kubernetes

Author	SHA1	Message	Date
Lubomir I. Ivanov	5e0c0779a1	kubeadm: handle multiple members without names during concurrent join For the etcd client, amend AddMember() to handle a very rare bug when multiple members can end up with the same name. Match the member peer address and assign it the name of the member we are adding. For the rest of the members with missing names use their member IDs as name. The etcd node is not disrupted by the unknown names. The important aspects are: - The number of members of the initial cluster must match the members in the cluster. - The member we are current adding is present in the initial cluster.	2020-01-25 00:48:05 +02:00
Kubernetes Prow Robot	789dc873f6	Merge pull request #87440 from dims/switch-enable-cadvisor-json-endpoints-flag-to-false Default the --enable-cadvisor-endpoints flag to disabled	2020-01-24 12:18:45 -08:00
Kubernetes Prow Robot	1249dd43ca	Merge pull request #86574 from SataQiu/deprecated-kube-dns kubeadm: kube-dns is deprecated and will not be supported in a future version	2020-01-23 20:26:32 -08:00
Davanum Srinivas	bb587690fd	Default the --enable-cadvisor-endpoints flag to disabled As part of #68522, Switching off the cAdvisor v1 Json API that we expose directly. These include /stats/, /stats/container, /stats/{podName}/{containerName}, and /stats/{namespace}/{podName}/{uid}/{containerName}	2020-01-21 17:30:46 -05:00
Lubomir I. Ivanov	261f26075c	kubeadm: remove the deprecated GA CoreDNS feature-gate The CoreDNS GA feature-gate in kubeadm was deprecated since 1.13. The k8s policy is to remove the gate 2 releases after it transitions to GA: https://kubernetes.io/docs/reference/using-api/deprecation-policy/#deprecation We kept it around for longer to prevent existing setups from breaking as it caused minimal maintenance overhead.	2020-01-21 04:54:47 +02:00
Kubernetes Prow Robot	08dd4f5478	Merge pull request #87357 from yutedz/apisvr-flow-cntl Add flowcontrol to apiVersionPriorities	2020-01-19 17:07:36 -08:00
Ted Yu	34f0767137	Add flowcontrol to apiVersionPriorities	2020-01-19 14:16:46 -08:00
Rob Scott	47b2593d59	Creating new EndpointSliceProxying feature gate for kube-proxy This creates a new EndpointSliceProxying feature gate to cover EndpointSlice consumption (kube-proxy) and allow the existing EndpointSlice feature gate to focus on EndpointSlice production only. Along with that addition, this enables the EndpointSlice feature gate by default, now only affecting the controller. The rationale here is that it's really difficult to guarantee all EndpointSlices are created in a cluster upgrade process before kube-proxy attempts to consume them. Although masters are generally upgraded before nodes, and in most cases, the controller would have enough time to create EndpointSlices before a new node with kube-proxy spun up, there are plenty of edge cases where that might not be the case. The primary limitation on EndpointSlice creation is the API rate limit of 20QPS. In clusters with a lot of endpoints and/or with a lot of other API requests, it could be difficult to create all the EndpointSlices before a new node with kube-proxy targeting EndpointSlices spun up. Separating this into 2 feature gates allows for a more gradual rollout with the EndpointSlice controller being enabled by default in 1.18, and EndpointSlices for kube-proxy being enabled by default in the next release.	2020-01-17 16:17:40 -08:00
Kubernetes Prow Robot	916edd922e	Merge pull request #86861 from SataQiu/fix-kubeadm-20200106 kubeadm upgrades always persist the etcd backup for stacked	2020-01-16 21:38:56 -08:00
Kubernetes Prow Robot	719b8aa5f3	Merge pull request #86709 from mwmix/scheduler_unit_tests Adding unit tests for kube-scheduler Config Complete() method.	2020-01-16 13:14:31 -08:00
Kubernetes Prow Robot	d9bf22f8f7	Merge pull request #85281 from RainbowMango/pr_add_metrics_flag_to_controller_manager Allow show hidden metrics in kube-controller-manager	2020-01-15 21:20:34 -08:00
Kubernetes Prow Robot	61d36e4a43	Merge pull request #85850 from danwinship/kubelet-ipv6-node-ip Allow "kubelet --node-ip ::" to mean prefer IPv6	2020-01-13 17:41:08 -08:00
Kubernetes Prow Robot	3e8155ead3	Merge pull request #86899 from SataQiu/enable-pull-retry-20200107 kubeadm: support automatic retry after failing to pull image	2020-01-13 13:58:41 -08:00
SataQiu	c7234aa177	kubeadm: support automatic retry after failing to pull image	2020-01-11 15:10:56 +08:00
Kubernetes Prow Robot	28b8cfb473	Merge pull request #87005 from yuxiaobo96/k8s-unuseful Add a comment for function WithPlugin	2020-01-10 12:24:36 -08:00
yuxiaobo	d2cfd4b82f	apply review advice again Signed-off-by: yuxiaobo <yuxiaobogo@163.com>	2020-01-10 16:47:30 +08:00
Kubernetes Prow Robot	f4e6ff84b3	Merge pull request #86529 from hase1128/kube-scheduler-reference Add simple reference to synopsis of kube-scheduler	2020-01-09 13:29:06 -08:00
Kubernetes Prow Robot	720e6de6b9	Merge pull request #85168 from Jefftree/admission-wh-proxy Use Network Proxy for Admission Webhooks	2020-01-08 16:07:40 -08:00
Jefftree	1289bdaba4	network proxy with admission wh	2020-01-08 15:01:38 -08:00
Matthew Mix	57f2d7ad6f	Adding unit tests for kube-scheduler Config Complete() method.	2020-01-07 18:52:21 -05:00
Rostislav M. Georgiev	7f2d675ad0	kubeadm: Fix a false positive in a warning The warning message ``` [config] WARNING: Ignored YAML document with GroupVersionKind ... ``` is printed for all GVKs that are not part of the kubeadm core types. This is wrong as the component config types are supported and successfully parsed and used despite the fact that the warning is printed for them too. Hence this simple fix first checks if the group of the GVK is a supported component config group and the warning is printed only if it's not. Signed-off-by: Rostislav M. Georgiev <rostislavg@vmware.com>	2020-01-07 17:55:50 +02:00
Dan Winship	ce68edf700	Allow "kubelet --node-ip ::" to mean prefer IPv6	2020-01-07 07:53:21 -05:00
Kubernetes Prow Robot	5373fa3f59	Merge pull request #82462 from vllry/dualstack-iptables Dualstack support for kube-proxy iptables mode	2020-01-07 04:38:20 -08:00
louisgong	8d54a84507	fix kubemark use fake CRI	2020-01-07 11:39:58 +08:00
louisgong	324e5ce7e3	hollow-node use remote CRI	2020-01-07 11:00:45 +08:00
SataQiu	72559ec693	kubeadm upgrades always persist the etcd backup for stacked	2020-01-06 12:34:28 +08:00
Kubernetes Prow Robot	10dc4a0c79	Merge pull request #86822 from ahg-g/ahg-cleanup Cleanup deprecated scheduler functions/files	2020-01-05 12:37:41 -08:00
Kubernetes Prow Robot	3760d24674	Merge pull request #86493 from aojea/kubeadmAddress kubeadm: use bind-address instead of address to configure the http probes	2020-01-03 19:13:40 -08:00
Abdullah Gharaibeh	d31dcecd20	cleanup unused scheduler functions/files	2020-01-03 19:09:14 -05:00
Antonio Ojea	c0bc36c12e	kubeadm: probe address for unspecified ips kubeadm deploys the apiserver, controller-manager and the scheduler using liveness probes. The bind-address option is used to configure the probe address, in case this is configured with an unspecified address, the probe will fail. When using an unspecified address the probe host field is left empty, otherwise the bind-address is used.	2020-01-04 00:42:15 +01:00
Kubernetes Prow Robot	b3c4c90a72	Merge pull request #86673 from ahg-g/ahg1-provider Define algorithm providers in terms of plugins	2020-01-02 22:25:53 -08:00
SataQiu	2a83443782	add error handler of unix.Setrlimit	2020-01-03 10:49:06 +08:00
Kubernetes Prow Robot	09cb73a554	Merge pull request #86705 from neolit123/1.18-fix-ca-whitespace-comparison kubeadm: tolerate whitespace when validating user CA PEMs	2019-12-31 23:35:40 -08:00
Abdullah Gharaibeh	a6b7b0d95e	Define algorithm providers in terms of plugins.	2019-12-31 15:28:09 -05:00
Kubernetes Prow Robot	f772c9017c	Merge pull request #86609 from Pensu/kubeadm-ci-master Fixing regex for kubernetes version in kubeadm	2019-12-30 14:29:39 -08:00
Lubomir I. Ivanov	453ac809c1	kubeadm: tolerate whitespace when validating user CA PEMs The function validateKubeConfig() can end up comparing a user generated kubeconfig to a kubeconfig generated by kubeadm. If a user kubeconfig has a CA that is base64 encoded with whitespace, if said kubeconfig is loaded using clientcmd.LoadFromFile() the CertificateAuthorityData bytes will be decoded from base64 and placed in the v1.Config raw. On the other hand a kubeconfig generated by kubeadm will have the ca.crt parsed to a Certificate object with whitespace ignored in the PEM input. Make sure that validateKubeConfig() tolerates whitespace differences when comparing CertificateAuthorityData.	2019-12-30 22:16:41 +02:00
Peeyush Gupta	49884bca30	Fixing regex for kubernetes version in kubeadm	2019-12-30 21:12:24 +05:30
Kubernetes Prow Robot	33bba19372	Merge pull request #86553 from ajayktkp/kubeadm-1985 validation.go: don't clamp the CIDR size calculations	2019-12-28 16:27:38 -08:00
tanjunchen	b1e03256d7	alias kubeadmutil for k8s.io/kubernetes/cmd/kubeadm/app/util	2019-12-27 17:57:04 +08:00
Matthew Mix	013994a740	Updating minor grammar errors.	2019-12-26 13:48:19 -05:00
Ajay Kumar	7271a81921	validation.go: don't clamp the CIDR size calculations removed not required import, updated build	2019-12-24 23:17:06 +05:30
Kubernetes Prow Robot	1ca0f89aa1	Merge pull request #86508 from kvaster/master On OpenRC ServiceIsActive should not report true if no such service exists	2019-12-24 01:05:29 -08:00
SataQiu	803161d621	kubeadm: kube-dns is deprecated and will not be supported in a future version	2019-12-24 10:11:24 +08:00
kangsub song	237da6250b	change print log for unity when during kubeadm init change print log for unity when during kubeadm init	2019-12-24 10:13:48 +09:00
SataQiu	107db83839	kubeadm: re-enable kubelet version check test in preflight	2019-12-22 16:49:39 +08:00
SataQiu	2497a1209b	bump k8s.io/utils version	2019-12-21 14:54:44 +08:00
Antonio Ojea	7dc6c94395	kubeadm: use bind-address instead of address kubeadm removed the deprecated "--address" flag for controller-manager and scheduler in favor of "--bind-address" We should use bind-address to configure the manifest probe addresses.	2019-12-20 22:03:49 +01:00
Viktor Kuzmin	947d696021	On OpenRC ServiceIsActive should not report true if no such service exists	2019-12-20 23:12:16 +03:00
Jin Hase	c715aacdc2	Add simple reference to synopsis of kube-scheduler	2019-12-20 20:55:35 +09:00
Jacek Kaniuk	4303be3d9f	Revert pull request #85879 "hollow-node use remote CRI"	2019-12-19 10:52:35 +01:00
Kubernetes Prow Robot	8cd8784289	Merge pull request #78380 from hainesc/master Add test cases for a helper function in controller manager	2019-12-18 18:25:55 -08:00
Kubernetes Prow Robot	814fc34cde	Merge pull request #85879 from gongguan/cri-kubemark hollow-node use remote CRI	2019-12-18 06:01:57 -08:00
Kubernetes Prow Robot	2796ff8538	Merge pull request #85279 from RainbowMango/pr_add_metrics_flag_to_proxy Allow show hidden metrics in kube-proxy	2019-12-18 00:57:57 -08:00
louisgong	e8e1cc9ee0	extract PreInitRuntimeService from NewMainKubelet	2019-12-18 11:48:29 +08:00
RainbowMango	6b33a77068	Adopt kubeadm and kubeproxy unit test after new config field added. Fix proxy unit test	2019-12-18 11:09:26 +08:00
RainbowMango	4eb61e3f93	Deal with auto-generated files: - Update bazel by hack/update-bazel.sh - make update	2019-12-17 21:46:41 +08:00
RainbowMango	9b7d8712cf	Add show hidden flag to kube-proxy	2019-12-17 21:46:41 +08:00
Andrew Sy Kim	db2c048db9	support configuration of kube-proxy IPVS tcp,tcpfin,udp timeout Signed-off-by: Andrew Sy Kim <kiman@vmware.com>	2019-12-17 04:35:08 -05:00
Vallery Lancey	23957a6b28	Allow kube-proxy iptables mode to support dual-stack, with the meta-proxier.	2019-12-16 22:50:25 -08:00
Kubernetes Prow Robot	078344c125	Merge pull request #86016 from robscott/endpointslice-windows-proxy Ensuring EndpointSlices are not used for Windows kube-proxy implementations	2019-12-16 21:38:18 -08:00
Haines Chan	01f1cf3c96	Add test cases for a helper function in controller manager	2019-12-17 12:31:53 +08:00
carlory	2fe82075b4	fix staticcheck faulures in 'cmd' pkg	2019-12-16 18:32:54 +08:00
Kubernetes Prow Robot	6a919f2b54	Merge pull request #85903 from liggitt/disable-deprecated-apis Remove ability to re-enable serving deprecated APIs	2019-12-13 16:19:36 -08:00
Jordan Liggitt	3df9e86a4e	Remove ability to re-enable serving deprecated APIs	2019-12-13 12:21:33 -05:00
Lubomir I. Ivanov	effe299082	kubeadm: add basic validation around kubelet.conf parsing If the user has modified the kubelet.conf post TLS bootstrap to become invalid, the function getNodeNameFromKubeletConfig() can panic. This was observed to trigger in "kubeadm reset" use cases. Add basic validation and unit tests around parsing the kubelet.conf with the aforementioned function.	2019-12-12 17:30:53 +02:00
Kubernetes Prow Robot	7b792c38e0	Merge pull request #85837 from pickledrick/coredns-replicas kubeadm: persist dns replica count on upgrade	2019-12-12 05:12:31 -08:00
Peter Grant	0e4469cddd	persist deployed DNS configuration during kubeadm upgrade Signed-off-by: Peter Grant <9246508+pickledrick@users.noreply.github.com>	2019-12-12 08:55:15 +11:00
Kubernetes Prow Robot	55f81314cc	Merge pull request #85032 from jfbai/move-fmt-out-of-api refactor: move unwanted console output out of versiongetter API	2019-12-09 08:38:02 -08:00
Kubernetes Prow Robot	2fbe432d23	Merge pull request #85857 from hnanni/patch-1 Update checks.go	2019-12-08 09:41:08 -08:00
Jianfei Bai	dfb6c3424f	move unwanted console output out of versiongetter.	2019-12-08 10:26:27 +08:00
Rob Scott	dfa04bfc04	Ensuring EndpointSlices are not used for Windows kube-proxy implementations	2019-12-06 15:39:00 -08:00
Kubernetes Prow Robot	3994f52ee6	Merge pull request #85953 from St0rmingBr4in/verify-context-exists kubeadm: Throw an error if the currentContext does not exists	2019-12-06 05:35:03 -08:00
Julien DOCHE	3e19201ec2	kubeadm: Throw an error if the currentContext does not exists Check if the CurrentContext exists in validateKubeConfig Signed-off-by: Julien DOCHE <julien.doche@gmail.com>	2019-12-06 10:15:26 +01:00
louisgong	0dd468039d	inject remoteRuntime to kubelet dependency	2019-12-06 14:12:08 +08:00
Kubernetes Prow Robot	6a4216ba59	Merge pull request #85968 from liggitt/fix_bug_in_str_split Fix bug in apiserver service cidr split	2019-12-05 15:55:39 -08:00
darshanime	f4d1674827	Refactor parsing logic for service IP and ranges, add tests Signed-off-by: darshanime <deathbullet@gmail.com>	2019-12-05 15:35:20 -05:00
darshanime	fdd25ec968	Fix bug in apiserver service cluster cidr split Signed-off-by: darshanime <deathbullet@gmail.com>	2019-12-05 15:35:20 -05:00
Lubomir I. Ivanov	bc22d70e2b	Revert "kubeadm: don't check if image exists before pulling"	2019-12-05 21:42:12 +02:00
bogard1203	09ede2fd98	Deleted extra 'phase' in command example Deleted extra 'phase' for 'kubeadm alpha kubelet config' command	2019-12-04 23:45:45 +08:00
Kubernetes Prow Robot	c8b123e8e1	Merge pull request #85843 from Itxaka/kubeadm_docker_messages Enhance error message for failed controlplane init	2019-12-04 04:08:57 -08:00
Itxaka	c355cadbb1	Enhance error message for failed controlplane init Currently if the controlplane fails to init, we print out a message with some example commands that only show docker CLI. This tries to improve that by printing the example commands for docker, cri-o and containerd by checking the socket looking for the default docker socket.	2019-12-04 11:55:41 +01:00
Kubernetes Prow Robot	6d5eee88e0	Merge pull request #84624 from hwdef/fix-staticcheck cmd/kube-controller-manager: fix staticcheck warning	2019-12-04 01:54:57 -08:00
louisgong	b469404d97	hollow-node use remote CRI	2019-12-04 17:07:04 +08:00
Kubernetes Prow Robot	674695c544	Merge pull request #85639 from rosti/kubeadm-cc-kind-to-group kubeadm: Group centric component configs	2019-12-03 17:01:23 -08:00
Kubernetes Prow Robot	eff703de21	Merge pull request #84005 from yue9944882/chore/crd-internal-client-prune Prune internal clients from CRD apiserver	2019-12-03 15:46:57 -08:00
Humberto Nanni	82206578cc	Update checks.go match https://github.com/kubernetes/release/pull/653 add	2019-12-03 11:17:11 -06:00
yue9944882	81471c36b1	[generated] bazels and vendor/modules.txt [generated] bazels bazel	2019-12-04 00:49:28 +08:00
yue9944882	168f8f54f0	switch to v1 crd switch api helper functions to v1 CRD api switch v1 CRD for apiserver internal switch to v1 CRD for internal controllers api storage/validation related changes move local-defaulting utils private to prevent spreading boilerplate keep the subresource status/scale spec nil unless it's enabled clean up empty space	2019-12-04 00:49:26 +08:00
Kubernetes Prow Robot	c65c563487	Merge pull request #85412 from boluisa/1916-fix Kubeadm: upgrade apply & upgrade node always overwrite Kubeadm-env file	2019-12-02 20:18:57 -08:00
hwdef	dddd631706	cmd/kube-controller-manager: fix staticcheck warning	2019-12-03 11:16:24 +08:00
Kubernetes Prow Robot	3769de9401	Merge pull request #85745 from aojea/kubeadm_etcd_ipv6 kubeadm: default etcd address based on the IP family	2019-12-02 15:02:58 -08:00
Rafael Fernández López	f0ea7bcf9e	kubeadm: set cluster name on the controller manager On kubeadm's configuration it's possible to set up the cluster name. Forward this information to the controller manager's `--cluster-name` argument.	2019-12-02 18:32:50 +01:00
Babatunde Olu-Isa	af231b09e4	remove Kubeadm-env file overwrite from apply and node command	2019-12-01 15:28:59 -06:00
Rafael Fernández López	14fe7225c1	kubeadm: Improve resiliency in CreateOrMutateConfigMap CreateOrMutateConfigMap was not resilient when it was trying to Create the ConfigMap. If this operation returned an unknown error the whole operation would fail, because it was strict in what error it was expecting right afterwards: if the error returned by the Create call was a IsAlreadyExists error, it would work fine. However, if an unexpected error (such as an EOF) happened, this call would fail. We are seeing this error specially when running control plane node joins in an automated fashion, where things happen at a relatively high speed pace. It was specially easy to reproduce with kind, with several control plane instances. E.g.: ``` [upload-config] Storing the configuration used in ConfigMap "kubeadm-config" in the "kube-system" Namespace I1130 11:43:42.788952 887 round_trippers.go:443] POST https://172.17.0.2:6443/api/v1/namespaces/kube-system/configmaps?timeout=10s in 1013 milliseconds Post https://172.17.0.2:6443/api/v1/namespaces/kube-system/configmaps?timeout=10s: unexpected EOF unable to create ConfigMap k8s.io/kubernetes/cmd/kubeadm/app/util/apiclient.CreateOrMutateConfigMap /go/src/k8s.io/kubernetes/_output/dockerized/go/src/k8s.io/kubernetes/cmd/kubeadm/app/util/apiclient/idempotency.go:65 ``` This change makes this logic more resilient to unknown errors. It will retry on the light of unknown errors until some of the expected error happens: either `IsAlreadyExists`, in which case we will mutate the ConfigMap, or no error, in which case the ConfigMap has been created.	2019-11-30 22:48:16 +01:00
