github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
93,054 Commits 1 Branch 31 Tags 1,019 MiB
479249b3a3
Commit Graph

9488 Commits

Author SHA1 Message Date
Yecheng Fu
1ff09c0934 Remove BindTimeoutSeconds from KubeSchedulerConfiguration 2020-06-03 09:54:06 +08:00
Amim Knabben
222cae36ec Moving Kubelet --cloud-provider and --cloud-config to configuration 2020-06-02 21:35:36 -04:00
Kubernetes Prow Robot
c00cd246dc
Merge pull request #91373 from knabben/kubelet-experimental-mount 
Deprecating Kubelet mount related flags
 2020-06-02 18:11:00 -07:00
Kubernetes Prow Robot
dcbdf1a7e1
Merge pull request #91275 from knabben/kubelet-node-status-image 
Moving Kubelet --node-status-max-images flag to configuration
 2020-06-02 18:10:45 -07:00
Kubernetes Prow Robot
40076c856e
Merge pull request #91179 from SataQiu/startup-probe-20200517 
kubeadm: add startup probes for static Pods to protect slow starting containers
 2020-06-02 18:10:31 -07:00
Kubernetes Prow Robot
4f78660cdf
Merge pull request #90734 from cici37/ports 
Move CloudControllerManagerPort to k8s.io/cloud_provider
 2020-06-02 18:10:17 -07:00
Wei Huang
133dde6358
Remove EvenPodsSpread featuregate and related logic 2020-06-02 11:24:12 -07:00
Kubernetes Prow Robot
7bd4c53b27
Merge pull request #91630 from liggitt/kube-apiserver-kubelet-https 
Mark --kubelet-https deprecated, unconditionally use https for apiserver->kubelet connections
 2020-06-02 02:02:14 -07:00
Jordan Liggitt
2e8461a5bc Mark --kubelet-https deprecated, unconditionally use https for apiserver->kubelet connections 2020-06-01 20:54:49 -04:00
Rostislav M. Georgiev
5d6cf8ecd4 kubeadm: Distinguish between user supplied and generated component configs 
Until now, users were always asked to manually convert a component config to a
version supported by kubeadm, if kubeadm is not supporting its version.
This is true even for configs generated with older kubeadm versions, hence
getting users to make manual conversions on kubeadm generated configs.
This is not appropriate and user friendly, although, it tends to be the most
common case. Hence, we sign kubeadm generated component configs stored in
config maps with a SHA256 checksum. If a configs is loaded by kubeadm from a
config map and has a valid signature it's considered "kubeadm generated" and if
a version migration is required, this config is automatically discarded and a
new one is generated.
If there is no checksum or the checksum is not matching, the config is
considered as "user supplied" and, if a version migration is required, kubeadm
will bail out with an error, requiring manual config migration (as it's today).
The behavior when supplying component configs on the kubeadm command line
does not change. Kubeadm would still bail out with an error requiring migration
if it can recognize their groups but not versions.

Signed-off-by: Rostislav M. Georgiev <rostislavg@vmware.com>
 2020-06-01 17:57:53 +03:00
Kubernetes Prow Robot
774c9a6db6
Merge pull request #91349 from neolit123/1.19-fail-on-unrecognized-args 
cmd/*: fail on unrecognized flags/arguments for component CLI
 2020-05-30 00:27:53 -07:00
Kubernetes Prow Robot
d1586ea3f9
Merge pull request #91502 from deads2k/dyn-audit-removal-00 
remove --feature-gates=DynamicAuditing
 2020-05-29 11:56:20 -07:00
Kubernetes Prow Robot
2572066ac0
Merge pull request #91424 from prasadkatti/add_validate_etcd_tests 
Add tests for ValidateEtcd
 2020-05-28 16:37:53 -07:00
Kubernetes Prow Robot
c682b313d9
Merge pull request #91420 from pancernik/scheduler-config-v1beta1 
Promote kubescheduler.config.k8s.io to v1betav1
 2020-05-28 12:24:39 -07:00
Monis Khan
fc4f91f10b cmd/*: fail on unrecognized flags/arguments for component CLI 
In case a malformed flag is passed to k8s components
such as "–foo", where "–" is not an ASCII dash character,
the components currently silently ignore the flag
and treat it as a positional argument.

Make k8s components/commands exit with an error if a positional argument
that is not empty is found. Include a custom error message for all
components except kubeadm, as cobra.NoArgs is used in a lot of
places already (can be fixed in a followup).

The kubelet already handles this properly - e.g.:
'unknown command: "–foo"'

This change affects:
- cloud-controller-manager
- kube-apiserver
- kube-controller-manager
- kube-proxy
- kubeadm {alpha|config|token|version}
- kubemark

