kubernetes

Author	SHA1	Message	Date
pacoxu	4ee38f33d2	update etcd makefile to build v3.5.0 image	2021-06-16 14:41:44 +08:00
Kubernetes Prow Robot	3a47ddccdf	Merge pull request #100488 from liggitt/protobuf update etcd, grpc, protobuf dependencies	2021-06-15 14:49:42 -07:00
Kubernetes Prow Robot	b43e4ec89b	Merge pull request #102857 from ingvagabund/drop-kube-scheduler-insecure-port-bits kube-scheduler: stop using insecure serving bits	2021-06-15 13:42:12 -07:00
Jordan Liggitt	2979c3325e	Switch to go.etcd.io/etcd/client/v3	2021-06-15 09:53:06 -04:00
Jordan Liggitt	5f1983d871	Drop etcd v2 support from etcd migration image	2021-06-15 09:53:05 -04:00
Kubernetes Prow Robot	b766721332	Merge pull request #102814 from cheftako/master Update K/K to use ANP v0.0.20	2021-06-14 19:00:33 -07:00
Jan Chaloupka	7560f33e27	kube-scheduler: stop using insecure serving bits	2021-06-14 22:50:53 +02:00
Kubernetes Prow Robot	1400be60ff	Merge pull request #102495 from jeremyje/fb177 GCE Windows: Upgrade to fluent-bit 1.7.7, 1.7.6 had a major regression.	2021-06-11 17:03:01 -07:00
Walter Fender	9f7d61c520	Upgrade ANP components to v0.0.20. Pick up new metrics to help with debugging and monitoring. Pick up GRPC keep alive on frontend tunnel. Server now using apps/options.	2021-06-11 09:02:04 -07:00
Joseph Anttila Hall	9d514b2de4	Konnectivity: tune flags for larger clusters (5k nodes).	2021-06-10 14:05:44 -07:00
Kubernetes Prow Robot	f008ba0fed	Merge pull request #102062 from serathius/etcd-server Update Etcd server image to 3.5.0-rc.0-0	2021-06-10 08:23:27 -07:00
Kubernetes Prow Robot	4f854e39f2	Merge pull request #102689 from cpanato/go1165 [go1.16] Update to go1.16.5	2021-06-09 12:31:27 -07:00
Marek Siarkowicz	12447bc803	Upgrade etcd server version to 3.5.0-rc.0	2021-06-09 17:00:05 +02:00
Mengjiao Liu	dc5626cc18	Upgrade debian-base to buster v1.7.1	2021-06-09 14:30:31 +08:00
Kubernetes Prow Robot	4413ed50dd	Merge pull request #102585 from serathius/etcd-v3.5.0-rc.0 Update etcd makefile to build v3.5.0-rc.0 image	2021-06-08 12:26:28 -07:00
Carlos Panato	1524526991	[go1.16] Update to go1.16.5 Signed-off-by: Carlos Panato <ctadeu@gmail.com>	2021-06-08 14:11:32 +02:00
Kubernetes Prow Robot	028bffba58	Merge pull request #102661 from Jefftree/patch-4 Default GCE testing to using konnectivity	2021-06-07 11:45:08 -07:00
Kubernetes Prow Robot	3d2a7c146e	Merge pull request #102370 from JacobX33/master Remove set errexit from etcd manifest	2021-06-07 08:16:40 -07:00
Jeffrey Ying	7a63dff88b	Update konnectivity default	2021-06-07 11:06:28 -04:00
Kubernetes Prow Robot	9d27400fe2	Merge pull request #102040 from njuptlzf/fix_conversion Fix auditing failed of request: encoding failed	2021-06-05 19:58:38 -07:00
njuptlzf	7b0fbb7292	add audit log test cases for cross-group subresource	2021-06-06 09:52:05 +08:00
tiloso	c5d70e9db1	Fix staticcheck in cluster & k8s.io/{apimachinery,apiserver}	2021-06-05 22:15:15 +02:00
Kubernetes Prow Robot	74af3b712d	Merge pull request #102297 from deads2k/ssh-tunnels remove --ssh- options, deprecated 13 releases, that only work on GCE	2021-06-05 10:40:50 -07:00
Kubernetes Prow Robot	e6a8bc9fbe	Merge pull request #90368 from serathius/remove-legacy-metrics Remove legacy metrics client from podautoscaler	2021-06-05 08:44:38 -07:00
Marek Siarkowicz	4ebc0c94a4	Remove legacy metrics client from podautoscaler	2021-06-04 23:06:32 +02:00
Paco Xu	7f06d0d553	add NoExecute toleration for konnectivity agent	2021-06-04 17:39:02 +08:00
Marek Siarkowicz	82be7aad26	Update etcd makefile to build v3.5.0-rc.0 image	2021-06-04 08:31:19 +02:00
Shihao Xia	f1c1992f5e	fix potential deadlock	2021-06-03 21:48:34 -04:00
David Eads	ae603a38bc	remove -ssh-user from cluster scripts for GCE	2021-06-03 17:53:09 -04:00
Jeremy Edwards	47a7fcb17b	GCE Windows: Only create NPD kubeconfig when the file path is defined.	2021-06-02 21:15:45 +00:00
Maciej Szulik	1619e8eb95	Clean apply's prune and kube addons with batch/v1 CronJob	2021-06-02 14:27:29 +02:00
Walter Fender	355be99390	Default GCE testing to using konnectivity Turning GRPC based Konnectivity testing on id advance of removing the SSHTunnel code. https://testgrid.k8s.io/sig-api-machinery-network-proxy#ci-kubernetes-e2e-gci-gce-network-proxy-grpc&width=25 shows the feature to be stable and it should remain that way.	2021-06-01 16:53:41 -07:00
Jeremy Edwards	3cb4f3e1bf	GCE Windows: Upgrade to fluent-bit 1.7.7, 1.7.6 had a major regression.	2021-06-01 16:25:21 +00:00
Kubernetes Prow Robot	bc8acbc43e	Merge pull request #102328 from lentzi90/update-cni-plugins Update CNI plugins v0.9.1	2021-05-28 10:16:46 -07:00
jornshen	c9fe8ddf68	bump calico to v3.19.1	2021-05-28 10:29:44 +08:00
David Ashpole	3813ed1ef7	fix prometheus-to-sd image for fluentbit	2021-05-27 10:54:10 -07:00
Jakub Sroka	ac17d03e76	Remove set errexit from etcd manifest There were cases where this caused etcd to crashloop. It seems lesser evil to let migrator fail instead.	2021-05-27 14:25:35 +02:00
Kubernetes Prow Robot	d541872f9a	Merge pull request #102239 from Haleygo/clean-up-AlgorithmProvider-flag-and-pkg clean up algorithmprovider pkg and remove scheduler deprecated algorithm-provider flag	2021-05-27 00:54:23 -07:00
Lennart Jern	507710b50f	Update CNI plugins v0.9.1 ref: https://github.com/containernetworking/plugins/releases/tag/v0.9.1 Signed-off-by: Lennart Jern <lennart.jern@est.tech>	2021-05-26 11:02:04 +03:00
Haleygo	2769e99dba	remove scheduler deprecated algorithm-provider flag and clean up algorithmprovider pkg	2021-05-26 13:19:44 +08:00
Marko Mudrinić	80fa50e0d7	Update etcd image revision Signed-off-by: Marko Mudrinić <mudrinic.mare@gmail.com>	2021-05-25 22:49:20 +02:00
Marko Mudrinić	33fe4bb076	Update debian-base to buster-v1.7.0 Signed-off-by: Marko Mudrinić <mudrinic.mare@gmail.com>	2021-05-25 22:49:03 +02:00
Kubernetes Prow Robot	fd82c69957	Merge pull request #102277 from serathius/etcd-image Update etcd makefile to build v3.5.0-beta.3 image	2021-05-25 13:46:54 -07:00
Marek Siarkowicz	e862421c2b	Update etcd makefile to build v3.5.0-beta.3 image	2021-05-25 15:37:22 +02:00
Sascha Grunert	b167fc24d7	Update pause image to v3.5 Update dependencies and the test images to use pause 3.5. We also provide a changelog entry for the new container image version. Signed-off-by: Sascha Grunert <sgrunert@redhat.com>	2021-05-25 09:04:46 +02:00
Kubernetes Prow Robot	b876623070	Merge pull request #102264 from jeremyje/fb176 Upgrade Fluent-Bit 1.7.6.	2021-05-24 21:49:29 -07:00
Kubernetes Prow Robot	06d44d2f42	Merge pull request #101168 from mikedanese/warning add a warning about the filter table	2021-05-24 21:48:40 -07:00
