github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
105,363 Commits 1 Branch 31 Tags 1,019 MiB
9405e9b55e
Commit Graph

3733 Commits

Author SHA1 Message Date
Lubomir I. Ivanov
5c00024c70 kubeadm: fix wrong check for keys/certs during "download-certs" 
During "join" of new control plane machines, kubeadm would
download shared certificates and keys from the cluster stored
in a Secret. Based on the contents of an entry in the Secret,
it would use helper functions from client-go to either write
it as public key, cert (mode 644) or as a private key (mode 600).

The existing logic is always writing both keys and certs with mode 600.
Allow detecting public readable data properly and writing some files
with mode 644.

First check the data with ParsePrivateKeyPEM(); if this passes
there must be at least one private key and the file should be written
with mode 600 as private. If that fails, validate if the data contains
public keys with ParsePublicKeysPEM() and write the file as public
(mode 644).

As a result of this new logic, and given the current set of managed
kubeadm files, .key files will end up with 600, while .crt and .pub
files will end up with 644.
 2021-06-29 23:42:04 +03:00
wangyysde
39a373b162 correct example command of kubeadm help 
Signed-off-by: wangyysde <net_use@bzhy.com>
 2021-06-28 16:12:52 +08:00
navist2020
538e7777c3 kubeadm:remove deprecated flags CSROnly and CSRDir 2021-06-24 18:28:43 +08:00
Marek Siarkowicz
ebe550bd48 Upgrade etcd to 3.5.0 2021-06-24 09:15:17 +02:00
Lubomir I. Ivanov
70a524659a kubeadm: add {Init|Join}Configuration.Patches.Directory to v1beta3 
Add {Init|Join}Configuration.Patches, which is a structure that
contains patch related options. Currently it only has the "Directory"
field which is the same option as the existing --experimental-patches
flag.

The flags --[experimental-]patches value override this value
if both a flag and config is passed during "init" or "join".
 2021-06-23 22:24:10 +03:00
Lubomir I. Ivanov
a4402122b4 kubeadm: add the --patches flag and deprecate --experimental-patches 
The feature of "patches" in kubeadm has been in Alpha for a few
releases. It has not received major bug reports from users.
Deprecate the --experimental-patches flag and add --patches.

Both flags are allowed to be mixed with --config.
 2021-06-23 22:22:41 +03:00
Lubomir I. Ivanov
3b36e6bcea kubeadm: fix image pull policy integration 
If the user has not specified a pull policy we must assume a default of
v1.PullIfNotPresent.

Add some extra verbose output to help users monitor what policy is
used and what images are skipped / pulled.

Use "fallthrough" and case handle "v1.PullAlways".

