github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
122,425 Commits 1 Branch 31 Tags
ba0dc8d9d56c18bc014e40d40acda70aab6f77f4
Commit Graph

1380 Commits

Author SHA1 Message Date
Davanum Srinivas
9682b7248f OWNERS cleanup - Jan 2021 Week 1 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2022-01-10 08:14:29 -05:00
JD Nurme
30fabbc0cb updated flag name 2022-01-06 19:51:17 +00:00
Kubernetes Prow Robot
b90b2d963d Merge pull request #103078 from pacoxu/api-audiences 
kube-apiserver: use --api-audiences as --service-account-api-audiences is deprecated
 2022-01-05 12:49:47 -08:00
Kubernetes Prow Robot
4d4d57fcf0 Merge pull request #106340 from SergeyKanzhelev/removeCriCtlTar 
remove crictl tar
 2022-01-04 13:06:34 -08:00
Jian Zeng
fe448785b5 fix: remove insecure flag from configure-kubeapiserver.sh 
Signed-off-by: Jian Zeng <anonymousknight96@gmail.com>
 2021-12-09 15:06:52 +08:00
Sergey Kanzhelev
f059c3580c remove crictl tar 2021-11-11 06:12:30 +00:00
Mike Danese
384e9cec1b don't expand $(ls -A /scrub) in PV_RECYCLER_TEMPLATE 
Before we write the template.
 2021-11-10 11:14:45 -08:00
JD Nurme
4a9703a219 Added env variable for cloud-provider 2021-11-09 00:45:34 +00:00
Walter Fender
35737ff810 Switched ANP w/ grpc to not use destHost strategy. 
Factored in feedback from caesarxuchao
 2021-11-05 11:56:56 -07:00
Walter Fender
f7185b0be1 Add mTLS as default HTTPConnect egress configuration for GCP. 
We currently have UDS as the configuration with GRPC.
Some users are setting up egress to remote konnectivity servers.
Cannot use UDS for this configuration.
Should have a config setup which validates the mTLS configuration.

Fixed lint errors from shell check.
Fix volumes to not include pki for ANP in grpc mode.
 2021-11-05 11:39:39 -07:00
Kubernetes Prow Robot
2f21cff49d Merge pull request #106018 from ahrtr/replace_ioutil_with_io_os_cluster_gce_gci 
Replace ioutil with io and os for cluster/gce/gci
 2021-11-04 03:08:03 -07:00
ahrtr
45428d887d replace ioutil with io and os for cluster/gce/gci 2021-10-30 14:23:50 +08:00
Sergey Kanzhelev
c703725592 return value is taken from if statement instead of the function call 2021-10-26 00:11:55 +00:00
Abu Kashem
a748fdc677 apiserver: refactor PolicyRuleEvaluator to return a struct 2021-09-24 08:08:32 -04:00
Paco Xu
a48a2efbd4 remove deprecated validEgressSelectorNames 'master' (#102242) 
* remove deprecated validEgressSelectorNames 'master'

Signed-off-by: pacoxu <paco.xu@daocloud.io>

* update gce configure: replace deprecated egress name 'master' with 'controlplane'

Signed-off-by: pacoxu <paco.xu@daocloud.io>

* add dup error for EgressSelection & fix converting alpha/beta to v1 name
 2021-09-16 07:09:46 -07:00
Kubernetes Prow Robot
7363da7ca7 Merge pull request #101318 from eltociear/patch-5 
Fix typo in gci/README.md
 2021-09-03 02:45:49 -07:00
Alex
bea25d8024 Update GKE kubernetes sources download link 
Fix non-working link provided on MOTD to download GKE source release.
Now point to correct location, confirmed same file as provided in "/home/kubernetes/kubernetes-src.tar.gz"
 2021-08-31 10:31:23 +09:00
Kubernetes Prow Robot
08eaea4590 Merge pull request #104350 from tkashem/audit-policy-refactor 
refactor: rename audit Checker interface
 2021-08-19 01:41:24 -07:00
Sascha Grunert
6a6e24702c Update cri-tools to v1.22.0 
This patch updates crictl to the latest available release.