Antonio Ojea	335a3e9efb	kubeadm: use correct IP family for etcd localhost kubeadm always use the IPv4 localhost address by defaultA for etcd The probe hostname is obtained before the generation of the etcd parameters, so it can't detect the right IP familiy for the host of the probe. This causes that with IPv6 clusters doesn't work because the probe uses the IPv4 localhost address. This patchs configures the right localhost address based on the used AdvertiseAddress IP family.	2019-11-30 17:25:30 +01:00
Kubernetes Prow Robot	85f8005cf0	Merge pull request #85468 from neolit123/1.17-discovery-token-fix kubeadm: simplify discover/token and add detailed unit tests	2019-11-29 09:35:03 -08:00
Antonio Ojea	798d2fb75a	Fix comment typo	2019-11-29 13:38:47 +01:00
Lucas Käldström	b46e541eee	Add a YAML MetaFactory - Use `schema.TypeMeta` instead of custom `struct` for VK - More strict check on GVK after `Interpret` in `SplitYAMLDocuments` - Adjust `Interpret` comment to include JSON	2019-11-27 17:44:59 +08:00
Kubernetes Prow Robot	fe0a4749e3	Merge pull request #85654 from aramase/add-config-test add applyto tests for controller configs	2019-11-26 16:51:33 -08:00
Lubomir I. Ivanov	ce68a89d26	kubeadm: simplify discover/token and add detailed unit tests - Add retrieveValidatedConfigInfo to be able to better unit test the function. - Break some of the logic in RetrieveValidatedConfigInfo into helper functions. - Pass JoinConfiguration.Discovery to RetrieveValidatedConfigInfo instead of JoinConfiguration. - Use the discovery timeout per API call to fetch cluster-info (optionally the user value can be slit in 2). - Add detailed unit tests for retrieveValidatedConfigInfo.	2019-11-27 01:16:43 +02:00
Anish Ramasekar	18ba2643db	add applyto tests for controller configs	2019-11-26 13:02:12 -08:00
David Eads	3c1dc89d98	fix kube-apiserver poststarthook additions to avoid duplicating them	2019-11-26 14:05:06 -05:00
Kubernetes Prow Robot	2bc3804a0e	Merge pull request #81319 from neolit123/1.16-kubeadm-upgrade-health-check kubeadm: add a upgrade health check that deploys a Job	2019-11-26 10:52:51 -08:00
Kubernetes Prow Robot	e51caab732	Merge pull request #85603 from bart0sh/PR008-kubeadm-dont-check-if-image-exists kubeadm: don't check if image exists before pulling	2019-11-26 05:27:10 -08:00
Rostislav M. Georgiev	b881f19c8b	kubeadm: Group centric component configs kubeadm's current implementation of component config support is "kind" centric. This has its downsides. Namely: - Kind names and numbers can change between config versions. Newer kinds can be ignored. Therefore, detection of a version change is considerably harder. - A component config can have only one kind that is managed by kubeadm. Thus a more appropriate way to identify component configs is required. Probably the best solution identified so far is a config group. A group name is unlikely to change between versions, while the kind names and structure can. Tracking component configs by group name allows us to: - Spot more easily config version changes and manage alternate versions. - Support more than one kind in a config group/version. - Abstract component configs by hiding their exact structure. Hence, this change rips off the old kind based support for component configs and replaces it with a group name based one. This also has the following extra benefits: - More tests were added. - kubeadm now errors out if an unsupported version of a known component group is used. Signed-off-by: Rostislav M. Georgiev <rostislavg@vmware.com>	2019-11-26 13:55:28 +02:00
Arvinderpal Wander	e8ee8622b8	Add support for new dual-stack flags for kubernetes-controller- manager in kubeadm: - node-cidr-mask-size-ipv4 - node-cidr-mask-size-ipv6	2019-11-25 09:11:16 -08:00
Ed Bartosh	7898b3f0a8	kubeadm: update image pull tests	2019-11-25 15:04:28 +02:00
Ed Bartosh	f6f3738a00	kubeadm: don't check if image exists before pulling Removed image existence as kubeadm may miss image tags if they're updated.	2019-11-25 13:00:50 +02:00
Kubernetes Prow Robot	d50717d061	Merge pull request #85500 from aramase/fix-85491 Set node cidr mask size ipv4/ipv6 config	2019-11-23 12:09:50 -08:00
Kubernetes Prow Robot	f01a4d0608	Merge pull request #85265 from SataQiu/fix-kubeadm-20191114 kubeadm: reset raises warnings if it cannot delete folders	2019-11-22 17:30:17 -08:00
Lubomir I. Ivanov	906d3159b1	kubeadm: add a upgrade health check that deploys a Job - Add a new preflight check for upgrade that runs the pause container with -v in a Job. - Wait for the Job to complete and return an error after N seconds. - Manually clean the Job because we don't have the TTL controller enabled in kubeadm yet (it's still alpha).	2019-11-22 18:04:40 +02:00
Arvinderpal Wander	c025cfcd9c	Initialize FeatureGate map for KubeProxy config. #1929	2019-11-21 20:46:25 -08:00
Anish Ramasekar	7b478d15d5	Set node cidr mask size ipv4/ipv6 config	2019-11-20 22:08:58 -08:00
Ted Yu	5be960c34d	Fill in default node cidr mask size when dual stack is not enabled	2019-11-20 19:50:33 -08:00
Benjamin Elder	820b7dfa1b	fix providerless build post-CSI migration	2019-11-19 09:47:44 -08:00
Kubernetes Prow Robot	c3f8d700ac	Merge pull request #85367 from aramase/node-cidr-followup [kube controller manager] add comments for compatibility	2019-11-15 19:09:54 -08:00
Kubernetes Prow Robot	01e1dcf429	Merge pull request #85351 from rosti/kubeadm-fix-kubelet-version-check kubeadm: Use only stdout when calling kubelet for its version	2019-11-15 19:09:41 -08:00
Kubernetes Prow Robot	b8c29966cb	Merge pull request #85348 from ereslibre/validator-names kubeadm: use the right name for the no validator function	2019-11-15 16:17:42 -08:00
Anish Ramasekar	128f33b26e	add comments for compatibility	2019-11-15 15:38:06 -08:00
Rostislav M. Georgiev	d425520806	kubeadm: Use only stdout when calling kubelet for its version Currently this uses the combined kubelet output (stdout + stderr), but this causes parsing issues if the kubelet logs something on stderr. Thus we ignore the entire stderr and use stdout only. We do disable a couple of tests here. That is because the fakeexecer only supports combined output and return a "not supported" error if `.Output()` gets invoked thus permanently failing those. Signed-off-by: Rostislav M. Georgiev <rostislavg@vmware.com>	2019-11-15 18:50:40 +02:00
Travis Rhoden	0c5c3d8bb9	Remove pkg/util/mount (moved out of tree) This patch removes pkg/util/mount completely, and replaces it with the mount package now located at k8s.io/utils/mount. The code found at k8s.io/utils/mount was moved there from pkg/util/mount, so the code is identical, just no longer in-tree to k/k.	2019-11-15 08:29:12 -07:00
Rafael Fernández López	d049eb71fa	kubeadm: use the right name for the no validator function	2019-11-15 16:03:40 +01:00
SataQiu	b7b10fc899	kubeadm: reset raises warnings if it cannot delete folders	2019-11-15 22:54:05 +08:00
Kubernetes Prow Robot	d9be37e926	Merge pull request #72046 from m1093782566/service-topology-api Service Topology implementation	2019-11-15 02:57:42 -08:00
Kubernetes Prow Robot	ded6ee953c	Merge pull request #79993 from aramase/controller-manager-multiple-cidr Allow multiple node cidr masks in kube-controller-manager	2019-11-14 23:23:42 -08:00
Roc Chan	31d623b4d7	Autogenerated files	2019-11-15 14:37:44 +08:00
Roc Chan	c9cf3f5b72	Service Topology implementation * Implement Service Topology for ipvs and iptables proxier * Add test files * API validation	2019-11-15 13:36:43 +08:00
Kubernetes Prow Robot	372ebd24f5	Merge pull request #83098 from ddebroy/disable-intree CSI Migration phase 2: disable probing of in-tree plugins	2019-11-14 20:51:42 -08:00
Anish Ramasekar	796faba4ac	Allow multiple node cidr masks in cm update tests add comment amend var name update comment add check for empty slice fix tests fix mask size in test review feedback add ipv4 and ipv6 flag for mask sizes add to violation exception list remove import alias run update-openapi-spec review feedback run update-bazel review feedback review feedback	2019-11-14 20:04:31 -08:00
Deep Debroy	129f15328b	Disable in-tree plugins migrated to CSI Signed-off-by: Deep Debroy <ddebroy@docker.com>	2019-11-14 17:28:21 -08:00
Kubernetes Prow Robot	12b18f200a	Merge pull request #85301 from robscott/endpointslice-beta-fix Ensuring EndpointSlice controller does not start when feature gate or API are disabled	2019-11-14 16:39:17 -08:00
Jordan Liggitt	a5760dee81	Add support for --runtime-config=api/beta=false, --feature-gates=AllBeta=false Allow disabling all beta features and APIs	2019-11-14 14:37:55 -05:00
Rob Scott	77df6bc9a8	Ensuring EndpointSlice controller does not start when feature gate or API are disabled	2019-11-14 10:52:09 -08:00
Kubernetes Prow Robot	d1e8702d36	Merge pull request #85201 from fabriziopandini/add-retry-to-etcd kubeadm: add retry to etcd calls	2019-11-14 07:07:34 -08:00
RainbowMango	0412369bcd	Deal with auto-generated files: - Update bazel by hack/update-bazel.sh	2019-11-14 20:34:38 +08:00
RainbowMango	c4f8c6eea7	Add flag for which to show hidden metrics to kube-controller-manager	2019-11-14 20:32:19 +08:00
fabriziopandini	0573a2227f	add retry to etcd operations	2019-11-14 09:27:03 +01:00
Kubernetes Prow Robot	c6a38a9700	Merge pull request #85229 from liggitt/kubeadm-imports guard kubeadm dependencies on k8s.io/kubernetes	2019-11-13 17:29:05 -08:00
Kubernetes Prow Robot	64f4be5b32	Merge pull request #84390 from robscott/endpointslice-beta Promoting EndpointSlices to beta	2019-11-13 17:27:50 -08:00
Kubernetes Prow Robot	02af1dd62c	Merge pull request #85004 from deads2k/dynamic-agg-cert dynamic reload cluster authentication info for aggregated API servers	2019-11-13 14:50:54 -08:00
Rob Scott	a7e589a8c6	Promoting EndpointSlices to beta	2019-11-13 14:20:19 -08:00
Kubernetes Prow Robot	f5df681b80	Merge pull request #85156 from chuckha/remove-infinte-poll [kubeadm] Remove nested retries	2019-11-13 13:04:23 -08:00
Kubernetes Prow Robot	7d1580270a	Merge pull request #85151 from hypnoglow/scheduler-default-algo-source scheduler: make algorithm source an option	2019-11-13 13:04:09 -08:00
Kubernetes Prow Robot	c33af5b2fe	Merge pull request #85108 from rajansandeep/prepcorednsfor1.17-kubeadm Bump CoreDNS version to 1.6.5 and update manifest	2019-11-13 13:03:22 -08:00
Kubernetes Prow Robot	21df24cc06	Merge pull request #84292 from RainbowMango/pr_add_metrics_flag_to_apiserver Allow show hidden metrics in kube-apiserver	2019-11-13 13:02:09 -08:00
Jordan Liggitt	752cda4fc4	guard kubeadm dependencies on k8s.io/kubernetes	2019-11-13 15:05:11 -05:00
Kubernetes Prow Robot	66e0ca800d	Merge pull request #85137 from rosti/kubeadm-amend-hyperkube-deprecation kubeadm: Amend the hyperkube deprecation change	2019-11-13 09:28:09 -08:00
Kubernetes Prow Robot	4f6aa5a921	Merge pull request #85091 from fabriziopandini/alpha-certs-reads-incluster-config kubeadm: alpha certs command should read in-cluster config	2019-11-13 09:27:42 -08:00
Kubernetes Prow Robot	9648d56765	Merge pull request #84118 from neolit123/1.17-kubeadm-add-kubelet-post-phase kubeadm: enable kubelet client certificate rotation on primary CP nodes	2019-11-13 09:25:13 -08:00
David Eads	3fbfe60ed2	make client authentication optional for test kube-apiserver	2019-11-13 10:25:28 -05:00
Chuck Ha	8fcf892498	Remove an infinite poll This infinite poll can make kubeadm init/join hang forever due to a lack of function cancelling. Signed-off-by: Chuck Ha <chuckh@vmware.com>	2019-11-13 10:10:41 -05:00
Lubomir I. Ivanov	431fd630ff	kubeadm: enable kubelet client certificate rotation on primary CP nodes - Don't always print to stdout that the kubelet is starting. instead delegate this to the callers of TryStartKubelet. - Add a new root kubeadm init phase called "kubelet-finalize" - Add a sub-phase to "kubelet-finalize" called "experimental-cert-rotation" - "cert-rotation" performs the following actions: - tries to guess if kubelet client cert rotation is enabled - update the kubelet.conf to use the rotatable cert/key	2019-11-13 15:49:33 +02:00
David Eads	3aede35b3b	dynamic reload cluster authentication info for aggregated API servers	2019-11-13 07:54:27 -05:00
Igor Zibarev	6350095d3c	scheduler: make algorithm source an option Changes scheduler.New so that algorithm source is moved from the parameter to an option. The default algorithm source is source with the DefaultProvider.	2019-11-13 10:22:29 +03:00
RainbowMango	b2fbdee9bb	Deal with auto-generated files. - Update bazel by hack/update-bazel.sh	2019-11-13 10:32:53 +08:00
RainbowMango	ac0562b00c	Add metrics flag to show hidden metrics to kube-apiserver	2019-11-13 10:32:52 +08:00
Kubernetes Prow Robot	eedfb6bc7a	Merge pull request #79223 from rosti/kubeadm-component-configs-versioned kubeadm: component configs versioned	2019-11-12 15:38:11 -08:00
Kubernetes Prow Robot	ea2750eaa6	Merge pull request #84718 from yastij/remove-validators remove system validators package from kubeadm and use k8s.io/system-validators	2019-11-12 11:50:53 -08:00
Kubernetes Prow Robot	94efa988f4	Merge pull request #84813 from deads2k/admission-feature-gates remove global variable dependency from admission plugins	2019-11-12 10:23:14 -08:00
Sandeep Rajan	f931dad722	bump coredns version and update manifest	2019-11-12 13:05:09 -05:00
Kubernetes Prow Robot	36373b37fd	Merge pull request #84672 from hwdef/fix-staticcheck2 cmd:fix staticcheck warning	2019-11-12 09:06:06 -08:00
Rostislav M. Georgiev	ec4840f0b2	kubeadm: Amend the hyperkube deprecation change The PR introducing `5bb8069` got merged accidentally (the CI robot not respecting a hold). Hence, the feedback to that PR is merged separately. Signed-off-by: Rostislav M. Georgiev <rostislavg@vmware.com>	2019-11-12 16:23:05 +02:00
Kubernetes Prow Robot	681d22428b	Merge pull request #84768 from liggitt/delegated-authnz-v1 switch delegated authnz to v1 APIs	2019-11-12 04:48:35 -08:00
fabriziopandini	a372dff648	alpha certs tries to read in-cluster config	2019-11-12 10:35:31 +01:00
Yassine TIJANI	b9fe59c93e	remove system validators package from kubeadm and use k8s.io/system-validators instead Signed-off-by: Yassine TIJANI <ytijani@vmware.com>	2019-11-12 01:09:56 +01:00
Kubernetes Prow Robot	cf06a2efd6	Merge pull request #85095 from liggitt/protocol_errors Plumb configured acceptContentType to client config	2019-11-11 14:46:58 -08:00
Kubernetes Prow Robot	e008523f76	Merge pull request #85092 from fabriziopandini/alpha-certs-skips-missing-certs kubeadm: alpha certs should skip missing files	2019-11-11 14:46:47 -08:00
Jordan Liggitt	7349a824df	generated	2019-11-11 17:19:12 -05:00
Jordan Liggitt	d54a70db5c	Switch kubelet/aggregated API servers to use v1 subjectaccessreviews	2019-11-11 17:19:11 -05:00
Jordan Liggitt	5ef4fe959a	Switch kubelet/aggregated API servers to use v1 tokenreviews	2019-11-11 17:19:10 -05:00
Kubernetes Prow Robot	fc0bf06983	Merge pull request #85044 from neolit123/1.17-deprecate-cri-socket-upgrade kubeadm: remove the deprecated "--cri-socket" flag for "upgrade apply"	2019-11-11 12:56:37 -08:00
Jordan Liggitt	1cac7457a2	Plumb configured acceptContentType to client config	2019-11-11 10:54:38 -05:00
Rostislav M. Georgiev	5bb80694ec	kubeadm: Deprecate hyperkube use As the hyperkube image is itself deprecated and moved out of tree, its use with kubeadm gets deprecated too. Hence, deprecation messages will be printed when it is used. Signed-off-by: Rostislav M. Georgiev <rostislavg@vmware.com>	2019-11-11 17:03:25 +02:00
fabriziopandini	7d986a982c	alpha certs skip missing files	2019-11-11 15:48:49 +01:00
Kubernetes Prow Robot	939e1e6488	Merge pull request #85043 from neolit123/1.17-enable-secure-ports kubeadm: use the secure ports for kube-scheduler and kcm health checks	2019-11-10 13:27:01 -08:00
Lubomir I. Ivanov	ebfdb25c05	kubeadm: always use a short timeout for clientset creation ToClientSet() in kubeconfig.go creates a clientset from the passed Config object (kubeconfig). For IP addresses that are not reachable e.g. Get() calls for ConfigMaps can block for a few minutes with the default timeout. Modify the timeout to a shorter value by passing an override.	2019-11-10 05:39:38 +02:00
Kubernetes Prow Robot	01676976c9	Merge pull request #85017 from LouisJackman/remove-goroutine-leak-in-kubeadm-wait Remove potential Goroutine leak in kubeadm wait.go	2019-11-09 14:03:40 -08:00
Lubomir I. Ivanov	efc0ec5ffe	kubeadm: remove the deprecated "--cri-socket" flag for "upgrade apply" Remove the flag "--cri-socket" from the "kubeadm upgrade apply" command. It has been marked as deprecated since 1.14.	2019-11-09 23:34:56 +02:00
Lubomir I. Ivanov	23ba857b50	kubeadm: use the secure ports for kube-scheduler and kcm health checks The insecure ports were deprecated in 1.12 and 1.13.	2019-11-09 23:21:39 +02:00
Kubernetes Prow Robot	1ca74c7991	Merge pull request #85030 from ahg-g/ahg-nodestoscore Set default percentageOfNodesToScore in kube-scheduler back to "adaptive"	2019-11-09 11:11:39 -08:00
Kubernetes Prow Robot	9920b733ba	Merge pull request #85024 from neolit123/1.17-fix-etcd-node-upgrade kubeadm: fix skipped etcd upgrade on secondary CP nodes	2019-11-09 07:13:39 -08:00
Abdullah Gharaibeh	9fb380ceff	set default percentageOfNodesToScore in kube-scheduler back to 0 (maning adaptive)	2019-11-09 06:34:06 -05:00
Kubernetes Prow Robot	49a9b6cadf	Merge pull request #84727 from danwinship/ipv6-bind fix apiserver to advertise IPv6 endpoints if bound to IPv6	2019-11-08 18:44:24 -08:00
Lubomir I. Ivanov	cc0320d41a	kubeadm: fix skipped etcd upgrade on secondary cp nodes	2019-11-09 03:59:59 +02:00
Kubernetes Prow Robot	3c7706bf9c	Merge pull request #84591 from TheLastProject/feature/print-join-as-admin-command Let token create help with joining a master	2019-11-08 13:48:43 -08:00
