github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
110,369 Commits 1 Branch 31 Tags
cbf94307ef3c25cb0497923bb1af6356c9c20ff1
Commit Graph

1321 Commits

Author SHA1 Message Date
Kubernetes Prow Robot
1f3fd1cb80 Merge pull request #101751 from vinayakankugoyal/sshproxy 
Recursive chown the /etc/srv/sshproxy if kube-apiserver is running as…
 2021-05-06 15:15:51 -07:00
Kubernetes Prow Robot
8955f55fcf Merge pull request #101678 from vinayakankugoyal/goodbye-basicauth 
Remove remnants of basic auth from cluster bootstrap.
 2021-05-06 14:14:14 -07:00
Vinayak Goyal
6aa495ddc6 Revert - Recursive chown the /etc/srv/sshproxy if kube-apiserver is running as non root. This way if a key already exists we will be able to read it. 2021-05-06 14:02:53 -07:00
Vinayak Goyal
487583bd0a Recursive chown the /etc/srv/sshproxy if kube-apiserver is running as non root. This way if a key already exists we will be able to read it. 2021-05-05 15:23:04 -07:00
Vinayak Goyal
406ceae991 Recursive chown the /etc/srv/sshproxy if kube-apiserver is running as non root. This way if a key already exists we will be able to read it. 2021-05-05 14:49:59 -07:00
David Porter
dac06aefb0 Revert "Revert "cluster: Use python3 everywhere"" 
This reverts commit 7038338e0f.
 2021-05-03 21:43:15 -07:00
Kubernetes Prow Robot
c5b900b69c Merge pull request #97399 from davidxia/comment-typo 
Fix typo in comment
 2021-05-01 04:57:59 -07:00
Vinayak Goyal
b87762966d Remove remnants of basic auth from cluster bootstrap. 2021-04-30 11:23:14 -07:00
David Porter
e02ff0687e Remove node termination handler addon 2021-04-29 14:42:23 -07:00
Paco Xu
7038338e0f Revert "cluster: Use python3 everywhere" 2021-04-26 11:21:44 +08:00
David Porter
3f87f4f278 Use python3 everywhere 2021-04-23 14:33:58 -07:00
Kubernetes Prow Robot
ae35c6f10c Merge pull request #101255 from basantsa1989/stack-type 
Adding stack-type to gce cloud config (to be used for dual stack in legacy-cloud-providers gce code)
 2021-04-22 15:55:28 -07:00
Kubernetes Prow Robot
6aa683e9cf Merge pull request #100639 from zshihang/proxy 
dnat to 169.254.169.252 for metadata server traffic
 2021-04-21 11:15:51 -07:00
Ikko Ashimine
f69a2b40da Fix typo in gci/README.md 
becase -> because
 2021-04-21 21:35:05 +09:00
Kubernetes Prow Robot
41505f7109 Merge pull request #101176 from jkh52/master 
kube-master-installation: improve systemd cross-unit robustness.
 2021-04-20 00:42:45 -07:00
Kubernetes Prow Robot
46b0ad1327 Merge pull request #101207 from vinayakankugoyal/sshproxy 
If kube-apiserver is running as non-root then set the permissions of …
 2021-04-19 17:24:33 -07:00
Joseph Anttila Hall
05bcc72dc2 kube-master-installation: reboot on failure. 
Also some minor reliability tweaks.
 2021-04-19 17:16:21 -07:00
Vinayak Goyal
94e34da471 If kube-apiserver is running as non-root then set the permissions of /etc/srv/sshproxy accordingly. 2021-04-19 13:16:06 -07:00
Basant Amarkhed
e15d811652 Adding stack-type to cloud config (to be used for dual stack in legacy-cloud-providers code) 2021-04-19 19:06:55 +00:00
Shihang Zhang
297ad30610 dnat to 169.254.169.252 for metadata server traffic 2021-04-19 10:47:51 -07:00
Kubernetes Prow Robot
28c877dcb6 Merge pull request #101043 from benhxy/tls-2 
Use GKE specific configuration for kubeconfig file generation
 2021-04-16 11:54:51 -07:00
Kubernetes Prow Robot
7ecd93ea1e Merge pull request #100764 from benhxy/tls 
Use GKE specific configuration for kube-apiserver SNI cert
 2021-04-15 19:52:22 -07:00
Mike Danese
ba3fc65072 add a warning about the filter table 2021-04-15 16:22:28 -07:00
Kubernetes Prow Robot
24350a922e Merge pull request #101086 from enj/enj/i/auth_owners_gen 
Prune stale entries from OWNERS files
 2021-04-15 08:27:50 -07:00
Maciej Borsz
493adbada9 Do not grep for curl --help for --retry-connrefused 2021-04-14 08:32:21 +02:00
Kubernetes Prow Robot
f1c037889d Merge pull request #100770 from avrittrohwer/configure-script-logging 
Add configure script logging instrumentation
 2021-04-13 18:06:42 -07:00
Monis Khan
91241eac9b Prune stale entries from OWNERS files 
Signed-off-by: Monis Khan <mok@vmware.com>
 2021-04-13 20:54:50 -04:00
Kubernetes Prow Robot
318db993c8 Merge pull request #101020 from cindy52/bugfix/etcd 
Change file owner of /mnt/disks/master-pd/var/etcd  instead of /var/etcd
 2021-04-13 12:09:47 -07:00
Avritt Rohwer
d4495183c9 Add configure script logging instrumentation. 
- Add log functions to facilitate debug logging.
- Wrap commands called in main with debug logging.
- Configure a systemd service to forward the logs to the serial port.
- Add a 'retry-forever' function to harden download steps.
- Add default value support to 'get-metadata-value' function.
- Fix some spellcheck lints.
 2021-04-13 09:30:49 -07:00
Ben Hu
e3270e532c GKE specific kubeconfig 2021-04-12 22:47:39 +00:00
Ben Hu
ccb742c43c Resolve comments. Remove kubeconfig changes. 2021-04-12 22:39:53 +00:00
Cindy Guo
03f60f4b60 chown on /mnt/disks/master-pd/var/etcd instead of /var/etcd 2021-04-12 08:21:01 +00:00
Kubernetes Prow Robot
a96000311f Merge pull request #100956 from saschagrunert/cri-tools 
Update cri-tools to v1.21.0
 2021-04-12 00:35:59 -07:00
Kubernetes Prow Robot
99301e672b Merge pull request #100436 from vinayakankugoyal/apiservernonroot 
Fix kube-apiserver manifest.
 2021-04-10 20:29:35 -07:00
Antonio Ojea
93f4727aab gce configure containerd default_runtime_name 
move config to v2
 2021-04-11 00:48:22 +02:00
Kubernetes Prow Robot
5b038e6cff Merge pull request #100635 from cindy52/etcd/rootless 
Run the etcd as non-root
 2021-04-09 05:19:37 -07:00
Sascha Grunert
33e0e035ea Update cri-tools to v1.21.0 
This updates crictl to the latest available release.

