kubernetes

Author	SHA1	Message	Date
k8s-merge-robot	18b124f981	Merge pull request #25296 from cjcullen/gcpauthz Automatic merge from submit-queue Add configuration for GCP webhook authorization. Plumb through configuration of webhook authorization on GCE.	2016-05-11 23:45:10 -07:00
k8s-merge-robot	17c3f19c64	Merge pull request #21737 from FujitsuEnablingSoftwareTechnologyGmbH/openstack-provider Automatic merge from submit-queue Openstack provider Our pull request delivers solution to create Kubernetes cluster on the top of OpenStack. Heat OpenStack Orchestration engine describes the infrastructure for Kubernetes cluster. CentoOS images are used for Kubernetes host machines. We tested our solution with DevStack and Citycloud provider. We believe that our solution will fill the gap that which is on the market. <!-- Reviewable:start --> --- This change is [<img src="http://reviewable.k8s.io/review_button.svg" height="35" align="absmiddle" alt="Reviewable"/>](http://reviewable.k8s.io/reviews/kubernetes/kubernetes/21737) <!-- Reviewable:end -->	2016-05-10 23:56:47 -07:00
CJ Cullen	de71a2a76e	Add configuration for GCP webhook authorization.	2016-05-09 09:17:40 -07:00
k8s-merge-robot	f46f35a9df	Merge pull request #23600 from mikedanese/addon-manager Automatic merge from submit-queue run kube-addon-manager in a static pod Depends on https://github.com/kubernetes/kubernetes/pull/23605 and https://github.com/kubernetes/kubernetes/pull/24108 Ref #23233	2016-05-08 11:30:44 -07:00
k8s-merge-robot	2b46c4b7e2	Merge pull request #24391 from bprashanth/ing_templated_controller Automatic merge from submit-queue Template the ingress controller We still need https://github.com/kubernetes/contrib/pull/791 to run the controller as a static pod ref https://github.com/kubernetes/kubernetes/issues/23663	2016-05-06 20:04:51 -07:00
Mike Danese	3e1c0b5951	run kube-addon-manager in a pod	2016-05-06 11:01:06 -07:00
Minhan Xia	174d327695	bump cni version again	2016-05-04 16:28:04 -07:00
k8s-merge-robot	963aebd3e5	Merge pull request #25123 from jlewi/jessie Automatic merge from submit-queue Add an entry to the salt config to allow Debian jessie on GCE. ```release-note Add an entry to the salt config to allow Debian jessie on GCE. As with the existing Wheezy image on GCE, docker is expected to already be installed in the image. ``` [![Analytics](https://kubernetes-site.appspot.com/UA-36037335-10/GitHub/.github/PULL_REQUEST_TEMPLATE.md?pixel)]()	2016-05-04 04:22:39 -07:00
k8s-merge-robot	dcc2a400d0	Merge pull request #25115 from freehan/bumpcni Automatic merge from submit-queue bump cni binary	2016-05-04 03:07:06 -07:00
Jeremy Lewi	ccf4b381db	Add an entry to the salt config to allow Debian jessie on GCE. As with the existing Wheezy image on GCE, docker is expected to already be installed in the image.	2016-05-03 22:17:38 -07:00
Minhan Xia	87c66c517d	bump cni binary	2016-05-03 17:18:26 -07:00
Lukasz Zajaczkowski	5b84667dd6	Merge pull request #10 from ctrlaltdel/openstack-provider-ssl-fix Expose /etc/pki from host to kube-apiserver and controller-manager	2016-04-29 09:22:47 +02:00
Lukasz Zajaczkowski	895c543c8c	Add missing single speech mark after rebase	2016-04-29 08:16:23 +02:00
Francois Deppierraz	dd786794e9	Expose /etc/pki from host to kube-apiserver and controller-manager CentOS 7 Core nodes running on OpenStack with an SSL-enabled API endpoint results in the following error without this patch: F0425 19:00:58.124520 5 server.go:100] Cloud provider could not be initialized: could not init cloud provider "openstack": Post https://my.openstack.cloud:5000/v2.0/tokens: x509: failed to load system roots and no roots provided The root cause is that the ca-bundle.crt file is actually a symlink which points to a directory which wasn't previously exposed. [root@kubernetesstack-master ~]# ls -l /etc/ssl/certs/ca-bundle.crt lrwxrwxrwx. 1 root root 49 18 nov 11:02 /etc/ssl/certs/ca-bundle.crt -> /etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem [root@kubernetesstack-master ~]#	2016-04-28 23:07:24 +02:00
Elson O Rodriguez	9226cf7460	Undoing regression of #23311	2016-04-28 14:06:30 +02:00
Elson O Rodriguez	545b230851	Adding socat package for Redhat systems in Salt	2016-04-28 14:06:30 +02:00
Elson O Rodriguez	001678991b	Removing an invalid reference to cadvisor from salt. It looks like this was left over from https://github.com/kubernetes/kubernetes/pull/23316	2016-04-28 14:06:30 +02:00
Elson O Rodriguez	5ae161e086	Adding cloudprovider support for Openstack kube-up provider. Making the assumption that the person running kube-up has their Openstack environment setup, those same variables are being passed into heat, and then into openstack.conf. The salt codebase was modified to add openstack as well.	2016-04-28 14:06:29 +02:00
k8s-merge-robot	7a09fbcf97	Merge pull request #24210 from cjcullen/abacAuth Automatic merge from submit-queue Switch to ABAC authorization from AllowAll Switch from AllowAll to ABAC. All existing identities (that are created by deployment scripts) are given full permissions through ABAC. Manually created identities will need policies added to the `policy.jsonl` file on the master.	2016-04-27 16:43:08 -07:00
k8s-merge-robot	9fd05474c2	Merge pull request #24108 from mikedanese/kube-addon-cleanup Automatic merge from submit-queue don't source the kube-env in addon-manager This was added in `2feb658ed7` which became unused after #23603 but wasn't removed	2016-04-27 16:07:54 -07:00
CJ Cullen	3253739505	Use ABAC authz instead of AllowAll.	2016-04-27 11:38:15 -07:00
k8s-merge-robot	3fa84134cd	Merge pull request #24124 from vmware/photon-controller Automatic merge from submit-queue Initial kube-up support for VMware's Photon Controller This is for: https://github.com/kubernetes/kubernetes/issues/24121 Photon Controller is an open-source cloud management platform. More information is available at: http://vmware.github.io/photon-controller/ This commit provides initial support for Photon Controller. The following features are tested and working: - kube-up and kube-down - Basic pod and service management - Networking within the Kubernetes cluster - UI and DNS addons It has been tested with a Kubernetes cluster of up to 10 nodes. Further work on scaling is planned for the near future. Internally we have implemented continuous integration testing and will run it multiple times per day against the Kubernetes master branch once this is integrated so we can quickly react to problems. A few things have not yet been implemented, but are planned: - Support for kube-push - Support for test-build-release, test-setup, test-teardown Assuming this is accepted for inclusion, we will write documentation for the kubernetes.io site. We have included a script to help users configure Photon Controller for use with Kubernetes. While not required, it will help some users get started more quickly. It will be documented. We are aware of the kube-deploy efforts and will track them and support them as appropriate.	2016-04-27 01:02:03 -07:00
Alain Roy	fa9d79df75	Initial kube-up support for VMware's Photon Controller This is for: https://github.com/kubernetes/kubernetes/issues/24121 Photon Controller is an open-source cloud management platform. More information is available at: http://vmware.github.io/photon-controller/ This commit provides initial support for Photon Controller. The following features are tested and working: - kube-up and kube-down - Basic pod and service management - Networking within the Kubernetes cluster - UI and DNS addons It has been tested with a Kubernetes cluster of up to 10 nodes. Further work on scaling is planned for the near future. Internally we have implemented continuous integration testing and will run it multiple times per day against the Kubernetes master branch once this is integrated so we can quickly react to problems. A few things have not yet been implemented, but are planned: - Support for kube-push - Support for test-build-release, test-setup, test-teardown Assuming this is accepted for inclusion, we will write documentation for the kubernetes.io site. We have included a script to help users configure Photon Controller for use with Kubernetes. While not required, it will help some users get started more quickly. It will be documented. We are aware of the kube-deploy efforts and will track them and support them as appropriate.	2016-04-25 13:24:16 -07:00
Prashanth Balasubramanian	b066cb5357	Templatize l7 rc	2016-04-20 16:15:22 -07:00
Mike Danese	e095f8c377	don't source the kube-env in addon-manager	2016-04-20 09:44:44 -07:00
CJ Cullen	760568796f	Masquerade traffic from off-cluster going through kube-proxy.	2016-04-19 21:39:34 -07:00
k8s-merge-robot	273b01dceb	Merge pull request #23975 from zhouhaibing089/kubectl-fix Automatic merge from submit-queue add HOME env variable for kube-addons service Fix https://github.com/kubernetes/kubernetes/issues/23973. Briefly, systemd service does not know the `HOME` environment variable which causes the kubectl write schema file into `/.kube` while it is expected to be `/root/.kube`.	2016-04-17 13:12:53 -07:00
k8s-merge-robot	7e2b795a36	Merge pull request #24293 from mikedanese/componentlabels Automatic merge from submit-queue add labels to kube component static pods ``` $ k --namespace=kube-system get po -l 'tier in (control-plane)' NAME READY STATUS RESTARTS AGE kube-apiserver-k-7-master 1/1 Running 2 1m kube-controller-manager-k-7-master 1/1 Running 1 1m kube-scheduler-k-7-master 1/1 Running 0 54s $ k --namespace=kube-system get po -l 'tier in (node)' NAME READY STATUS RESTARTS AGE kube-proxy-k-7-minion-eheu 1/1 Running 0 1m kube-proxy-k-7-minion-mwo9 1/1 Running 0 1m kube-proxy-k-7-minion-xw6m 1/1 Running 0 1m ``` cc @bgrant0607 @thockin @gmarek Fixes #21267	2016-04-16 03:11:32 -07:00
k8s-merge-robot	16e2e87a89	Merge pull request #23605 from mikedanese/pause-kube Automatic merge from submit-queue don't ship kube-registry-proxy and pause images in tars. pause is built into containervm. if it's not on the machine we should just pull it. nobody that I'm aware of uses kube-registry-proxy and it makes build/deployment more complicated and slower.	2016-04-15 00:26:20 -07:00
Mike Danese	6d24ca487a	add labels to kube component static pods	2016-04-14 19:13:18 -07:00
k8s-merge-robot	af1e1c3ce6	Merge pull request #23992 from mml/docker-checker Automatic merge from submit-queue Rewrite docker-checker.sh to make it less kill-happy.	2016-04-13 10:10:25 -07:00
Matt Liggett	e6af5ee296	Rewrite docker-checker.sh to make it less kill-happy. Also a little more organized and easier to re-use. Should minimize the incidence of #23461.	2016-04-11 16:57:29 -07:00
Jeff Lowdermilk	e17213a2a8	Merge pull request #23491 from onorua/master set KillMode for kubelet to process, fix for #13511	2016-04-08 16:39:32 -07:00
