github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
115,857 Commits 1 Branch 31 Tags 1,019 MiB
a862a5f2d2
Commit Graph

10215 Commits

Author SHA1 Message Date
Stephen Augustus
cddd83c997
Update Debian base images 
- debian-base:bullseye-v1.2.0
- debian-iptables:bullseye-v1.3.0
- setcap:bullseye-v1.2.0

Signed-off-by: Stephen Augustus <foo@auggie.dev>
 2022-04-13 16:23:54 -04:00
Peter Hornyack
eb64e29528 Remove pjh from cluster/gce/ OWNERS files 
Moved to emeritus_approvers for the windows directory - this seems
appropriate according to
https://www.kubernetes.dev/docs/guide/owners/#emeritus.
 2022-04-13 18:24:20 +00:00
Mauricio Poppe
47f13ef136 Bump CSI Proxy to v1.1.1-gke.0 2022-04-01 21:45:25 +00:00
Davanum Srinivas
f7ad09c447
Switch to pause 3.7 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2022-03-29 15:36:38 -04:00
Stephen Kitt
080c6c711e
Upgrade to blang/semver/v4 v4.0.0 
This is the first version to be fully go-mod-compatible.

Signed-off-by: Stephen Kitt <skitt@redhat.com>
 2022-03-28 09:33:23 +02:00
Davanum Srinivas
bef0ddef86
kube-up: use registry.k8s.io for containerd-related jobs 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2022-03-23 11:30:49 -04:00
Jordan Liggitt
548c339867 Clean up unused exec auth from cluster setup 2022-03-19 10:47:38 -04:00
Kubernetes Prow Robot
41b29e6542
Merge pull request #99287 from anfernee/clientip 
Add HNS Load Balancer Healthchecks for ExternalTrafficPolicy: Local
 2022-03-16 22:57:18 -07:00
Kubernetes Prow Robot
1007f4974d
Merge pull request #108712 from dims/support-ci-jobs-that-use-prebuilt-images-by-adding-additional-image-tags 
Support CI jobs that use prebuilt-images by adding additional image tags
 2022-03-15 21:59:48 -07:00
Davanum Srinivas
9a0bb97a34
add tags for KUBE_ADDON_REGISTRY when we load images locally 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2022-03-15 17:16:33 -04:00
xing-yang
aae1f2c476 Update sig-storage owners file 2022-03-14 18:57:52 +00:00
Yongkun Gui
78a507b256 Fix health check from Google's Load Balancer 
This change adds 2 options for windows:
--forward-healthcheck-vip: If true forward service VIP for health check
port
--root-hnsendpoint-name: The name of the hns endpoint name for root
namespace attached to l2bridge, default is cbr0

When --forward-healthcheck-vip is set as true and winkernel is used,
kube-proxy will add an hns load balancer to forward health check request
that was sent to lb_vip:healthcheck_port to the node_ip:healthcheck_port.
Without this forwarding, the health check from google load balancer will
fail, and it will stop forwarding traffic to the windows node.

This change fixes the following 2 cases for service:
- `externalTrafficPolicy: Cluster` (default option): healthcheck_port is
10256 for all services. Without this fix, all traffic won't be directly
forwarded to windows node. It will always go through a linux node and
get forwarded to windows from there.
- `externalTrafficPolicy: Local`: different healthcheck_port for each
service that is configured as local. Without this fix, this feature
won't work on windows node at all. This feature preserves client ip
that tries to connect to their application running in windows pod.