Louis Jackman	62e314a556	Remove potential Goroutine leak in kubeadm wait.go There are two writes yet only one read on a non-buffered channel that is created locally and not passed anywhere else. Therefore, it could leak one of its two spawned Goroutines if either: * The provided `f` takes longer than an erroneous result from `waiter.WaitForHealthyKubelet`, or; * The provided `f` completes before an erroneous result from `waiter.WaitForHealthyKubelet`. The fix is to add a one-element buffer so that the channel write happens for the second Goroutine in these cases, allowing it to finish and freeing references to the now-buffered channel, letting it to be GC'd.	2019-11-08 21:05:19 +00:00
David Eads	675c2fb924	add featuregate inspection as admission plugin initializer	2019-11-08 13:07:40 -05:00
Kubernetes Prow Robot	ab1b374dd9	Merge pull request #84523 from rajansandeep/skipmigration Retain CoreDNS corefile when migration fails in kubeadm	2019-11-08 09:00:29 -08:00
Kubernetes Prow Robot	ae15368355	Merge pull request #84351 from wojtek-t/promote_node_lease_to_GA Promote node lease to GA	2019-11-08 09:00:15 -08:00
Sylvia van Os	dea6d6491a	Add --certificate-key flag to token create	2019-11-07 21:27:31 +01:00
Kubernetes Prow Robot	84fcf126c1	Merge pull request #84662 from dims/script-based-hyperkube-to-avoid-dependencies Script based hyperkube to avoid dependencies	2019-11-07 09:04:50 -08:00
Kubernetes Prow Robot	a5fe905be4	Merge pull request #82705 from deads2k/agg-authn-publish use controller to publish cluster authentication info	2019-11-07 09:03:10 -08:00
Kubernetes Prow Robot	c843d9614c	Merge pull request #84888 from neolit123/1.17-fix-kube-proxy-env-vars kubeadm: fix an issue with the kube-proxy container env. variables	2019-11-07 04:37:09 -08:00
Kubernetes Prow Robot	73b2c82b28	Merge pull request #83592 from jianzzha/opt-reserved-cpus added --reserved-cpus kubelet command option	2019-11-06 22:14:42 -08:00
Lubomir I. Ivanov	0b4e5ee3b8	kubeadm: fix an issue with the kube-proxy container env. variables `3993c42431` introduced the propagation of _PROXY host env. variables to the kube-proxy container. To allow The NODE_NAME variable to be properly updated by the downward API make, sure we preserve the existing variables when adding _PROXY.	2019-11-07 03:05:59 +02:00
Jordan Liggitt	297570e06a	hack/update-vendor.sh	2019-11-06 17:42:34 -05:00
Kubernetes Prow Robot	e6287b05c0	Merge pull request #84812 from alculquicondor/fix/write-config Write scheduler configuration from config file	2019-11-06 12:20:58 -08:00
Kubernetes Prow Robot	6ca4854ddf	Merge pull request #84774 from mm4tt/kubemark_owners Add sig-scalability-approvers/reviewers as kubemark approvers/reviewers	2019-11-06 12:20:22 -08:00
Dan Winship	afa0b808f8	Fix apiserver to advertise IPv6 endpoints if bound to IPv6 Also rename utilnet.ChooseBindAddress() to ResolveBindAddress(), to better describe its functionality.	2019-11-06 11:31:43 -05:00
Sandeep Rajan	16191db353	skip deployment update if migration fails	2019-11-06 10:55:54 -05:00
David Eads	be8af0de1b	remove exist client hooks	2019-11-06 10:17:19 -05:00
David Eads	7351c86860	publish cluster authentication trust via controller	2019-11-06 10:17:19 -05:00
Davanum Srinivas	30965676f3	Drop cmd/hyperkube	2019-11-06 09:11:35 -05:00
Jianzhu Zhang	89dfd24483	added --reserved-cpus kubelet command option	2019-11-06 07:33:52 -05:00
Rostislav M. Georgiev	994df0d631	kubeadm: use versioned component configs This change removes dependencies on the internal types of the kubelet and kube-proxy component configs. Along with that defaulting and validation is removed as well. kubeadm will display a warning, that it did not verify the component config upon load. Signed-off-by: Rostislav M. Georgiev <rostislavg@vmware.com>	2019-11-06 14:15:57 +02:00
Matt Matejczyk	14e731924a	Add sig-scalability-approvers/reviewers as kubemark approvers/reviewers	2019-11-06 08:51:49 +01:00
Alex Wang	e85ebccb57	enable profiling by default in the scheduler	2019-11-06 15:25:35 +08:00
Kubernetes Prow Robot	6f08d42dec	Merge pull request #84815 from alculquicondor/fix/config-validation Validate scheduler configuration from config file	2019-11-05 22:19:18 -08:00
Kubernetes Prow Robot	17874d6db3	Merge pull request #84781 from Gerry-Lee/UseTimeUtilInsteadOfTimeSub Use time.Until instead of t.Sub(time.Now())	2019-11-05 22:18:43 -08:00
Kubernetes Prow Robot	2aeacf025b	Merge pull request #84723 from hypnoglow/fix-golint-kubeapiserver Fix golint issues in pkg/kubeapiserver	2019-11-05 22:18:20 -08:00
Mike Dame	9e2591f867	Change scheduler ComponentConfig fields to nilable As part of graduating the scheduler's component config to beta, we require configurable fields to be nilable pointers (see https://github.com/kubernetes/kubernetes/issues/78109). This enables the ability to distinguish between default and unset values. We are only applying this change to external types, and reacting in our defaulting logic. This also reverts existing internal component config fields which were pointers to be non-pointers, for consistency.	2019-11-05 17:06:06 -05:00
Aldo Culquicondor	37efa751c7	Validate scheduler configuration from config file Signed-off-by: Aldo Culquicondor <acondor@google.com>	2019-11-05 15:12:46 -05:00
Aldo Culquicondor	49ea5afaf7	Write scheduler configuration from config file Signed-off-by: Aldo Culquicondor <acondor@google.com>	2019-11-05 14:35:02 -05:00
Igor Zibarev	03dfa1a641	Fix golint issues in pkg/kubeapiserver	2019-11-05 22:25:32 +03:00
Haiwei Li	696734a772	use time.Until instead of t.Sub(time.Now())	2019-11-05 17:20:34 +08:00
Kubernetes Prow Robot	3e5f6bdaa4	Merge pull request #84129 from obitech/lenient_path_strict_decoding_kube_scheduler Add lenient decoding path for v1alpha1 kube-scheduler config	2019-11-05 00:56:38 -08:00
wojtekt	ffad401b4e	Promote NodeLease feature to GA	2019-11-05 09:01:12 +01:00
Kubernetes Prow Robot	aaa5707896	Merge pull request #84677 from mikedanese/cfssl remove cfssl dependencies	2019-11-04 15:28:53 -08:00
Kubernetes Prow Robot	1d1385af91	Merge pull request #83474 from msau42/topology-ga CSI Topology ga	2019-11-04 15:28:27 -08:00
Mike Danese	fe51712288	refactor into seperate authority package	2019-11-04 10:56:06 -08:00
hwdef	5c6ed21d34	cmd:fix staticcheck warning	2019-11-03 00:00:54 +08:00
Kubernetes Prow Robot	dc8880908f	Merge pull request #83832 from gongguan/deprecate_cleanup-ipvs_flag deprecate cleanup-ipvs flag	2019-11-01 23:59:39 -07:00
louisgong	f147b6e555	deprecate cleanup-ipvs flag	2019-11-02 10:09:50 +08:00
Kubernetes Prow Robot	529d5dd4b2	Merge pull request #84626 from hwdef/fix-staticcheck1 cmd/kubeadm/app: fix staticcheck warning	2019-11-01 10:21:40 -07:00
hwdef	eae3e3ce8c	cmd/kubeadm/app: fix staticcheck warning	2019-11-01 10:39:56 +08:00
Kubernetes Prow Robot	01d20c689f	Merge pull request #84286 from bart0sh/PR0083-kubeadm-Token-remove-ObjectMeta kubeadm: remove ObjectMeta from output.BootstrapTooken	2019-10-31 10:21:53 -07:00
obitech	b15aba547a	Add lenient decoding path for v1alpha1 kube-scheduler config This implements a lenient path for decoding a kube-scheduler config file. The config file gets decoded with a strict serializer first, if that fails a lenient CodecFactory that has just v1alpha1 registered into it is used for decoding. The lenient path is to be dropped when support for v1alpha1 is dropped. For more information on the discussion see #82924 and the linked PRs.	2019-10-31 13:43:52 +01:00
Kubernetes Prow Robot	ef479c1a6f	Merge pull request #84559 from yastij/prox-env-kubeproxy propagate proxy env var to kube-proxy	2019-10-31 04:15:37 -07:00
Kubernetes Prow Robot	7fd399e4be	Merge pull request #84143 from phenixblue/master Add lenient decoding path for v1alpha1 kube-proxy config	2019-10-30 13:37:36 -07:00
Yassine TIJANI	3993c42431	propagate proxy env var to kube-proxy Signed-off-by: Yassine TIJANI <ytijani@vmware.com>	2019-10-30 16:18:43 +01:00
Kubernetes Prow Robot	e1d3cc74e5	Merge pull request #84329 from jingyih/update_etcd_server_to_3.4 Update default etcd server to 3.4.3	2019-10-30 02:30:52 -07:00
Joe Searcy	10879d3bd4	Add lenient decoding path for v1alpha1 kube-proxy Removed unneeded comments Matched style from other PR's Only print error when lenient decoding is successful Update Bazel for BUILD Comment out existing strict decoder tests Added tests for leniant path Added comments to explain test additions Cleanup TODO's and tests Add explicit newline for appended config	2019-10-30 01:26:27 -04:00
Sandeep Rajan	7074f28dd2	retain corefile when migration fails	2019-10-29 12:11:59 -04:00
Kubernetes Prow Robot	c16f668799	Merge pull request #83881 from SataQiu/fix-kubelet-20191014 Fix bug of kubelet enable-cadvisor-json-endpoints flag	2019-10-29 05:52:43 -07:00
Jingyi Hu	706cde51c5	Update default etcd server to 3.4.3	2019-10-28 18:29:37 -07:00
Kubernetes Prow Robot	28887de8cd	Merge pull request #84476 from neolit123/1.17-docker-19.03 kubeadm-validators: bump the latest validated Docker version to 19.03	2019-10-28 17:49:08 -07:00
Kubernetes Prow Robot	b6c8f4916d	Merge pull request #84468 from neolit123/1.17-kubeadm-flex-volumes kubeadm: always mount a flex volume path for the controller-manager	2019-10-28 14:09:39 -07:00
Kubernetes Prow Robot	486e2380bd	Merge pull request #83692 from yastij/fix-events-scheduler add a fallback for kube-scheduler when events.k8s.io is disabled	2019-10-28 14:08:43 -07:00
Michelle Au	fb6dfeb718	Convert attach-detach controller to use v1.CSINode	2019-10-28 13:41:13 -07:00
Lubomir I. Ivanov	772e2e4e39	kubeadm-validators: bump the latest validated Docker version to 19.03	2019-10-28 22:24:46 +02:00
Lubomir I. Ivanov	7fa571bdb5	kubeadm: always add a flex volume path for the controller-manager Checking if the path exists before creating the volume is problematic because the path will be created regardless after the initial call to "kubeadm init" and once the CM Pod is running. Then on subsequent calls to "kubeadm init" or the "control-plane" phase the manifest for the CM will be different. Always mount this path, but also consider the user provided flag override from ClusterConfiguration.	2019-10-28 20:21:15 +02:00
Yassine TIJANI	f970b34137	add a fallback for kube-scheduler when events.k8s.io is disabled Signed-off-by: Yassine TIJANI <ytijani@vmware.com>	2019-10-28 19:09:47 +01:00
wojtekt	ce499ac286	Migrate components to EndpointsLeases leader election lock	2019-10-28 09:09:03 +01:00
Kubernetes Prow Robot	41730db3f0	Merge pull request #84297 from liu-cong/custompred Convert NodeLabelPresence custom predicate to filter plugin.	2019-10-26 09:57:23 -07:00
Kubernetes Prow Robot	d379ab2697	Merge pull request #84288 from wojtek-t/cleanup_conversions_registrations Cleanup conversions registrations	2019-10-25 22:53:22 -07:00
Cong Liu	571cea0519	Convert NodeLabelPresence custom predicate to filter plugin.	2019-10-25 19:31:17 -04:00
Kubernetes Prow Robot	46b33af8ef	Merge pull request #84309 from hypnoglow/remove-test kubeadm: remove commented test	2019-10-25 13:03:51 -07:00
Kubernetes Prow Robot	1732b435b3	Merge pull request #83822 from zouyee/proxy-remove set config.BindAddress to IPv4 address "127.0.0.1" if not specified	2019-10-25 11:15:39 -07:00
Kubernetes Prow Robot	09f453ff83	Merge pull request #83987 from wenjiaswe/etcd_client_3_4_2 Update etcd client to v3.4.3 in k8s v1.17	2019-10-25 08:29:39 -07:00
zouyee	a3e0ac2951	set config.BindAddress to IPv4 address "127.0.0.1" if not specified Signed-off-by: Zou Nengren <zouyee1989@gmail.com>	2019-10-25 21:46:41 +08:00
Jordan Liggitt	0e2f2dde4d	Feature-gate CSINode and CSIDriver informer starts	2019-10-24 17:44:25 -04:00
Wenjia Zhang	660b17d0ae	Pin dependencies and update vendors	2019-10-24 14:09:24 -07:00
Wenjia Zhang	9ead9373f3	Resolve uncompatibility from update: etcd CAFile -> TrustedCAFIle	2019-10-24 14:09:24 -07:00
Wenjia Zhang	3b274fad2a	Replace github.com/coreos/etcd by go.etcd.io/etcd	2019-10-24 14:09:24 -07:00
Igor Zibarev	c1381282a3	kubeadm: remove commented test Removes commented test TestInitConfigurationMarshallingFromFile as requested per https://github.com/kubernetes/kubeadm/issues/1431	2019-10-24 22:58:01 +03:00
Kubernetes Prow Robot	09a251ce92	Merge pull request #84274 from liggitt/beta-gate-pdb-informers Feature-gate PDB informer starts	2019-10-24 11:56:34 -07:00
wojtekt	7b6bcdf780	Autogenerated code	2019-10-24 20:21:00 +02:00
Ed Bartosh	ae95985908	kubeadm: remove ObjectMeta from output.BootstrapTooken metav1.TypeMeta is what needed to make a runtime object. ObjectMeta is not needed and can be safely removed.	2019-10-24 14:22:09 +03:00
Kubernetes Prow Robot	2c4cba8aa0	Merge pull request #82365 from jkaniuk/pod-gc Pod GC controller - use node lister	2019-10-24 03:13:06 -07:00
Jordan Liggitt	feac7a40f5	Feature-gate PDB informer starts	2019-10-24 01:17:39 -04:00
David Eads	6beb96261e	wire up a means to dynamically reload ca bundles for kube-apiserver	2019-10-23 11:01:56 -04:00
Jacek Kaniuk	39883f08bf	Pod GC controller - use node lister	2019-10-23 16:54:54 +02:00
Cristian Dima	da759609dc	in pkg/controller/service rename service_controller.go to controller.go	2019-10-23 01:52:19 +03:00
Kubernetes Prow Robot	9fa1bc8003	Merge pull request #83422 from yastij/remove-ipallocator remove ipallocator in favor of k/utils net package	2019-10-22 12:52:13 -07:00
Yassine TIJANI	f984b4c7a2	remove ipallocator in favor of k/utils net package Signed-off-by: Yassine TIJANI <ytijani@vmware.com>	2019-10-22 18:37:13 +02:00
Ted Yu	a7231fc93a	Close the file after reading in verifydependencies#main	2019-10-19 10:46:50 -07:00
draveness	1163a1d51e	feat: update taint nodes by condition to GA	2019-10-19 09:17:41 +08:00
Bob Killen	d314695b31	Prune inactive owners from cmd/kube-controller-manager/OWNERS.	2019-10-17 06:29:26 -04:00
Kubernetes Prow Robot	4b58ef0e14	Merge pull request #83950 from yastij/update-reset-cni stop removing cni directories as they aren't installed by kubeadm	2019-10-17 03:19:02 -07:00
Kubernetes Prow Robot	1dc5235d0a	Merge pull request #84012 from neolit123/revert-83339-1.17-master-cert-rotation Revert "kubeadm: enable kubelet certificate rotation on primary CP nodes"	2019-10-17 01:47:39 -07:00
Kubernetes Prow Robot	bdc3f96838	Merge pull request #83989 from wojtek-t/remove_coordination_v1beta1 Swtich nodelifecyclecontroller to coordination/v1	2019-10-17 01:47:29 -07:00
Kubernetes Prow Robot	3719fcdffa	Merge pull request #82072 from draveness/feature/use-context-instead-of-channel feat(scheduler): use context in scheduler package	2019-10-17 01:46:39 -07:00
Kubernetes Prow Robot	b4d3dc3718	Merge pull request #83932 from SataQiu/report-ca-expiration kubeadm: enhance certs check-expiration to show the expiration info of related CAs	2019-10-16 20:54:51 -07:00
draveness	47a6c5b693	feat(scheduler): use context in the scheduler package + Use context instead of stopCh + Add context to the scheduling framework interface	2019-10-17 09:03:55 +08:00
Lubomir I. Ivanov	30db92004a	Revert "kubeadm: enable kubelet certificate rotation on primary CP nodes"	2019-10-16 20:45:55 +03:00
Kubernetes Prow Robot	1086b5e5cb	Merge pull request #83949 from bart0sh/PR0082-kubeadm-use-strings-in-TestTokenOutput kubeadm: use strings in TestTokenOutput	2019-10-16 09:36:25 -07:00
Kubernetes Prow Robot	da552df5a0	Merge pull request #83910 from mrkm4ntr/scheduler-log-level Support dynamically set log level for kube-scheduler	2019-10-16 09:34:47 -07:00
Yassine TIJANI	e591190cf2	stop removing cni directories as they aren't installed by kubeadm Signed-off-by: Yassine TIJANI <ytijani@vmware.com>	2019-10-16 17:07:13 +02:00
SataQiu	68f7c2ade9	kubeadm: enhance certs check-expiration to show the expiration info of related CAs	2019-10-16 22:52:01 +08:00
wojtekt	cf9203501e	Swtich nodelifecyclecontroller to coordination/v1	2019-10-16 10:59:02 +02:00
Kubernetes Prow Robot	63cf2e260b	Merge pull request #83819 from mrbobbytables/emeritus-jbeda Move jbeda to emeritus status.	2019-10-15 23:06:20 -07:00
Kubernetes Prow Robot	af6f302e46	Merge pull request #83498 from danwinship/proxy-health Fix kube-proxy healthz server for proxier sync loop changes	2019-10-15 23:04:58 -07:00
Kubernetes Prow Robot	cb3b715de2	Merge pull request #83804 from jpbetz/etcd-3_3_17_server Upgrade to etcd server 3.3.17	2019-10-15 12:50:09 -07:00
Ed Bartosh	3dedaf440b	kubeadm: use strings in TestTokenOutput Used strings instead of bytes in the TestTokenOutput test cases as expected output is a plain text. This should also simplify the data representation and the test code a bit.	2019-10-15 16:32:05 +03:00
Kubernetes Prow Robot	46a29a0cc3	Merge pull request #71674 from grayluck/firewall-event-msg Change XPN firewall change msg. Should be required by security admin	2019-10-14 21:09:51 -07:00
Shintaro Murakami	a86634bc17	Support dynamically set log level for kube-scheduler	2019-10-15 01:32:41 +09:00
SataQiu	90db2a479d	fix bug of kubelet flag	2019-10-14 14:28:02 +08:00
Joe Betz	c92bd5e7b5	Upgrade to etcd server 3.3.17	2019-10-13 17:17:15 -07:00
Kubernetes Prow Robot	f0e1d394f1	Merge pull request #83661 from jfbai/fix-kubeadm-join Add warning when --certificate-key is set and --control-plane is not.	2019-10-13 08:00:35 -07:00
Jianfei Bai	6dbf154d43	Add warning when --certificate-key is set and --control-plane is not.	2019-10-13 21:39:12 +08:00
Ahmad Diaa	4448a1cea9	move factory package to scheduler	2019-10-12 23:03:07 +02:00
Bob Killen	e65d8bb11f	Move jbeda to emeritus status.	2019-10-11 17:46:18 -04:00
Kubernetes Prow Robot	c980000176	Merge pull request #83663 from draveness/feature/add-shared-informers-factory feat(scheduler): expose SharedInformerFactory to the framework handle	2019-10-11 09:29:40 -07:00
Kubernetes Prow Robot	833e8dc10b	Merge pull request #83736 from krzysied/kubemark_node_labels Kubemark node labels	2019-10-11 05:17:47 -07:00
Krzysztof Siedlecki	4bdf48eb2a	adding support for kubemark --node-labels flag	2019-10-11 11:26:42 +02:00
Kubernetes Prow Robot	4b2a326b2e	Merge pull request #83530 from neolit123/1.17-kubeadm-deprecate-upgrade-config kubeadm: add warning about 'upgrade apply/plan --config'	2019-10-10 20:31:39 -07:00
draveness	ee4dec65b5	feat(scheduler): expose SharedInformerFactory to the framework handle	2019-10-11 10:23:21 +08:00
Kubernetes Prow Robot	a5e6ac0a95	Merge pull request #83694 from ahg-g/ahg-adv-config [migration phase 1] Make scheduler cache, volume binder and listers available when registering default plugins	2019-10-10 19:00:21 -07:00
Lubomir I. Ivanov	276665c1a0	kubeadm: add warning about 'upgrade apply/plan --config' The flag has been problematic and abused by users. While perhaps its original purpose was to be able to feed a new version of the control-plane it also made it possible to apply modifications to the ClusterConfiguration object in the cluster. The lack of a feature in kubeadm for reconfiguration of running clusters resulted in users using this flag for the same purpose. While it works for certain scenarios like updating a static Pod for this control-plane only, it can result in unexpected behavior if the user has for example fed a node name different than the host name, when originally they created this node. kubeadm 1.16 introduced the "kustomize" feature that is a potential replacement for this user demand. Add warning that this flag should not be used.	2019-10-11 00:21:41 +03:00