walter	13ab65d356	Upgrade konnectivity-client for GRPC connection fixes The v0.0.19 Konnectivity client includes several significant fixes to prevent the GRPC tunnel between the KAS and the APIServer Network Proxy from becoming blocked/wedged. Importantly it picks up the fix for kubernetes-sigs/apiserver-network-proxy#167. We believe this will also fix many of the failures currently seen on https://testgrid.k8s.io/sig-api-machinery-network-proxy#ci-kubernetes-e2e-gci-gce-network-proxy-grpc&width=5.	2021-05-24 14:53:30 -07:00
Kubernetes Prow Robot	ccbb7dbe54	Merge pull request #102070 from bskiba/master Update addon resizer to 1.8.13	2021-05-24 13:38:41 -07:00
Kubernetes Prow Robot	0d46e728dd	Merge pull request #101486 from dashpole/updates_images Update event-exporter and prometheus-to-sd versions in cluster addons	2021-05-24 13:38:32 -07:00
Jeremy Edwards	54f3eb42e9	Upgrade Fluent-Bit 1.7.6.	2021-05-24 19:51:00 +00:00
Kubernetes Prow Robot	77937b1e8e	Merge pull request #101628 from bobbypage/addon-termination-handler Remove node termination handler addon	2021-05-24 11:31:39 -07:00
Beata Lach (Skiba)	7d2e6d7ba9	Update addon resizer to 1.8.13 Needed to fix https://github.com/kubernetes/autoscaler/issues/3567	2021-05-24 18:58:08 +02:00
Kubernetes Prow Robot	d7903669c4	Merge pull request #96299 from ggriffiths/snapshot_controller_metrics_e2e_tests Add Snapshot Controller e2e metric tests	2021-05-23 03:33:37 -07:00
Kubernetes Prow Robot	fb3273774a	Merge pull request #99178 from wilsonehusin/distroless-conformance Use distroless to build Conformance image	2021-05-21 13:32:11 -07:00
Grant Griffiths	564e531aa7	Add Snapshot Controller e2e metric tests Signed-off-by: Grant Griffiths <ggriffiths@purestorage.com>	2021-05-20 23:29:23 -07:00
Kubernetes Prow Robot	3cc0ca0988	Merge pull request #102129 from SataQiu/clean-critical-pod-annotation Cleanup useless 'scheduler.alpha.kubernetes.io/critical-pod' annotation	2021-05-19 15:25:31 -07:00
Kubernetes Prow Robot	8c0d06aad8	Merge pull request #101869 from olagacek/master Set poll period of metrics server nanny to 30s	2021-05-19 11:14:51 -07:00
SataQiu	ff18e391e9	cleanup useless 'scheduler.alpha.kubernetes.io/critical-pod' annotation	2021-05-19 17:46:35 +08:00
Kubernetes Prow Robot	e830610854	Merge pull request #101539 from jeremyje/installnpd Install Node Problem Detector on GCE Windows nodes	2021-05-18 20:16:50 -07:00
Kubernetes Prow Robot	75ec50bc10	Merge pull request #102024 from jeremyje/upgradefb GCE Windows: Fix Fluent-bit crashloop on Windows Event Log Ingestion	2021-05-18 19:14:50 -07:00
Jeremy Edwards	09f9537338	Install Node Problem Detector on GCE Windows nodes	2021-05-15 16:14:17 +00:00
Geon-Ju Kim	181485212b	Remove unnecessary quotes from get-kube scripts	2021-05-15 13:27:09 +09:00
Jeremy Edwards	2f87f280fe	GCE Windows: Upgrade to fluent-bit 1.7.5	2021-05-14 21:23:30 +00:00
André Bauer	ccedb1cd64	remove kibana system:anonymous rbac Signed-off-by: André Bauer <monotek23@gmail.com>	2021-05-14 19:10:45 +02:00
Kubernetes Prow Robot	ee9f365c51	Merge pull request #100169 from coffeepac/pc/es-7.10.2 rev ES and allow anonymous access to kibana	2021-05-14 03:58:04 -07:00
Kubernetes Prow Robot	e8cf412e5e	Merge pull request #101881 from vinayakankugoyal/konnectivity Update konnectivity network proxy server to run as non-root, by defau…	2021-05-13 23:16:04 -07:00
Sergey Kanzhelev	72fe1b722c	Make the service account error more apparent	2021-05-14 04:39:24 +00:00
Vinayak Goyal	b951b9349f	Update konnectivity network proxy server to run as non-root, by default in kube-up.	2021-05-13 12:35:34 -07:00
David Ashpole	febf9d9366	update event-exporter and prometheus-to-sd versions in cluster addons	2021-05-13 11:40:41 -07:00
Pat Christopher	aba965b559	rev ES and allow anonymous access to kibana	2021-05-12 19:23:04 -07:00
Avritt Rohwer	0a5a697882	Fix bug in retry-forever usage. - Push retry-forever wrapping to curl invocations. - Collect curl retry flags into a single variable. - Remove 'sudo: false' in master.yaml, is unnecessary and breaks older cloud-init versions. - Change log-error status reason to be more accurate. - Fix the some 'python' invocations to 'python3'.	2021-05-12 09:22:20 -07:00
Kubernetes Prow Robot	1bd00776b5	Merge pull request #101874 from tallclair/owners Remove tallclair for gce owners	2021-05-10 13:49:48 -07:00
Kubernetes Prow Robot	7563d3092e	Merge pull request #96216 from knight42/refactor/disable-insecure-port-in-ctrler-mgr refactor: disable insecure serving in controller-manager	2021-05-10 13:49:36 -07:00
Tim Allclair	9d349b6d21	Remove tallclair for gce owners	2021-05-10 10:21:17 -07:00
olagacek	a492762995	Set poll period of metrics server nanny to 30s Set poll period of fetching changes from k8s api of metrics server nanny to 30s. This will enable faster scaling of metrics server	2021-05-10 15:59:31 +02:00
Kubernetes Prow Robot	8ddabd0da5	Merge pull request #101810 from caseydavenport/casey-fix-calico-crds Fix improperly formatted Calico CRD files	2021-05-07 21:29:29 -07:00
Casey Davenport	e22773bc30	Fix improperly formatted Calico CRD files	2021-05-07 13:48:43 -07:00
Stephen Augustus	5b530da51f	[go1.16] Update to go1.16.4 Signed-off-by: Stephen Augustus <foo@auggie.dev>	2021-05-07 15:47:54 -04:00
Kubernetes Prow Robot	8b1c82a34c	Merge pull request #101772 from swetharepakula/bump-glbc-image Update glbc image to v1.12.0	2021-05-06 22:05:02 -07:00
Kubernetes Prow Robot	ca0c04e4d3	Merge pull request #101164 from vinayakankugoyal/apiservernonroot Run control-plane as non root in kube-up.	2021-05-06 17:33:14 -07:00
Swetha Repakula	8c8db0d8e9	Update glbc image to v1.12.0 - glbc now uses networking.k8s.io/v1 Ingress	2021-05-06 15:20:05 -07:00
Kubernetes Prow Robot	1f3fd1cb80	Merge pull request #101751 from vinayakankugoyal/sshproxy Recursive chown the /etc/srv/sshproxy if kube-apiserver is running as…	2021-05-06 15:15:51 -07:00
Kubernetes Prow Robot	8955f55fcf	Merge pull request #101678 from vinayakankugoyal/goodbye-basicauth Remove remnants of basic auth from cluster bootstrap.	2021-05-06 14:14:14 -07:00
Vinayak Goyal	6aa495ddc6	Revert - Recursive chown the /etc/srv/sshproxy if kube-apiserver is running as non root. This way if a key already exists we will be able to read it.	2021-05-06 14:02:53 -07:00
Wilson E. Husin	a893521948	Add deadline for deprecation	2021-05-06 11:44:59 -07:00
pacoxu	6d86fc6a15	removed deprecated apiextensions.k8s.io/v1beta1; use extension v1. Signed-off-by: pacoxu <paco.xu@daocloud.io>	2021-05-06 11:27:58 +08:00
Kubernetes Prow Robot	add13090e2	Merge pull request #101732 from spencer-p/master Promote kube-addon-manager to v9.1.5	2021-05-05 18:49:17 -07:00
Vinayak Goyal	487583bd0a	Recursive chown the /etc/srv/sshproxy if kube-apiserver is running as non root. This way if a key already exists we will be able to read it.	2021-05-05 15:23:04 -07:00
Vinayak Goyal	406ceae991	Recursive chown the /etc/srv/sshproxy if kube-apiserver is running as non root. This way if a key already exists we will be able to read it.	2021-05-05 14:49:59 -07:00
