kubernetes/kops - kops - Gitea: Git with a cup of tea

Commit Graph

Author	SHA1	Message	Date
justinsb	ea3122bf67	Minimal cluster-api integration This only barely works, but we can start to boot machines and make incremental progress.	2024-02-28 22:40:15 -05:00
Ciprian Hacman	770e56e010	gce: Limit backend names to 63 chars	2024-02-25 18:20:07 +02:00
Ciprian Hacman	97a0800b88	gce: Limit health check names to 63 chars	2024-02-25 08:40:18 +02:00
justinsb	da233efe11	gce: Prune old forwarding rules Now that we create an new forwarding rule for kops-controller, we want to remove the old one after the rolling-update.	2024-02-24 12:20:20 -05:00
justinsb	ba7facff41	gce: Always create an internal load balancer When we create a external load balancer on GCE, we now also create an internal load balancer. The internal load balancer is used for node/pod -> control-plane traffic, the external load balancer is used for other traffic (e.g. "user" traffic to kube-apiserver). This means that we can apply more granular firewall rules, and generally avoid complex logic around discovery of the internal control plane addresses for GCE.	2024-02-24 12:20:19 -05:00
Ciprian Hacman	5a4778f77c	aws: Update EBS CSI driver to v1.28.0	2024-02-20 04:48:34 +02:00
Ciprian Hacman	83c88db90a	Update Cilium to v1.15.1	2024-02-18 10:28:26 +02:00
justinsb	2a9343a168	Generate revisions of NLB objects, and introduce cleanup phase This lets us safely make changes to otherwise immutable fields, in particular for adding security groups to NLBs created without them. We detect the older versions, and create deletion tasks to remove them. These tasks can be deferred, and we expect them to be deferred to a "prune" phase that runs after cluster apply. Co-authored-by: Ciprian Hacman <ciprian@hakman.dev>	2024-02-17 11:41:15 -05:00
Peter Rifel	70da572ed8	Use pkg/model/iam for building SQS queue policy	2024-02-14 17:39:45 -06:00
Peter Rifel	3f74f21b7e	Update IAM Policy Principal.Service to stringorset	2024-02-14 17:39:43 -06:00
Kubernetes Prow Robot	8f71e68d68	Merge pull request #16339 from justinsb/refactor_targetgroups target group: refactor discovery into awsup	2024-02-14 14:33:00 -08:00
justinsb	eb27e30153	target group: refactor discovery into awsup This sets us up to support multiple generations of target groups, needed if we want to support adding SecurityGroups to the NLB.	2024-02-14 15:48:50 -05:00
Kubernetes Prow Robot	9f43b03546	Merge pull request #16351 from rifelpet/iam-policy-refactor Refactor IAM Policy Builder	2024-02-13 09:21:31 -08:00
Kubernetes Prow Robot	5a3b1e2703	Merge pull request #16009 from voriol/master If specified, posts event data to URL upon instance interruption action.	2024-02-13 05:29:50 -08:00
Peter Rifel	4643c66f6b	./hack/update-expected.sh	2024-02-12 22:42:14 -06:00
Peter Rifel	b5264488cb	Rename stringorslice package to stringorset	2024-02-12 22:42:13 -06:00
Peter Rifel	f098401c49	Rename StringOrSlice to StringOrSet, sort lists	2024-02-12 21:37:27 -06:00
Peter Rifel	21804bf631	Migrate to non-deprecated Sets implementation	2024-02-12 21:12:27 -06:00
Ciprian Hacman	eb1dd59e3c	azure: Replace lb.ForAPIServer with lb.WellKnownServices	2024-02-11 11:06:17 +02:00
Kubernetes Prow Robot	3d6599bb20	Merge pull request #16344 from justinsb/overlap_podcidr validation: Allow overlap of pod/node CIDR and service CIDR	2024-02-10 15:45:23 -08:00
Kubernetes Prow Robot	ac7ef929ab	Merge pull request #16343 from justinsb/cleanup_double_import Cleanup import of the same package in tests	2024-02-10 14:25:03 -08:00
justinsb	371902700e	validation: Allow overlap of pod/node CIDR and service CIDR We allowed this previously, so this is a regression for existing clusters. These clusters are not obviously broken, and the kube-controller-manager (for example) will exclude the service range when issuing node CIDRs. As such, remove validation until we can determine if anything is actually broken by an overlap (and a path forwards if so). Issue #16340	2024-02-10 16:07:03 -05:00
justinsb	3c32c37474	Cleanup import of the same package in tests Not critical, but it was troubling the linter.	2024-02-10 15:34:09 -05:00
