kubernetes

Author	SHA1	Message	Date
Shihang Zhang	42cb861487	exclude kms provider from health check Change-Id: Ie1f828b327c5eede8a0b105a8c3f8fc7affd6f3e	2019-09-18 10:37:55 -07:00
Guangming Wang	cd929a98a0	fix shellcheck in cluster/gce/config-common.sh add comment for exported values	2019-09-19 00:03:16 +08:00
Pavithra Ramesh	1819c2ea9b	Support kube-dns stubDomains in nodelocaldns With this change, node-local-dns pods will mount the kube-dns configmap and update the Corefile with the stubDomain config.	2019-09-17 11:50:22 -07:00
Paulo Gomes	66a852071a	Consolidate UID and GID	2019-09-17 19:05:46 +01:00
David Huh	bc3f4b269a	Updated COS version to M77	2019-09-16 22:27:39 +00:00
Kubernetes Prow Robot	1bebaea417	Merge pull request #81061 from k-toyoda-pi/fix_shellcheck_flexvolume_node_setup Fix shellcheck failure in gce/gci/flexvolume_node_setup.sh	2019-09-16 14:43:54 -07:00
hwdef	951aa8e69a	add-err-handling-in-images/etcd/migrate	2019-09-15 00:11:35 +08:00
Pavithra Ramesh	7a7f856e22	Support running custom nodelocaldns yaml in gce.	2019-09-12 12:53:53 -07:00
Ling Huang	dc9db4b413	Upgrade stackdriver-logging-agent image to 1.6.17 to fix CVEs. Change-Id: Ic37a8d3663d616e7d196353efd9a0164da724728	2019-09-12 04:02:08 -04:00
Kubernetes Prow Robot	0dbb93125f	Merge pull request #82579 from mm4tt/etcd_expose_metrics Expose etcd metric port in tests	2019-09-11 22:53:35 -07:00
Kubernetes Prow Robot	14e5ac8591	Merge pull request #82499 from filbranden/owners1 Remove me from OWNERS for GCI	2019-09-11 21:24:05 -07:00
Kubernetes Prow Robot	79e5052e31	Merge pull request #82485 from oxddr/fix-log-dump log-dump: make logging clearer	2019-09-11 21:23:04 -07:00
Paulo Gomes	2545cbafd9	Replacing deprecated seccomp.	2019-09-11 20:45:35 +01:00
Paulo Gomes	72ee17c5ca	Adding recommendations from tallclair.	2019-09-11 20:42:24 +01:00
Paulo Gomes	8dcc976db3	Fix identation issue.	2019-09-11 20:42:06 +01:00
Paulo Gomes	f12d1347b2	Update .in and .sed files.	2019-09-11 20:41:59 +01:00
Paulo Gomes	594b18a119	Harden kube-dns to run with less privileges.	2019-09-11 20:41:50 +01:00
Kubernetes Prow Robot	9592869783	Merge pull request #82064 from RainbowMango/pr_cleanup_testtar_testdata Cleanup cluster/images/conformance/go-runner test data after test done	2019-09-11 10:39:00 -07:00
Matt Matejczyk	fbbb4ebeca	Expose etcd metric port in tests This is to allow scraping etcd metrics in scalabiblity tests. This was already done in https://github.com/kubernetes/kubernetes/pull/77657, but then the logic got changed when introducing mtls in https://github.com/kubernetes/kubernetes/pull/77561 and the new etcd metric port 2382 is currently only exposed on localhost. Ref. https://github.com/kubernetes/perf-tests/issues/786	2019-09-11 13:57:00 +02:00
Kubernetes Prow Robot	f48659e9fd	Merge pull request #81681 from zhenglol/sd_test_endpoint override stackdriver endpoint in event-exporter in test cluster	2019-09-10 14:32:00 -07:00
Łukasz Osipiuk	b27e0b54f1	Update Cluster Autoscaler version to 1.16.0	2019-09-09 19:12:31 +02:00
Filipe Brandenburger	c8f4e958e6	Remove me from OWNERS for GCI Signed-off-by: Filipe Brandenburger <filbranden@gmail.com>	2019-09-09 09:39:05 -07:00
Janek Łukaszewicz	72683a0252	log-dump: make logging clearer	2019-09-09 13:08:24 +02:00
Kubernetes Prow Robot	1cdd0848ee	Merge pull request #82430 from losipiuk/lo/ca-1.16 Update cluster autoscaler image to 1.16.0-beta.1	2019-09-08 18:41:17 -07:00
Rob Scott	66196c1043	Improving GCE cluster up logic for EndpointSlice Controller	2019-09-06 09:49:32 -07:00
Łukasz Osipiuk	d02cc41644	Add read-only rbac for csinodes to cluster-autoscaler	2019-09-06 17:38:48 +02:00
Łukasz Osipiuk	9332d11563	Update cluster-autoscaler image to v1.16.0-beta.1	2019-09-06 17:38:31 +02:00
Kubernetes Prow Robot	3a50184421	Merge pull request #82380 from robscott/endpointslice-e2e-tests Starting EndpointSlice Controller when all Alpha gates are enabled in cluster up	2019-09-05 17:54:57 -07:00
Kubernetes Prow Robot	397ed0e825	Merge pull request #82314 from lzang/master Add dns capability to GCE window cluster	2019-09-05 16:30:58 -07:00
Kubernetes Prow Robot	9614a85a2b	Merge pull request #81300 from liyanhui1228/sd_logging Install and start logging agent based on kube env	2019-09-05 13:00:58 -07:00
Rob Scott	dc0c81a5f1	Ensuring endpointslice controller starts up as part of cluster up when all alpha feature gates are enabled	2019-09-05 09:16:13 -07:00
Kubernetes Prow Robot	838e953e94	Merge pull request #82322 from olagacek/master bump metrics-server version to v0.3.4	2019-09-05 09:03:23 -07:00
Kubernetes Prow Robot	c4c64673d7	Merge pull request #82199 from dims/update-to-etcd-3.3.15-0-image Update default etcd server to 3.3.15 for kubernetes 1.16	2019-09-05 06:35:10 -07:00
Zang Li	2a3ab18654	Add dns capability to GCE window cluster	2019-09-04 18:45:25 -07:00
Angela Li	1d27242967	rebase	2019-09-04 15:32:25 -07:00
Angela Li	54d9f9a75b	Add comment	2019-09-04 15:30:38 -07:00
Angela Li	f24749594b	Adding ENABLE_STACKDRIVER_WINDOWS	2019-09-04 15:30:38 -07:00
Angela Li	53a2559e24	Install and start logging based on kube env	2019-09-04 15:30:38 -07:00
Kubernetes Prow Robot	7e906ae145	Merge pull request #82047 from roberthbailey/owners Remove myself from reviewers across the repo	2019-09-04 04:35:00 -07:00
Aleksandra Gacek	d176628b7b	bump metrics-server version to v0.3.4	2019-09-04 12:08:56 +02:00
Kubernetes Prow Robot	4fdfa76ca9	Merge pull request #82142 from pjh/separate-fluentd-config Write the Stackdriver config separately from the installation.	2019-09-03 16:01:11 -07:00
toyoda	5c724f6eaa	fix shellcheck failure in gci/flexvolume_node_setup.sh	2019-09-03 16:56:25 +09:00
Matt Matejczyk	f3b870400d	Allow typha-cpa to get apps/deployments Without this it fails after deployments were switched from extensions to apps with ``` E0902 11:25:51.197420 1 reflector.go:283] github.com/kubernetes-incubator/cluster-proportional-autoscaler/pkg/autoscaler/k8sclient/k8sclient.go:96: Failed to watch v1.Node: unknown (get nodes) E0902 11:25:53.118490 1 reflector.go:283] github.com/kubernetes-incubator/cluster-proportional-autoscaler/pkg/autoscaler/k8sclient/k8sclient.go:96: Failed to watch v1.Node: unknown (get nodes) E0902 11:25:54.997493 1 reflector.go:283] github.com/kubernetes-incubator/cluster-proportional-autoscaler/pkg/autoscaler/k8sclient/k8sclient.go:96: Failed to watch v1.Node: unknown (get nodes) E0902 11:25:57.097423 1 reflector.go:283] github.com/kubernetes-incubator/cluster-proportional-autoscaler/pkg/autoscaler/k8sclient/k8sclient.go:96: Failed to watch v1.Node: unknown (get nodes) E0902 11:25:59.097417 1 reflector.go:283] github.com/kubernetes-incubator/cluster-proportional-autoscaler/pkg/autoscaler/k8sclient/k8sclient.go:96: Failed to watch *v1.Node: unknown (get nodes) I0902 11:25:59.697325 1 k8sclient.go:221] Falling back to extensions/v1beta1, error using apps/v1: deployments.apps "calico-typha" is forbidden: User "system:serviceaccount:kube-system:typha-cpha" cannot get resource "deployments/scale" in API group "apps" in the namespace "kube-system" E0902 11:25:59.699833 1 autoscaler_server.go:120] Update failure: the server could not find the requested resource ``` Ref. https://github.com/kubernetes/test-infra/pull/13709	2019-09-02 13:52:10 +02:00
SataQiu	35a7924327	fix shellcheck failures of cluster/addons/addon-manager/kube-addons.sh	2019-09-02 19:18:51 +08:00