Update unit test.
 2021-06-23 00:52:35 +03:00
Kubernetes Prow Robot
c864f2357d
Merge pull request #102901 from wangyysde/add-support-imagePullPolicy-fix524 
kubeadm: add support of imagePullPolicy to kubeadm
 2021-06-22 07:43:59 -07:00
Kubernetes Prow Robot
e78e692f33
Merge pull request #101449 from CaoDonghui123/fix5 
kubeadm: allow passing the flag --log-file if --config is passed
 2021-06-21 20:43:57 -07:00
caodonghui
25f479c2ac fix'--log-file only works if --logtostderr=false' 2021-06-22 09:32:26 +08:00
Kubernetes Prow Robot
cfa0130b9f
Merge pull request #102466 from pacoxu/dns-1.8.4 
kubeadm: update coredns to 1.8.4
 2021-06-21 18:14:10 -07:00
wangyysde
459fe7d08a add support of imagePullPolicy to kubeadm 
Signed-off-by: wangyysde <net_use@bzhy.com>
 2021-06-22 07:13:25 +08:00
navist2020
1f9d448283 Use errors.Errorf instead of errors.Wrapf when the err is nil 2021-06-21 16:17:32 +08:00
Kubernetes Prow Robot
ab7d8b5b5b
Merge pull request #102871 from rainrambler/patch-1 
kubeadm: use defer to unlock mutex in certs.go
 2021-06-18 09:52:30 -07:00
Kubernetes Prow Robot
f1d9db4381
Merge pull request #102940 from gy95/sche 
when new manager failed should return err
 2021-06-17 14:08:17 -07:00
Kubernetes Prow Robot
b41c8a2d49
Merge pull request #102862 from vinayakankugoyal/roochless2 
Update etcd in kubeadm to run as non-root.
 2021-06-17 13:00:05 -07:00
navist2020
1a4b0ee09b remove excess error handling 2021-06-17 17:34:57 +08:00
gy95
c789898f79 when new manager failed should return err 2021-06-17 16:02:31 +08:00
Vinayak Goyal
5a0756c5f4 Update etcd in kubeadm to run as non-root. 2021-06-16 17:30:46 -07:00
Kubernetes Prow Robot
3c1db414da
Merge pull request #102546 from lunhuijie/refactorCheckTest 
refactor cmd/kubeadm/app/preflight/checks_test.go
 2021-06-16 09:44:12 -07:00
刁浩 10284789
84112d3690 refactor cmd/kubeadm/app/preflight/checks_test.go() 
Signed-off-by: 刁浩 10284789 <diao.hao@zte.com.cn>
 2021-06-16 01:46:27 +00:00
Kubernetes Prow Robot
3a47ddccdf
Merge pull request #100488 from liggitt/protobuf 
update etcd, grpc, protobuf dependencies
 2021-06-15 14:49:42 -07:00
Kubernetes Prow Robot
d186b43639
Merge pull request #102828 from MikeSpreitzer/fix-kubeadm-api-dox 
Fix some typos and omissions in kubeadm APIs
 2021-06-15 11:31:43 -07:00
Jordan Liggitt
2979c3325e Switch to go.etcd.io/etcd/client/v3 2021-06-15 09:53:06 -04:00
rainrambler
5ea3dd531c
Update certs.go 
Use defer feature for unlock
 2021-06-15 15:34:26 +08:00
Antonio Ojea
74feb07594 kubeadm: CoreDNS permissions for endpointslices 
Signed-off-by: Antonio Ojea <antonio.ojea.garcia@gmail.com>
Co-authored-by: pacoxu <paco.xu@daocloud.io>
 2021-06-15 13:03:48 +08:00
pacoxu
188193e1c0 kubeadm: upgrade coredns 1.8.4 and corefile-migration to v1.0.12 
Signed-off-by: pacoxu <paco.xu@daocloud.io>
 2021-06-15 13:03:42 +08:00
Mike Spreitzer
a3e464490a Fix some typos and omissions in kubeadm APIs 2021-06-14 20:38:43 -04:00
Kubernetes Prow Robot
8a6a26714c
Merge pull request #102759 from vinayakankugoyal/roochless 
Update kubeadm control-plane to run as non-root.
 2021-06-14 15:52:01 -07:00
Vinayak Goyal
59b4b124df Update kubeadm control-plane to run as non-root. 2021-06-14 12:04:50 -07:00
Kubernetes Prow Robot
4aae71695a
Merge pull request #102366 from cndoit18/fix-time-format 
fix(timezone): Change the time zone in the api data to UTC
 2021-06-11 06:54:59 -07:00
Kubernetes Prow Robot
e52b7be7d7
Merge pull request #101600 from KofClubs/fix-cri-socket-kubeadm 
kubeadm: disallow the mixture of --cri-socket and --config
 2021-06-11 00:04:58 -07:00
Kubernetes Prow Robot
faa36554c5
Merge pull request #102770 from pacoxu/kubeadm-example 
kubeadm: use a suggested example in v1beta2/3 docs
 2021-06-10 08:23:47 -07:00
Kubernetes Prow Robot
f008ba0fed
Merge pull request #102062 from serathius/etcd-server 
Update Etcd server image to 3.5.0-rc.0-0
 2021-06-10 08:23:27 -07:00
pacoxu
654ec0866a kubeadm: use a suggested example in v1beta2/3 docs 
Co-authored-by: SataQiu <shidaqiu2018@gmail.com>
 2021-06-10 18:24:59 +08:00
Vinayak Goyal
e6bf19bcf6 Update CreateInitStaticPodManifestFiles, CreateStaticPodFiles and CreateLocalEtcdStaticPodManifestFile to take into account if the command was run as dry-run. 2021-06-09 15:01:42 -07:00
Marek Siarkowicz
12447bc803 Upgrade etcd server version to 3.5.0-rc.0 2021-06-09 17:00:05 +02:00
Kubernetes Prow Robot
7696a48612
Merge pull request #102560 from navist2020/todo/checkManifest 
kubeadm:Run preflight checks for diff to check that the manifests already exist
 2021-06-08 23:03:47 -07:00
Kubernetes Prow Robot
d849d9d057
Merge pull request #102697 from mlevesquedion/update-levee-analyzer-version 
Update version of go-flow-levee for verify-govet-levee check.
 2021-06-08 18:37:46 -07:00
navist2020
897f8012fd kubeadm:Run preflight checks for diff to check that the manifests already exist 2021-06-09 09:09:00 +08:00
Kubernetes Prow Robot
d5685397e1
Merge pull request #102673 from jackfrancis/kubeadm-etcd-ephemeral-storage 
kubeadm: remove ephemeral-storage etcd requirement
 2021-06-08 12:26:36 -07:00
Michaël Lévesque-Dion
a94aa0ea9a Update version of go-flow-levee for verify-govet-levee check. 2021-06-08 12:02:46 -04:00
Jack Francis
ff164f9013 feat: remove ephemeral-storage etcd requirement 2021-06-07 16:03:10 -07:00
Kubernetes Prow Robot
a8a379d91e
Merge pull request #102604 from vinayakankugoyal/kubeadm-files2 
Add utils to set file/directory owners and permissions.
 2021-06-07 13:40:56 -07:00
Vinayak Goyal
bb6151906f Add utils to set file/directory owners and permissions. 2021-06-07 11:31:38 -07:00
Kubernetes Prow Robot
3b71dac6ac
Merge pull request #102593 from CaoDonghui123/fix7 
remove redundant code
 2021-06-04 09:44:38 -07:00
caodonghui
812a04539c remove redundant code 2021-06-04 17:56:46 +08:00
cndoit18
51717256f9
fix(timezone): the timezone is standardized to UTC 
Signed-off-by: cndoit18 <cndoit18@outlook.com>
 2021-06-03 23:55:39 +08:00
Lubomir I. Ivanov
f6d015be7a kubeadm: add utilities to manage users and groups 
In the Alpha stage of the feature in kubeadm to support
a rootless control plane, the allocation and assignment of
UID/GIDs to containers in the static pods will be automated.
This automation will require management of users and groups
in /etc/passwd and /etc/group.

