github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
79,551 Commits 1 Branch 31 Tags 1,019 MiB
baef3e44cd
Commit Graph

8209 Commits

Author SHA1 Message Date
Han Kang
54dcf5c9c4 add readyz endpoint for kube-apiserver readiness checks 
add startup sequence duration and readyz endpoint

add rbac bootstrapping policy for readyz

add integration test around grace period and readyz

rename startup sequence duration flag

copy health checks to fields

rename health-check installed boolean, refactor clock injection logic

cleanup clock injection code

remove todo about poststarthook url registration from healthz
 2019-06-17 11:16:13 -07:00
Kubernetes Prow Robot
56066c820d
Merge pull request #79099 from SataQiu/fix-kubeadm-20190617 
kubeadm: cleanup deps on pkg/master/ports
 2019-06-17 09:42:28 -07:00
Kubernetes Prow Robot
d3bbe03b08
Merge pull request #79032 from yastij/move-initsystem 
move initsystem to kubeadm
 2019-06-17 09:42:15 -07:00
SataQiu
7e2e144f1b kubeadm: cleanup deps on pkg/master/ports 2019-06-17 21:27:02 +08:00
Kubernetes Prow Robot
1b6189ea68
Merge pull request #78695 from dims/sort-list-of-component-config-API-objects-in-cli 
Sort kubeadm CLI default params for component config API objects
 2019-06-17 05:54:23 -07:00
Yassine TIJANI
c3904bbce6 move initsystem to kubeadm 
Signed-off-by: Yassine TIJANI <ytijani@vmware.com>
 2019-06-17 12:21:01 +02:00
Kubernetes Prow Robot
a444f0fa1d
Merge pull request #79019 from rosti/kubeadm-nuke-ValidateDNS1123Subdomain 
kubeadm: Replace ValidateDNS1123Subdomain with IsDNS1123Subdomain
 2019-06-15 19:14:08 -07:00
Kubernetes Prow Robot
b2990bf796
Merge pull request #79025 from rosti/kubeadm-nuke-apiResource 
kubeadm: Don't use "//pkg/apis/core".Resource helper
 2019-06-15 12:56:34 -07:00
Kubernetes Prow Robot
30b1fbc809
Merge pull request #79021 from rosti/kubeadm-nuke-rbachelpers 
kubeadm: Don't use RBAC helpers
 2019-06-15 12:56:08 -07:00
Kubernetes Prow Robot
5e5394ae0d
Merge pull request #78803 from aerostitch/kubeadm_minor_typo 
kubeadm: fix minor typo in a comment
 2019-06-14 19:24:09 -07:00
Kubernetes Prow Robot
54f7e5269c
Merge pull request #78625 from Nordix/issue-1591-kubeadm-service-cidr 
Fix kubeadm service-cidr mapping to service-cluster-ip-rage for kube-controller-manager.
 2019-06-14 11:52:35 -07:00
Kubernetes Prow Robot
10fb09da4d
Merge pull request #78615 from mysunshine92/fix-kubeadm 
kubeadm:fix typo in controlplane.go
 2019-06-14 07:58:51 -07:00
Rostislav M. Georgiev
7ba7bdaa22 kubeadm: Don't use "//pkg/apis/core".Resource helper 
This helper is used in tests and pulls in unnecessary dependency, which should
not be used if kubeadm is to move to staging.
Replace with direct use of the GroupResource type.

Signed-off-by: Rostislav M. Georgiev <rostislavg@vmware.com>
 2019-06-14 16:14:43 +03:00
Kubernetes Prow Robot
8f57a7bb49
Merge pull request #78575 from SataQiu/fix-kubeadm-20190531 
kubeadm: improve kubelet-config-x.y ConfigMap logic
 2019-06-14 05:33:04 -07:00
Kubernetes Prow Robot
fadb63c7eb
Merge pull request #78556 from neolit123/kubeadm-certs-order 
kubeadm: apply deterministic order to certificate phases
 2019-06-14 05:32:24 -07:00
Rostislav M. Georgiev
4ac6d7f501 kubeadm: Replace ValidateDNS1123Subdomain 
ValidateDNS1123Subdomain is a simple wrapper around IsDNS1123Subdomain, however
it's the only reason for us to pull k8s.io/kubernetes/pkg/apis/core/validation
as a dependency.
To avoid unnecessary dependencies, replace the use of ValidateDNS1123Subdomain
with IsDNS1123Subdomain.

Signed-off-by: Rostislav M. Georgiev <rostislavg@vmware.com>
 2019-06-14 14:40:14 +03:00
Rostislav M. Georgiev
c394d0fd80 kubeadm: Don't use RBAC helpers 
RBAC construction helpers are part of the Kubernetes internal APIs. As such,
we cannot use them once we move to staging.
Hence, replace their use with manual RBAC rule construction.