Kubernetes Prow Robot	91b2a7af87	Merge pull request #83184 from odinuge/dynamic-kubelet-config Fix init order during starup for dynamic kubelet config	2019-10-10 13:41:20 -07:00
Abdullah Gharaibeh	456df97745	made scheduler cache and volume binder available when instantiating factories for default plugins	2019-10-10 16:21:29 -04:00
Kubernetes Prow Robot	6284c9ab52	Merge pull request #83720 from bart0sh/PR0080-kubeadm-remove-OutputFlagSpecified kubeadm: remove OutputFlagSpecified from PrintFlags	2019-10-10 07:32:12 -07:00
Kubernetes Prow Robot	4fb75e2f0d	Merge pull request #82616 from ghouscht/kubeadm-issue-1787 kubeadm: preserve order of user specified apiserver authorization-mode	2019-10-10 06:04:01 -07:00
Ed Bartosh	078f7a3537	kubeadm: remove OutputFlagSpecified from PrintFlags This field is not used in the kubeadm code. It was brought from cli-runtime where it's used to support complex relationship between command line parameters, which is not present in kubeadm.	2019-10-10 12:53:05 +03:00
Kubernetes Prow Robot	a7e0b768ee	Merge pull request #78764 from bart0sh/PR0070-kubeadm-structured-output-v2 Structured output for 'kubeadm token list'	2019-10-09 14:50:54 -07:00
Kubernetes Prow Robot	0ff761b14f	Merge pull request #82927 from obitech/kube_proxy_strict_serializer Enable strict serializer in kube-proxy	2019-10-09 11:05:50 -07:00
draveness	9646afb1f5	feat: add pod initial/max backoff duration to config API	2019-10-09 19:48:28 +08:00
Kubernetes Prow Robot	33809f24e6	Merge pull request #83556 from zouyee/kubeadminfo Complete output of docker info	2019-10-08 20:00:04 -07:00
Kubernetes Prow Robot	72d052a444	Merge pull request #81797 from yastij/move-metrics-util move util/metrics to component-base	2019-10-08 17:08:05 -07:00
Yassine TIJANI	c1487840bc	move util/metrics to component-base Signed-off-by: Yassine TIJANI <ytijani@vmware.com>	2019-10-08 14:42:31 +02:00
Kubernetes Prow Robot	0f02a0fadf	Merge pull request #83605 from hwdef/fix-spelling-mistake cmd: fix spelling mistake	2019-10-08 05:25:24 -07:00
Kubernetes Prow Robot	7a0801e1b8	Merge pull request #83339 from neolit123/1.17-master-cert-rotation kubeadm: enable kubelet certificate rotation on primary CP nodes	2019-10-08 03:45:11 -07:00
Kubernetes Prow Robot	c4108c9b4a	Merge pull request #83090 from Klaven/rm_validator_errors Removal of kubernetes error dependencies	2019-10-07 23:35:25 -07:00
hwdef	fea743b783	cmd: fix spelling mistake	2019-10-08 13:15:34 +08:00
Kubernetes Prow Robot	6564b34f9e	Merge pull request #83276 from Klaven/pr_v1beta1_dep Initial deprecation of kubeadm v1beta1 apis	2019-10-07 22:15:11 -07:00
Kubernetes Prow Robot	c8d4d626d8	Merge pull request #83528 from neolit123/1.17-kubeadm-fix-upgrade-node kubeadm: fix wrong default value for the "upgrade node --certificate-renewal" flag	2019-10-07 09:41:10 -07:00
Lubomir I. Ivanov	71cb27836d	kubeadm: delete boostrap-kubelet.conf after TLS bootstrap on init	2019-10-07 18:41:58 +03:00
Lubomir I. Ivanov	2dedfddf81	kubeadm: add means to create Node objects via the API client	2019-10-07 18:41:57 +03:00
Lubomir I. Ivanov	02469a023f	kubeadm: write boostrap-kubelet.conf during init	2019-10-07 15:22:08 +03:00
zouyee	361f20c874	Complete output of docker info Signed-off-by: Zou Nengren <zouyee1989@gmail.com>	2019-10-07 19:24:15 +08:00
Kubernetes Prow Robot	cd1fbf7cd4	Merge pull request #83548 from yutedz/docker-info-cmd Show the complete docker info command	2019-10-06 16:29:08 -07:00
Marek Counts	3a050344d0	Initial deprecation of kubeadm v1beta1 apis	2019-10-06 23:26:12 +00:00
Kubernetes Prow Robot	48b90db9c3	Merge pull request #83495 from tanjunchen/fix-typo remove the repeat word in documents	2019-10-06 15:05:08 -07:00
Ted Yu	4a26579335	Show the complete docker info command	2019-10-06 11:26:18 -07:00
tanjunchen	de3cf23414	remove the repeat word in documents	2019-10-06 23:32:01 +08:00
Lubomir I. Ivanov	218e9a5f77	kubeadm: renew certificates on "upgrade node" by default	2019-10-05 19:13:57 +03:00
Lubomir I. Ivanov	79dd60e201	kubeadm: use CertificateRenewal constant for "upgrade apply"	2019-10-05 19:10:53 +03:00
Kubernetes Prow Robot	5a4c6c2b34	Merge pull request #83475 from fabriziopandini/127.0.0.1-as-advertise-address Kubeadm: allow users to use 127.0.0.1 as advertise address	2019-10-04 13:23:26 -07:00
Kubernetes Prow Robot	6dde8daa76	Merge pull request #83030 from obitech/kube_scheduler_strict_serializer Enable strict serializer in kube-scheduler	2019-10-04 10:22:04 -07:00
Kubernetes Prow Robot	7f6d7afb8e	Merge pull request #83314 from fabriziopandini/add-etcd-version kubeadm: add 1.18 entry in the etcd map	2019-10-04 08:50:18 -07:00
Kubernetes Prow Robot	7ac65858bb	Merge pull request #82371 from deads2k/cert-reload-delegated add ability to authenticators for dynamic update of certs for delegated authn	2019-10-04 08:50:04 -07:00
Dan Winship	0f10102c16	Better distinguish the two kinds of proxy health check servers Kube-proxy runs two different health servers; one for monitoring the health of kube-proxy itself, and one for monitoring the health of specific services. Rename them to "ProxierHealthServer" and "ServiceHealthServer" to make this clearer, and do a bit of API cleanup too.	2019-10-04 10:37:58 -04:00
fabriziopandini	fd2c678b1c	127.0.0.1-as-advertise-address	2019-10-04 08:41:07 +02:00
Kubernetes Prow Robot	0a17315e18	Merge pull request #83418 from ahg-g/ahg-first-priority Refactor scheduler.New so that all framework-related parameters are options	2019-10-03 10:00:11 -07:00
Abdullah Gharaibeh	30e7016ccf	Refactor scheduler.New so that all framework-related parameters are passed as options	2019-10-03 11:39:59 -04:00
Kubernetes Prow Robot	5fbda60c14	Merge pull request #82077 from deads2k/poststart add ability to pre-configure poststarthooks for apiservers	2019-10-03 08:16:10 -07:00
Ed Bartosh	ba0c84ade8	Test token output Tested JSON, YAML, Go Template and Text token output formats.	2019-10-03 14:13:14 +03:00
Ed Bartosh	766e2a45f8	kubeadm token list: implement structured output Used cli-runtime API to print bootstrap tokens in 5 formats: - TEXT (identical to the current output) - YAML - JSON - JSONPATH - Go template	2019-10-03 14:13:14 +03:00
Ed Bartosh	3765f21012	Add internal kubeadm output API Added internal structures and APIs to handle kubeadm structured output.	2019-10-03 14:13:00 +03:00
Ed Bartosh	8cee92dfa8	create new api group output.kubeadm.k8s.io This group contains APIs for handling kubeadm structured output.	2019-10-03 12:40:12 +03:00
Kubernetes Prow Robot	4afcba42be	Merge pull request #83261 from liggitt/yaml-limits limit yaml/json decode size	2019-10-02 20:28:08 -07:00
Jordan Liggitt	8ef4566cef	Limit YAML/JSON decode size	2019-10-02 21:52:19 -04:00
Kubernetes Prow Robot	f3981710db	Merge pull request #82473 from Nordix/kubeadm-dualstack-service-ip Kubeadm DualStack Support for List of Service IPs	2019-10-02 11:26:08 -07:00
fabriziopandini	2ab2fc8cae	make test pass	2019-10-02 12:10:58 +02:00
Rafael Fernández López	cd1ad5646e	kubeadm: add test to detect panics when given certain feature gates This integration test allows us to detect if a given feature gate will panic kubeadm. This builds on the assumption that a golang panic makes the process exit with the code 2. These tests are not trying to check if the init process succeeds or not, their only purpose is to ensure that the exit code of the `kubeadm init` invocation is not 2, thus, reflecting a golang panic. Some refactors had to be made to the test code, so we return the exit code along with stdout and stderr.	2019-10-01 20:37:37 +02:00
David Eads	51195dd860	add ability to authenticators for dynamic update of certs	2019-10-01 09:50:20 -04:00
David Eads	f14f4c933e	add ability to pre-configure poststarthooks for apiservers	2019-10-01 09:08:18 -04:00
fabriziopandini	7c42fe77fe	1.18 entry in etcd map	2019-10-01 09:17:31 +02:00
yankaiz	bd03c3a096	Change XPN firewall change message, should be required by security admin. Add l7lbSrcRngsFlag to gce_loadbalancer.go so that ingress can have fewer source ranges for l7 health checks.	2019-09-30 11:19:42 -07:00
fabriziopandini	b77b8bdb47	bump versions for v1.17 cycle	2019-09-30 11:08:03 +02:00
Kubernetes Prow Robot	14e5adfc85	Merge pull request #82683 from davidz627/fix/translationStruct Refactor CSI Translation Library into a struct that is injected into various components to simplify unit testing	2019-09-29 10:11:37 -07:00
Marek Counts	114d7855f3	Removal of kubernetes error dependancies removed kubernetes error deps	2019-09-28 15:09:48 +00:00
Odin Ugedal	2292873fdd	Fix dynamic kubelet config init order If the metrics ain't created, the values will not be registered, and the metrics will not be visible in the metric endpoint. Therefore move init of dynamic kubelet config below the startup of the kubelet server (and the init of metrics).	2019-09-28 11:55:43 +02:00
Kubernetes Prow Robot	74d2822662	Merge pull request #72535 from tallclair/content-type Always set content-type & nosniff	2019-09-27 18:43:39 -07:00
David Zhu	92cb06a2e7	Refactor CSI Translation Library into a struct that is injected into various components to simplify unit testing in future	2019-09-27 12:59:53 -07:00
Kubernetes Prow Robot	dd5efc420b	Merge pull request #82511 from abursavich/keyusage Fix typos in KeyUsage constant names	2019-09-27 03:23:35 -07:00
Kubernetes Prow Robot	478c26c0dc	Merge pull request #82033 from logicalhan/reviewers add logicalhan to reviewers for api-machinery directories	2019-09-26 16:55:37 -07:00
obitech	6acef2b94c	Enable strict serializer with codec factory - Enabling strict serializer will throw errors on e.g. duplicate or unknown fields in YAML configs - Add test cases for duplicate and unknown fields	2019-09-26 17:41:07 +02:00
Kubernetes Prow Robot	ff8716f4cf	Merge pull request #83116 from neolit123/1.16-OWNERS kubeadm: update OWNERS for 1.16	2019-09-25 13:52:48 -07:00
Lubomir I. Ivanov	bbee054adc	kubeadm: update OWNERS for 1.16	2019-09-25 18:07:38 +03:00
Kubernetes Prow Robot	aba654f96b	Merge pull request #81744 from praseodym/fix-staticcheck-pkg/scheduler Fix staticcheck failures for pkg/scheduler/...	2019-09-24 00:25:27 -07:00
Kubernetes Prow Robot	af98e6a92a	Merge pull request #82629 from cewood/add-log-version Add version logging to kubemark	2019-09-23 14:55:40 -07:00
Mark Janssen	1a1b7001d6	Fix staticcheck failures for scheduler packages Errors from staticcheck: cmd/kube-scheduler/app/server.go:297:27: prometheus.Handler is deprecated: Please note the issues described in the doc comment of InstrumentHandler. You might want to consider using promhttp.Handler instead. (SA1019) pkg/apis/scheduling/v1alpha1/defaults.go:27:6: func addDefaultingFuncs is unused (U1000) pkg/apis/scheduling/v1beta1/defaults.go:27:6: func addDefaultingFuncs is unused (U1000) test/e2e/scheduling/predicates.go:757:6: func verifyReplicasResult is unused (U1000) test/e2e/scheduling/predicates.go:765:6: func getPodsByLabels is unused (U1000) test/e2e/scheduling/predicates.go:772:6: func runAndKeepPodWithLabelAndGetNodeName is unused (U1000) test/e2e/scheduling/limit_range.go:172:3: this value of pod is never used (SA4006) test/e2e/scheduling/limit_range.go:177:3: this value of pod is never used (SA4006) test/e2e/scheduling/limit_range.go:196:3: this value of pod is never used (SA4006) test/e2e/scheduling/limit_range.go:201:3: this value of pod is never used (SA4006) test/e2e/scheduling/limit_range.go:240:3: this value of pod is never used (SA4006) test/e2e/scheduling/taints.go:428:13: this value of err is never used (SA4006) test/e2e/scheduling/ubernetes_lite.go:219:2: this value of pods is never used (SA4006) test/integration/scheduler/extender_test.go:78:4: this value of resp is never used (SA4006) test/integration/volumescheduling/volume_binding_test.go:529:15: this result of append is never used, except maybe in other appends (SA4010) test/integration/volumescheduling/volume_binding_test.go:538:15: this result of append is never used, except maybe in other appends (SA4010)	2019-09-23 22:52:57 +02:00
obitech	f9b152abb0	Add strict serializer to codec factory in kube-proxy	2019-09-23 19:39:00 +02:00
Byron Wang	23b75cfcad	fix map assignment to entry in nil map,when use --feature-gates in kubeadm	2019-09-20 20:39:26 +08:00
Marek Counts	dfbb6fb6bb	replaced logs in validators to be warnings Originally kubeadm used klot in the validators to log These logs are converted to warnings and klog was removed.	2019-09-19 12:18:40 +00:00
Cameron Wood	aae0755fdc	Add version logging to kubemark	2019-09-18 10:06:29 +02:00
Kubernetes Prow Robot	67d928acdc	Merge pull request #82096 from logicalhan/version-deletion remove pkg/version and some of redundant copies of it	2019-09-17 14:27:16 -07:00
Kubernetes Prow Robot	e7090e8f5e	Merge pull request #81517 from danwinship/iptables-monitor drop firewalld monitoring, add better iptables monitor	2019-09-17 10:58:02 -07:00
Kubernetes Prow Robot	3a19f1e80b	Merge pull request #82472 from draveness/feature/remove-feature-gates-in-1-17 feat: cleanup several GA feature flags which should be removed in 1.17	2019-09-17 06:58:24 -07:00
Han Kang	866ea74326	remove pkg/version and some of redundant copies of it Change-Id: Ia58367c1b1274bfb49c8a4784051463abaf795de	2019-09-16 16:24:35 -07:00
Arvinderpal Wander	bacc06d8fc	kubeadm --service-cluster-ip-range supports a comma seperated list of service subnets. Update DNS, Cert, dry-run logic to support list of Service CIDRs. Added unit tests for GetKubernetesServiceCIDR and updated GetDNSIP() unit test to inclue dual-sack cases.	2019-09-16 09:33:43 -07:00
Kubernetes Prow Robot	01c046836b	Merge pull request #82243 from jfbai/refactor-kubeadm-calls refactor: replace all calls to os.Exit() / CheckErr().	2019-09-16 06:48:52 -07:00
Dan Winship	b6c3d5416a	Drop iptables firewalld monitoring support The firewalld monitoring code was not well tested (and not easily testable), would never be triggered on most platforms, and was only being taken advantage of from one place (kube-proxy), which didn't need it anyway since it already has its own resync loop. Since the firewalld monitoring was the only consumer of pkg/util/dbus, we can also now delete that.	2019-09-15 15:35:40 -04:00
Kubernetes Prow Robot	af88acc812	Merge pull request #82704 from ahg-g/ahg-default-registry Resolved cycle dependency in framework plugins registration	2019-09-13 18:06:40 -07:00
Abdullah Gharaibeh	3174d9c847	Added a noop plugin to make sure we have the dependencies worked out for the default registry of the scheduler framework.	2019-09-13 13:36:35 -04:00
Kubernetes Prow Robot	3ae81af183	Merge pull request #82521 from viviyww/master12 Modify the log of kube-proxy	2019-09-12 19:18:30 -07:00
Thomas Gosteli	40ab042f90	kubeadm: preserve order of user specified apiserver authorization-mode	2019-09-12 15:30:12 +02:00
Kubernetes Prow Robot	abfed68e16	Merge pull request #79758 from hzxuzhonghu/patch-5 Remove duplicate logging	2019-09-11 22:52:26 -07:00
Kubernetes Prow Robot	578bb43564	Merge pull request #82513 from beautytiger/kubeadm_upgrade_cleanup add line break in kubeadm upgrade logging message	2019-09-11 21:24:20 -07:00
Kubernetes Prow Robot	99c4f1301d	Merge pull request #81667 from mnogu/fix-static-check-in-controller-manager Fix a static check failure in controller-manager	2019-09-11 18:26:39 -07:00
Kubernetes Prow Robot	fa3dfa82b0	Merge pull request #82414 from SataQiu/kubeadm-20190906 kubeadm: code clean up about kustomize	2019-09-11 15:27:53 -07:00
Kubernetes Prow Robot	7ec4f4b4a6	Merge pull request #82391 from jiachengxu/apiserver-typo Fix a typo in cmd/kube-apiserver.	2019-09-11 15:27:23 -07:00
Kubernetes Prow Robot	61b30b062e	Merge pull request #82329 from m3ngyang/node-ctrl-check don't start the cloud node controller if cloudprovider.Instances is not supported	2019-09-11 15:26:08 -07:00
Kubernetes Prow Robot	1146e0c4ad	Merge pull request #82279 from deads2k/which-cert add identification for particular certificate controllers	2019-09-11 15:25:00 -07:00
Tim Allclair	ef6cba0b36	Always set content-type & nosniff	2019-09-11 15:01:43 -07:00
Kubernetes Prow Robot	681df277f5	Merge pull request #82193 from yutedz/svr-evt-ret Early return after sending to errCh in Options#eventHandler	2019-09-11 10:40:30 -07:00
Zhonghu Xu	fb3274759f	Remove duplicate logging	2019-09-11 14:58:04 +08:00
yangweiwei	2edc0468e7	Modify the log of kube-proxy Modify the warning log of kube-proxy when we run kube-proxy server with --proxy-mode, but in the config file, we omit it. Then it logs like ""{"log":"W0905 09:14:40.321571 1 server_others.go:249] Flag proxy-mode=\"\" unknown, assuming iptables proxy\n","stream":"stderr", "time":"2019-09-05T09:14:40.321858964Z"} This may lead to confusion. I think it should me modefied.	2019-09-11 09:06:21 +08:00
Kubernetes Prow Robot	7e060eec79	Merge pull request #81908 from tedyu/etcd-cluster-avail Remove Client#ClusterAvailable from interface	2019-09-10 17:42:46 -07:00
Kubernetes Prow Robot	1d016cc1d3	Merge pull request #81668 from darshanime/remove_default_service_cidr Deprecate default service IP CIDR	2019-09-10 14:31:45 -07:00
Kubernetes Prow Robot	d5da17e58e	Merge pull request #81432 from logicalhan/clean-shared-metrics delete shared metrics (post metrics-stability migration)	2019-09-10 14:30:32 -07:00
Guangming Wang	2bf3a07298	add line break in kubeadm upgrade logging message logging use Println instead of Printf	2019-09-10 11:53:33 +08:00
Andy Bursavich	c9c7c5409a	Fix typos in KeyUsage constant names	2019-09-09 18:39:56 -07:00
draveness	14dc59ee54	feat: remove EnableAggregatedDiscoveryTimeout feature gate	2019-09-09 09:55:54 +08:00
mengyang02	b4638519a9	init check for cloud node controller	2019-09-07 10:47:11 +08:00
SataQiu	c53f2f306a	kubeadm: code clean up	2019-09-06 18:40:44 +08:00
Kubernetes Prow Robot	836b901658	Merge pull request #82348 from jpbetz/kubeadm-etcd-image-tag Use etcd image version suffixes in kubeadm	2019-09-05 15:02:57 -07:00
Jiacheng Xu	637badc1f0	fix a typo in cmd/kube-apiserver.	2019-09-05 23:00:36 +02:00
Kubernetes Prow Robot	c8c1aeaa5c	Merge pull request #82248 from rosti/proxyless kubeadm: Fetching kube-proxy's config map is now optional	2019-09-05 11:30:30 -07:00
