allow configuration of enable-remote-node-identity 2020-03-19 09:48:59 +01:00
Kubernetes Prow Robot e7846fd0db
Merge pull request #8402 from rdrgmnzs/etcd-setting-overwrite 
Allow users to overwrite etcd settings.
 2020-03-15 11:34:35 -07:00
Ciprian Hacman 360a117e02 Add config option for Docker "health-check" 2020-03-15 09:51:03 +02:00
Ole Markus With 2274045924 Add option to use etcd managed by cilium-etcd-operator as kvstore 2020-03-13 20:17:42 +01:00
Kubernetes Prow Robot d6a2daf26f
Merge pull request #8559 from olemarkus/cilium-deprecate-unused-fields 
Document all the fields in the Cilium spec
 2020-03-13 06:52:40 -07:00
Ole Markus With 3a32b76abc Add the docs to the api specs 2020-03-12 21:36:05 +01:00
Rodrigo Menezes 5901ba05fc updated to use #8455 2020-03-12 10:25:52 -07:00
Rodrigo Menezes 301463577e Allow users to overwrite etcd settings. 
Fix typo

fix env vars config  ordering
 2020-03-12 10:25:52 -07:00
Peter Rifel a999b3ea61 fix OWNERS labels format 
These need to be lists
 2020-03-10 22:47:50 -05:00
Peter Rifel 237a125f2c Add labels to OWNERS files 
This will automatically label PRs that touch these directories.

This makes it easier to query GitHub for PRs that affect certain areas of the code.