Signed-off-by: Rostislav M. Georgiev <rostislavg@vmware.com>
 2019-06-14 14:08:31 +03:00
Kubernetes Prow Robot
042b0d7e60
Merge pull request #77540 from SataQiu/fix-apiserver-20190507 
Mark deprecated kubelet-read-only-port
 2019-06-14 00:28:21 -07:00
Kubernetes Prow Robot
c6bc1639c3
Merge pull request #72178 from dims/remove-ovirt-photon-cloudstack-cloud-providers 
Remove ovirt/cloudstack/photon cloud providers
 2019-06-13 19:12:19 -07:00
Kubernetes Prow Robot
4f29960cb2
Merge pull request #78915 from ereslibre/retry-configmap-get-on-unauthorized 
kubeadm: Add ability to retry ConfigMap get if certain errors happen
 2019-06-12 13:00:19 -07:00
Rafael Fernández López
26c9965a97
kubeadm: Add ability to retry ConfigMap get if certain errors happen 
During the control plane joins, sometimes the control plane returns an
expected error when trying to download the `kubeadm-config` ConfigMap.
This is a workaround for this issue until the root cause is completely
identified and fixed.

Ideally, this commit should be reverted in the near future.
 2019-06-12 17:49:27 +02:00
Sandeep Rajan
77466d4a65 [kubeadm] Add the upstream option in CoreDNS configmap 2019-06-11 21:19:43 -04:00
Davanum Srinivas
e0821ca3dd
Remove ovirt/cloudstack/photon cloud providers 
Change-Id: Iddb80bdc2a9d75d444b8a3cfe0b142acb78e9097
 2019-06-10 12:50:53 -04:00
Joseph Herlant
5ca6eaaba3
kubeadm: fix minor typo in a comment 2019-06-07 15:56:33 -07:00
Kubernetes Prow Robot
544e93486d
Merge pull request #77312 from bjhaid/cleanup_kube_controller_manager 
Clean up kube-controller-manager.
 2019-06-05 15:22:13 -07:00
Arvinderpal Wander
7634cc01c5 Fix kubeadm service-cidr mapping to service-cluster-ip-rage for 
kube-controller-manager.

If a service CIDR that overlaps with the cluster CIDR is
specified to kube-controller-manager then kube-controller-
manager will incorrectly allocate node CIDRs that overlap
with the service CIDR. The fix ensure that kubeadm
maps the --service-cidr to --service-cluster-ip-range for use
by kube-controller-manager.

As per docs, --allocate-node-cidrs must be true for
--service-cluster-ip-range to be considered. It does not make
sense for --cluster-cidr to be unspecified but for
--service-cluster-ip-range and --allocate-node-cidrs to be
set, since the purpose of these options is to have the
controller-manager do the per node CIDR allocation. Also
note that --service-cluster-ip-range is passed to the
api-server, so the presence of *just*
--service-cluster-ip-range should not imply that
--allocate-node-cidrs should be true.