Davanum Srinivas	8ca2436bdb	Fix failure running `make build test` in cluster/images/etcd Change-Id: I5072d06402d211c17c8c5fb952e193bd1e57c07d	2019-08-30 22:06:41 -04:00
Davanum Srinivas	8fbfdf8267	Update default etcd server to 3.3.15 for kubernetes 1.16 Change-Id: I68f1a5e5339d83077a1a9f312c4e6e33848886c5	2019-08-30 21:29:45 -04:00
Kubernetes Prow Robot	0466cb6e69	Merge pull request #82140 from wangzhen127/fix-npd-test Update NPD addon to use v0.7.1	2019-08-30 13:04:33 -07:00
Kubernetes Prow Robot	7a7b8a7305	Merge pull request #82094 from tallclair/runtime-class-admission Enable the RuntimeClass admission controller on GCE & CI	2019-08-30 08:00:12 -07:00
Kubernetes Prow Robot	7236850194	Merge pull request #82093 from rajansandeep/reconcilecorednscm Add the ability to migrate CoreDNS configmap in kube-up	2019-08-30 07:59:56 -07:00
Peter Hornyack	9282e48ccc	Write the Stackdriver config separately from the installation. This will let us preinstall the Stackdriver logging agent but still configure it correctly when bringing up new Windows nodes. The hostname in the config file looks the same before-and-after: "logging.googleapis.com/local_resource_id" ${"k8s_node.e2e-test-peterhornyack-windows-node-group-6tw6"} "logging.googleapis.com/local_resource_id" ${"k8s_node.e2e-test-peterhornyack-windows-node-group-mf5r"}	2019-08-29 12:22:33 -07:00
Zhen Wang	58e64193c9	Update NPD addon to use v0.7.1	2019-08-29 11:24:13 -07:00
Gyuho Lee	93b9545f48	vendor: update with "update-vendor.sh" script Signed-off-by: Gyuho Lee <leegyuho@amazon.com>	2019-08-29 08:46:02 -07:00
Gyuho Lee	3ad4fedede	cluster/.../etcd/migrate: block etcd client creation until connection is up The new etcd balancer (>3.3.14, 3.4.0) uses an asynchronous resolver for endpoints. Without "WithBlock", the client may return before the connection is up. Signed-off-by: Gyuho Lee <leegyuho@amazon.com>	2019-08-29 08:38:29 -07:00
Sandeep Rajan	8a7a8032b1	hardcoded check sha of corefile tool	2019-08-29 10:03:29 -04:00
Tim Allclair	a4f8ee17ee	Enable the RuntimeClass admission controller on GCE & CI	2019-08-28 13:23:55 -07:00
Sandeep Rajan	3b6b7f99b0	add checksum	2019-08-28 16:03:28 -04:00
RainbowMango	6c46135ff5	Cleanup UT test data after test done.	2019-08-28 15:16:17 +08:00
Zhen Wang	d874dbfcb1	Bump NPD version to v0.7 for GCI	2019-08-27 22:26:30 -07:00
Kubernetes Prow Robot	467bdcb445	Merge pull request #81532 from MrHohn/cpa-1.7.0 Bump cluster proportional autoscaler to 1.7.1	2019-08-27 19:37:32 -07:00
Robert Bailey	9d211ab352	Remove myself from reviewers across the repo so that PRs are no longer assigned to me by blunderbuss. Move myself to be an emeritus approver for the cluster directory.	2019-08-27 16:10:16 -07:00
Zihong Zheng	84e8bccdb5	Bump cluster proportional autoscaler to 1.7.1	2019-08-26 13:22:53 -07:00
Kubernetes Prow Robot	5ced7377c3	Merge pull request #81428 from MrHohn/cpva-v0.8.1 Bump vertical autoscaler to v0.8.1	2019-08-23 17:58:50 -07:00
Kubernetes Prow Robot	d52b212189	Merge pull request #79908 from wenjiaswe/remove-aggregator-ca-key Remove unused aggregator ca key	2019-08-23 13:31:18 -07:00
Kubernetes Prow Robot	9cd9c45fbb	Merge pull request #81753 from yujuhong/no-continue GCE/Windows: use "return" as "continue" for ForEach-Object	2019-08-23 03:27:30 -07:00
Kubernetes Prow Robot	01d1748d10	Merge pull request #81718 from hwdef/fix-cluster-images-conformance-go-runner fix cluster/images/conformance/go-runner/tar_test.go	2019-08-22 23:28:13 -07:00
hwdef	296705b9c0	fix cluster/images/conformance/go-runner/tar_test.go	2019-08-22 11:32:18 +08:00
Yu-Ju Hong	48cc836717	GCE/Windows: use "return" as "continue" for ForEach-Object Using `continue` would exit the current processing scope. https://blogs.technet.microsoft.com/msftcam/2015/03/17/powershell-gotcha-foreach-object-and-continue/	2019-08-21 15:44:40 -07:00
Kubernetes Prow Robot	6789f38199	Merge pull request #80912 from monotek/fluentd-elasticsearch [fluentd/elasticsearch] updated fluentd to 1.6.3	2019-08-20 23:05:16 -07:00
Zheng Chen	70a7134906	added override for sd testing env in event-exporter yaml	2019-08-20 16:29:15 -04:00
Sandeep Rajan	7980da9f46	bump coredns to 1.5.0	2019-08-20 14:38:23 -04:00
Sandeep Rajan	e57b867957	add coredns migration support to upgrade.sh	2019-08-20 14:37:59 -04:00
Peter Hornyack	3ac5c1565a	Leave Windows Defender enabled for clusters on GCE	2019-08-19 16:55:00 -07:00
Kubernetes Prow Robot	ec57547034	Merge pull request #80864 from jeefy/owner-updates Prune OWNERS file	2019-08-19 02:53:30 -07:00
Kubernetes Prow Robot	d5173ef87e	Merge pull request #80971 from k-toyoda-pi/fix_shellcheck_test-e2e Fix shellcheck failure in cluster/test-e2e.sh	2019-08-16 17:02:21 -07:00
Kubernetes Prow Robot	2974adff27	Merge pull request #81337 from YangLu1031/master Add instruction for "Application Default Credentials" to run e2e tests locally	2019-08-15 16:18:47 -07:00
Kubernetes Prow Robot	273e9262bb	Merge pull request #80342 from draveness/feature/remove-critical-pod-annotation feat: cleanup pod critical pod annotations feature	2019-08-15 07:20:34 -07:00
Zihong Zheng	dfe2e1a1ee	Bump vertical autoscaler to v0.8.1	2019-08-14 11:26:31 -07:00
Yang Lu	9d68d44e1f	Add instruction for "Application Default Credentials"	2019-08-14 10:27:58 -07:00
André Bauer	8cda6da27d	use image in statefulset too Signed-off-by: André Bauer <monotek23@gmail.com>	2019-08-13 19:45:52 +02:00
Kubernetes Prow Robot	133f37814c	Merge pull request #79722 from randomvariable/etcd-world-executable Make etcd world-executable in Docker image	2019-08-12 12:11:04 -07:00
Kubernetes Prow Robot	282b992e0c	Merge pull request #81074 from mborsz/ilb Experimental ILB support	2019-08-09 06:25:26 -07:00
Maciej Borsz	cc4094d916	Experimental ILB support	2019-08-09 12:38:15 +02:00
Kubernetes Prow Robot	18b6ff3d65	Merge pull request #81106 from YangLu1031/updateImageVersion Update the Windows server core 1809 image to July version 0709	2019-08-08 17:58:18 -07:00
draveness	495faa22db	feat: cleanup pod critical pod annotations feature	2019-08-09 08:41:23 +08:00
Kubernetes Prow Robot	4c315aa8d9	Merge pull request #78543 from cheftako/kas-np3 Get network-proxy working with GCE.	2019-08-07 14:44:44 -07:00
Yang Lu	8bd0860c5c	Update the Windows node image 1809 version to 0709	2019-08-07 12:36:04 -07:00
Walter Fender	ebb65c5f4c	Get network-proxy working with GCE. Got the proxy-server coming up in the master. Added certs and have it comiung up with those certs. Added a daemonset to run the network-agent. Adding support for agent running as a sameon set on every node. Added quick hack to test that proxy server/agent were correctly tunneling traffic to the kubelet. Added more WIP for reading network proxy configuration. Get flags set correctly and fix connection services. Adding missing ApplyTo Added ConnectivityService. Fixed build directives. Added connectivity service configuration. Fixed log levels. Fixed minor issues for feature turned off. Fixed boilerplate and format. Moved log dialer initialization earlier as per Liggits suggestion. Fixed a few minor issues in the configuration for GCE. Fixed scheme allocation Adding unit test. Added test for direct connectivity service. Switching to injecting the Lookup method rather than using a Singleton. First round of mikedaneses feedback. Fixed deployment to use yaml and other changes suggested by MikeDanese. Switched network proxy server/agent which are kebab-case not camelCase. Picked up DIAL_RSP fix. Factored in deads2k feedback. Feedback from mikedanese Factored in second round of feedback from David. Fix path in verify. Factored in anfernee's feedback. First part of lavalamps feedback. Factored in more changes from lavalamp and mikedanese. Renamed network-proxy to konnectivity-server and konnectivity-agent. Fixed tolerations and config file checking. Added missing strptr Finished lavalamps requested rename. Disambiguating konnectivity service by renaming it egress selector. Switched feature flag to KUBE_ENABLE_EGRESS_VIA_KONNECTIVITY_SERVICE	2019-08-06 23:09:49 -07:00