Signed-off-by: Monis Khan <mok@vmware.com>
Signed-off-by: Lubomir I. Ivanov <lubomirivanov@vmware.com>
 2020-05-28 22:06:01 +03:00
Andrew Sy Kim
ed3feac74d only log cloud provider deprecation warning for in-tree components 
Signed-off-by: Andrew Sy Kim <kim.andrewsy@gmail.com>
 2020-05-28 11:55:56 -04:00
SataQiu
17f3cd48a5 add '--logging-format' flag to kube-controller-manager 
Signed-off-by: SataQiu <1527062125@qq.com>
 2020-05-28 16:54:23 +08:00
tahsinrahman
201f869c66 Add --logging-format flag for kube-apiserver 2020-05-28 11:39:04 +08:00
Kubernetes Prow Robot
02637bb250
Merge pull request #91145 from tnqn/kubeadm-reset-error 
kubeadm: skip removing last etcd member in reset phase
 2020-05-27 15:04:01 -07:00
David Eads
e857adbdfd remove-api 2020-05-27 16:58:05 -04:00
Kubernetes Prow Robot
d680e053f1
Merge pull request #91409 from johscheuer/update-api-server-flag-help 
Update kube-apiserver flag comments
 2020-05-27 13:11:52 -07:00
David Eads
ed4e6f1026 remove dynamic audit 2020-05-27 15:18:53 -04:00
Prasad Katti
c253ccca00 Add tests for ValidateEtcd 2020-05-27 10:40:13 -07:00
Amim Knabben
896cc4c0c4 Deprecating Kubelet mount related flags 2020-05-27 09:33:27 -04:00
Prasad Katti
a85fc1038c Add tests for ValidateURLs (kubeadm validation) 2020-05-26 20:31:04 -07:00
Kubernetes Prow Robot
eff6105a33
Merge pull request #91397 from prasadkatti/add_cri_socket_path_tests 
Add cri socket path tests
 2020-05-26 19:13:09 -07:00
Kubernetes Prow Robot
03cd30b9d7
Merge pull request #90494 from knabben/kubelet-provider 
Migrating Kubelet --enable-server and --provider-id flags to config
 2020-05-26 19:12:42 -07:00
Kubernetes Prow Robot
dee4a7cd84
Merge pull request #91182 from knabben/kubelet-cfg-seccomp 
Migrating Kubelet flag --seccomp-profile-root to configuration file
 2020-05-26 13:37:33 -07:00
Amim Knabben
ee3c1aeac6 Copying --seccomp-profile-root to Kubelet config file 2020-05-26 10:19:41 -04:00
Prasad Katti
b5c08caa34 Add tests for ValidateSocketPath 2020-05-25 17:28:58 -07:00
Kubernetes Prow Robot
6d3edbcbed
Merge pull request #91411 from Hsiny/master 
Fix 404 link in kube-scheduler command usage description
 2020-05-25 14:59:11 -07:00
Rafal Wicha
852442c0ff Promote kubescheduler.config.k8s.io to v1betav1 2020-05-25 22:25:57 +01:00
Rafal Wicha
85be9c1673 Move Scheduler plugin args validation to apis/config/validation 2020-05-25 16:27:21 +01:00
Hsiny
9c7be05b60 fix,404 link in kube-scheduler command usage description 2020-05-25 23:07:00 +08:00
Johannes M. Scheuermann
bd42094d90 Update kube-apiserver flag comments 2020-05-25 15:43:56 +02:00
Prasad Katti
a1ac30db40 Add a kubeadm ValidateNodeRegistrationOptions test 2020-05-24 14:18:41 -07:00
Rostislav M. Georgiev
def0db6a16 kubeadm: Remove unused constants 
Signed-off-by: Rostislav M. Georgiev <rostislavg@vmware.com>
 2020-05-22 17:10:27 +03:00
Amim Knabben
f6246aba6e Moving Kubelet --node-status-max-images flag to configuration 2020-05-21 22:37:01 -04:00
Jiajie Yang
ebbd455b24 Restrict service account token metrics to kube-apiserver only. 2020-05-21 15:34:57 -07:00
SataQiu
e04a2b3b26 kubeadm: add startup probes for static Pods to protect slow starting containers 
Signed-off-by: SataQiu <1527062125@qq.com>
 2020-05-21 11:12:36 +08:00
Kubernetes Prow Robot
e41876666f
Merge pull request #91280 from prasadkatti/fix_markcontrolplane 
Update kubeadm test TestMarkControlPlane
 2020-05-20 19:41:50 -07:00
Kubernetes Prow Robot
12088aa76d
Merge pull request #90649 from cici37/leaderelectionconfig 
Moving leaderelectionconfig to k8s.io/component-base
 2020-05-20 19:40:47 -07:00
Prasad Katti
d7f769be3e Update kubeadm test TestMarkControlPlane 
- Use a dummy nodename instead of OS hostname
- Inline toString() function
- Use backticks to wrap expected patch
- Remove redundant test name from error logs
 2020-05-20 12:43:18 -07:00
Quan Tian
9cc416e7df kubeadm: do not remove the only remaining etcd member during reset 
If this is the only remaining stacked etcd member in the cluster,
calling RemoveMember() is not needed.
 2020-05-21 02:12:36 +08:00
Davanum Srinivas
0608e8be25
update bazel BUILD files 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2020-05-20 10:57:47 -04:00
Davanum Srinivas
5692926914
Move packages for slightly better UX for consumers 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2020-05-20 10:57:46 -04:00
Kubernetes Prow Robot
7ba332a839
Merge pull request #91258 from alculquicondor/double_spread_weight 
Set weight of PodTopologySpread Score to 2
 2020-05-19 23:40:42 -07:00
Kubernetes Prow Robot
bb4a21161f
Merge pull request #90892 from xphoniex/fix-kubeadm-getting-stuck-alpine 
kubeadm: move the "kubelet-start" phase after "kubeconfig" for "init"
 2020-05-19 16:32:19 -07:00
Aldo Culquicondor
9819b25a44 Set weight of PodTopologySpread Score to 2 
Signed-off-by: Aldo Culquicondor <acondor@google.com>
 2020-05-19 12:08:38 -04:00
Rostislav M. Georgiev
543f29be4e kubeadm: Reduce kubelet.DownloadConfig usage 
kubelet.DownloadConfig is an old utility function which takes a client set and
a kubelet version, uses them to fetch the kubelet component config from a
config map, and places it in a local file. This function is simple to use, but
it is dangerous and unnecessary. Practically, in all cases the kubelet
configuration is present locally and does not need to be fetched from a config
map on the cluster (it just needs to be stored in a file).
Furthermore, kubelet.DownloadConfig does not use the kubeadm component configs
module in any way. Hence, a kubelet configuration fetched using it may not be
patched, validated, or otherwise, processed in any way by kubeadm other than
piping it to a file.