Joe Betz	4c2b0731cb	Simplify etcd image version usage in kubeadm	2019-09-05 10:28:23 -07:00
Joe Betz	5a3399f48d	Add etcd image version to kubeadm	2019-09-05 10:27:53 -07:00
Kubernetes Prow Robot	61ecdba9ca	Merge pull request #82289 from robscott/endpointslice-fixes Fixing bugs related to Endpoint Slices	2019-09-05 09:03:10 -07:00
Rostislav M. Georgiev	31b4c782c7	kubeadm: Fetching kube-proxy's config map is now optional Whenever kubeadm needs to fetch its configuration from the cluster, it gets the component configuration of all supported components (currently only kubelet and kube-proxy). However, kube-proxy is deemed an optional component and its installation may be skipped (by skipping the addon/kube-proxy phase on init). When kube-proxy's installation is skipped, its config map is not created and all kubeadm operations, that fetch the config from the cluster, are bound to fail with "not found" or "forbidden" (because of missing RBAC rules) errors. To fix this issue, we have to ignore the 403 and 404 errors, returned on an attempt to fetch kube-proxy's component config from the cluster. The `GetFromKubeProxyConfigMap` function now supports returning nil for both error and object to indicate just such a case. Signed-off-by: Rostislav M. Georgiev <rostislavg@vmware.com>	2019-09-05 18:25:22 +03:00
Kubernetes Prow Robot	c4c64673d7	Merge pull request #82199 from dims/update-to-etcd-3.3.15-0-image Update default etcd server to 3.3.15 for kubernetes 1.16	2019-09-05 06:35:10 -07:00
Jianfei Bai	fcfcd880fb	refactor: replace all calls to os.Exit() / CheckErr().	2019-09-05 10:16:53 +08:00
Rob Scott	8f9483d827	Fixing bugs related to Endpoint Slices This should fix a bug that could break masters when the EndpointSlice feature gate was enabled. This was all tied to how the apiserver creates and manages it's own services and endpoints (or in this case endpoint slices). Consumers of endpoint slices also need to know about the corresponding service. Previously we were trying to set an owner reference here for this purpose, but that came with potential downsides and increased complexity. This commit changes behavior of the apiserver endpointslice integration to set the service name label instead of owner references, and simplifies consumer logic to reference that (both are set by the EndpointSlice controller). Additionally, this should fix a bug with the EndpointSlice GenerateName value that had previously been set with a "." as a suffix.	2019-09-04 09:09:32 -07:00
Kubernetes Prow Robot	7e906ae145	Merge pull request #82047 from roberthbailey/owners Remove myself from reviewers across the repo	2019-09-04 04:35:00 -07:00
David Eads	e8b5781499	add identification for particular certificate controllers	2019-09-03 14:05:04 -04:00
Alexander Kanevskiy	7fb4a2be41	kubeadm: Form correct URL for IPv6 in HTTPProxy check Force correct syntax on host/port in URL of HTTPProxy check if the host argument is a raw IPv6 address string	2019-09-03 16:04:04 +03:00
Muneyuki Noguchi	9f19665eb6	Fix a static check failure in controller-manager	2019-08-31 03:01:02 +00:00
Kubernetes Prow Robot	7d40536c81	Merge pull request #82024 from codenrhoden/mv-hostutil Move HostUtil to pkg/volume/util/hostutil	2019-08-30 19:21:49 -07:00
Davanum Srinivas	8fbfdf8267	Update default etcd server to 3.3.15 for kubernetes 1.16 Change-Id: I68f1a5e5339d83077a1a9f312c4e6e33848886c5	2019-08-30 21:29:45 -04:00
Kubernetes Prow Robot	c86da8e2c1	Merge pull request #82048 from cheftako/kas-np4 Add support for konnectivity service to the etcd3 client.	2019-08-30 16:15:28 -07:00
Ted Yu	f1b314bf5a	Early return after sending to errCh in Options#eventHandler	2019-08-30 13:18:33 -07:00
Kubernetes Prow Robot	a7ac8d4c0b	Merge pull request #82146 from deads2k/agg-discovery-timeout-2 add a timeout for proxying discovery requests	2019-08-30 11:23:00 -07:00
Kubernetes Prow Robot	887edd2273	Merge pull request #82099 from lmdaly/single-numa-node-policy Topology Manager Policy: single-numa-node	2019-08-30 11:21:26 -07:00
Han Kang	d301e9c3a5	clean-up shared metrics code and remaining references (component-base's copy is a drop in replacement)	2019-08-30 10:41:52 -07:00
Walter Fender	edbb0fa2fe	Add support for konnectivity service to the etcd3 client. If konnectivity service is enabled, the etcd client will now use it. This did require moving a few methods to break circular dependencies. Factored in feedback from lavalamp and wenjiaswe.	2019-08-30 10:31:53 -07:00
Kubernetes Prow Robot	235f3ab3d9	Merge pull request #82127 from rajansandeep/bumpto1.6.2 Bump CoreDNS version in Kubeadm to 1.6.2	2019-08-30 09:40:23 -07:00
Travis Rhoden	935c23f2ad	Move HostUtil to pkg/volume/util/hostutil This patch moves the HostUtil functionality from the util/mount package to the volume/util/hostutil package. All `NewHostUtil` calls are changed to return concrete types instead of interfaces. All callers are changed to use the `NewHostUtil` methods instead of directly instantiating the concrete types.	2019-08-30 10:14:42 -06:00
Kubernetes Prow Robot	d3063c682b	Merge pull request #82103 from neolit123/1.16-kubeadm-fix-kubelet-rotate-certs-false kubeadm: fix a bug where the kubelet cert rotation was turned off	2019-08-30 08:00:26 -07:00
Kubernetes Prow Robot	1ade4ce269	Merge pull request #82091 from khenidak/ipvs-dualstack dualstack: IPVS proxier	2019-08-30 06:27:10 -07:00
David Eads	5521bf27c5	add temporary feature gate to allow disabling aggregated discovery timeout	2019-08-30 08:30:08 -04:00
Louise Daly	f6c085f60e	Added Single NUMA Node Policy which ensure resource are aligned on a single NUMA node Co-authored-by: Kevin Klues <kklues@nvidia.com>	2019-08-30 07:17:17 +01:00
darshanime	aef96c34a9	Remove default service cidr Signed-off-by: darshanime <deathbullet@gmail.com>	2019-08-30 11:14:25 +05:30
Kubernetes Prow Robot	7acb066dbc	Merge pull request #81969 from logicalhan/livez add `/livez` endpoint for liveness probing on the kube-apiserver	2019-08-29 19:56:31 -07:00
Kubernetes Prow Robot	6c62ddc85b	Merge pull request #81435 from gyuho/with-block Block etcd client creation until connection is up	2019-08-29 18:07:27 -07:00
Khaled Henidak(Kal)	ef75723564	ipvs dualstack: generated items co-authored-by: Lars Ekman <lars.g.ekman@est.tech>	2019-08-29 23:38:25 +00:00
Khaled Henidak(Kal)	465255425e	create meta-proxy for proxy-mode=ipvs (dualstack) co-authored-by: Lars Ekman <lars.g.ekman@est.tech>	2019-08-29 23:37:37 +00:00
Kubernetes Prow Robot	4495d09282	Merge pull request #81430 from robscott/endpointslice-proxy Adding EndpointSlice support for kube-proxy ipvs and iptables proxiers	2019-08-29 15:36:44 -07:00
Han Kang	aa1b2d6d35	add /livez as a liveness endpoint for kube-apiserver go fmt make func private refactor config_test Two primary refactorings: 1. config test checkPath method is now each a distinct test run (which makes it easier to see what is actually failing) 2. TestNewWithDelegate's root path check now parses the json output and does a comparison against a list of expected paths (no more whitespace and ordering issues when updating this test, yay). go fmt modify and simplify existing integration test for readyz/livez simplify integration test set default rbac policy rules for livez rename a few functions and the entrypoint command line argument (and etcetera) simplify interface for installing readyz and livez and make auto-register completion a bootstrapped check untangle some of the nested functions, restructure the code	2019-08-29 14:13:19 -07:00
Gyuho Lee	21f976bb78	cmd/kubeadm: remove "rpc/status" from import-restrictions Signed-off-by: Gyuho Lee <leegyuho@amazon.com>	2019-08-29 08:46:17 -07:00
Gyuho Lee	93b9545f48	vendor: update with "update-vendor.sh" script Signed-off-by: Gyuho Lee <leegyuho@amazon.com>	2019-08-29 08:46:02 -07:00
Gyuho Lee	eb1509a1d3	kubeadm/app/util/etcd: : block etcd client creation until connection is up The new etcd balancer (>3.3.14, 3.4.0) uses an asynchronous resolver for endpoints. Without "WithBlock", the client may return before the connection is up. Signed-off-by: Gyuho Lee <leegyuho@amazon.com>	2019-08-29 08:38:29 -07:00
Ted Yu	2167321adb	Remove Client#ClusterAvailable from interface	2019-08-29 07:40:34 -07:00
Kubernetes Prow Robot	85602f26d7	Merge pull request #81990 from tedyu/bld-metadata Correct func name WithBuildMetadata	2019-08-29 07:28:23 -07:00
Sandeep Rajan	dce97a142c	bump coredns version in kubeadm to 1.6.2	2019-08-29 10:13:05 -04:00
Kubernetes Prow Robot	7d241f0ec1	Merge pull request #81626 from logicalhan/proxy-migration migrate kube-proxy metrics to stability framework	2019-08-29 05:30:23 -07:00
Kubernetes Prow Robot	d6bc4eb853	Merge pull request #81624 from logicalhan/cm-migration migrate controller-manager metrics to stability framework	2019-08-29 05:30:09 -07:00
Rob Scott	9665c590c7	Adding EndpointSlice support for kube-proxy ipvs and iptables proxiers	2019-08-29 01:06:52 -07:00
Rob Scott	75f6c24923	Adding EndpointSlice controller	2019-08-28 21:13:27 -07:00
Kubernetes Prow Robot	550fb1bfc3	Merge pull request #79386 from khenidak/phase2-dualstack Phase 2 dualstack	2019-08-28 20:39:56 -07:00
Lubomir I. Ivanov	c9b11980ff	kubeadm: fix a bug where the kubelet cert rotation was turned off A recent commit added warnings for KubeletConfiguration and KubeProxyConfiguration fields that kubeadm cares about and does not recommend the user modifying them. Kubelet's "rotateCertificates" cannot be handled using this function as there is not way to figure out if the user has set it explicitly to "false". Hardcode the value to "true" and add a comment about that. Also apply the following changes to warnDefaultComponentConfigValue() calls: - use a local "kind" variable that defines the Kind we are warning about. - fix wrong paths to fields.	2019-08-29 02:43:44 +03:00
Kubernetes Prow Robot	af54eae69a	Merge pull request #81612 from rikatz/issue81060 Remove watching Endpoints of Headless Services	2019-08-28 14:44:25 -07:00
Kubernetes Prow Robot	6c9f26ca3a	Merge pull request #80766 from robscott/discovery-api Adding Discovery API for EndpointSlice	2019-08-28 14:44:09 -07:00
Han Kang	e1bf0b4918	group imports properly	2019-08-28 12:49:54 -07:00
Han Kang	0895ac212d	migrate kube-proxy metrics to stability framework	2019-08-28 12:49:54 -07:00
Han Kang	59db3ac27e	migrate controller-manager metrics to stability framework	2019-08-28 12:26:57 -07:00
Kubernetes Prow Robot	b3b4305be5	Merge pull request #81903 from jfbai/fix-kubeadm-kubelet-default fix: make kubeadm set defaults to kubelet configuration only when no values are set.	2019-08-28 12:01:41 -07:00
Khaled Henidak(Kal)	c27e0b029d	phase 2: generated items	2019-08-28 16:11:46 +00:00
Khaled Henidak(Kal)	313a5c5734	phase 2: ipam filter secondary service cidr	2019-08-28 15:59:43 +00:00
Khaled Henidak(Kal)	93c06821e6	Phase 2: service and endpoint processing	2019-08-28 15:59:43 +00:00
Kubernetes Prow Robot	6e684875ab	Merge pull request #81954 from SataQiu/fix-schedule-20190826 schedule code clean: using string prefix instead of MarkDeprecated	2019-08-28 08:55:59 -07:00
Kubernetes Prow Robot	a927ed454c	Merge pull request #81576 from logicalhan/scheduler-migration migrate scheduler metrics to stability framework	2019-08-28 08:55:12 -07:00
Jianfei Bai	ccc45880a7	fix: prevent overriding of certain kubelet security configuration parameters if the user wished to modify them.	2019-08-28 21:01:49 +08:00
Kubernetes Prow Robot	8af33f9733	Merge pull request #81946 from deads2k/cache add cache-control headers to kube-apiserver	2019-08-28 05:11:39 -07:00
Han Kang	8da448dbe3	migrate scheduler metrics endpoint to metrics stability framework	2019-08-28 03:40:43 -07:00
Kubernetes Prow Robot	b98f622852	Merge pull request #81910 from fabriziopandini/kubeadm-Json6902-Patches kubeadm: add support for Json6902 Patches	2019-08-28 03:09:54 -07:00
Kubernetes Prow Robot	de1cfa9bc1	Merge pull request #81787 from lmdaly/topology-manager-rename-strict-policy Renaming strict policy to restricted policy	2019-08-28 01:38:04 -07:00
Robert Bailey	9d211ab352	Remove myself from reviewers across the repo so that PRs are no longer assigned to me by blunderbuss. Move myself to be an emeritus approver for the cluster directory.	2019-08-27 16:10:16 -07:00
Han Kang	6eee64c308	add stability level to aggregator metrics and drop blank line in cmd file	2019-08-27 12:45:01 -07:00
Han Kang	466980dd74	migrate kube-apiserver metrics to stability framework	2019-08-27 12:45:01 -07:00
Han Kang	b6831039b7	add logicalhan to reviewers for api-machinery directories	2019-08-27 10:40:29 -07:00
fabriziopandini	0e447d797f	kubeadm Json6902 Patches	2019-08-27 14:14:35 +02:00
Ted Yu	8efa1c2a8f	Correct func name WithBuildMetadata	2019-08-26 21:10:56 -07:00
Kubernetes Prow Robot	533daf6624	Merge pull request #81836 from fabriziopandini/fix-upgrade-checks kubeadm: fix upgrade checks	2019-08-26 20:55:37 -07:00
Kubernetes Prow Robot	90cf189152	Merge pull request #81791 from yastij/remove-ipvs-checks remove the ipvs checks from the preflight checks	2019-08-26 20:55:22 -07:00
Rob Scott	f80cee9280	Adding discovery/v1alpha1 API for EndpointSlices	2019-08-26 14:50:00 -07:00
Kubernetes Prow Robot	2c64627871	Merge pull request #81918 from tedyu/pki-comment Correct comment in CertOrKeyExist	2019-08-26 10:20:37 -07:00
David Eads	f589c1213c	add cache-control headers to kube-apiserver	2019-08-26 13:00:31 -04:00
SataQiu	cb8183c680	schedule code clean: using string prefix instead of MarkDeprecated	2019-08-27 00:03:29 +08:00
Ted Yu	55cc0e2957	Correct comment in CertOrKeyExist	2019-08-25 19:30:20 -07:00
Kubernetes Prow Robot	9a5b87a58b	Merge pull request #81821 from hwdef/fix-typo-cmd/kubeadm/app/util/config/initconfiguration.go fix-typo-cmd/kubeadm/app/util/config/initconfiguration.go	2019-08-23 17:59:30 -07:00
fabriziopandini	885f81dc51	fix upgrade checks	2019-08-23 15:12:29 +02:00
Kubernetes Prow Robot	e232921c1f	Merge pull request #80353 from BenTheElder/tags simulate in-tree cloud provider removal with a build tag	2019-08-23 04:55:31 -07:00
Kubernetes Prow Robot	9c736445f5	Merge pull request #79846 from aramase/fix-golint-pkg/proxy Fix golint failures in pkg/proxy	2019-08-23 00:51:17 -07:00
Kubernetes Prow Robot	2d649c347f	Merge pull request #81701 from tedyu/init-cfg-convert Check error return from Scheme.Convert	2019-08-22 23:27:42 -07:00
Kubernetes Prow Robot	39d5fc7501	Merge pull request #81656 from SataQiu/fix-kubeadm-static-20190820 kubeadm: fix static check failures	2019-08-22 23:27:28 -07:00
Kubernetes Prow Robot	9873f0bfe8	Merge pull request #81696 from tedyu/kubeadm-ipv6 Remove check for addIPv6Checks which evaluates to true	2019-08-22 22:04:13 -07:00
SataQiu	7a4cf591ea	kubeadm: fix static check failures	2019-08-23 10:51:12 +08:00
hwdef	86dd72f345	fix-typo-cmd/kubeadm/app/util/config/initconfiguration.go	2019-08-23 10:07:07 +08:00
Benjamin Elder	5a3301a59d	s/nolegacyproviders/providerless/	2019-08-22 15:30:56 -07:00
Kubernetes Prow Robot	59f5b3ddc4	Merge pull request #80937 from neolit123/1.16-error-stack-trace kubeadm: print the stack trace of an error for klog level v>=5	2019-08-22 15:09:18 -07:00
Benjamin Elder	ece112524b	hack/update-bazel.sh	2019-08-22 14:53:35 -07:00
Benjamin Elder	101de4a677	make it possible to start kube-api-server and kube-controller-manager without legacy cloud provider flags	2019-08-22 14:53:35 -07:00
Benjamin Elder	93c479793d	make it possible to build kubelet without legacy cloud providers	2019-08-22 14:53:35 -07:00
Benjamin Elder	678d3f2841	add build tags to legacy provider code and make it possible to build kube-controller-manager without any legacyproviders or without particular legacy providers	2019-08-22 14:53:35 -07:00
Kubernetes Prow Robot	37651f1cef	Merge pull request #80368 from danwinship/iptables-checks iptables feature detection improvements	2019-08-22 13:31:20 -07:00
Kubernetes Prow Robot	ca3e86e662	Merge pull request #81623 from neolit123/kernel-validator kubeadm: support any Linux kernel version newer than 3.10	2019-08-22 11:12:59 -07:00
Lubomir I. Ivanov	2fc19136c1	kubeadm: print the stack trace of an error for klog level v>=5 - replace all stray calls of os.Exit() to util.CheckError() instead - CheckError() now checks if the klog verbosity level is >=5 and shows a stack trace of the error - don't call klog.Fatal in version.go	2019-08-22 20:09:54 +03:00
Yassine TIJANI	05326f8489	remove the ipvs checks from the preflight checks Signed-off-by: Yassine TIJANI <ytijani@vmware.com>	2019-08-22 17:10:22 +01:00
Kubernetes Prow Robot	d54c5163e0	Merge pull request #81458 from fabriziopandini/kubeadm-kustomize-ux kubeadm: kustomize-ux	2019-08-22 05:46:32 -07:00
Kubernetes Prow Robot	8dea3310e5	Merge pull request #81376 from logicalhan/health-checks rename healthz methodNames to be more consistent w/ present day usages	2019-08-22 03:48:32 -07:00
Louise Daly	2fb94231d0	Renaming strict policy to restricted policy Restricted policy will fail admission of guaranteed pods where all requested resources are not available on a single NUMA Node	2019-08-22 07:57:55 +01:00
Ricardo Pchevuzinske Katz	e389237171	Remove watching Endpoints of Headless Services Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@serpro.gov.br>	2019-08-21 16:37:09 -03:00
Kubernetes Prow Robot	17a1859370	Merge pull request #81494 from Klaven/remove_awk Removed awk from kubeadm reset	2019-08-21 10:37:14 -07:00
Kubernetes Prow Robot	e1c2c677f1	Merge pull request #78033 from rajansandeep/corednsmigration Add the ability to migrate CoreDNS configmap in kubeadm	2019-08-20 20:39:16 -07:00
Ted Yu	185c0a16ee	Check error return from Scheme.Convert	2019-08-20 20:17:14 -07:00
Ted Yu	4639ced630	Remove check for addIPv6Checks which evaluates to true	2019-08-20 19:02:29 -07:00
Lubomir I. Ivanov	bec9c3678b	kubeadm: support any kernel version newer than 3.10 It seems undesirable that Kubernetes as a system should be blocking a node if it's Linux kernel is way too new. If such a problem even occurs we should exclude versions from the list of supported versions instead of blocking users from trying e.g. the latest 7.0.0-beta kernel because our validators are not aware of this new version.	2019-08-21 01:23:53 +03:00
Kubernetes Prow Robot	f17b608157	Merge pull request #81622 from neolit123/kubeadm-remove-blang kubeadm: do not use github.com/blang/semver in app/preflight	2019-08-20 10:47:28 -07:00
Sandeep Rajan	6bb9eeeb1c	move the corefile backup into a single configmap with a corefile-backup data key	2019-08-20 13:20:18 -04:00
Marek Counts	6845c66efb	removed awk from kubeadm reset removed awk from kubeadm reset in favor of native go lang calls that are not vulnerable to expantion.	2019-08-20 15:53:40 +00:00