Kubernetes Prow Robot	bdb8e05b97	Merge pull request #80536 from lzang/policy Upgrade Calico to 3.7.4	2019-08-05 13:35:49 -07:00
toyoda	3582400e4f	fix shellcheck failure in cluster/test-e2e.sh	2019-08-05 13:24:05 +09:00
André Bauer	bb51318a07	added latest tag Signed-off-by: André Bauer <monotek23@gmail.com>	2019-08-02 16:34:45 +02:00
André Bauer	596328de41	fixed whitespaces Signed-off-by: André Bauer <monotek23@gmail.com>	2019-08-02 16:32:31 +02:00
André Bauer	ca9424dd2a	updated fluentd to 1.6.3 Signed-off-by: André Bauer <monotek23@gmail.com>	2019-08-02 16:05:15 +02:00
Kubernetes Prow Robot	231a6a7850	Merge pull request #80861 from mborsz/addon Update kube-addon-manager to v9.0.2	2019-08-02 04:53:58 -07:00
Maciej Borsz	a620b47e13	Adde 9.0.2 to CHANGELOG.md	2019-08-01 20:15:46 +02:00
Jeffrey Sica	5bc4deafa0	prune owners	2019-08-01 11:13:03 -04:00
Maciej Borsz	e442a427f5	Update kube-addon-manager to v9.0.2.	2019-08-01 16:15:51 +02:00
Erik Wilson	2242718e17	Run ginkgo in foreground, elminiate wait & pgrep Use bash process substitution for sending ginkgo output through tee, allowing easy capture of the ginkgo exit code and avoiding use of wait or pgrep. For #78699	2019-07-31 00:53:08 -07:00
Zang Li	0bc273d646	Upgrade Calico to 3.7.4 Release note: https://docs.projectcalico.org/v3.7/release-notes/	2019-07-30 16:53:25 -07:00
Kubernetes Prow Robot	3be827e912	Merge pull request #77561 from wenjiaswe/fix-etcd-server Use HTTPS as etcd-apiserver protocol when mTLS is enabled	2019-07-29 12:14:49 -07:00
Matt Matejczyk	eb9320d613	Update logexporter version. This is to include changes from https://github.com/kubernetes/test-infra/pull/13655	2019-07-29 11:28:02 +02:00
Kubernetes Prow Robot	e298fc723f	Merge pull request #80635 from mborsz/patch-9 Retry metadata requests in get-credentials and valid-storage-scope	2019-07-26 16:52:48 -07:00
Maciej Borsz	f1e6309560	Retry metadata requests in get-credentials and valid-storage-scope	2019-07-26 14:09:55 +02:00
Maciej Borsz	9f71739623	Bump kube-addon-manager's version to v9.0.2	2019-07-26 11:36:37 +02:00
Kubernetes Prow Robot	96594b6723	Merge pull request #80566 from BenTheElder/fix-image-ref fix kube-proxy manifest	2019-07-25 22:36:36 -07:00
Kubernetes Prow Robot	a1f4c2ed21	Merge pull request #80575 from mborsz/patch-7 Fix leader election in kube-addon manager	2019-07-25 10:41:40 -07:00
Kubernetes Prow Robot	bf2dd03083	Merge pull request #80318 from davidxia/fix-err-caps cleanup: fix some log and error capitalizations	2019-07-25 10:41:28 -07:00
Maciej Borsz	b851a3365a	Fix leader election in kube-addon manager	2019-07-25 14:00:22 +02:00
Kubernetes Prow Robot	10005d2e1e	Merge pull request #80421 from lostick/fix-es-master-discovery Fix es initial cluster formation & update es to 7.2.0	2019-07-25 01:38:06 -07:00
Benjamin Elder	1cf8a06d12	add reciprocal note about keeping manifests in sync	2019-07-25 00:44:11 -07:00
Benjamin Elder	8d04fa065f	fix kube-proxy manifest	2019-07-25 00:41:45 -07:00
Kubernetes Prow Robot	0612c7de0b	Merge pull request #80232 from shihan9/gce remove function apply-encryption-config in configure-helper	2019-07-24 13:50:19 -07:00
Laurent Godet	19c0aa98e1	Fix es 7.x.x initial cluster formation	2019-07-24 16:42:40 +01:00
Taahir Ahmed	9702c6e6e9	GCP config: gke-exec-auth-plugin for ValidatingAdmissionWebhook This commit adds support for using `gke-exec-auth-plugin` (vTPM-based certificates for mTLS) for webhooks when calling endpoints matching `.googleapis.com`, and integrates this support with ValidatingAdmissionWebhook. To enable it, request ValidatingAdmissionWebhook with `ADMISSION_CONTROL=...,ValidatingAdmissionWebhook,...` (default) and opt in to `gke-exec-auth-plugin` using `WEBHOOK_GKE_EXEC_AUTH=true` during the configuration process. If you don't opt-in, ValidatingAdmissionWebhook will be deployed as before. Requesting `WEBHOOK_GKE_EXEC_AUTH=true` will fail if you have not provided other configuration variables: `EXEC_AUTH_PLUGIN_URL`: controls whether `gke-exec-auth-plugin` is downloaded during the installation step. A prerequisite for actually using the plugin. * `TOKEN_URL`, `TOKEN_BODY`, and `TOKEN_BODY_UNQUOTED`: configuration values used when calling the plugin. `TOKEN_URL` and `TOKEN_BODY` have existing usage. `TOKEN_BODY_UNQUOTED` is a new variable that is meant to sidestep the problem of inverting `strconv.Quote` in Bash. The existing configuration process for ImagePolicyWebhook has been reworked to make it play nicely with ValidatingAdmissionWebhook under `WEBHOOK_GKE_EXEC_AUTH=true`. * It originally placed the ImagePolicyWebhook configuration object at the top-level of the file specified by `--admission-control-config-file`. I can't see why this worked; it must have been hitting some sort of lucky path through the various config file loading mechanisms. Now, it places its configuration in a sub-field of that file, which is shared among all admission control plugins. * It mounted its various config files read-write. I reviewed the code and couldn't see why it was necessary, so I moved the config files into the existing read-only mount at `/etc/srv/kubernetes`. * It now checks that all the configuration values it requires have been provided. Co-authored-by: Mike Danese <mikedanese@google.com> Co-authored-by: Taahir Ahmed <taahm@google.com>	2019-07-22 16:01:37 -07:00
Tobias Bradtke	ce3e3f0660	Fix link to moved Docker image See https://github.com/kubernetes/kubernetes/pull/79390	2019-07-22 20:15:08 +02:00
David Xia	fabfd950b1	cleanup: fix some log and error capitalizations Part of https://github.com/kubernetes/kubernetes/issues/15863	2019-07-20 18:26:16 -04:00
Wenjia Zhang	2e61ae0c56	Use HTTPS as etcd-apiserver protocol when mTLS is enabled	2019-07-20 14:24:31 -07:00
Kubernetes Prow Robot	49f6510d9a	Merge pull request #80277 from draveness/feature/revert-cleanup-critical-pod Revert "feat: cleanup pod critical pod annotations feature"	2019-07-18 19:31:37 -07:00
Javier Pérez Hernández	288ea10a59	gce: configure: use 'amd64' in kube core images manifest	2019-07-18 08:31:45 -07:00
draveness	d83526d253	Revert "feat: cleanup pod critical pod annotations feature" This reverts commit `b6d41ee5cc`.	2019-07-18 13:31:12 +08:00
Shihang Zhang	e6607cc259	remove function apply-encryption-config in configure-helper Change-Id: I4df76abcc94eb222219968dc5e08655677d4623f	2019-07-16 14:03:13 -07:00
Davanum Srinivas	6b06084df6	Drop -r for variable within loop using `local -r` will blow up, example output: ``` /home/kubernetes/bin/configure.sh: line 388: local: manifest_name: readonly variable ``` Change-Id: Id379180803d44dd9c7ac0da41c1cd56de0fe54a4	2019-07-14 11:05:29 -04:00
Kubernetes Prow Robot	b9615d5bbc	Merge pull request #80054 from javier-b-perez/load-image cluster: configure: load images and add tags with no arch	2019-07-13 15:37:03 -07:00