This patch replaces all but a single kubelet.DownloadConfig invocation with
equivalents that get the local copy of the kubelet component config and just
store it in a file. The sole remaining invocation covers the
`kubeadm upgrade node --kubelet-version` case.

In addition to that, a possible panic is fixed in kubelet.DownloadConfig and
it now takes the kubelet version parameter as string.

Signed-off-by: Rostislav M. Georgiev <rostislavg@vmware.com>
 2020-05-19 13:30:45 +03:00
Kubernetes Prow Robot
c8ecfc328d
Merge pull request #91158 from prasadkatti/master 
[kubeadm] add tests for package `patchnode`
 2020-05-18 13:33:58 -07:00
Kubernetes Prow Robot
7dafbe3ff3
Merge pull request #90391 from johscheuer/improve-error-message-svc-cidr 
Improve the error message for the service cidr check
 2020-05-18 11:05:37 -07:00
Prasad Katti
21a1d1d179 [kubeadm] add tests for patchnode 2020-05-18 10:06:06 -07:00
Paulo Gomes
550a67869a
Warn when insecure TLS ciphers are selected. 2020-05-18 13:16:32 +01:00
Kubernetes Prow Robot
ec23b612b8
Merge pull request #91176 from prasadkatti/add_tests_validation 
Update kubeadm test TestValidateToken
 2020-05-17 18:35:35 -07:00
Kubernetes Prow Robot
c6147e3231
Merge pull request #91170 from prasadkatti/fix_ident 
Fix identation in kubeadm api docs
 2020-05-17 16:09:36 -07:00
Prasad Katti
124386eaa0 Fix identation in kubeadm api docs 2020-05-17 14:05:34 -07:00
Prasad Katti
89fa53f064 Update kubeadm test TestValidateToken 
- Remove some duplicate testcases
- Add token to error message
 2020-05-16 23:46:18 -07:00
Kubernetes Prow Robot
5bace30840
Merge pull request #91148 from liggitt/kubelet-client-metric 
Add kubelet_certificate_manager_client_ttl_seconds gauge
 2020-05-16 19:00:24 -07:00
Kubernetes Prow Robot
b170451caa
Merge pull request #90183 from dims/update-kubernetes-to-klog-v2 
Update kubernetes to klog v2
 2020-05-16 18:59:51 -07:00
Amim Knabben
8459c9b6f4 Moving enable-server and provider-id 2020-05-16 21:34:13 -04:00
Kubernetes Prow Robot
694a9c242e
Merge pull request #90970 from johscheuer/add-readiness-to-controlplane 
kubeadm: use two separate checks on /livez and /readyz for the kube-apiserver
 2020-05-16 07:36:49 -07:00
Kubernetes Prow Robot
45bfd14ee3
Merge pull request #90174 from tnqn/certdir-default-value 
Delete the wrong comment about CertDirectory of kubelet
 2020-05-16 07:36:03 -07:00
Davanum Srinivas
07d88617e5
Run hack/update-vendor.sh 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2020-05-16 07:54:33 -04:00
Davanum Srinivas
442a69c3bd
switch over k/k to use klog v2 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2020-05-16 07:54:27 -04:00
Jordan Liggitt
950ed38996 Mark experimental-cluster-signing-duration deprecated, add --cluster-signing-duration 2020-05-15 14:09:58 -04:00
Jordan Liggitt
2408d8101f Fix kubelet client certificate gauge 2020-05-15 12:57:34 -04:00
cici37
f52636330a Moving leaderelectionconfig to k8s.io/component-base 2020-05-15 09:08:20 -07:00
xphoniex
64cca18f4f move KubeletStartPhase past config writing phase(s) 2020-05-15 11:06:52 +00:00
Kubernetes Prow Robot
9e88546f30
Merge pull request #91065 from SataQiu/fix-kubeadm-20200513 
kubeadm: log more information when missing the necessary config element
 2020-05-15 02:49:17 -07:00
Kubernetes Prow Robot
c096a37226
Merge pull request #89158 from alena1108/mar16 
Kubelet doc: clarification for api-qps/burst flags
 2020-05-14 17:04:58 -07:00
Kubernetes Prow Robot
5bda0c1b3b
Merge pull request #83726 from cofyc/fix56180 
scheduler: Move all volume binding code into VolumeBinding plugin
 2020-05-14 10:08:23 -07:00
Johannes M. Scheuermann
9a1cbc2711 Use livez and readyz endpoint for API server probes 2020-05-14 17:41:05 +02:00
SataQiu
281f44628f kubeadm: log more information when missing the necessary config element 
Signed-off-by: SataQiu <1527062125@qq.com>
 2020-05-14 10:07:03 +08:00
Kubernetes Prow Robot
40b0f4f6cb
Merge pull request #90565 from alculquicondor/cleanup-sched-config 
Remove wrapper around base LeaderElectionConfiguration
 2020-05-13 15:59:05 -07:00
Kubernetes Prow Robot
2ca3347dc0
Merge pull request #90499 from knabben/kubelet-testing-flags 
Deprecating Kubelet not used testing flags
 2020-05-13 15:58:37 -07:00
Kubernetes Prow Robot
3b024339bd
Merge pull request #90645 from neolit123/1.19-fix-retry-etcd-member-add 
kubeadm: fix flakes when performing etcd MemberAdd on slower setups
 2020-05-13 06:04:26 -07:00
Paulo Gomes
e7ced21235
Invert error validation 2020-05-13 09:19:17 +01:00
Kubernetes Prow Robot
977aeab3e5
Merge pull request #90987 from andrewsykim/service-controller-fixup 
service controller: clean up unit tests
 2020-05-13 00:19:13 -07:00
Kubernetes Prow Robot
2f381e06e5
Merge pull request #90872 from mikedanese/integ 
fix some fixture path calculations
 2020-05-13 00:18:54 -07:00
Mike Danese
bd290e924f fix some fixture path calculations 
Current calculations assume that -trimpath is not passed to go tool
compile, which is not the case for test binaries built with bazel. This
causes issues for integration tests right now but is generally not
correct.