Lubomir I. Ivanov	0a0f6f8eec	kubeadm: do not use github.com/blang/semver in app/preflight Usage of github.com/blang/semver is not needed and k8s.io/apimachinery/pkg/util/version should be used instead for semantic version parsing and version comparison.	2019-08-20 14:06:52 +03:00
Kubernetes Prow Robot	66b0a0c17d	Merge pull request #81604 from tedyu/kubeadm-close-err Check the error return from listener close	2019-08-19 15:09:44 -07:00
Ted Yu	158cf5d61a	Check the error return from listener close	2019-08-19 09:26:35 -07:00
Sadlil Rhythom	3e6d483dd9	Fix Test for kubeadm/app/util/net.GetHostname	2019-08-19 14:38:19 +02:00
Kubernetes Prow Robot	acc57be085	Merge pull request #81559 from tedyu/static-pod-rm-unused Remove boolean waitForComponentRestart which is always true in upgradeComponent	2019-08-18 21:18:03 -07:00
Kubernetes Prow Robot	ff22d824a8	Merge pull request #81572 from ernado/kube-proxy-fix-typo fix typo	2019-08-18 17:12:03 -07:00
Aleksandr Razumov	2390e242b4	fix typo	2019-08-18 23:59:04 +03:00
Ted Yu	4f9d20e0f9	Remove boolean waitForComponentRestart which is always true in upgradeComponent	2019-08-17 18:50:55 -07:00
Kubernetes Prow Robot	ef397e5b36	Merge pull request #79604 from liggitt/crd-v1 promote CRD to v1	2019-08-16 21:44:08 -07:00
Kubernetes Prow Robot	2036ee5dde	Merge pull request #81465 from yanghaichao12/dev190815 remove defaultedInternalConfig from kubeadm	2019-08-16 17:03:06 -07:00
Kubernetes Prow Robot	3b85eeaa23	Merge pull request #81495 from Klaven/kubeadm_reset updated kubeadm reset wording to be more clear	2019-08-16 14:06:18 -07:00
Kubernetes Prow Robot	9e60bedebe	Merge pull request #81385 from neolit123/etcd-probe kubeadm: use etcd's /health endpoint for it's liveness probe	2019-08-16 14:06:09 -07:00
Jordan Liggitt	aa05715c0e	generated	2019-08-16 13:13:40 -04:00
Kubernetes Prow Robot	e6d4273395	Merge pull request #79033 from Nordix/kubeadm-ds-pod-network-cidr Dual-Stack Integration with Kubeadm	2019-08-16 05:06:31 -07:00
Kubernetes Prow Robot	b0dbdbeb00	Merge pull request #81347 from jfbai/tob-k8s-003 Add http response code 301 and 503 to check.	2019-08-15 23:08:45 -07:00
Lubomir I. Ivanov	99b64f1e8e	kubeadm: use etcd's /health endpoint for it's liveness probe Etcd v3.3.0 added the --listen-metrics-urls flag which allows specifying addition URLs to the already present /health and /metrics endpoints. While /health and /metrics are enabled for URLS defined with --listen-client-urls (v3+ ?) they do require HTTPS. Replace the present etcdctl based liveness probe with a standard HTTP GET v1.Probe that connects to http://127.0.0.1:2381/health. These endpoints are not reachable from the outside and only available for localhost connections.	2019-08-16 01:06:49 +03:00
Marek Counts	e69feae028	updated kubeadm reset wording to be more clear updated kubeadm reset to be clear that it was best effort.	2019-08-15 20:15:55 +00:00
Kubernetes Prow Robot	de3aed8023	Merge pull request #81306 from ravisantoshgudimetla/terminate-on-leader-election Scheduler should terminate on loosing leader lock	2019-08-15 11:06:49 -07:00
Jordan Liggitt	6278447bde	CRD v1: install/register types	2019-08-15 12:26:13 -04:00
Sandeep Rajan	6821d21260	add the ability to migrate coredns configmap	2019-08-15 10:09:32 -04:00
yanghaichao12	f54856952f	remove defaultedInternalConfig fromr kubeadm remove defaultedInternalConfig from kubeadm	2019-08-15 17:45:27 +08:00
Jianfei Bai	1d75a16b46	Add http response code 503 to check.	2019-08-15 15:52:54 +08:00
fabriziopandini	a92e7975d2	kubeadm-kustomize-ux	2019-08-15 09:14:31 +02:00
tariqibrahim	6df4f62d1c	[kubernetes/kubeadm] fix minor nil issues in kudeadm code	2019-08-14 21:49:39 -07:00
Kubernetes Prow Robot	d5bdb7796a	Merge pull request #81386 from neolit123/1.17-kubeadm-etcd-map kubeadm: add v1.17 to the list versions that map to etcd version	2019-08-14 12:46:51 -07:00
Kubernetes Prow Robot	a7c81c663d	Merge pull request #78775 from johscheuer/fix-kube-proxy-cleanup-error Check if options returning an error	2019-08-14 07:26:26 -07:00
Johannes M. Scheuermann	352564714a	Handle error correctly in kubee-proxy command Signed-off-by: Johannes M. Scheuermann <joh.scheuer@gmail.com>	2019-08-14 07:41:09 +02:00
Kubernetes Prow Robot	e084c281ac	Merge pull request #72771 from yanghaichao12/proxy0110 add a test case for HostnameOverride	2019-08-13 21:38:23 -07:00
Lubomir I. Ivanov	3ecf3c6a44	kubeadm: add v1.17 to the list versions that map to etcd version	2019-08-14 01:49:25 +03:00
Han Kang	2e23788fda	rename healthz methodNames to be more consistent w/ present day usages	2019-08-13 12:52:30 -07:00
Kubernetes Prow Robot	f7473e78f2	Merge pull request #81275 from SataQiu/fix-kubeadm-20190812 kubeadm: cleanup unnecessary slice initialization statements	2019-08-13 07:56:21 -07:00
Kubernetes Prow Robot	c08ee9d51b	Merge pull request #80905 from fabriziopandini/kubeadm-kustomize-core Kubeadm: kustomize core	2019-08-13 07:55:55 -07:00
SataQiu	36bb0b9a53	kubeadm: cleanup unnecessary slice initialization statements	2019-08-12 23:42:56 +08:00
Kubernetes Prow Robot	ca6290538b	Merge pull request #81217 from SataQiu/fix-kubeadm-20190809 kubeadm: change the permissions of generated CSR files from 0644 to 0600	2019-08-12 08:21:13 -07:00
fabriziopandini	5eca049557	placeholders for follow-up PR on kustomize UX	2019-08-12 14:17:19 +02:00
fabriziopandini	97181595f0	kubeadm-kustomize-core	2019-08-12 14:16:51 +02:00
Kubernetes Prow Robot	c8c9d2e21c	Merge pull request #77167 from paulsubrata55/spaul-kube-proxy-fix Fix for kube-proxy to wait for some duration for the node to be defined.	2019-08-09 19:47:14 -07:00
ravisantoshgudimetla	3a1354d590	Autogenerated files	2019-08-09 15:23:43 -04:00
ravisantoshgudimetla	e2b29cd508	Scheduler should terminate when it looses leader lock	2019-08-09 15:23:28 -04:00
Davanum Srinivas	413f22b0af	Deprecate the hyperkube support for cloud-controller-manager Change-Id: Id2e23beb2805795a3a9d54d0ddee43775a8e138c	2019-08-09 15:01:10 -04:00
Arvinderpal Wander	3ac7ae60cc	kubeadm --pod-network-cidr supports a comma separated list of pod CIDRs. This is a necesary change for dual-stack.	2019-08-09 07:20:51 -07:00
Arvinderpal Wander	ec77598906	Update kubeproxy config validation to support list of comma separated pod CIDRs. Dual-stack feature must be enabled for the validation to be done.	2019-08-09 07:20:39 -07:00
Kubernetes Prow Robot	63e27a02ed	Merge pull request #81031 from chuckha/kubeadm-docs kubeadm: Fix some documentation errors	2019-08-09 04:31:25 -07:00
SataQiu	2e35c6b5bb	kubeadm: the permissions of generated CSR files are changed from 0644 to 0600	2019-08-09 17:36:26 +08:00
Kubernetes Prow Robot	63179a7f26	Merge pull request #81156 from SataQiu/fix-kubeadm-20190808 Small fix for kubeadm version def.bzl	2019-08-08 19:35:51 -07:00
Kubernetes Prow Robot	ee04128b05	Merge pull request #81084 from bart0sh/PR0078-kubeadm-remove-pkg-kubeapiserver-authorizer-modes-dependency kubeadm: remove dependency on pkg/kubeapiserver/authorizer/modes	2019-08-08 12:35:20 -07:00
Chuck Ha	309cd1684f	kubeadm: Fix some documnetation errors Signed-off-by: Chuck Ha <chuckh@vmware.com>	2019-08-08 11:34:19 -04:00
Kubernetes Prow Robot	9690201481	Merge pull request #81094 from andrewsykim/deprecate-cloud-provider-gce-lb-src-cidrs also deprecate --cloud-provider-gce-lb-src-cidrs flag in kube-apiserver	2019-08-08 07:59:58 -07:00
Kubernetes Prow Robot	8923d4fd2d	Merge pull request #81059 from Songjoy/patch-7 modify the spelling errors	2019-08-08 07:59:33 -07:00
Kubernetes Prow Robot	62f1c4065b	Merge pull request #81029 from dims/drop-cloud-controller-manager-from-release-artifacts Drop cloud-controller-manager artifacts from k/k release	2019-08-08 06:27:31 -07:00
Ed Bartosh	b4300ec24e	kubeadm: remove dependency on pkg/kubeapiserver/authorizer/modes Moved 2 more constants from pkg/kubeapiserver/authorizer/modes to kubeadm/app/constants module to remove dependency.	2019-08-08 12:08:23 +03:00
SataQiu	11c92d190e	fix kubeadm version def.bzl	2019-08-08 17:04:36 +08:00
Kubernetes Prow Robot	6d49d69c91	Merge pull request #80689 from Pothulapati/inotify Switch to k8s.io/utils/inotify	2019-08-08 00:49:19 -07:00
Kubernetes Prow Robot	19e85a9092	Merge pull request #80502 from xigang/master Update CleanupAndExit and OnServiceSynced field comment and bugfix panic params in the construct method	2019-08-07 20:10:06 -07:00
Kubernetes Prow Robot	fb5a0e0525	Merge pull request #78204 from stewart-yu/patch-1 get rid of the redundancy field in kube-proxy option	2019-08-07 20:09:17 -07:00
Kubernetes Prow Robot	4c315aa8d9	Merge pull request #78543 from cheftako/kas-np3 Get network-proxy working with GCE.	2019-08-07 14:44:44 -07:00
Andrew Sy Kim	651633cb70	also deprecate --cloud-provider-gce-lb-src-cidrs flag from kube-apiserver Signed-off-by: Andrew Sy Kim <kiman@vmware.com>	2019-08-07 14:48:40 -04:00
Tarun Pothulapati	e3c21d6495	update dependencies to include k8s.io/utils/inotify Signed-off-by: Tarun Pothulapati <tarunpothulapati@outlook.com>	2019-08-07 21:09:40 +05:30
Tarun Pothulapati	a7d007958e	fix linting issues Signed-off-by: Tarun Pothulapati <tarunpothulapati@outlook.com>	2019-08-07 21:00:53 +05:30
Tarun Pothulapati	f4e2907477	use k8s.io/utils/inotify instead of github.com/go-sigma/inotify Signed-off-by: Tarun Pothulapati <tarunpothulapati@outlook.com>	2019-08-07 21:00:29 +05:30
Kubernetes Prow Robot	34db8e08c1	Merge pull request #81002 from zgfh/patch-10 kubeadm: fix name of CA spell error	2019-08-07 03:12:49 -07:00
Kubernetes Prow Robot	aa6a077cfd	Merge pull request #80681 from ricky1993/customize_resource_name_and_namespace add options for name and namespace of leaderelection object	2019-08-07 01:36:51 -07:00
Walter Fender	ebb65c5f4c	Get network-proxy working with GCE. Got the proxy-server coming up in the master. Added certs and have it comiung up with those certs. Added a daemonset to run the network-agent. Adding support for agent running as a sameon set on every node. Added quick hack to test that proxy server/agent were correctly tunneling traffic to the kubelet. Added more WIP for reading network proxy configuration. Get flags set correctly and fix connection services. Adding missing ApplyTo Added ConnectivityService. Fixed build directives. Added connectivity service configuration. Fixed log levels. Fixed minor issues for feature turned off. Fixed boilerplate and format. Moved log dialer initialization earlier as per Liggits suggestion. Fixed a few minor issues in the configuration for GCE. Fixed scheme allocation Adding unit test. Added test for direct connectivity service. Switching to injecting the Lookup method rather than using a Singleton. First round of mikedaneses feedback. Fixed deployment to use yaml and other changes suggested by MikeDanese. Switched network proxy server/agent which are kebab-case not camelCase. Picked up DIAL_RSP fix. Factored in deads2k feedback. Feedback from mikedanese Factored in second round of feedback from David. Fix path in verify. Factored in anfernee's feedback. First part of lavalamps feedback. Factored in more changes from lavalamp and mikedanese. Renamed network-proxy to konnectivity-server and konnectivity-agent. Fixed tolerations and config file checking. Added missing strptr Finished lavalamps requested rename. Disambiguating konnectivity service by renaming it egress selector. Switched feature flag to KUBE_ENABLE_EGRESS_VIA_KONNECTIVITY_SERVICE	2019-08-06 23:09:49 -07:00
Songjoy	eb30b3d41d	modify the spelling errors fix escluding to excluding	2019-08-07 10:38:20 +08:00
Kubernetes Prow Robot	663796e624	Merge pull request #78345 from obitech/fix_golint_pkg_kubelet_stats_client Fix golint pkg/kubelet/stats/client.go	2019-08-06 13:14:49 -07:00
Davanum Srinivas	adbd1800c8	Drop cloud-controller-manager artifacts from k/k release	2019-08-06 13:51:27 -04:00
Kubernetes Prow Robot	1220a8ae92	Merge pull request #80995 from zgfh/patch-8 cleanup: fix log message error in test case	2019-08-06 01:03:54 -07:00
Kubernetes Prow Robot	b29e187a45	Merge pull request #80992 from dzzg/patch-1 cleanup: fix typo "contstruct" -> "construct"	2019-08-05 23:44:07 -07:00
alan	cd2ecefb80	kubeadm: fix name of CA spell error	2019-08-06 12:01:28 +08:00
Kubernetes Prow Robot	da30406a9d	Merge pull request #80966 from neolit123/1.16-cleanup-file-discovery kubeadm: use EnsureCertificateAuthorityIsEmbedded() for file discovery	2019-08-05 18:18:32 -07:00
Alan	11e333474e	cleanup: fix log message error in test case	2019-08-06 07:00:05 +08:00
dzzg	cd57039927	cleanup: fix typo "contstruct" -> "construct"	2019-08-06 06:22:46 +08:00
Kubernetes Prow Robot	74c0cc2790	Merge pull request #80951 from neolit123/1.16-sched-auth kubeadm: enable secure serving for the kube-scheduler	2019-08-05 13:36:29 -07:00
Kubernetes Prow Robot	4824f823ad	Merge pull request #80919 from smarterclayton/disable_compression Disable gzip compression in core control plane components	2019-08-05 09:09:49 -07:00
Kubernetes Prow Robot	040ce52a43	Merge pull request #80820 from mattmelgard/defer-delete-kubelet-bootstrap kubeadm: add a defer to kubelet bootstrap token deletion	2019-08-05 02:57:48 -07:00
Lubomir I. Ivanov	540c272f7b	kubeadm: use EnsureCertificateAuthorityIsEmbedded() for file discovery For file discovery, in case the user feeds a file for the CA from the kubeconfig, make sure it's preloaded and embedded using the new function EnsureCertificateAuthorityIsEmbedded(). This commit also applies cleanup: - unroll validateKubeConfig() into ValidateConfigInfo() as this way the default cluster can be re-used. - in ValidateConfigInfo() reuse the variable config instead of creating a new variable kubeconfig. - make the Ensure* functions return descriptive errors instead of wrapping the errors on the side of the callers.	2019-08-05 03:23:41 +03:00
Lubomir I. Ivanov	e142bf6203	kubeadm: enable secure serving for the kube-scheduler Secure serving was already enabled for kube-controller-manager. Do the same for kube-scheduler, by passing the flags "authentication-kubeconfig" and "authorization-kubeconfig" to the binary in the static Pod. This change allows the scheduler to perform reviews on incoming requests, such as: - authentication.k8s.io/v1beta1 TokenReview - authorization.k8s.io/v1 SubjectAccessReview The authentication and authorization checks for "system:kube-scheduler" users were previously enabled by PR 72491.	2019-08-03 19:15:32 +03:00
chenyixiang	41a435a812	migrate scheduler options to resourceName & resourceNamespace Change-Id: I743eda488320c97c123b49018d7efcc57525b152	2019-08-03 11:42:47 +08:00
Kubernetes Prow Robot	44f3aafc1a	Merge pull request #80867 from fabriziopandini/fix-certs-generation-for-external-etcd kubeadm: fix-certs-generation-for-external-etcd	2019-08-02 20:28:06 -07:00
Clayton Coleman	33521b41d4	Disable gzip compression in core control plane components On local networks (such as the typical connection path between control plane components) gzip compression increases CPU use and end to end p99 latency rather than decreasing it. Disable compression within the control plane components like a 1.15 cluster would be configured.	2019-08-02 16:18:15 -04:00
Kubernetes Prow Robot	40178ccf7f	Merge pull request #80894 from bart0sh/PR0077-kubeadm-simplified-returns kubeadm: simplified returns	2019-08-02 12:40:35 -07:00
mattmelgard	f03bbe1b6d	Add a defer to kubelet boostrap token deletion	2019-08-02 09:57:00 -06:00
Kubernetes Prow Robot	f6bc0ea03e	Merge pull request #80891 from bart0sh/PR0076-kubeadm-handle-joinControPlaneDoneTemp.Execute-errors handle joinControPlaneDoneTemp.Execute errors	2019-08-02 08:44:05 -07:00
Kubernetes Prow Robot	564eff757c	Merge pull request #80862 from drpaneas/return_warnings kubeadm reset: replace Errorf with Warningf	2019-08-02 04:54:11 -07:00
Ed Bartosh	6b21af79c2	kubeadm: simplified returns	2019-08-02 13:01:02 +03:00
Ed Bartosh	d0506f5a50	handle joinControPlaneDoneTemp.Execute errors	2019-08-02 12:37:57 +03:00
Kubernetes Prow Robot	547617a523	Merge pull request #80804 from olivierlemasle/add-join-timeout Make kubeadm join discovery wait for a finite time	2019-08-01 13:38:41 -07:00
Kubernetes Prow Robot	f5c9d38a3f	Merge pull request #80833 from neolit123/1.16-update-version kubeadm: update the version constants for 1.16	2019-08-01 11:52:44 -07:00
Kubernetes Prow Robot	93e6fb30f0	Merge pull request #74357 from lmdaly/topology-manager-container-manager Updates to container manager and internal container lifecycle to accommodate TopologyManager	2019-08-01 11:52:17 -07:00
Dan Winship	a735c97356	kube-proxy: drop iptables version check Kube-proxy's iptables mode used to care whether utiliptables's EnsureRule was able to use "iptables -C" or if it had to implement it hackily using "iptables-save". But that became irrelevant when kube-proxy was reimplemented using "iptables-restore", and no one ever noticed. So remove that check.	2019-08-01 12:05:31 -04:00
fabriziopandini	59fb766b42	fix-certs-generation-for-external-etcd	2019-08-01 17:51:33 +02:00
Panagiotis Georgiadis	f946a2500b	kubeadm reset: replace Errorf with Warningf	2019-08-01 16:40:47 +02:00
Olivier Lemasle	5c61056432	Make discovery wait for a finite time Add a timeout to discovery in `kubeadm join`, when using a discovery file.	2019-08-01 13:17:45 +02:00
Kubernetes Prow Robot	3758426884	Merge pull request #80798 from xlgao-zju/ignore-not-found do not return error, when the ds is not found	2019-07-31 22:37:03 -07:00
YueHonghui	d29f194474	add flag concurrent-statefulset-syncs to kube-controller-manager (#79169 ) * add flag `concurrent-statefulset-syncs` to set number of concurrent workers for statefulset controller * change default value of ConcurrentStatefulSetSyncs from 1 to 5 * 1. fix doc comment of statefulset config types.go 2. add missing deps k8s.io/kubernetes/pkg/controller/statefulset/config * add missing dep k8s.io/kubernetes/pkg/controller/statefulset/config/v1alpha1 * updated bazel BUILD files * update kube-controller-manager options testcase * fix codegen * fix golint error * fix testcase	2019-07-31 22:36:14 -07:00
Lubomir I. Ivanov	8aa69ea502	kubeadm: update the supported version for 1.16	2019-08-01 05:57:25 +03:00
Lubomir I. Ivanov	e379164bc7	kubeadm: apply a number of _test fixes - common_test.go: use constants.CurrentKubernetesVersion - diff_test.go: write temporary files instead of using testdata. this allows us to not have to bump kubernetesVersions in the testdata files (now removed) - policy_test.go: apply fixes to tests that were previously passing, but a bump in constants.go breaks them. these tests now work for any version.	2019-08-01 05:57:24 +03:00