Signed-off-by: Sascha Grunert <sgrunert@redhat.com>
 2021-04-09 11:05:13 +02:00
Kubernetes Prow Robot
96db2323a4 Merge pull request #100041 from vteratipally/update_npd_version 
bump npd version to latest v0.8.7
 2021-04-08 17:10:55 -07:00
Cindy Guo
9f058079d2 run etcd as nonroot 
Co-authored-by: Vinayak Goyal <vinayakankugoyal@gmail.com>
 2021-04-08 20:51:45 +00:00
Ben Hu
a2d094797d Use GKE specific configuration in startup scripts in GKE deployment. 2021-04-02 00:10:53 +00:00
Vinayak Goyal
4b3271a542 Fix kube-apiserver manifest. 2021-03-21 16:24:56 -07:00
Maciej Szulik
a3a26171d1 Run GCE unit tests as non-root 2021-03-18 12:14:24 +01:00
varsha teratipally
90983f66e4 Moving docker options to daemon.json 
As per the new docker guidelines about customizing the options
like adding registry-mirrors, moving the options to daemon.json
 2021-03-10 19:14:48 +00:00
Varsha Teratipally
82434ec818 bump npd version to latest v0.8.7 2021-03-09 22:48:27 +00:00
Benjamin Elder
56e092e382 hack/update-bazel.sh 2021-02-28 15:17:29 -08:00
Vinayak Goyal
c63ff05e6d Run kube-apiserver as non-root. 2021-02-22 20:48:16 -08:00
Kubernetes Prow Robot
874877fa44 Merge pull request #99216 from ruiwen-zhao/remove_modprobe 
Remove modprobe configs from configure-helper
 2021-02-22 17:24:32 -08:00
Cong Liu
03709c0ece Add arm64 support for GCE node configuration 
Fix typo

Add TODO
 2021-02-19 14:22:26 -08:00
ruiwen-zhao
c053b232ba Remove modprobe configs from configure-helper 2021-02-18 22:57:44 +00:00
Benjamin Elder
299c561b10 portably configure tempdir in configure-helper.sh 
fixes a `make test` failure on macOS
 2021-02-12 01:15:14 -08:00