Javier Pérez Hernández	438ff151d4	cluster: configure: load images and add tags with no arch	2019-07-12 16:40:40 -07:00
Kubernetes Prow Robot	5be1efe9bd	Merge pull request #79447 from almos98/start-stackdriver-workaround Wait for StackdriverLogging service to stop before restarting it.	2019-07-12 14:11:06 -07:00
Kubernetes Prow Robot	aaad86c210	Merge pull request #80037 from dims/remove-support-for-etcd2-from-images-etcd Remove support for etcd2 from cluster/images/etcd image	2019-07-12 06:31:56 -07:00
Kubernetes Prow Robot	8cca1978ae	Merge pull request #80046 from liyanhui1228/formattable Avoid truncating long messages in docker test logs	2019-07-11 22:03:17 -07:00
Kubernetes Prow Robot	642a06e552	Merge pull request #79554 from draveness/feature/remove-critical-pod-annotation feat: cleanup pod critical pod annotations feature	2019-07-11 22:03:04 -07:00
Davanum Srinivas	88b0be7355	Update revision number for the image	2019-07-11 21:20:37 -04:00
Davanum Srinivas	f58f126715	Remove support for etcd2 from cluster/images/etcd image Removes etcd2 code and images. Etcd2 is no longer supported as of 1.13, so rollback and management tools for etcd2 should not be shipped any longer. If it is still desired the older versions of the image can be used. Change-Id: I516c40067f0a57c42d2a6ab4612071c5e556a005	2019-07-11 21:20:24 -04:00
Alexion Ramos	6edbb95f53	Wait for StackdriverLogging service to stop before restarting it.	2019-07-11 17:54:38 -07:00
Angela Li	fa90cb9e3d	Avoid truncating long log messages	2019-07-11 10:50:11 -07:00
Kubernetes Prow Robot	a7c619a158	Merge pull request #79949 from liyanhui1228/firstbranch Add timestamps to the docker test logs	2019-07-10 21:39:45 -07:00
draveness	b6d41ee5cc	feat: cleanup pod critical pod annotations feature	2019-07-11 08:54:19 +08:00
Angela Li	c0c29586a9	Add EntryType	2019-07-10 14:09:44 -07:00
Angela Li	a97d544475	Changed to use select-object to filter the log properties	2019-07-10 10:25:38 -07:00
Kubernetes Prow Robot	79aab0b90d	Merge pull request #78246 from mborsz/kubemark Migrate kubemark to e2e-up/e2e-down scripts	2019-07-10 07:42:27 -07:00
Maciej Borsz	4646594f29	Migrate kubemark to e2e-up/e2e/down scripts.	2019-07-10 11:23:55 +02:00
Kubernetes Prow Robot	3c09a870a4	Merge pull request #79692 from chendave/issue_79689 Address couple of issue on image build for ARM arch	2019-07-09 23:02:38 -07:00
Angela Li	ed43a6c039	Add timestamp to the docker test logs	2019-07-09 17:31:24 -07:00
Wenjia Zhang	5abd36824a	Remove unused aggregator ca key	2019-07-08 17:22:25 -07:00
Kubernetes Prow Robot	4cabe6217f	Merge pull request #79626 from wenjiaswe/remove-etcd-ca-key Remove unnecessary ETCD_CA_KEY check	2019-07-08 14:28:14 -07:00
Kubernetes Prow Robot	042b157d45	Merge pull request #79014 from monotek/efkupdate updated fluentd to 1.5.1, es & kibana to 7.1.1	2019-07-08 14:27:36 -07:00
Kubernetes Prow Robot	097681b619	Merge pull request #72206 from tallclair/audit-profile-test Audit profile test	2019-07-05 19:00:35 -07:00
Naadir Jeewa	b1b7ea3229	etcd: Add comment re: SELinux Signed-off-by: Naadir Jeewa <jeewan@vmware.com>	2019-07-04 10:13:37 +01:00
Naadir Jeewa	8c27ac488a	etcd: Change perms in Makefile, not Dockerfile	2019-07-04 10:06:34 +01:00
Naadir Jeewa	bdcea67730	etcd: Ensure etcd binaries are world executable Signed-off-by: Naadir Jeewa <jeewan@vmware.com>	2019-07-04 10:05:18 +01:00
Naadir Jeewa	3783aa5051	etcd: Allow Makefile to be used on SELinux systems Adds check for SELinux and then adds the :z parameter to the volume mounts in order to work on SELinux enabled systems such as Fedora. Signed-off-by: Naadir Jeewa <jeewan@vmware.com>	2019-07-03 23:28:18 +01:00
Tim Allclair	d06f849379	Audit policy test	2019-07-03 10:39:37 -07:00
Naadir Jeewa	42f566ae58	etcd: Ensure etcd binaries are world executable Signed-off-by: Naadir Jeewa <jeewan@vmware.com>	2019-07-03 16:49:25 +01:00
Kubernetes Prow Robot	f9a7ca8bab	Merge pull request #79703 from mborsz/master_node_labels Add MASTER_NODE_LABELS	2019-07-03 05:58:31 -07:00
André Bauer	146d7c85dc	updated fluentd to 1.5.1, es & kibana to 7.1.1 Signed-off-by: André Bauer <monotek23@gmail.com>	2019-07-03 12:26:55 +02:00
Maciej Borsz	08f8d2ef46	Fix HA setup logic	2019-07-03 11:17:31 +02:00
Dave Chen	c60181317e	Address couple of issue on image build for ARM arch - `GOARM` should not be hardcoded - `GOARM` needn't be set when the `ARCH` is not `arm` - make it also possible to build binary within `agnhost` dir as well - fix image build failure when the user is root Signed-off-by: Dave Chen <dave.chen@arm.com>	2019-07-03 16:56:23 +08:00
Maciej Borsz	20d5bb4afe	Add MASTER_NODE_LABELS	2019-07-03 09:39:14 +02:00
Kubernetes Prow Robot	e79dcc2174	Merge pull request #79284 from johnSchnake/conformanceGoRunner Adds an optional golang runner to the conformance test image	2019-07-02 15:41:11 -07:00
Kubernetes Prow Robot	5ee329c799	Merge pull request #77271 from krzysied/gce_instance_parallel Creating instance groups in parallel	2019-07-02 05:45:08 -07:00
Wenjia Zhang	22591ad8f2	Remove unnecessary ETCD_CA_KEY check	2019-07-01 15:19:16 -07:00
Kubernetes Prow Robot	da0f51ffed	Merge pull request #78820 from haosdent/fix_typos Fix typos.	2019-07-01 15:09:20 -07:00
John Schnake	b3f5a086ab	Adds an optional golang runner to the conformance test image Adds a go app which runs the e2e tests with ginkgo. - Supports all the existing env vars of the bash script - Improved flow control to avoid and better report issues regarding the process PID - Adds flags for modifying where to find the test binary and ginkgo binary so that you can run it locally - Adds 3 flags for specifying extra args before the double-dash, extra args after the double-dash, and the seperator to use between values in those env vars. This allows setting arbitrary, complex values for use on the command such as flags which include spaces or other characters.	2019-07-01 16:26:13 -05:00
Kubernetes Prow Robot	ed1f9748b1	Merge pull request #78727 from mborsz/script Modify kube-up to support cluster without nodes.	2019-07-01 09:43:21 -07:00
Kubernetes Prow Robot	3f221551b6	Merge pull request #78728 from mborsz/firewall Modify firewall rules names to make them shorter.	2019-07-01 07:23:34 -07:00
Maciej Borsz	5f10c284c8	Modify kube-up to support cluster without nodes.	2019-07-01 15:29:45 +02:00
Wei Huang	6f10758446	followup of 79262 to cleanup PodPriority leftover	2019-06-28 14:19:26 -07:00
Kubernetes Prow Robot	68eb29cba0	Merge pull request #79390 from coffeepac/move-es-fd-to-quay move images from gcr.io to quay.io	2019-06-28 12:43:32 -07:00
Kubernetes Prow Robot	85aaf7ea36	Merge pull request #79407 from BenTheElder/super-minor-shellcheck clarify elasticsearch script as bash	2019-06-27 18:53:45 -07:00
Kubernetes Prow Robot	22305274d3	Merge pull request #79410 from BenTheElder/always-restore-etcd-with-spooky-bash fix shellcheck failures in cluster/restore-from-backup.sh	2019-06-27 17:43:46 -07:00
Kubernetes Prow Robot	ed9f340add	Merge pull request #79305 from paivagustavo/clean-up-self-set-node-labels Clean up self-set node labels	2019-06-27 11:37:21 -07:00
Pat Christopher	8c819a2dc1	add defaul latest tag as well	2019-06-26 12:11:00 -07:00
Benjamin Elder	6fe891b737	fix shellcheck failures in cluster/restore-from-backup.sh	2019-06-25 23:45:07 -07:00
Benjamin Elder	1a28fbde4d	clarify elastisearch script as bash	2019-06-25 22:19:45 -07:00