Xianglin Gao	1b6ec47a04	do not return error, when the ds is not found Signed-off-by: Xianglin Gao <xianglin.gxl@alibaba-inc.com>	2019-08-01 09:12:14 +08:00
Emrecan BATI	90ce2d50d3	Add GetKernelVersion to ipvs.KernelHandler interface ipvs `getProxyMode` test fails on mac as `utilipvs.GetRequiredIPVSMods` try to reach `/proc/sys/kernel/osrelease` to find version of the running linux kernel. Linux kernel version is used to determine the list of required kernel modules for ipvs. Logic to determine kernel version is moved to GetKernelVersion method in LinuxKernelHandler which implements ipvs.KernelHandler. Mock KernelHandler is used in the test cases. Read and parse file is converted to go function instead of execing cut.	2019-07-31 22:10:44 +03:00
Kubernetes Prow Robot	82a252ad74	Merge pull request #80676 from fabriziopandini/delete-bootstrap-kubelet.conf kubeadm: delete bootstrap-kubelet.conf after TLS bootstrap	2019-07-31 00:24:47 -07:00
Kubernetes Prow Robot	5bfa3664fb	Merge pull request #80531 from Nordix/kubeadm-ds-FG-propagate Propagate kubeadm dual-stack feature-gate to all k8s components	2019-07-31 00:24:21 -07:00
Kubernetes Prow Robot	000932d584	Merge pull request #80675 from fabriziopandini/fix-file-discovery Fix kubeadm file discovery	2019-07-30 22:44:33 -07:00
Arvinderpal Wander	585ef375bb	Kubeadm FG for dual-stack was introduced in #80145 . This PR progagates the kubeadm FG to the individual k8scomponents on the control-plane node. * Note: Users who want to join worker nodes to the cluster will have to specify the dual-stack FG to kubelet using the nodeRegistration.kubeletExtraArgs option as part of their join config. Alternatively, they can use KUBELET_EXTRA_ARGS. kubeadm FG: kubernetes/kubeadm#1612	2019-07-30 07:27:51 -07:00
chenyixiang	ee6e28b5cf	add options for name and namespace of leaderelection object Change-Id: Iaa62f5f1c3b24a4cc567a840707d9eba7cf901b8	2019-07-30 09:46:49 +08:00
Sean Sullivan	6c96a059dd	Move pkg/kubectl/cmd/util and subdirs to staging	2019-07-29 13:08:41 -07:00
fabriziopandini	df08af0349	feedback 1	2019-07-29 10:48:23 +02:00
fabriziopandini	d63e778f6f	fix-file-discovery	2019-07-27 19:19:29 +02:00
Kubernetes Prow Robot	23649560c0	Merge pull request #80301 from klueska/upstream-rename-topologymanager-preferred-best-effort Rename 'preferred' TopologyManager policy to 'best-effort'	2019-07-27 09:25:56 -07:00
Kubernetes Prow Robot	12e462b21a	Merge pull request #80656 from seans3/move-kubectl-version Move pkg/kubectl/version to staging	2019-07-27 07:33:56 -07:00
fabriziopandini	f4ad37d7ca	delete-bootstrap-kubelet.conf	2019-07-27 15:36:24 +02:00
fabriziopandini	ada6b0ddf1	autogenerated	2019-07-27 15:21:24 +02:00
Kubernetes Prow Robot	9bae1bc568	Merge pull request #80648 from odinuge/kubeadm-upgrade-diff-err Fix error handling issue in kubeadm upgrade diff	2019-07-26 20:16:48 -07:00
Kubernetes Prow Robot	44de947f0f	Merge pull request #80509 from mborsz/endpoints Add simple pod updates batching to endpoint controller.	2019-07-26 20:16:36 -07:00
Kubernetes Prow Robot	1d49cd141a	Merge pull request #80619 from SataQiu/fix-cloud-controller-manager Follow up #80474: use correct format verb	2019-07-26 16:52:23 -07:00
Sean Sullivan	fb44be2d97	Move pkg/kubectl/version to staging	2019-07-26 15:48:09 -07:00
Kubernetes Prow Robot	8f1eeacb78	Merge pull request #80573 from bart0sh/PR0075-kubeadm-handle-ResetClusterStatusForNode-errors kubeadm: handle ResetClusterStatusForNode errors	2019-07-26 09:56:25 -07:00
Kubernetes Prow Robot	688f567698	Merge pull request #80307 from bart0sh/PR0073-kubeadm-remove-pkg-kubeapiserver-authorizer-modes-dependency kubeadm: remove dependency on pkg/kubeapiserver/authorizer/modes	2019-07-26 09:55:59 -07:00
Odin Ugedal	2522e782dd	Fix error handling issue in kubeadm upgrade The error was unintentionally set inside the scope of the if statement, hiding possible errors.	2019-07-26 18:51:29 +02:00
SataQiu	e35a7b1ba1	use correct format verb	2019-07-26 12:24:40 +08:00
Kubernetes Prow Robot	27dfcbe8a7	Merge pull request #80474 from SataQiu/fix-controllermanager-20190723 Small Fix: Use correct format verb	2019-07-25 20:47:58 -07:00
Kubernetes Prow Robot	bf2dd03083	Merge pull request #80318 from davidxia/fix-err-caps cleanup: fix some log and error capitalizations	2019-07-25 10:41:28 -07:00
Ed Bartosh	5dd9d6a19f	kubeadm: handle ResetClusterStatusForNode errors Handled errors returned by ResetClusterStatusForNode function when resetting cluster status for a control-plane node.	2019-07-25 15:45:59 +03:00
Kevin Klues	7eccc71c9e	Rename 'preferred' TopologyManager policy to 'best-effort'	2019-07-25 10:44:36 +02:00
Ed Bartosh	70f82f0dda	kubeadm: add forgotten error check 'kubeadm config images pull' command ignores pulling errors due to forgotten error check. Added the check to correctly output errors if they occur.	2019-07-24 17:44:22 +03:00
Maciej Borsz	2fae3cbcfe	Add simple batching to endpoints controller	2019-07-24 11:36:53 +02:00
Louise Daly	9f0081cc36	Updates to container manager and internal container lifecycle to accommodate Topology Manager Co-authored-by: Conor Nolan <conor.nolan@intel.com>	2019-07-24 08:09:38 +01:00
xigang	4ac81d7508	Update the CleanupAndExit field for the Options and the OnServiceSynced for the ServiceHandler comment	2019-07-24 09:40:29 +08:00
SataQiu	86f485541d	use correct format verb	2019-07-23 18:12:42 +08:00
alan	ca8d5759ff	add link of kubeadm config doc	2019-07-22 22:44:30 +08:00
David Xia	fabfd950b1	cleanup: fix some log and error capitalizations Part of https://github.com/kubernetes/kubernetes/issues/15863	2019-07-20 18:26:16 -04:00
Kubernetes Prow Robot	cfabadb0eb	Merge pull request #80296 from bart0sh/PR0072-remove-util-procfs-dependency kubeadm: remove dependency on pkg/util/procfs	2019-07-20 00:40:54 -07:00
Ed Bartosh	2adb09f0e1	kubeadm: remove dependency on pkg/util/procfs Run pidof utility to determine if systemd-resolved is running instead of calling procfs.PidOf.	2019-07-19 19:09:53 +03:00
Ed Bartosh	d60fdcc6ff	kubeadm: remove dependency on pkg/kubeapiserver/authorizer/modes moved constants from pkg/kubeapiserver/authorizer/modes to kubeadm/app/constants module.	2019-07-19 11:50:18 +03:00
RainbowMango	a4ca944d53	kubeadm should always fall back to client version when there is any internet issue	2019-07-19 15:13:47 +08:00
Ed Bartosh	d221148121	kubeadm: get rid of dependency on pkg/util/node Created local copy of GetHostname API to avoid dependency to pkg/util/node.	2019-07-17 18:49:39 +03:00
Kubernetes Prow Robot	683e405f31	Merge pull request #79418 from yue9944882/chore/prune-aggregator-internals Prune hub-type client/informer/lister from kube-aggregator	2019-07-16 23:22:34 -07:00
Jordan Liggitt	a6db3fd6fa	Update unit test with expected query parameters	2019-07-16 20:54:26 -04:00
Kubernetes Prow Robot	619a3985d0	Merge pull request #80206 from tedyu/sched-svr-dup Remove duplicate requestInfoResolver	2019-07-16 15:24:43 -07:00
Ted Yu	a3f06c7e23	Remove duplicate requestInfoResolver	2019-07-16 10:53:07 -07:00
yue9944882	3b1624f0cc	remove kube-aggregator/pkg/client/* use v1 api [DO NOT REVIEW] bazel changes code-gen script changes update hack/update-vendor remove useless interface type cast	2019-07-16 23:11:15 +08:00
Kubernetes Prow Robot	8e3a2f2a5b	Merge pull request #80165 from SataQiu/fix-kubeadm-20190715 kubeadm: fix the bug that bazel build does not respect hack/print-workspace-status.sh	2019-07-16 03:55:24 -07:00
Kubernetes Prow Robot	7e7bb5cf3a	Merge pull request #80050 from chuckha/jsontags [kubeadm] Adds json struct tags to exposed API types	2019-07-16 02:39:23 -07:00
Kubernetes Prow Robot	c30f024864	Merge pull request #78162 from hex108/registry Add support for writing out of tree custom scheduler plugins	2019-07-15 23:29:24 -07:00
SataQiu	298909e20e	kubeadm: use local copy of kubectl's version package	2019-07-16 09:51:10 +08:00
Kubernetes Prow Robot	ab8506fb9b	Merge pull request #80115 from gyuho/kubernetes-version kubeadm/*/phases/init/certs,kubeconfig: add "kubernetes-version" flag	2019-07-15 16:33:37 -07:00
Kubernetes Prow Robot	768acf6009	Merge pull request #80145 from Nordix/kubeadm-ds-feature-gate Adds kubeadm feature-gate for dual-stack (IPv6DualStack)	2019-07-15 14:54:14 -07:00
Chuck Ha	74ba11b0cd	[kubeadm] Adds json struct tags to exposed API types Signed-off-by: Chuck Ha <chuckh@vmware.com>	2019-07-15 11:14:40 -04:00
Kubernetes Prow Robot	303509cdf5	Merge pull request #80103 from SataQiu/cleanup-kubeadm-20190712 kubeadm: cleanup unnecessary k8sVer parameter for GetStaticPodSpecs	2019-07-15 03:23:06 -07:00
Arvinderpal Wander	79e7a4c0da	Adds kubeadm feature-gate for dual-stack (IPv6DualStack). Issue: #1612	2019-07-14 19:44:48 -07:00
Kubernetes Prow Robot	ae67616110	Merge pull request #80025 from SataQiu/fix-kubeadm-diff-20190711 kubeadm: support fetching configuration from the original cluster for 'upgrade diff'	2019-07-12 20:19:04 -07:00
Kubernetes Prow Robot	676417ec7b	Merge pull request #80043 from dims/remove-deprecated-containerized-flag-in-kubelet Remove deprecated --containerized flag in kubelet	2019-07-12 12:25:05 -07:00
Gyuho Lee	bad7a3fbbd	kubeadm/*/phases/init/certs,kubeconfig: add "kubernetes-version" flag If empty "--kubernetes-version" is given (as it's not configurable now) k8s.io/kubernetes/cmd/kubeadm/app/util/version.go.KubernetesReleaseVersion will fetch the version from the internet. But, this can fail: % kubeadm init phase certs ca --cert-dir ... unable to fetch file. URL: "https://dl.k8s.io/release/stable-1.txt", status: 502 Bad Gateway failed to run commands: exit status 1 Can happen to other commands: % kubeadm init phase kubeconfig controller-manager ... % kubeadm init phase kubeconfig scheduler ... This make "--kubernetes-version" configurable, so users can enable offline mode. Signed-off-by: Gyuho Lee <leegyuho@amazon.com>	2019-07-12 11:05:43 -07:00
SataQiu	b23772df80	kubeadm: cleanup unnecessary k8sVer parameter for GetStaticPodSpecs	2019-07-13 00:26:07 +08:00
SataQiu	a49f62f786	kubeadm: support fetching configuration from the original cluster for 'upgrade diff'	2019-07-12 23:51:37 +08:00
Kubernetes Prow Robot	b0d08f6a47	Merge pull request #78447 from yastij/scheduler-eventf Migrate scheduler to use v1beta1 Event API	2019-07-12 06:31:06 -07:00
Yassine TIJANI	08522f8e5a	move scheduler to use v1beta1.events Signed-off-by: Yassine TIJANI <ytijani@vmware.com>	2019-07-12 11:39:01 +02:00
Kubernetes Prow Robot	eb9cec5cad	Merge pull request #80060 from yastij/improve-error-msg improve error messages for verifydependency	2019-07-11 20:17:20 -07:00
Davanum Srinivas	3b2a61dead	Remove deprecated --containerized flag in kubelet This flag was deprecated in 1.14	2019-07-11 17:47:21 -04:00
Yassine TIJANI	32a139e442	improve error messages for verifydependency Signed-off-by: Yassine TIJANI <ytijani@vmware.com>	2019-07-11 23:47:10 +02:00
Kubernetes Prow Robot	91b26341f4	Merge pull request #78742 from smarterclayton/client_gc The garbage collector and quota counter should use the metadata client and protobuf to access resources	2019-07-11 14:33:33 -07:00
Clayton Coleman	d631f9b7e9	Use metadata informers instead of dynamic informers in controller manager All controllers in controller-manager that deal with objects generically work with those objects without needing the full object. Update the GC and quota controller to use PartialObjectMetadata input objects which is faster and more efficient.	2019-07-11 12:18:52 -04:00
Clayton Coleman	637cc83341	Switch the garbage collector to use metadata client and protobuf	2019-07-11 12:18:51 -04:00
Jun Gong	5828223e75	Rename PluginOption to Option	2019-07-11 17:39:48 +08:00
Tarun Pothulapati	0833e4f6bf	removed make-symlink flag and corresponding code in hyperkube Signed-off-by: Tarun Pothulapati <tarunpothulapati@outlook.com>	2019-07-11 12:42:46 +05:30
Kubernetes Prow Robot	f2093cc383	Merge pull request #79366 from yastij/dep-path-update-yaml reference paths to bump dependencies	2019-07-10 18:49:06 -07:00
Kubernetes Prow Robot	ca6cc69bd4	Merge pull request #78744 from smarterclayton/client_ns Update namespace controller to use the metadata client	2019-07-10 18:48:53 -07:00
Kubernetes Prow Robot	e3a125a64e	Merge pull request #79979 from SataQiu/cleanup-kubeadm-20190710 kubeadm: cleanup code about cobra	2019-07-10 13:58:40 -07:00
Clayton Coleman	50fd47258d	Switch the namespace controller to use the metadata client The metadata client uses protobuf and returns only a subset of object data (the metadata) which allows operations that act only on objects generically to work much faster. Use the metadata client in the namespace controller to reduce the amount of work the namespace controller has to do in large namespaces.	2019-07-10 14:31:18 -04:00
Yassine TIJANI	4bed9b7046	reference paths to update to bump dependencies Signed-off-by: Yassine TIJANI <ytijani@vmware.com>	2019-07-10 20:11:40 +02:00
SataQiu	b837f8d96f	kubeadm: cleanup the code about cobra	2019-07-10 18:45:28 +08:00
Kubernetes Prow Robot	a29243775a	Merge pull request #79889 from mborsz/kubemarkclient Hollow-node should use separate client for heartbeats	2019-07-10 02:44:25 -07:00
Maciej Borsz	ed41078f05	Hollow-node should use separate client for heartbeats.	2019-07-10 10:31:04 +02:00
Kubernetes Prow Robot	bd628bc792	Merge pull request #79128 from SataQiu/fix-kubeadm-20190618 Update caddy vendor dependency to v1.0.1	2019-07-10 00:12:37 -07:00
Kubernetes Prow Robot	b7faf3ef76	Merge pull request #79880 from SataQiu/clean-kubeadm-20190708 kubeadm: move klog.InitFlags into app/kubeadm.go	2019-07-09 10:12:42 -07:00
Kubernetes Prow Robot	4f917a06a9	Merge pull request #77467 from dixudx/csrsigning_controller_warning add warning logs for csr controllers	2019-07-09 10:12:16 -07:00
Kubernetes Prow Robot	b45bfef437	Merge pull request #78473 from xichengliudui/deleteTODO delete TODO: remove when we stop supporting the legacy group version	2019-07-09 06:34:03 -07:00
SataQiu	9657240197	update caddy vendor dependency to v1.0.1	2019-07-09 12:03:25 +08:00
SataQiu	7d5ece2e2c	kubeadm: move klog.InitFlags into app/kubeadm.go	2019-07-09 10:42:22 +08:00
Anish Ramasekar	2878270f5b	Fix golint failures in pkg/proxy Review feedback - remove alias from imports fix comments	2019-07-08 11:48:33 -07:00
Dr. Stefan Schimanski	f82bc712de	aggregator: wire OpenAPI correctly into PrepareRun flow	2019-07-08 13:59:00 +02:00
Dr. Stefan Schimanski	7c4329ed45	apiserver: chain delegated PrepareRun	2019-07-08 12:20:20 +02:00
Kubernetes Prow Robot	2aacecb8d7	Merge pull request #79648 from tnqn/kubeadm Fix descriptions of kubeadm	2019-07-04 09:38:38 -07:00
Kubernetes Prow Robot	7340b6341a	Merge pull request #79677 from neolit123/etcd-add-retry kubeadm: run MemberAdd/Remove for etcd clients with exp-backoff retry	2019-07-04 05:44:28 -07:00
Quan Tian	0d732009cc	Fix descriptions of kubeadm * Remove the example iptables cmd that potentially kills rules that user may be relying on * Fixed a typo in description of phase bootstrap-token	2019-07-04 04:43:32 -07:00
Benjamin Elder	13813bc560	cleanup bespoke ipv6 checking in kubeadm	2019-07-03 16:26:08 -07:00
Kubernetes Prow Robot	bbef01a202	Merge pull request #74411 from nolancon/topology-manager-flags-feature-gate Add feature gate and kubelet flags for Topology Manager	2019-07-03 15:16:13 -07:00
Kubernetes Prow Robot	f87cc40b7f	Merge pull request #79728 from yastij/consolidate-coredns-versions consolidate coreDNS version to ease dependency bump	2019-07-03 10:34:45 -07:00
Kubernetes Prow Robot	4c9fab5c40	Merge pull request #79270 from SataQiu/fix-kubeadm-2019062102 kubeadm: add --control-plane-endpoint flag	2019-07-03 07:50:33 -07:00
Yassine TIJANI	309ea4e802	consolidate coreDNS version to ease dependency bump Signed-off-by: Yassine TIJANI <ytijani@vmware.com>	2019-07-03 16:02:13 +02:00
Kubernetes Prow Robot	7bf55da3c2	Merge pull request #78789 from johscheuer/remove-experimental-note-for-ipvs Remove experimental note for ipvs in kube-proxy arguments	2019-07-03 04:46:31 -07:00
Kubernetes Prow Robot	5f83eb721b	Merge pull request #79675 from mikedanese/safix Create a service account Getter when TokenRequest is enabled	2019-07-02 19:58:42 -07:00
Kubernetes Prow Robot	090e5233f2	Merge pull request #72974 from sjenning/sysctl-kubeconfig kubelet: add allowed sysctl to KubeletConfiguration	2019-07-02 19:58:29 -07:00
Kubernetes Prow Robot	a33840e023	Merge pull request #73977 from khenidak/ipv6dualstack ipv6 dual stack (Phase 1 - ALPHA)	2019-07-02 18:07:12 -07:00
Lubomir I. Ivanov	25668531f7	kubeadm: run MemberAdd/Remove for etcd clients with exp-backoff retry When adding a new etcd member the etcd cluster can enter a state of vote, where any new members added at the exact same time will fail with an error right away. Implement exponential backoff retry around the MemberAdd call. This solves a kubeadm problem when concurrently joining control-plane nodes with stacked etcd members. From experiment, a few retries with milliseconds apart are sufficient to achieve the concurrent join of a 3xCP cluster. Apply the same backoff to MemberRemove in case the concurrent removal of members fails for similar reasons.	2019-07-03 03:26:30 +03:00
Mike Danese	bc59028b09	Create a service account Getter when TokenRequest is enabled Fixes a nil panic when --service-account-lookup=false and TokenRequest is enabled.	2019-07-02 16:56:31 -07:00
Khaled Henidak(Kal)	2b77667718	vendor updates	2019-07-02 22:26:26 +00:00
Seth Jennings	0c7ce5a7d7	kubelet: add allowed sysctl to KubeletConfiguration	2019-07-02 12:19:47 -05:00
Khaled Henidak(Kal)	a51b8ce456	route controller + azure v6 routes	2019-07-02 15:39:06 +00:00
Khaled Henidak(Kal)	584d7103e2	node ipam controller for ipv6 dualstack	2019-07-02 15:39:06 +00:00
Kubernetes Prow Robot	003c4e5155	Merge pull request #77792 from neolit123/kubeadm-psp-upgrade-fix kubeadm: prevent PSP blocking of upgrade image prepull	2019-07-02 04:01:08 -07:00
nolancon	705f97e171	Enable feature gate and kubelet flags for Topology Manager Nit: remove capitalization of preferred Remove line from kubelet and add to separate PR for easier merge nit: dependency added to separate PR Add check to ensure strict policy cannot be set without feature gate enabled Topology Manager runs "none" policy by default. Added constants for policies and updated documentation.	2019-07-02 06:50:17 +01:00
Kubernetes Prow Robot	6f73ab2219	Merge pull request #78908 from dcbw/cni-0.7.1-snapshot vendor: bump CNI to v0.7.1 snapshot	2019-07-01 21:33:21 -07:00
Kubernetes Prow Robot	cdddcf9b48	Merge pull request #71170 from atlassian/rand-cleanup2 Cleanup math/rand package usage	2019-07-01 21:33:08 -07:00