Change-Id: If4513e72900101ef70d86b91155e56a1f8c79719
 2022-03-11 22:34:59 -08:00
Kubernetes Prow Robot
ad46b4f921
Merge pull request #108457 from ialidzhikov/cleanup/target-ram-mb 
apiserver: Remove the deprecated `--target-ram-mb` flag
 2022-03-07 02:38:53 -08:00
Davanum Srinivas
7b5c718946
explicitly specify journald config 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2022-03-06 18:48:35 -05:00
Andrew Sy Kim
f654992aec cluster/gce: update konnectivity image tags to v0.0.30 
Signed-off-by: Andrew Sy Kim <andrewsy@google.com>
 2022-03-04 19:01:02 +00:00
Davanum Srinivas
83e205ae47
fix typo for pause image env var in kube-up 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2022-03-04 06:41:03 -05:00
Davanum Srinivas
91ade9f318
Switch pv-recycler container image to debian-base 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2022-03-03 13:37:17 -05:00
ialidzhikov
bdbc750129 apiserver: Remove the deprecated --target-ram-mb flag 
Signed-off-by: ialidzhikov <i.alidjikov@gmail.com>
 2022-03-02 18:52:46 +02:00
Davanum Srinivas
abdcbb8235
Enable specifying pause image in containerd config.toml 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2022-03-02 11:51:06 -05:00
Kubernetes Prow Robot
4737127b57
Merge pull request #108429 from dims/allow-env-var-to-be-remote-url 
Allow KUBE_TEST_REPO_LIST to be a remote url as well
 2022-03-02 08:07:16 -08:00
Davanum Srinivas
08af9935a5
fix broken find command 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2022-03-01 22:54:31 -05:00
Kubernetes Prow Robot
bed430d337
Merge pull request #108389 from serathius/etcd-v3.6.0-alpha.0 
Start building etcd v3.6.0-alpha.0 image for scalability tests
 2022-03-01 12:50:06 -08:00
Davanum Srinivas
22cef5094e
Log where we pull images from 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2022-03-01 09:53:19 -05:00
Marek Siarkowicz
8f5250e3fe Start building etcd v3.6.0-alpha.0 image for scalability tests 2022-02-28 13:58:18 +01:00
Kubernetes Prow Robot
109cb7cbe7
Merge pull request #108339 from cheftako/anp-release 
Bump konnectivity-client to v0.0.28
 2022-02-25 17:49:23 -08:00
Shihang Zhang
5ee418b4c7 bump kube-addon-manager image version to 9.1.6 2022-02-24 14:13:01 -08:00
Walter Fender
e5b0392f12 Bump konnectivity-client to v0.0.28 
Bump konnectivity network proxy to v0.0.28.
Includes a fix to ensure the KAS calls Close() on the egress connection.
 2022-02-24 12:35:54 -08:00
Kubernetes Prow Robot
673fa1d9d4
Merge pull request #108313 from zshihang/gce 
wait for default service account instead of its token
 2022-02-24 11:40:31 -08:00
Shihang Zhang
cf794d0a93 wait for default service account instead of its token 2022-02-24 10:35:44 -08:00
Kubernetes Prow Robot
06e107081e
Merge pull request #104732 from mengjiao-liu/remove-flag-experimental-check-node-capabilities-before-mount 
kubelet: Remove the deprecated flag `--experimental-check-node-capabilities-before-mount`
 2022-02-24 07:56:30 -08:00
Kubernetes Prow Robot
344bf270ee
Merge pull request #108034 from tstapler/critools_arm_configuresh 
Add crit-tools arm64 sha512 hash to configure.sh
 2022-02-17 17:20:41 -08:00
Kubernetes Prow Robot
e14ace9287
Merge pull request #107806 from mauriciopoppe/csi-proxy-additional-flags-kube-up 
Env var for additional flags sent to the csi-proxy binary
 2022-02-17 16:15:00 -08:00
Kubernetes Prow Robot
3d4f59416e
Merge pull request #108192 from SergeyKanzhelev/no-docker-install-needed 
remove docker installation from startup scripts
 2022-02-17 15:01:33 -08:00
Tyler Stapler
01b8d59430 Rework npd default hash selection to match crictl 
Change-Id: I63e0837e62c4c8fa5d8371dcb1390d2d3e672e0c
 2022-02-17 22:43:16 +00:00
Sergey Kanzhelev
0e5dffc1fc there is no need for gci-docker-version and gci-ensure-gke-docker - those are not used by COS or any of scripts 
Change-Id: I317c95d8fd2f51598cfa3e710380552d8fc07d2d
 2022-02-17 19:00:22 +00:00
Marek Siarkowicz
5f7ff4d18b
Add serathius to etcd image owners 2022-02-17 10:25:47 +01:00
Sergey Kanzhelev
19a01fa8c6 remove docker installation from everywhere 2022-02-17 08:02:13 +00:00
Kubernetes Prow Robot
2ccdd4573b
Merge pull request #108057 from bobbypage/log-dump 
log grabbing: obtain timestamps on extra services
 2022-02-16 03:12:36 -08:00
Tyler Stapler
9288c190f9 Add crit-tools arm64 sha512 hash to configure.sh 
Change-Id: I2a06fb6ded78a755b71ce75a07fd1d9ad29f310c
 2022-02-15 18:00:51 +00:00
David Porter
0ec1530e41 log grabbing: obtain timestamps on extra services 
Previously if any test jobs added additional log dumps, such as
`containerd-installation` for example, the logs would grabbed with `sudo
journalctl --output=cat`. `--output=cat` excludes timestamps which
makes debugging difficult. Let's use `short-precise` output similar to
to the other log grabbing commands which includes timestamps.

Signed-off-by: David Porter <david@porter.me>
 2022-02-10 16:44:31 -08:00
David Porter
3281504a50 cluster/ - Configure containerd only if necessary 
PR #107663 changed the startup logic to always call `SetupContainerd`
which will generate a new containerd `/etc/containerd/config.toml` file.

This is not always desired since some jobs install containerd from
source and the containerd startup scripts
(https://github.com/containerd/containerd/blob/main/contrib/gce/configure.sh)
are responsible for generating the `/etc/containerd/config.toml` file.
By always calling `SetupContainerd`, the containerd configuration by
containerd's `configure.sh` will be overridden which breaks certain test
jobs, see https://github.com/kubernetes/kubernetes/issues/107830.

To fix this issue, only call `SetupContainerd` if
`/etc/profile.d/containerd_env.sh` does not exist. When containerd
`configure.sh` script will run, `/etc/profile.d/containerd_env.sh` will
be written, and as a result the k8s setup scripts should avoid
overriding the containerd configuration.

