kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
13,533 Commits 31 Branches 256 Tags 544 MiB
Commit Graph

323 Commits

Author SHA1 Message Date
Ole Markus With ff10bc3fc5 Side load images also on apiserver 2021-03-27 12:35:17 +01:00
Kubernetes Prow Robot fea7589d97
Merge pull request #10574 from bharath-123/feat/protokube-systemd 
Run protokube as a systemd service
 2021-03-07 22:03:44 -08:00
Ciprian Hacman 77b72efe1d Fix various nits when changing Protokube to run as service 2021-03-08 07:19:48 +02:00
Ole Markus With 8a205724f2 Deduplicate adding mastervolumebuilder 2021-03-07 22:09:02 +01:00
Ole Markus With c817ae662c Merge the two apply_cluster switches 2021-03-07 22:08:15 +01:00
Ole Markus With c6a741a148 Move dns and external_access to awsmodel 2021-03-07 22:07:17 +01:00
Ole Markus With d415fdf1a1 Move bastion model to awsmodel 2021-03-07 22:06:20 +01:00
Ole Markus With 896f1740c6 Rename spotinst symbols and merge spotinstmodel with awsmodel 2021-03-07 22:06:12 +01:00
Ole Markus With 782052f472 Set ssh key on the model context in one location 2021-03-07 21:44:12 +01:00
Bharath Vedartham 1d4c8e4afa Add protokube and channels to assets 2021-03-06 00:32:05 +05:30
Ole Markus With 4d4bcba315 Enforce 1.14 deprecation 2021-02-21 17:59:39 +01:00
Kubernetes Prow Robot c7f312ce08
Merge pull request #10728 from h3poteto/iss-10719 
Fill Role names in kops-controller-config instead of instance profile names when it is specified
 2021-02-11 08:38:16 -08:00
AkiraFukushima 36acadca59 Fill Role names in kops-controller-config instead of instance profile names when it is specified 
The role names are checked in node bootstrap.
If profile names are provided, bootstrap will fail.
Because profile name and role name do not always mactch in AWS IAM
 2021-02-11 14:28:49 +09:00
Kubernetes Prow Robot 4507be8e13
Merge pull request #10469 from justinsb/boot_nodes_from_kops_controller 
Boot nodes without state store access
 2021-02-08 11:28:19 -08:00
Ole Markus With 091b63a15a Deprecate aliyun 2021-02-05 22:51:49 +01:00
Ole Markus With f476857add Warn if cilium encryption is enabled, but no secret has been set 2021-01-19 20:20:12 +01:00
Justin SB 4ac9d5c17b Boot nodes without state store access 
kops-controller can now serve the instance group & cluster config to
nodes, as part of the bootstrap process.

This enables nodes to boot without access to the state
store (i.e. without S3 / GCS / etc permissions)

Feature-flagged behind the KopsControllerStateStore feature-flag.
 2021-01-09 13:08:48 -05:00
Ole Markus With 39b139a0ee Move bootstrapchannelbuilder to its own package 2021-01-09 09:55:22 +01:00
Peter Rifel 604cb67b62
Remove Region use in Azure 2020-12-21 20:54:28 -06:00
Justin SB 8fb7f1930d
Use Region method of fi.Cloud 
There's no need to track it separately, now that we have the Region
method on the Cloud interface.
 2020-12-21 20:50:54 -06:00
Kenji Kaneda a61caea8d2 Add Azure support 
This commit contains all changes required to support Azure
(https://github.com/kubernetes/kops/issues/3957).
 2020-12-21 08:27:54 -08:00
Justin SB 6de9994239 Refactor nodeUpConfigBuilder to be standalone 
We break the hard-link with the ApplyClusterCmd, the code is
over-coupled and ApplyClusterCmd is too big.
 2020-12-20 09:33:06 +02:00
Justin SB 7d9ff3ba96 Refactor MirroredAsset into mirrors package 
This means we can use MirroredAsset for nodeup without circular
dependencies.  Also removes a duplicate constant that was declared
twice.
 2020-12-19 18:39:09 -05:00
srikiz 33a4b4a76b Remove AlphaAllowDO flag 2020-12-04 21:32:01 +05:30
srikiz 052ec647dd Move DO to beta 2020-12-04 21:15:08 +05:30
John Gardiner Myers edfa6a0e94 Adjust Kubernetes version removals and deprecations for 1.20 2020-10-29 13:25:37 -07:00
Barry Melbourne 84417c330b Set minimum Terraform version to 0.12.26/0.13.0 2020-10-28 20:24:41 +00:00
Kubernetes Prow Robot d739bae871
Merge pull request #10106 from johngmyers/tf-json 
Remove dependency of TerraformJSON feature flag
 2020-10-26 07:23:01 -07:00
John Gardiner Myers f92d486197 Remove dependency of TerraformJSON feature flag 2020-10-25 10:49:59 -07:00
Ciprian Hacman c36262009b Install container runtime packages as assets - Code Review 1 2020-10-23 11:05:41 +03:00
Ciprian Hacman 732a161313 Install container runtime packages as assets - Main 2020-10-14 15:41:51 +03:00
Ole Markus With 1d922af364 Pass cloud into populate cluster 2020-09-24 07:22:13 +02:00
Ole Markus With 1a905d2063 Pass cloud into ApplyCluster 2020-09-23 19:57:43 +02:00
Peter Rifel d4d4545345
Add AWS partition support to iam service account roles 2020-09-17 10:01:27 -05:00
Justin SB 8498ac9dbb Create PublicJWKS feature flag 
This should be much easier to start and to get under testing; it only
works with a load balancer, it sets the apiserver into anonymous-auth
allowed, it grants the anonymous auth user permission to read our jwks
tokens.  But it shouldn't need a second bucket or anything of that
nature.