Vinayak Goyal	5d8c89b164	Run control-plane as non root in kube-up.	2021-05-05 14:46:28 -07:00
Jeremy Edwards	daa5be1d01	GCE Windows: Do not install docker when containerd CRI is selected.	2021-05-05 21:06:33 +00:00
Kubernetes Prow Robot	7d176851f2	Merge pull request #100612 from pacoxu/patch-8 kubeadm: upgrade etcd to 3.4.13-3	2021-05-05 07:11:27 -07:00
Spencer Peterson	a119b767d0	Promote kube-addon-manager to v9.1.5 Change-Id: Iffebad61634831b0c34eb54517a2543c75c55d68	2021-05-04 12:14:52 -07:00
David Porter	dac06aefb0	Revert "Revert "cluster: Use python3 everywhere"" This reverts commit `7038338e0f`.	2021-05-03 21:43:15 -07:00
Jian Zeng	e481d99965	refactor: disable insecure serving in controller-manager Now the following flags have no effect and would be removed in v1.24: * `--port` * `--address` The insecure port flags `--port` may only be set to 0 now. Signed-off-by: Jian Zeng <zengjian.zj@bytedance.com>	2021-05-03 00:01:49 +08:00
Kubernetes Prow Robot	c5b900b69c	Merge pull request #97399 from davidxia/comment-typo Fix typo in comment	2021-05-01 04:57:59 -07:00
Vinayak Goyal	b87762966d	Remove remnants of basic auth from cluster bootstrap.	2021-04-30 11:23:14 -07:00
Kubernetes Prow Robot	f235adc4d2	Merge pull request #101621 from jeremyje/fixfb GCE Windows: mkdir -p fluent-bit pos-files directory.	2021-04-30 10:24:39 -07:00
Daniel Kłobuszewski	447b0ca705	Bump metrics server to use 0.4.4 image.	2021-04-30 09:13:39 +02:00
Kubernetes Prow Robot	663b425e21	Merge pull request #101417 from pacoxu/node-local-dns-docs update node local dns readme for ipv6 and 1.18 GA	2021-04-29 18:10:19 -07:00
Kubernetes Prow Robot	551ef71b64	Merge pull request #100256 from sarandia/metricsserverarch bump metrics server version to v0.3.7 and make it multi-arch	2021-04-29 18:09:58 -07:00
Jeremy Edwards	5c713379a0	GCE Windows: mkdir -p fluent-bit pos-files directory.	2021-04-29 22:52:38 +00:00
David Porter	e02ff0687e	Remove node termination handler addon	2021-04-29 14:42:23 -07:00
Kubernetes Prow Robot	06eeec737a	Merge pull request #101439 from prameshj/update-kubedns Update to using kubedns 1.17.3 image.	2021-04-29 09:01:04 -07:00
Kubernetes Prow Robot	f631c0e520	Merge pull request #101271 from jeremyje/fixfb Fix fluent-bit configuration for GCE Windows.	2021-04-27 19:06:49 -07:00
Ziyuan Chen	7a5508c0a7	bump metrics server version to v0.3.7 and make it multi-arch Bumping the metrics-server version to v0.3.7. In this version, metrics-server started building multi-arch images. To properly support non-amd64 nodes, we should bump the version and remove the -amd64 in the image path. (https://github.com/kubernetes-sigs/metrics-server/pull/492) ```release-note metrics-server now uses v0.3.7 and supports multi-arch Kubernetes nodes. ```	2021-04-27 20:48:21 +00:00
Kubernetes Prow Robot	2f753ec4c8	Merge pull request #101473 from pacoxu/revert-101437-python3 Revert "cluster: Use python3 everywhere"	2021-04-26 12:54:37 -07:00
Paco Xu	7038338e0f	Revert "cluster: Use python3 everywhere"	2021-04-26 11:21:44 +08:00
songxiao-wang87	4f254674fa	Making a run test. Signed-off-by: songxiao-wang87 <wang.xiaosong23@zte.com.cn>	2021-04-25 10:46:18 +08:00
Pavithra Ramesh	2c2dd6b072	Update to using kubedns 1.17.3 image.	2021-04-23 14:59:38 -07:00
David Porter	3f87f4f278	Use python3 everywhere	2021-04-23 14:33:58 -07:00
pacoxu	58114e293f	update node local dns readme for ipv6 and 1.18 GA	2021-04-23 17:04:55 +08:00
Kubernetes Prow Robot	ae35c6f10c	Merge pull request #101255 from basantsa1989/stack-type Adding stack-type to gce cloud config (to be used for dual stack in legacy-cloud-providers gce code)	2021-04-22 15:55:28 -07:00
Jeremy Edwards	e62301c87d	Fix fluent-bit configuration for GCE Windows.	2021-04-22 20:04:54 +00:00
Kubernetes Prow Robot	6aa683e9cf	Merge pull request #100639 from zshihang/proxy dnat to 169.254.169.252 for metadata server traffic	2021-04-21 11:15:51 -07:00
Ikko Ashimine	f69a2b40da	Fix typo in gci/README.md becase -> because	2021-04-21 21:35:05 +09:00
Kubernetes Prow Robot	3cc043cfd2	Merge pull request #101262 from spencer-p/master Upgrade addon-manager baseimage to debian-base v1.0.1	2021-04-20 20:36:22 -07:00
Kubernetes Prow Robot	41505f7109	Merge pull request #101176 from jkh52/master kube-master-installation: improve systemd cross-unit robustness.	2021-04-20 00:42:45 -07:00
Spencer Peterson	530072a38f	Addon-manager baseimage upgrade debian-base v1.0.1 The previous base image, debian-base:v1.0.0, is affected by CVE-2017-14062. This change upgrades to the most recent Debian stretch image from the following command: ``` $ gcloud container images list-tags k8s.gcr.io/debian-base-amd64 DIGEST TAGS TIMESTAMP 7e9f2f88b813 v1.0.1 2020-02-18T13:18:50 d7be39e143d4 v2.0.0 2019-11-01T13:14:18 5f25d97ece90 v1.0.0 2019-03-25T10:59:09 dddca919baec 1.0.0 2019-03-25T09:43:09 ``` This marks kube-addon-manager version 9.1.5. Change-Id: I02321a781fb19dd33c0a19671b56c0b12d9b52fd	2021-04-19 20:36:44 -07:00
Kubernetes Prow Robot	46b0ad1327	Merge pull request #101207 from vinayakankugoyal/sshproxy If kube-apiserver is running as non-root then set the permissions of …	2021-04-19 17:24:33 -07:00
Joseph Anttila Hall	05bcc72dc2	kube-master-installation: reboot on failure. Also some minor reliability tweaks.	2021-04-19 17:16:21 -07:00
Vinayak Goyal	94e34da471	If kube-apiserver is running as non-root then set the permissions of /etc/srv/sshproxy accordingly.	2021-04-19 13:16:06 -07:00
Basant Amarkhed	e15d811652	Adding stack-type to cloud config (to be used for dual stack in legacy-cloud-providers code)	2021-04-19 19:06:55 +00:00
Shihang Zhang	297ad30610	dnat to 169.254.169.252 for metadata server traffic	2021-04-19 10:47:51 -07:00
Kubernetes Prow Robot	4925cb66c9	Merge pull request #101238 from loburm/move_deprecated Add required fields to fluentd-gcp-scaler-policy CRD.	2021-04-19 08:02:36 -07:00
Marian Lobur	41e39dd1fa	Add required fields to fluentd-gcp-scaler-policy CRD.	2021-04-19 16:01:46 +02:00
Stephen Augustus	fac97f8a9b	[go1.16] Update to go1.16.3 Signed-off-by: Stephen Augustus <foo@auggie.dev>	2021-04-16 19:56:51 -04:00
Kubernetes Prow Robot	3ed71cf190	Merge pull request #100976 from jindijamie/master releng: Update debian-base and debian-iptables to buster-v1.6.0 to patch base image CVEs	2021-04-16 12:56:34 -07:00
Kubernetes Prow Robot	28c877dcb6	Merge pull request #101043 from benhxy/tls-2 Use GKE specific configuration for kubeconfig file generation	2021-04-16 11:54:51 -07:00
Kubernetes Prow Robot	7ecd93ea1e	Merge pull request #100764 from benhxy/tls Use GKE specific configuration for kube-apiserver SNI cert	2021-04-15 19:52:22 -07:00
Jeremy Edwards	c22f001a1b	GCE Windows: Use authenticated HTTP GET against GCS if VM has cloud-platform scope.	2021-04-15 23:30:19 +00:00
Mike Danese	ba3fc65072	add a warning about the filter table	2021-04-15 16:22:28 -07:00