Pat Christopher	a1cda614dc	move images from gcr.io to quay.io	2019-06-25 14:37:02 -07:00
Kubernetes Prow Robot	f4a62ad660	Merge pull request #78868 from chardch/update-plugin-vulkan Update gpu device plugin to better support Vulkan workloads	2019-06-25 09:32:39 -07:00
Koonwah Chen	46ff8e6b57	Add env var(CNI_STORAGE_PATH) for cni storage path.	2019-06-24 11:47:14 -07:00
Kubernetes Prow Robot	8c3b7d7679	Merge pull request #76955 from ialidzhikov/readiness-probe Add probes for Kibana	2019-06-23 16:23:53 -07:00
Kubernetes Prow Robot	eee3e976d8	Merge pull request #78294 from vllry/kp-remove-resource-container Remove deprecated flag --resource-container from kube-proxy	2019-06-22 00:38:12 -07:00
Kubernetes Prow Robot	fb1e9c0473	Merge pull request #79007 from wangzhen127/fix-npd-config Clean up node-problem-detector configuration for GCI	2019-06-21 12:16:27 -07:00
Kubernetes Prow Robot	4e0b76469f	Merge pull request #75638 from ramnar/bugfix_24thMarch Bug fix 72757.Removed deprecated label kubernetes.io/cluster-service	2019-06-20 06:54:49 -07:00
Gustavo Paiva	ca3519c7ad	Clean up selft-set node labels	2019-06-20 00:07:31 -03:00
Kubernetes Prow Robot	ee4776d7ec	Merge pull request #78889 from qingsenLi/k8s-190611 use klog.Info instead of klog.Infof when had no format	2019-06-19 13:02:20 -07:00
Vinay Bannai	e7b7c8bc10	The default-http-backend for handling 404 pages will now point to 404 handler with prometheus integration and provides metrics related to requests per second and the duration of responding to the requests for various percentile groupings. Please check https://github.com/kubernetes/ingress-gce/blob/master/cmd/404-server-with-metrics/README.md for details about the 404-server-with-metrics.	2019-06-17 11:24:47 -07:00
Kubernetes Prow Robot	e91556c62f	Merge pull request #72452 from SuperQ/patch-1 Adjust node_exporter CPU params	2019-06-17 02:40:11 -07:00
Vallery Lancey	dc0f14312e	Removed deprecated --resource-container flag from kube-proxy.	2019-06-16 08:36:42 -07:00
Kubernetes Prow Robot	71a7be41e0	Merge pull request #78705 from yujuhong/gce-win-owners Add more approvers/reviewers to cluster/gce/windows	2019-06-14 13:27:14 -07:00
Kubernetes Prow Robot	a03bc34313	Merge pull request #78672 from msau42/default-resize Enable resize in default gce storageclass	2019-06-14 13:26:48 -07:00
Kubernetes Prow Robot	461a40c3c7	Merge pull request #78606 from oomichi/enable-api-log Add E2E_VERBOSITY for getting API operation logs on conformance job	2019-06-14 09:32:20 -07:00
Kubernetes Prow Robot	7abf2832bf	Merge pull request #78614 from liggitt/remove-beta-e2e-use Move test/e2e use to v1 APIs	2019-06-14 07:58:38 -07:00
Zhen Wang	8f40368fb6	Clean up node-problem-detector configuration for GCI	2019-06-13 21:43:05 -07:00
Javier Pérez Hernández	da05effe4b	get-kube-binaries: use GCE token to fetch artifacts from GCS Change-Id: Ibbb61470d6a6bcd70b33cc326d425e3c382317cf	2019-06-12 17:13:59 -07:00
Sandeep Rajan	5e265e046c	add upstream to CoreDNS ConfigMap	2019-06-11 18:38:46 -04:00
Richard Chen	687291c0bd	Update gpu device plugin to better support Vulkan workloads	2019-06-10 11:15:54 -07:00
Łukasz Osipiuk	94c80b1afc	Update Cluster Autoscaler version to 1.15.0	2019-06-10 20:08:59 +02:00
Kubernetes Prow Robot	32ec6c212e	Merge pull request #78691 from rajansandeep/revertto131 Revert CoreDNS to 1.3.1 in kube-up	2019-06-10 10:55:10 -07:00
Haosdent Huang	7ce6e71891	Fix typos.	2019-06-11 01:52:14 +08:00
qingsenLi	872da8a467	use klog.Info instead of klog.Infof when had no format	2019-06-08 03:04:01 +08:00
Łukasz Osipiuk	df304b0a4d	Update Cluster Autoscaler version to 1.15.0-beta.1	2019-06-07 17:11:03 +02:00
Maciej Borsz	31f18c0a6d	Modify firewall rules names to make them shorter.	2019-06-05 13:18:53 +02:00
Kubernetes Prow Robot	3cd41a5a0b	Merge pull request #78668 from mtaufen/disable-kubeletpodresources Disable KubeletPodResources on Windows	2019-06-04 14:34:03 -07:00
Yu-Ju Hong	b300267a57	Add more approvers/reviewers to cluster/gce/windows	2019-06-04 11:42:55 -07:00
Sandeep Rajan	bfb809f3c6	revert coredns to 1.3.1	2019-06-04 08:53:02 -04:00
Michelle Au	95ec53e40d	Enable resize in default gce storageclass Change-Id: I0eda852543264cc1fdecc113c12dd8e797e6d362	2019-06-03 18:06:51 -07:00
Michael Taufen	a66cb353d4	Disable KubeletPodResources on Windows The feature caused tests to fail when it was enabled. - https://github.com/kubernetes/kubernetes/issues/78628 Work is in progress to fix the feature, but until that work is complete, we will disable it in the GCE scripts.	2019-06-03 15:39:55 -07:00
Kenichi Omichi	bb95ec0f68	Enable API operation log on conformance job To verify all conformance tests call GA APIs only without alpha, beta APIs, this enables API operation log on the conformance job. One concern is this makes e2e.log huge. So to consider it, the original size of e2e.log is 112,909[1] before applying this. [1]: https://gcsweb.k8s.io/gcs/kubernetes-jenkins/pr-logs/pull/70639/pull-kubernetes-conformance-image-test/1116565046130905089/artifacts/	2019-06-03 20:47:15 +00:00
Jordan Liggitt	8229af31d2	Move test/e2e use to v1 APIs	2019-06-03 14:46:08 -04:00
Yu-Ju Hong	4a7be385a1	Update README for GCE/Windows Add instructions to create e2e clusters without building binaries locally. Also update the instructions to build the binaries locally.	2019-06-03 11:17:50 -07:00
Kubernetes Prow Robot	0216ccf80a	Merge pull request #78546 from prameshj/nodelocal-1_15_3 Use node-cache image 1.15.3 in the yaml	2019-06-01 23:40:14 -07:00
Kubernetes Prow Robot	b82d7cabf4	Merge pull request #78552 from mtaufen/use-auth-header Windows startup scripts should use Authorization header for GCS requests	2019-06-01 12:12:41 -07:00
Kubernetes Prow Robot	21c9c7a6ab	Merge pull request #78507 from pjh/gce-firewall-enabled GCE Windows nodes: leave firewall enabled.	2019-06-01 06:22:17 -07:00
Kubernetes Prow Robot	0f78b57fef	Merge pull request #77887 from prameshj/nodelocal-beta Doc changes for nodelocaldns graduating to beta	2019-05-31 20:44:47 -07:00
Michael Taufen	e2116ef572	Windows startup scripts should use Authorization header for GCS requests Requests against private buckets will fail unless the VM has storage scope and the default service account token is provided in the request header. This PR replicates the following Linux changes for Windows: - https://github.com/kubernetes/kubernetes/pull/74142 - https://github.com/kubernetes/kubernetes/pull/75269	2019-05-30 16:55:55 -07:00
Pavithra Ramesh	934f35f9b2	Use nodecache image 1.15.3	2019-05-30 13:29:05 -07:00
Yuwen Ma	ccbb88fc53	Revert "Revert "[Re-Apply][Distroless] Convert the GCE manifests for master containers.""	2019-05-30 08:02:41 -07:00
Kubernetes Prow Robot	6d70e7ff01	Merge pull request #77930 from mm4tt/upload_kubeconfig Upload kubeconfig to master metadata in tests.	2019-05-30 06:30:24 -07:00
Kubernetes Prow Robot	c4a2042177	Merge pull request #78449 from santinoncs/add_annotations_for_prometheus Add annotations for Prometheus service discovery	2019-05-30 02:24:59 -07:00
Kubernetes Prow Robot	59f0f2d2f9	Merge pull request #78417 from prameshj/nodelocal-cm Lock down nodelocaldns configmap.	2019-05-30 00:33:11 -07:00
Kubernetes Prow Robot	88da568586	Merge pull request #78406 from losipiuk/lo/split-args-ca Split CA paramters on manifest template expansions	2019-05-30 00:32:46 -07:00
Peter Hornyack	d47dd75df8	GCE Windows nodes: leave firewall enabled.	2019-05-29 18:08:52 -07:00
