github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
91,087 Commits 1 Branch 31 Tags
a3d532a3f73cebd23e7037f6688a93f98b22bf70
Commit Graph

9276 Commits

Author SHA1 Message Date
Lubomir I. Ivanov
e56b4c3172 kubeadm: remove misleading warning on kubeadm join 
If the user does not provide --config or --control-plane
but provides some other flags such as --certificate-key
kubeadm is supposed to print a warning.

The logic around printing the warning is bogus. Implement
proper checks of when to print the warning.
 2020-03-27 23:09:59 +02:00
Kubernetes Prow Robot
c1fc466cdd Merge pull request #88854 from bart0sh/PR0088-kubeadm-redesign-printAvailableUpgrades 
kubeadm: redesign printAvailableUpgrades function
 2020-03-27 05:14:23 -07:00
Kubernetes Prow Robot
903f1e63f9 Merge pull request #89537 from neolit123/1.19-kubeadm-add-get-node-rbac 
kubeadm: add missing RBAC for getting nodes on "upgrade apply"
 2020-03-26 20:06:23 -07:00
Lubomir I. Ivanov
6f99791021 kubeadm: add missing RBAC for getting nodes on "upgrade apply" 
b117a928 added a new check during "join" whether a Node with
the same name exists in the cluster.

When upgrading from 1.17 to 1.18 make sure the required RBAC
by this check is added. Otherwise "kubeadm join" will complain that
it lacks permissions to GET a Node.
 2020-03-26 22:02:55 +02:00
Rostislav M. Georgiev
fbfd44f337 kubeadm: Fix panic in isCoreDNSVersionSupported 
A narrow assumption of what is contained in the `imageID` fields for the
CoreDNS pods causes a panic upon upgrade.
Fix this by using a proper regex to match a trailing SHA256 image digest
in `imageID` or return an error if it cannot find it.

Signed-off-by: Rostislav M. Georgiev <rostislavg@vmware.com>
 2020-03-26 20:26:32 +02:00
yameiwang
6783f991c3 fix function NodeAllocatableRoot 2020-03-26 18:48:05 +08:00
Kubernetes Prow Robot
295b53f7b4 Merge pull request #89214 from jingyih/update_etcd_server_3p4p4 
Update default etcd server to 3.4.4 in k8s v1.19
 2020-03-26 01:14:24 -07:00
notpad
52ad3d95f7 Add test for algorithm provider and policy config file 2020-03-24 23:18:32 +08:00
Ed Bartosh
0eac66d647 kubeadm: refactor printAvailableUpgrades 
Split printAvailableUpgrades into 2 functions:

- genUpgradePlan that handles business logic
- printUpgradePlan that outputs upgrade plan
 2020-03-24 12:47:52 +02:00
Ed Bartosh
e5d6536ade add UpgradePlan to the kubeadm.output API group 2020-03-24 12:47:42 +02:00
Kubernetes Prow Robot
907d4c1bb9 Merge pull request #89381 from dashpole/comment_disable_readonly 
Add comment explaining when to remove cadvisor json endpoints
 2020-03-23 20:31:19 -07:00
David Ashpole
b4ed7273da add comment explaining when to remove the --enable-cadvisor-json-endpoints 2020-03-23 12:52:00 -07:00
gavinfish
1865a104a9 Remove kubescheduler.config.k8s.io/v1alpha1 2020-03-21 15:11:48 +08:00
Kubernetes Prow Robot
72102c04c7 Merge pull request #88728 from notpad/feature/scheduler_e2e_test 
Add test for kube-scheduler command setup
 2020-03-19 20:30:36 -07:00
notpad
16015a691c Add test for kube-scheduler command setup 2020-03-20 07:36:47 +08:00
Davanum Srinivas
1d057da2f7 Move k8s.io/apiserver/pkg/util/term to k8s.io/component-base/term 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2020-03-19 07:18:09 -04:00
Kubernetes Prow Robot
f899ad704a Merge pull request #89069 from enj/enj/i/drop_password_file 
Remove support for basic authentication
 2020-03-18 22:24:20 -07:00
jingyih
f9e0e4c6b4 Update default etcd server to 3.4.4 2020-03-18 00:27:46 -07:00
Kubernetes Prow Robot
d45fa525e7 Merge pull request #88945 from sandyleo26/kubeadm-check-windows-wrap-error-properly 
fix: #2056 check_windows wrap error properly
 2020-03-17 19:28:29 -07:00
Kubernetes Prow Robot
ed4c2dbf92 Merge pull request #88893 from kinvolk/invidian/kube-apiserver-so-reuseport 
kube-apiserver: use SO_REUSEPORT when creating listener
 2020-03-17 19:28:11 -07:00
Kubernetes Prow Robot
be2f9e74bf Merge pull request #88811 from rajansandeep/invalidmigrationfail 
Ensure CoreDNS running when Corefile migration doesn't support current version
 2020-03-17 19:27:18 -07:00
Kubernetes Prow Robot
42c94f35a7 Merge pull request #88541 from cmluciano/cml/41ipvsfix 
ipvs: only attempt setting of sysctlconnreuse on supported kernels
 2020-03-17 16:21:28 -07:00
Kubernetes Prow Robot
393bb44ea9 Merge pull request #88515 from SataQiu/fix-kubelet-20200225 
kubelet: fix wrong flag types
 2020-03-17 16:21:10 -07:00
Alena Prokharchyk
2c6b149bf0 Kubelet doc: clarification for api-qps/burst flags 
Note that the flags don't rate limit the events and node heartbeat apis controlled by the diff set of flags
 2020-03-16 13:27:57 -07:00
Mateusz Gozdek
dfe1f968ac kube-apiserver: use SO_REUSEPORT when creating listener on Unix systems 
So multiple instances of kube-apiserver can bind on the same address and
port, to provide seamless upgrades.

Signed-off-by: Mateusz Gozdek <mateusz@kinvolk.io>
 2020-03-13 23:55:57 +01:00
Christopher M. Luciano
d22e18ad4f ipvs: only attempt setting of sysctlconnreuse on supported kernels 
This builds on previous work but only sets the sysctlConnReuse value
if the kernel is known to be above 4.19. To avoid calling GetKernelVersion
twice, I store the value from the CanUseIPVS method and then check the version
constraint at time of expected sysctl call.

Signed-off-by: Christopher M. Luciano <cmluciano@us.ibm.com>
 2020-03-12 13:16:00 -04:00
Monis Khan
df292749c9 Remove support for basic authentication 
This change removes support for basic authn in v1.19 via the
--basic-auth-file flag.  This functionality was deprecated in v1.16
in response to ATR-K8S-002: Non-constant time password comparison.

Similar functionality is available via the --token-auth-file flag
for development purposes.

Signed-off-by: Monis Khan <mok@vmware.com>
 2020-03-11 20:55:47 -04:00
Sandeep Rajan
fcd229e4bd ensure coredns running when migration fails 
add an additional check for coredns image sha

