github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
92,976 Commits 1 Branch 31 Tags 1,019 MiB
ff33efc164
Commit Graph

1076 Commits

Author SHA1 Message Date
Jakub Przychodzeń
ce1840d253 Revert "Update cri-tools to v1.18.0" 
This reverts commit 4b3e023659.
 2020-05-19 11:19:39 +02:00
Sascha Grunert
4b3e023659
Update cri-tools to v1.18.0 
Bump cri-tools to the latest version and update test scripts.

Signed-off-by: Sascha Grunert <sgrunert@suse.com>
 2020-05-18 13:38:41 +02:00
Jordan Liggitt
950ed38996 Mark experimental-cluster-signing-duration deprecated, add --cluster-signing-duration 2020-05-15 14:09:58 -04:00
Tim Hockin
d681a04541 Force LICENSES refresh on GCE images 
Some test images have it baked in.
 2020-05-11 14:25:26 -07:00
Yuwen Ma
1aa67fc525
Switch core master base images from debian to distroless 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2020-05-09 06:55:00 -04:00
Kubernetes Prow Robot
7d53ecee37
Merge pull request #90575 from thockin/fix_license_again 
Reorganize vendor licenses again (revert #85220)
 2020-05-08 23:03:51 -07:00
Tim Hockin
325ea6e3c2 Restructure licenses again (revert cd4474a) 
This moves licenses of vendored code from one monolith file into a tree
of individual files for easier reviews.  This fixes both the bash and
bazel paths.
 2020-05-07 21:48:59 -07:00
Walter Fender
339918d206 Add admin account on master for kube-up 
Creates a master local admin account.
If you are on the master you can now run kubectl.
For issue 87481.
 2020-05-06 17:19:58 -07:00
Davanum Srinivas
0d38f21932
Use bionic repo for docker as focal is not yet available 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2020-05-03 16:50:49 -04:00
Kubernetes Prow Robot
e494b0788b
Merge pull request #89543 from bartekzurawski/fix-kube-up-gce-private-restart 
Set ip alias route on kubernetes-master during booting
 2020-04-24 09:38:07 -07:00
Vinayak Goyal
7a5f4c47de Run kube-scheduler and kube-addon-manager as non root 2020-04-16 14:50:04 -07:00
Bartek Żurawski
3e4744c736 Set ip alias route on kubernetes-master during booting 2020-04-15 00:03:05 +02:00
Kubernetes Prow Robot
c0be582ca5
Merge pull request #89269 from Jefftree/network-proxy-beta 
Use v1beta1 for egress selector config
 2020-04-09 18:07:49 -07:00
Kubernetes Prow Robot
c7abf44a19
Merge pull request #88856 from yaseenhamdulay/patch-1 
Create etcd user in cloud-init master.yaml rather than in configure-h…
 2020-03-27 20:41:53 -07:00
Samuel Davidson
c70cd1e82f Changed readonly to true and type to File for authn/authz config. 2020-03-25 17:45:27 -07:00
Yaseen Hamdulay
58f78a53ee Add ssh_redirect_user 2020-03-24 11:30:48 +00:00
Kubernetes Prow Robot
de877ec26e
Merge pull request #89327 from aojea/conntrack 
cluster: ipvs conntrack module vs kernel version
 2020-03-22 13:28:44 -07:00
Antonio Ojea
33810a99d9 cluster: ipvs conntrack module vs kernel version 
We should use 'nf_conntrack' instead of 'nf_conntrack_ipv4'
for linux kernel >= 4.19
 2020-03-21 11:23:28 +01:00
Jefftree
936f7665cf network proxy alpha -> beta 2020-03-19 11:49:47 -07:00
yaseenhamdulay
5de3c64ad0 Create etcd user in cloud-init master.yaml rather than in configure-helper.sh 
An etcd unix user is currently created in configure-helper.sh if it does not exist
on the master.