Jeff Lowdermilk	ca5b764210	Merge pull request #23876 from mikedanese/stop-to-delete use kubectl delete in kube-addon-manager instead of stop	2016-04-08 09:30:56 -07:00
zhouhaibing089	db347beb3f	add HOME env variable for kube-addons service	2016-04-07 15:39:22 +08:00
Minhan Xia	f690220b5c	Merge pull request #23704 from freehan/kubenet Update cni binary #23712 is depending on this. Not sure why this one gets in first. Hand merging this	2016-04-06 15:47:42 -07:00
Mike Danese	7b8dbf4876	use kubectl delete in kube-addon-manager instead of stop stop has been deprecated for about a year	2016-04-05 09:31:45 -07:00
Mike Danese	32426d6e97	don't ship kube-registry-proxy and pause in tars. pause is built into containervm. if it's not on the machine we should just pull it. nobody that I'm aware of uses kube-registry-proxy and it makes build/deployment more complicated and slower.	2016-04-05 07:32:07 -07:00
Matt Johnson	ce220836c3	Allow for local CNI binaries and configuration files with KUBERNETES_PROVIDER=vagrant. Files are taken from cluster/network-plugins/{bin,conf} to be consumed within a vagrant kube-up.sh environment. Paths used for configuration files and the 'cni' name of the network provider are all from the kubernetes documentation, but the actual implementation in the salt automation doesn't seem to exist.	2016-04-04 14:38:00 +01:00
Matt Johnson	46e6df655f	Support use of NETWORK_PROVIDER=cni with KUBERNETES_PROVIDER=vagrant for a kube-up. Use of NETWORK_PROVIDER=cni is documented as useable (as well as it's affects on the runtime args of kubelet), however the actual implimentation in the salt automation doesnt seem to exist. this change attempts to fix that for the vagrant usecase.	2016-04-04 14:37:48 +01:00
k8s-merge-robot	5be819b607	Merge pull request #23612 from mikedanese/addon-fix Automatic merge from submit-queue use apply instead of create to setup namespaces and tokens in addon manager when the addon manager restarts, it takes ~15 minutes (1000 seconds) to start the sync loop because it retries creation of namespace and tokens 100 times. Create fails if the tokens already exist. Just use apply.	2016-04-03 05:50:12 -07:00
k8s-merge-robot	b448825211	Merge pull request #23603 from mikedanese/dont-create-secret-for-dns Automatic merge from submit-queue stop creating secrets for dns, it uses the kube-system service account now	2016-04-02 17:20:52 -07:00
Minhan Xia	d026d7ecbc	Update cni binary	2016-03-31 13:57:51 -07:00
Alex Robinson	b60ef6f0dd	Merge pull request #23593 from dchen1107/docker Remove unnecessary override of /etc/init.d/docker on containervm image.	2016-03-31 13:31:52 -07:00
Alex Robinson	d41d50547d	Merge pull request #23662 from ArtfulCoder/dockerscript make docker-checker more robust	2016-03-31 10:53:39 -07:00
Abhishek Shah	736c02c7a0	make docker-checker more robust	2016-03-31 10:07:37 -07:00
CJ Cullen	26a6c66de5	Change kube-proxy & fluentd CPU request to 20m/80m.	2016-03-30 18:14:24 -07:00
k8s-merge-robot	c327879771	Merge pull request #23512 from Q-Lee/nanny-fix Automatic merge from submit-queue Create a new Deployment in kube-system for every version. It appears that version numbers have already been properly added to these files. Small change to delete an old deployment entirely, so we can make a new one per version (like replication controllers). We'll want to change this back once the kube-addons support deployments in a later version.	2016-03-29 20:59:46 -07:00
Mike Danese	ffa8bbde72	use apply instead of create to setup namespaces and tokens in addon manager	2016-03-29 16:41:53 -07:00
Mike Danese	0a821a473d	stop create secrets for dns, it uses the kube-system service account now	2016-03-29 14:27:28 -07:00
Quintin Lee	0dcd49d584	Create a new Deployment in kube-system for every version.	2016-03-29 13:26:36 -07:00
Dawn Chen	c5ac60f584	Remove unnecessary override of /etc/init.d/docker on containervm image.	2016-03-29 12:35:13 -07:00
k8s-merge-robot	3ec9f1e0a1	Merge pull request #23312 from mikedanese/static-routes-salt Auto commit by PR queue bot	2016-03-26 12:29:40 -07:00
Yaroslav Molocko	0bfc496496	fix for https://github.com/kubernetes/kubernetes/issues/13511	2016-03-25 22:29:09 +08:00
Mike Danese	be5b669b45	remove cadvisor salt We have been removing cadviosr.manifest for over a year to cleanup the old deployment style. I think we are ok at this point.	2016-03-24 11:55:29 -07:00
k8s-merge-robot	cba5efd7de	Merge pull request #23311 from mikedanese/nginx-salt Auto commit by PR queue bot	2016-03-23 04:14:17 -07:00
Quintin Lee	c484563315	Removing versions from deployment names.	2016-03-22 13:17:06 -07:00
Quintin Lee	79f0cc25e8	Support addon Deployments, make heapster a deployment with a nanny.	2016-03-22 13:17:06 -07:00
Mike Danese	c676f8dabb	remove unused static-routes from salt	2016-03-21 17:38:08 -07:00
Mike Danese	172d4e27f1	remove unused nginx salt 'aws', 'gce', 'vagrant', 'vsphere' are all the cloud providers	2016-03-21 17:25:31 -07:00
Justin Santa Barbara	e0caa1e559	non_masquerade_cidr: verify-flags exception, salt syntax Cope is non_masquerade_cidr value is empty; add exception for verify-flags.	2016-03-15 11:05:55 -04:00
Matt Margolin	e752f2149f	Enable non_masquerade_cidr option configured in salt.grains This should allow allow the non_masquerade_cidr option to get configured in /etc/salt/minion.d/grains.conf, allowing the flag to used by kubelet in /etc/sysconfig/kubelet. Default configuration is set in pillar	2016-03-15 09:56:33 -04:00
k8s-merge-robot	5191cfc415	Merge pull request #20931 from gswallow/master Auto commit by PR queue bot	2016-03-07 06:18:53 -08:00
k8s-merge-robot	bc96422e23	Merge pull request #22571 from zmerlynn/regional-registry Auto commit by PR queue bot	2016-03-06 13:21:19 -08:00
k8s-merge-robot	0a21fa06d9	Merge pull request #22539 from a-robinson/newf Auto commit by PR queue bot	2016-03-05 08:26:59 -08:00
k8s-merge-robot	886c943379	Merge pull request #22367 from a-robinson/requests Auto commit by PR queue bot	2016-03-05 06:18:14 -08:00
k8s-merge-robot	271784e5fa	Merge pull request #21167 from andyzheng0831/trusty-release Auto commit by PR queue bot	2016-03-05 01:57:52 -08:00
k8s-merge-robot	57c944caa2	Merge pull request #22434 from justinsb/aws_docker_babysitter Auto commit by PR queue bot	2016-03-04 21:52:03 -08:00
Zach Loafman	60e1fccc7f	Regional registries: Hack the manifests! Allow the gcr.io/google_containers registry to be overridden regionally by just blasting a new KUBE_ADDON_REGISTRY out. Instead of adding every addon to Salt and asking all of the other consumers (Trusty, Juju, Mesos, etc) to change, just script the sed ourselves. This is probably the 9th grossest thing I've ever done, but it works well, and it works quickly. I kind of wish it didn't.	2016-03-04 20:00:54 -08:00
Abhi Shah	506f4d2212	Merge pull request #22551 from dchen1107/test1 Enable --log-level=info for docker daemons for scalability jenkins jo…	2016-03-04 16:50:19 -08:00
Alex Robinson	3216204668	Update to the latest version of google-fluentd. It includes some performance improvements for parsing JSON (which is very important for us, since all Docker logs are JSON) as well as a couple new settings, like forcing of a flush of multiline logs after a time period rather than having to wait until a new log is seen before feeling confident flushing the previous one.	2016-03-05 00:18:31 +00:00
Alex Robinson	4e729c6c7c	Reconfigure fluentd's resource limits and requests. -Remove CPU limits to enable CPU bursting once 1.2 begins enforcing CPU limits. -Add a memory limit for fluentd-es to match fluentd-gcp. -Explicitly set requests to match limits.	2016-03-04 16:16:35 -08:00
k8s-merge-robot	23aa8565e2	Merge pull request #20851 from vmware/vsphere-docker-version-fix Auto commit by PR queue bot	2016-03-04 15:50:36 -08:00
Dawn Chen	fd10ca2f45	Enable --log-level=info for docker daemons for jenkins jobs and e2e tests except soak-continuous.	2016-03-04 13:31:42 -08:00
Andy Zheng	242b9977c7	Remove manifest copies from Trusty support This change revises the way to provide kube-system manifests for clusters on Trusty. Originally, we maintained copies of some manifests under cluster/gce/trusty/kube-manifests, which is not scalable and hard to maintain. With this change, clusters on Trusty will use the same source of manifests as ContainerVM. This change also fixes some minor problems such as shell variables and comments to meet the style guidance better.	2016-03-04 11:16:49 -08:00
Justin Santa Barbara	6bdab05d11	Salt: Don't use Salt to start Docker Starting docker through Salt has always been problematic. Kubelet or the babysitter process should start it. We've kept it around primarily so we have a `service: docker` node for the Salt DAG. Instead, we enable (but do not start) the Docker service in Salt. This lets us keep the DAG node, but won't start it. There's another bug in Salt, where watches will start the service even on `service.enabled`. So we remove the watches, and move them to our existing Salt bug-fix script.	2016-03-04 12:07:10 -05:00
Justin Santa Barbara	dbff0ef67b	Systemd/non-Redhat: Add docker healthcheck script We do the equivalent of #21727 for systemd systems. Issue #21731	2016-03-04 12:05:52 -05:00
Justin Santa Barbara	64f1cbaddd	Systemd/non-Redhat: Add docker prestart file We do the equivalent of #21727 for systemd systems. Issue #21731	2016-03-04 12:05:52 -05:00
Justin Santa Barbara	d074b5ba13	docker systemd file: type->notify, docs->https This minimizes the changes we make to the official Docker systemd file.	2016-03-04 12:05:52 -05:00
Alex Robinson	29eb6020fb	Merge pull request #22074 from a-robinson/images Update the logging images to parse sub-second docker timestamps.	2016-03-04 09:04:33 -08:00
k8s-merge-robot	09313b0847	Merge pull request #22254 from vmware/vsphere-pod-cidr-fix Auto commit by PR queue bot	2016-03-04 04:17:44 -08:00
k8s-merge-robot	6d690d3f8a	Merge pull request #21904 from justinsb/salt_docker_install_fix Auto commit by PR queue bot	2016-03-03 22:07:14 -08:00
Jeff Lowdermilk	93e14a63e8	Revert "Enable --log-level=info for docker daemons for scalability jenkins jo…"	2016-03-03 19:21:11 -08:00
Jeff Lowdermilk	7215860ecd	Merge pull request #22453 from dchen1107/test1 Enable --log-level=info for docker daemons for scalability jenkins jo…	2016-03-03 16:29:34 -08:00
Dawn Chen	84689a7a69	Enable --log-level=info for docker daemons for scalability jenkins job and e2e test.	2016-03-03 11:11:56 -08:00
Alex Robinson	feea376b5c	Update the logging images to parse sub-second docker timestamps.	2016-03-03 10:21:30 -08:00
Justin Santa Barbara	4ce0f8ccec	Salt: bypass Salt when installing docker package on debian The Docker 1.9.1 package on Debian is broken, and the service fails to install when run unattended. This is treated as an installation failure and causes everything to fail. However, the service can be started by Salt once we're not installing the package, and indeed we restart docker anyway. So, on Debian, use a helper script to install the docker package. The script sets up a policy-rc.d file to prevent the service starting, and then cleanly removes it afterwards (this would be difficult to do in Salt, I believe).	2016-03-03 11:14:33 -05:00