Kubernetes Prow Robot	0d0d1889ed	Merge pull request #100930 from swetharepakula/update-glbc-image Update glbc image in glbc addon	2021-04-15 12:59:01 -07:00
Kubernetes Prow Robot	24350a922e	Merge pull request #101086 from enj/enj/i/auth_owners_gen Prune stale entries from OWNERS files	2021-04-15 08:27:50 -07:00
pacoxu	9847579699	gcp/kubeadm: upgrade etcd to 3.4.13-3 Signed-off-by: pacoxu <paco.xu@daocloud.io>	2021-04-15 11:19:41 +08:00
Kubernetes Prow Robot	74497632f4	Merge pull request #101015 from mborsz/retry Do not grep for curl --help for --retry-connrefused	2021-04-14 07:02:57 -07:00
Kubernetes Prow Robot	50da4c6f61	Merge pull request #101021 from loburm/move_deprecated Switch fluentd-gcp-scaler policy to non deprecated api.	2021-04-14 04:30:42 -07:00
Maciej Borsz	493adbada9	Do not grep for curl --help for --retry-connrefused	2021-04-14 08:32:21 +02:00
Swetha Repakula	f882eadbdc	Update glbc image in addon	2021-04-13 19:32:03 -07:00
Kubernetes Prow Robot	f1c037889d	Merge pull request #100770 from avrittrohwer/configure-script-logging Add configure script logging instrumentation	2021-04-13 18:06:42 -07:00
Monis Khan	91241eac9b	Prune stale entries from OWNERS files Signed-off-by: Monis Khan <mok@vmware.com>	2021-04-13 20:54:50 -04:00
Kubernetes Prow Robot	318db993c8	Merge pull request #101020 from cindy52/bugfix/etcd Change file owner of /mnt/disks/master-pd/var/etcd instead of /var/etcd	2021-04-13 12:09:47 -07:00
Avritt Rohwer	d4495183c9	Add configure script logging instrumentation. - Add log functions to facilitate debug logging. - Wrap commands called in main with debug logging. - Configure a systemd service to forward the logs to the serial port. - Add a 'retry-forever' function to harden download steps. - Add default value support to 'get-metadata-value' function. - Fix some spellcheck lints.	2021-04-13 09:30:49 -07:00
Ben Hu	e3270e532c	GKE specific kubeconfig	2021-04-12 22:47:39 +00:00
Ben Hu	ccb742c43c	Resolve comments. Remove kubeconfig changes.	2021-04-12 22:39:53 +00:00
jindijamie	d1b205c9fd	Update Makefile	2021-04-12 14:32:54 -07:00
Marian Lobur	d4de8438e3	Switch fluentd-gcp-scaler policy to non deprecated api. Starting from Kubernetes 1.22 apiextensions.k8s.io/v1beta1 is removed. Instead apiextensions.k8s.io/v1 should be used: https://kubernetes.io/docs/reference/using-api/deprecation-guide/#customresourcedefinition-v122	2021-04-12 10:28:50 +02:00
Cindy Guo	03f60f4b60	chown on /mnt/disks/master-pd/var/etcd instead of /var/etcd	2021-04-12 08:21:01 +00:00
Kubernetes Prow Robot	a96000311f	Merge pull request #100956 from saschagrunert/cri-tools Update cri-tools to v1.21.0	2021-04-12 00:35:59 -07:00
Kubernetes Prow Robot	dd95f3ab5a	Merge pull request #100980 from ibabou/update-containerd-path Update the containerd runtime binary path - gce	2021-04-11 06:21:59 -07:00
Kubernetes Prow Robot	99301e672b	Merge pull request #100436 from vinayakankugoyal/apiservernonroot Fix kube-apiserver manifest.	2021-04-10 20:29:35 -07:00
Antonio Ojea	93f4727aab	gce configure containerd default_runtime_name move config to v2	2021-04-11 00:48:22 +02:00
“Ibrahim	ec38cfcd15	Update the containerd runtime binary path - gce	2021-04-09 23:36:58 +00:00
jindijamie	7e7a6284be	update debian-base to buster-v1.5.0 for CVEs	2021-04-09 19:27:10 +00:00
Kubernetes Prow Robot	5b038e6cff	Merge pull request #100635 from cindy52/etcd/rootless Run the etcd as non-root	2021-04-09 05:19:37 -07:00
Sascha Grunert	33e0e035ea	Update cri-tools to v1.21.0 This updates crictl to the latest available release. Signed-off-by: Sascha Grunert <sgrunert@redhat.com>	2021-04-09 11:05:13 +02:00
Kubernetes Prow Robot	16082557cd	Merge pull request #100353 from zshihang/master strip prefix 'v' in coredns version if exists	2021-04-08 20:29:55 -07:00
Kubernetes Prow Robot	96db2323a4	Merge pull request #100041 from vteratipally/update_npd_version bump npd version to latest v0.8.7	2021-04-08 17:10:55 -07:00
Kubernetes Prow Robot	d8f3794b83	Merge pull request #68004 from saravanan30erd/fluentd-es isolate logging resources in separate namespace	2021-04-08 14:26:31 -07:00
Cindy Guo	9f058079d2	run etcd as nonroot Co-authored-by: Vinayak Goyal <vinayakankugoyal@gmail.com>	2021-04-08 20:51:45 +00:00
Kubernetes Prow Robot	efad544195	Merge pull request #100257 from swetharepakula/glbc-rbac-services Add `service/status` glbc rbac permissions	2021-04-07 07:53:53 -07:00
Ben Hu	a2d094797d	Use GKE specific configuration in startup scripts in GKE deployment.	2021-04-02 00:10:53 +00:00
Vinayak Goyal	4b3271a542	Fix kube-apiserver manifest.	2021-03-21 16:24:56 -07:00
“Ibrahim	bc3f6c1be9	Fix the containerd service check	2021-03-19 23:35:05 +00:00
saravanan palanisamy	b9696ae455	remove namespace for clusterRoleBinding object - fluentd-es addon	2021-03-19 12:08:14 +04:00
Shihang Zhang	d313e69c9d	strip prefix 'v' in coredns version if exists	2021-03-18 10:38:06 -07:00
Maciej Szulik	a3a26171d1	Run GCE unit tests as non-root	2021-03-18 12:14:24 +01:00
Kubernetes Prow Robot	158e1464ec	Merge pull request #99971 from ibabou/update-containerd Update containerd config for gce	2021-03-16 15:56:56 -07:00
Kubernetes Prow Robot	0649dfbb52	Merge pull request #99990 from aojea/unboundv fix cluster util.sh unbound variable	2021-03-16 07:24:35 -07:00
saravanan palanisamy	f0a95b80b3	update version for addon fluentd ES	2021-03-16 09:39:14 +04:00
Swetha Repakula	6e95ac1ce9	Add `service/status` glbc rbac permissions	2021-03-15 13:01:06 -07:00
saravanan palanisamy	f8f2dd76ca	isolate logging resources in separate namespace	2021-03-13 13:42:32 +04:00
Wilson E. Husin	998edc84c7	Use Distroless base instead of static	2021-03-12 21:37:36 -08:00
Wilson E. Husin	aeef7e2f15	Add default value to KUBE_BASE_IMAGE_REGISTRY	2021-03-12 14:59:18 -08:00
Wilson E. Husin	b1c049efd8	Use configurable BASEIMAGE and RUNNERIMAGE Following example on /cluster/images/etcd/Makefile	2021-03-12 13:20:35 -08:00
Kubernetes Prow Robot	23d4b3b4f0	Merge pull request #99965 from swetharepakula/glbc-rbac Add GLBC roles for IngressClass & GCPIngressParams	2021-03-11 03:02:25 -08:00
Swetha Repakula	a8c5110f65	Add GLBC roles for IngressClass & GCPIngressParams	2021-03-10 16:36:54 -08:00
Stephen Augustus	13ef775df2	[go1.16] Update to go1.16.1 Signed-off-by: Stephen Augustus <foo@auggie.dev>	2021-03-10 19:06:57 -05:00
Kubernetes Prow Robot	a5b5a685ec	Merge pull request #95655 from vteratipally/docker_daemon_json Moving docker options to daemon.json	2021-03-10 15:00:23 -08:00
varsha teratipally	90983f66e4	Moving docker options to daemon.json As per the new docker guidelines about customizing the options like adding registry-mirrors, moving the options to daemon.json	2021-03-10 19:14:48 +00:00
Varsha Teratipally	82434ec818	bump npd version to latest v0.8.7	2021-03-09 22:48:27 +00:00