The approach taken here is a bit of a hack but it works on the
assumption that if and only if trimpath is passed, we are running under
bazel. I didn't see a good spot for pkgPath(), so I just copied it
around.
 2020-05-12 15:34:55 -07:00
Kubernetes Prow Robot
89ba90573f
Merge pull request #90788 from xlgao-zju/delete-prepull-ds 
kubeadm: delete pre-pull ds and add pull images check in upgrade apply and upgrade node
 2020-05-12 12:08:22 -07:00
Andrew Sy Kim
758c25de2f service controller: store feature gate in local fields for better testability 
Signed-off-by: Andrew Sy Kim <kim.andrewsy@gmail.com>
 2020-05-12 13:40:54 -04:00
cici37
fd694fa947 Remove CloudControllerManagerPort to k8s.io/cloud_provider 2020-05-12 01:15:16 -07:00
Yecheng Fu
c14b749521 scheduler/volumebinding: move all volume binding logic into VolumeBinding plugin 2020-05-12 10:13:05 +08:00
Kubernetes Prow Robot
b5f67110ed
Merge pull request #87746 from mattjmcnaughton/mattjmcnaughton/poc-compiling-kubelet-wo-docker 
Support compiling Kubelet w/o docker/docker
 2020-05-09 12:01:51 -07:00
Kubernetes Prow Robot
c0dab07d7e
Merge pull request #90680 from andrewsykim/update-owners 
move inactive SIG Cloud Provider approvers to emeritus_approvers
 2020-05-09 07:24:04 -07:00
Kubernetes Prow Robot
b8dd18380f
Merge pull request #90733 from cici37/legacyschema 
Remove //pkg/api/legacyscheme from CCM and CM
 2020-05-09 00:44:19 -07:00
Kubernetes Prow Robot
8d718b1ef5
Merge pull request #90731 from deads2k/csr-separate-signer-flags 
refactor the CSR controller into distinct controllers to allow easy
 2020-05-09 00:44:05 -07:00
cici37
50ea7a0435 Remove pkg/api/legacyscheme from cmd/controller-manager 2020-05-08 09:49:22 -07:00
Kubernetes Prow Robot
2e4bab8065
Merge pull request #90840 from rosti/kubeadm-move-kubelet-featuregates 
kubeadm: Move IPv6DualStack feature gate to component config
 2020-05-08 05:24:09 -07:00
Kubernetes Prow Robot
90f7ae54ac
Merge pull request #90657 from alculquicondor/default-plugin-args 
Move Plugin Args defaults to versioned packages
 2020-05-08 02:03:42 -07:00
Johannes M. Scheuermann
4c5b46d2ae Move validation in own function with tests 2020-05-08 08:52:34 +02:00
Xianglin Gao
a169305207 kubeadm: add pull images check in upgrade apply and upgrade node 
Signed-off-by: Xianglin Gao <xianglin.gxl@alibaba-inc.com>
 2020-05-08 12:42:54 +08:00
Kubernetes Prow Robot
87e5d4e4de
Merge pull request #90630 from nilo19/cleanup/add-import-restrictions-to-ccm 
Add .import-restrictions file to cmd/cloud-controller-manager
 2020-05-07 17:19:42 -07:00
cici37
399b6b50f0 Remove //pkg/api/legacyscheme from CCM 2020-05-07 16:36:14 -07:00
mattjmcnaughton
34c8f51dcb
Remove all uses of dockershim from cmd/kubelet 
We can remove all uses of `dockershim` from `cmd/kubelet`, by just
passing the docker options to the kubelet in their pure form, instead of
using them to create a `dockerClientConfig` (which is defined in
dockershim). We can then construct the `dockerClientConfig` only when we
actually need it.
 2020-05-07 17:18:49 -04:00
mattjmcnaughton
53adde65ce
Remove ExperimentalDockershim from kubelet 
Remove one of two uses of Dockershim in `cmd/kubelet`. The other is for
creating a docker client which we pass to the Kubelet... we will handle
that refactor in a separate diff.

I'm fairly confident, though need to double check, that no one is
actually using this experimental dockershim behavior. If they are, I
think we will want to find a new way to support it (that doesn't require
using the Kubelet only to launch Dockershim).
 2020-05-07 17:18:48 -04:00
Rostislav M. Georgiev
b46259b7af kubeadm: Move IPv6DualStack feature gate to component config 
kubeadm is setting the IPv6DualStack feature gate in the command line of the kubelet.
However, the kubelet is gradually moving away from command line flags towards component config use.
Hence, we should set the IPv6DualStack feature gate in the component config instead.