Zach Loafman	820842036b	Show LICENSES in /etc/motd Plumb through from the server tarball to /usr/local/share/docs/kubernetes/LICENSES, then display in the motd.	2016-03-02 15:23:17 -08:00
Dhawal Yogesh Bhanushali	fe7568d099	cidr-fix for vsphere cloud provider let kubelet configure cbr0 bridge. let kube-controll-manager distributed the subnet across the nodes. create routes for the pod network.	2016-03-02 12:52:56 -08:00
Dawn Chen	960bea324e	set --babysit-daemons=true for gce and aws	2016-03-01 16:46:31 -08:00
Dawn Chen	a90ac42dd8	Kill docker daemon after configing cbr0 if flag --babysit-daemon is true so that babysitter process can restart it again with proper configurations and checkpoint file.	2016-03-01 16:46:31 -08:00
k8s-merge-robot	a0b04a6df8	Merge pull request #20281 from cilium-team/fixing-docker-d Auto commit by PR queue bot	2016-02-28 03:51:31 -08:00
Prashanth Balasubramanian	7d47d2dcd8	Kube-proxy requests 2x cpu shares of addons.	2016-02-25 15:39:27 -08:00
Justin Santa Barbara	977a4a56e4	AWS Debian Jessie: Install Docker 1.9.1	2016-02-22 22:55:11 -05:00
Prashanth B	c833a14898	Merge pull request #21727 from dchen1107/test Remove potential corrupted docker network checkpoint file before star…	2016-02-22 17:52:16 -08:00
Dawn Chen	d922ddef8c	Remove potential corrupted docker network checkpoint file before start docker again.	2016-02-22 17:08:31 -08:00
k8s-merge-robot	8afccef608	Merge pull request #21632 from justinsb/docker_191 Auto commit by PR queue bot	2016-02-22 16:16:51 -08:00
Dhawal Yogesh Bhanushali	e1a7441b36	restricting the version of docker to 1.9.x for vsphere support for vsphere provider docker currently only supports 1.9.1 release. The older versions of docker are failing on jessie due to issue https://github.com/docker/docker/issues/18793 and newer version 1.10.x is not properly tested.	2016-02-22 16:03:17 -08:00
Jeff Lowdermilk	c406665b2b	Plumb node labels through salt Expose node-labels flag on kubelet for gce via a startup script env var.	2016-02-22 15:31:34 -08:00
Dawn Chen	699c80b752	Merge pull request #21641 from bprashanth/promisc Teach the kubelet about promiscuous mode, take 2	2016-02-22 15:08:18 -08:00
Dawn Chen	b58826292a	Merge pull request #21703 from dchen1107/test Make sure docker is properly shutdown before startup.	2016-02-22 13:35:24 -08:00
Dawn Chen	6c5f07d58e	Make sure docker is properly shutdown before startup.	2016-02-22 12:57:42 -08:00
k8s-merge-robot	e629ee6bd3	Merge pull request #20704 from FujitsuEnablingSoftwareTechnologyGmbH/centos-support Auto commit by PR queue bot	2016-02-22 02:35:22 -08:00
Lukasz Zajaczkowski	82be3d08f3	Add CentOS support	2016-02-22 07:41:35 +01:00
k8s-merge-robot	facd8617ce	Merge pull request #21505 from bprashanth/flannel-etcd Auto commit by PR queue bot	2016-02-21 18:09:12 -08:00
Prashanth Balasubramanian	c97e8df65b	Stricter checking of HAIRPIN_FLAG in salt.	2016-02-21 14:43:43 -08:00
Prashanth Balasubramanian	2e8ff81de1	Teach the kubelet about --hairpin-mode=promiscuous-bridge.	2016-02-20 22:40:54 -08:00
k8s-merge-robot	0f1043d6df	Merge pull request #21299 from wojtek-t/always_event_etcd Auto commit by PR queue bot	2016-02-20 21:03:27 -08:00
Justin Santa Barbara	dda792304d	AWS Salt: Update to trusty, vivid, wily to Docker 1.9.1 This updates all of our recognized Ubuntu images to use Docker 1.9.1	2016-02-20 17:31:19 -05:00
k8s-merge-robot	a12a2e984a	Merge pull request #21233 from justinsb/aws_wily Auto commit by PR queue bot	2016-02-20 13:28:08 -08:00
Daniel Smith	a8b943dddd	Revert "Put the container bridge in promiscuous mode."	2016-02-19 23:14:53 -08:00
Prashanth B	b36e046fc8	Merge pull request #21326 from bprashanth/cbr0_promisc Put the container bridge in promiscuous mode.	2016-02-19 17:52:34 -08:00
Joe Beda	11c7068b74	Merge pull request #21142 from justinsb/install_git_package Salt: Make sure git is installed, for gitRepo volumes	2016-02-19 15:42:00 -08:00
Prashanth Balasubramanian	a694a7ae4b	Teach the kubelet about --hairpin-mode=promiscuous-bridge.	2016-02-19 14:59:16 -08:00
Brendan Burns	8bda033ef1	Merge pull request #21444 from dchen1107/test1 Log daemons' failure reasons to supervisord log files	2016-02-19 13:08:19 -08:00
k8s-merge-robot	ced1ddfcc7	Merge pull request #21428 from ArtfulCoder/fluentes Auto commit by PR queue bot	2016-02-19 08:56:10 -08:00
k8s-merge-robot	841d3f8311	Merge pull request #21357 from WeixuZhuang/fix Auto commit by PR queue bot	2016-02-19 02:14:51 -08:00
Zach Loafman	6fe3023a3d	Revert "Upgrade gce cluster to docker 1.9.1" This reverts commit `f07070d129`.	2016-02-18 14:28:13 -08:00
Prashanth Balasubramanian	1e3db8ef9e	Don't impose a memory limit on flannel etcd.	2016-02-18 13:52:58 -08:00
k8s-merge-robot	10f3403536	Merge pull request #21362 from ArtfulCoder/fluentd Auto commit by PR queue bot	2016-02-17 22:25:28 -08:00
Dawn Chen	14f8ae1340	Log kubelet /healthz failure reasons to supervisord log file	2016-02-17 16:42:47 -08:00
Phillip Wittrock	a8744279eb	Merge pull request #21347 from yujuhong/health_check Switch to using `docker version` as health check	2016-02-17 14:48:44 -08:00
Abhishek Shah	e46b17044f	Disable fluent-es on kubernetes-master	2016-02-17 14:01:20 -08:00
Abhishek Shah	51fba282ec	Fluentd on GCE master should not use ClusterFirst	2016-02-17 11:32:41 -08:00
Justin Santa Barbara	4d2c580781	AWS kube-up: Add support for wily vivid is technically no longer supported now, so we should support wily.	2016-02-17 10:45:21 -05:00
Vishnu kannan	202578ebe5	enable for real new runtime and kubelet cgroup configs in GCE salt configs. Signed-off-by: Vishnu kannan <vishnuk@google.com>	2016-02-16 16:08:57 -08:00
weixu	b3f3a80667	Set the default value for DEBUG in cluster/saltbase/salt/generate-cert/make-ca-cert.sh In commit `07d7cfd3`, people add ${DEBUG} == "true" in file cluster/saltbase/salt/generate-cert/make-ca-cert.sh But the default value for DEBUG is not set. In that commit, it set the value of DEBUG in cluster/ubuntu/util.sh where it call this script. When using this script in saltstack to bring up cluster in other cloud platforms, it will fail to generate the cert since we set set -o nounset in make-ca-cert.sh and var DEBUG does not set. Set a default value for DEBUG here will fix this problem.	2016-02-16 16:03:20 -08:00
Yu-Ju Hong	b92e2903fa	Switched to using `docker version` as health check `docker ps` can sometimes take a long time to finish, and restarting docker in this case doesn't help.	2016-02-16 15:10:15 -08:00
k8s-merge-robot	4f3c89ce81	Merge pull request #21132 from petermd/kubeaddon-api-status Auto commit by PR queue bot	2016-02-16 02:57:17 -08:00
Wojciech Tyczynski	f6dc06bdc7	Always enable second etcd for events	2016-02-16 11:48:46 +01:00
k8s-merge-robot	396287aad9	Merge pull request #21110 from MikeSpreitzer/issue/21037 Auto commit by PR queue bot	2016-02-15 01:15:20 -08:00
André Martins	97acdf4cd8	fixing docker -d deprecation Signed-off-by: André Martins <aanm90@gmail.com>	2016-02-14 23:07:32 +01:00
k8s-merge-robot	3d93b594e3	Merge pull request #20062 from mikefaille/master Auto commit by PR queue bot	2016-02-13 10:36:57 -08:00
Dawn Chen	54933902b2	Make master component pods burstable, instead of guaranteed.	2016-02-12 14:28:48 -08:00
Mike Spreitzer	07d7cfd346	Fetch hacked easyrsa in kube-up instead of command run on master This is good because it removes an obstacle to using the cluster/ubuntu scripting to install Kubernetes into a restricted environment where the machines can not open connections to arbitrary external locations. Also add debuggability to make-ca-cert.sh Resolves #21037 Resolves #21092	2016-02-12 14:11:53 -05:00
Justin Santa Barbara	f0d6fd10bc	Salt: Make sure git is installed, for gitRepo volumes Seems to be included in the GCE base image, but not on the images we use on AWS (Ubuntu images). Fix #20957	2016-02-12 12:51:08 -05:00
Vishnu kannan	c3b5d5774c	Update flag values for cgroups managed by kubelet. Signed-off-by: Vishnu kannan <vishnuk@google.com>	2016-02-10 17:33:29 -08:00
Vishnu kannan	51e4ccf106	Updating the default values for the cgroups hierarchies that kubelet creates for managing the nodes. Signed-off-by: Vishnu kannan <vishnuk@google.com>	2016-02-10 16:02:36 -08:00
Marcin	b7d72ef36d	Startup scripts for custom metrics	2016-02-10 12:32:04 +01:00
Greg Swallow	646c22e47c	Use local_ipv4 when public_ipv4 is not present.	2016-02-09 16:35:38 -05:00
Prashanth Balasubramanian	c3a3a2bacd	Pipe hairpin-mode flag through kubelet, enable on soak.	2016-02-09 12:12:19 -08:00
k8s-merge-robot	494186f40e	Merge pull request #20867 from dchen1107/docker Auto commit by PR queue bot	2016-02-09 10:02:44 -08:00
Dawn Chen	f07070d129	Upgrade gce cluster to docker 1.9.1	2016-02-08 15:58:29 -08:00
Prashanth B	86b6fdf5ea	Sanitize flannel config.	2016-02-07 05:19:50 +00:00
k8s-merge-robot	d1b7fb3025	Merge pull request #20630 from a-robinson/logparse Auto commit by PR queue bot	2016-02-06 11:28:08 -08:00
k8s-merge-robot	fe269474ca	Merge pull request #20330 from bryk/kubernetes-dashboard Auto commit by PR queue bot	2016-02-06 00:15:10 -08:00
Daniel Smith	75c1dcaacd	Merge pull request #20463 from andyzheng0831/trusty-master Support master on Ubuntu Trusty	2016-02-05 15:49:28 -08:00
bryk	46f51d74bb	Set kubernetes-dashboard as the default UI addon Dashboard release info: https://github.com/kubernetes/dashboard/releases/tag/v0.1.0 This replaces kube-ui addon	2016-02-05 13:36:37 +01:00
Alex Robinson	e5c5f76402	Update the default fluentd images to parse system logs.	2016-02-04 23:29:27 +00:00
Andy Zheng	b103f0f279	Support master on Ubuntu Trusty This change support running kubernetes master on Ubuntu Trusty. It uses pure cloud-config and shell scripts, and completely gets rid of saltstack or the release salt tarball.	2016-02-03 11:22:28 -08:00
Dan Williams	fabb65c13f	Add a network plugin that duplicates "configureCBR0" functionality	2016-02-03 10:08:08 -06:00
Jeff Lowdermilk	ec4b94aabc	Merge pull request #20509 from yujuhong/docker_health Change docker health checker to using `docker ps`	2016-02-02 11:50:04 -08:00
Yu-Ju Hong	156d301140	Change docker health checker to using `docker ps` `docker ps` is a more reliable health check than docker version from past experiences.	2016-02-02 11:08:21 -08:00
k8s-merge-robot	d8047e7632	Merge pull request #20118 from erictune/chmod Auto commit by PR queue bot	2016-02-02 04:50:54 -08:00
k8s-merge-robot	b4d1c7541c	Merge pull request #19870 from justinsb/salt_systemd_force Auto commit by PR queue bot	2016-02-01 10:49:44 -08:00
