github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
100,939 Commits 1 Branch 31 Tags
cb49f5cf7dfda115e4bf946a13c43481c8f21f99
Commit Graph

235 Commits

Author SHA1 Message Date
walter
13ab65d356 Upgrade konnectivity-client for GRPC connection fixes 
The v0.0.19 Konnectivity client includes several
significant fixes to prevent the GRPC tunnel between
the KAS and the APIServer Network Proxy from becoming
blocked/wedged.
Importantly it picks up the fix for kubernetes-sigs/apiserver-network-proxy#167.
We believe this will also fix many of the failures currently seen on
https://testgrid.k8s.io/sig-api-machinery-network-proxy#ci-kubernetes-e2e-gci-gce-network-proxy-grpc&width=5.
 2021-05-24 14:53:30 -07:00
SataQiu
ff18e391e9 cleanup useless 'scheduler.alpha.kubernetes.io/critical-pod' annotation 2021-05-19 17:46:35 +08:00
Vinayak Goyal
b951b9349f Update konnectivity network proxy server to run as non-root, by default in kube-up. 2021-05-13 12:35:34 -07:00
Kubernetes Prow Robot
1bd00776b5 Merge pull request #101874 from tallclair/owners 
Remove tallclair for gce owners
 2021-05-10 13:49:48 -07:00
Kubernetes Prow Robot
7563d3092e Merge pull request #96216 from knight42/refactor/disable-insecure-port-in-ctrler-mgr 
refactor: disable insecure serving in controller-manager
 2021-05-10 13:49:36 -07:00
Tim Allclair
9d349b6d21 Remove tallclair for gce owners 2021-05-10 10:21:17 -07:00
Kubernetes Prow Robot
8b1c82a34c Merge pull request #101772 from swetharepakula/bump-glbc-image 
Update glbc image to v1.12.0
 2021-05-06 22:05:02 -07:00
Kubernetes Prow Robot
ca0c04e4d3 Merge pull request #101164 from vinayakankugoyal/apiservernonroot 
Run control-plane as non root in kube-up.
 2021-05-06 17:33:14 -07:00
Swetha Repakula
8c8db0d8e9 Update glbc image to v1.12.0 
- glbc now uses networking.k8s.io/v1 Ingress
 2021-05-06 15:20:05 -07:00
Vinayak Goyal
6aa495ddc6 Revert - Recursive chown the /etc/srv/sshproxy if kube-apiserver is running as non root. This way if a key already exists we will be able to read it. 2021-05-06 14:02:53 -07:00
Kubernetes Prow Robot
add13090e2 Merge pull request #101732 from spencer-p/master 
Promote kube-addon-manager to v9.1.5
 2021-05-05 18:49:17 -07:00
Kubernetes Prow Robot
7d176851f2 Merge pull request #100612 from pacoxu/patch-8 
kubeadm: upgrade etcd to 3.4.13-3
 2021-05-05 07:11:27 -07:00
Spencer Peterson
a119b767d0 Promote kube-addon-manager to v9.1.5 
Change-Id: Iffebad61634831b0c34eb54517a2543c75c55d68
 2021-05-04 12:14:52 -07:00
Jian Zeng
e481d99965 refactor: disable insecure serving in controller-manager 
Now the following flags have no effect and would be removed in v1.24:
* `--port`
* `--address`

The insecure port flags `--port` may only be set to 0 now.

Signed-off-by: Jian Zeng <zengjian.zj@bytedance.com>
 2021-05-03 00:01:49 +08:00
pacoxu
9847579699 gcp/kubeadm: upgrade etcd to 3.4.13-3 
Signed-off-by: pacoxu <paco.xu@daocloud.io>
 2021-04-15 11:19:41 +08:00
Swetha Repakula
f882eadbdc Update glbc image in addon 2021-04-13 19:32:03 -07:00
Kubernetes Prow Robot
318db993c8 Merge pull request #101020 from cindy52/bugfix/etcd 
Change file owner of /mnt/disks/master-pd/var/etcd  instead of /var/etcd
 2021-04-13 12:09:47 -07:00
Cindy Guo
03f60f4b60 chown on /mnt/disks/master-pd/var/etcd instead of /var/etcd 2021-04-12 08:21:01 +00:00
Kubernetes Prow Robot
99301e672b Merge pull request #100436 from vinayakankugoyal/apiservernonroot 
Fix kube-apiserver manifest.
 2021-04-10 20:29:35 -07:00
Cindy Guo
9f058079d2 run etcd as nonroot 
Co-authored-by: Vinayak Goyal <vinayakankugoyal@gmail.com>
 2021-04-08 20:51:45 +00:00
Vinayak Goyal
4b3271a542 Fix kube-apiserver manifest. 2021-03-21 16:24:56 -07:00
Jake Sanders
fb40ab2cde Update kube-addon-manager to v9.1.4 2021-03-04 22:39:46 -08:00
Benjamin Elder
56e092e382 hack/update-bazel.sh 2021-02-28 15:17:29 -08:00
Vinayak Goyal
c63ff05e6d Run kube-apiserver as non-root. 2021-02-22 20:48:16 -08:00
Cong Liu
03709c0ece Add arm64 support for GCE node configuration 
Fix typo