Signed-off-by: Rostislav M. Georgiev <rostislavg@vmware.com>
 2020-05-07 14:28:07 +03:00
Aldo Culquicondor
2935480cc8 Move Plugin Args defaults to versioned packages 
Signed-off-by: Aldo Culquicondor <acondor@google.com>
 2020-05-06 18:00:23 -04:00
Xianglin Gao
6c6a702a99 kubeadm: delete prepull ds 
Signed-off-by: Xianglin Gao <xianglin.gxl@alibaba-inc.com>
 2020-05-06 15:52:19 +08:00
David Eads
83035890ad refactor the CSR controller into distinct controllers to allow easy configuration of multiple signing keys 2020-05-05 10:18:04 -04:00
Kubernetes Prow Robot
dc6c640a12
Merge pull request #90375 from cici37/removeConfigz 
move pkg/util/configz to k8s.io/component-base
 2020-05-04 13:46:09 -07:00
Brian Pursley
f8cd4a06ef Fixed bug that caused TestKubeletDefault to fail when run on systems that have systemd-resolved active 2020-05-04 11:55:54 -04:00
Andrew Sy Kim
4117d79e7c move inactive SIG Cloud Provider approvers to emeritus_approvers 
Signed-off-by: Andrew Sy Kim <kim.andrewsy@gmail.com>
 2020-05-01 17:31:17 -04:00
Kubernetes Prow Robot
8caddda753
Merge pull request #90513 from SataQiu/fix-kubeadm-20200427 
kubeadm: do not set deprecated '--cgroup-driver' flag in kubeadm-flags.env, it will be set in config.yaml
 2020-05-01 00:40:32 -07:00
Amim Knabben
fe9eb1ba46 Migrating Kubelet testing flags to configuration 2020-04-30 22:12:39 -04:00
Lubomir I. Ivanov
1c430ff30f kubeadm: fix flakes when performing etcd MemberAdd on slower setups 
In slower setups it can take more time for the existing cluster
to be in a healthy state, so the existing backoff of ~50 seconds
is apparently not sufficient.

The client dial can also fail for similar reasons.

Improve kubeadm's join toleration of adding new etcd members.
Wrap both the client dial and member add in a longer backoff
(up to ~200 seconds).

This particular change should be backported to the support skew.
In a future change for master, all etcd client operations should be
make consistent so that the etcd logic is in a sane state.
 2020-04-30 18:53:29 +03:00
Kubernetes Prow Robot
8dd93ca94c
Merge pull request #90309 from alculquicondor/plugin-args-decoding 
Use internal config types in scheduling plugin args
 2020-04-30 05:32:18 -07:00
Kubernetes Prow Robot
8876563700
Merge pull request #90360 from tnozicka/fix-client-ca-reload 
Fix client-ca dynamic reload in apiserver
 2020-04-30 01:10:18 -07:00
t-qini
a0a6a7e28c Add .import-restrictions file to cmd/cloud-controller-manager 2020-04-30 15:49:58 +08:00
Aldo Culquicondor
98d1e241f1 Use internal config types in scheduling plugin args 
Signed-off-by: Aldo Culquicondor <acondor@google.com>
 2020-04-29 17:07:10 -04:00
cici37
7f4d19167e Move pkg/util/configz to k8s.io/component-base 2020-04-29 12:17:25 -07:00
Kubernetes Prow Robot
a26c34e470
Merge pull request #90381 from cici37/features 
Remove CCM's dependency: pkg/features
 2020-04-29 11:42:24 -07:00
cici37
722ab792b4 Use IPv6DualStack as const to avoid extra dep. 2020-04-29 09:06:10 -07:00
Tomas Nozicka
b22a170d46 Fix client-ca dynamic reload in apiserver 2020-04-29 16:03:09 +02:00
Kubernetes Prow Robot
0c3c2cd6ac
Merge pull request #89660 from pjferrell/kubectl-jsonpath-nonprimitive-types 
client-go/util/jsonpath: resolve #16707 by outputting json for non-primitive types
 2020-04-28 22:56:25 -07:00
Aldo Culquicondor
29f5adee7f Remove wrapper around base LeaderElectionConfiguration 
Signed-off-by: Aldo Culquicondor <acondor@google.com>
 2020-04-28 15:44:35 -04:00
Aaron Crickenberger
81881e4a12 prune .import-restrictions 
specifically:

- cmd/kubeadm/.import-restrictions
  - we don't need to explicitly allow k8s.io repos (external or published)
- rm pkg/controller/.import-restrictions
  - pkg/client/unversioned was removed in 59042
- pkg/kubectl/.import-restrictions
  - pkg/printers is no longer used
  - pkg/api was masking all of the pkg/apis prefixes
- rm staging/src/k8s.io/code-generator/cmd/lister-gen/.import-restrictions
  - noop / empty file
- test/e2e/framework/.import-restrictions
  - we don't need to explicitly allow k8s.io repos (external or published)
 2020-04-28 08:41:36 -07:00
Aaron Crickenberger
f306a0dbb4 convert .import-restrictions to yaml 
yaml has comments, so we can explain why we have certain rules or
certain prefixes