k8s-merge-robot	a5f03173c5	Merge pull request #19869 from justinsb/aws_fix_docker183_package_name Auto commit by PR queue bot	2016-02-01 10:18:06 -08:00
Yifan Gu	05087612b9	salt: Try 'systemctl' if 'service' command fails when restarting docker.	2016-02-01 18:10:31 +08:00
Alex Robinson	a81e6c3f4f	Merge pull request #20307 from dchen1107/test1 Deprecated soon: override /etc/init.d/docker file on containervm image,	2016-01-30 13:32:41 -08:00
Dawn Chen	5f6f6acec7	Deprecated soon: override /etc/init.d/docker file on containervm image, so that we can unblock docker 1.10 validation.	2016-01-28 17:44:23 -08:00
Peter McDonnell	4d4f1c645c	exit if unable to query status from apiserver	2016-01-27 15:21:09 +00:00
k8s-merge-robot	86dd321c73	Merge pull request #19489 from cloudnativeapps/vsphere-support-1 Auto commit by PR queue bot	2016-01-26 22:27:55 -08:00
Alex Robinson	6acf297231	Update the fluentd versions to include fixes for #19405 .	2016-01-27 00:30:53 +00:00
k8s-merge-robot	8c821700f3	Merge pull request #19389 from justinsb/internal_cidr Auto commit by PR queue bot	2016-01-26 03:58:48 -08:00
Eric Tune	f2df774ec9	Chmod password and token files. Fixes #7808.	2016-01-25 15:14:17 -08:00
Dhawal Yogesh Bhanushali	f7db2c6e99	vsphere support	2016-01-24 13:52:56 -08:00
Michael Faille	ce7d5fe6e7	fix : openssl don't exist by default on CentOS docker image To fix it, I just add openssl depedency on "generate-cert" state. It should work on Debian-like and RedHat-Like systems. (and, Archlinux, Opensuse, etc) Fixed error : $ sudo salt 'kubernetes-master' state.apply ---------- ID: kubernetes-cert Function: cmd.script Result: False Comment: Command 'kubernetes-cert' run Started: 06:57:06.634203 Duration: 208.719 ms Changes: ---------- pid: 793 retcode: 1 stderr: /tmpm24T3R.sh: line 22: openssl: command not found chgrp: cannot access '/srv/kubernetes/server.key': No such file or directory chgrp: cannot access '/srv/kubernetes/server.cert': No such file or directory chmod: cannot access '/srv/kubernetes/server.key': No such file or directory chmod: cannot access '/srv/kubernetes/server.cert': No such file or directory stdout: After applying my patch (success) : ---------- ID: kubernetes-cert Function: cmd.script Result: True Comment: Command 'kubernetes-cert' run Started: 07:17:04.172384 Duration: 1041.092 ms Changes: ---------- pid: 1045 retcode: 0 stderr: Generating a 4096 bit RSA private key ......................................................................++ ...............................................................................++ writing new private key to '/srv/kubernetes/server.key' ----- stdout: ----------	2016-01-24 02:18:11 -05:00
Justin Santa Barbara	d8460d5920	AWS: Pass non-masquerade-cidr through kube-up Set the environment variable NON_MASQUERADE_CIDR. Docs in cluster/aws/options.md	2016-01-22 21:01:44 -05:00
Arsen Mamikonyan	8b5e9e2885	Change repository references to https://github.com/kubernetes/kubernetes	2016-01-22 10:23:14 -05:00
Alex Mohr	233d292ae5	Merge pull request #19456 from justinsb/salt_fix_tar_filemode Salt: mode for tar file should be 644, not 755	2016-01-21 10:40:38 -08:00
Alex Mohr	8755f3e8a3	Merge pull request #19407 from justinsb/aws_fix_salt_helium_detection AWS: don't rely on salt for kube-node-unpacker on AWS	2016-01-21 10:38:08 -08:00
Justin Santa Barbara	cdd4caf4df	Salt: force service provider to systemd if systemd The version of Salt we're running doesn't do a good job of detecting systemd. Inspired by https://github.com/saltstack/salt/issues/13926, I added a provider-force to the services. With this change, salt-call -l debug state.highstate succeeds, even for repeated invocations. The issue was (probably) benign, but definitely caused noised (e.g. #11297)	2016-01-20 12:20:50 -05:00
Justin Santa Barbara	32d48c619c	AWS: Fix the docker-engine package name I got the package name wrong before, which meant that salt was failing on invocations after the first (the name apparently doesn't matter on the first invocation).	2016-01-20 12:19:36 -05:00
Justin Santa Barbara	9f995df29c	AWS: Use Docker 1.8.3 on Ubuntu vivid This currently requires downloading from the Docker repository, until we get the packages uploaded to Google Cloud Storage. Issue #19796	2016-01-18 14:13:55 -05:00
Justin Santa Barbara	65feea4449	AWS: don't rely on salt for kube-node-unpacker on AWS We've had a lot of salt problems with systemd on AWS; we have a workaround in place that we use everywhere else, we should use that for kube-node-unpacker too. Fixes #19386 Issue #19388	2016-01-17 14:35:07 -05:00
k8s-merge-robot	bd8d37f6f2	Merge pull request #19522 from apcera/dev_python3 Auto commit by PR queue bot	2016-01-17 03:21:07 -08:00
Josh Ellithorpe	76e8a8b08d	Fix issues with Python3 and bring up a dev cluster	2016-01-12 11:08:42 -08:00
Daniel Smith	3b9d67e6c0	Merge pull request #18742 from bprashanth/flannel_release_temp Don't pull flannel from github	2016-01-12 10:37:52 -08:00
Justin Santa Barbara	5bf346216c	Salt: mode for tar file should be 644, not 755 Probably harmless, but it doesn't make sense to have it be executable.	2016-01-10 11:04:56 -05:00
Minhan Xia	c3d400f4bb	Gather Fluentd logs	2016-01-06 13:46:12 -08:00
gmarek	fc6247152b	Split levels of verbosity of test logging on components.	2015-12-28 11:41:09 +01:00
k8s-merge-robot	2eea4c0e8f	Merge pull request #18819 from wojtek-t/flag_gate_second_etcd Auto commit by PR queue bot	2015-12-20 00:36:58 -08:00
k8s-merge-robot	3f91f18a55	Merge pull request #18488 from yifan-gu/dockerized_python Auto commit by PR queue bot	2015-12-19 10:52:15 -08:00
k8s-merge-robot	0b647564fc	Merge pull request #18625 from bprashanth/kube_up_flannel Auto commit by PR queue bot	2015-12-19 01:29:11 -08:00
Yifan Gu	516032f336	kube-addons: Use python container if python is not found on the machine. To build the python image, BUILD_PYTHON_IMAGE should be set during make. When the addon script is running, it will check if python is installed on the machine, if not, it will use the python image that built previously.	2015-12-18 15:14:56 -08:00
Wojciech Tyczynski	38bb110905	Enable etcd for events only in large clusters	2015-12-18 12:03:29 +01:00
k8s-merge-robot	6716290903	Merge pull request #18388 from nikhiljindal/clusterName Auto commit by PR queue bot	2015-12-16 03:50:11 -08:00
Prashanth Balasubramanian	19a2cd23f3	Don't pull flannel from github	2015-12-15 17:42:54 -08:00
Minhan Xia	f0c176dd6a	add validation for fluentd pods	2015-12-14 16:23:11 -08:00
Prashanth Balasubramanian	b5303b9978	Tell kubernetes-master not to wait on flannel.	2015-12-14 09:47:09 -08:00
nikhiljindal	724b098855	Deleting unused master.ClusterName param	2015-12-11 13:39:19 -08:00
k8s-merge-robot	1b90941841	Merge pull request #18456 from thockin/bump-flannel-ver Auto commit by PR queue bot	2015-12-11 00:34:39 -08:00
k8s-merge-robot	eb2fc232d5	Merge pull request #18198 from brendandburns/aws2 Auto commit by PR queue bot	2015-12-11 00:14:00 -08:00
Tim Hockin	6b830cf229	Fix a couple flannel invocations I missed	2015-12-10 11:48:46 -08:00
Zach Loafman	8b21b76df8	Fix defaulting in cluster/saltbase/install.sh	2015-12-09 16:42:58 -08:00
Zach Loafman	e264db4349	Merge pull request #17580 from mikedanese/stage-image add an option to push/pull component images from a registry using kube-up	2015-12-09 13:49:45 -08:00
Mike Danese	4ace8280a0	add an option to push/pull component images from a registry using kube-up	2015-12-08 14:19:30 -08:00
gmarek	4060eba626	Use KubeletPort from API object, salt changes, take 2 This reverts commit `a7425bf070`, reversing changes made to `4a9b0fc715`.	2015-12-07 10:31:11 +01:00
Wojciech Tyczynski	dca6f5ac5a	Merge pull request #18074 from jsafrane/devel/e2e-rbd e2e: Remove specific Gluster repo.	2015-12-06 09:43:10 +01:00
Brendan Burns	9c0897e98b	Fix the scripts to handle master/minion salt setups (e.g. AWS)	2015-12-04 12:52:43 -08:00
Brendan Burns	b4c4a045f7	Fix an incorrect reference to the directive that installs docker	2015-12-03 15:06:33 -08:00
Jan Safranek	85de88892c	e2e: Remove specific Gluster repo. Debian Wheezy image in GCE has already the correct one.	2015-12-02 15:21:01 +01:00
Mike Danese	e2c5c898fb	move vagrant to masterless salt	2015-12-01 15:53:50 -08:00
Mike Danese	7c413790df	don't unpack salt in tmpfs	2015-11-29 18:36:38 -08:00
Prashanth Balasubramanian	9aa0efa393	Turn flannel off by default	2015-11-25 09:43:48 +01:00
Prashanth Balasubramanian	ad2d3d4c20	Docs etc	2015-11-25 09:42:59 +01:00
Prashanth Balasubramanian	321bc73264	Flannel server in static pod with private etcd.	2015-11-25 09:42:59 +01:00
Prashanth Balasubramanian	7aa8ebe30f	Flannel handshakes with kubelet.	2015-11-25 09:42:59 +01:00
Prashanth Balasubramanian	4cd1ee177b	Salt configuration for flanneld	2015-11-25 09:42:59 +01:00
Marek Grabowski	7f72d18550	Revert "Salt changes to enable using non-default Kubelet port"	2015-11-25 09:15:36 +01:00
k8s-merge-robot	60b628a6d6	Merge pull request #17375 from gmarek/kubelet-port-salt Auto commit by PR queue bot	2015-11-24 19:39:57 -08:00
Mike Danese	65b8d43543	remove code that puts kube-proxy into a special cgroup since it runs in a container now	2015-11-23 10:20:58 -08:00
gmarek	3ffa01d7cd	Salt changes to enable using non-default Kubelet port	2015-11-23 16:02:46 +01:00
Mike Danese	a29350e40d	delete unused files	2015-11-20 16:17:19 -08:00
Mike Danese	1d9d11c836	run kube-proxy in a static pod	2015-11-18 16:52:10 -08:00
Matt Moore	b750d1dddc	Drop the beta for GCR v2 images. beta.gcr.io is no longer needed to pull through v2.	2015-11-14 12:19:02 -08:00
k8s-merge-robot	75dadbc117	Merge pull request #16763 from zmerlynn/bump-containervm Auto commit by PR queue bot	2015-11-05 14:55:40 -08:00
Joe Beda	993c1ee222	Update etcd to 2.2.1	2015-11-04 12:26:57 -08:00
Robert Bailey	d5bb12134e	Replace monit with supervisord in documentation.	2015-11-03 16:20:02 -08:00
Zach Loafman	4b29260bc6	Bump ContainerVM to container-vm-v20151103	2015-11-03 15:44:36 -08:00
Dawn Chen	956561810f	Remove monit related salt files.	2015-11-03 09:31:50 -08:00
Dawn Chen	29614d3fe0	Enable supervisord for other cloud providers.	2015-11-03 09:30:24 -08:00
Alex Robinson	887b9dd78a	Merge pull request #16232 from bprashanth/salt Cluster-loadbalancing addon	2015-10-30 09:45:16 -07:00
Prashanth Balasubramanian	962cc11f73	Cluster-loadbalancing addon	2015-10-29 15:07:25 -07:00
Zach Loafman	f0e6ae4b8f	Merge pull request #12393 from jsafrane/devel/gce-tests Update e2e scripts to run storage tests on GCE/Vagrant	2015-10-29 07:46:17 -07:00
Alex Robinson	f0ebe4066f	Update fluentd-gcp to include all recent improvements that are in the new google-fluentd 1.5.4-1 build.	2015-10-29 11:54:07 +00:00
Jan Safranek	fe0741bffe	Configure cluster for e2e tests. When KUBE_E2E_STORAGE_TEST_ENVIRONMENT is set to 'true', kube-up.sh script will: - Install the right packages for all storage volumes. - Use devicemapper as docker storage backend. 'aufs', the default one on Debian, does not support extended attibutes required by Ceph RBD and Gluster server containers. Tested on GCE and Vagrant, e2e tests for storage volumes passes without any additional configuration.	2015-10-29 11:03:34 +01:00
