kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
21,067 Commits 31 Branches 256 Tags 544 MiB
Commit Graph

2694 Commits

Author SHA1 Message Date
Peter Rifel 386352ea17
Upgrade AWS EBS CSI Driver to v1.25.0 2023-11-20 22:35:27 -06:00
AkiraFukushima 91d3e89313
Replace * in IAM tags when IRSA namespace has wildcard 2023-11-20 21:48:10 +09:00
yehielnetapp af19ad5664 add feature base 2023-11-12 14:19:37 +02:00
yehielnetapp 00fc4e78e8 add Label Resource Tag Specification Volumes 2023-11-12 14:19:15 +02:00
Ciprian Hacman 8916d1e547
Release 1.29.0-alpha.2 (#16095) 2023-11-11 13:29:12 +01:00
upodroid ecf212d736 add --node-instance-group flag to ginkgo 2023-10-26 23:08:18 +01:00
Kubernetes Prow Robot 165cbd5333
Merge pull request #15705 from zadjadr/feature/cilium-14 
Bump to Cilium 1.14
 2023-10-25 19:54:22 +02:00
shapirus dd665fbe1e Support setting cluster-autoscaler's skip-nodes-with-custom-controller-pods parameter 2023-10-25 14:03:57 +03:00
zadjadr 30aa24f6de
Update to Cilium 1.14.3 2023-10-24 16:59:21 +02:00
zadjadr 4dfaba5242
Bump Cilium to v1.14.2 2023-10-24 16:55:37 +02:00
Matt Morrison 811f7d0420
Push issuer documents to GCS 2023-10-24 07:57:21 +13:00
Ciprian Hacman ab05ebb28f Update containerd to v1.7.7 2023-10-22 13:45:12 +03:00
Matt Morrison 0be24991da
Add cloud-platform GCP VM scope 2023-10-11 19:59:25 +13:00
Ciprian Hacman 6dd31d9680 aws: Attach security group to NLBs for kops-controller 2023-10-08 09:16:35 +03:00
Kubernetes Prow Robot d2b789da07
Merge pull request #15993 from johngmyers/nlb-sg 
aws: Attach security groups to NLBs
 2023-10-07 10:57:01 +02:00
John Gardiner Myers 9f40d59545 Improve removal of orphaned security group rules 2023-10-06 22:33:31 -07:00
John Gardiner Myers 2fbc7cf979 aws: Attach security groups to NLBs 2023-10-06 22:33:31 -07:00
Kubernetes Prow Robot 24f23543b4
Merge pull request #15972 from borg-land/bump-gcp-ccm 
Bump GCP CCM again
 2023-10-07 03:41:20 +02:00
upodroid e08472ddc5 bump cloud-provider-gcp to latest build 2023-10-06 17:52:23 +01:00
Ciprian Hacman f26874c37e aws: Don't add dependency on additional CIDR for shared VPC 2023-10-03 07:24:12 +03:00
Mia-Cross e12f3dc07b
scaleway: terraform support (#15892) 
* tasks dependencies

* FindAddresses should proceed even if LBID is empty

* refacto instance: handle several instances in IG + volumeSize in model

* refacto lb_backend: set servers' IPs in backend task rather than instance

* dns changes for tf support

* render Scaleway s3 objects + add zone to outputs

* add terraform support to documentation

* new instance unique name should be given according to actual instances names

* avoid untimely changes in tf + tag instance IPs to avoid orphaned IPs at cluster deletion