Kubernetes Prow Robot	da0f51ffed	Merge pull request #78820 from haosdent/fix_typos Fix typos.	2019-07-01 15:09:20 -07:00
Kubernetes Prow Robot	de8fb1c9f8	Merge pull request #79449 from neolit123/kubeadm-docker-validator kubeadm: don't use the Docker SDK in util/system/docker_validator*	2019-07-01 11:07:32 -07:00
Dan Williams	8739ade3fa	kubelet: add CNI cache dir option and plumb through to CNI and kubenet libcni 0.7.0 caches ADD operation results and allows the runtime to retrieve these from the cache. In case the user wants a different cache directory than the defaul, plumb that through like we do for --cni-bin-dir and --cni-conf-dir.	2019-07-01 12:14:07 -05:00
Kubernetes Prow Robot	c52df2a637	Merge pull request #79218 from neolit123/kubeadm-1.16-owners kubeadm: update OWNERS for 1.16	2019-07-01 07:23:47 -07:00
Lubomir I. Ivanov	668d69799a	kubeadm: prevent PSP blocking of upgrade image prepull If the cluster has a PSP that blocks Pods from running as root the DS that handles upgrade prepull will fail to create its Pods. Workaround that by adding a PodSecurityContext with RunAsUser=999.	2019-07-01 16:15:54 +03:00
Kubernetes Prow Robot	7db459a11b	Merge pull request #79498 from SataQiu/fix-kubeadm-20190628 kubeadm: fix bug for --cri-socket flag processing logic	2019-07-01 06:09:20 -07:00
Lubomir I. Ivanov	cb56f91cc6	kubeadm: don't use the Docker SDK in util/system/docker_validator* Instead of creating a Docker client and fetching an Info object from the docker enpoint, call the "docker info" command and populate a local dockerInfo struct from JSON output. Also - add unit tests. - update import boss and bazel. This change affects "test/e2e_node/e2e_node_suite_test.go" as it consumes this Docker validator by calling "system.ValidateSpec()".	2019-07-01 15:18:37 +03:00
Kubernetes Prow Robot	dd8a000a77	Merge pull request #79493 from odinuge/kube-cmd-double-print Remove duplicate error messages from cli commands	2019-06-28 13:57:41 -07:00
Kubernetes Prow Robot	2501a9083d	Merge pull request #68513 from codenrhoden/mount-refactor Refactor util/mount interface in prep for moving out of k/k	2019-06-28 13:57:28 -07:00
Kubernetes Prow Robot	d020a037b5	Merge pull request #79198 from damemi/kubectl-logs Move pkg/kubectl/util/logs to staging	2019-06-28 12:43:07 -07:00
SataQiu	62c7f4317f	kubeadm: fix bug for --cri-socket flag processing logic	2019-06-28 10:42:37 +08:00
Odin Ugedal	7caf51daa4	Remove duplicate error messages from cli commands Since we never use the cobras "SilenceErrors" or "SilenceUsage", a command executed with "cmd.Execute()" will never return an error without printing it. The current behavior results in all error messages being printed twice: Example: $ kubectl abc Error: unknown command "abc" for "kubectl" Run 'kubectl --help' for usage. unknown command "abc" for "kubectl" This applies to all cli commands using Cobra. To verify, follow the code path of the Execute function: https://github.com/spf13/cobra/blob/c439c4fa0937/command.go#L793 Signed-off-by: Odin Ugedal <odin@ugedal.com>	2019-06-27 21:55:14 +02:00
Mike Dame	f11e120978	update vendor	2019-06-27 15:18:46 -04:00
Mike Dame	a710a83aa9	Move pkg/util/logs to staging and update ref	2019-06-27 15:15:55 -04:00
Kubernetes Prow Robot	ed9f340add	Merge pull request #79305 from paivagustavo/clean-up-self-set-node-labels Clean up self-set node labels	2019-06-27 11:37:21 -07:00
Gustavo Paiva	096bd5f5d8	block not allowed node labels on kubelet	2019-06-26 19:24:30 -03:00
Lubomir I. Ivanov	f87223fbf8	kubeadm: update OWNERS for 1.16 - comment out Liz and Chuck until further notice. Feel free to come back to kubeadm!! - Add SataQiu as reviewer. Welcome. - Add ereslibre as approver. Congrats!	2019-06-27 00:01:05 +03:00
Benjamin Elder	c33ab5c78f	fix KubeletConfiguration apiVersion	2019-06-25 23:59:32 -07:00
Kubernetes Prow Robot	41b817b92f	Merge pull request #79038 from yastij/move-jws move jws to k8s.io/cluster-bootstrap	2019-06-25 17:01:29 -07:00
Fabio Bertinatto	00b0ab86af	Update scheduler to use volume limits from CSINode	2019-06-25 16:30:54 +02:00
Kubernetes Prow Robot	415323ca9b	Merge pull request #78340 from sftim/20190524_docs_insecure_serving_fix Fix typo in kube-scheduler --port option help	2019-06-25 07:06:39 -07:00
Yassine TIJANI	d3620dfa29	move jws to k8s.io/cluster-bootstrap Signed-off-by: Yassine TIJANI <ytijani@vmware.com>	2019-06-25 13:48:13 +02:00
Jun Gong	107e989454	Use WithOption to implment scheduler register	2019-06-25 17:03:21 +08:00
Kubernetes Prow Robot	ad095324bf	Merge pull request #79309 from draveness/feature/cleanup-CSIPersistentVolume-feature-gates feat: cleanup feature gates for CSIPersistentVolume	2019-06-25 01:15:03 -07:00
Kubernetes Prow Robot	5267a3dc73	Merge pull request #79346 from ncdc/fix-max-port Fix insecure max bind port value to 65535 for scheduler & apiserver	2019-06-24 22:20:34 -07:00
SataQiu	33b980272b	kubeadm: add --control-plane-endpoint flag	2019-06-25 11:27:40 +08:00
Kubernetes Prow Robot	896c901684	Merge pull request #78929 from SataQiu/fix-kubeadm-20190612 [kubeadm] cleanup deps on pkg/version	2019-06-24 19:28:35 -07:00
draveness	8e9472ba79	feat: cleanup feature gates for CSIPersistentVolume	2019-06-25 09:00:12 +08:00
Kubernetes Prow Robot	6f0f62b2c4	Merge pull request #77211 from dixudx/bootstrap_token_refactor Bootstrap token refactor	2019-06-24 13:36:36 -07:00
Andy Goldstein	9bba2c93ec	Fix max port value to 65535 Signed-off-by: Andy Goldstein <goldsteina@vmware.com>	2019-06-24 15:13:27 -04:00
Kubernetes Prow Robot	a5c727e26f	Merge pull request #79327 from SataQiu/cleanup-experimental-1.16 kubeadm: cleanup ExperimentalControlPlane and ExperimentalUploadCerts	2019-06-24 11:24:40 -07:00
Kubernetes Prow Robot	ddc4ed0365	Merge pull request #79335 from rosti/kubeadm-nuke-normalizer kubeadm: Stop using //pkg/util/normalizer	2019-06-24 08:02:11 -07:00
Kubernetes Prow Robot	d1f342fb59	Merge pull request #79220 from rosti/fix-MarshalClusterConfigurationToBytes kubeadm: Retire MarshalClusterConfigurationToBytes	2019-06-24 08:01:58 -07:00
Kubernetes Prow Robot	bc8ea43277	Merge pull request #78026 from Klaven/norm_kube_version seperation of network call in KubernetesReleaseVersion	2019-06-24 06:27:57 -07:00
Rostislav M. Georgiev	94c56c81ba	kubeadm: Retire MarshalClusterConfigurationToBytes MarshalClusterConfigurationToBytes has capabilities to output the component configs, as separate YAML documents, besides the kubeadm ClusterConfiguration kind. This is no longer necessary for the following reasons: - All current use cases of this function require only the ClusterConfiguration. - It will output component configs only if they are not the default ones. This can produce undeterministic output and, thus, cause potential problems. - There are only hacky ways to dump the ClusterConfiguration only (without the component configs). Hence, we simplify things by replacing the function with direct calls to the underlaying MarshalToYamlForCodecs. Thus marshalling only ClusterConfiguration, when needed. Signed-off-by: Rostislav M. Georgiev <rostislavg@vmware.com>	2019-06-24 15:17:19 +03:00
Rostislav M. Georgiev	615e425d26	kubeadm: Stop using //pkg/util/normalizer Stop using //pkg/util/normalizer. Use local versions of LongDesc and Examples, that do not require any external dependencies (other than the Go standard library). Signed-off-by: Rostislav M. Georgiev <rostislavg@vmware.com>	2019-06-24 14:40:55 +03:00
SataQiu	c794929d1d	kubeadm: cleanup ExperimentalControlPlane and ExperimentalUploadCerts	2019-06-24 11:52:57 +08:00
Brad Beam	b646ac4a0e	fix: Use correct function to remove etcd member Signed-off-by: Brad Beam <brad.beam@talos-systems.com>	2019-06-23 22:39:34 -05:00
Jun Gong	e9793c8bdb	Pass registry parameter to scheduler instead of global singleton	2019-06-24 11:29:47 +08:00
Jun Gong	ea8e1e01c5	Add support for writing out of tree custom scheduler plugins	2019-06-24 10:43:47 +08:00
Kubernetes Prow Robot	d9b5aa2ea9	Merge pull request #79267 from SataQiu/fix-kubeadm-20190621 kubeadm: cleanup command output	2019-06-23 09:27:53 -07:00
Cheikhrouhou ines	81800964d8	fix typo heathcheck	2019-06-22 11:37:34 +02:00
Kubernetes Prow Robot	eee3e976d8	Merge pull request #78294 from vllry/kp-remove-resource-container Remove deprecated flag --resource-container from kube-proxy	2019-06-22 00:38:12 -07:00
Marek Counts	eb6eb11748	added comment	2019-06-21 09:42:34 -04:00
Marek Counts	b66c4e8d45	updates based off reviews	2019-06-21 09:42:34 -04:00
Marek Counts	bf376e863c	update to remove unused test commit will be squashed before merge	2019-06-21 09:42:33 -04:00
Marek Counts	c8045049f3	updated tests to prevent false positive one test also proved it did not call the internet but this was not fool proof as it did not return a string and thus could be called with something expecting to fail.	2019-06-21 09:42:33 -04:00
Marek Counts	aad2b573c6	seperation of network calls when getting version updated the network calls to be package local so tests could pass their own implementation. A public interface was not provided as it would not be likely this would ever be needed or wanted.	2019-06-21 09:42:33 -04:00
SataQiu	3b4dbe6e30	kubeadm: cleanup command output	2019-06-21 16:31:55 +08:00
David Ashpole	883f33df6c	kunsupported cgroup setup causes kubelet to emit a warning rather than exiting	2019-06-20 16:16:08 -07:00
Di Xu	5056161d4d	auto-generated	2019-06-20 17:06:26 +08:00
Di Xu	af9ae4c11a	refactor bootstrap token utils	2019-06-20 15:43:44 +08:00
Kubernetes Prow Robot	465e96535d	Merge pull request #78836 from dims/verify-import-aliases-during-typecheck Verify import aliases	2019-06-19 21:11:01 -07:00
Lubomir I. Ivanov	14408bec87	kubeadm: improve the kubeconfig file validation phase When a kubeconfig file is read from disk it may lack the propper mapping between contexts and clusters. In such a case the kubeconfig phase backend will panic, without throwing a sensible error. Add nil checks for a couple of map operations in validateKubeConfig().	2019-06-19 15:12:22 +03:00
SataQiu	10ddd7caf0	kubeadm: cleanup deps on pkg/version	2019-06-18 11:01:30 +08:00
Han Kang	54dcf5c9c4	add readyz endpoint for kube-apiserver readiness checks add startup sequence duration and readyz endpoint add rbac bootstrapping policy for readyz add integration test around grace period and readyz rename startup sequence duration flag copy health checks to fields rename health-check installed boolean, refactor clock injection logic cleanup clock injection code remove todo about poststarthook url registration from healthz	2019-06-17 11:16:13 -07:00
Kubernetes Prow Robot	56066c820d	Merge pull request #79099 from SataQiu/fix-kubeadm-20190617 kubeadm: cleanup deps on pkg/master/ports	2019-06-17 09:42:28 -07:00
Kubernetes Prow Robot	d3bbe03b08	Merge pull request #79032 from yastij/move-initsystem move initsystem to kubeadm	2019-06-17 09:42:15 -07:00
SataQiu	7e2e144f1b	kubeadm: cleanup deps on pkg/master/ports	2019-06-17 21:27:02 +08:00
Kubernetes Prow Robot	1b6189ea68	Merge pull request #78695 from dims/sort-list-of-component-config-API-objects-in-cli Sort kubeadm CLI default params for component config API objects	2019-06-17 05:54:23 -07:00
Yassine TIJANI	c3904bbce6	move initsystem to kubeadm Signed-off-by: Yassine TIJANI <ytijani@vmware.com>	2019-06-17 12:21:01 +02:00
Vallery Lancey	dc0f14312e	Removed deprecated --resource-container flag from kube-proxy.	2019-06-16 08:36:42 -07:00
Davanum Srinivas	9f0050cb44	verify import aliases - Added scripts for update and verify - golang AST code for scanning and fixing imports - default regex allows it to run on just test/e2e.* file paths - exclude verify-import-aliases.sh from running in CI jobs Change-Id: I7f9c76f5525fb9a26ea2be60ea69356362957998 Co-Authored-By: Aaron Crickenberger <spiffxp@google.com>	2019-06-15 22:31:39 -04:00
Kubernetes Prow Robot	a444f0fa1d	Merge pull request #79019 from rosti/kubeadm-nuke-ValidateDNS1123Subdomain kubeadm: Replace ValidateDNS1123Subdomain with IsDNS1123Subdomain	2019-06-15 19:14:08 -07:00
Kubernetes Prow Robot	b2990bf796	Merge pull request #79025 from rosti/kubeadm-nuke-apiResource kubeadm: Don't use "//pkg/apis/core".Resource helper	2019-06-15 12:56:34 -07:00
Kubernetes Prow Robot	30b1fbc809	Merge pull request #79021 from rosti/kubeadm-nuke-rbachelpers kubeadm: Don't use RBAC helpers	2019-06-15 12:56:08 -07:00
Kubernetes Prow Robot	5e5394ae0d	Merge pull request #78803 from aerostitch/kubeadm_minor_typo kubeadm: fix minor typo in a comment	2019-06-14 19:24:09 -07:00
Kubernetes Prow Robot	54f7e5269c	Merge pull request #78625 from Nordix/issue-1591-kubeadm-service-cidr Fix kubeadm service-cidr mapping to service-cluster-ip-rage for kube-controller-manager.	2019-06-14 11:52:35 -07:00
Travis Rhoden	be7da5052f	Refactor pkg/util/mount to be more reusable This patch refactors pkg/util/mount to be more usable outside of Kubernetes. This is done by refactoring mount.Interface to only contain methods that are not K8s specific. Methods that are not relevant to basic mount activities but still have OS-specific implementations are now found in a mount.HostUtils interface.	2019-06-14 09:35:18 -06:00
Kubernetes Prow Robot	10fb09da4d	Merge pull request #78615 from mysunshine92/fix-kubeadm kubeadm:fix typo in controlplane.go	2019-06-14 07:58:51 -07:00
Rostislav M. Georgiev	7ba7bdaa22	kubeadm: Don't use "//pkg/apis/core".Resource helper This helper is used in tests and pulls in unnecessary dependency, which should not be used if kubeadm is to move to staging. Replace with direct use of the GroupResource type. Signed-off-by: Rostislav M. Georgiev <rostislavg@vmware.com>	2019-06-14 16:14:43 +03:00
Kubernetes Prow Robot	8f57a7bb49	Merge pull request #78575 from SataQiu/fix-kubeadm-20190531 kubeadm: improve kubelet-config-x.y ConfigMap logic	2019-06-14 05:33:04 -07:00
Kubernetes Prow Robot	fadb63c7eb	Merge pull request #78556 from neolit123/kubeadm-certs-order kubeadm: apply deterministic order to certificate phases	2019-06-14 05:32:24 -07:00
Rostislav M. Georgiev	4ac6d7f501	kubeadm: Replace ValidateDNS1123Subdomain ValidateDNS1123Subdomain is a simple wrapper around IsDNS1123Subdomain, however it's the only reason for us to pull k8s.io/kubernetes/pkg/apis/core/validation as a dependency. To avoid unnecessary dependencies, replace the use of ValidateDNS1123Subdomain with IsDNS1123Subdomain. Signed-off-by: Rostislav M. Georgiev <rostislavg@vmware.com>	2019-06-14 14:40:14 +03:00
Rostislav M. Georgiev	c394d0fd80	kubeadm: Don't use RBAC helpers RBAC construction helpers are part of the Kubernetes internal APIs. As such, we cannot use them once we move to staging. Hence, replace their use with manual RBAC rule construction. Signed-off-by: Rostislav M. Georgiev <rostislavg@vmware.com>	2019-06-14 14:08:31 +03:00
Kubernetes Prow Robot	042b0d7e60	Merge pull request #77540 from SataQiu/fix-apiserver-20190507 Mark deprecated kubelet-read-only-port	2019-06-14 00:28:21 -07:00
Kubernetes Prow Robot	c6bc1639c3	Merge pull request #72178 from dims/remove-ovirt-photon-cloudstack-cloud-providers Remove ovirt/cloudstack/photon cloud providers	2019-06-13 19:12:19 -07:00
Kubernetes Prow Robot	4f29960cb2	Merge pull request #78915 from ereslibre/retry-configmap-get-on-unauthorized kubeadm: Add ability to retry ConfigMap get if certain errors happen	2019-06-12 13:00:19 -07:00
Mario Valderrama	dbbe68601f	Fix golint errors in pkg/controller/job	2019-06-12 20:09:57 +02:00
Rafael Fernández López	26c9965a97	kubeadm: Add ability to retry ConfigMap get if certain errors happen During the control plane joins, sometimes the control plane returns an expected error when trying to download the `kubeadm-config` ConfigMap. This is a workaround for this issue until the root cause is completely identified and fixed. Ideally, this commit should be reverted in the near future.	2019-06-12 17:49:27 +02:00
Sandeep Rajan	77466d4a65	[kubeadm] Add the upstream option in CoreDNS configmap	2019-06-11 21:19:43 -04:00
Haosdent Huang	7ce6e71891	Fix typos.	2019-06-11 01:52:14 +08:00
Davanum Srinivas	e0821ca3dd	Remove ovirt/cloudstack/photon cloud providers Change-Id: Iddb80bdc2a9d75d444b8a3cfe0b142acb78e9097	2019-06-10 12:50:53 -04:00
Joseph Herlant	5ca6eaaba3	kubeadm: fix minor typo in a comment	2019-06-07 15:56:33 -07:00
Johannes M. Scheuermann	cd6718e3d2	Remove experimental note for ipvs in kube-proxy arguments	2019-06-07 15:47:44 +02:00
Kubernetes Prow Robot	544e93486d	Merge pull request #77312 from bjhaid/cleanup_kube_controller_manager Clean up kube-controller-manager.	2019-06-05 15:22:13 -07:00
Arvinderpal Wander	7634cc01c5	Fix kubeadm service-cidr mapping to service-cluster-ip-rage for kube-controller-manager. If a service CIDR that overlaps with the cluster CIDR is specified to kube-controller-manager then kube-controller- manager will incorrectly allocate node CIDRs that overlap with the service CIDR. The fix ensure that kubeadm maps the --service-cidr to --service-cluster-ip-range for use by kube-controller-manager. As per docs, --allocate-node-cidrs must be true for --service-cluster-ip-range to be considered. It does not make sense for --cluster-cidr to be unspecified but for --service-cluster-ip-range and --allocate-node-cidrs to be set, since the purpose of these options is to have the controller-manager do the per node CIDR allocation. Also note that --service-cluster-ip-range is passed to the api-server, so the presence of just --service-cluster-ip-range should not imply that --allocate-node-cidrs should be true. Resolves: kubernetes/kubeadm/issues/1591	2019-06-05 06:53:32 -07:00
Davanum Srinivas	401a30c73a	Sort kubeadm CLI default params for component config API objects Change-Id: If4ba57d528f925de9d536b18c0e6d71fc6d63659	2019-06-04 09:55:45 -04:00
fabriziopandini	dbb82ba99a	fix-kubeadm-upgrade-node	2019-06-04 14:57:30 +02:00
Kubernetes Prow Robot	16aeec2485	Merge pull request #78545 from neolit123/kubeadm-revert-coredns-1.3.1 kubeadm: revert CoreDNS to 1.3.1	2019-06-03 14:51:29 -07:00
Kubernetes Prow Robot	71fe27eff5	Merge pull request #78586 from rosti/fix-deprecation-msg kubeadm: Fix deprecation message for a flag	2019-06-02 05:12:12 -07:00
Kubernetes Prow Robot	79dc1d4c49	Merge pull request #78585 from neolit123/kubeadm-fix-upgrade-node kubeadm: fix conditional control-plane upgrade	2019-06-02 03:02:14 -07:00
Kubernetes Prow Robot	cc30c0d9a4	Merge pull request #78399 from rikatz/remove-deprecated-conntrack-max Remove deprecated flag --conntrack-max from kube-proxy	2019-06-01 17:26:14 -07:00

... 14 15 16 17 18 ...

9736 Commits