The tools on Linux for user/group management are inconsistent
and non-standardized. It also requires us to include a number of
more dependencies in the DEB/RPMs, while complicating the UX for
non-package manager users.

The format of /etc/passwd and /etc/group is standardized.
Add code for managing (adding and deleting) a set of managed
users and groups in these files.
 2021-06-03 03:48:45 +03:00
Kubernetes Prow Robot
7e2b5f3325
Merge pull request #102502 from ykakarap/kubeadm-coredns-path-change 
kubeadm: use subpath for coredns only for default repository
 2021-06-01 16:02:47 -07:00
Yuvaraj Kakaraparthi
97ba90cbfb use subpath for coredns only for default repository 2021-06-01 13:27:01 -07:00
Vinayak Goyal
39d45fccef Add user and group name constants for kubeadm rootless control-plane. 2021-06-01 09:52:33 -07:00
Kubernetes Prow Robot
d6b408f748
Merge pull request #99647 from neolit123/1.21-remove-cgroup-driver-detection 
kubeadm: remove the cgroup driver detection for docker
 2021-05-31 06:30:27 -07:00
Kubernetes Prow Robot
e7d8fb2e16
Merge pull request #101925 from neolit123/1.22-kubeadm-add-optional-fields 
kubeadm: add "+optional" to fields with "omitempty" in v1beta3
 2021-05-28 10:16:24 -07:00
Kubernetes Prow Robot
bf2ece7ada
Merge pull request #101923 from neolit123/1.22-kubeadm-add-skip-phases-v1beta3 
kubeadm: add support for skipping phases in v1beta3
 2021-05-28 09:14:24 -07:00
Lubomir I. Ivanov
24a1f9d817 kubeadm: use "SkipPhases" from configuration for "init" and "join" 
During Runner data initialization, if the value for the flag
"--skip-phases" was empty set the {init|join}Runner.Options.SkipPhases
to the {Init|Join}Configuration.SkipPhases value.
 2021-05-28 18:12:06 +03:00
Lubomir I. Ivanov
ac161866aa kubeadm: add SkipPhases in {Init|Join}Configuration for v1beta3 
- Add the field SkipPhases in the public v1beta3 as a []string (omitempty)
- Add the field in the internal type
- Run generators
- Adapt v1beta2 converter for JoinConfiguration
 2021-05-28 18:12:06 +03:00
Zhang Zhanpeng
5c2841c8cd Forbid the use of --config and --cri-socket at the same time 
Signed-off-by: Zhang Zhanpeng <zhanpeng.zhang@daocloud.io>
 2021-05-27 12:54:13 +08:00
navist2020
d98a83bb01 kubeadm:return error info normally 2021-05-26 14:50:53 +08:00
Lubomir I. Ivanov
8e5a982442 kubeadm: remove the cgroup driver detection code for Docker 
Ideally this should be part of dockershim/CRI and not on the
side of kubeadm.