* update integration tests

* review comments

* add IPs to the resources to be deleted with the cluster

* add task + model for DNS record
 2023-09-29 04:22:42 -07:00
upodroid d630f9c520 add missing rbac roles and don't run gkenetparamset controller 2023-09-28 12:06:52 +01:00
upodroid de0c99b192 bump gcp ccm image and dump more resources 2023-09-27 15:04:51 +01:00
Ciprian Hacman 626213c2c1 hack/update-expected.sh 2023-09-25 18:21:49 +02:00
Ciprian Hacman b5aedcf73b Update etcd-manager to v3.0.20230925 2023-09-25 18:17:44 +02:00
Ciprian Hacman dbe05d8895 Update Karpenter to v0.30.0 2023-09-24 01:53:10 +02:00
Kubernetes Prow Robot d82d574dbe
Merge pull request #15955 from justinsb/gce_network_tags_work_with_ipv6 
gce ipv6: we can use network tags with ipv6 addresses
 2023-09-23 12:52:55 -07:00
justinsb 4557f9b655 gce ipv6: we can use network tags with ipv6 addresses 
These work with IPv6, and this means we don't need to set up the (more
fragile) CIDR based rules.
 2023-09-23 08:39:30 -04:00
Jun Mukai 0573e6d39e Fix minor typos for karpenter setup. 
`on-demand` is the right string to indicate OnDemand in Karpenter.
See: https://github.com/aws/karpenter-core/blob/main/pkg/apis/v1alpha5/labels.go#L30
As the result it does not fall back to ondemand instances.

Also add `ec2:DescribeImages` to karpenter IAM policies -- it's
noted in https://karpenter.sh/docs/getting-started/migrating-from-cas/#create-iam-roles
(the list also has DeleteLaunchTemplates but I don't think this
is necessary for kOps).
 2023-09-20 09:57:46 -07:00
Dan Ports ae1584c6f0 Add Cognito permissions for AWS LBC. 2023-09-14 12:15:30 -04:00
Zadjad Rezai 592e84d042 Populate ingress spec values only when needed 
Co-authored-by: Ciprian Hacman <ciprian@hakman.dev>

fmt
 2023-09-10 09:05:51 +02:00
zadjadr 61d036933e hardcode ingress secrets namespace & lb mode 2023-09-10 08:57:04 +02:00
zadjadr 4807f2c0c6 Implement Cilium Ingress 2023-09-10 08:57:03 +02:00
John Gardiner Myers 9ae4e967d1
Release 1.29.0-alpha.1 (#15889) 2023-09-07 22:00:13 -07:00
Ciprian Hacman 120c0b65aa hack/update-expected.sh 2023-09-05 12:34:20 +03:00
Ciprian Hacman c43b48a8d8 Remove Docker config option 2023-09-05 07:22:33 +03:00
John Gardiner Myers 9ced296724 AWS and GCP always use external CCM 2023-09-04 15:54:16 -07:00
John Gardiner Myers daf3d0808c Update IAM builder tests to use external CCM 2023-09-04 15:54:05 -07:00
John Gardiner Myers 47b1c37069 Remove code for disabling AWS EBS CSI driver 2023-09-04 15:43:23 -07:00
Kubernetes Prow Robot ccb39750d0