Add TODO
 2021-02-19 14:22:26 -08:00
Jake Sanders
927eaffe19 Update kube-addon-manager image to v9.1.2 2021-02-11 09:38:39 -08:00
Joseph Anttila Hall
6812a9c610 Bump network proxy images to v0.0.15 2021-02-05 00:35:33 -08:00
Maciej Borsz
7f09d59215 Migrate etcd's livenessProbe to etcdctl endpoint health. 
Change-Id: Ie19c844050c75e3d1c4b431d09ba0ac851c5317b
 2020-12-11 12:43:02 +01:00
Kubernetes Prow Robot
cad9a8277d Merge pull request #97127 from liggitt/revert-etcd-host-ip 
Revert "iAdd host IP to etcd listen client URLs."
 2020-12-08 22:01:52 -08:00
Jordan Liggitt
8820dc4522 Revert "iAdd host IP to etcd listen client URLs." 
This reverts commit 8b4e164a78.
 2020-12-08 11:37:13 -05:00
Kuba Tużnik
9efbd914f6 Bump Cluster Autoscaler to v1.20.0 2020-12-02 11:10:54 +01:00
Jefftree
58001e847d Bump kas to v0.0.14 2020-11-10 17:22:41 -08:00
Ben Hu
8416c5cc51 Use host IP instead of 127.0.0.1 for kube-apiserver healthcheck. 2020-10-27 16:25:27 +00:00
Ben Hu
8b4e164a78 iAdd host IP to etcd listen client URLs. 
Allow kube-apiserver to use host IP to connect to etcd.
Update etcd/migrate to allow additional client listening URLs.
 2020-10-20 16:43:52 +00:00
Jefftree
300c88cf47 Bump network proxy images to v0.0.12 2020-09-22 13:26:56 -07:00
Kubernetes Prow Robot
b49724d5fc Merge pull request #94287 from jingyih/update_etcd_server_3p4p13 
Update default etcd server to 3.4.13
 2020-09-01 15:35:20 -07:00
jingyih
c96b93fbd4 Update default etcd server to 3.4.13 2020-08-28 21:19:24 +08:00
Paulo Gomes
8f8f1bad72 Update yaml files to use seccomp GA syntax 2020-08-13 08:45:36 +01:00
Vivek Bagade
2e4a329b35 Update Cluster Autoscaler version to 1.19.0 2020-07-31 14:13:22 +02:00
Stephen Augustus
90c223fa5c [VDF] Remove references to us.gcr.io/k8s-artifacts-prod 
Signed-off-by: Stephen Augustus <saugustus@vmware.com>
 2020-07-22 16:08:30 -04:00
Kubernetes Prow Robot
f9ad7db9a6 Merge pull request #92349 from jingyih/update_etcd_server_3p4p9 
Update default etcd server to 3.4.9
 2020-07-17 07:53:01 -07:00
jingyih
e9bf1c3c90 Update default etcd server to 3.4.9 2020-07-08 14:16:40 +08:00
Kubernetes Prow Robot
c6011f2d54 Merge pull request #91390 from vinayakankugoyal/nonroot 
Updating kube-controller-manager to run as non-root.
 2020-06-21 00:56:38 -07:00
Kubernetes Prow Robot
bfa6eb1772 Merge pull request #91964 from wenjiaswe/etcdNameComment 
Add a comment to keep etcd name in sync and change `hostname` to `HOSTNAME`
 2020-06-18 19:05:40 -07:00
Wenjia Zhang
0da9c3e379 Add a comment to keep etcd name in sync and change hostname to HOSTNAME 2020-06-18 11:11:12 -07:00
Jefftree
c6b2b1fad3 Add health port to network proxy 2020-06-12 16:44:56 -07:00
wojtekt
ee27e5b8be Remove all references to etcd-empty-dir-cleanup. 2020-06-05 08:41:31 +02:00
Vinayak Goyal
8daa9e6f77 Updating kube-controller-manager to run as non-root. 2020-06-02 14:07:00 -07:00
Kubernetes Prow Robot
f01d848c48 Merge pull request #91329 from dims/switch-kube-controller-manager-to-distroless-image 
Switch kube-controller-manager to distroless image
 2020-05-22 17:23:10 -07:00
Kubernetes Prow Robot
10caa46f6b Merge pull request #91300 from dims/move-to-latest-etcd-3.4.7-2 
Switch over to new etcd 3.4.7-2 image
 2020-05-22 04:14:37 -07:00