kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
13,354 Commits 31 Branches 256 Tags 544 MiB
Commit Graph

238 Commits

Author SHA1 Message Date
Akshansh Gupta 830fef7959 addons(cluster-autoscaler): Add newPodScaleUpDelay in clusterAutoscaler spec 2020-12-19 14:30:18 +05:30
Kubernetes Prow Robot ef8c36999a
Merge pull request #10404 from seh/allow-use-of-calico-vxlan-backend 
Calico: Allow operators to choose which encapsulation mode to use
 2020-12-18 10:54:25 -08:00
Steven E. Harris f0f45b71fd Allow use of Calico's VXLAN networking backend 
Introduce a new "encapsulationMode" field in Calico's portion of the
Cluster specification to allow switching between the the IP-in-IP and
VXLAN encapsulation protocols. For now, we accept the values "ipip"
and "vxlan," and forgo a possible "none" value that would disable
encapsulation altogether (at least for the default Calico IP pool).

Augment the default-populating procedure for Calico to take this field
into account when deciding both which networking backend to use and
whether to use IP-in-IP or VXLAN encapsulation for the default IP
pool. Note that these values supplied for the "CALICO_IPV4POOL_IPIP"
and "CALICO_IPV4POOL_VXLAN" environment variables in the "calico-node"
DaemonSet pod spec only matter for creating the "default" IPPool pool
object when no such objects already exist.

Generalize the documentation for the "crossSubnet" field to cover
environments more broad than just AWS, as Calico can employ this
selective encapsulation in any environment in which it can detect
boundaries between subnets.
 2020-12-18 10:55:11 -05:00
Kubernetes Prow Robot ff5c8f03de
Merge pull request #10442 from hakman/calico-ignore-loose-rpf 
Allow Calico to run on systems with loose reverse path forwarding
 2020-12-18 03:36:25 -08:00
MoShitrit 2e6e8515a4 Bump AWS-CNI to version 1.7.8 2020-12-17 10:02:15 -05:00
liranp f4a99db10f
fix(spot/addon): schedule controller to linux nodes only 2020-12-17 15:12:19 +02:00
Ciprian Hacman 25db4eb012 Allow Calico to run on systems with loose reverse path forwarding 2020-12-17 14:15:38 +02:00
Ole Markus With e269eed197 Bump go-bindata and use go module 2020-12-16 09:27:24 +01:00
Kubernetes Prow Robot ad208cc3be
Merge pull request #10414 from avdhoot/expose-metrics-Calico 
Expose metrics port when PrometheusMetricsEnabled set to true in Calico
 2020-12-14 21:31:48 -08:00
avdhoot 60f156f968 added missinf bindata to fix test case 2020-12-13 11:36:59 +05:30
MoShitrit f2bb2e587c Bump aws-cni to 1.7.7 2020-12-12 01:03:02 -05:00
Ciprian Hacman ab9d30a015 Order by name fields in CalicoNetworkingSpec 2020-12-11 18:23:49 +02:00
Ciprian Hacman c13d4a194c Update Calico to v3.17.1 2020-12-11 18:21:54 +02:00
Ciprian Hacman 372fde0949 Allow override of registry and tag for Calico images 2020-12-11 16:22:09 +02:00
Ole Markus With 75d4e2b897 Remove resource limits from cluster autoscaler 2020-12-06 13:36:06 +01:00
Ole Markus With 1ae09e86a5 Add minimal cert-manager addon 2020-12-04 21:52:07 +01:00
Kubernetes Prow Robot 443567426e
Merge pull request #9704 from nckturner/aws-cloud-controller 
Add aws-cloud-controller-manager config to addons
 2020-12-02 12:17:00 -08:00
Timo Reimann 492b4a61e3 Update DigitalOcean cloud-controller-manager to v0.1.30 
This changes bumps DigitalOcean's cloud-controller-manager to version
0.1.30 which brings a number of new features.
 2020-12-02 18:11:52 +01:00
MoShitrit 59e2b8357b Bump aws-vpc-cni version to 1.7.6 2020-12-01 22:20:38 -05:00
Nick Turner c9feb36f3f Add aws-cloud-controller-manager config to addons 
- Config at aws-cloud-controller.addons.k8s.io/k8s-1.18.yaml.template
- AWSCCMTag function for CCM image tag
 2020-11-30 01:35:07 -08:00
Ciprian Hacman 8b9fb1ffe8 Update Calico to v3.17.0 2020-11-24 08:17:23 +02:00
Kubernetes Prow Robot 064e39299b
Merge pull request #10295 from hakman/master-1.19.0-beta.2 
Update kOps version after 1.19.0-beta.2 release
 2020-11-22 11:31:34 -08:00
Ciprian Hacman 338fb43f8b Update kOps version after 1.19.0-beta.2 release 2020-11-22 08:10:50 +02:00
dntosas b7a2d0a1b1
[weave] Add support for default version override 
In this commit, we enable users to override default version
of networking/Weave specs.