Wilson E. Husin	00d2a17b2a	Use kubeconformance binary, deprecate gorunner and run_e2e Actual name change will take place later as it involves changes to test-infra and other repositories	2021-03-09 13:41:36 -08:00
Jeremy Edwards	60df5606d6	Add Windows Defender exclusion for unpigz.exe	2021-03-09 19:52:25 +00:00
Antonio Ojea	6787d464ca	fix cluster util.sh unbound variable	2021-03-09 09:18:23 +01:00
“Ibrahim	875396744f	Update containerd config for gce	2021-03-09 01:13:44 +00:00
Wilson E. Husin	be3719a357	Use distroless/base:latest for Conformance image Going with the guess that nonroot is the problem of creating /tmp/results/e2e.log in container Removing manual creation of /tmp/results as well	2021-03-08 16:18:10 -08:00
Wilson E. Husin	6d52c00084	Add binaries to PATH, use ENTRYPOINT Signed-off-by: Wilson E. Husin <wilsonehusin@gmail.com>	2021-03-08 14:51:09 -08:00
Wilson Husin	3d281e952c	Add /tmp/results directory with nonroot ownership Signed-off-by: Wilson Husin <whusin@vmware.com>	2021-03-08 14:51:09 -08:00
Wilson Husin	4fafd1afef	Use distroless to build Conformance image In order to avoid noisy / false positive CVE image scanning, Conformance image is now be built based on Distroless. Signed-off-by: Wilson Husin <whusin@vmware.com>	2021-03-08 14:51:08 -08:00
Kubernetes Prow Robot	2d3acce39b	Merge pull request #99752 from pacoxu/coredns/promote update cluster/dns/coredns to 1.8.0 as kubeadm	2021-03-08 12:07:28 -08:00
Benjamin Elder	03576473ce	don't search bazel output paths for binaries	2021-03-07 12:47:00 -08:00
Kubernetes Prow Robot	1485c6b76f	Merge pull request #99822 from dekkagaijin/addon Update kube-addon-manager to v9.1.4	2021-03-06 12:50:37 -08:00
Kubernetes Prow Robot	b33b426dd0	Merge pull request #99742 from ibabou/containerd-register Update gce Containerd initialization to handle the runtime existence case	2021-03-06 12:50:05 -08:00
Jake Sanders	fb40ab2cde	Update kube-addon-manager to v9.1.4	2021-03-04 22:39:46 -08:00
Kubernetes Prow Robot	96be00df69	Merge pull request #99749 from pacoxu/nodecache-1.17.0 update node local dns to 1.17.0 for IPv6 support/hosts/trace plugins	2021-03-04 20:32:43 -08:00
pacoxu	2185bb40d5	update clustere/dns/coredns to 1.8.0 as kubeadm	2021-03-05 09:38:15 +08:00
Kubernetes Prow Robot	379773630f	Merge pull request #97037 from neiljerram/calico-ip-autodetect Calico: set IP=autodetect so preempted nodes learn new IP	2021-03-04 17:32:21 -08:00
Kubernetes Prow Robot	a2157b36b7	Merge pull request #98806 from rikatz/remove-extension-prune Remove extensions v1beta1 from addon manager and kubectl prune	2021-03-04 14:40:47 -08:00
Kubernetes Prow Robot	7c4a9823f5	Merge pull request #99793 from pjh/log-message-fix Repair quotes for some Windows log messages	2021-03-04 13:39:40 -08:00
Kubernetes Prow Robot	a7147bb113	Merge pull request #98968 from liggitt/kam-lease Switch add-on manager to use lease for leader election	2021-03-04 13:38:39 -08:00
Kubernetes Prow Robot	9d353ef277	Merge pull request #99691 from amwat/metadata-project [cluster/gce] Target the correct project while adding kubeconfig metadata to the master	2021-03-04 00:29:31 -08:00
“Ibrahim	e58a0905de	Update gce Containerd initialization to handle runtime existence case	2021-03-04 03:46:30 +00:00
pacoxu	a38ed2c5ce	update node local dns to 1.17.0 for debian base chagne	2021-03-04 10:49:55 +08:00
Peter Hornyack	bacf7394cd	Repair quotes for some Windows log messages	2021-03-03 12:40:53 -08:00
Amit Watve	d65a46c9c9	Target the correct project while adding master kubeconfig metadata.	2021-03-03 00:47:43 -08:00
Peter Hornyack	3d2e9600d9	Dump detailed service information during Windows node startup	2021-03-02 15:55:40 -08:00
Stephen Augustus	3c2824e3db	[go1.16] go.mod: update to go1.16 Signed-off-by: Stephen Augustus <foo@auggie.dev>	2021-03-02 00:38:00 -05:00
Stephen Augustus	274133fe11	[go1.16] Update to go1.16 Signed-off-by: Stephen Augustus <foo@auggie.dev>	2021-03-02 00:38:00 -05:00
Hiroshi Hatake	bf9f019c7d	fluentd-elasticsearch: Add mechanism to load simple sniffer class to prevent unexpected sniffering	2021-03-01 11:03:24 +09:00
Benjamin Elder	56e092e382	hack/update-bazel.sh	2021-02-28 15:17:29 -08:00
Benjamin Elder	88f13fb17f	drop unused sh_test targets	2021-02-25 23:11:39 -08:00
wojtekt	3a5d4d25bf	Set progress-notify-interval to 5s for GCE provider	2021-02-25 17:23:24 +01:00
Kubernetes Prow Robot	9694e42099	Merge pull request #96134 from vinayakankugoyal/apiservernonroot Run kube-apiserver as non-root.	2021-02-23 18:26:51 -08:00
Kubernetes Prow Robot	f4801a7c85	Merge pull request #98799 from claudiubelu/images/cleanup-run images: Removes containers after they've run	2021-02-22 22:24:11 -08:00
Vinayak Goyal	c63ff05e6d	Run kube-apiserver as non-root.	2021-02-22 20:48:16 -08:00
Kubernetes Prow Robot	874877fa44	Merge pull request #99216 from ruiwen-zhao/remove_modprobe Remove modprobe configs from configure-helper	2021-02-22 17:24:32 -08:00
Kubernetes Prow Robot	b6e4c1c71a	Merge pull request #99242 from liu-cong/arm64 Add arm64 support for GCE node configuration	2021-02-19 16:55:41 -08:00
Kubernetes Prow Robot	1f27dcf70c	Merge pull request #99059 from vinayakankugoyal/dockerfile2 Use ARG and --build-arg instead of sed for etcd image.	2021-02-19 15:33:41 -08:00
Cong Liu	03709c0ece	Add arm64 support for GCE node configuration Fix typo Add TODO	2021-02-19 14:22:26 -08:00
ruiwen-zhao	c053b232ba	Remove modprobe configs from configure-helper	2021-02-18 22:57:44 +00:00
Jeremy Edwards	82417fe763	Add GCE Kubernetes option to enable Windows DSR.	2021-02-17 01:34:36 +00:00
Kubernetes Prow Robot	111d82f87f	Merge pull request #98974 from dekkagaijin/master Update kube-addon-manager image to v9.1.2	2021-02-16 13:45:27 -08:00
Kubernetes Prow Robot	13bcc023f9	Merge pull request #98487 from pjh/readme-e2e Update e2e test instructions in GCE Windows README	2021-02-16 11:55:33 -08:00
Kubernetes Prow Robot	f81235605a	Merge pull request #99074 from mrbobbytables/update-cluster cluster/* Remove inactive members from OWNERS	2021-02-14 18:51:06 -08:00
Bob Killen	0298ab0473	cluster/kubemark: Remove inactive members from OWNERS As a part of cleaning up inactive members (those with no activity within the past 18 months) from OWNERS files, this commit moves gmarek from an approver to an emeritus_approver.	2021-02-14 14:17:52 -05:00
Bob Killen	ffcb4b953c	cluster/images/kubemark: Remove inactive members from OWNERS As a part of cleaning up inactive members (those with no activity within the past 18 months) from OWNERS files, this commit moves gmarek from an approver to an emeritus_approver.	2021-02-14 14:17:52 -05:00
Bob Killen	64f1eb7270	cluster/gce: Remove inactive members from OWNERS As a part of cleaning up inactive members (those with no activity within the past 18 months) from OWNERS files, this commit moves gmarek and jingax10 from approvers to emeritus_approvers.	2021-02-14 14:17:52 -05:00