Merge pull request #15860 from johngmyers/remove-23 
Remove support for Kubernetes 1.23
 2023-09-03 23:23:48 -07:00
Kubernetes Prow Robot f61939b1e2
Merge pull request #15848 from justinsb/warmpool_tweaks 
Fix warmpool to expose dependencies for dependency analysis
 2023-09-03 20:37:47 -07:00
John Gardiner Myers b3908e592c Remove support for Kubernetes 1.23 2023-09-03 16:22:18 -07:00
Ciprian Hacman 9caf0b2662
Release 1.29.0-alpha.0 (#15858) 2023-09-02 23:19:12 -07:00
Ciprian Hacman db8b0f32f9
Release 1.28.0-beta.1 (#15855) 2023-09-02 21:29:12 -07:00
John Gardiner Myers 0d43b66e56 Use cluster-autoscaler 1.28.0 on k8s 1.28+ 2023-08-31 17:21:17 -07:00
justinsb f5c2f2bcba Fix warmpool to expose dependencies for dependency analysis 
We should populate the AutoscalingGroup field, so that it can be used
by dependency analysis.
 2023-08-31 13:08:08 -04:00
Ciprian Hacman 17d313e89f Allow custom service account issuer without public bucket 2023-08-31 16:37:33 +03:00
Ciprian Hacman 68ce4c800e aws: Add dependency on additional network cidrs for subnets 2023-08-31 11:15:10 +03:00
John Gardiner Myers cd32e76a50 Use AWS CCM 1.28.1 on k8s 1.28+ 2023-08-22 17:07:10 -07:00
Kubernetes Prow Robot 73159cd6f5
Merge pull request #15670 from johngmyers/aws-ccm 
Fix AWS CCM defaults for IPAM to match KCM
 2023-08-16 07:22:27 -07:00
zadjadr 0ea7e55f25 Add missing security groups for cilium etcd 2023-08-11 13:47:15 +02:00
Marco Palmisano 6a7723176d
fix: fixed an edge case with setting NodePort access in Hetzner Cloud 2023-08-10 16:17:28 +02:00
John Gardiner Myers edac43faed
Release 1.28.0-alpha.2 (#15758) 2023-08-09 21:13:26 -07:00
John Gardiner Myers 37be4741e1 hack/update-expected.sh 2023-08-09 18:12:37 -07:00
John Gardiner Myers 688097bd85 Remove unnecessary data from userdata 2023-08-09 18:12:37 -07:00
John Gardiner Myers 0f36b1344e hack/update-expected.sh 2023-08-09 18:12:37 -07:00
Kubernetes Prow Robot dc2db03de2
Merge pull request #15715 from johngmyers/nodeup-cloudconfig 
Remove references to cloudconfig-related fields from ClusterSpec in nodeup
 2023-08-08 22:03:50 -07:00
Ciprian Hacman 60b0fee1e0 aws: Add instance group tag to subnets only with Karpenter 2023-08-05 07:50:24 +03:00
Kubernetes Prow Robot ba7b4e716a
Merge pull request #15730 from zadjadr/feature/cilium-13 
Bump cilium to v1.13.5
 2023-08-04 07:44:23 -07:00
Kubernetes Prow Robot 29aa8257f4
Merge pull request #15737 from hakman/azure_nat_gateway 
azure: Add support for NAT gateway
 2023-08-03 21:42:20 -07:00
Ole Markus With a0d67fc475 Bump cilium to 1.13.5 
Bump to Cilium 1.14.0