Signed-off-by: David Porter <david@porter.me>
 2022-02-10 14:24:14 -08:00
Kubernetes Prow Robot
a3207872a3
Merge pull request #107481 from shu-mutou/deprecate-dashboard-addon 
Remove dashboard cluster addon
 2022-02-10 05:35:48 -08:00
Kubernetes Prow Robot
8d01b02c60
Merge pull request #107096 from hakman/remove_non-masquerade-cidr 
Remove deprecated flag --non-masquerade-cidr in kubelet
 2022-02-08 12:42:50 -08:00
Kubernetes Prow Robot
7bffb3b2ca
Merge pull request #106241 from jdnurme/cloud-provider-env-var 
Added env variable for cloud-provider
 2022-02-07 20:40:53 -08:00
Kubernetes Prow Robot
1f88942501
Merge pull request #107832 from adisky/fix-ubuntu-containerd-install 
[CI Job failure] Fix job containerd-e2e-ubuntu
 2022-02-02 20:51:45 -08:00
Kubernetes Prow Robot
6dd234d85c
Merge pull request #107386 from ZeusPerez/fix-kubetest-errors-when-executing-local-provider 
Fix kubetest errors when executing local provider
 2022-01-31 19:56:17 -08:00
Aditi Sharma
a251acdfc7 Source containerd env for repo installation 
Signed-off-by: Aditi Sharma <adi.sky17@gmail.com>
 2022-01-31 09:29:46 +05:30
Mauricio Poppe
29e8e3af85 Env var for additional flags sent to the csi-proxy binary 2022-01-27 00:01:33 +00:00
Kubernetes Prow Robot
66445662ad
Merge pull request #107769 from liurupeng/reverthashvalue 
Revert changes to the flb-exporter hash value
 2022-01-26 05:10:13 -08:00
Kubernetes Prow Robot
dbb5e3fe86
Merge pull request #107663 from hakman/remove_container-runtime_test_scripts 
Clean up logic for deprecated flag --container-runtime in scripts
 2022-01-25 22:30:25 -08:00
RupengLiu
446052f7a3 Revert changes to the flb-exporter hash value 2022-01-25 16:35:58 -08:00
Kubernetes Prow Robot
45b6af6b71
Merge pull request #107478 from liurupeng/gke-updatefluentbitversion 
Update fluent bit version to 1.8.10 for GKE windows container
 2022-01-20 21:47:58 -08:00
RupengLiu
7a2f2980c5 Update fluent bit version 2022-01-20 11:21:29 -08:00
Ciprian Hacman
d01e9cedb1 Clean up logic for deprecated flag --container-runtime in scripts 
Signed-off-by: Ciprian Hacman <ciprian@hakman.dev>
 2022-01-20 11:19:08 +02:00
Kubernetes Prow Robot
9828835f66
Merge pull request #107542 from kerthcet/feature/fix-not-return-when-channel-closed 
fix not return when channel closed
 2022-01-19 00:26:06 -08:00
Ciprian Hacman
21809043b5 Remove deprecated flag --non-masquerade-cidr in kubelet 
Signed-off-by: Ciprian Hacman <ciprian@hakman.dev>
 2022-01-19 09:17:26 +02:00
Kubernetes Prow Robot
feb758027c
Merge pull request #106907 from cyclinder/remove_dockershim_flags 
Clean up dockershim flags in the kubelet
 2022-01-18 09:09:09 -08:00
Shu Muto
676972235a Remove dashboard from cluster scripts 2022-01-18 14:48:49 +09:00
Sascha Grunert
f7f0f4b901
Update cri-tools to v1.23.0 
Files promoted to `k8s-artifacts-cri-tools`:
https://console.cloud.google.com/storage/browser/k8s-artifacts-cri-tools/release/v1.23.0

Signed-off-by: Sascha Grunert <sgrunert@redhat.com>
 2022-01-17 15:02:53 +01:00
cyclinder
07999dac70 Clean up dockershim flags in the kubelet 
Signed-off-by: cyclinder <qifeng.guo@daocloud.io>
Co-authored-by: Ciprian Hacman <ciprian@hakman.dev>
Signed-off-by: Ciprian Hacman <ciprian@hakman.dev>
 2022-01-14 16:02:50 +02:00
Jordan Liggitt
5d9b7ae9e5 Remove fluentd-elasticsearch addon 2022-01-14 08:23:51 -05:00
Shu Muto
aa7b3389ce Remove cluster addon for dashboard 
Due to dashboard addon is no longer maintained.
 2022-01-14 16:59:49 +09:00
kerthcet
3734e05e14 fix not return when channel closed 
Signed-off-by: kerthcet <kerthcet@gmail.com>
 2022-01-14 10:47:01 +08:00
Kubernetes Prow Robot
6b399153ba
Merge pull request #107502 from zshihang/metadata 
limit the scope of 169.254.169.252/32 to host
 2022-01-13 15:54:27 -08:00
Kubernetes Prow Robot
3bd422dc76
Merge pull request #107293 from dims/jan-1-owners-cleanup 
Cleanup OWNERS files - Jan 2021 Week 1
 2022-01-13 10:30:30 -08:00
Shihang Zhang
17c2be0667 limit the scope of 169.254.169.252/32 to host 2022-01-12 10:36:59 -08:00
Kubernetes Prow Robot
5d950ceee4
Merge pull request #104669 from arekkusu/patch-3 
Update GKE kubernetes sources download link
 2022-01-10 14:36:25 -08:00
Davanum Srinivas
ba1f853b5a
Add mwielgus back 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2022-01-10 09:02:53 -05:00
Davanum Srinivas
9682b7248f
OWNERS cleanup - Jan 2021 Week 1 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2022-01-10 08:14:29 -05:00
Kubernetes Prow Robot
f97d3f9b38
Merge pull request #106019 from ahrtr/replace_ioutil_with_io_os_cluster_images_etcd 
Replace ioutil with io and os for cluster/images/etcd
 2022-01-06 12:50:27 -08:00
JD Nurme
30fabbc0cb updated flag name 2022-01-06 19:51:17 +00:00
ZeusPerez
f538d808c9 Import 'logging.sh' to avoid error when logging 2022-01-06 19:03:32 +01:00
Mengjiao Liu
beda4cafb6 kubelet: Remove the deprecated flag --experimental-check-node-capabilities-before-mount 2022-01-06 11:47:11 +08:00
Kubernetes Prow Robot
b90b2d963d
Merge pull request #103078 from pacoxu/api-audiences 
kube-apiserver: use --api-audiences as --service-account-api-audiences is deprecated
 2022-01-05 12:49:47 -08:00
Kubernetes Prow Robot
25450b9521
Merge pull request #105389 from taku333/patch-1 
Update sleep .5 ⇨ sleep 0.5
 2022-01-05 09:22:26 -08:00
Kubernetes Prow Robot
4d4d57fcf0
Merge pull request #106340 from SergeyKanzhelev/removeCriCtlTar 
remove crictl tar
 2022-01-04 13:06:34 -08:00
Kubernetes Prow Robot
57675324e1
Merge pull request #107189 from jingxu97/dec/containerd 
Change default runtime to containerd for Windows cluster
 2022-01-04 11:27:37 -08:00
CJ Cullen
282d178f7c Bump elasticsearch image to 7.16.2. 2021-12-24 01:05:40 +00:00
Jing Xu
34c14949fc Change default runtime to containerd for Windows cluster 
change default runtime to containerd for windows