Zach Loafman	17fd5f2536	NFS: Revamp example, add nfs-common to debian saltbase This ensures nfs-common is installed on GCE, and provides a more functional explanation/example. I launched two replication controllers so that there were busybox pods to poke around at the NFS volume, and so that the later wget actually works (the original example would have to work on the node, or need some other access to the container network). After switching to two controllers, it actually makes more sense to use PV claims, and it's probably a configuration that makes more sense for indirection for NFS anyways.	2015-10-27 16:58:04 -07:00
Dawn Chen	038f871c43	Merge pull request #16071 from brendandburns/heapster Make heapster config creation dynamic	2015-10-23 09:25:59 -07:00
Saad Ali	76c5e0e553	Revert "Use KubeletPort reported in NodeStatus instead of cluster-wide master config"	2015-10-22 21:25:38 -07:00
k8s-merge-robot	a6b8e112ac	Merge pull request #12919 from gmarek/use_api_ports Auto commit by PR queue bot	2015-10-22 19:53:41 -07:00
Brendan Burns	90d9e6e935	Make heapster config creation dynamic	2015-10-22 12:05:49 -07:00
gmarek	6d6cd8e46a	Use KubeletPort reporeted in NodeStatus instead of cluster-wide master config.	2015-10-21 17:19:31 +02:00
Justin Santa Barbara	726c7afab7	AWS: install netcat-traditional, instead of netcat-openbsd We want to match the version of netcat that is installed on GCE. We were having problems with netcat-openbsd having slightly different timeout behaviour (on UDP packets; when there was no listener).	2015-10-19 22:50:06 -04:00
k8s-merge-robot	0e1b78fb6e	Merge pull request #15728 from a-robinson/dockerlog Auto commit by PR queue bot	2015-10-19 06:59:38 -07:00
k8s-merge-robot	44a9877bd4	Merge pull request #15750 from yehuis4/master Auto commit by PR queue bot	2015-10-19 01:06:34 -07:00
Mike Danese	8e8437dad8	declare azure/ubuntu/saltstack bankruptcy	2015-10-16 18:21:21 -07:00
y00278980	2a0e1dd9e2	Fix some problems: 1. cluster/saltbase/pillar/README.md L8 quoted the wrong line number of cluster/gce/configure-vm.sh 2. spelling mistake of 'retruns'	2015-10-16 21:29:05 +08:00
Alex Robinson	40d1a01fa8	Set Docker's default log level to warning to reduce log spam.	2015-10-15 13:49:28 -07:00
Mike Danese	ef015c3574	add config-vm flag to enable terminated pod garbage collection.	2015-10-15 08:19:39 -07:00
k8s-merge-robot	7ef2a1b293	Merge pull request #15427 from brendandburns/controllerversion Auto commit by PR queue bot	2015-10-15 05:38:33 -07:00
Brendan Burns	0c730f4ea7	update	2015-10-14 18:22:19 -07:00
Dawn Chen	03fb74400b	Upgrade to docker 1.8.3	2015-10-13 11:05:09 -07:00
k8s-merge-robot	8580804f77	Merge pull request #15138 from mattmoor/limited-beta-rewrite Auto commit by PR queue bot	2015-10-10 11:41:34 -07:00
Mike Danese	fa60bbe8e6	add flag to kubelet to ignore the cidr passed down by the apiserver on the master	2015-10-08 21:21:19 -07:00
Janet Kuo	4b8f91fd0e	Merge pull request #15190 from dchen1107/fix unset Kubelet flag for manifest_url for master node.	2015-10-07 14:48:35 -07:00
Dawn Chen	c29296f9a8	Set manifest-url-header when enable_manifest_url is set	2015-10-07 13:27:03 -07:00
Filip Grzadkowski	c1345ce2d9	Merge pull request #15068 from wojtek-t/fix_default_limits Tweak limits for system pods in manifest files.	2015-10-07 09:41:28 +02:00
Dawn Chen	37720e8899	unset Kubelet flag for manifest_url for master node.	2015-10-06 17:33:29 -07:00
Matt Moore	eeb4eeb17c	Move pause and fluentd-elasticsearch to GCR v2. This scopes down the initially ambitious PR: https://github.com/kubernetes/kubernetes/pull/14960 to replace just `pause` and `fluentd-elasticsearch` to come through `beta.gcr.io`. The v2 versions have been pushed under new tags, `pause:2.0` and `fluentd-elastisearch:1.12`. NOTE: `beta.gcr.io` will still serve images using v1 until they are repushed with v2. Pulls through `gcr.io` will still work after pushing through `beta.gcr.io`, but will be served over v1 (via compat logic).	2015-10-06 16:39:07 -07:00
Janet Kuo	f4bbb32bd9	Merge pull request #15024 from mikedanese/expcontroller enable all experimental controllers in controller-manager with one flag	2015-10-06 14:20:11 -07:00
Alex Robinson	32b9d8aad0	Merge pull request #14823 from wojtek-t/move_events_to_separate_etcd Move events to a separate etcd instance	2015-10-05 16:28:04 -07:00
Mike Danese	833be48d61	enable all experimental flags with one controller	2015-10-05 14:54:19 -07:00
Wojciech Tyczynski	2a74d1d6ca	Tweak limits in manifest files.	2015-10-05 14:45:43 +02:00
Wojciech Tyczynski	0f1cbe37a4	Events in separate etcd	2015-10-05 10:54:24 +02:00
Ananth Suryanarayana	d50d7763da	Add opencontrail networking provisioning support in kubernetes salt based provisioning OpenContrail is an open-source based networking software which provides virtualization support for the cloud. This change-set adds ability to install and provision opencontrail software for networking in kubernetes based cloud environment. There are basically 3 components o kube-network-manager -- plugin between contrail components and kubernets components o provision_master.sh -- OpenContrail software installer and provisioner in master node o provision_minion.sh -- OpenContrail software installer and provisioner in minion node(s) These are driven via salt configuration files One can provision opencontrail by just setting "export NETWORK_PROVIDER=opencontrail" Optionally, OPENCONTRAIL_TAG, and OPENCONTRAIL_KUBERNETES_TAG can be used to specify opencontrail and contrail-kubernetes software versions to install and provision. Public-IP Subnet provided by contrail can be configured via OPENCONTRAIL_PUBLIC_SUBNET environment variable At this moment, plan is to add support for aws, gce and vagrant based platforms For more information on contrail-kubernetes, please visit https://github.com/juniper/contrail-kubernetes For more information on opencontrail, please visit http://www.opencontrail.org	2015-10-03 08:03:02 -07:00
Abhishek Shah	2d3a688ab7	reduce cpu requirement for etcd, after 2 etcd pods are being run	2015-10-02 10:31:04 -07:00
Brendan Burns	a4581c7cd5	Add a second etcd instance for use with events.	2015-09-29 13:13:59 -07:00
Brian Grant	3cbd5f01a0	Merge pull request #13044 from roberthbailey/kubelet-healthcheck Healthcheck the kubelet on the secure port rather than the read-only port.	2015-09-25 11:11:51 -07:00
Marcin Wielgus	039acb8c1d	Merge pull request #14463 from nikhiljindal/DeploymentOnGCE Allow enabling deployment controller on GCE and GKE	2015-09-25 13:47:36 +02:00
nikhiljindal	ed5d24ed52	Allow enabling deployment controller on GCE and GKE	2015-09-24 11:37:16 -07:00
Abhishek Shah	09465c9a2a	allow privileged pods	2015-09-22 13:44:08 -07:00
Robert Bailey	da94ed7957	Healthcheck the kubelet on the secure port rather than the read-only port.	2015-09-16 12:15:29 -07:00
k8s-merge-robot	3dcb75c599	Merge pull request #13986 from derekwaynecarr/move_to_flannel Auto commit by PR queue bot	2015-09-16 09:36:09 -07:00
k8s-merge-robot	14ccba8924	Merge pull request #13886 from a-robinson/logtags Auto commit by PR queue bot	2015-09-16 05:51:32 -07:00
Alex Robinson	8040f75594	Update fluentd-gcp to use a new google-fluentd build with my recent changes to fluent-plugin-google-cloud to attach Kubernetes metadata to logs. Along with this, separate logs from containers in the cluster out from logs from the daemons running on the node by instantiating two instances of the output plugin, one which uses the new metadata (for containers) and one which doesn't (for things like docker and the kubelet).	2015-09-15 23:14:43 +00:00
derekwaynecarr	360e7620d3	Move vagrant to flannel	2015-09-15 15:42:38 -04:00
Alex Robinson	614b1cf3c1	Replace /varlog with /var/log in the fluentd-gcp config to match the recently updated fluent-es config.	2015-09-11 16:52:49 -07:00
Mike Danese	4bd638921f	Merge pull request #13752 from yujuhong/docker1.8_upgrade Upgrade to docker 1.8.2 for Debian Wheezy on GCE	2015-09-11 11:15:30 -07:00
Yu-Ju Hong	4cdd00fb9c	Upgrade to docker 1.8.2 for Debian Wheezy on GCE	2015-09-11 10:09:59 -07:00
Jerzy Szczepkowski	5be8817315	Turning on pod autoscaler on GCE. Implemented optional turning on of pod autoscaler in kube-up script for GCE.	2015-09-11 12:03:41 +02:00
k8s-merge-robot	c0d0ef6dd1	Merge pull request #13817 from a-robinson/varlib Auto commit by PR queue bot	2015-09-10 13:24:07 -07:00
Jeff Lowdermilk	08442974bb	Revert "Turning on pod autoscaler on GCE."	2015-09-10 11:46:37 -07:00
Alex Robinson	746dcb8075	Make fluentd-es output its warning logs and fluentd-gcp mount /var/lib/docker read-only.	2015-09-10 18:28:27 +00:00
Jerzy Szczepkowski	b41862b670	Turning on pod autoscaler on GCE. Implemented optional turning on of pod autoscaler in kube-up script for GCE.	2015-09-10 16:10:01 +02:00
Dai Zuozhuo	2e2ef3e830	change -o template to -o go-template=...	2015-09-05 22:30:47 +08:00
derekwaynecarr	aff9ee5a40	Enable CFS quota in vagrant setup	2015-09-03 13:44:28 -04:00
k8s-merge-robot	9c4802420b	Merge pull request #8632 from jimmidyson/logging-kube-metadata Auto commit by PR queue bot	2015-09-02 19:08:34 -07:00
Derek Carr	445fff030c	Merge pull request #11469 from fredjean/fix-vagrant-vmware Boot a Vagrant on VMWare Kubernetes Cluster	2015-09-02 14:23:53 -04:00
Jimmi Dyson	e07da97447	Switch to fluentd kubernetes metadata plugin to enrich logs with more searchable kubernetes metadata	2015-09-02 10:33:15 +01:00
Alex Robinson	66ff3c133b	Merge pull request #13229 from a-robinson/fluent Clean up the fluentd images to make them more debuggable	2015-09-01 17:01:04 -07:00
Prashanth B	52f7833cd3	Revert "Revert "LimitRange updates for Resource Requirements Requests""	2015-08-28 09:26:36 -07:00
Fred Jean	1305f54645	Booting a Kubernetes cluster on Vagrant * Using Fedora 21 as the base box * Discover the active network interfaces in the box to avoid hardcoding them in configuration. * Use the master IP for the certificate.	2015-08-27 21:43:36 -06:00
Alex Robinson	d02dc64036	Let fluentd-es log by not redirecting to a file within the container and only using -q (warning logs only) rather than -qq (error logs only).	2015-08-27 21:41:44 +00:00
Alex Robinson	b3154a7815	Remove the garbage log file in the fluentd-gcp that gets filled with gunk when installing the google-fluentd agent. Also let it log things by not redirecting to a file within the container and only using -q (warning logs only) rather than -qq (error logs only).	2015-08-27 21:41:44 +00:00
Piotr Szczesniak	6e05b9e3a3	Revert "LimitRange updates for Resource Requirements Requests"	2015-08-27 10:50:50 +02:00