Kubernetes Prow Robot	5c314535d1	Merge pull request #78183 from cheftako/masterTaint Ensure kubernetes master is properly tainted in GCE.	2019-05-29 17:24:46 -07:00
Kubernetes Prow Robot	f4945a81e2	Merge pull request #78314 from Random-Liu/set-containerd-oom-score Set containerd oom score adj to -999.	2019-05-29 07:59:16 -07:00
Łukasz Osipiuk	dda5e49cac	Split CA parameters on manifest template expansion Split arguments to be passed to cluster autoscaler binary, so each argument is passed separately. This is preparatory work for migrating CA to disroless base image and passing multiple arguments together does not work if CA is not wrapped around with shell script Change-Id: I26b5a764d2a12079c7f4ed6633ccabf8d623e232	2019-05-29 15:20:34 +02:00
Santiago Nuñez-Cacho	fe53ed8ca9	metrics is default value. Not necessary.	2019-05-28 23:45:34 +02:00
Santiago Nuñez-Cacho	8603800f65	Add annotations for Prometheus service discovery	2019-05-28 18:32:37 +02:00
Pavithra Ramesh	86d12be975	Lock down nodelocaldns configmap.	2019-05-27 23:53:48 -07:00
Beata Skiba	cd6cc65236	Addon resizer version 1.8.5 Rebases addon-resizer to distroless	2019-05-27 15:12:29 +02:00
Kubernetes Prow Robot	01a5ec3d3d	Merge pull request #78315 from dekkagaijin/mip specify additional static auth for components by env var	2019-05-24 15:01:29 -07:00
Jake Sanders	5a9af2e0ef	specify additional static auth for components by env var	2019-05-24 12:16:40 -07:00
Lantao Liu	f6aa22e9e3	Set containerd oom score adj to -999. Signed-off-by: Lantao Liu <lantaol@google.com>	2019-05-24 10:36:54 -07:00
Matt Matejczyk	7e7570d6ff	Upload kubeconfig to master metadata in tests. Till a few days ago, it was possible to ssh into master and access cluster via insecure master port. Now, the master insecure port has been disabled, we're not able to do that anymore. This PR aims to fix that by uploading the kubeconfig to the master metadata during cluster setup in tests.	2019-05-24 13:25:19 +02:00
Yu-Ju Hong	3b58a5d89f	GCE: Disable the Windows defender This is a workaround for https://github.com/kubernetes/kubernetes/issues/75148	2019-05-23 17:51:32 -07:00
Matt Matejczyk	6ced6491c6	Change etcd's --listen-client-urls to 0.0.0.0 in tests This is to allow scraping etcd metrics in scalability tests. Ref. https://github.com/kubernetes/perf-tests/issues/522	2019-05-23 15:11:22 +02:00
Kubernetes Prow Robot	4f33b5f421	Merge pull request #77820 from dims/charrywanganthony-pr-71835-delete-kubelet-security-controls Remove deprecated Kubelet security controls	2019-05-22 13:52:25 -07:00
walter	d574ab00e4	Ensure kubernetes master is properly tainted in GCE. Factored in mtaufens suggestion.	2019-05-21 23:41:56 -07:00
Kubernetes Prow Robot	0203192970	Merge pull request #78044 from dekkagaijin/patch-6 Consolidate logic to ensure kubectl auth	2019-05-17 23:21:37 -07:00
Kubernetes Prow Robot	648cb98a44	Merge pull request #78030 from rajansandeep/bump1.5.0 Bump CoreDNS version to 1.5.0 and update manifest	2019-05-17 21:52:52 -07:00
Kubernetes Prow Robot	72f6954614	Merge pull request #77889 from Random-Liu/support-using-containerd-in-cos Support using docker containerd in COS and Ubuntu on GCE.	2019-05-17 20:26:59 -07:00
Kubernetes Prow Robot	47304fbaee	Merge pull request #78039 from mikedanese/execmaster allow exec auth plugin to be pulled on the master	2019-05-17 18:57:30 -07:00
Jake Sanders	9bc3c2af00	Consolidate logic to ensure kubectl auth	2019-05-17 11:32:09 -07:00
Kubernetes Prow Robot	314264aeaf	Merge pull request #78010 from mikedanese/fixdns cluster/gce: fix line 2414: DNS_MEMORY_LIMIT: unbound variable	2019-05-17 10:12:59 -07:00
Kubernetes Prow Robot	20d6b2ff11	Merge pull request #78008 from mikedanese/fixunset cluster/gce: fix unset variable when insecure port is enabled	2019-05-17 10:12:46 -07:00
Mike Danese	5d7aeca63f	cluster/gce: allow exec auth plugin to be pulled on the master	2019-05-17 08:32:34 -07:00
Sandeep Rajan	0b28419412	bump coredns version to 1.5.0 and update manifest	2019-05-17 10:03:02 -04:00
Kubernetes Prow Robot	d2e5b04dec	Merge pull request #77961 from dekkagaijin/patch-4 remove zmerlynn@ from cluster/gce/OWNERS	2019-05-17 07:00:23 -07:00
Kubernetes Prow Robot	3ba4111abe	Merge pull request #77958 from pjh/pause-image-official Windows GCE nodes: pull infra/pause container image during node setup	2019-05-17 05:38:45 -07:00
Kubernetes Prow Robot	3e8d49d46b	Merge pull request #77950 from yuwenma/bump-metrics-server Bump metrics-server to v0.3.3	2019-05-17 05:38:32 -07:00
Kubernetes Prow Robot	af692da080	Merge pull request #77844 from grayluck/one-more-ip Add 198.51.100.0/24 to non-masq ranges.	2019-05-17 05:38:19 -07:00
Kubernetes Prow Robot	c48c3f400b	Merge pull request #77954 from pjh/cni-release-v0.8.0 Windows GCE nodes: use CNI plugins v0.8.0 release.	2019-05-17 02:04:45 -07:00
Kubernetes Prow Robot	9030187d2c	Merge pull request #77951 from yujuhong/sd-env GCE/Windows: add instructions about stackdriver logging in README	2019-05-17 00:26:56 -07:00
Mike Danese	59f4661b18	cluster/gce: fix line 2414: DNS_MEMORY_LIMIT: unbound variable	2019-05-16 22:58:34 -07:00
Mike Danese	4edec1f3be	cluster/gce: fix unset variable when insecure port is enabled	2019-05-16 19:47:11 -07:00
Lantao Liu	bc1a78d31e	Support using docker containerd in COS and Ubuntu on GCE. Signed-off-by: Lantao Liu <lantaol@google.com>	2019-05-16 13:53:57 -07:00
Peter Hornyack	5c32b4bbb2	Windows GCE nodes: pull infra/pause container image during node setup	2019-05-16 11:45:56 -07:00
chaowang	9ba0d47465	Remove deprecated Kubelet security controls Change-Id: I9f770e6780b60e881092690f6f177d726f474fe3	2019-05-16 13:33:52 -04:00
Kubernetes Prow Robot	f8d2b6b982	Merge pull request #77918 from mborsz/coredns Make dns memory limit configurable	2019-05-16 08:49:08 -07:00
Jake Sanders	db6eff7378	remove zmerlynn@ from cluster/gce/OWNERS Your watch has ended.	2019-05-15 18:47:28 -07:00
yankaiz	14015d9ce1	Add 198.51.100.0/24 to non-masq ranges. Groupped the IP ranges by RFC and type. Change reference for 198.18.0.0/15 from RFC 2544 to RFC 6815.	2019-05-15 16:23:41 -07:00
Yu-Ju Hong	abed7cc0a9	GCE/Windows: add instructions about stackdriver logging in README Setting LOGGING_STACKDRIVER_RESOURCE_TYPES ensures that the both Linux and Windows nodes send logs to the same resources with the same tags.	2019-05-15 11:59:37 -07:00
Yuwen Ma	454460f875	Bump metrics-server to v0.3.3	2019-05-15 11:44:45 -07:00
Peter Hornyack	5d669f2946	Use CNI plugins v0.8.0 release.	2019-05-15 10:59:46 -07:00
Kubernetes Prow Robot	4d3d153210	Merge pull request #77904 from mborsz/revert-76396-reapply-75624 Revert "[Re-Apply][Distroless] Convert the GCE manifests for master containers."	2019-05-15 07:06:41 -07:00
Maciej Borsz	59af63c687	Make coredns memory limit configurable	2019-05-15 13:35:28 +02:00
Kubernetes Prow Robot	47cef03dab	Merge pull request #77748 from yuwenma/etcd-release Update etcd* version to use latest released images.	2019-05-15 00:04:35 -07:00
Maciej Borsz	9da7db76b7	Revert "[Re-Apply][Distroless] Convert the GCE manifests for master containers."	2019-05-15 08:31:19 +02:00
Pavithra Ramesh	e1748407a5	Doc changes for nodelocaldns graduating to beta	2019-05-14 14:01:33 -07:00
Kubernetes Prow Robot	d6c8edd391	Merge pull request #77690 from MrHohn/CPVA-0.7.0 Bump cluster-proportional-vertical-autoscaler to 0.7.1	2019-05-14 07:17:21 -07:00