hack/update-expected.sh
 2023-08-03 21:03:56 +02:00
Jesse Haka e3bcb1f195
OpenStack: add server group name override annotation (#15735) 
* OpenStack: add server group name override annotation

* use retries to listinstances

* add support for multiple clusters in same tenant

* run hack-expected.sh

* add test for serverGroupName annotation

* use retry
 2023-08-03 00:04:20 -07:00
Ciprian Hacman d382b0e44f azure: Add support for NAT gateway 2023-08-03 07:12:51 +03:00
Kubernetes Prow Robot 12b6991ad3
Merge pull request #15677 from hakman/azure_application_security_groups 
azure: Add support for application security groups
 2023-07-30 07:32:02 -07:00
Ciprian Hacman 10fa740e3d azure: Add support for application security groups 2023-07-30 14:40:14 +03:00
John Gardiner Myers 93bc577488 Remove code for unsupported k8s version 2023-07-29 05:08:38 -07:00
John Gardiner Myers 11069febb1 Fix AWS CCM defaults for IPAM to match KCM 2023-07-29 04:50:42 -07:00
John Gardiner Myers ed9883651c Remove references to Openstack ClusterSpec fields from nodeup 2023-07-29 04:42:07 -07:00
Kubernetes Prow Robot a8fa8952ba
Merge pull request #15647 from johngmyers/nodeup-protokube 
Remove more references to ClusterSpec fields from nodeup
 2023-07-29 00:01:59 -07:00
Kubernetes Prow Robot b29714a98c
Merge pull request #15708 from justinsb/gce_multi_lbs 
gce load balancers: set LoadBalancingScheme to EXTERNAL explicitly
 2023-07-28 23:13:59 -07:00
Kubernetes Prow Robot fd131bc730
Merge pull request #15706 from johngmyers/upgrade-ccm 
Upgrade AWS CCM
 2023-07-28 22:22:00 -07:00
justinsb 7bc5a71773 gce load balancers: set LoadBalancingScheme to EXTERNAL explicitly 
This avoids a spurious change being printed, and is more correct - we
actually want this to be external (vs nil, which implicitly means
"don't care").
 2023-07-29 08:15:29 +03:00
justinsb 3cce79d4e4 gce: Refactor resource labeling 
Create a more strongly-typed label object and use it when labeling
cluster resources.
 2023-07-28 23:48:41 -04:00
justinsb fb8e80e3f5 gce: Set labels on ForwardingRules 
We add the cluster-name label, now that labels are supported on
ForwardingRules.
 2023-07-28 23:48:41 -04:00
John Gardiner Myers fc8c19ea74
Update pkg/model/components/awscloudcontrollermanager.go 
Co-authored-by: Ciprian Hacman <ciprian@hakman.dev>
 2023-07-28 13:39:06 -07:00
Kubernetes Prow Robot 223b66c3f7
Merge pull request #15666 from johngmyers/nth 
Enable NTH by default on AWS
 2023-07-28 11:55:42 -07:00
John Gardiner Myers 3d100d1921 hack/update-expected.sh 2023-07-28 08:27:31 -07:00
John Gardiner Myers 845fb8880a Upgrade AWS CCM 2023-07-28 06:39:20 -07:00
John Gardiner Myers 4e47ae5705 Upgrade cluster-autoscaler 2023-07-28 02:59:30 -07:00
John Gardiner Myers 3756bdad5b v1alpha3: Move secretStore and keyStore uder configStore 2023-07-22 16:04:24 -07:00
John Gardiner Myers 57b0d8e9cd v1alpha3: Move configBase to configStore.base 2023-07-22 15:57:35 -07:00
Kubernetes Prow Robot dbba2ae410
Merge pull request #15678 from johngmyers/no-configstore 
v1alpha3: remove redundant ConfigStore
 2023-07-22 00:32:07 -07:00
Kubernetes Prow Robot b7f017b016
Merge pull request #15565 from justinsb/symlink_approach_2 
etcd-manager: support symlinking versions
 2023-07-20 23:40:07 -07:00
John Gardiner Myers 6836673cca Stop using redundant configStore setting 2023-07-20 19:10:21 -07:00
John Gardiner Myers 9b64707159 Ignore no-longer-used topology fields in ClusterSpec 2023-07-19 08:48:38 -07:00
John Gardiner Myers 1c0b75ae99 hack/update-expected.sh 2023-07-18 22:21:05 -07:00
John Gardiner Myers f1f8b0637b Enable NTH by default on AWS 2023-07-18 16:13:22 -07:00
John Gardiner Myers 1358851c7d Get VFSContext from caller in NewAssetBuilder() 2023-07-18 08:49:06 -07:00
Ciprian Hacman c4ec894578 azure: Perform challenge callbacks into a node 2023-07-18 06:04:51 +03:00
Anthony Hausman 4a01fc30c4
feat(karpenter): Variabilize Image, logFormat and logLevel 2023-07-17 13:13:37 +02:00
John Gardiner Myers bbff6298e7 Remove support for bootstrap tokens 2023-07-16 12:12:00 -07:00
Kubernetes Prow Robot bb4dbdce90
Merge pull request #15646 from johngmyers/prune-dead 
Remove dead code for non-kops-controller bootstrap
 2023-07-16 11:37:06 -07:00
Kubernetes Prow Robot 61fb95d8c4
Merge pull request #15645 from johngmyers/nodeup-clusterdomain 
Remove references to more ClusterSpec fields from nodeup
 2023-07-16 08:35:08 -07:00
John Gardiner Myers 977aacc356 Remove dead code for non-kops-controller bootstrap 2023-07-16 07:40:25 -07:00
Kubernetes Prow Robot 2a0cc8a7dc
Merge pull request #15627 from hakman/azure_dns_none 
azure: Add support for dns=none
 2023-07-16 04:27:05 -07:00
John Gardiner Myers 56a8f46952 hack/update-expected.sh 2023-07-15 21:27:02 -07:00
John Gardiner Myers 62f7faa4da Remove references to ClusterSpec.API from nodeup 2023-07-15 14:55:38 -07:00
Kubernetes Prow Robot 141a040aec
Merge pull request #15607 from hakman/gce_cloud-init 
gce: Use `user-data` instead of `startup-script` metadata key
 2023-07-15 11:47:05 -07:00
Ciprian Hacman 80944323f3 azure: Allow full load balancer access only when public 2023-07-15 19:16:59 +03:00
Kubernetes Prow Robot 5613a12027
Merge pull request #15635 from zetaab/hubblerules 
open hubble port 4244 for openstack
 2023-07-15 01:33:04 -07:00