Yu-Ju Hong	1bae2b677d	Merge pull request #12492 from derekwaynecarr/limit_range_api LimitRange updates for Resource Requirements Requests	2015-08-26 13:02:57 -07:00
CJ Cullen	c77e800495	Add liveness probe for master's etcd pod	2015-08-25 10:37:00 -07:00
derekwaynecarr	d25082250d	Update salt deployment for new limit-range	2015-08-24 15:43:32 -04:00
Zach Loafman	185b5af26f	Merge pull request #12833 from uluyol/insecure-reg Launch a cluster-local registry.	2015-08-21 14:58:37 -07:00
Muhammed Uluyol	3dc10a209b	Use gcr.io for proxy image	2015-08-21 13:32:08 -07:00
Muhammed Uluyol	2fb4e7b7a4	Use quotes more consistently	2015-08-20 18:44:12 -07:00
Muhammed Uluyol	14b554cef6	Use a persistent volume for the docker registry.	2015-08-20 18:44:11 -07:00
Muhammed Uluyol	7129d477d3	Launch a cluster-local registry. This registry can be accessed through proxies that run on each node listening on port 5000. We send the proxy images to the nodes directly to avoid requests that hit the network during cluster launch. For now, we continue to pull the registry itself over the network, especially given its large size (we should be able to dramatically shrink the image). On GCE we create a PD and use that for storage, otherwise we use an emptyDir. The registry is not enabled outside of GCE. All communication is currently plain HTTP. In order to use SSL, we will need to be able to request a certificate/key from the apiserver signed by the apiserver's CA cert.	2015-08-20 18:44:05 -07:00
Clayton Coleman	02dbb95447	Add TerminationGracePeriodSeconds to API Set defaulting for pod spec	2015-08-20 11:03:38 -04:00
Saad Ali	3fce3433d9	Merge pull request #12949 from satnam6502/fluentd-es Update Elasticsearch cluster logging to use v1.9 image	2015-08-19 18:48:55 -07:00
Satnam Singh	d3a8e5374b	Update Elasticsearch cluster logging to use v1.9 image	2015-08-19 15:55:22 -07:00
Robert Bailey	08e6a43c1d	Revert "Merge pull request #9165 from smarterclayton/graceful" This reverts commit `4f856b595d`, reversing changes made to `d78525a83b`. Conflicts: pkg/kubelet/status_manager.go	2015-08-18 17:34:49 -07:00
Clayton Coleman	b842a7dd15	Revert "Revert "Gracefully delete pods from the Kubelet"" This reverts commit `98115facfd`.	2015-08-18 08:57:02 -04:00
Eric Paris	c560f41a4b	Update docs which were incorrectly using _ in flag names Each of these was verified that the actual flag declaration correctly used -	2015-08-17 11:18:43 -07:00
Justin Santa Barbara	0ff8dd45ef	Fix escaping problem in kube-scheduler manifest '{{pillar[log_level]}}' was appearing literally in the command line, instead of being substituted. Fixes #12787	2015-08-17 08:16:24 -04:00
Dawn Chen	1932b48db3	Restore the logic of disable docker upgrade through salt for gce. Currently it is commented out.	2015-08-11 14:55:58 -07:00
Dawn Chen	3901b225e3	Docker 1.7.1	2015-08-11 14:55:57 -07:00
Marek Grabowski	5f9cefc1d8	Merge pull request #12441 from vlajos/typofixes-vlajos-20150807 typofix - https://github.com/vlajos/misspell_fixer	2015-08-10 16:33:52 +02:00
Ed Costello	35a5eda585	Copy edits for typos	2015-08-09 14:18:06 -04:00
Veres Lajos	9f77e49109	typofix - https://github.com/vlajos/misspell_fixer	2015-08-08 22:31:48 +01:00
Eric Paris	86ca88be61	convert cluster/ from --flag_name= --flag-name=	2015-08-07 11:00:13 -04:00
Dawn Chen	2be69e7718	Merge pull request #12325 from brendandburns/supervisord Add support for supervisord as a monit alternative.	2015-08-06 16:16:35 -07:00
Brendan Burns	15b9d98733	Add support for supervisord as a monit alternative.	2015-08-06 15:48:45 -07:00
Robert Bailey	8df33bc1a7	Register the kubelet on the master node with an apiserver. This option is separated from the apiserver running locally on the master node so that it can be optionally enabled or disabled as needed. Also, fix the healthchecking configuration for the master components, which was previously only working by coincidence: If a kubelet doesn't register with a master, it never bothers to figure out what its local address is. In which case it ends up constructing a URL like http://:8080/healthz for the http probe. This happens to work on the master because all of the pods are using host networking and explicitly binding to 127.0.0.1. Once the kubelet is registered with the master and it determines the local node address, it tries to healthcheck on an address where the pod isn't listening and the kubelet periodically restarts each master component when the liveness probe fails.	2015-08-06 13:39:32 -07:00
Marek Grabowski	77675b052d	Merge pull request #12301 from derekwaynecarr/fix_systemd_salt Fix salt configuration on systemd setups	2015-08-06 11:36:27 +02:00
Mike Danese	fe6b15ba2f	rewrite all links to issues to k8s links	2015-08-05 21:11:11 -07:00
derekwaynecarr	0de0e3e9f1	Fix salt configuration on systemd setups	2015-08-05 17:01:43 -04:00
Alex Mohr	e4fde6d2ca	Merge pull request #9583 from eparis/make-cert-path generate-cert: allow for alternative paths	2015-08-05 00:04:17 -07:00
Alex Robinson	cc02e50fc7	Collect more of the VM's log files (monit, salt) in fluentd-es.	2015-08-05 00:22:38 +00:00
Alex Robinson	7430181d65	Collect more of the VM's log files (monit, salt) in fluentd-gcp.	2015-08-05 00:21:47 +00:00
Eric Paris	0753acf2f8	Allow make-ca-cert.sh to run on OS X Currently make-ca-cert.sh uses (equiv of) mktemp -d --tmpdir kube.XXXXX but --tmpdir is not a valid option on OS X. Switch to mktemp -d -t kube.XXXXX Which is valid, but subtly different between OS X and Linux. The directory you get back will be different on each. Linux: ${tmpdir}/kube.y5Bsu/ OS X: ${tmpdir}/kube.XXXXX.VQ81oOui/	2015-08-04 19:03:01 -04:00
Eric Paris	c69b6f5ba7	Respect KUBECTL_BIN in kube-addon-update.sh not just kube-addons.sh	2015-08-04 19:02:31 -04:00
Eric Paris	6b9ef5b2d8	generate-cert: allow for alternative paths Instead of hard coding kube-cert and /srv/kubernetes allow these to be overwritten by environment variables. / is immutable on some systems and so /srv is not a possible location to store data.	2015-08-04 19:01:16 -04:00
Alex Mohr	ad4086eab1	Merge pull request #11308 from gmarek/pillar Auto commit by PR queue bot	2015-08-04 12:42:57 -07:00
Alex Mohr	4c5763f28c	Merge pull request #11299 from wojtek-t/increase_kubelet_start_timeout Auto commit by PR queue bot	2015-08-03 16:14:02 -07:00
Justin Santa Barbara	463458bf5f	AWS: Install ntp daemon on all nodes The AWS API requires a signature on method calls, including the timestamp to prevent replay attacks. A time drift of up to 5 minutes between client and server is tolerated. However, if the client clock drifts by >5 minutes, the server will start to reject API calls (with the cryptic "AWS was not able to validate the provided access credentials"). To prevent this happening, we install ntp on all nodes. Fix #11371	2015-08-01 14:32:08 -04:00
Jian Huang	45c37b9bd0	Update README.md There is a bad link in the doc. change ../../docs/salt.md to ../../docs/admin/salt.md	2015-07-31 18:44:06 +08:00
gmarek	5bb7eec5ab	Use salt pillars to pass test arguments during cluster creation.	2015-07-31 09:32:01 +02:00
Mike Danese	bfaa527139	Merge pull request #12045 from a-robinson/logs Fix fluentd configs to collect etcd logs on the master	2015-07-30 17:36:46 -07:00
Alex Robinson	69ab7026af	Update fluentd-es to collect etcd logs and remove merge conflict cruft.	2015-07-30 22:21:01 +00:00
Alex Robinson	9e18c29e9f	Make fluentd-gcp collect etcd's logs on the master.	2015-07-30 22:20:57 +00:00
Alex Robinson	94ae0a9a0d	Make the kubelet on a GCE master check instance metadata for manifests. Primary motivation: enable GKE and other cluster-as-a-service folks to easily run additional logic on the master without having to modify salt or SSH to the master after it's been created.	2015-07-30 21:04:34 +00:00
Janet Kuo	180798cfa4	Use example syncer tags instead of hard-coded examples in doc	2015-07-27 14:48:41 -07:00
Piotr Szczesniak	f48543aba5	Made enabling Kube UI configurable	2015-07-27 08:23:04 +02:00
Mike Danese	01349cdbfa	Merge pull request #11786 from a-robinson/fluentd Update fluentd-gcp images to include latest Dockerfile changes	2015-07-24 12:40:41 -07:00
Brendan Burns	26de8cd6b2	Merge pull request #10601 from marun/docker-pkg-f22 Auto commit by PR queue bot	2015-07-23 22:15:50 -07:00
Alex Robinson	0889307522	Update the fluentd-gcp images to include their latest Dockerfile changes. Their Dockerfiles were changed in #11768.	2015-07-24 01:27:42 +00:00
Vish Kannan	919fded0f8	Merge pull request #10401 from justinsb/workaround_salt_18089 Work around Salt 18089	2015-07-23 16:52:21 -07:00
Dawn Chen	ebc36c0e5a	timeout docker load: 30 second, and restart docker daemon to workaround docker-load-hang issue.	2015-07-17 15:16:23 -07:00
Dawn Chen	7e665230c7	Stop monit kube-addon on nodes.	2015-07-15 11:11:55 -07:00
Wojciech Tyczynski	628ceac305	Increase kubelet start timeout in Monit config	2015-07-15 13:28:07 +02:00
Victor Marmol	cabecc1271	Merge pull request #10611 from marekbiskup/addon-update-kill-children Addon update kill children	2015-07-09 21:09:58 -07:00
Victor Marmol	ee8d2857fc	Merge pull request #9381 from justinsb/aws_support_jessie AWS: Add support for Vivid Vervet & Debian Jessie	2015-07-09 15:20:37 -07:00
Marek Biskup	aa608258a6	kill child processes of addon-update on stop	2015-07-09 13:10:54 +02:00
Victor Marmol	f1e66c718d	Merge pull request #10590 from roberthbailey/kubelet-on-nodes Install the kubectl binary on nodes in addition to the master.	2015-07-08 16:13:12 -07:00
Justin Santa Barbara	89900fa19b	AWS: Ubuntu Vivid, set cgroup_root to docker Otherwise libcontainer generates systemd unit file names that start with "-", which are not valid.	2015-07-08 17:00:43 -04:00
Victor Marmol	dd37642369	Merge pull request #10488 from justinsb/salt_support_systemd Salt: support systemd (don't assume Redhat <=> systemd)	2015-07-08 13:43:08 -07:00
Victor Marmol	3be3603ef3	Merge pull request #10877 from brendandburns/aws Fix AWS Setup.	2015-07-08 11:33:32 -07:00
derekwaynecarr	e2ddd2dd7b	Missing ca crt in vagrant controllers	2015-07-08 10:59:10 -04:00
Brendan Burns	6d08ade4ce	Don't start Docker by default on AWS	2015-07-07 21:57:43 -07:00
Satnam Singh	90e105521c	Wait for service accounts in the kube-system namesapce	2015-07-06 18:12:25 -07:00
Brendan Burns	988aa6fdf6	Move things into a 'kube-system' namespace.	2015-07-06 15:08:23 -07:00
Yu-Ju Hong	1e0a16392d	Merge pull request #10780 from cjcullen/testfix Hacky workaround for #9822	2015-07-06 15:00:35 -07:00
Yu-Ju Hong	b58e7c8c2d	Merge pull request #10655 from dchen1107/cadvisor Set minimal shares for containers with no cpu specified	2015-07-06 11:38:54 -07:00
Tim Hockin	6c88401889	Merge pull request #10271 from erictune/how-to-write-a-gsg Scratch Getting-started-guide	2015-07-06 11:00:44 -07:00
Eric Tune	682abd9dab	Scratch Getting-started-guide	2015-07-06 10:38:20 -07:00
CJ Cullen	edd419790e	Hacky workaround for #9822	2015-07-06 10:02:53 -07:00