add a check to see if migration is required
 2020-03-11 11:32:32 -04:00
Ted Yu
ced2948fde Remove wait.Until for running Kubelet Bootstrap 
Signed-off-by: Ted Yu <yuzhihong@gmail.com>
 2020-03-11 08:30:00 -07:00
Savitha Raghunathan
3234d34714 moving volume plugin dir to kubelet config - part 1 2020-03-10 16:22:29 -04:00
Satyadeep Musuvathy
e053fdd08a Add NodeCIDR for detect-local-mode 2020-03-09 13:44:34 -07:00
Sha Liu
12750ac64f kubeadm: wrap error properly in check_windows.go 2020-03-09 22:29:15 +11:00
skilxn-go
6b8fc8dc5e Move TaintBasedEvictions feature gates to GA 2020-03-09 10:49:00 +08:00
Jordan Liggitt
b7c2faf26c client-go dynamic client: add context to callers 2020-03-06 10:56:23 -05:00
Christian Huffman
c6fd25d100 Updated CSIDriver references 2020-03-06 08:21:26 -05:00
Kubernetes Prow Robot
5708511499 Merge pull request #88708 from mikedanese/deleteopts 
Migrate clientset metav1.DeleteOpts to pass-by-value
 2020-03-05 23:09:23 -08:00
Kubernetes Prow Robot
8b8dd79d53 Merge pull request #88768 from damemi/extenders-cc 
Add Extenders to v1alpha2 Component Config
 2020-03-05 20:04:28 -08:00
Mike Danese
76f8594378 more artisanal fixes 
Most of these could have been refactored automatically but it wouldn't
have been uglier. The unsophisticated tooling left lots of unnecessary
struct -> pointer -> struct transitions.
 2020-03-05 14:59:47 -08:00
Mike Danese
c58e69ec79 automated refactor 2020-03-05 14:59:46 -08:00
Mike Dame
1d7006c38d Add Extenders to scheduler v1alpha2 component config 2020-03-05 16:42:15 -05:00
Lubomir I. Ivanov
8943e443e8 kubeadm: deprecate the flag --use-api for cert renewal 
The KCM is moving to means of only singing apiserver (kubelet) client
and kubelet serving certificates. See:
  https://github.com/kubernetes/enhancements/blob/master/keps/sig-auth/20190607-certificates-api.md#signers
Up until now the experimental kubeadm functionality '--use-api'
under "kubeadm alpha certs renew" was using the KCM to sign *any*
certficate as long as the KCM has the root CA cert/key.

Post discussions with the kubeadm maintainers, it was decided that
this functionality should be removed from kubeadm due to the
requirement to have external signers for renewing the common
control-plane certificates that kubeadm manages.
 2020-03-05 03:37:00 +02:00
Kubernetes Prow Robot
5c5faed39b Merge pull request #88287 from gab-satchi/master 
Windows specific kubelet flags in kubeadm-flags.env
 2020-03-04 13:18:52 -08:00
Gab Satch
9fabafdbb1 Windows specific kubelet flags in kubeadm-flags.env 
- Uses correct pause image for Windows
- Omits systemd specific flags
- Common build flags function to be used by Linux and Windows
- Uses user configured image repository for Windows pause image
 2020-03-04 11:05:53 -05:00
Kubernetes Prow Robot
c86aec0564 Merge pull request #88745 from mborsz/slice3 
Implement simple endpoint slice batching
 2020-03-03 03:03:38 -08:00
Maciej Borsz
49b11b5431 Implement simple endpoint slice batching 2020-03-03 08:16:42 +01:00
Kubernetes Prow Robot
90a622bbdb Merge pull request #88512 from SataQiu/fix-kubeproxy-20200225 
kube-proxy: fix confusing default value for healthz and metrics bind address, deprecate healthz-port and metrics-port flag
 2020-03-02 14:49:53 -08:00
Kubernetes Prow Robot
e9d502e4fc Merge pull request #88663 from deads2k/enable-profiling-by-default 
update kube-controller-manager and kube-scheduler to match kube-apiserver defaults
 2020-03-02 07:24:43 -08:00
Kubernetes Prow Robot
56987164f8 Merge pull request #88626 from yuzhiquan/patch-clean1 
(cleanup/scheduler): remove unused function
 2020-02-29 07:54:40 -08:00
yuzhiquanlong
3eec87cd91 update WithPlugin comment, in case remove function 2020-02-29 19:53:04 +08:00
Kubernetes Prow Robot
03b7f272c8 Merge pull request #88246 from munnerz/csr-signername-controllers 
Update CSR controllers & kubelet to respect signerName field
 2020-02-28 23:38:39 -08:00