Change-Id: I61949ae3687cddb7bfd00715a455ee5eed4da0db
 2021-12-22 14:14:52 -08:00
Kubernetes Prow Robot
95b4e46db0
Merge pull request #106593 from claudiubelu/windows/etcd-image2 
Adds Windows support for etcd image
 2021-12-21 15:59:35 -08:00
Kubernetes Prow Robot
1426587e08
Merge pull request #106436 from dims/cleanup-owners-files-no-activity-in-a-year 
Cleanup OWNERS files (No Activity in the last year)
 2021-12-15 12:07:51 -08:00
Davanum Srinivas
497e9c1971
Cleanup OWNERS files (No Activity in the last year) 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2021-12-15 10:34:02 -05:00
Kubernetes Prow Robot
7e6e307f11
Merge pull request #106843 from liggitt/drop-curl-bash 
Drop unused auto-install invocation
 2021-12-13 09:10:10 -08:00
Kubernetes Prow Robot
c7ff5758db
Merge pull request #106922 from cheftako/anp-release 
Bump konnectivity network proxy to v0.0.27.
 2021-12-10 14:11:21 -08:00
Carlos Panato
4bda9697ee
[go1.17] Update to go1.17.5 
Signed-off-by: Carlos Panato <ctadeu@gmail.com>
 2021-12-10 16:58:29 +01:00
Davanum Srinivas
c89299a890
Temporarily comment out untrusted user 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2021-12-09 21:31:32 -05:00
Davanum Srinivas
9405e9b55e
Check in OWNERS modified by update-yamlfmt.sh 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2021-12-09 21:31:26 -05:00
Kubernetes Prow Robot
461dc9e371
Merge pull request #104640 from lizhuqi/fluentd-1-17 
Remove stackdriver version variable
 2021-12-09 16:29:10 -08:00
Walter Fender
b869d5550c Bump konnectivity network proxy to v0.0.27. 
/kind feature

Includes fixes for a few resource leaks.
Set the dependency chain to K/K v0.0.21.

Fixes # N/A

```release-note
NONE
```

```docs
NONE
```
 2021-12-09 11:56:20 -08:00
ahrtr
f01ecfabf4 replace ioutil with io and os for cluster/images/etcd; 
bump the REVISION in Makefile to 5
 2021-12-10 03:13:17 +08:00
Kubernetes Prow Robot
8cc7d14588
Merge pull request #106859 from knight42/refactor/remove-apiserver-insecure-port 
refactor(apiserver): remove the insecure flags
 2021-12-09 09:48:30 -08:00
wpedrak
183793cb27 Update version.txt only when necessary 
Follow up on https://github.com/kubernetes/kubernetes/pull/106653
 2021-12-09 10:09:49 +01:00
Jian Zeng
fe448785b5 fix: remove insecure flag from configure-kubeapiserver.sh 
Signed-off-by: Jian Zeng <anonymousknight96@gmail.com>
 2021-12-09 15:06:52 +08:00
Kubernetes Prow Robot
68bd9994ae
Merge pull request #106833 from cpanato/go117 
[go1.17] Update to go1.17.4
 2021-12-07 19:28:44 -08:00
Kubernetes Prow Robot
4c3bcf52db
Merge pull request #106653 from wpedrak/resilient-version.txt 
Make writing version.txt more resilient
 2021-12-07 18:27:14 -08:00
Kubernetes Prow Robot
9cbe01e5a1
Merge pull request #106588 from victory460/master 
Code cleanup: fix some typo
 2021-12-07 18:26:25 -08:00
Kubernetes Prow Robot
e2206cae9d
Merge pull request #106495 from aaronbbrown/abb-addon-manager-image-loc 
correct kube-addon-manager image location
 2021-12-07 17:27:34 -08:00
Jordan Liggitt
8139b3d89f Drop unused auto-install invocation 2021-12-06 14:48:14 -05:00
Carlos Panato
2adf0e116c
[go1.17] Update to go1.17.4 
Signed-off-by: Carlos Panato <ctadeu@gmail.com>
 2021-12-06 09:40:54 +01:00
wpedrak
d5e1ee4de8 Make writing version.txt more resilient 
Writing file first truncate it and writes later on. During disk space pressure it may cause file to become empty. To mitigate above, we create file with new version first and then move it in place of old one (to make sure that disk space is available)
 2021-11-26 12:44:50 +01:00
xuweiwei
9ab5c8a36f Fix typo 
depenging -> depending
permssion -> permission

Signed-off-by: xuweiwei <xuweiwei_yewu@cmss.chinamobile.com>
 2021-11-23 16:18:13 +08:00
Claudiu Belu
c1656d1604 Adds Windows support for etcd image 
We can use docker buildx in order to build and push Windows images from the same Linux node,
as long as the Dockerfile does not have any RUN commands in the Windows step.