for those files that weren't already commented yaml, I converted them to
yaml and took a best guess at comments based on the PRs that introduced
or updated them
 2020-04-28 08:41:36 -07:00
SataQiu
afb1ea44b9 kubeadm: do not set deprecated '--cgroup-driver' flag in kubeadm-flags.env, this value will be set in config.yaml 2020-04-27 15:32:10 +08:00
Kubernetes Prow Robot
f8297af392
Merge pull request #90284 from wawa0210/kubelet-nodename-clean 
Remove duplicate calculation nodename、hostname、hostnameOverridden when kubelet is initialized
 2020-04-24 12:15:34 -07:00
Kubernetes Prow Robot
9706b70213
Merge pull request #90411 from johscheuer/improve-error-message 
Improve error message when service cidr is to small
 2020-04-24 03:16:21 -07:00
Kubernetes Prow Robot
340ac700e5
Merge pull request #90424 from prasadkatti/master 
kubeadm: update service check log to include service name
 2020-04-23 23:30:44 -07:00
Johannes M. Scheuermann
889648d6e5 Improve the error message for the service cidr check 2020-04-24 07:46:31 +02:00
Kubernetes Prow Robot
30cefca5a6
Merge pull request #89128 from vincent178/move-runonce-kubeletconfiguration 
move runonce from flag to config
 2020-04-23 17:20:07 -07:00
Prasad Katti
b4e026a1ea kubeadm: update service check log to include service name 2020-04-23 16:51:39 -07:00
wawa0210
40da2c521a
Remove duplicate calculation nodename 、hostname 、hostnameOverridden 2020-04-24 07:49:33 +08:00
Kubernetes Prow Robot
0acf2f0983
Merge pull request #90320 from neolit123/1.19-kubeadm-dont-use-sleep-on-upgrade 
kubeadm: do not use /bin/sleep during upgrade pre-pull
 2020-04-23 12:32:21 -07:00
Kubernetes Prow Robot
613cd04d8c
Merge pull request #90064 from neolit123/1.19-fix-authz-warning 
kubeadm: fix misleading warning for authz modes
 2020-04-23 12:32:06 -07:00
Johannes M. Scheuermann
4211c2dccc Improve error message when service cidr is to small 2020-04-23 20:18:13 +02:00
Kubernetes Prow Robot
52243decf1
Merge pull request #90394 from SataQiu/fix-kubeadm-20200422 
kubeadm: fix the bug that kubeadm does not really respect resolvConf value set by user if systemd-resolved is active
 2020-04-23 08:51:25 -07:00
Kubernetes Prow Robot
95a81f2776
Merge pull request #90328 from SataQiu/fix-kubeadm-20200421 
kubeadm: ensure image-pull-timeout flag is respected during upgrade phase
 2020-04-23 08:51:11 -07:00
SataQiu
28b9a4e0d6 kubeadm: set resolv-conf via the kubelet config file rather than cli flag 2020-04-23 15:07:48 +08:00
Kubernetes Prow Robot
15ed3b36d1
Merge pull request #90235 from cici37/addflag 
Remove CCM dependency pkg/util/flag
 2020-04-22 19:22:14 -07:00
Lubomir I. Ivanov
425552f2c9 kubeadm: do not use /bin/sleep during upgrade pre-pull 
Use an init container that performs the pre-pull of a component
and then start an instance of "pause" as a regular container to
get the DaemonSet Pod in a Running state.

More details on this change in the code comments.
 2020-04-23 04:17:49 +03:00
Kubernetes Prow Robot
43cd2ff239
Merge pull request #89549 from happinesstaker/sa-rotate 
Monitoring safe rollout of time-bound service account token.
 2020-04-22 17:01:58 -07:00
Kubernetes Prow Robot
791b4bbeea
Merge pull request #85266 from serathius/refactor-show-hidden-metric 
Refactor show-hidden-metric-for-version flag
 2020-04-22 17:01:44 -07:00
Jiajie Yang
ae0e52d28c Monitoring safe rollout of time-bound service account token. 2020-04-22 11:59:16 -07:00
cici37
15c844031f Remove CCM dependency pkg/util/flag 2020-04-22 10:06:11 -07:00
Jie Shen
363bb39142
Use utils.net to parse ports instead of atoi (#89120) 2020-04-21 20:55:52 -07:00
SataQiu
449b39a450 kubeadm: ensure image-pull-timeout flag is respected during upgrade phase 
Signed-off-by: SataQiu <1527062125@qq.com>
 2020-04-21 16:35:04 +08:00
tangcong
90481a9596 fix kubeadm staticcheck err 2020-04-21 06:54:42 +08:00
Kubernetes Prow Robot
8b0a7dea1d
Merge pull request #90297 from deads2k/silence-usage 
stop printing usage help when the server commands exit
 2020-04-20 14:05:49 -07:00
David Eads
871d6dd8bb stop printing usage help when the server commands exit 2020-04-20 08:29:52 -04:00
Kubernetes Prow Robot
b2689edfdd
Merge pull request #88371 from dharmab/scheduler-synopsis 
Improve scheduler CLI description
 2020-04-17 13:15:36 -07:00
Quan Tian
23e54301ab Delete the wrong comment about CertDirectory of kubelet 
The default value of CertDirectory was changed to /var/lib/kubelet/pki.
 2020-04-18 00:37:27 +08:00
Kubernetes Prow Robot
b35fdbc037
Merge pull request #89904 from alculquicondor/raw-extension-plugin-args 
Use RawExtension and Object for external and internal, respectively, scheduling plugin args
 2020-04-15 15:22:59 -07:00
Kubernetes Prow Robot
1df63e7dc7
Merge pull request #88510 from steveazz/steveazz/68026-rlimit 
Fix golint issues for `pkg/util/rlimit`
 2020-04-15 15:22:45 -07:00
Phil Ferrell
ba386aba4f client-go: change jsonpath output of non-primitive types from Go-syntax to JSON 
kubectl: add --output jsonpath-as-json to print a json array of results
kubeadm: fix test case using jsonpath result of non-primitive type
 2020-04-15 14:58:20 -07:00
Dharma Bellamkonda
49bcf18cc5 Improve scheduler CLI description 2020-04-15 14:14:45 -06:00
Kubernetes Prow Robot
b30bfa6f76
Merge pull request #90163 from SataQiu/fix-kubeadm-20200415 
kubeadm: fix some mistakes about log output
 2020-04-15 11:36:33 -07:00
Kubernetes Prow Robot
7f1d09f439
Merge pull request #89593 from neolit123/1.19-skip-kube-proxy-on-upgrade 
kubeadm: skip kube-proxy/dns upgrades on missing ConfigMaps
 2020-04-15 11:36:00 -07:00
SataQiu
004a61a46c kubeadm: fix some mistakes about log output 2020-04-15 14:32:46 +08:00
Lubomir I. Ivanov
83644dda30 kubeadm: update versions for 1.19 2020-04-14 23:27:35 +03:00
Kubernetes Prow Robot
ea2d784545
Merge pull request #89895 from jingyih/update_etcd_server_3p4p7 
Update default etcd server to 3.4.7 in k8s v1.19
 2020-04-14 12:34:06 -07:00
Kubernetes Prow Robot
6c499314cd
Merge pull request #88480 from savitharaghunathan/kubelet_flag_migration_1 
Kubelet flag migration - Part 1
 2020-04-14 12:33:39 -07:00
Steve Azzopardi
4936cd476b
Fix golint issues for pkg/util/rlimit 
pkg/util/rlimit/rlimit_linux.go:25:1: exported function RlimitNumFiles should have comment or be unexported
pkg/util/rlimit/rlimit_linux.go:25:6: func name will be used as rlimit.RlimitNumFiles by other packages, and that stutters; consider calling this NumFiles
pkg/util/rlimit/rlimit_unsupported.go:25:1: exported function RlimitNumFiles should have comment or be unexported
pkg/util/rlimit/rlimit_unsupported.go:25:6: func name will be used as rlimit.RlimitNumFiles by other packages, and that stutters; consider calling this NumFiles