cloud-init is the only supported mechanism to add users on COS VMs. If an attempt
is made to add a key using OS Login or the instance metadata mechanism the
google_accounts_daemon will race with useradd and potentially attempt to use
the same UID. This will lock out any attempt to SSH into the VM. We therefore
migrate to using cloud-init to create this user and prevent this issue from occurring.
 2020-03-19 11:05:42 +00:00
Kubernetes Prow Robot
f899ad704a
Merge pull request #89069 from enj/enj/i/drop_password_file 
Remove support for basic authentication
 2020-03-18 22:24:20 -07:00
Kubernetes Prow Robot
8055c92e26
Merge pull request #88125 from mwwolters/flex2healthz 
Switch flexvolume_node_setup.sh from kubelet RO port to healthz port
 2020-03-17 16:20:07 -07:00
Joe Betz
23c358d883
Fix unbound variable error in gce/configure.sh 
Looks like UBUNTU_INSTALL_RUNC_VERSION should be optional here.
 2020-03-12 16:41:25 -07:00
Monis Khan
df292749c9
Remove support for basic authentication 
This change removes support for basic authn in v1.19 via the
--basic-auth-file flag.  This functionality was deprecated in v1.16
in response to ATR-K8S-002: Non-constant time password comparison.

Similar functionality is available via the --token-auth-file flag
for development purposes.

Signed-off-by: Monis Khan <mok@vmware.com>
 2020-03-11 20:55:47 -04:00
Jefftree
6fd748e2c5 exit if KONNECTIVITY_SERVICE_PROXY_PROTOCOL_MODE is set incorrectly 2020-03-05 16:59:55 -08:00
Jefftree
06abedb063 Allow both GRPC and http-connect mode to be toggled 2020-03-05 16:16:59 -08:00
Jefftree
2a98cb7f8b Use GRPC mode for network proxy 2020-03-02 15:54:52 -08:00
Jefftree
0989770135 Update network proxy to v0.0.7 2020-03-02 10:09:00 -08:00
Jefftree
4c54241c3d Support token authentication for network proxy 2020-03-01 17:24:48 -08:00
Kubernetes Prow Robot
831dae75bf
Merge pull request #88185 from vinayakankugoyal/appendandreplace 
append_or_replace_prefixed_line in /cluster/gce/gci/configure-helper.…
 2020-02-26 13:33:19 -08:00
Vinayak Goyal
388ebfe7d0 append_or_replace_prefixed_line in /cluster/gce/gci/configure-helper.sh fails for prefixes that contain quotes and = sign. 2020-02-24 17:35:36 -08:00
Kubernetes Prow Robot
6461e6f4fb
Merge pull request #87179 from Jefftree/netproxy-uds 
UDS + GRPC Support for Network Proxy
 2020-02-20 21:20:32 -08:00
Jefftree
725d2b6a8f Network Proxy: GRPC + HTTP Connect with UDS 2020-02-20 10:19:37 -08:00
Benjamin Elder
4454ce6f37 fix shellcheck failures in health-monitor.sh 2020-02-14 16:12:18 -08:00
Mark Wolters
ba74c1cfb4 Switch flexvolume_node_setup.sh from kubelet RO port to healthz port 2020-02-13 09:58:51 -08:00
Kubernetes Prow Robot
78a02a223d
Merge pull request #88010 from dims/support-for-adding-test-handler-for-containerd 
Support for adding test-handler for containerd
 2020-02-11 23:15:58 -08:00
Kubernetes Prow Robot
04cfa4981a
Merge pull request #87463 from mwwolters/healthmon2healthz 
Migrate health monitor from read only port to healthz port
 2020-02-11 17:06:08 -08:00
Davanum Srinivas
8f764b113e
Support for adding test-handler for containerd 2020-02-10 20:43:40 -05:00
Davanum Srinivas
da024f9a57