Yu-Ju Hong	8ce6fe855b	Merge pull request #10712 from justinsb/always_install_socat Salt: install socat; needed for port-forward	2015-07-06 09:58:52 -07:00
Yu-Ju Hong	83fbcba97b	Merge pull request #10698 from justinsb/aws_master_sans AWS: Configure SSL certificate alternate-names	2015-07-06 09:57:44 -07:00
Zach Loafman	a2250d1caf	Merge pull request #10597 from a-robinson/fluentd Run fluentd on the master to collect the core master logs	2015-07-04 21:12:47 -07:00
Justin Santa Barbara	6504df77f1	Salt: install socat; needed for port-forward port-forward needs socat on the node hosts; we technically don't need it today on the master, but this seems the right place to put it, and socat is a small dependency.	2015-07-03 19:12:44 -04:00
Justin Santa Barbara	25007421ba	Salt: re-remove comment block It had been removed in upstream, but had been kept by mistake here.	2015-07-03 12:43:36 -04:00
Justin Santa Barbara	600a0d6fe7	Salt: have kube-addons service depend on init file For symmetry with systemd	2015-07-03 12:41:59 -04:00
Justin Santa Barbara	a5b3c73ac4	Salt: Add service block for kube-proxy for systemd We have the workaround for Salt's problems here, but we should still express our intent.	2015-07-03 10:26:21 -04:00
Justin Santa Barbara	60d822435b	Salt: clean daemon_args on RedHat, not systemd I don't think it actually makes a difference based on how we're using it, but this is now more of a precise change.	2015-07-03 10:24:32 -04:00
Justin Santa Barbara	ad0293e3f3	Salt: Add more dependencies to systemd services This may help Salt reload services correctly, although we still need the script until Salt's bug with reloading services on systemd is resolved. Salt bug: https://github.com/saltstack/salt/issues/16778	2015-07-03 01:40:15 -04:00
Justin Santa Barbara	944fc1ed58	Set standard bash options in services helper script	2015-07-03 01:40:15 -04:00
Justin Santa Barbara	bcd92c7522	Salt: support systemd (don't assume Redhat <=> systemd) Also work around problems with Salt & systemd services, in particular that Salt doesn't issue a daemon-reload.	2015-07-03 01:40:15 -04:00
Justin Santa Barbara	c676c11189	AWS: Configure SSL certificate alternate-names GCE does this in its per-provider scripts; this does the same for AWS and lets other providers do the same; I believe kube2sky requires 10.0.0.1 as a SAN.	2015-07-03 01:18:07 -04:00
Dawn Chen	9ce11545c0	Explicitly configure master component containers and nginx with 200m each.	2015-07-02 10:46:39 -07:00
Zach Loafman	1d16be675c	Merge pull request #10653 from dchen1107/resource_management Set resource limit for addon containers	2015-07-01 19:35:28 -07:00
Dawn Chen	54531d9b55	Set memory limit (200mi) to fluentd static pod	2015-07-01 17:00:06 -07:00
Zach Loafman	b60c8e567f	Merge pull request #10077 from timstclair/ui-server Move dashboard UI out of the apiserver to a separate pod	2015-07-01 15:56:33 -07:00
nikhiljindal	274792d7bb	Stop exposing v1beta3 by default	2015-07-01 14:38:02 -07:00
Tim St. Clair	b6b2d6df42	Add kube-ui cluster addon for serving k8s dashboard UI. Changes include: - Add kube-ui binary for serving static dashboard UI - Add kube-ui docker image, replication controller, and service - Make the kube-ui a cluster-addon (enabled by default) - Split the compiled pkg/ui/datafile.go into separate dashboard and swagger packages - Update docs to reflect changes	2015-07-01 14:21:47 -07:00
Alex Robinson	e5ea6ae854	Run fluentd on the master node by default. This involves adding the logging-write scope to the master when running on GCE.	2015-07-01 20:07:52 +00:00
Marek Biskup	8df3a9cae8	namespaces in addon update	2015-07-01 21:31:52 +02:00
Zach Loafman	3094c1624b	Merge pull request #10492 from derekwaynecarr/add_watch_service_file Fix Vagrant kube-up - missed file watch on systemd stops kubelet starting on initial kube-up	2015-07-01 09:49:59 -07:00
Marek Biskup	7873e252f0	addon updater should not retry too many times because specs may be invalid	2015-07-01 16:22:32 +02:00
derekwaynecarr	de78898170	Missing file watch on systemd stops kubelet starting on kube-up	2015-07-01 09:59:26 -04:00
Zach Loafman	b83236ee7a	Merge pull request #10568 from derekwaynecarr/fix_vagrant_kube_proxy Missed update to kube-proxy when removing nginx on vagrant	2015-07-01 06:42:00 -07:00
Maru Newby	2da59a2f34	Install 'docker' package for Fedora 22 Fedora < 22 provides docker via the 'docker-io' package, but this package was renamed to 'docker' as of Fedora 22. Though the docker package can be installed manually with 'dnf install docker-io' on F22, Salt requires the explicit package name or deployment will fail.	2015-06-30 21:36:33 -07:00
Robert Bailey	fedddee157	Install the kubectl binary on nodes in addition to the master.	2015-06-30 16:52:17 -07:00
derekwaynecarr	2cc869b1c5	Missed update to kube-proxy when removing nginx on vagrant	2015-06-30 15:42:52 -04:00
Dawn Chen	e55cd709a1	Removed cluster/saltbase/salt/_states/container_bridge.py since it is useless now.	2015-06-30 11:00:41 -07:00
Zach Loafman	f21b6b89d1	Fix issues mentioned in #10520	2015-06-30 06:51:10 -07:00
Daniel Smith	dcd91666b9	wait until a token shows up to start addons	2015-06-29 18:41:12 -07:00
Justin Santa Barbara	e29e9f0033	Add explicit dependency of docker pkg on the deb download Salt ordering continues to surprise me. I saw them execute out of order, though I don't know why. Adding an explicit dependency to prevent out-of-order execution.	2015-06-28 23:51:12 -04:00
Justin Santa Barbara	ea74bd13b8	Work around Salt 18089 Directly create /etc/sysctl.d/99-salt.conf	2015-06-28 23:50:00 -04:00
Justin Santa Barbara	54d3ac92ea	Don't make kubelet systemd service depend on Docker Fixes #10379	2015-06-26 11:03:09 -04:00
Maxwell Forbes	bc1930927d	Merge pull request #10347 from justinsb/vagrant_no_cidr_on_master Salt: don't assume that master => cbr-cidr	2015-06-25 10:23:59 -07:00
Maxwell Forbes	655179dcfb	Merge pull request #10264 from mikedanese/ca-token add ca cert to token controller and all service accounts	2015-06-25 09:56:35 -07:00
Justin Santa Barbara	a0ae1d90ba	Salt: don't assume that master => cbr-cidr In particular, this is required for vagrant	2015-06-25 09:17:00 -04:00
Brendan Burns	d2334d60c8	Merge pull request #10328 from dchen1107/cleanup Add dependencies on docker and kubelet service when copying master co…	2015-06-24 21:32:35 -07:00
Dawn Chen	e7d217d941	Add dependencies on docker and kubelet service when copying master components manifests to /etc/kubernetes/manifest	2015-06-24 21:15:08 -07:00
Maxwell Forbes	3afda5d566	Merge pull request #10312 from dchen1107/cleanup Take 2: Fix the race between configuring cbr0 and restarting static pods	2015-06-24 17:59:50 -07:00
Mike Danese	56bde3342a	add ca to token controller and all service accounts	2015-06-24 15:10:20 -07:00
Dawn Chen	6ddfa512de	Revert "Revert "Fix the race between configuring cbr0 and restarting static pods"" This reverts commit `fd0a95dd12`.	2015-06-24 11:10:10 -07:00
Piotr Szczesniak	fd0a95dd12	Revert "Fix the race between configuring cbr0 and restarting static pods"	2015-06-24 09:56:49 +02:00
Dawn Chen	9dbe6fe4e4	Added more comments.	2015-06-23 16:28:41 -07:00
Dawn Chen	8d76d4ee57	Make master-addon service depend on both docker and kubelet service in salt.	2015-06-23 12:11:20 -07:00
Dawn Chen	23200d303f	Fix several issues on running syncPods until network is configured. Also fixed unittests and compiling.	2015-06-23 12:11:19 -07:00
derekwaynecarr	db202d4904	Remove nginx from vagrant	2015-06-23 13:07:50 -04:00
Brendan Burns	192ffdfb25	Fix the container bridge so that it can create cbr0 Fix the kubelet so that it tries to sync status, even if Docker is down	2015-06-22 23:18:01 -07:00
Brendan Burns	a29ade2f33	Disable creation of cbr0, the kubelet does it now. Conditionalize the docker bridge.	2015-06-22 23:15:29 -07:00
Jeff Lowdermilk	85770295c2	Merge pull request #10004 from ArtfulCoder/kubelet_health Augmented kubelet healthz with syncLoop check.	2015-06-22 10:53:05 -07:00
Abhishek Shah	3556993179	Augmented kubelet healthz with syncLoop check. Monit uses read-only port for health monitoring.	2015-06-19 18:14:01 -07:00
Brendan Burns	ec1e308ae2	rev etcd to 2.0.12	2015-06-19 15:57:32 -07:00
Saad Ali	4d25121206	Merge pull request #9769 from brendandburns/secure Revert the revert of https://github.com/GoogleCloudPlatform/kubernetes/pull/9761	2015-06-16 14:21:54 -07:00
Saad Ali	068000a8ba	Merge pull request #9847 from mikedanese/apiserver-liveness-probe add livenessProbe to kube-apiserver.manifest	2015-06-16 14:03:13 -07:00
Vishnu Kannan	31f7ea10c6	Updating heapster version to v0.14.1. Adding a standalone version of heapster which exposes stats via REST API.	2015-06-16 11:56:23 -07:00
Saad Ali	5596e6f789	Merge pull request #9493 from marekbiskup/testAddonUpdate e2e test for addon upgrade	2015-06-16 10:50:15 -07:00
Mike Danese	491eb5e583	add livenessProbe to kube-apiserver.manifest	2015-06-15 23:22:56 -07:00
Fabio Yeon	9b3e9a509d	Merge pull request #9616 from jeffbean/kube_addons kube_addons - Adding variable with default for kubectl bin.	2015-06-15 19:31:42 -07:00
Fabio Yeon	8d2c7ff1d7	Merge pull request #9687 from satnam6502/fluentd-gcp Adjust Fluentd source format for Docker files to be JSON for Cloud Lo…	2015-06-15 13:32:49 -07:00
Satnam Singh	33311b46a2	Adjust Fluentd source format for Docker files to be JSON for Cloud Logging	2015-06-15 10:22:27 -07:00
Marek Biskup	dcc4034d57	e2e test for addon update	2015-06-15 17:37:24 +02:00
Brendan Burns	51b20b35e2	Revert "Revert "Optionalize (default false) --insecure-registry."" This reverts commit `1645c9a9b8`.	2015-06-12 21:00:16 -07:00
Dawn Chen	1645c9a9b8	Revert "Optionalize (default false) --insecure-registry."	2015-06-12 17:50:38 -07:00
Justin Santa Barbara	16d6ba8a9d	AWS: Stop the master kubelet from registering as a node (like GCE does)	2015-06-12 18:33:45 -04:00
Brendan Burns	675d8378f2	Optionalize (default false) --insecure-registry.	2015-06-11 16:33:14 -07:00
Abhi Shah	59a347d119	Merge pull request #9309 from saad-ali/issue9028 Enable InfluxDB/Grafana for GCE in addition to GCL. Disable GCM	2015-06-11 11:04:09 -07:00
Abhi Shah	f4eb2f366f	Merge pull request #9568 from marekbiskup/docker_log_rotate rotate docker log	2015-06-10 14:50:07 -07:00
Jeffrey Bean	99f64a8a07	kube_addons - Adding variable with default for kubectl bin. Fixes #9599	2015-06-10 14:47:31 -07:00
Abhi Shah	53fa4e1366	Merge pull request #9383 from brendandburns/liveness Add liveness checks to the controller-manager and scheduler.	2015-06-10 14:44:12 -07:00
Abhi Shah	c8591bd323	Merge pull request #9491 from ArtfulCoder/etcd_log Etcd log mount	2015-06-10 13:17:10 -07:00
Marek Biskup	83f8cd148d	rotate docker log	2015-06-10 12:19:13 +02:00
Brendan Burns	ff3f463e00	Add liveness checks to the controller-manager and scheduler.	2015-06-09 13:06:04 -07:00