Ref: https://github.com/kubernetes/kubernetes/issues/68026
 2020-04-14 21:00:41 +02:00
Lubomir I. Ivanov
44638a10e8 kubeadm: remove usage of the "certificates" API for cert renewal 
The flag "--use-api" for "alpha certs renew" was deprecated in 1.18.
Remove the flag and related logic that executes certificate renewal
using "api/certificates/v1beta1". kubeadm continues to be able
to create CSR files and renew using the local CA on disk.
 2020-04-14 21:57:37 +03:00
Kubernetes Prow Robot
105c0c6951
Merge pull request #88970 from mysunshine92/correct-NodeAllocatableRoot 
fix function NodeAllocatableRoot
 2020-04-14 11:04:13 -07:00
Aldo Culquicondor
ce05382b58 Use RawExtension and Object for external and internal scheduling plugin args, respectively 
Signed-off-by: Aldo Culquicondor <acondor@google.com>
 2020-04-14 13:44:42 -04:00
Kubernetes Prow Robot
250884c9c1
Merge pull request #90127 from needkane/pr 
[cmd/kube-apiserver]  "return []error{} -> return nil" and "update annotation"
 2020-04-14 07:44:12 -07:00
needkane
97d6f2cfd3 (return []error{} -> return nil) and (update annotation) 2020-04-14 00:05:35 -04:00
vincent178
745b742de5 move runonce from flag to config 2020-04-14 06:00:43 +08:00
jingyih
394df132bd Update default etcd server to 3.4.7 2020-04-13 14:37:56 -07:00
Kubernetes Prow Robot
2624a4ad46
Merge pull request #80943 from obitech/yaml_meta 
Add a YAML MetaFactory
 2020-04-13 02:05:47 -07:00
Kubernetes Prow Robot
b17ddac4df
Merge pull request #78944 from avorima/golint_fix_job 
Fix golint errors in pkg/controller/job
 2020-04-12 21:57:47 -07:00
Kubernetes Prow Robot
3641d40a98
Merge pull request #90078 from SataQiu/staging-kubeadm-20200411 
kubeadm: remove the dependence on /pkg/features
 2020-04-12 12:09:47 -07:00
SataQiu
35f3f82029 kubeadm: remove the dependence on /pkg/features 
Signed-off-by: SataQiu <1527062125@qq.com>
 2020-04-12 15:05:44 +08:00
Kubernetes Prow Robot
ee6b88ddf9
Merge pull request #90000 from SataQiu/staging-scheduler-20200409 
scheduler: remove direct import to pkg/master/ports
 2020-04-11 10:46:01 -07:00
Kubernetes Prow Robot
eece89a253
Merge pull request #90031 from thockin/proxy-cleanup 
kube-proxy: Startup and updates logging
 2020-04-11 06:23:47 -07:00
SataQiu
41d3e44a2f scheduler: remove direct import to pkg/master/ports 
Signed-off-by: SataQiu <1527062125@qq.com>
 2020-04-11 13:56:53 +08:00
Tim Hockin
9551ecb7c3 Cleanup: Change "Ip" to "IP" in func and var names 2020-04-10 15:29:50 -07:00
Tim Hockin
efb24d44c6 Rename iptables IsIpv6 to IsIPv6 2020-04-10 15:29:50 -07:00
Lubomir I. Ivanov
6cfd772401 kubeadm: fix misleading warning for authz modes 
kubeadm init prints:
  W0410 23:02:10.119723   13040 manifests.go:225] the default kube-apiserver
  authorization-mode is "Node,RBAC"; using "Node,RBAC"