Remove the detection during:
- During preflight
- During kubelet config defaulting
 2021-05-25 22:05:42 +03:00
Lubomir I. Ivanov
93f79103e5 kubeadm: add "+optional" to fields with "omitempty" in v1beta3 
Add the "+optional" generator tag to all fields in v1beta3 structs
that have "omitempty" in JSON tags.
 2021-05-25 20:05:43 +03:00
Sascha Grunert
b167fc24d7
Update pause image to v3.5 
Update dependencies and the test images to use pause 3.5. We also
provide a changelog entry for the new container image version.

Signed-off-by: Sascha Grunert <sgrunert@redhat.com>
 2021-05-25 09:04:46 +02:00
Kubernetes Prow Robot
31a0f49c7c
Merge pull request #102174 from SataQiu/kubeadm-add-datapolicy 
kubeadm: add datapolicy tags for v1beta3 token/key fields
 2021-05-21 08:41:11 -07:00
Kubernetes Prow Robot
64412d526e
Merge pull request #102133 from pacoxu/move-defaulting-kubeadm 
kubeadm: move cgroupDriver defaulting to kubeconfig/kubelet.go Default()
 2021-05-21 08:40:59 -07:00
pacoxu
2fdbfd8a27 kubeadm: move cgroupDriver defaulting to componentconfigs/kubelet.go#Default() 
Signed-off-by: pacoxu <paco.xu@daocloud.io>
 2021-05-21 17:27:40 +08:00
SataQiu
7a3827e8e3 kubeadm: add datapolicy tags for v1beta3 token fields 2021-05-21 11:47:17 +08:00
Kubernetes Prow Robot
7705b300e2
Merge pull request #102158 from vinayakankugoyal/kubeadm-featuregate 
Add a feature-gate to kubeadm to enable/disable rootless control-plane.
 2021-05-20 14:16:36 -07:00
Kubernetes Prow Robot
3cd555e818
Merge pull request #102121 from pacoxu/remove-insecure-ports 
kubeadm: remove --insecure-port flag from the kube-apiserver manifest
 2021-05-19 19:47:16 -07:00
Vinayak Goyal
c426517ac0 Add a feature-gate to kubeadm to enable/disable Rootless control-plane. 2021-05-19 15:52:27 -07:00
Kubernetes Prow Robot
7f47a3aabb
Merge pull request #102108 from neolit123/1.22-kubeadm-remove-csr-flags 
kubeadm: remove deprecated "--csr*" flags in "init phase certs"
 2021-05-18 23:33:12 -07:00
pacoxu
a074ccfe36 remove --insecure-port in kubeadm 2021-05-19 11:48:07 +08:00
Kubernetes Prow Robot
04b7977ef6
Merge pull request #101915 from neolit123/1.22-remove-cluster-status 
kubeadm: remove the ClusterStatus object from v1beta3
 2021-05-18 17:28:51 -07:00
Kubernetes Prow Robot
22ec3b0edd
Merge pull request #102069 from neolit123/1.22-kubeadm-util-use-k8s.io-link 
kubeadm: use git.k8s.io link in app/util/error.go
 2021-05-18 13:17:17 -07:00
Lubomir I. Ivanov
92a57fc573 kubeadm: remove deprecated --csr* flags in "init phase certs" 
- Remove the deprecated --csr* flags "init phase certs"
- Deprecate the same flags for "certs renew".

For both cases users should be using "certs generate-csr".
 2021-05-18 22:35:06 +03:00
Kubernetes Prow Robot
c24f2f8225
Merge pull request #102093 from SataQiu/remove-image-pull-timeout 
kubeadm: remove the deprecated flag '--image-pull-timeout' for 'kubeadm upgrade apply' command
 2021-05-18 11:35:17 -07:00
SataQiu
15dcc83cec kubeadm: remove the deprecated flag '--image-pull-timeout' for 'kubeadm upgrade apply' command 2021-05-18 20:34:05 +08:00
Lubomir I. Ivanov
66d4e6e55d kubeadm: remove the deprecated "config view" command 
The command "kubeadm config view" was deprecated in 1.19.
Remove it as scheduled in 1.22.