Signed-off-by: dntosas <ntosas@gmail.com>
 2020-11-20 14:26:50 +02:00
Kubernetes Prow Robot 454ffddcb1
Merge pull request #10239 from johngmyers/kops-controller-domain 
Use separate domain for kops-controller bootstrap
 2020-11-17 23:24:04 -08:00
Ole Markus With 2659a30280 Make get instances respect needs-update annotation 
Make it possible for addons to set needs-update annotation

Use onDelete update strategy for cilium and set needs-update annotation

Rename node roles
 2020-11-16 08:26:17 +01:00
John Gardiner Myers 046a64cb19 Use separate domain for kops-controller bootstrap 2020-11-14 12:14:34 -08:00
Kubernetes Prow Robot 74c7a7a75d
Merge pull request #10215 from zetaab/specimage 
Allow to use custom csi plugin image and enable topology support
 2020-11-11 02:15:48 -08:00
Ciprian Hacman 3e8770f763 Update kOps version after 1.19.0-beta.1 release 2020-11-11 10:15:39 +02:00
Jesse Haka a8ed94b74f Allow to use custom csi plugin image and enable topology support 2020-11-11 09:50:08 +02:00
Marcos Soutullo Rodriguez 9d6479fbba
Mount the whole /etc/ssl/certs directory for k8s-ec2-srcdst (#10169) 
* Fix: Mount the whole `/etc/ssl/certs` directory for k8s-ec2-srcdst deployment.