Signed-off-by: Sascha Grunert <sgrunert@redhat.com>
 2021-08-18 10:15:15 +02:00
Abu Kashem
27f1503514 rename audit Checker interface 2021-08-12 17:42:41 -04:00
Kubernetes Prow Robot
bfcc756f09 Merge pull request #103963 from mcshooter/update-npd-089 
update node-problem-detector v0.8.9
 2021-08-05 19:45:05 -07:00
Sergey Kanzhelev
ddaa06abee Propose myself as a reviewer for cluster/gce/gci 2021-08-05 14:24:35 -07:00
Kubernetes Prow Robot
1d693cd832 Merge pull request #104109 from caesarxuchao/keepalive 
add a keepalive time to the konnectivity server
 2021-08-05 06:09:46 -07:00
Kubernetes Prow Robot
04c7fe8256 Merge pull request #103627 from liu-cong/latency 
Add structured logging for more steps
 2021-08-04 22:11:07 -07:00
Kubernetes Prow Robot
f886190b48 Merge pull request #103436 from loburm/config_kube_proxy 
Make cpu request of kube proxy configurable by env variable.
 2021-08-04 19:00:40 -07:00
Kubernetes Prow Robot
ce5dbd2095 Merge pull request #103376 from mattcary/sunrpc 
Drop end of sunrpc port range to avoid port conflicts.
 2021-08-04 19:00:32 -07:00
Kubernetes Prow Robot
9c5cefb230 Merge pull request #101781 from ptabor/20210506-retry-dns-resolve 
Retry hostname->IP: [Errno -2] Name or service not known
 2021-08-04 18:59:27 -07:00
vteratipally
5d84ffa6c2 Update configure-helper.sh 2021-08-04 14:36:16 -07:00
vteratipally
b0039559dd Update configure-helper.sh 2021-08-04 13:19:00 -07:00
Chao Xu
572a24d854 add a keepalive time to the konnectivity server 2021-08-04 12:48:32 -07:00
vteratipally
0376c58c44 Update configure-helper.sh 
add live-restore true by default.
 2021-08-04 12:09:10 -07:00
Michelle Tandya
4606ebe423 update node-problem-detector v0.8.9 2021-07-28 01:02:56 +00:00
Julie Qi
2a4a1c1d00 disable aufs module 2021-07-21 23:25:19 -07:00
Matthew Cary
60d446fe3d Drop end of sunrpc port range to avoid port conflicts. 
Change-Id: I1561fe447f50d9ac835094b3cceba62ea74dfd81
 2021-07-13 18:38:40 +00:00
Cong Liu
6c87c22277 Add structured logging for more steps 2021-07-09 15:35:44 -07:00
Kubernetes Prow Robot
5e3bed6399 Merge pull request #101433 from SergeyKanzhelev/patch-1 
Make the service account error more apparent
 2021-07-05 03:23:13 -07:00
Marian Lobur
5d80d6e7c3 Make cpu request of kube proxy configurable by env variable. 2021-07-02 16:00:56 +02:00
Piotr Tabor
de442ef860 Retry hostname->IP: [Errno -2] Name or service not known 
During cluster configuration, the hostname is getting resolved to IP,
as etcd requires IP address as listening address.

Due to connectivity flakes or delayed network inititalization, sometimes
the IP fails to be resolved to a name with following error:
```
[Errno -2] Name or service not known
```
that leads to attempt to run etcd with empty flag.

The PR adds a proper retry (up to 5 minutes) in case the connectivity
problems happens.

I considered alternatives like: `getent hosts foo`, but unfortunetelly thay
can return IPv6 that etcd is not ready for (yet).
 2021-07-01 12:20:07 +02:00
Sergey Kanzhelev
210c610d66 make sure to split NPD hashes by architecture when upgrading to 0.8.9 2021-07-01 08:12:35 +00:00
pacoxu
ffdf3f5007 update node-problem-detector npd to v0.8.8 
Signed-off-by: pacoxu <paco.xu@daocloud.io>
Co-Authored-By: vteratipally <vteratipally@users.noreply.github.com>
 2021-06-29 09:35:32 +08:00
pacoxu
f05f30943d kube-apiserver in gce: use --api-audiences as --service-account-api-audiences is deprecated 
Signed-off-by: pacoxu <paco.xu@daocloud.io>
 2021-06-22 11:09:46 +08:00
Vinayak Goyal
774d228637 remove the path if it exists before writing pki data. 
if setfacl is called before chmod g+r at anypoint during the lifetime of
the cluster then the default group does not have read permissions on the
file. so we explicitly grant the default group read permissions. See
https://gist.github.com/mmdriley/85ca34f711acbec4b1b94902add488e5 for a
repro.
 2021-06-18 11:03:37 -07:00
Joseph Anttila Hall
9d514b2de4 Konnectivity: tune flags for larger clusters (5k nodes). 2021-06-10 14:05:44 -07:00
Kubernetes Prow Robot
9d27400fe2 Merge pull request #102040 from njuptlzf/fix_conversion 
Fix auditing failed of request: encoding failed
 2021-06-05 19:58:38 -07:00
njuptlzf
7b0fbb7292 add audit log test cases for cross-group subresource 2021-06-06 09:52:05 +08:00
Kubernetes Prow Robot
74af3b712d Merge pull request #102297 from deads2k/ssh-tunnels 
remove --ssh- options, deprecated 13 releases, that only work on GCE
 2021-06-05 10:40:50 -07:00
Marek Siarkowicz
4ebc0c94a4 Remove legacy metrics client from podautoscaler 2021-06-04 23:06:32 +02:00
David Eads
ae603a38bc remove -ssh-user from cluster scripts for GCE 2021-06-03 17:53:09 -04:00
Kubernetes Prow Robot
bc8acbc43e Merge pull request #102328 from lentzi90/update-cni-plugins 
Update CNI plugins v0.9.1
 2021-05-28 10:16:46 -07:00
Kubernetes Prow Robot
d541872f9a Merge pull request #102239 from Haleygo/clean-up-AlgorithmProvider-flag-and-pkg 
clean up algorithmprovider pkg and remove scheduler deprecated algorithm-provider flag
 2021-05-27 00:54:23 -07:00