Ability to override versions of containerd/runc 2020-02-08 20:20:15 -05:00
Davanum Srinivas
acd286d95d
Install containerd package depending on CONTAINER_RUNTIME 2020-02-08 17:53:37 -05:00
Davanum Srinivas
c4ef6a94b3
Add gid to config.toml only when docker group is present 
If we don't install docker and install just containerd apt packages,
there is no docker group. In this scenario, we should not add the gid to
config.toml
 2020-02-08 17:53:37 -05:00
Davanum Srinivas
2c93aa6ec3
Ensure kubectl is available in PATH by explicitly exporting the script 2020-02-07 09:05:07 -05:00
Davanum Srinivas
f20e17e9dd
python snippets should work on both old and new python versions 2020-02-05 11:22:56 -05:00
Davanum Srinivas
dc3f31569e
Ensure specified container runtimes are present 2020-02-03 13:40:57 -05:00
Stephen Augustus
1174e6698e cni: Update CNI version to v0.8.5 
Signed-off-by: Stephen Augustus <saugustus@vmware.com>
 2020-01-29 04:41:29 -05:00
Stephen Augustus
96f2588b61 cni: Update CNI download URLs to use new GCS bucket (k8s-artifacts-cni) 
Signed-off-by: Stephen Augustus <saugustus@vmware.com>
 2020-01-29 02:32:22 -05:00
Kubernetes Prow Robot
324b5921c1
Merge pull request #87529 from cheftako/master 
Added relevent approvers and reviewers for gci.
 2020-01-25 11:49:02 -08:00
Kubernetes Prow Robot
15f96a807a
Merge pull request #86305 from saschagrunert/cri-tools 
Update cri-tools to v1.17.0
 2020-01-24 12:18:32 -08:00
Walter Fender
b2f3236771 Added relevent approvers and reviewers for gci. 
Adding new approver and reviewers for the gci scripts.
 2020-01-24 09:29:35 -08:00
Kubernetes Prow Robot
90da466221
Merge pull request #87504 from cheftako/master 
Fix issue with GCE scripts assuming Python2.
 2020-01-24 03:03:19 -08:00
Walter Fender
1dd53fd3ba Fix issue with GCE scripts assuming Python2. 
For bug #87482.
Newer OSs are now defaulting to Python3.
This breaks the kube-up scripts for GCE.
Adding code to detect this and explicitly use Python2.
 2020-01-23 15:05:04 -08:00
Koonwah Chen
cfd61e801b Add env var(CNI_TAR_PREFIX) for cni install. 
cni release has changed the prefix, add a var to make this configurable.
 2020-01-22 15:14:31 -08:00
Mark Wolters
aee028dab8 Migrate health monitor from read only port to healthz port 2020-01-22 10:52:08 -08:00
Kubernetes Prow Robot
34e090187c
Merge pull request #87032 from awly/preload-gke-exec-plugin 
Allow a preloaded gke-exec-auth-plugin
 2020-01-16 13:14:52 -08:00
Janek Łukaszewicz
a9e5fd6623 Revert "Revert "Add an option to specify kubelet flags for heapster node."" 
This reverts commit 00ea8c4f9e.
 2020-01-14 12:53:25 +01:00
Sascha Grunert
7e5e7c141c
Update cri-tools to v1.17.0 
Update the crictl binaries to the latest release

Signed-off-by: Sascha Grunert <sgrunert@suse.com>
 2020-01-14 08:36:20 +01:00
Andrew Lytvynov
71966adfc3 Allow a preloaded gke-exec-auth-plugin 2020-01-09 10:37:43 -08:00
Kubernetes Prow Robot
127c47caf4
Merge pull request #85512 from serathius/remove-cluster-monitoring 
Remove cluster-monitoring
 2019-12-17 21:05:57 -08:00
Kubernetes Prow Robot
4a62b3ac6d
Merge pull request #86329 from mml/core_pattern 
Set core_pattern to an absolute path.