Bob Killen	9269f216a6	cluster/addons/kube-proxy: Remove inactive members from OWNERS As a part of cleaning up inactive members (those with no activity within the past 18 months) from OWNERS files, this commit moves jingax10 from an approver to an emeritus_approver.	2021-02-14 14:17:31 -05:00
Bob Killen	8c06778a91	cluster/addons/dashboard: remove out-of-date MAINTAINERS.md	2021-02-14 10:13:44 -05:00
Bob Killen	2d433de8e0	cluster/addons/dashboard: remove inactive members from OWNERS As a part of cleaning up inactive members (those with no activity within the past 18 months) from OWNERS files, this commit moves byrk from approver to emeritus_approver.	2021-02-14 10:13:44 -05:00
Vinayak Goyal	81df4d7dc4	Use ARG and --build-arg instead of sed for etcd image.	2021-02-13 01:07:27 -08:00
Kubernetes Prow Robot	f2be0bc1c7	Merge pull request #99024 from vinayakankugoyal/dockerfile3 Use ARG instead of sed to set the base image for addon-manager.	2021-02-12 20:41:04 -08:00
Vinayak Goyal	ad1e2ffab0	Use ARG instead of sed to set the base image for addon-manager.	2021-02-12 03:11:56 -08:00
Vinayak Goyal	a83519b5bf	Use ARG instead of sed in the conformance image.	2021-02-12 02:55:33 -08:00
Benjamin Elder	299c561b10	portably configure tempdir in configure-helper.sh fixes a `make test` failure on macOS	2021-02-12 01:15:14 -08:00
Jake Sanders	927eaffe19	Update kube-addon-manager image to v9.1.2	2021-02-11 09:38:39 -08:00
Kubernetes Prow Robot	e25b0cb6db	Merge pull request #98911 from Jeffwan/jiaxin/update_kubemark_args Remove CONTENT_TYPE in kubemark hollow template	2021-02-11 01:48:15 -08:00
Kubernetes Prow Robot	20b03f6365	Merge pull request #90442 from joakimr-axis/joakimr-axis_gci-configure.sh Fix shellcheck failures in cluster/gce/gci/configure.sh	2021-02-10 19:36:15 -08:00
Kubernetes Prow Robot	7fcd66c985	Merge pull request #98339 from monotek/fluentd112 updated fluentd and all plugins	2021-02-10 17:58:16 -08:00
Joakim Roubert	3dd3211c81	Fix shellcheck failures in cluster/gce/gci/configure.sh Signed-off-by: Joakim Roubert <joakimr@axis.com>	2021-02-10 19:23:31 +01:00
Jordan Liggitt	c7e084eec0	Switch add-on manager to use lease for leader election	2021-02-10 12:05:03 -05:00
Joakim Roubert	8bf2836e41	Fix remaining shellcheck issues in cluster/gce/util.sh Signed-off-by: Joakim Roubert <joakimr@axis.com>	2021-02-10 10:07:45 +01:00
Kubernetes Prow Robot	b87ae556b3	Merge pull request #95865 from joakimr-axis/joakimr-axis_master-helper.sh Fix shellcheck issues in cluster/gce/gci/master-helper.sh	2021-02-09 17:43:00 -08:00
Jiaxin Shan	4b796c359e	Remove CONTENT_TYPE in kubemark hollow template CONTENT_TYPE in this case is `kube-api-content-type=application/vnd.kubernetes.protobuf` and it can be removed since we don’t see a need for setting it differently in the tests. Signed-off-by: Jiaxin Shan <seedjeffwan@gmail.com>	2021-02-09 11:04:44 -08:00
Joakim Roubert	ec9065f2c1	Update after review comment	2021-02-09 09:54:55 +01:00
Joakim Roubert	c33672b010	Update after review comment Change-Id: Icc2281b98a0240e177f6d8b625a8ddc4f4161b79 Signed-off-by: Joakim Roubert <joakimr@axis.com>	2021-02-09 09:50:51 +01:00
Joakim Roubert	251c4111d5	Fix some shellcheck warnings/errors in cluster/gce/util.sh This patch splits declaration and assignment for local variables where shellcheck triggers risk of shadowing warnings. Some missing exports also added, and an unused variable was removed. Signed-off-by: Joakim Roubert <joakim.roubert@axis.com>	2021-02-09 09:50:51 +01:00
Kubernetes Prow Robot	6389c13960	Merge pull request #94463 from joakimr-axis/joakimr-axis_util.sh_internal Fix some shellcheck warnings/errors in cluster/gce/util.sh	2021-02-08 23:51:52 -08:00
Kubernetes Prow Robot	2b7c61b1bb	Merge pull request #98205 from pacoxu/build/pauses update pause image to 3.4.1 and also update the change log	2021-02-08 18:20:58 -08:00
Kubernetes Prow Robot	3534e31ade	Merge pull request #98834 from cpanato/go1158 [go1.15] Update to go1.15.8	2021-02-06 15:35:11 -08:00
Carlos Panato	8b5bf8ef91	[go1.15] Update to go1.15.8 Signed-off-by: Carlos Panato <ctadeu@gmail.com>	2021-02-06 15:55:39 +01:00
Kubernetes Prow Robot	96a98e50af	Merge pull request #98790 from jkh52/master Bump konnectivity-client to v0.0.15	2021-02-05 16:33:11 -08:00
Kubernetes Prow Robot	ce1ee6461a	Merge pull request #98773 from mtaufen/said-fqdn Use FQDN for SERVICEACCOUNT_ISSUER in tests	2021-02-05 05:40:52 -08:00
pacoxu	d9b63439d2	update gce cluster windows infra image	2021-02-05 21:39:48 +08:00
Ricardo Pchevuzinske Katz	25f3cf5550	Remove extensions v1beta1 from addon manager and kubectl prune	2021-02-05 09:38:28 -03:00
Claudiu Belu	41cdd40a2e	images: Removes containers after they've run Not all instances of docker run has the --rm argument, which means that they'll persist after they've finished. This can cause storage to remain occupied needlessly.	2021-02-05 10:07:26 +00:00
Joseph Anttila Hall	6812a9c610	Bump network proxy images to v0.0.15	2021-02-05 00:35:33 -08:00
Michelle Tandya	904f0b628b	Disable sample submission and MAPS Reporting from Windows Defender Include logging when setting windows defender preferences Log Window Defender preferences to show configuration changes Move Defender configuration to be a part of Set-PrerequisiteOptions	2021-02-04 23:02:09 +00:00
Michael Taufen	8418fd9b15	Use FQDN for SERVICEACCOUNT_ISSUER in tests	2021-02-04 10:40:40 -08:00
hasheddan	20679f31d1	Build conformance image with DOCKER_CLI_EXPERIMENTAL enabled In order to use buildx with docker versions prior to v20.10 experimental features must be enabled. Setting at build time ensures that they are in case they have not already been at the environment scope. Signed-off-by: hasheddan <georgedanielmangum@gmail.com>	2021-02-01 13:17:28 -06:00
Joakim Roubert	ba7e23620a	Fix some shellcheck warnings/errors in cluster/gce/util.sh This patch uses shell internals instead of sed and awk where suitable and also uses lower/upper classes for tr instead of a-z and A-Z. Signed-off-by: Joakim Roubert <joakim.roubert@axis.com>	2021-01-30 09:32:07 +01:00
Sascha Grunert	e9fbdff7c6	Switch to `docker buildx` for conformance image The conformance test image previously used the `FROM --platform …` syntax which is something we (SIG Release) consider as deprecated. Therefore we now switch to `docker buildx`, which can specify the `--platform` directly. Signed-off-by: Sascha Grunert <mail@saschagrunert.de>	2021-01-29 11:36:52 +01:00
Kubernetes Prow Robot	b77c886043	Merge pull request #94456 from joakimr-axis/joakimr-axis_util.sh_shellcheckdisables Fix some shellcheck warnings/errors in cluster/gce/util.sh	2021-01-28 22:49:40 -08:00
Sascha Grunert	1acaf32cff	Bump debian-base to v1.4.0 and debian-iptables to v1.5.0 Both images are now sane multi-architecture images and should fix the kube-proxy container image in the same way. Signed-off-by: Sascha Grunert <mail@saschagrunert.de>	2021-01-28 13:47:09 +01:00