We also need to create a non-default builder instance in order to be able to build and
push Windows images.

The Windows images have to be built and pushed directly to the registry.

For Windows containers without Hyper-V isolation, the host OS Version and the
Container OS Version need to match, which is why we added multiple Windows OS Versions
to the building process.

For the manifest list, we need to also annotate the Windows OS Version, so the Windows nodes
will be able to pull the proper image from the manifest list.

Adds support for Windows OS Versions: 1809, 2004, 20H2, ltsc2022.

Bumped etcd image revision.
 2021-11-22 12:27:57 +00:00
Aaron Brown
0f0fefd773
correct kube-addon-manager image location 2021-11-17 11:18:06 -05:00
Marek Siarkowicz
5dda60d6d1 Bump Metrics Server to v0.5.2 2021-11-17 14:51:51 +01:00
Léiyì Zhang
3c91436fc1 turning off default storage class in kube-up 2021-11-16 19:26:30 +00:00
Kubernetes Prow Robot
1c127d3682
Merge pull request #105706 from uthark/oatamanenko/upgrade-etcd-3.5.1 
Upgrade etcd to 3.5.1
 2021-11-15 10:04:59 -08:00
Kubernetes Prow Robot
da73a24f6a
Merge pull request #106123 from pohly/log-go-runner-windows 
package log runner as part of Kubernetes releases
 2021-11-15 09:04:48 -08:00
Sergey Kanzhelev
f059c3580c remove crictl tar 2021-11-11 06:12:30 +00:00
Mike Danese
384e9cec1b don't expand $(ls -A /scrub) in PV_RECYCLER_TEMPLATE 
Before we write the template.
 2021-11-10 11:14:45 -08:00
Kubernetes Prow Robot
e9a8bd94f7
Merge pull request #104921 from cheftako/anp-cp 
Add mTLS as default HTTPConnect egress configuration for GCP.
 2021-11-09 22:15:25 -08:00
Mauricio Poppe
84b403fd02 Use simple match instead of regex match 2021-11-09 05:09:18 +00:00
JD Nurme
4a9703a219 Added env variable for cloud-provider 2021-11-09 00:45:34 +00:00
Kubernetes Prow Robot
701c2b7942
Merge pull request #106196 from mauriciopoppe/gce-windows-ssh-fix 
Fix creation of the administrator_keys_file file with many users
 2021-11-08 13:11:57 -08:00
Kubernetes Prow Robot
97125e76f3
Merge pull request #103626 from jkh52/tweak-konnectivity 
Konnectivity Proxy: move proxy-agent cpu limit to request.
 2021-11-08 12:11:20 -08:00
Walter Fender
fbc13f22f8 Bump konnectivity to v0.0.25 
/kind feature

Bump konnectivity network proxy to v0.0.25.
Includes fixes for a few resource leaks.
Adds better logging for debugging.
Moves to golang1.17.
Adds additional keepalives.
Fixes HTTP-CONNECT goroutine leak.

Fixes # N/A

```release-note
NONE
```

```docs
NONE
```

Update the images.
 2021-11-07 14:34:09 -08:00
Carlos Panato
abbf8c3bed
[go1.17] Update to go1.17.3 
Signed-off-by: Carlos Panato <ctadeu@gmail.com>
 2021-11-07 16:29:35 +01:00
Mauricio Poppe
ff0afb6169 Fix creation of the administrator_keys_file file with many users 2021-11-06 03:14:13 +00:00
Pavithra Ramesh
f43c21448b Update to latest kubedns and nodelocaldns images. 2021-11-05 12:50:06 -07:00
Walter Fender
35737ff810 Switched ANP w/ grpc to not use destHost strategy. 
Factored in feedback from caesarxuchao
 2021-11-05 11:56:56 -07:00
Walter Fender
f7185b0be1 Add mTLS as default HTTPConnect egress configuration for GCP. 
We currently have UDS as the configuration with GRPC.
Some users are setting up egress to remote konnectivity servers.
Cannot use UDS for this configuration.
Should have a config setup which validates the mTLS configuration.

Fixed lint errors from shell check.
Fix volumes to not include pki for ANP in grpc mode.
 2021-11-05 11:39:39 -07:00
Kubernetes Prow Robot
aa964e097c
Merge pull request #106150 from pohly/log-runner-kubemark 
kubemark: replace deprecated --log-file parameter with runner
 2021-11-05 04:01:52 -07:00
Patrick Ohly
c3cd9a3902 kubemark: static binary, replace deprecated --log-file parameter 
The --log-file parameter will be deprecated as of Kubernetes 1.23 and should be
avoided. The replacement for distroless images is the image with go-runner, a
tool that handles output redirection.