 2019-12-17 19:48:11 -08:00
Matt Liggett
ec24d3c7e8 Set core_pattern to an absolute path. 
Change-Id: I71e848783c05dc75b2232e05dd2ed3aa9a983e23
 2019-12-11 15:05:48 -08:00
Nikolaos Moraitis
00ea8c4f9e
Revert "Add an option to specify kubelet flags for heapster node." 2019-12-11 11:19:13 +01:00
Marek Siarkowicz
31fb04fa98 Remove cluster-monitoring 
Heapster is deprecated and no longer supported
 2019-12-09 11:25:20 +01:00
Janek Łukaszewicz
39cb8222c7 Add an option to specify kubelet flags for heapster node. 
Useful in scalability tests, where we don't want test pods (e.g. Kubemark hollow
nodes) to be scheduled on heapster node.
 2019-12-06 12:44:26 +01:00
Kubernetes Prow Robot
95a3cd54cf
Merge pull request #82720 from hwdef/add-err-handling-in-gce-gci 
add err handling in gce/gci
 2019-12-02 22:56:57 -08:00
hwdef
e581be1ec7 add err handling in gce/gci 2019-12-03 09:34:41 +08:00
Kubernetes Prow Robot
c213196f0a
Merge pull request #85014 from dekkagaijin/master 
let standalone npd use kubelet credentials
 2019-11-14 17:50:30 -08:00
Jordan Liggitt
cd4474ae4f Revert "76093 restructure LICENSES file generation" 
This reverts commit d39ac98cc5.
 2019-11-13 10:24:32 -05:00
Ji Shan Xing
d39ac98cc5 76093 restructure LICENSES file generation 2019-11-12 20:38:57 -05:00
Xing Yang
3324722e07 VolumeSnapshot CRD v1beta1: Enable VolumeSnapshotDataSource feature gate and update e2e tests 2019-11-11 02:34:24 +00:00
Jake Sanders
42a06f58c6 let standalone npd use kubelet credentials 
Signed-off-by: Jake Sanders <jsand@google.com>
 2019-11-08 14:50:41 -08:00
Kubernetes Prow Robot
c7869131dd
Merge pull request #84744 from immutableT/isolate-etcd-config 
Isolate configuration of etcd related parameters into a separate function.
 2019-11-05 15:31:29 -08:00
Kubernetes Prow Robot
8ff16f35f8
Merge pull request #84007 from wojtek-t/reduce_node_update_frequency 
Reduce node update frequency
 2019-11-04 15:28:43 -08:00
immutablet
f7bd5455fe Isolate configuration of etcd related parameters into a separate function. 2019-11-04 13:55:31 -08:00
Kubernetes Prow Robot
7b6369c803
Merge pull request #84249 from odinuge/bump-shellcheck 
Bump shellcheck to v0.7.0
 2019-11-04 06:19:40 -08:00
wojtekt
12c8b4a9df Bumpd NodeProblemDetector 2019-11-03 08:50:22 +01:00
immutablet
576edaf072 Refactor tests for configure-helper.sh by moving environment config to testdata. 2019-11-01 13:57:54 -07:00
Kubernetes Prow Robot
a8e819746d
Merge pull request #83442 from serathius/remove-prometheus-addon 
Remove prometheus addon
 2019-10-29 01:34:43 -07:00
Odin Ugedal
cce1f32ea5
Fix shellcheck failures SC2034 2019-10-23 22:47:46 +02:00
Kubernetes Prow Robot
13de6868fe
Merge pull request #81075 from mborsz/mtls 
Add mtls support to add/remove-replica
 2019-10-22 23:18:13 -07:00
Maciej Borsz
7ee8a02eee Add mtls support to add/remove-replica 2019-10-22 14:59:16 +02:00
Kubernetes Prow Robot
99d40d3d44
Merge pull request #80137 from ialidzhikov/enh/better-naming 
Rename dashboard-controller.yaml to dashboard-deployment.yaml
 2019-10-16 05:51:41 -07:00
ialidzhikov
b3dcbbf98c Rename dashboard-controller.yaml to dashboard-deployment.yaml 
Signed-off-by: ialidzhikov <i.alidjikov@gmail.com>
 2019-10-15 13:55:06 +03:00
immutablet
b6b55519ca Isolate the logic related to the configuration of kube-apiserver into a separate script. 2019-10-11 11:34:09 -07:00
Kubernetes Prow Robot
00096d8fed
Merge pull request #83366 from mwwolters/admission-control-flag 
Switch from admission-control flag to enable-admission-plugins
 2019-10-05 04:35:11 -07:00
Kubernetes Prow Robot
52a3cb06ef
Merge pull request #82845 from prameshj/custom-nodelocal 
Update nodelocaldns yaml to use image with custom Stubdomains support
 2019-10-04 16:31:13 -07:00
Marek Siarkowicz
887e84e330 Remove Prometheus addon and it's tests 
Prometheus addon was developed for exterimental and test purpose only.