The replacement is to use kubectl:
kubectl get cm -n kube-system kubeadm-config -o=jsonpath="{.data.ClusterConfiguration}"
 2021-05-17 21:10:43 +03:00
Lubomir I. Ivanov
1b4bf420b4 kubeadm: use git.k8s.io link in app/util/error.go 
Adapt for the future transition of kubernetes/community to
have "main" as its development branch.

Use:
https://git.k8s.io/community/...
 2021-05-17 19:54:08 +03:00
Lubomir I. Ivanov
8b9d0dceb1 kubeadm: remove the ClusterStatus object from v1beta3 
- Remove the object form v1beta3 and internal type
- Deprecate a couple of phases that were specifically designed / named to
modify the ClusterStatus object
- Adapt logic around annotation vs ClusterStatus retrieval
- Update unit tests
- Run generators
 2021-05-17 19:27:36 +03:00
Kubernetes Prow Robot
a45aeb626c
Merge pull request #101918 from neolit123/1.22-add-more-static-rsa-keys 
kubeadm: add more *rsa.key files in util/pkiutil/testing/testdata
 2021-05-15 17:05:59 -07:00
Kubernetes Prow Robot
3f43b1ed84
Merge pull request #101547 from neolit123/1.22-remove-dns-type 
kubeadm: remove ClusterConfiguration.DNS.Type from v1beta3
 2021-05-15 00:27:58 -07:00
kcx2366425574
ad101cb650 remove unused params 
Signed-off-by: kcx2366425574 <kuangcx@inspur.com>
Signed-off-by: kcx2366425574 <18279911430@163.com>
 2021-05-14 11:31:30 +08:00
Kubernetes Prow Robot
9f0f14952c
Merge pull request #101966 from SataQiu/clean-kubeadm-20210513 
kubeadm: remove redundant CriticalAddonsOnly toleration from kube-proxy DaemonSet
 2021-05-13 19:52:04 -07:00
SataQiu
25d845c3b5 kubeadm: fix the bug that kubeadm only uses the first hash in caCertHashes to verify the root CA 2021-05-13 19:38:39 +08:00
SataQiu
c66a7bc42c kubeadm: remove redundant CriticalAddonsOnly toleration from kube-proxy DaemonSet 2021-05-13 14:51:57 +08:00
Jian Zeng
41c4cccc26
refactor(kubeadm): remove deprecated command alpha kubeconfig 
Signed-off-by: Jian Zeng <zengjian.zj@bytedance.com>
 2021-05-12 22:04:20 +08:00
Lubomir I. Ivanov
518fa1a412 kubeadm: add more *rsa.key files in util/pkiutil/testing/testdata 
Running "go test ./cmd/kubeadm/app/..." results in these 3 files
being generated, since we have more callers to the functions
for generating unique private keys during pkiutil tests.