Peter Hornyack	8211582e2d	Update e2e test instructions in GCE Windows README	2021-01-27 11:03:47 -08:00
Carlos Panato	e76fc62258	[go1.15] Update to go1.15.7 Signed-off-by: Carlos Panato <ctadeu@gmail.com>	2021-01-27 11:43:01 +01:00
Kubernetes Prow Robot	de4d771d3b	Merge pull request #97934 from mattcary/loopback-upstream Disallow local loopback for volume hosts	2021-01-27 01:13:40 -08:00
Matthew Cary	9a7dcd36c1	Disallow local loopback for volume hosts Change-Id: Ic356c3f859057153cfad97327f1938792a1a512c	2021-01-26 17:12:51 -08:00
pacoxu	6a795f5f51	update etcd revision to 2 for next build 3.4.13-2	2021-01-26 15:29:26 +08:00
pacoxu	f76be691a2	update debian-base to buster-v1.3.0 for CVEs Signed-off-by: pacoxu <paco.xu@daocloud.io>	2021-01-26 14:10:20 +08:00
Kubernetes Prow Robot	1a67280508	Merge pull request #98037 from vinayakankugoyal/kube-controller-manager-crp Update configure-helper.sh to early exit from start-kube-controller-m…	2021-01-25 12:38:59 -08:00
André Bauer	fffe6275a5	updated fluentd and all plugins Signed-off-by: André Bauer <monotek23@gmail.com>	2021-01-24 14:45:57 +01:00
Kubernetes Prow Robot	7b3f0cd5ca	Merge pull request #98286 from jeremyje/win20h2 Fix GCE Windows Smoke Test and Support 2004 and 20H2.	2021-01-22 12:21:39 -08:00
Kubernetes Prow Robot	1bb0108574	Merge pull request #98284 from pjh/install-docker-on-node-start GCE Windows: add 20H2; install docker when nodes are started	2021-01-22 11:31:26 -08:00
Peter Hornyack	21592c23e1	GCE Windows: add 20H2; install docker when nodes are started	2021-01-22 09:58:22 -08:00
Jeremy Edwards	7575611fd5	Fix GCE Windows Smoke Test and Support 2004 and 20H2.	2021-01-22 01:14:50 +00:00
Peter Hornyack	313ac4751c	Improve the Windows GCE README	2021-01-21 15:42:37 -08:00
Vinayak Goyal	31807032e0	Update configure-helper.sh to early exit from start-kube-controller-manager if kube-controller-manager is deployed through CRP.	2021-01-20 16:22:46 -08:00
Kubernetes Prow Robot	1bfa1d4619	Merge pull request #98055 from qingsenLi/20210114 fix typo and decs in apiserver_etcd_test.go	2021-01-19 18:49:58 -08:00
Kubernetes Prow Robot	176c4c7916	Merge pull request #96823 from hasheddan/cleanup-cos-doc Cleanup GCI / COS README.md	2021-01-19 17:07:59 -08:00
Peter Hornyack	edd58b1a4e	Repair pigz URL New Windows nodes are failing to start with: windows-startup-script-ps1: Failed to download file from https://storage.googleapis.com/gke-release/winnode/pigz/prod/gke_windows/pigz/release/5/20201104-134221/pigz-$PIGZ_VERSION.zip. With this fix, the nodes start successfully.	2021-01-14 16:12:05 -08:00
Kubernetes Prow Robot	9da11e294f	Merge pull request #97868 from mtaufen/pki-tmpfs Mount /var/lib/kubelet/pki on tmpfs	2021-01-14 10:47:04 -08:00
10177505	deb509a068	fix typo and decs	2021-01-14 16:55:45 +08:00
Kubernetes Prow Robot	5e7d62ecfc	Merge pull request #97967 from rajibmitra/master Update cri-tools to v1.20.0	2021-01-13 13:27:15 -08:00
hasheddan	baccf02ab0	Switch to debian:stable-slim for conformance image base The currently used debian:stretch-slim does not support s390x arch in its multi-arch build. We opt to use stable-slim instead of pulling in different base images for each platform build. Signed-off-by: hasheddan <georgedanielmangum@gmail.com>	2021-01-13 08:49:27 -06:00
hasheddan	bc262d6e85	Specify BASEIMAGE platform for conformance image Updates conformance image Dockerfile to specify platform for BASEIMAGE and sets correct ARCH in Makefile. Signed-off-by: hasheddan <georgedanielmangum@gmail.com>	2021-01-13 08:46:01 -06:00
rajibmitra	69aae7aa6c	Update cri-tools to v1.20.0 Signed-off-by: rajibmitra <rajib.jolite@gmail.com>	2021-01-12 19:02:51 +05:30
Michael Taufen	9f9e235b9d	Mount /var/lib/kubelet/pki on tmpfs This helps avoid some rare instances of corrupt cert files that cause Kubelet to crash-loop after node reboots, e.g. if Kubelet opens the file during the shutdown but is unable to write it.	2021-01-08 18:04:35 -08:00
Kubernetes Prow Robot	8b5aeeedb4	Merge pull request #97742 from benhxy/apiserver-cipher Configure --tls-cipher-suites on kube-apiserver	2021-01-08 13:44:29 -08:00
Ben Hu	d4e75baae1	Fix comment on comment	2021-01-08 20:24:59 +00:00
Jian Zeng	8c1971e17c	chore(gce): pass auth flags to KCM and KS Pass flags `--authentication-kubeconfig` and `--authorization-kubeconfig` to controller-manager and scheduler, so that we could grab metrics from their secure ports in tests.	2021-01-06 12:56:39 +08:00
Kubernetes Prow Robot	97a3e9e7e8	Merge pull request #97621 from vbannai/bug-fix Bug fix	2021-01-05 17:10:19 -08:00
Ben Hu	624b214481	Configure --tls-cipher-suites on kube-apiserver.	2021-01-06 00:31:39 +00:00
Kubernetes Prow Robot	83a87775b0	Merge pull request #97536 from heqg/unused01 Remove duplicate nodeSelector for kube-dns	2021-01-05 11:46:36 -08:00
Kubernetes Prow Robot	506156842c	Merge pull request #97666 from heqg/duplicate-nodeSelector Remove duplicate nodeSelector for kube-dns in kube-dns.yaml.base	2021-01-04 17:05:58 -08:00
Kubernetes Prow Robot	5e405fdcff	Merge pull request #96276 from ruiwen-zhao/device_plugin_path Update nvidia-gpu-device-plugin addon image path	2021-01-04 09:33:57 -08:00
he.qingguo	89c1ab4025	Remove duplicate nodeSelector for kube-dns in kube-dns.yaml.base Signed-off-by: he.qingguo <he.qingguo@zte.com.cn>	2021-01-04 11:31:30 +08:00
Vinay Bannai	e74ef5301a	Updating the version to the recent tag.	2020-12-30 13:13:55 -08:00
Vinay Bannai	a15bc5954c	The l7-default-backend/defult-http-backend now points to a new version of the 404-server-with-metrics. Uses new container registry: gcr.io/google-container with the new version for the ingress-gce-404-server-with-metrics-amd64:v1.10.11	2020-12-30 13:13:55 -08:00
he.qingguo	da509d2ea2	Remove duplicate nodeSelector for kube-dns Signed-off-by: he.qingguo <he.qingguo@zte.com.cn>	2020-12-28 11:20:45 +08:00
Kubernetes Prow Robot	0a839c6c3b	Merge pull request #97447 from amwat/legacylogdump Fix incorrect literal quotes in logdump path	2020-12-24 21:46:27 -08:00
Amit Watve	c954bc61a5	fix literal quotes in logdump path.	2020-12-24 00:23:32 -08:00
Sergey Kanzhelev	d78db9f161	configure docker on containerd nodes so it wouldn't reserver 172.17 subnet	2020-12-23 18:49:57 +00:00
David Xia	0756e54dfc	Fix typo in comment	2020-12-21 20:02:20 -05:00
Antoni Zawodny	58ea69f094	Make log-dump's deprecation note up-to-date	2020-12-15 09:58:09 +01:00
Ben Hu	9581c40887	Revert "Use host IP instead of localhost for control plane component kubeconfig files." This reverts commit `49afcfa5f2`.	2020-12-11 22:36:39 +00:00
Kubernetes Prow Robot	0e2bf1e49f	Merge pull request #96470 from jeremyje/gkewinpigz Install pigz for GCE Windows Nodes.	2020-12-11 12:47:30 -08:00
Maciej Borsz	7f09d59215	Migrate etcd's livenessProbe to etcdctl endpoint health. Change-Id: Ie19c844050c75e3d1c4b431d09ba0ac851c5317b	2020-12-11 12:43:02 +01:00