Signed-off-by: Marcos Soutullo Rodriguez <marcos.soutullo@vodafone.com>

* Fix: Retrospective change to mount all CA certificates in <k8s-1.16

* Apply suggestions from code review

Co-authored-by: Ciprian Hacman <ciprianhacman@gmail.com>
 2020-11-04 22:12:53 -08:00
John Gardiner Myers 2ac17bee69 Remove code for no-longer-supported k8s releases 2020-10-29 16:45:53 -07:00
Kubernetes Prow Robot fdc56efdff
Merge pull request #10126 from hakman/aws-vpc-cni-reset 
Align AWS VPC CNI manifest with upstream
 2020-10-28 05:23:56 -07:00
Ciprian Hacman 112221e354 Amazon VPC CNI - update misc 2020-10-28 12:36:27 +02:00
Kubernetes Prow Robot 5700af84ac
Merge pull request #10111 from javipolo/nodeLocalDnsCacheKubeDnsOnly 
Add nodeLocalDNSCache.kubeDnsOnly option
 2020-10-28 00:03:56 -07:00
MoShitrit 36391bcf61 Update AWS VPC CNI to 1.7.5 2020-10-27 15:53:43 -04:00
Javi Polo c2684bcf7b Add nodeLocalDNSCache.kubeDnsOnly option 2020-10-27 10:46:25 +01:00
Ciprian Hacman 4e1c106570 Update bindata 2020-10-27 07:57:09 +02:00
liranp 7263ea99aa
feat(spot): bump spot controller (v1.0.68) 2020-10-25 12:06:36 +02:00
AkiraFukushima 541dd7ee14 Fix cilium template by specifying boolean as a string for enable-metrics 2020-10-24 21:03:06 +09:00
Kubernetes Prow Robot d7591f4b7f
Merge pull request #10064 from hakman/flannel-0.13.0 
Update Flannel CNI to v0.13.0
 2020-10-23 14:23:02 -07:00
Ciprian Hacman 3e3aca8c0f Mount /dev/net for access to TUN device 2020-10-23 20:40:13 +03:00
Ciprian Hacman f9e426c307 Update Flannel CNI to v0.13.0 2020-10-23 20:40:13 +03:00
Ciprian Hacman a04cea6371 Add eBPF dataplane support for Calico CNI 2020-10-19 20:04:27 +03:00
Ole Markus With a7c7af4e97 Don't let node-local-dns add iptables rules 
Since we use the local IP we don't need the iptables rule for the cluster dns IP
 2020-10-16 12:46:16 +02:00
Ciprian Hacman 23e73a5b8e Release 1.19.0-alpha.5 2020-10-15 07:09:46 +03:00
Peter Rifel 4276afe238
Upgrade aws-iam-authenticator to 0.5.2 2020-10-13 11:57:13 -05:00
AkiraFukushima 7ad4815fc9 Enable wireguard in calico-node if it is enabled 2020-10-11 15:53:11 +09:00
Ciprian Hacman d125e1a026 Update Calico to v3.16.3 2020-10-10 04:05:19 +03:00
Kubernetes Prow Robot cc41bba0cf
Merge pull request #10022 from olemarkus/metrics-server 
Kubelet serving certificate and metrics server addon
 2020-10-09 03:09:07 -07:00
Ole Markus With fdaf5eb38d UseKopsControllerForNodeBootstrap instead of k8s versoin to determine secure tls 2020-10-09 10:18:02 +02:00
Ole Markus With e7070e334d Add metrics-server addon 2020-10-09 08:27:08 +02:00
monicagangwar a63ccd5163 [calico] awsSrcDstCheck to disable src/dest checks in AWS 
* replacing k8s-ec2-srcdst with calico's config awsSrcDstCheck and
  flag FELIX_AWSSRCDSTCHECK
* documentation and iam changes for calico awsSrcDstCheck
 2020-10-08 17:17:23 +05:30
liranp 15cc0fefae
feat(spot): upgrade the cluster controller (v1.0.67) 2020-10-01 18:24:31 +03:00
Kubernetes Prow Robot 13cbd84886
Merge pull request #9967 from olemarkus/cilium-hubble-pointer 
Cilium hubble pointer
 2020-09-30 12:36:54 -07:00
Kubernetes Prow Robot b9921511a4
Merge pull request #10002 from olemarkus/nth-bump 
Bump NTH to 1.8
 2020-09-30 02:17:25 -07:00
Ole Markus With 736bb5fd56 Bump NTH to 1.8 2020-09-30 10:37:49 +02:00
John Gardiner Myers 11bebf0b4b Add label to prevent kops-controller from running on old nodes 2020-09-27 21:44:50 -07:00
Ole Markus With bfa68fc8cb Fix CAS ASG configuration 2020-09-26 11:00:53 +02:00
Alexander Block 1bd219f790 Add missing permissions for cilium-operator 
These became required a few cilium versions ago.
 2020-09-22 16:19:07 +02:00
Kubernetes Prow Robot 6bf2e1e8c2
Merge pull request #9971 from zetaab/ifxbool 
OpenStack: allow to specify storageClass creation to false
 2020-09-18 05:18:45 -07:00
Jesse Haka 55e9ee6bf2 fix go template 2020-09-18 13:21:35 +03:00
Ole Markus With b9111c78e7 Make hubbleSpec into a pointer 2020-09-18 09:23:52 +02:00
Ole Markus With b9212f85ad Add addon for aws node termination handler 2020-09-17 21:09:28 +02:00
Adam Smith 2fb1a4ecd2 Support ChainInsertMode config option for Calico Networking 2020-09-16 10:38:45 +01:00
Ciprian Hacman 0eb626fcdd Release 1.19.0-alpha.4 2020-09-16 11:37:38 +03:00
Ole Markus With d3ae52ce4b Remove template function test to make bazel happy 
This test is sort of redundant when we have integration tests etc covering rendering of these templates
 2020-09-15 20:43:21 +02:00
Ole Markus With 926a0bc7c1 Block external CCM for k8s less than 1.13 2020-09-15 15:51:23 +02:00
Jesse Haka b465466993 recompile bindata 2020-09-15 15:03:38 +03:00
Kubernetes Prow Robot 58092b5666
Merge pull request #9925 from olemarkus/cas-fixes 
Add missing flags to cluster autoscaler template
 2020-09-13 00:58:57 -07:00
Ole Markus With 2b5950c24c Add missing flags to template 2020-09-12 08:24:29 +02:00
Andreas Strikos 93c44d867a Remove force_tcp flag for nodelocalcache dot zone 
Forcing all DNS communication go through TCP can lead to increased
latency and slower DNS responses since a lot of upstream DNS
servers are not optimized for TCP traffic.
An example is AWS's VPC DNS server that sending all the DNS traffic
through TCP cause it to increase the latencies for this requests.
The kubernetes version has already changed this configmap to skip
force_tcp flag for the . zone, so it makes sense to follow their
example.
Reference https://github.com/kubernetes/kubernetes/blob/master/cluster/addons/dns/nodelocaldns/nodelocaldns.yaml#L100
 2020-09-11 09:58:27 +02:00
Kubernetes Prow Robot 8a07275bbf
Merge pull request #9901 from commixon/nodelocalcache-configure-resources 
Nodelocalcache configure resources
 2020-09-09 09:19:08 -07:00
Chris Loukas 65610dbcee Update NodeLocalDNSConfig with Mem/CPU requests 
Add NodeLocalDNS.CPURequest and NodeLocalDNS.MemoryRequest to
configure resource requests.