Add the files to ensure they are not generated locally all the time.
 2021-05-11 22:58:38 +03:00
Lubomir I. Ivanov
0bdfe05cf2 kubeadm: remove ClusterConfiguration.DNS.Type from v1beta3 
Kubeadm no longer supports kube-dns and CoreDNS is the only
supported DNS server. Remove ClusterConfiguration.DNS.Type
from v1beta3 that is used to set the DNS server type.
 2021-05-11 01:31:01 +03:00
Kubernetes Prow Robot
347730b6b4
Merge pull request #101537 from neolit123/1.22-remove-hyperkube 
kubeadm: remove deprecated hyperkube image support in v1beta3
 2021-05-10 10:49:48 -07:00
Kubernetes Prow Robot
365ed5c4ad
Merge pull request #100234 from vinayakankugoyal/seccomp 
runtime/default Seccomp Profile in kubeadm control-plane components.
 2021-05-10 10:49:36 -07:00
Kubernetes Prow Robot
d8b5669924
Merge pull request #101774 from KofClubs/delete-redundant-kubeadmconstants-initconfiguration.go 
kubeadm: Deleted redundant `kubeadmconstants` from `initconfiguration.go`
 2021-05-10 09:45:21 -07:00
Kubernetes Prow Robot
3dd0597843
Merge pull request #101598 from neolit123/1.22-kubeadm-remove-clusterconfiguration-defaulting 
kubeadm: simplify fuzzing of ClusterConfiguration
 2021-05-08 01:23:17 -07:00
Zhang Zhanpeng
b3714fa55f Deleted k8s.io/kubernetes/cmd/kubeadm/app/constants from the imported packages 
Signed-off-by: Zhang Zhanpeng <zhanpeng.zhang@daocloud.io>
 2021-05-07 10:56:12 +08:00
Vinayak Goyal
9ae671a5d4 Add seccomp profile runtime default to add control-plane components. 2021-05-06 18:27:56 -07:00
Kubernetes Prow Robot
7d176851f2
Merge pull request #100612 from pacoxu/patch-8 
kubeadm: upgrade etcd to 3.4.13-3
 2021-05-05 07:11:27 -07:00
Lubomir I. Ivanov
8eca7298b1 kubeadm: simplify fuzzing of ClusterConfiguration 
- Pin the ClusterConfiguration when fuzzing
the internal InitConfiguration that embeds it. Kubeadm includes
separate constructs for this embedding in the internal type
and this round trip is not viable.
- Remove the artificial calls to SetDefaults_ClusterConfiguration()
in v1beta{2|3}'s converters from public to internal InitConfiguration.
- Make sure the internal InitConfiguration.ClusterConfiguration is
defaulted in initconfiguration.go instead.
 2021-04-29 03:34:03 +03:00
Lubomir I. Ivanov
81d5b18dfb kubeadm: remove deprecated hyperkube image support in v1beta3 
The hyperkube image support was deprecated. Remove the field
ClusterConfiguration.UseHyperKubeImage from the new v1beta3 API.
 2021-04-29 02:10:45 +03:00
maruiyan
8a2a304246 change marsheller to marchaler 2021-04-28 17:00:01 +08:00
wangyysde
d346f19308 Use kubeadmapiv1.SchemeGroupVersion.String() instead of kubeadm.k8s.io/v1beta3 
Use kubeadmapiv1old instead of kubeadm.k8s.io/v1beta2