Kubernetes Prow Robot	ee8983705a	Merge pull request #96679 from stmcginnis/appspot-cleanup Remove stale analytics links from docs	2020-12-10 23:17:22 -08:00
Jeremy Edwards	797ad961b8	Fix missing type error in Get-RemoteFile by loading System.Net.Http assembly.	2020-12-10 21:18:15 +00:00
Jeremy Edwards	3b8f32dd90	Install pigz for GCE Windows Nodes.	2020-12-09 06:38:59 +00:00
Kubernetes Prow Robot	fbc8ca6096	Merge pull request #97132 from prameshj/patch-5 Upgrade to nodecache 1.16.0 image	2020-12-08 22:02:00 -08:00
Kubernetes Prow Robot	cad9a8277d	Merge pull request #97127 from liggitt/revert-etcd-host-ip Revert "iAdd host IP to etcd listen client URLs."	2020-12-08 22:01:52 -08:00
Kubernetes Prow Robot	7b4fc68f52	Merge pull request #97011 from towca/patch-5 Bump Cluster Autoscaler to v1.20.0	2020-12-08 21:06:25 -08:00
Kubernetes Prow Robot	c0b173f108	Merge pull request #96994 from jeremyje/gceowners Add jeremyje to cluster/gce/OWNERS	2020-12-08 21:05:59 -08:00
Kubernetes Prow Robot	9b885eb0cb	Merge pull request #96969 from spencer-p/bump-kubectl Bump kubectl in addon manager to 1.19	2020-12-08 21:05:18 -08:00
Kubernetes Prow Robot	d2e7abb153	Merge pull request #96839 from vinayakankugoyal/crp Update configure-helper.sh to early exit from start-kube-scheduler if…	2020-12-08 20:03:51 -08:00
Kubernetes Prow Robot	d63a62d7bb	Merge pull request #96661 from jeremyje/fastboot Significantly improve download artifact latencies on GCE Windows node boot.	2020-12-08 18:35:05 -08:00
Kubernetes Prow Robot	56d7f138de	Merge pull request #96622 from vinayakankugoyal/groupfix If the file already exists we need to grant group read permissions ex…	2020-12-08 17:29:59 -08:00
prameshj	9ec84ee87c	Use nodecache 1.16.0 image with CoreDNS 1.7	2020-12-08 10:40:36 -08:00
Jordan Liggitt	8820dc4522	Revert "iAdd host IP to etcd listen client URLs." This reverts commit `8b4e164a78`.	2020-12-08 11:37:13 -05:00
Jeremy Edwards	90fa9de0dc	Add jeremyje to cluster/gce/OWNERS	2020-12-04 23:47:36 +00:00
Neil Jerram	10eb1d4d6e	Calico: set IP=autodetect so preempted nodes learn new IP With preemptible nodes, a cluster node (with a given hostname) can boot the first time with IP1, then be preempted and boot again with different IP2. With IP="", Calico will autodetect IP1 on first boot, but will not perform autodetection on subsequent boots and so will not release IP1 and detect IP2 instead. With IP=autodetect, Calico will perform autodetection on all boots, which is what we want.	2020-12-03 10:26:31 +00:00
Kuba Tużnik	9efbd914f6	Bump Cluster Autoscaler to v1.20.0	2020-12-02 11:10:54 +01:00
Jeremy Edwards	155bda010a	Significantly improve download artifact latencies on GCE Windows node boot.	2020-12-02 06:59:51 +00:00
Spencer Peterson	da684bcd6f	Bump kubectl in addon manager to 1.19	2020-11-30 23:01:19 +00:00
Vinayak Goyal	18644cb1b2	Update configure-helper.sh to early exit from start-kube-scheduler if kube-scheduler is deployed through CRP.	2020-11-24 12:01:22 -08:00
Stephen Augustus	2407a70cc7	[go1.15] Update to go1.15.5 Signed-off-by: Stephen Augustus <saugustus@vmware.com>	2020-11-23 20:49:56 -05:00
hasheddan	1bf7de6239	Remove broken analytics tracking link Removes embedded tracking pixel which appears to be broken. Signed-off-by: hasheddan <georgedanielmangum@gmail.com>	2020-11-23 18:05:10 -06:00
hasheddan	b24f224ff2	Fix formatting in GCI / COS docs Fixes a few formatting issues in GCI / COS README.md. Signed-off-by: hasheddan <georgedanielmangum@gmail.com>	2020-11-23 18:01:30 -06:00
Kubernetes Prow Robot	b2ecd1b3a3	Merge pull request #96716 from tosi3k/bump-npd-to-v0.8.5 Bump node-problem-detector to v0.8.5	2020-11-21 06:33:33 -08:00
Antoni Zawodny	8f2dd3aaab	Bump node-problem-detector to v0.8.5	2020-11-20 20:00:25 +01:00
Mike Danese	7fc57a207e	gce: move iptables rule to mangle This avoids a conflict with rules that calico installs. Also, acquire the lock everywhere.	2020-11-18 11:28:03 -08:00
Sean McGinnis	be131457ef	Remove stale analytics links from docs Many README files and other docs contained a link to a an appspot tracking app that is no longer active. Following the links leads to an error about Go 1.9 no longer being supported. Go 1.9 support was dropped in appspot in 2019 and disabled June 2020. This also resulted in a broken image link displaying when viewing these files on GitHub. Since the app is no longer functioning, and since it causes a potentially (but granted, minor) confusing error to display, this just removes those links as I don't believe they are needed anymore. Signed-off-by: Sean McGinnis <sean.mcginnis@gmail.com>	2020-11-18 07:04:48 -06:00
Antoni Zawodny	7acd8b50c8	Add a deprecation note to k/k/cluster/log-dump directory	2020-11-17 13:21:27 +01:00
Joakim Roubert	f9ca218872	Fix some shellcheck warnings/errors in cluster/gce/util.sh This patch adds shellcheck disables where we deliberately want to have the current code that shellcheck triggers on. Signed-off-by: Joakim Roubert <joakim.roubert@axis.com>	2020-11-17 08:05:54 +01:00
vinayak goyal	c2ea6842a7	If the file already exists we need to grant group read permissions explicitly.	2020-11-16 22:59:30 +00:00
Casey Davenport	07002e41bb	Update Calico to use a non-conflicting route table range	2020-11-16 09:54:02 -08:00
Kubernetes Prow Robot	84d15ca322	Merge pull request #93765 from jeremyje/restartsd Configure StackdriverLogging Windows service to restart on failure.	2020-11-12 23:26:23 -08:00
Kubernetes Prow Robot	9a85031a25	Merge pull request #96027 from lizhuqi/fluentd-config-update Add keep_time_key setting to fluentd configuration	2020-11-12 16:02:39 -08:00
Kubernetes Prow Robot	b0b7604f8f	Merge pull request #96469 from xing-yang/update_snapshot_crds_2 Update snapshot CRDs	2020-11-12 13:17:20 -08:00
Kubernetes Prow Robot	fd6bd36081	Merge pull request #96389 from Jefftree/kas-013 Bump network proxy to v0.0.14	2020-11-12 11:21:39 -08:00
Kubernetes Prow Robot	72a7f94bdd	Merge pull request #88412 from stafot/add_nodelocalcache_service Add node-local-dns headless service	2020-11-12 11:17:08 -08:00
Jeremy Edwards	26cdcde3d5	Configure StackdriverLogging Windows service to restart on failure.	2020-11-11 21:04:21 -08:00
xing-yang	763a15e38b	Update snapshot CRDs	2020-11-11 15:58:46 +00:00
Kubernetes Prow Robot	5d5ff49b9b	Merge pull request #96383 from xing-yang/update_snapshot_crds Update snapshot CRDs to v1	2020-11-11 05:11:49 -08:00
Kubernetes Prow Robot	8b3da41e8f	Merge pull request #96388 from Jefftree/enable_konn_default Set enable konnectivity service to true by default	2020-11-10 17:53:40 -08:00
Jefftree	58001e847d	Bump kas to v0.0.14	2020-11-10 17:22:41 -08:00
Kubernetes Prow Robot	fe9fd060c9	Merge pull request #96237 from jingxu97/nov/konnect Add nodeSelector for konnectivity daemonSet	2020-11-10 14:45:32 -08:00

... 5 6 7 8 9 ...

10107 Commits