github
/
k3s
mirror of https://github.com/k3s-io/k3s
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
17,239 Commits
32 Branches
881 Tags
633 MiB
Commit Graph

1174 Commits (61a66a95a6dccec0df2e5dc093c1560232cbd66f)

Author SHA1 Message Date
Eric Paris cde68d294b Do not create subject alt dns names for kubelet self signed certs 
PR #10643 Started adding the dns names for the kubernetes master to self
sign certs which were created. The kubelet uses this same code, and thus
the kubelet cert started saying it was valid for these name as well.
While hardless, the kubelet cert shouldn't claim to be these things. So
make the caller explicitly list both their ip and dns subject alt names.
 2015-07-04 23:01:01 -04:00
Eric Paris 7a29af4d2c Add Subject Alt Names to self signed apiserver certs 
A cert from GCE shows:
- IP Address:23.236.49.122
- IP Address:10.0.0.1
- DNS:kubernetes,
- DNS:kubernetes.default
- DNS:kubernetes.default.svc
- DNS:kubernetes.default.svc.cluster.local
- DNS:e2e-test-zml-master

A similarly configured self signed cert shows:
- IP Address:23.236.49.122
- IP Address:10.0.0.1
- DNS:kubernetes
- DNS:kubernetes.default
- DNS:kubernetes.default.svc

So we are missing the fqdn kubernetes.default.svc.cluster.local. The
apiserver does not even know the fqdn! it's defined entirely by the
kubelet! We also do not have the cluster name certificate. This may be
--cluster-name= argument to the apiserver but will take a bit more
research.
 2015-07-01 17:05:17 -04:00
Clayton Coleman d8bb4552de Cloud provider should return an error 
Not fatal - makes cloud provider useful in methods that
can return error.
 2015-07-01 14:41:49 -04:00
jiangyaoguo 79ed954ec2 replace Reflector with client.cache.Reflector in kube-proxy 2015-06-29 11:21:50 +08:00
Aaron Levy e991a1543f Use blank default for old-etcd-prefix 2015-06-26 18:19:40 -07:00
Clayton Coleman 93b14b9ede Search the parent FS for the proper binaries 2015-06-26 14:48:22 -04:00
Robert Bailey 91589143a3 Merge pull request #10370 from mikedanese/no-more-machines 
remove --machines and related deprecated flags from code and docs
 2015-06-26 10:54:01 -07:00
Robert Bailey e5f44535a9 Merge pull request #10362 from bprashanth/latency_integration 
Scrape latency stats from integration tests
 2015-06-26 10:52:01 -07:00
Robert Bailey 0048eae8eb Merge pull request #9965 from stevekuznetsov/skuznets/allow-https 
Allowing for HTTPS Probes
 2015-06-26 10:43:37 -07:00
Mike Danese 1e130e0794 remove --machines from code and docs 2015-06-25 18:29:11 -07:00
Steve Kuznetsov 3008ff6150 Changed HTTPGetAction to allow user-defined schemes 2015-06-25 16:59:12 -04:00
Prashanth Balasubramanian cca4b720e5 Scrape latency stats from integration tests 2015-06-25 12:01:31 -07:00
Mike Danese fbd03e5b90 fix variable shadowing bug where provided RootCA would always be a nil byte slice 2015-06-25 11:40:48 -07:00
Maxwell Forbes 655179dcfb Merge pull request #10264 from mikedanese/ca-token 
add ca cert to token controller and all service accounts
 2015-06-25 09:56:35 -07:00
Mike Danese 56bde3342a add ca to token controller and all service accounts 2015-06-24 15:10:20 -07:00
Dawn Chen 6ddfa512de Revert "Revert "Fix the race between configuring cbr0 and restarting static pods"" 
This reverts commit fd0a95dd12.
 2015-06-24 11:10:10 -07:00
Piotr Szczesniak fd0a95dd12 Revert "Fix the race between configuring cbr0 and restarting static pods" 2015-06-24 09:56:49 +02:00
Brendan Burns 192ffdfb25 Fix the container bridge so that it can create cbr0 
Fix the kubelet so that it tries to sync status, even if Docker is down
 2015-06-22 23:18:01 -07:00
Prashanth Balasubramanian 9ed9bd1c4f Add a generation number to the object meta of all objects, and status of rcs 2015-06-19 14:32:08 -07:00
Clayton Coleman 8217495ee3 Kubelet event logging is classified as V(3) 
Important, but not strictly required for normal operation V(2)
 2015-06-18 19:21:14 -04:00
Satnam Singh 59876df736 Merge pull request #9927 from liggitt/fix_ecdsa_key 
Re-enable ECDSA private server key use
 2015-06-18 14:30:27 -07:00
Justin Santa Barbara df87470ecf Allow cloud providers to return a node identifier different from the hostname 2015-06-18 12:40:05 -07:00
Justin Santa Barbara dee8d4b90b For kubelet, differentiate between the nodeName and the hostname 
This will allow us to use a nodeName that is not the hostname,
for example on clouds where the hostname is not the natural identifier
for a node.
 2015-06-18 12:40:01 -07:00
Satnam Singh e4f5529a2d Revert "Allow nodename to be != hostname, use AWS instance ID on AWS" 2015-06-18 11:27:55 -07:00
Justin Santa Barbara efaead81dc Allow cloud providers to return a node identifier different from the hostname 2015-06-17 00:40:43 -04:00
Justin Santa Barbara c28cdfbd43 For kubelet, differentiate between the nodeName and the hostname 
This will allow us to use a nodeName that is not the hostname,
for example on clouds where the hostname is not the natural identifier
for a node.
 2015-06-17 00:40:43 -04:00
Jordan Liggitt 64d61185eb Re-enable ECDSA private server key use 2015-06-16 23:03:29 -04:00
Saad Ali 30180dbcc2 Merge pull request #9882 from mikedanese/fix-regexp 
fix longRunningRequestRE to something that doesn't match pretty much all requests
 2015-06-16 18:55:40 -07:00
Mike Danese 677855f1a9 fix longRunningRequestRE to something that doesn'tt push -f orig match pretty much all requests. 2015-06-16 13:48:10 -07:00
Chao Xu 34e443a1aa update the api conversion tool to v1 2015-06-15 17:30:05 -07:00
Fabio Yeon 18a3932585 Merge pull request #9265 from mesosphere/upstream-k8sm-cm-and-km 
Upstream Kubernetes Mesos controller manager and km binary
 2015-06-15 09:28:12 -07:00
Mike Danese 5896ac9e07 skip GetHostIP call on standalone mode kubelet to fix spammy log statement 2015-06-12 11:37:53 -07:00
James DeFelice 022ff5196d fix broken file refs 2015-06-12 14:03:01 +00:00
James DeFelice 1820114a2d Upstream controller manager and km binary 
Closes mesosphere/kubernetes-mesos#310
Depends on GoogleCloudPlatform/kubernetes#8882