Signed-off-by: wangyysde <net_use@bzhy.com>
 2021-04-26 18:12:50 +08:00
Kubernetes Prow Robot
89db31aade
Merge pull request #101129 from neolit123/1.22-kubeadm-v1beta3 
kubeadm: add placeholder v1beta3; remove the deprecated v1beta1
 2021-04-20 12:34:33 -07:00
Lubomir I. Ivanov
6b6ae146cd kubeadm: change API URL for "kubeadm config print" 
There is a new API link for godoc. Also link to the anchor / list
of APIs instead of pinning to a specific version.
 2021-04-20 03:47:27 +03:00
Lubomir I. Ivanov
4cba7dcc43 kubeadm: enable v1beta3 accross the code base 
- scheme: switch to:
utilruntime.Must(scheme.SetVersionPriority(v1beta3.SchemeGroupVersion))
- change all imports in the code base from v1beta2 to v1beta3
- rename all import aliases for kubeadmapiv1beta2 to "kubeadmapiv".
this allows smaller diffs when changing the default public API.
 2021-04-20 03:47:27 +03:00
Lubomir I. Ivanov
c2bddf3998 kubeadm: fix unit tests for v1beta1 removal 2021-04-20 03:47:27 +03:00
Lubomir I. Ivanov
02b455b565 kubeadm: add v1beta3 copied from v1beta2 
Add a new versioned API v1beta3.
 2021-04-20 03:47:27 +03:00
Hong Xu
fbdb065498 TestGetPatchSetsForPathMustBeDirectory: Ensure the error type is os.PathError 
Ensure the tested error is an os.PathError instead of only non-nil.
 2021-04-18 20:41:59 -07:00
Kubernetes Prow Robot
dd6ee99f62
Merge pull request #101110 from SataQiu/fix-kubeadm-20210414 
kubeadm: fix inconsistent usage for --experimental-patches in join phases
 2021-04-16 03:22:22 -07:00
pacoxu
9847579699 gcp/kubeadm: upgrade etcd to 3.4.13-3 
Signed-off-by: pacoxu <paco.xu@daocloud.io>
 2021-04-15 11:19:41 +08:00
SataQiu
cf656d5cf7 kubeadm: enable '--experimental-patches' flag for 'kubeadm join phase control-plane-join all' command 2021-04-15 10:48:33 +08:00
Lubomir I. Ivanov
66f0ce244c kubeadm: remove the deprecated v1beta1 API 2021-04-15 00:12:41 +03:00
Niu Lechuan
520d49d2f9 kubeadm: Bump minimum supported versions and add etcd version for 1.22 and placeholder for 1.23 
Signed-off-by: Niu Lechuan <lechuan.niu@daocloud.io>
 2021-04-14 19:00:35 +08:00
Kubernetes Prow Robot
61641a0640
Merge pull request #100907 from SataQiu/kubeadm-20210408 
kubeadm: add --validity-period flag for 'kubeadm kubeconfig user' command
 2021-04-12 23:40:49 -07:00
Kubernetes Prow Robot
bc703278dd
Merge pull request #100350 from jr0d/jr/kubeadm-etcd-upgrade-with-metadata 
kubeadm: support semver metadata imagetags for etcd during upgrades
 2021-04-12 15:56:49 -07:00
Kubernetes Prow Robot
be7d3aeb97
Merge pull request #100935 from lojies/kubeadmcodecleanup 
code cleanup for cmd/kubeadm
 2021-04-12 13:18:15 -07:00
Kubernetes Prow Robot
7a3430edcd
Merge pull request #100536 from neolit123/1.21-remove-cgroup-driver-example-in-godoc 
kubeadm: remove mentions of cgroup-driver from godocs
 2021-04-11 19:41:59 -07:00
Kubernetes Prow Robot
cf2c817c5a
Merge pull request #100942 from wangyysde/remove-exclude-from-external-load-balancers 
kubeadm:the node.kubernetes.io/exclude-from-external-load-balancers label removed on upgrade
 2021-04-11 14:37:59 -07:00
Kubernetes Prow Robot
43af6783ae
Merge pull request #100865 from RA489/update_owner 
kubeadm: Add RA489 as reviewer
 2021-04-10 19:04:03 -07:00
wangyysde
c02e4b5229 remove LabelControlPlaneNodesWithExcludeFromLB function as the statement call it has be removed 2021-04-10 14:30:35 +08:00
SataQiu
dc154e412e kubeadm: add --validity-period flag for 'kubeadm kubeconfig user' command 2021-04-09 14:40:12 +08:00
wangyysde
2afdffb879 the node.kubernetes.io/exclude-from-external-load-balancers label on upgrade 2021-04-09 14:17:19 +08:00
Kubernetes Prow Robot
9ac9c29f36
Merge pull request #100422 from su225/27145-kubeadm-typo 
kubeadm: fix typo in help text; ca.cert should be ca.crt
 2021-04-08 22:08:57 -07:00
卢振兴10069964
a1452b9115 code cleanup for cmd/kubeadm 2021-04-09 09:44:06 +08:00
RA489
67d30f32f6 kubeadm: Add RA489 as reviewer 2021-04-06 21:45:39 +05:30
Lubomir I. Ivanov
80bca50feb kubeadm: remove mentions of cgroup-driver from godocs 
The v1beta1/2 API doc.go files include an example
flag for the kubelet binary "cgroup-driver" under
"kubeletExtraArgs".