Add a new function compareAuthzModes() and a unit test for it.
Make sure the warning is printed only if the user modes don't match
the defaults.
 2020-04-10 23:45:40 +03:00
Lubomir I. Ivanov
83a59c02f9 kubeadm: switch control-plane static Pods to "system-node-critical" 
Use the priority class "system-node-critical" to ensure
the control-plane static Pods have the highest possible priority.
 2020-04-10 23:05:33 +03:00
Kubernetes Prow Robot
2da163bcf5
Merge pull request #89588 from rosti/kubeadm-etcd-upgrade 
kubeadm: Use image tag as version of stacked etcd
 2020-04-09 18:08:03 -07:00
Kubernetes Prow Robot
e322da5ddc
Merge pull request #88585 from pancernik/plugin-args-api-config 
Add types for Scheduler plugin args to kube-scheduler.config.k8s.io
 2020-04-09 09:19:44 -07:00
Kubernetes Prow Robot
1634d9c120
Merge pull request #89982 from neolit123/1.19-fix-kubeadm-integration-tests 
cleanup the kubeadm integration tests and related scripts
 2020-04-09 04:55:44 -07:00
Kubernetes Prow Robot
d58224e4bc
Merge pull request #89929 from deads2k/flag-check 
add flag check to ensure that flowcontrol API is present
 2020-04-08 22:13:43 -07:00
Kubernetes Prow Robot
9d74a1e3db
Merge pull request #89724 from zhouya0/add_missing_build_info_metric 
Add missing kube build version info metrics
 2020-04-08 20:11:44 -07:00
Lubomir I. Ivanov
a18502615e kubeadm-init: allow overriding the dry-run temp directory 
Allow overriding the dry-run temporary directory with
an env. variable (KUBEADM_INIT_DRYRUN_DIR).

Use the same variable in test/cmd/init_test.go.
This allows running integration tests as non-root.
 2020-04-09 01:20:24 +03:00
Lubomir I. Ivanov
04933f3a94 cmd/kubeadm/test/cmd: refactor _test.go files 
Make getKubeadmPath() fetch the KUBEADM_PATH env. variable.
Panic if it's missing. Don't handle the "--kubeadm-path"
flag. Remove the same flag from the BUILD bazel test rule.

Don't handle "--kubeadm-cmd-skip" usage of this flag is missing
from the code base.

Remove usage of "kubeadmCmdSkip" as the flag "--kubeadm-cmd-skip"
is never passed.
 2020-04-09 00:47:16 +03:00
Marek Siarkowicz
24321b2d4e Refactor show-hidden-metric-for-version flag 2020-04-08 22:42:14 +02:00
Lubomir I. Ivanov
d4de1a571a kubeadm: skip kube-proxy and DNS upgrades on missing ConfigMaps 
If the kube-proxy/dns ConfigMap are missing, show warnings and assume
that these addons were skipped during "kubeadm init",
and that their redeployment on upgrade is not desired.

TODO: remove this once "kubeadm upgrade apply" phases are supported:
https://github.com/kubernetes/kubeadm/issues/1318
 2020-04-08 22:58:42 +03:00
Rafał Wicha
c4d20ca8a8 Add types for Scheduler plugin args to kube-scheduler.config.k8s.io 2020-04-08 20:23:56 +01:00
Kubernetes Prow Robot
5123c3a018
Merge pull request #89867 from gongguan/ipvs-check 
remove duplicate ipvs check
 2020-04-07 16:45:57 -07:00
David Eads
45c2f4534c add flag check to ensure that flowcontrol API is present 2020-04-07 15:08:50 -04:00
louisgong
d6ea9d7c4c remove duplicate ipvs check 2020-04-07 23:12:09 +08:00
Kubernetes Prow Robot
cf144eb485
Merge pull request #89656 from dashpole/json_flag 
specify in the flag help text that --enable-cadvisor-json-endpoints d…
 2020-04-06 17:47:48 -07:00
Kubernetes Prow Robot
cabf5d1cdc
Merge pull request #89350 from SataQiu/fix-kube-proxy-20200323 
kube-proxy: treat failure to bind to a port as fatal
 2020-04-06 17:47:20 -07:00
Kubernetes Prow Robot
b984f59fa3
Merge pull request #89735 from rosti/kubeadm-fix-bootstrap-wait 
kubeadm join: Properly wait for TLS bootstrapping
 2020-04-06 11:19:48 -07:00
Kubernetes Prow Robot
4f90253b58
Merge pull request #89596 from neolit123/1.19-fix-misleading-warning-on-jcp 
kubeadm: remove misleading warning on kubeadm join
 2020-04-03 04:27:45 -07:00
Kubernetes Prow Robot
dd35908c7f
Merge pull request #89298 from gavinfish/scheuler-config-alph1 
Remove kubescheduler.config.k8s.io/v1alpha1
 2020-04-02 21:39:59 -07:00
Kubernetes Prow Robot
3c4017c2d0
Merge pull request #89785 from andrewsykim/log-ipvs-err 
ipvs: log err from CanUseIPVSProxier
 2020-04-02 17:24:00 -07:00
Kubernetes Prow Robot
b7aaa59b49
Merge pull request #89585 from cwdsuzhou/March/proxy_kernel 
add `kernelspace` to flag description of kube-proxy
 2020-04-02 12:43:02 -07:00
Andrew Sy Kim
e3656db5bc ipvs: log err from CanUseIPVSProxier 
Signed-off-by: Andrew Sy Kim <kim.andrewsy@gmail.com>
 2020-04-02 13:48:15 -04:00
Rostislav M. Georgiev
d2c4426e97 kubeadm join: Wait longer for TLS bootstrapping 
The TLS bootstrapping timeout is increased to 5 minutes with a retry
once every 5 seconds. Failing fast if the kubelet is not healthy is also
preserved.

Signed-off-by: Rostislav M. Georgiev <rostislavg@vmware.com>
 2020-04-02 16:44:39 +03:00
Kubernetes Prow Robot
ad4bd386eb
Merge pull request #86752 from SataQiu/fix-kubelet-20191231 
Add error handler for rlimit.RlimitNumFiles
 2020-04-01 22:14:38 -07:00
SataQiu
871b90ba23 kube-proxy: add '--bind-address-hard-fail' flag to treat failure to bind to a port as fatal 
Signed-off-by: SataQiu <1527062125@qq.com>
 2020-04-02 13:13:10 +08:00