I mostly used existing labels but created some new ones as well.
 2020-03-10 08:35:58 -05:00
John Gardiner Myers e104cdb982 Default maxSurge to 1 on AWS 2020-03-04 19:41:51 -08:00
John Gardiner Myers 1b7c5139e0 Merge branch 'master' into surge 2020-03-03 17:53:18 -08:00
tanjunchen 64ffe00b1c support apiserver --kubelet-certificate-authority flag 2020-03-02 11:27:59 +08:00
John Gardiner Myers ed73726195 Address review comments 2020-02-28 21:05:43 -08:00
Ciprian Hacman f218f0bd7a Update Calico and Canal to v3.12.0 2020-02-27 04:03:42 +02:00
Kubernetes Prow Robot e07f84708e
Merge pull request #8276 from rifelpet/aws-vpc-cni-env-vars 
Add support for custom env vars in amazon-vpc-cni
 2020-02-26 15:07:20 -08:00
Justin Santa Barbara 930207e156
kubelet: map rotate-certificates options 
Additive flag mapping, may be useful for kubelet bootstrap.
 2020-02-22 08:47:39 -05:00
John Gardiner Myers 9f9b98e9f4 Merge branch 'master' into surge 2020-02-17 09:17:26 -08:00
Matt Ouille f025ff0e70
Add External Policies (AWS managed policy attachments) 2020-02-16 21:54:12 -08:00
Ole Markus With ced8f00201 Add option to use ENI as IPAM mode for Cilium 
* Force cilium-operator run on master nodes
* Add option for setting cilium ipam mode
* If cilium ipam mode is eni, add additional permissions to master nodes
* Allow NonMasqueradeCIDR overlap with NetworkCIDR when Cilium ENI is enabled
 2020-02-16 19:11:01 +01:00
Ciprian Hacman d5f96d7204 Update amazon-vpc-cni-k8s to v1.6.0 2020-02-13 10:32:51 +02:00
Peter Rifel 79424e8562 Add env API field to amazonvpc 2020-02-10 16:38:09 -06:00
Ole Markus With eed15b471a Make it possible to enable Prometheus metrics for Cilium 2020-02-03 19:11:34 +01:00
John Gardiner Myers b8e665018c make crds 2020-01-27 20:45:12 -08:00
Kubernetes Prow Robot e56c507c7f
Merge pull request #8271 from johngmyers/max-unavailable 
Option to increase concurrency of rolling update within instancegroup
 2020-01-27 20:11:39 -08:00
Roberto Rodriguez Alcala 03af6b80b5 Adds test and fixes incorrect flag 2020-01-27 11:46:12 -08:00
Roberto Rodriguez Alcala 1298d541cc Updates based on feedback 2020-01-25 12:32:40 -08:00
Roberto Rodriguez Alcala 117353c808 Fixing ci tests 2020-01-24 01:45:48 -08:00
Justin Santa Barbara 86f0056eb0
Update generated files for new k8s version 2020-01-17 06:35:22 -05:00
Kubernetes Prow Robot a49ce910a8
Merge pull request #8265 from ReillyProcentive/WeaveNpcExtraArgs 
Add support for weave.npcExtraArgs
 2020-01-16 15:06:32 -08:00
Reilly Brogan f5ce3f674b Change description of NPCExtraArgs in response to PR Feedback. Drop support for K8S 1.7 2020-01-15 15:06:03 -06:00
John Gardiner Myers d6ceffed36 make crds 2020-01-05 12:09:54 -08:00
Kubernetes Prow Robot 95f4f83fbe
Merge pull request #7900 from zacblazic/use-encryption-provider-config-flag 
Use non-experimental version of encryption provider config flag in 1.13+
 2020-01-05 10:31:40 -08:00
Reilly Brogan 3e5b211bcd Add support for weave.npcExtraArgs 2020-01-03 21:28:37 -06:00
Kubernetes Prow Robot afb4ecb883
Merge pull request #7730 from ripta/custom-sysctls 
Custom sysctl Parameters
 2020-01-03 07:35:41 -08:00
mmerrill3 b38bafe79d Adding ability to configure resources for weave (#8113) 
Signed-off-by: mmerrill3 <michael.merrill@vonage.com>
 2019-12-28 18:07:11 -05:00
Kubernetes Prow Robot 4621df3c0a
Merge pull request #8155 from hakman/staticcheck-nodeup 
nodeup/pkg/model - fix static check
 2019-12-20 00:15:32 -08:00
Ciprian Hacman fa665943ac nodeup/pkg/model - fix static check 2019-12-18 22:07:31 +02:00
Ciprian Hacman f1ffd9a7f6 Rename config option contained.configFile to containerd.configOverride 2019-12-16 00:59:26 +02:00
Ciprian Hacman 92cd1842c6 Add support for containerd container runtime - generated 2019-12-15 21:37:57 +02:00
Ciprian Hacman dd69274cf2 Set FELIX_IPTABLESBACKEND for Calico and Canal 2019-12-10 13:45:33 +02:00
Kashif Saadat 0f3449bf57 make crds for Canal Spec Typha updates 2019-12-06 15:36:48 +00:00
Kubernetes Prow Robot b60fbff92d
Merge pull request #7865 from tioxy/ebs_termination 
EBS Root Volume Termination
 2019-12-05 20:36:48 -08:00
Gabriel Tiossi 0e7aca0743 chore(api): deleteOnTermination codegen 
Codegen for deleteOnTermination and rootVolumeDeleteOnTermination (crds
and apis)
 2019-12-05 21:15:28 -03:00
Kubernetes Prow Robot d8c3051611
Merge pull request #8036 from DerekHeldtWerle/additional-leader-election-options 
Additional leader election options
 2019-12-04 10:58:57 -08:00
Kubernetes Prow Robot 33ed6315b6
Merge pull request #7600 from uruddarraju/ng 
Allow users to set kube controller manager's concurrent sync flags.
 2019-12-03 13:22:58 -08:00
Derek Heldt-Werle 424ef85a2a Generated files related to leader-elect flags 
Signed-off-by: Derek Heldt-Werle <derek.heldt-werle@viasat.com>
 2019-12-02 15:50:05 -08:00
Kubernetes Prow Robot 482fce5d54
Merge pull request #7424 from mmerrill3/feature/dynamic-audit-config 
Implementing audit dynamic configuration (#7392)
 2019-11-26 01:01:10 -08:00
Peter Rifel 57d72da5ec Upgrade AWS VPC CNI to 1.5.5 2019-11-17 10:48:53 -06:00
Zac Blazic 839afb841d Add generated crds 2019-11-08 18:24:05 +02:00
Peter Rifel ea4c25530b Revert "Upgrade Amazon VPC CNI plugin to 1.5.4" 
This reverts commit 699fe56619.
 2019-11-04 13:52:27 -08:00
Ripta Pasay 4db54d3830 Update apimachinery and CRDs 2019-10-30 11:44:27 -07:00
Uday Ruddarraju e43a1681f1 Auto generated updates for kube-controller-manager's concurrent sync flags 2019-10-30 00:50:57 -07:00
mmerrill3 5cf94c8ddf Implementing audit dynamic configuration (#7392) 
Signed-off-by: mmerrill3 <michael.merrill@vonage.com>
 2019-10-24 10:21:27 -04:00
GuyTempleton e87b1fddbe
Allow for override of CoreDNS version 
Allow users to override the CoreDNS image version to take advantage of local image registries or differing versions of the image to allow quicker access to new/improved CoreDNS plugins.
 2019-10-15 21:07:12 +01:00
Kubernetes Prow Robot c8d9c707b0
Merge pull request #7487 from tioxy/add_event_ttl_flag 
Add event ttl flag
 2019-10-12 10:34:37 -07:00
Peter Rifel 699fe56619 Upgrade Amazon VPC CNI plugin to 1.5.4 
See: https://github.com/aws/amazon-vpc-cni-k8s/releases/tag/v1.5.4
 2019-10-11 07:55:26 -07:00
Thomas Jackson 94ba7bbfd1 Update CRD 2019-10-10 14:01:33 -07:00
Gabriel Tiossi 6b8af27c37 Add EventTTL codegen 
Run apimachinery & crds to generate "zz_generated*" files and to update
cluster crd
 2019-10-10 14:23:34 -03:00
Peter Rifel 2a004c59a5 Update usage of controller-tools and regenerate CRDs 2019-10-01 17:24:32 -05:00
tanjunchen 7f64de4c34 fix-up some spelling mistakes 2019-09-29 21:45:47 +08:00
Roman Messer 98033345d4 Fix Description for KubeProxy MetricsBindAddress 
KubeProxy only accepts an IP address as --metrics-bind-address. The metrics port has to be specified as separate option.
 2019-09-25 12:57:14 +02:00
Maciej Kwiek 004cc3cf5c Add configuration options for Cilium 1.6 
Signed-off-by: Maciej Kwiek <maciej@isovalent.com>
 2019-09-16 16:49:26 +02:00
GuyTempleton d0f8dc5760 Add ability to configure number of Typha Replicas 
Adds the ability to configure the number of Typha replicas when using Calico CNI in 1.12+
to limit the impact of Calico on the APIServer and increase the scalability of the cluster.

Also adds the ability to configure Typha's Prometheus config.

Add Passing TyphaReplicas Validation Test
 2019-09-09 10:00:50 -04:00
Justin SB 080febe1c5
Add shortNames and columns to InstanceGroup CRD 
This makes the appearance in `kubectl get ig` very similar to the
`kops get ig` format.
 2019-05-16 03:20:08 -07:00
Justin SB 44fa273630
Generate CRDs 2019-05-07 10:37:06 -04:00