This flag is deprecated and should not be in the examples.
Add "v" instead which is one of the flags we know will
not be deprecated soon.
 2021-03-24 18:14:35 +02:00
su225
eaa25983e1 fix typo - it should be ca.crt instead of ca.cert 2021-03-20 19:41:21 +05:30
Jared Rodriguez
c68db41a7a
address PR comments 
- make convertImageTagMetadataToSemver private
- s/the\ the/the/
 2021-03-18 11:07:33 -05:00
Jared Rodriguez
5f9a44e1e6
support semver_metadata imagetags 2021-03-17 14:55:09 -05:00
Antonio Ojea
dbc6226e7f kubeadm unit test initalize global variables 2021-03-13 10:59:07 +01:00
Lubomir I. Ivanov
3e95f9d491 kubeadm: add missing taint for upgrade health check 
This is part of the "master" -> "control-plane" rename
that we missed. It's not critical for 1.21 as the
"control-plane" taint is still not added to CP nodes,
but it would be best to add the toleration preemptively
like the KEP planned.
 2021-03-06 23:14:11 +02:00
Kubernetes Prow Robot
a6bfc7d7a9
Merge pull request #99646 from rajansandeep/remove-kube-dns 
[kubeadm]: Remove the deprecated kube-dns as an option in kubeadm
 2021-03-04 14:41:12 -08:00
Sandeep Rajan
62542bb1ec add validation to indicate kube-dns is no longer supported 2021-03-04 14:57:52 -05:00
Kubernetes Prow Robot
504b86ced7
Merge pull request #99471 from neolit123/1.21-default-systemd-cgroup-driver 
kubeadm: set the kubelet cgroup driver to "systemd" during "init"
 2021-03-04 11:00:38 -08:00
Sandeep Rajan
b8a1bd6a6c remove the deprecated kube-dns as an option in kubeadm 2021-03-04 12:12:54 -05:00
Kubernetes Prow Robot
15213128e1
Merge pull request #99687 from pacoxu/dual-stack/follow-up-1 
cleanup: disable dual stack for some manifest UT
 2021-03-04 00:29:23 -08:00
Kubernetes Prow Robot
0d8aae99f9
Merge pull request #98269 from neolit123/1.21-kubeadm-add-lb-label 
kubeadm: exclude control plane nodes from external LBs
 2021-03-04 00:27:59 -08:00
Kubernetes Prow Robot
b0ba6c0b76
Merge pull request #98984 from SataQiu/fix-kubeadm-20210211 
kubeadm: skip validating pod subnet against node-cidr-mask when allocate-node-cidrs is set to be false
 2021-03-03 01:53:20 -08:00
pacoxu
496deb6df9 cleanup: disable dual stack for some manifest UT 2021-03-03 16:00:20 +08:00
Lubomir I. Ivanov
b6ff320507 kubeadm: set the kubelet cgroup driver to "systemd" during "init" 
The kubeadm documentation instructs users to set the container
runtime driver to "systemd", since kubeadm manages a kubelet via
the systemd init system. The kubelet default however is "cgroupfs".
For new clusters set the driver to "systemd" unless the user
is explicit about it. The same defaulting would not happen
during "upgrade".
 2021-03-02 18:39:39 +02:00
pacoxu
3c33ceab04 log a warning if ipv6 site-local addresses is using as it shouldn't be deprecated 
Signed-off-by: pacoxu <paco.xu@daocloud.io>
Co-authored-by: Antonio Ojea <antonio.ojea.garcia@gmail.com>
Co-authored-by: Lubomir I. Ivanov <neolit123@gmail.com>
 2021-03-02 21:51:28 +08:00
Kubernetes Prow Robot
33035a3fdf
Merge pull request #99586 from zgfh/update-kubeadm-upgrade-description 
update kubeadm upgrade description
 2021-03-01 18:19:41 -08:00
Alan Zhu
8ffdc674b2 update kubeadm upgrade description 
Signed-off-by: Alan Zhu <zg.zhu@daocloud.io>
 2021-03-01 20:42:57 +08:00
SataQiu
2ba178c92c kubeadm: skip validating pod subnet against node-cidr-mask when allocate-node-cidrs is set to be false 2021-03-01 11:19:47 +08:00
Benjamin Elder
56e092e382 hack/update-bazel.sh 2021-02-28 15:17:29 -08:00
Kubernetes Prow Robot
4880b996b5
Merge pull request #99433 from navist2020/fix/kubeadm/out_info 
Replace yml with yaml
 2021-02-28 09:50:39 -08:00
Kubernetes Prow Robot
1ddc4afcf8
Merge pull request #99294 from pacoxu/kubeadm/dual-stack 
kubeadm: promote DualStack feature gate to Beta
 2021-02-25 20:16:15 -08:00
Lubomir I. Ivanov
108d1dc56a kubeadm: pass pod-infra-container-image for all CRs 
Pass the flag --pod-infra-container-image to the kubelet not only
for Docker but for all CRs.

This flag tells the kubelet to special case the image and not garbage
collect it.
 2021-02-26 02:47:00 +02:00
navist2020
c5d8da019a Replace yml with yaml 2021-02-25 11:52:34 +08:00
xiaofei.sun
fd62f32125 Scheduler: remove pkg/apis/core/field_constants.go 2021-02-24 18:06:29 +08:00
Lubomir I. Ivanov
e8f2d888a3 kubeadm: include appovers under reviewers in OWNERS 
Looks like there is a bit of an issue in the Bluderbuss (Prow plugin)
where it prefers to pick reviewers from a parent OWNERS files,
instead of using an approver from a current OWNERS file as
an additional reviewer.
 2021-02-22 20:02:09 +02:00
pacoxu
829b0cde81 kubeadm: promote DualStack feature gate to Beta 2021-02-22 16:03:49 +08:00
Kubernetes Prow Robot
972ae2f2c2
Merge pull request #99187 from CaoDonghui123/fixKubeadm-1 
Delete duplicate logs for kubeadm upgrade versions
 2021-02-21 15:19:41 -08:00