- fix https://github.com/mesosphere/kubernetes-mesos/issues/336
- Fix comment typo
- Fixes https://github.com/GoogleCloudPlatform/kubernetes/pull/9265#commitcomment-11559038
- Add warning to k8s modules to also update mesos copies
- Fixes https://github.com/GoogleCloudPlatform/kubernetes/pull/9265#commitcomment-11558864
- Fixes https://github.com/GoogleCloudPlatform/kubernetes/pull/9265#commitcomment-11558855
- Add comments and TODO that hypercube and controllermanager need refactoring
 2015-06-12 14:03:00 +00:00
Abhi Shah 52db576617 Merge pull request #8882 from mesosphere/upstream_k8sm 
Upstream Kubernetes-Mesos framework
 2015-06-12 06:36:20 -07:00
Abhi Shah 0f4f2eb05a Merge pull request #9617 from davidopp/master 
Add a warning that setting --port flag to Kubelet breaks "kubectl log…
 2015-06-11 10:18:41 -07:00
David Oppenheimer b83a32955b Add a warning that setting --port flag to Kubelet breaks "kubectl logs." Temporary 
fix for #9325.
 2015-06-10 17:24:49 -07:00
James DeFelice 7d66559725 added comments at the top of native k8s files which, if changed, might affect some of the k8sm code 2015-06-10 20:31:22 +00:00
Abhi Shah 0fbd4900d1 Merge pull request #9423 from mesosphere/create-api-server-client 
refactor createAPIServerClient for easier integration with 3rd party …
 2015-06-10 12:54:17 -07:00
James DeFelice f54eeeb8d6 refactor createAPIServerClient for easier integration with 3rd party kubelet extensions, e.g. kubernetes-mesos 2015-06-10 02:13:58 +00:00
krousey f62a2a1bb6 Merge pull request #9451 from cjcullen/mig 
Use Node IP Address instead of Node.Name in minion.ResourceLocation.
 2015-06-09 15:52:12 -07:00
CJ Cullen 2d85e4a094 Use Node IP Address instead of Node.Name in minion.ResourceLocation. 
Refactor GetNodeHostIP into pkg/util/node (instead of pkg/util to break import cycle).