Co-authored-by: John Gardiner Myers <jgmyers@proofpoint.com>
 2020-09-09 09:57:06 -04:00
Kubernetes Prow Robot 68b2302b48
Merge pull request #9885 from olemarkus/encryptionconfig-warn 
Errors when encryptionConfig is enabled, but no encryptionconfig secret
 2020-09-08 11:09:45 -07:00
Ole Markus With 192d6a46f9 Errors when encryptionConfig is enabled, but no encryptionconfig secret 
When encryptionConfig is enabled, but the secret is missing, there is no
visible errors anywhere. kube-apiserver just goes into a crashloop
without any complains. This PR adds warnings both on the client side and
through nodeup.
 2020-09-08 17:46:18 +02:00
Ciprian Hacman c7bc3d4397 Update mock version to 1.19.0-alpha.3 2020-09-08 08:45:25 +03:00
John Gardiner Myers 3e75884661 Remove unused functionality 2020-08-30 22:55:21 -07:00
Justin SB 786423f617 Expose JWKS via a feature-flag 
When the PublicJWKS feature-flag is set, we expose the apiserver JWKS
document publicly (including enabling anonymous access).  This is a
stepping stone to a more hardened configuration where we copy the JWKS
document to S3/GCS/etc.

Co-authored-by: John Gardiner Myers <jgmyers@proofpoint.com>
 2020-08-30 10:15:11 -04:00
Justin Santa Barbara f32fcc35fa Addons: Support arbitrary additional objects 
We will be managing cluster addons using CRDs, and so we want to be
able to apply arbitrary objects as part of cluster bringup.

Start by allowing (behind a feature-flag) for arbitrary objects to be
specified.

Co-authored-by: John Gardiner Myers <jgmyers@proofpoint.com>
 2020-08-28 09:03:41 -04:00
Justin SB b158ffab04 Refactor: KopsModelContext embeds IAMModelContext 
go syntax makes this an annoying change, unfortunately.
 2020-08-25 11:22:34 -04:00
Peter Rifel 4d9f0128a3
Upgrade to klog2 
This splits up the kubernetes 1.19 PR to make it easier to keep up to date until we get it sorted out.
 2020-08-16 20:56:48 -05:00
Kubernetes Prow Robot 96ab8423b1
Merge pull request #9566 from hakman/arm64-images 
Add ARM64 support for masters
 2020-08-14 20:46:17 -07:00
John Gardiner Myers 2472e75bbf Remove unused tags functionality 2020-08-14 14:29:30 -07:00
Ciprian Hacman 331d223043 ARM64 support - Side-load multi-arch images 2020-08-10 13:47:07 +03:00
Ciprian Hacman cd74b9d1a6 ARM64 support - Don't generate Protokube assets for mock 2020-08-10 12:05:24 +03:00
Ole Markus With 48a72467c2 When channel is unavailable, don't try to validate things from it 
Update upup/pkg/fi/cloudup/apply_cluster.go

Co-authored-by: Ciprian Hacman <ciprianhacman@gmail.com>
 2020-08-04 09:00:16 +02:00
Ciprian Hacman e439684445 Refactor networking assets finder 2020-08-02 22:36:33 +03:00
Kubernetes Prow Robot 2fbef78143
Merge pull request #9650 from johngmyers/update-notag 
Remove tags from NodeupConfig
 2020-07-31 02:27:08 -07:00