Resolves: kubernetes/kubeadm/issues/1591
 2019-06-05 06:53:32 -07:00
Davanum Srinivas
401a30c73a
Sort kubeadm CLI default params for component config API objects 
Change-Id: If4ba57d528f925de9d536b18c0e6d71fc6d63659
 2019-06-04 09:55:45 -04:00
fabriziopandini
dbb82ba99a fix-kubeadm-upgrade-node 2019-06-04 14:57:30 +02:00
Kubernetes Prow Robot
16aeec2485
Merge pull request #78545 from neolit123/kubeadm-revert-coredns-1.3.1 
kubeadm: revert CoreDNS to 1.3.1
 2019-06-03 14:51:29 -07:00
Kubernetes Prow Robot
71fe27eff5
Merge pull request #78586 from rosti/fix-deprecation-msg 
kubeadm: Fix deprecation message for a flag
 2019-06-02 05:12:12 -07:00
Kubernetes Prow Robot
79dc1d4c49
Merge pull request #78585 from neolit123/kubeadm-fix-upgrade-node 
kubeadm: fix conditional control-plane upgrade
 2019-06-02 03:02:14 -07:00
Kubernetes Prow Robot
cc30c0d9a4
Merge pull request #78399 from rikatz/remove-deprecated-conntrack-max 
Remove deprecated flag --conntrack-max from kube-proxy
 2019-06-01 17:26:14 -07:00
Kubernetes Prow Robot
9c807d483e
Merge pull request #78611 from odinuge/kubeadm-err-check 
Fix error handling for loading initCfg in kubeadm
 2019-06-01 15:38:14 -07:00
Ricardo Pchevuzinske Katz
82c42bb6ee Remove deprecated flag --conntrack-max from kube-proxy 2019-06-01 18:10:28 -03:00
Kubernetes Prow Robot
c81ae93159
Merge pull request #78542 from neolit123/kubeadm-mixed-cert-key 
kubeadm: disallow the mixture of --config and --certificate-key
 2019-06-01 09:51:07 -07:00
yameiwang
5cad3f969c kubeadm:fix typo in controlplane.go 2019-06-01 20:26:08 +08:00
Kubernetes Prow Robot
6b6bdc760a
Merge pull request #78504 from dashpole/deprecate_cadvisor_json 
Add kubelet flag to disable cadvisor json apis, and mark it deprecrated
 2019-06-01 04:44:55 -07:00
Kubernetes Prow Robot
9139adea23
Merge pull request #78344 from aramase/remove-cleanup-iptables 
Remove deprecated flag --cleanup-iptables from kube-proxy
 2019-05-31 23:22:46 -07:00
Kubernetes Prow Robot
5d1409a4bf
Merge pull request #78189 from ksubrmnn/initsystem 
Use Service Control Manager as the Windows Initsystem
 2019-05-31 22:02:34 -07:00
Kubernetes Prow Robot
227f34b33a
Merge pull request #77817 from smarterclayton/apicrd 
CRDs should support watch of protobuf PartialObjectMetadata
 2019-05-31 20:44:35 -07:00
Odin Ugedal
2fc9b3a670
Fix error handling for loading initCfg in kubeadm 
This fixes possible problems when kubeadm upgrade can't load the
InitConfig properly. Some new code introduced in
https://github.com/kubernetes/kubernetes/pull/75499 is placed between
the loading of the config and the error handling, hiding possible
errors.

This error cannot be ignored (as is the case now), since the cfg ptr.
returned from the configutil function will be nil in the case of an
error.

Signed-off-by: Odin Ugedal <odin@ugedal.com>
 2019-06-01 02:08:46 +02:00
Kubernetes Prow Robot
8305deb451
Merge pull request #77286 from bjhaid/cloud_controller_manager_cleanup 
Clean up cloud-controller-manager.
 2019-05-31 12:22:26 -07:00
Anish Ramasekar
aa07730275
Remove deprecated flag --cleanup-iptables from kube-proxy 
Remove deprecated flag --cleanup-iptables from kube-proxy

update license

update license
 2019-05-31 11:09:37 -07:00
Rostislav M. Georgiev
a402610d37 kubeadm: Fix deprecation message for a flag 
Signed-off-by: Rostislav M. Georgiev <rostislavg@vmware.com>
 2019-05-31 17:07:21 +03:00
Lubomir I. Ivanov
aede153310 kubeadm: fix conditional control-plane upgrade 
When a node is not a control-plane properly skip "control-plane"
upgrade phase.
 2019-05-31 16:25:46 +03:00
SataQiu
d79a5181f8 kubeadm: improve kubelet-config-x.y ConfigMap logic 2019-05-31 18:26:39 +08:00
Kubernetes Prow Robot
f49fe2a750
Merge pull request #72787 from dashpole/cadvisor_prefix_whitelist 
Only collect metrics for cgroups required by the summary API
 2019-05-31 00:28:26 -07:00
Lubomir I. Ivanov
2413713c4e kubeadm: apply deterministic order on certificate phases 
The existing logic already creates a proper "tree"
where a CA is always generated before the certs that are signed
by this CA, however the tree is not deterministic.

Always use the default list of certs when generating the
"kubeadm init phase certs" phases. Add a unit test that
makes sure that CA always precede signed certs in the default
lists.

This solves the problem where the help screen for "kubeadm
init" cert sub-phases can have a random order.
 2019-05-31 04:04:13 +03:00
Clayton Coleman
26a6cdda86
Set integration tests to use distinct namespaces 
TestWatchBasedManager was racing with the default namespace creation.
To fix that flake and to ensure integration tests using a shared etcd
don't accidentally overlap in the future, move the three main tests
using the default namespace to separate namespaces, and have
TestWatchBasedManager create that namespace before it runs.

Make StartTestServer wait for default namespace creation, which will
reduce other flakes until future changes completely remove use of default
namespace.

From a failed integration run:

	watch_manager_test.go:66: namespaces "default" not found
	watch_manager_test.go:66: namespaces "default" not found
	watch_manager_test.go:66: namespaces "default" not found
 2019-05-30 19:11:50 -04:00
Lubomir I. Ivanov
a49bc480b9 kubeadm: revert CoreDNS to 1.3.1 2019-05-30 23:31:54 +03:00