justinsb	d50f1968a9	deletion: tolerate concurrent SQS queue deletion Ignore the not-found error.	2024-02-10 14:29:45 -05:00
Ciprian Hacman	1bbd3e446f	azure: Migrate resources to new SDK version	2024-02-09 05:14:38 +02:00
Ciprian Hacman	4198b19438	azure: Migrate model to new SDK version	2024-02-09 04:38:33 +02:00
Ciprian Hacman	6b5a429e5b	azure: Migrate node identity to new SDK version	2024-02-09 04:38:33 +02:00
justinsb	bd8cce06ae	refactor: Drop TargetGroups from NetworkLoadBalancer task They are not needed, they were only used for dependency ordering (and we now have that dependency on the split out listener task)	2024-02-04 18:09:17 -05:00
justinsb	c35c754eff	Refactor: Split out NLB Listener into its own task This allows us to use more of our task machinery, including dependency analysis. The intent is that we'll be able to support multiple LoadBalancers and TargetGroups.	2024-02-04 15:52:25 -05:00
Kubernetes Prow Robot	01705a6da3	Merge pull request #16318 from Lerentis/master feat: added image minimum and maximum gc age	2024-02-03 11:43:47 -08:00
Tobias Trabelsi	311f40245f	added image minimum and maximum gc age Signed-off-by: Tobias Trabelsi <lerentis@uploadfilter24.eu>	2024-02-03 12:30:46 +01:00
zadjadr	656b3a6956	Update to cilium 1.15	2024-02-02 19:37:04 +01:00
Kubernetes Prow Robot	1067b6279b	Merge pull request #16294 from justinsb/wait_should_be_an_attribute refactor: wait for load balancer readiness using a private field	2024-02-01 16:08:54 -08:00
Jesse Haka	b5d1ee8245	update containerd & runc versions	2024-02-01 15:05:55 +02:00
justinsb	314e2b954b	Refactor: Move NLB listing function into awsup As pruning becomes more a part of tasks, there is more overlap between `kops update cluster` and `kops delete cluster`.	2024-01-30 04:43:48 +02:00
justinsb	086af6458e	refactor: wait for load balancer readiness using a private field This approach is more explicit than looking at the names of the target groups, and using a private field is simpler.	2024-01-29 09:34:56 -05:00
Kubernetes Prow Robot	b84ab1e0eb	Merge pull request #16289 from justinsb/nlb_should_set_scheme Tweak: Set Scheme on NLB tasks for public load balancers	2024-01-28 21:13:35 -08:00
justinsb	0b8d3a52cb	Tweak: Set Scheme on NLB tasks for public load balancers This avoids a spurious diff.	2024-01-28 16:19:37 -05:00
justinsb	169c96ba11	refactor: NetworkLoadBalancer Name should match Name tag It was actually the terraform name, and didn't match the tag. This change should have no externally-visible effect.	2024-01-28 16:19:02 -05:00
justinsb	2fb39dedc8	toolbox dump: output correct type for target groups We were previously outputing them with the load-balancer target value.	2024-01-27 13:22:38 -05:00
Kubernetes Prow Robot	e5c4fe80df	Merge pull request #16266 from borg-land/dump-patch Fix dumping logs for GCE scale tests	2024-01-26 20:49:50 +01:00
justinsb	6871aa7148	Refactor: Plumb context through GCE firewallRule methods Helps with more coherent tracing/logging.	2024-01-26 10:51:34 -05:00
hakuna-matatah	e4e2847403	Add support to configure Job Controller concurrent syncs flag in Job/KCM Controller	2024-01-25 11:06:42 -08:00
hakuna-matatah	1854076579	Add support to configure HPA Controller concurrent syncs flag in HPA/KCM Controller	2024-01-24 11:40:58 -08:00
Jesse Haka	11e84b78f1	hack/update-expected	2024-01-22 19:02:44 +02:00
Jesse Haka	75659b6280	include kube-apiserver controlplane ports in dns=none	2024-01-22 18:41:30 +02:00
Kubernetes Prow Robot	9645e5c7e9	Merge pull request #16265 from borg-land/network-patch gce: fix nlb firewall rules, operations and alias network subnets	2024-01-20 17:20:59 +01:00
Kubernetes Prow Robot	89b7b14176	Merge pull request #15829 from justinsb/refactor_forapiserver Refactor: Replace ForAPIServer with WellKnownServices	2024-01-20 17:20:53 +01:00
upodroid	f3bc523b17	fix nlb firewall rules, operations and alias network subnets	2024-01-20 13:41:16 +00:00
upodroid	4717450b1c	fix dumpling logs for GCE scale tests	2024-01-20 13:33:04 +00:00

1 2 3 4 5 ...

5512 Commits