For kubemark to run in that image it must be built as static binary.
 2021-11-04 20:52:56 +01:00
Kubernetes Prow Robot
2f21cff49d
Merge pull request #106018 from ahrtr/replace_ioutil_with_io_os_cluster_gce_gci 
Replace ioutil with io and os for cluster/gce/gci
 2021-11-04 03:08:03 -07:00
Patrick Ohly
d2a8a81639 Package kube-log-runner as part of Kubernetes releases 
kube-log-runner was formerly known as go-runner when it was originally introduced
in 393e0952e9
It was moved to kubernetes/release/images/build/go-runner later but is now
needed again in Kubernetes itself as replacement for the deprecated --log-file
klog feature: when bringing up a Windows node, kube-proxy.exe and kubelet.exe must be wrapped
with the helper binary to redirect output.

It got renamed to avoid a naming conflict with
test/conformance/image/go-runner and because the name was too vague.

Other downstream Kubernetes users may have a similar need, therefore it makes
sense to provide a prebuilt binary also in the release archives.
 2021-11-04 10:00:26 +01:00
Joseph Anttila Hall
d13ee80cb0 Konnectivity Proxy: move cpu limit to request. 2021-11-03 17:40:51 -07:00
Kubernetes Prow Robot
da707b6133
Merge pull request #106091 from rajansandeep/updateto1.8.6 
[kube-up]: Bump coredns to 1.8.6
 2021-11-03 15:24:45 -07:00
Kubernetes Prow Robot
1dd781ddca
Merge pull request #106065 from pacoxu/etcd-3.5.1-image-build 
update etcd makefile to using 3.5.1 for building
 2021-11-02 19:01:17 -07:00
Sandeep Rajan
be24af7644 bump coredns to 1.8.6 in kube-up 
Signed-off-by: Sandeep Rajan <srajan@infoblox.com>
 2021-11-02 10:52:44 -04:00
Paco Xu
6bac4dcaf7 update etcd makefile to using 3.5.1 for building 
Signed-off-by: Paco Xu <paco.xu@daocloud.io>
 2021-11-02 09:56:21 +08:00
Kubernetes Prow Robot
657412713b
Merge pull request #102637 from charlesxsh/fix-migrate-sever 
fix potential deadlock
 2021-11-01 04:17:19 -07:00
Kubernetes Prow Robot
37efc5feec
Merge pull request #105920 from SergeyKanzhelev/fixReturnValueHandling 
return value is taken from if statement instead of the function call
 2021-11-01 00:01:30 -07:00
ahrtr
45428d887d replace ioutil with io and os for cluster/gce/gci 2021-10-30 14:23:50 +08:00
Mauricio Poppe
9e29cc042e KubeEnv var to enable Hyper-V in Windows 2021-10-29 07:07:33 +00:00
shuaichen
3d620192d9 Use 10250 as targetPort for metrics-server 
Metrics-server's usage of privileged port 443 as targetPort requires
elevated permissions than necessary and violates principle of least
privilege.
 2021-10-28 03:10:15 +00:00
Joseph Burnett
a9788ca9b0 Give metrics server permission to read node stats. 2021-10-27 13:32:42 +00:00
Sergey Kanzhelev
c703725592 return value is taken from if statement instead of the function call 2021-10-26 00:11:55 +00:00
Oleg Atamanenko
965f10f539 Upgrade etcd to 3.5.1 2021-10-18 23:09:27 -07:00
Kubernetes Prow Robot
819b021ada
Merge pull request #92433 from claudiubelu/windows/etcd-image 
Adds Windows support for etcd image
 2021-10-18 15:49:34 -07:00
Michelle Tandya
e9e6a7cb6b Update the binary version file for NPD to 0.8.10-gke0.1 2021-10-14 20:55:41 +00:00
Mengjiao Liu
19e8852154 [go1.17] Update to go1.17.2 2021-10-14 16:15:51 +08:00
Kubernetes Prow Robot
a861de6d16
Merge pull request #105500 from ibabou/update_owners_cluster_gce 
Add [ibabou] & [pjh] to Cluster GCE directory OWNERS
 2021-10-06 09:58:41 -07:00
Kubernetes Prow Robot
4586ff2c7c
Merge pull request #105333 from ibabou/update_win_base_images 
Update windows base images - GCE provider
 2021-10-05 23:08:33 -07:00
“Ibrahim
6a2eae0d12 Add [ibabou] & [pjh] to Cluster GCE directory OWNERS 2021-10-05 22:12:49 +00:00
Sascha Grunert
9ae990e3d5
Use docker buildx for etcd image 
This allows to choose the correct architecture in the image manifest,
which defaulted to the host system before applying this patch.

Signed-off-by: Sascha Grunert <sgrunert@redhat.com>
 2021-10-05 13:38:02 +02:00
Kubernetes Prow Robot
70d1360ab8
Merge pull request #105103 from tkashem/extend-audit-policy 
apiserver: refactor PolicyRuleEvaluator interface
 2021-10-04 14:12:40 -07:00
taku333
e0901e26ca
Update sleep .5 ⇨ sleep 0.5 
There is no change in the process.
I changed it because 0.5 seems to be more intuitive than .5.
 2021-10-01 10:02:31 +09:00
“Ibrahim
26ce6df217 Update Windows base images GCE provider 2021-09-28 22:40:04 +00:00
Aaron Crickenberger
d41f9339f6 Revert "Use docker buildx for etcd image" 
This reverts commit ea1bc18bc1.