As readme states it should not be used by anyone.
 2019-10-03 14:15:58 +02:00
Jacek Kaniuk
46e7a14227 Ability to set up additional, bigger nodes during tests 2019-10-03 12:20:06 +02:00
Maciej Borsz
2d9a9f7713
Revert "Revert "Revert "[Re-Apply][Distroless] Convert the GCE manifests for master containers.""" 2019-10-02 09:22:02 +02:00
Mark Wolters
f7bf17bc2f Switch from admission-control flag to enable-admission-plugins 2019-10-01 09:21:33 -07:00
Kubernetes Prow Robot
6610260cc4
Merge pull request #78466 from yuwenma/revert-77904-revert-76396-reapply-75624 
Revert "Revert "[Re-Apply][Distroless] Convert the GCE manifests for master containers.""
 2019-10-01 01:21:33 -07:00
Kubernetes Prow Robot
b215562a70
Merge pull request #83205 from zhenglol/zhengch_event_exporter_to_sd 
Use $STACKDRIVER_ENDPOINT to set exporter sd endpoint
 2019-09-30 13:09:00 -07:00
Kubernetes Prow Robot
b281315450
Merge pull request #82856 from Random-Liu/update-crictl 
Update crictl to v1.16
 2019-09-26 14:40:23 -07:00
Zheng Chen
3972e5c3e7
using STACKDRIVER_ENDPOINT to set exporter sd endpoint according to cluster env 2019-09-26 14:00:59 -04:00
Lantao Liu
dfd5957713 Update crictl to v1.16.1. 2019-09-25 16:06:39 -07:00
Kubernetes Prow Robot
7266b1b487
Merge pull request #82801 from krzyzacy/auth-curl 
auth/cloud-platform is a superset of devstorage.
 2019-09-23 17:31:53 -07:00
Sen Lu
e3fdebbe62 auth/cloud-platform is a superset of devstorage. 
Also fix the curl in get-kube.sh
 2019-09-23 14:14:03 -07:00
Kubernetes Prow Robot
5cdf18e348
Merge pull request #82624 from qingling128/master 
Upgrade stackdriver-logging-agent image to 1.6.17 to fix CVEs.
 2019-09-18 17:30:59 -07:00
Kubernetes Prow Robot
1bebaea417
Merge pull request #81061 from k-toyoda-pi/fix_shellcheck_flexvolume_node_setup 
Fix shellcheck failure in gce/gci/flexvolume_node_setup.sh
 2019-09-16 14:43:54 -07:00
Pavithra Ramesh
7a7f856e22 Support running custom nodelocaldns yaml in gce. 2019-09-12 12:53:53 -07:00
Ling Huang
dc9db4b413 Upgrade stackdriver-logging-agent image to 1.6.17 to fix CVEs. 
Change-Id: Ic37a8d3663d616e7d196353efd9a0164da724728
 2019-09-12 04:02:08 -04:00