If not explicitly set, fall back to 25m and 5Mi
 2020-09-09 18:40:14 +03:00
Ciprian Hacman 0357d33ff6 Update Calico to v3.16.1 2020-09-09 06:37:27 +03:00
Kubernetes Prow Robot d8b7310c69
Merge pull request #9787 from olemarkus/cas 
Implement cluster autoscaler as bootstrap addon
 2020-09-04 22:37:40 -07:00
Ole Markus With a0e9fab104 Implement cluster autoscaler as bootstrap addon 
Use provider-agnostic node definition for cas instead of aws auto-discovery

Validate clusterAutoscalerSpec

Add spec documentation

Add cas docs

Make CRDs

Apply suggestions from code review

Co-authored-by: John Gardiner Myers <jgmyers@proofpoint.com>

Add enabled flag to cas config

Apply suggestions from code review

Co-authored-by: Guy Templeton <guyjtempleton@googlemail.com>

Add support for custom cas image

Support more k8s versions

Use full image names
 2020-09-03 09:52:13 +02:00
Ciprian Hacman 7a24b829aa Use calico/cni with fix for node name issue 2020-09-02 18:44:20 +03:00
Ciprian Hacman 1006f9082d Update Calico to v3.16.0 for k8s 1.16+ 2020-09-02 05:48:49 +03:00
Jesse Haka 92bc5689f3 regen bindata 2020-08-31 22:21:52 +03:00
liranp b10f07fefc
feat(spot): upgrade the controller (v1.0.64) 2020-08-31 19:59:15 +03:00
Justin SB 786423f617 Expose JWKS via a feature-flag 
When the PublicJWKS feature-flag is set, we expose the apiserver JWKS
document publicly (including enabling anonymous access).  This is a
stepping stone to a more hardened configuration where we copy the JWKS
document to S3/GCS/etc.

Co-authored-by: John Gardiner Myers <jgmyers@proofpoint.com>
 2020-08-30 10:15:11 -04:00
ozdanborne 6ae4337249 remove nodeAffinity from typha 2020-08-27 12:59:08 -04:00
MoShitrit db0111acfe Upgrade AWS VPC CNI to 1.7.1 2020-08-26 13:54:01 -04:00
Kubernetes Prow Robot b00f8049b6
Merge pull request #9808 from hakman/kope-to-k8s.gcr.io 
Pull images from k8s.gcr.io/kops instead of docker.io/kope
 2020-08-26 07:18:05 -07:00
Kubernetes Prow Robot 154335e758
Merge pull request #9818 from hakman/kube-router-1.0.1 
Update kube-router to v1.0.1
 2020-08-26 01:46:03 -07:00
Ciprian Hacman fd62ca9e42 Update kube-router to v1.0.1 2020-08-26 10:53:22 +03:00
Ciprian Hacman eb218cdc1a Update Calico to v3.15.2 for k8s 1.16+ 2020-08-26 10:01:22 +03:00
Ciprian Hacman a4ff90205a Pull images from k8s.gcr.io/kops instead of docker.io/kope 2020-08-25 08:04:36 +03:00
Ciprian Hacman 2d61ab0876 Bump kops to v1.19.0-alpha.3 2020-08-23 12:07:44 +03:00
MoShitrit 9bd7a350eb Upgrade AWS VPC CNI to 1.7.0 2020-08-19 21:51:22 -04:00
Ciprian Hacman 5e8bfa06b6 Update Weave Net to v2.7.0 2020-08-19 19:42:02 +03:00
Kubernetes Prow Robot 655c424ded
Merge pull request #9755 from WarpRat/9750 
Fix backwards compatibility when backend mode isn't set
 2020-08-17 06:28:18 -07:00
Robert Russell 1981c56f67 Fix backwards compatibility when backend mode isnt set 2020-08-16 23:05:04 -07:00
John Gardiner Myers 00c60ddff6 Add server code to kops-controller 2020-08-15 09:46:30 -07:00
Kubernetes Prow Robot e2e5b00620
Merge pull request #9689 from secoya/master 
Support for using hostPort when using kube-router
 2020-08-14 01:08:22 -07:00
Anders Ingemann 905fac677b
kube-router: Enable BGP graceful restart 2020-08-14 09:29:51 +02:00
Ciprian Hacman baac575df2 Update cluster-proportional-autoscaler to v1.8.3 2020-08-13 07:44:19 +03:00
Peter Rifel 008c22d9c0
Upgrade AWS VPC CNI provider to 1.6.4 
This adds support for arm64
 2020-08-11 20:41:02 -05:00
Anders Ingemann 154d8220ba
Support for using hostPort when using kube-router 2020-08-11 10:52:07 +02:00