Kubernetes Prow Robot	2c67fb397d	Merge pull request #77358 from yuwenma/node-termination-handler Updated gce node-termination-handler yaml.	2019-05-13 18:25:09 -07:00
Yuwen Ma	1f0f050fde	Update etcd* version to use latest released images.	2019-05-13 17:28:40 -07:00
Zihong Zheng	66086c32cf	Bump cluster-proportional-vertical-autoscaler to 0.7.1	2019-05-13 13:22:27 -07:00
Marian Lobur	60e5717f4f	Bump image of event-exporter. Image has a new base image that have some security issue fixes.	2019-05-13 16:27:25 +02:00
Kubernetes Prow Robot	222ced7d20	Merge pull request #77642 from mm4tt/chunk_size Revert #77552 now the actual fix #77580 got merged	2019-05-13 05:02:33 -07:00
Kubernetes Prow Robot	5d9d5bca79	Merge pull request #77765 from coffeepac/es-6.7.2 upgrade elasticsearch for vuln handling	2019-05-11 17:20:10 -07:00
Kubernetes Prow Robot	b6c53beed5	Merge pull request #72667 from jeefy/update-dashboard-owners Update OWNERS so it isn't single threaded.	2019-05-11 00:46:12 -07:00
Kubernetes Prow Robot	1c18c3263a	Merge pull request #77386 from SataQiu/fix-shellcheck-20190503 Fix shellcheck failures of cluster/gce/upgrade-aliases.sh	2019-05-10 21:30:24 -07:00
Kubernetes Prow Robot	5669014f52	Merge pull request #76854 from ialidzhikov/update-images Update gem versions	2019-05-10 19:28:24 -07:00
Patrick Christopher	65fcbf4afb	upgrade elasticsearch for vuln handling	2019-05-10 16:57:17 -07:00
Kubernetes Prow Robot	91069c0260	Merge pull request #77689 from MrHohn/CPA-1.6.0 Bump cluster-proportional-autoscaler to 1.6.0	2019-05-10 16:32:49 -07:00
Kubernetes Prow Robot	5184b866d6	Merge pull request #77424 from MrHohn/gce-manifest-owners Add OWNERS file for gce/manifests	2019-05-09 20:13:57 -07:00
Kubernetes Prow Robot	a3f8e95f68	Merge pull request #77607 from dekkagaijin/mip when disabled, don't create the API server's insecure port mapping	2019-05-09 17:52:10 -07:00
Jake Sanders	2576713a40	when disabled, don't create the API server's insecure port mapping	2019-05-09 11:50:59 -07:00
Zihong Zheng	beba9921aa	Bump cluster-proportional-autoscaler to 1.6.0	2019-05-09 11:25:12 -07:00
ialidzhikov	7082ed4330	Add readiness probe for Kibana Signed-off-by: ialidzhikov <i.alidjikov@gmail.com>	2019-05-09 10:23:02 +03:00
Matt Matejczyk	b4a8beb037	Revert #77552 now the #77580 has been merged The https://github.com/kubernetes/kubernetes/pull/77552 was a temporary workaround that is no longer needed now as https://github.com/kubernetes/kubernetes/pull/77580 got in.	2019-05-09 09:03:34 +02:00
Kubernetes Prow Robot	bec5345cc6	Merge pull request #77569 from yuwenma/patch-5 Bump metrics-server version to v0.3.3	2019-05-08 20:13:13 -07:00
Zihong Zheng	e6287c61e6	Add OWNERS file for gce/manifests	2019-05-08 17:39:23 -07:00
Kubernetes Prow Robot	5bd88c85bf	Merge pull request #77568 from yujuhong/catch-exception GCE/Windows: ignore stopping errors for stackdriver	2019-05-08 17:15:38 -07:00
Kubernetes Prow Robot	df117c7625	Merge pull request #73637 from ramnar/branch_bug_fix Removes deprecated label kubernetes.io/cluster-service in yaml files of kubernetes add-ons. Bug fix #72757	2019-05-08 14:31:51 -07:00
Kubernetes Prow Robot	5277e4a11a	Merge pull request #77552 from mm4tt/chunk_size Add --chunk-size=0 to disable pagination when listing nodes.	2019-05-07 23:38:44 -07:00
Kubernetes Prow Robot	0befec7fb6	Merge pull request #77447 from dekkagaijin/mip disable the apiserver's insecure port by default	2019-05-07 22:14:32 -07:00
Kubernetes Prow Robot	b34d7ac0ce	Merge pull request #77458 from grayluck/agent-v2.3.0 Bump ip-masq-agent version to v2.3.0. Enable nomasq for reserved IPs.	2019-05-07 17:52:58 -07:00
Yuwen Ma	7f629b6921	Bump metrics-server version to v0.3.3	2019-05-07 17:44:23 -07:00
Yu-Ju Hong	eadacaf058	GCE/Windows: ignore stopping errors for stackdriver	2019-05-07 17:17:34 -07:00
Kubernetes Prow Robot	dca61deaf9	Merge pull request #77029 from StevenACoffman/patch-1 Update k8s.gcr.io/k8s-dns-node-cache image version	2019-05-07 14:31:02 -07:00
Matt Matejczyk	cb223dab04	Add --chunk-size=0 to disable pagination when listing nodes. Otherwise the default of 500 is used which started breaking large cluster tests, e.g. https://prow.k8s.io/view/gcs/kubernetes-jenkins/logs/ci-kubernetes-e2e-gce-scale-performance/1125672232488538115	2019-05-07 17:34:31 +02:00
yankaiz	1059a71973	Bump ip-masq-agent version to v2.3.0. Enable nomasq for reserved IPs. Added the non-masq ranges to configure-helper.sh so that GCE clusters will have the non-masq IP ranges aligned with GKE clusters.	2019-05-06 22:32:34 -07:00
Kubernetes Prow Robot	e1d40da0df	Merge pull request #76396 from yuwenma/reapply-75624 [Re-Apply][Distroless] Convert the GCE manifests for master containers.	2019-05-06 21:31:39 -07:00
Jake Sanders	e4d521e825	disable the apiserver insecure port by default in configure-helper	2019-05-06 19:26:57 -07:00
Jake Sanders	ff4c372eaa	ensure that kubectl works when the master insecure port is disabled	2019-05-06 19:25:41 -07:00
Kubernetes Prow Robot	6027a38e78	Merge pull request #77282 from MrHohn/addon-manager-9.0.1 Bump addon-manager to v9.0.1	2019-05-06 14:01:52 -07:00
Yuwen Ma	53bace16df	Updated gce node-termination-handler yaml.	2019-05-06 11:29:47 -07:00
Yuwen Ma	b8a8bdb127	[Distroless] Convert the GCE manifests for master containers. * Touched containers: kube-apiserver, kube-scheduler, kube-controller-manager. * Remove the shell dependencies when upstart the containers. * Reformat the command parameters to ["Exec", "Param1", "Param2"]	2019-05-06 08:04:06 -07:00
Kubernetes Prow Robot	5f8d290346	Merge pull request #75675 from mwwolters/addon-manager-kubeconfig Added function to create kubeconfig for addon-manager	2019-05-03 22:17:51 -07:00
Kubernetes Prow Robot	c3ebf67c63	Merge pull request #77414 from yujuhong/fix-sd-logging GCE/Windows: send container logs to the proper resource	2019-05-03 19:50:15 -07:00
Kubernetes Prow Robot	8b0c36d620	Merge pull request #77328 from varunmar/ip-masq-cve-fix Bump the version of the ip-masq-agent addon to pick up CVE fixes	2019-05-03 18:26:28 -07:00
Mark Wolters	1456979e93	Added function to create kubeconfig for addon-manager	2019-05-03 15:12:16 -07:00
Kubernetes Prow Robot	dbad8f360c	Merge pull request #77357 from dekkagaijin/md-proxy-bump Bump metadata-proxy image to v0.1.12	2019-05-03 15:11:52 -07:00
Yu-Ju Hong	9f65407833	GCE/Windows: send container logs to the proper resource This PR fixes a bug where all container logs are sent to the "k8s_node" resource by adding a "match" directive that applies only to container logs.	2019-05-03 11:32:19 -07:00
Kubernetes Prow Robot	eb41c9c5fc	Merge pull request #77369 from immutableT/remove-enc-from-kube-up Remove the option of encrypting secrets in etcd via a locally stored key.	2019-05-03 02:56:29 -07:00
SataQiu	2ba0231670	fix shellcheck failures of cluster/gce/upgrade-aliases.sh	2019-05-03 17:01:15 +08:00
Kubernetes Prow Robot	6a23a6278f	Merge pull request #77378 from yujuhong/kill-sd GCE/Windows: force kill the stackdriver processes when necessary	2019-05-02 20:20:17 -07:00
Yu-Ju Hong	bee570a2f0	GCE/Windows: force kill the stackdriver processes when necessary StackdriverLogging service sometimes cannot be stopped properly. This work around the bug by force killing the processes.	2019-05-02 18:52:31 -07:00
Kubernetes Prow Robot	0b10d1b830	Merge pull request #77140 from dekkagaijin/glbc use static token to authenticate glbc	2019-05-02 16:22:30 -07:00