But bumps the REVISION var

This commit broke etcd image builds
 2021-09-27 10:46:17 -07:00
Kubernetes Prow Robot
6a71f85ccf
Merge pull request #105263 from cyclinder/bump_metrics_server 
bump metrics-server to 0.5.1
 2021-09-27 03:39:34 -07:00
Kubernetes Prow Robot
d385d0602a
Merge pull request #105158 from justaugustus/its-a-bullseye 
releng: Update build images to Debian 11 (Bullseye)
 2021-09-26 23:14:23 -07:00
cyclinder
3e426355b9 bump metrics-server to 0.5.1 
Signed-off-by: cyclinder <qifeng.guo@daocloud.io>
 2021-09-27 11:18:03 +08:00
Claudiu Belu
c4fc9bba6c Adds Windows support for etcd image 
We can use docker buildx in order to build and push Windows images from the same Linux node,
as long as the Dockerfile does not have any RUN commands in the Windows step.

We also need to create a non-default builder instance in order to be able to build and
push Windows images.

The Windows images have to be built and pushed directly to the registry.

For Windows containers without Hyper-V isolation, the host OS Version and the
Container OS Version need to match, which is why we added multiple Windows OS Versions
to the building process.

For the manifest list, we need to also annotate the Windows OS Version, so the Windows nodes
will be able to pull the proper image from the manifest list.

Adds support for Windows OS Versions: 1809, 2004, 20H2, ltsc2022.

Bumped etcd image revision.
 2021-09-24 18:28:00 +00:00
Aaron Crickenberger
42a955b3ae use k8s-staging-test-infra/gcb-docker-gcloud 2021-09-24 06:54:40 -07:00
Abu Kashem
a748fdc677
apiserver: refactor PolicyRuleEvaluator to return a struct 2021-09-24 08:08:32 -04:00
Kubernetes Prow Robot
7bff8adaf6
Merge pull request #92853 from cosmo0920/add-sniffer-class-loading-feature-on-es-image 
[fluentd/elasticsearch] Add mechanism to load simple sniffer class
 2021-09-23 23:07:24 -07:00
Stephen Augustus
8dcaf8433b
cluster/images/etcd: Build 3.5.0-2 image 
Signed-off-by: Stephen Augustus <foo@auggie.dev>
 2021-09-20 21:02:49 -04:00
Stephen Augustus
531eb712c2
releng: Update build images to Debian 11 (Bullseye) 
- debian-base:bullseye-v1.0.0
- debian-iptables:bullseye-v1.0.0
- go-runner:v2.3.1-go1.17.1-bullseye.0
- kube-cross:v1.23.0-go1.17.1-bullseye.0
- setcap:bullseye-v1.0.0

Signed-off-by: Stephen Augustus <foo@auggie.dev>
 2021-09-20 20:51:32 -04:00
Paco Xu
ef99ba8cb2
konnectivity-agent-ds: remove toleration for NoSchedule 2021-09-17 10:58:09 +08:00
Paco Xu
a48a2efbd4
remove deprecated validEgressSelectorNames 'master' (#102242) 
* remove deprecated validEgressSelectorNames 'master'

Signed-off-by: pacoxu <paco.xu@daocloud.io>

* update gce configure: replace deprecated egress name 'master' with 'controlplane'

Signed-off-by: pacoxu <paco.xu@daocloud.io>

* add dup error for EgressSelection & fix converting alpha/beta to v1 name
 2021-09-16 07:09:46 -07:00
Kubernetes Prow Robot
03e0106bbc
Merge pull request #102592 from pacoxu/patch-11 
add NoExecute toleration for konnectivity agent
 2021-09-15 01:40:42 -07:00
Carlos Panato
132c7066e0
[go1.17] Update to go1.17.1 
Signed-off-by: Carlos Panato <ctadeu@gmail.com>
 2021-09-14 13:04:25 +02:00
Kubernetes Prow Robot
c79f7c1add
Merge pull request #104711 from claudiubelu/update-pause-3.6 
update pause image references to use 3.6
 2021-09-13 19:09:08 -07:00
Julie Qi
6bf310d6aa Remove stackdriver version variable 2021-09-10 15:26:16 -07:00
Kubernetes Prow Robot
34fb61beba
Merge pull request #104444 from cheftako/anp-v23 
Enable http2 health checking with go 1.16.5 on KAS egress.
 2021-09-07 08:43:15 -07:00
Kubernetes Prow Robot
7363da7ca7
Merge pull request #101318 from eltociear/patch-5 
Fix typo in gci/README.md
 2021-09-03 02:45:49 -07:00
Alex
bea25d8024
Update GKE kubernetes sources download link 
Fix non-working link provided on MOTD to download GKE source release.
Now point to correct location, confirmed same file as provided in "/home/kubernetes/kubernetes-src.tar.gz"
 2021-08-31 10:31:23 +09:00
Claudiu Belu
18936d4785 updates pause image references 
The pause:3.6 image has been published.

Also updates older / incorrect references.
 2021-08-29 21:50:05 -07:00
Stephen Augustus
481cf6fbe7
generated: Run hack/update-gofmt.sh 
Signed-off-by: Stephen Augustus <foo@auggie.dev>
 2021-08-24 15:47:49 -04:00
Stephen Augustus
e8d2bff6ba
[go1.17] Update to go1.17 
Signed-off-by: Stephen Augustus <foo@auggie.dev>
 2021-08-24 15:47:41 -04:00
Antonio Ojea
0cd75e8fec run hack/update-netparse-cve.sh 2021-08-20 10:42:09 +02:00
wfender
590300f90d Enable http2 health checking with go 1.16.5 
Enabling http2 health checking on http-connect KAS egress.
Reran update-vendor.
Fixed pinning.
 2021-08-19 22:38:41 -07:00
Kubernetes Prow Robot
08eaea4590
Merge pull request #104350 from tkashem/audit-policy-refactor 
refactor: rename audit Checker interface
 2021-08-19 01:41:24 -07:00
Kubernetes Prow Robot
9d38c64a7d
Merge pull request #104426 from mauriciopoppe/update-csi-proxy-version 
Upgrade the default csi-proxy version installed by kube-up.sh
 2021-08-18 15:23:45 -07:00
Sascha Grunert
6a6e24702c
Update cri-tools to v1.22.0 
This patch updates crictl to the latest available release.