Robert Bailey	2feb658ed7	Distribute the cluster CA cert to cluster addon pods through the kubeconfig file. Use the $KUBERNETES_MASTER_NAME from the kube-env for skydns, because it can't use the service name.	2015-06-08 20:17:45 -07:00
Abhishek Shah	fe906677d4	Etcd log mount	2015-06-08 17:21:11 -07:00
krousey	8a9e0e00bf	Merge pull request #9128 from marekbiskup/addonUpgrade Addon upgrade (partial implementation of #8107)	2015-06-08 15:15:27 -07:00
Marek Biskup	13ba177668	kube-addon-update.sh	2015-06-08 15:10:40 +02:00
CJ Cullen	04cd9b3c75	Make sshproxy use a hostmount on master PD (don't spam sshKeys on upgrade/reboot). Add comment describing what SSHTunnelList.Close() does. Simplify util.FileExists.	2015-06-05 15:03:03 -07:00
CJ Cullen	cb317604ab	Some refactoring. Only selectively use ssh proxy. Add NetworkName to gce.Config. Add locking to uses of master.tunnels.	2015-06-05 14:55:16 -07:00
CJ Cullen	de9a5f43bc	Specify sshUser, sshKeyfile in kube-apiserver manifest. Trim space on ssh key so GCE doesn't treat it as 2 lines. A couple other minor fixes.	2015-06-05 14:55:15 -07:00
CJ Cullen	82afaaf31d	Mount cloud-config files for cloudproviders in kube-apiserver & kube-controllermanager.	2015-06-05 14:54:20 -07:00
saadali	bc53533c83	Enable InfluxDB/Grafana for GCE in addition to GCM/GCL	2015-06-05 01:17:45 -07:00
derekwaynecarr	2168cee414	Upgrade to Fedora 21, Docker 1.6, clean-up SDN	2015-06-04 10:59:23 -04:00
Daniel Smith	1690617ee6	remove ro service	2015-06-03 16:45:54 -07:00
Brian Grant	984b779b05	Merge pull request #9192 from dchen1107/clean Watch kubelet flag file, so restart kubelet upon changes.	2015-06-03 14:45:07 -07:00
Brian Grant	d37264edde	Merge pull request #9158 from dchen1107/cleanup stop monit kube-proxy on master node.	2015-06-03 12:13:17 -07:00
Dawn Chen	1d94348023	Watch kubelet flag file, so restart kubelet upon changes.	2015-06-03 09:13:28 -07:00
Prashanth Balasubramanian	f7c0f1c1e3	Set min-request-timeout in test clusters	2015-06-03 08:46:28 -07:00
Brian Grant	d861631f08	Merge pull request #9142 from roberthbailey/kubelet-on-master Prevent access to the /run and /exec endpoints on the master's kubelet	2015-06-02 22:55:06 -07:00
Dawn Chen	301bed535e	stop monit kube-proxy on master node. Fixed #8783	2015-06-02 17:48:24 -07:00
CJ Cullen	934c553c04	Clarify description/usage of --advertise-address, Master.PublicAddress	2015-06-02 15:23:32 -07:00
Robert Bailey	1dad552edc	Prevent access to the /run and /exec endpoints on the master's kubelet so that users can't run arbitrary code on the master.	2015-06-02 14:42:11 -07:00
CJ Cullen	085a48a70e	Add an advertise-address flag. This allows the address that the apiserver binds to (possibly 0.0.0.0) to be different than the address on which members of the cluster can reach the apiserver (possibly not a local interface).	2015-06-02 14:33:15 -07:00
Justin Santa Barbara	c4a2631593	Mount logic breaks if /var/lib/kubelet is a symlink Pass the correct kubelet root-dir on AWS	2015-05-29 20:13:09 -04:00
Rohit Jnagal	6274d845b9	Merge pull request #8931 from dchen1107/clean Fix the race when monit is used to monitor services which are also	2015-05-29 11:23:21 -07:00
Rohit Jnagal	50b9d6284a	Merge pull request #8681 from vmarmol/system-container Create a system container	2015-05-29 09:41:06 -07:00
Tim Hockin	ac3cc3c518	Rename PORTAL_NET all over	2015-05-28 16:10:44 -07:00
Tim Hockin	3005471100	Add new apiserver flags for clusterIP (nee portal) Leave old flags but marked as deprecated	2015-05-28 16:10:44 -07:00
Dawn Chen	79a2a4f18d	Fix the race when monit is used to monitor services which are also started at boot time via init.d at boot time.	2015-05-28 11:58:33 -07:00
Eric Tune	b76dd0e585	Merge pull request #8722 from roberthbailey/dead-flags-salt Remove deprecated nodecontroller flags from the salt configuration.	2015-05-27 08:22:26 -07:00
Victor Marmol	c97dda068d	Create a /system system container in Debian.	2015-05-26 20:52:09 -07:00
Saad Ali	fae1636eda	Merge pull request #8586 from vmarmol/use-root-containers Run Docker containers as top-level containers in Debian.	2015-05-26 18:44:36 -07:00
Saad Ali	bed9f826d3	Merge pull request #7435 from jsafrane/devel/volume-tests V2: Add e2e tests for NFS and Gluster	2015-05-26 17:49:41 -07:00
Robert Bailey	e46b5641ae	Remove deprecated flags from the salt configuration.	2015-05-26 12:36:09 -07:00
Jan Safranek	20004e0c16	Add e2e tests for Gluster and NFS tests. - add appropriate server containers into contrib/for-tests/volumes-tester - the tests are off by default (they need kubelet --allow_privileged=True) - enable by 'go run hack/e2e.go ... --ginkgo.focus=Volume' - add glusterfs tools to list of installed packages on each node	2015-05-25 12:02:41 +02:00
CJ Cullen	d6e0aedec1	Re-add the cluster_name flag that the ServiceController and RouteController need.	2015-05-22 16:31:22 -07:00
Victor Marmol	656be14e84	Run Docker containers as top-level containers in Debian. Part of #8215	2015-05-22 13:27:25 -07:00
Dawn Chen	677a4aa1a7	Merge pull request #8164 from cjcullen/cloudprovider Route creation reconciler loop.	2015-05-22 12:27:50 -07:00
Dawn Chen	626d25d50e	Initial cpu limit for fluentd pods (file based).	2015-05-21 23:44:26 -07:00
Dawn Chen	456262c43c	Merge pull request #8475 from dchen1107/clean Create default LimitRange object for cluster: 100m cpu.share per container	2015-05-21 09:14:20 -07:00
CJ Cullen	bf646abf8d	Revert "Revert "Modify nodes to register directly with the master."" This reverts commit `c53786ab31`.	2015-05-20 14:21:03 -07:00
Quinton Hoole	c53786ab31	Revert "Modify nodes to register directly with the master."	2015-05-20 13:47:51 -07:00
Satnam Singh	32842b4d22	Update Fluentd GCP image	2015-05-19 16:12:50 -07:00
Dawn Chen	061155c1eb	Create LimitRange object for cluster before addons service	2015-05-19 10:23:41 -07:00
Dawn Chen	55501a6314	Have default LimitRange created for cluster: 100m cpu.share per container	2015-05-19 10:23:40 -07:00
Robert Bailey	8e356f8439	Configure the cloud provider for the kubelet.	2015-05-19 09:55:07 -07:00
Robert Bailey	01467e0bb8	Modify nodes to register directly with the master. - Delete nodes when they are no longer ready and don't exist in the cloud provider. - Label each node with it's hostname. - Add flag to skip node registration. - Add a test for registering an existing node.	2015-05-19 09:55:07 -07:00
Jeff Lowdermilk	553f9f822b	Add ga-beacon analytics to gendocs scripts hack/run-gendocs.sh puts ga-beacon analytics link into all md files, hack/verify-gendocs.sh verifies presence of link.	2015-05-15 18:56:38 -07:00
Daniel Smith	ce4b54ec70	Merge pull request #8209 from krousey/v1beta1_cluster Removing some v1beta1 uses in cluster/	2015-05-15 14:56:41 -07:00
Kris Rousey	98c457c397	Updating /cluster to use v1beta 3 specs, and change a lot of polling to healthz instead of api endpoints.	2015-05-15 14:17:55 -07:00
Victor Marmol	d3c6fb0d6a	Merge pull request #8275 from dchen1107/clean Install monit_watcher as a cron job (1m) to check if monit is running,	2015-05-15 08:02:55 -07:00
Dawn Chen	e6c159eda2	Install monit_watcher as a cron job (1m) to check if monit is running, and oom protect monit processes.	2015-05-14 15:19:11 -07:00
Rohit Jnagal	e4c98a05ea	Merge pull request #8182 from GoogleCloudPlatform/revert-7863-etcd_maxprocs Revert "Set GOMAXPROCS for etcd"	2015-05-14 11:19:56 -07:00
Victor Marmol	5e7a7b9206	Merge pull request #8241 from gmarek/remove_name Remove unused ClusterName from NodeController	2015-05-14 09:49:34 -07:00
Victor Marmol	2b1b85468a	Merge pull request #7330 from chrismoos/volume_format_script_updates Add safe_format_and_mount to hyperkube image.	2015-05-14 09:17:20 -07:00
gmarek	8a4717d3f5	Remove unused ClusterName from NodeController	2015-05-14 18:01:23 +02:00
Dawn Chen	309a157665	Merge pull request #7984 from cjcullen/kubelet Kubelet configure cbr0 instead of configure-vm.sh	2015-05-13 17:32:52 -07:00
Yu-Ju Hong	ad83197c63	Merge pull request #8187 from satnam6502/nosecret Remove the use of secrets from node level logging agents	2015-05-13 11:12:08 -07:00
Jeff Lowdermilk	f8ebc4e21e	Merge pull request #8104 from roberthbailey/kubelet-using-kubeconfig Replace the auth config file with a kubeconfig file when starting the kubelet on GCE.	2015-05-13 11:09:27 -07:00
Dawn Chen	e32daf4229	Monit watch kubelet and kube-proxy on master node too.	2015-05-13 10:36:00 -07:00
Satnam Singh	53ec5e38c7	Remove the use of secrets from node level logging agents	2015-05-13 10:11:07 -07:00
Filip Grzadkowski	eecd7b8c0f	Revert "Set GOMAXPROCS for etcd"	2015-05-13 17:53:04 +02:00
Robert Bailey	c47b9178b4	Replace the auth config file with a kubeconfig file when starting the kubelet on GCE.	2015-05-13 01:03:28 -07:00
CJ Cullen	31ea7d1295	Put cbr0-modifying stuff behind a flag. Address some other comments.	2015-05-12 23:00:28 -07:00
Alex Robinson	a98d883134	Merge pull request #8121 from satnam6502/fluentd-gcp Convert node level logging to Cloud Logging to use token-system-logging	2015-05-12 14:26:46 -07:00
Alex Robinson	96cb4360fa	Merge pull request #8120 from satnam6502/fluentd-es Convert nodel level logging to ES to use token-system-logging	2015-05-12 14:26:28 -07:00
Nikhil Jindal	d75bd8bf2a	Merge pull request #7101 from liggitt/service_account ServiceAccounts	2015-05-12 10:23:41 -07:00
Satnam Singh	ade18e4ff3	Conver node level logging to Cloud Logging to use token-system-logging	2015-05-12 10:17:45 -07:00
Satnam Singh	f9af0658fa	Convert nodel level logging to ES to use token-system-logging	2015-05-12 10:07:49 -07:00
Alex Robinson	e2b7ef8d2c	Merge pull request #8078 from satnam6502/fluentd-gcp Convert Fluentd to Cloud Logging pod specs to YAML	2015-05-11 16:55:14 -07:00
Satnam Singh	e246685468	Convert Fluentd to Cloud Logging pod specs to YAML	2015-05-11 14:55:46 -07:00
Satnam Singh	2f5ba28a17	Switch Fluentd to ES manifest back to YAML	2015-05-11 14:37:41 -07:00
Jordan Liggitt	db1f0dc906	JWT token generation/verification	2015-05-11 17:18:06 -04:00
Robert Bailey	6c42cb154b	Stop copying certs into /usr/share/nginx/ since nothing relies on that location any longer.	2015-05-11 11:44:19 -07:00
Wojciech Tyczynski	600b00f2b1	Merge pull request #7863 from fgrzadkowski/etcd_maxprocs Set GOMAXPROCS for etcd	2015-05-07 10:09:29 +02:00
Filip Grzadkowski	7e8bde53dd	Set GOMAXPROCS for etcd	2015-05-07 08:11:39 +02:00
CJ Cullen	f0c26052eb	Fix controller-manager manifest for providers that don't specify CLUSTER_IP_RANGE	2015-05-06 17:50:04 -07:00
Maxwell Forbes	7426b533df	Merge pull request #7862 from cjcullen/cbr0 Remove restriction that cluster-cidr be a class-b	2015-05-06 15:46:57 -07:00
saadali	4569de7a46	Enable Google Cloud Monitoring and Google Cloud Logging instead of Influxdb for Google Compute Engine deployments.	2015-05-06 15:23:40 -07:00
CJ Cullen	fbd125e4e2	Remove restriction that cluster-cidr be a class-b	2015-05-06 15:01:13 -07:00

... 8 9 10 11 12 ...

1287 Commits