Kubernetes Prow Robot	83f769c2a3	Merge pull request #77139 from cmluciano/cml/ingressnetv1beta1default ingress: use networking api group for default storage of ingress	2019-05-02 16:22:18 -07:00
immutablet	1ae9cb2f88	Remove encryption via locally stored key.	2019-05-02 15:09:02 -07:00
Jake Sanders	0b6eb2bf89	Bump metadata-proxy image to v0.1.12 Rebases the image on `gcr.io/distroless/static:latest` per kubernetes/enhancements#900 https://github.com/GoogleCloudPlatform/k8s-metadata-proxy/releases/tag/v0.1.12	2019-05-02 11:57:52 -07:00
Kubernetes Prow Robot	d2ce69d9ad	Merge pull request #76762 from serathius/fluentd-gcp-scaler-0-5-2 Pick up security patches for fluentd-gcp-scaler by upgrading to version 0.5.2	2019-05-02 07:00:26 -07:00
Jake Sanders	8bd0b45eae	use static token to authenticate glbc	2019-05-01 22:24:48 -07:00
Kubernetes Prow Robot	206eb91c15	Merge pull request #77035 from chardch/fix-device-plugin Fix a bug in the gpu device plugin	2019-05-01 22:10:17 -07:00
Kubernetes Prow Robot	ef99b770f5	Merge pull request #76525 from yuwenma/patch-4 Rebase etcd-empty-dir-cleanup to debian-base	2019-05-01 18:42:17 -07:00
Varun Marupadi	d4443fef81	Bump the version of the ip-masq-agent addon to pick up CVE fixes This is related to the same CVE fixes in PR #75845 The CVEs are in the dependencies of ip-masq-agent - debian-base bump at: https://github.com/kubernetes-incubator/ip-masq-agent/pull/31 debian-iptables-amd64 bump at: https://github.com/kubernetes-incubator/ip-masq-agent/pull/30	2019-05-01 18:26:27 -07:00
Christopher M. Luciano	4bac85c162	ingress: use networking api group for default storage of ingress Signed-off-by: Christopher M. Luciano <cmluciano@us.ibm.com> The change to registrytest was found by liggitt to mitigate a NPE error. This is necessary since ingress is a cohabitating resource that is not stored in the default version for the networking resource. Signed-off-by: Christopher M. Luciano <cmluciano@us.ibm.com>	2019-05-01 15:14:11 -04:00
Steve Coffman	7f30be79b3	Update k8s-dns-node-cache image version This revised image resolves kubernetes dns#292 by updating the image from `k8s-dns-node-cache:1.15.2` to `k8s-dns-node-cache:1.15.2`	2019-05-01 13:38:42 -04:00
ialidzhikov	becbed87f1	Update gem versions Signed-off-by: ialidzhikov <i.alidjikov@gmail.com>	2019-05-01 20:13:31 +03:00
Zihong Zheng	037d4b3a07	Bump addon-manager to v9.0.1 - Rebase image on debian-base:v1.0.0.	2019-04-30 15:19:08 -07:00
Krzysztof Siedlecki	8dc0be6b9e	creating instance groups in parallel	2019-04-30 18:42:09 +02:00
Kubernetes Prow Robot	31d36d865c	Merge pull request #77172 from ialidzhikov/remove-cluster-service-label Clean up cluster-service label from fluentd-elastic	2019-04-30 09:21:41 -07:00
Kubernetes Prow Robot	62020ebe38	Merge pull request #77224 from qingling128/master Upgrade Stackdriver Logging Agent addon image from 1.6.0 to 1.6.8 to fix segmentation fault bug.	2019-04-29 21:33:35 -07:00
Kubernetes Prow Robot	4ebe11a6cb	Merge pull request #76110 from DirectXMan12/infra/prune-owners Prune directxman12 from metrics/autoscaling OWNERS	2019-04-29 14:35:36 -07:00
Ling Huang	d3fb7115ab	Upgrade Stackdriver Logging Agent addon image from 1.6.0 to 1.6.8.	2019-04-29 15:07:10 -04:00
Kubernetes Prow Robot	855c291cb8	Merge pull request #76858 from SataQiu/fix-cluster-clientbin-20190420 Fix shellcheck failures of cluster/clientbin.sh	2019-04-29 07:46:22 -07:00
Kubernetes Prow Robot	9b437f9520	Merge pull request #76909 from Huang-Wei/fix-iks-kubemark kubemark: fix and enhance kubemark scripts for IKS	2019-04-29 06:30:23 -07:00
ialidzhikov	5fc1bcba3f	Clean up cluster-service label from fluentd-elastic Signed-off-by: ialidzhikov <i.alidjikov@gmail.com>	2019-04-27 22:52:01 +03:00
Wojciech Tyczynski	0d77f62c02	Revert "override ETCD_SERVER with https instead http when mTLS is enabled"	2019-04-27 06:50:20 +02:00
Wei Huang	fbec01dc71	kubemark: fix and enhance kubemark scripts for IKS - fix shell script issues - `bx` is deprecated; rename to `ibmcloud` - remove unnecessay variable replacement in hollow-node_template.yaml - add replacement logic for HOLLOW_KUBELET_TEST_ARGS and HOLLOW_PROXY_TEST_ARGS - don't hardcode KUBEMARK_IMAGE_REGISTRY to brandondr96 - make cluster number and spec configurable - make number and spec of workers configurable - separate NUM_NODES and KUBEMARK_NUM_NODES	2019-04-26 10:15:29 -07:00
SataQiu	aacab2ee75	fix shellcheck failures of cluster/clientbin.sh	2019-04-26 18:43:33 +08:00
Krzysztof Siedlecki	862662f49e	removing quotation marks	2019-04-26 00:25:58 +02:00
Kubernetes Prow Robot	f043e49a93	Merge pull request #77050 from joelsmith/master Fix link for resource metrics pipeline	2019-04-25 04:35:21 -07:00
Joel Smith	f55ebc6129	Fix link for resource metrics pipeline See https://github.com/kubernetes/website/pull/12934	2019-04-24 22:38:48 -06:00
Richard Chen	2c681334c2	Fix a bug in the gpu device plugin where not all devices were registered. Refer to https://github.com/GoogleCloudPlatform/container-engine-accelerators/pull/110	2019-04-24 18:02:00 -07:00
Kubernetes Prow Robot	2c2e7a01bb	Merge pull request #76655 from SataQiu/fix-shell-cluster-20190417 Fix shellcheck failures of cluster/gce/gci/shutdown.sh	2019-04-23 23:50:04 -07:00
Kubernetes Prow Robot	c669b216dd	Merge pull request #76958 from yujuhong/docker-logs GCE/Windows: Configure Docker to rotate container logs	2019-04-23 20:28:12 -07:00
Kubernetes Prow Robot	06bc7e3e00	Merge pull request #76792 from dekkagaijin/insecure-port add option to disable the apiserver's insecure port via env var	2019-04-23 14:02:35 -07:00
Kubernetes Prow Robot	0df8b10557	Merge pull request #76786 from dekkagaijin/master add additional approvers from GKE	2019-04-23 14:02:23 -07:00
Yu-Ju Hong	6e12de0744	GCE/Windows: Configure Docker to rotate container logs	2019-04-23 11:53:16 -07:00
Kubernetes Prow Robot	888b81b638	Merge pull request #76238 from Dieken/30s-ttl-for-coredns change default 5s ttl to 30s for coredns to be same with kube-dns/dnsmasq	2019-04-23 06:20:09 -07:00
Kubernetes Prow Robot	a961c13db5	Merge pull request #76640 from george-angel/master update k8s.gcr.io/k8s-dns-node-cache image version	2019-04-22 14:38:02 -07:00
Kubernetes Prow Robot	aa11d0edef	Merge pull request #76850 from yujuhong/sd-agent GCE/Windows: enable stackdriver logging agent	2019-04-22 13:18:03 -07:00
SataQiu	903c5a53b3	fix shellcheck failures of cluster/gce/gci/shutdown.sh	2019-04-22 11:46:45 +08:00
aaa	c4898d6f56	fix shellcheck failures list-resources.sh update pull request update pull request update pull request	2019-04-21 18:17:44 -04:00
Kubernetes Prow Robot	31903e644b	Merge pull request #76152 from SataQiu/fix-shell-cluster-20190404 Fix some shellcheck failures of cluster/*.sh	2019-04-19 18:59:41 -07:00
Yu-Ju Hong	4cd2625719	GCE/Windows: enable stackdriver logging agent This change bumps the stackdriver logging agent version to v1-9, re-enable it, and change the script/configuration to: * Create /var/log in the startup script, since the fluentd configuration expects the directory to exists * Add support for collecting kubelet/kube-proxy logs	2019-04-19 15:41:48 -07:00
Yu-Ju Hong	05074e9dde	GCE/Windows: add cluster-location to instance metadata This will be used by stackdriver to annotate the logs.	2019-04-19 15:41:48 -07:00
Jake Sanders	d4d5afb9cc	add additional approvers from GKE	2019-04-19 14:38:31 -07:00

... 5 6 7 8 9 ...

8923 Commits