Signed-off-by: Sascha Grunert <sgrunert@redhat.com>
 2021-08-18 10:15:15 +02:00
Mauricio Poppe
fa9d5546cd Upgrade the default csi-proxy version installed by kube-up.sh 2021-08-17 19:37:26 +00:00
Kubernetes Prow Robot
f466d9278f
Merge pull request #104317 from ibabou/add_termination_hook_startup_script 
Add termination hook to the startup script - GCE Windows
 2021-08-12 17:50:57 -07:00
Abu Kashem
27f1503514
rename audit Checker interface 2021-08-12 17:42:41 -04:00
“Ibrahim
aa9380e017 Add termination hook to the startup script - GCE Windows 2021-08-12 19:56:15 +00:00
Marek Siarkowicz
704628fde4 Update golang used in etcd image to 1.16.7 2021-08-12 10:28:01 +02:00
Kubernetes Prow Robot
07fe9f0192
Merge pull request #104293 from x13n/master 
Update version of Cluster Autoscaler to 1.22.0
 2021-08-11 03:20:47 -07:00
Daniel Kłobuszewski
1181421112 Update version of Cluster Autoscaler to 1.22.0 
Release notes: https://github.com/kubernetes/autoscaler/releases/tag/cluster-autoscaler-1.22.0
 2021-08-11 09:58:25 +02:00
Kubernetes Prow Robot
a21a328a1a
Merge pull request #104116 from saschagrunert/etcd-buildx 
Use docker buildx for etcd image
 2021-08-11 00:54:49 -07:00
Mengjiao Liu
08d8f29a7a Update debian-base image to buster-v1.9.0 2021-08-07 09:44:59 +08:00
Kubernetes Prow Robot
eb7d492194
Merge pull request #104205 from ibabou/add_ibabou_gce_win_owners 
Add [ibabou] to cluster/gce/windows OWNERS file
 2021-08-06 13:47:29 -07:00
“Ibrahim
b98594bc79 Add ibabou to gce/windows OWNERS file 2021-08-06 17:48:07 +00:00
Carlos Panato
6b9dc099f8
[go1.16] Update to go1.16.7 
Signed-off-by: Carlos Panato <ctadeu@gmail.com>
 2021-08-06 17:11:00 +02:00
Kubernetes Prow Robot
bfcc756f09
Merge pull request #103963 from mcshooter/update-npd-089 
update node-problem-detector v0.8.9
 2021-08-05 19:45:05 -07:00
Kubernetes Prow Robot
13c74c4309
Merge pull request #104181 from SergeyKanzhelev/patch-2 
Propose myself as a reviewer for cluster/gce/gci
 2021-08-05 17:51:01 -07:00
Kubernetes Prow Robot
6751ae8f21
Merge pull request #104112 from mcshooter/dump-kube-env-from-startup-script 
Log kube-env variables from startup script
 2021-08-05 16:36:38 -07:00
Sergey Kanzhelev
ddaa06abee
Propose myself as a reviewer for cluster/gce/gci 2021-08-05 14:24:35 -07:00
Kubernetes Prow Robot
58cde6c442
Merge pull request #103874 from liggitt/move-conformance 
Move conformance image
 2021-08-05 08:17:34 -07:00
Kubernetes Prow Robot
1d693cd832
Merge pull request #104109 from caesarxuchao/keepalive 
add a keepalive time to the konnectivity server
 2021-08-05 06:09:46 -07:00
Kubernetes Prow Robot
a77d151c6c
Merge pull request #103855 from ibabou/update_bin_win_154 
Update Containerd version - GCE Windows (1.5.4)
 2021-08-05 01:45:07 -07:00
Kubernetes Prow Robot
04c7fe8256
Merge pull request #103627 from liu-cong/latency 
Add structured logging for more steps
 2021-08-04 22:11:07 -07:00
Kubernetes Prow Robot
f886190b48
Merge pull request #103436 from loburm/config_kube_proxy 
Make cpu request of kube proxy configurable by env variable.
 2021-08-04 19:00:40 -07:00
Kubernetes Prow Robot
ce5dbd2095
Merge pull request #103376 from mattcary/sunrpc 
Drop end of sunrpc port range to avoid port conflicts.
 2021-08-04 19:00:32 -07:00
Kubernetes Prow Robot
9c5cefb230
Merge pull request #101781 from ptabor/20210506-retry-dns-resolve 
Retry hostname->IP: [Errno -2] Name or service not known
 2021-08-04 18:59:27 -07:00
Michelle Tandya
9cffbab037 Log kube-env variables from startup script 2021-08-04 22:53:52 +00:00
vteratipally
5d84ffa6c2
Update configure-helper.sh 2021-08-04 14:36:16 -07:00
vteratipally
b0039559dd
Update configure-helper.sh 2021-08-04 13:19:00 -07:00