Include internalIP in gce NodeAddresses.
 2015-06-08 16:58:00 -07:00
Justin Santa Barbara 6f3879e3bb Actually pass down ServiceNodePortRange so it is used 
Also fix default range to match what we've documented (off-by-one)

Fix #9318
 2015-06-08 18:03:42 -04:00
krousey 5aa0219ada Merge pull request #9292 from cjcullen/test_pull_8946 
Add an ssh tunnel option to the /proxy endpoint
 2015-06-08 14:30:12 -07:00
krousey a7edbedcb9 Merge pull request #9262 from bprashanth/minion_proxy 
Apiserver can proxy to nodes
 2015-06-08 10:17:06 -07:00
CJ Cullen cb317604ab Some refactoring. Only selectively use ssh proxy. 
Add NetworkName to gce.Config.
Add locking to uses of master.tunnels.
 2015-06-05 14:55:16 -07:00
Brendan Burns 5115fd5703 Add key generation. 2015-06-05 14:55:15 -07:00
Brendan Burns 30a89968a4 Initial proxy tunnelling. 2015-06-05 14:54:20 -07:00
Prashanth Balasubramanian 50eb9ad598 Use https only for the kubelet port 2015-06-05 14:06:38 -07:00
Quinton Hoole cd3eea43db Merge pull request #9315 from jdef/refactor_kubelet_tls_init 
refactor tls init for reuse
 2015-06-05 12:57:14 -07:00
Quinton Hoole 8b01ecb53a Merge pull request #9024 from markturansky/recyc_controllers 
PersistentVolumeRecycler controller
 2015-06-05 11:39:08 -07:00
James DeFelice b3c8f71aca refactor tls init for reuse 2015-06-05 11:45:40 +00:00
markturansky deec5f26cd Recycler controller 2015-06-04 15:47:36 -04:00
Chao Xu ef61b031f5 make v1 enabled by default 2015-06-04 11:37:44 -07:00
Brian Grant a5959d7b6f Merge pull request #8155 from lavalamp/no-ro 
Remove ro service
 2015-06-03 21:15:28 -07:00
Brian Grant f72fa67924 Revert "Use Node IP Address instead of Node.Name in minion.ResourceLocation." 2015-06-03 18:19:22 -07:00
Daniel Smith 1690617ee6 remove ro service 2015-06-03 16:45:54 -07:00
Brian Grant 895ad68422 Merge pull request #9145 from caesarxuchao/hack/test-integration 
enable v1 in hack/test-integration.go
 2015-06-03 11:19:41 -07:00
Chao Xu d52cef11a4 add v1 tests to hack/test-go; let default value of Container.SecurityContext to be nil 2015-06-03 09:50:41 -07:00
Brian Grant 3d4d38d378 Merge pull request #9177 from feihujiang/eventToLog 
get Events to be logged
 2015-06-03 09:32:42 -07:00
Prashanth Balasubramanian 0162529ea5 Default minRequestTimeout to 1800s 2015-06-03 08:47:45 -07:00
Prashanth Balasubramanian 448867073d Pipe minRequestTimeout as an arg to the apiserver 2015-06-03 08:44:14 -07:00
feihujiang ebc8eab590 get Events to be logged 2015-06-03 15:05:07 +08:00
Brian Grant d4acb1d676 Merge pull request #9155 from cjcullen/mig 
Use Node IP Address instead of Node.Name in minion.ResourceLocation.
 2015-06-02 22:51:20 -07:00
CJ Cullen 4e5d0da839 Use Node IP Address instead of Node.Name in minion.ResourceLocation. 
Refactor GetNodeHostIP into pkg/util/node (instead of pkg/util to break import cycle).

Include internalIP in gce NodeAddresses. Remove NodeLegacyHostIP
 2015-06-02 20:01:49 -07:00
Brian Grant e77ded1e84 Merge pull request #8649 from cjcullen/servicefix 
Add an advertise-address flag
 2015-06-02 19:54:28 -07:00
CJ Cullen 934c553c04 Clarify description/usage of --advertise-address, Master.PublicAddress 2015-06-02 15:23:32 -07:00
Chao Xu 89c8949e78 add v1 to hack/test-integration.sh 2015-06-02 14:55:45 -07:00
Chao Xu 48d3d604af fix 2015-06-02 14:55:45 -07:00
Chao Xu ff6947625d add v1 tests to hack/test-go; let default value of Container.SecurityContext to be nil 2015-06-02 14:55:45 -07:00
Filip Grzadkowski 98115facfd Revert "Gracefully delete pods from the Kubelet" 2015-06-02 23:40:05 +02:00
CJ Cullen 085a48a70e Add an advertise-address flag. This allows the address that the apiserver binds 
to (possibly 0.0.0.0) to be different than the address on which members of the cluster
can reach the apiserver (possibly not a local interface).
 2015-06-02 14:33:15 -07:00
Brian Grant 0cb0a56895 Merge pull request #8417 from jdef/proxy_port_allocator 
proxy port range allocation
 2015-06-02 14:17:41 -07:00
Brian Grant 8a9700b2ba Merge pull request #8864 from ncdc/pluggable-docker-exec 
Add support for pluggable Docker exec handlers
 2015-06-02 14:13:06 -07:00
James DeFelice 4abcf7449c implementation of proxy port allocation 2015-06-02 12:28:25 +00:00
Clayton Coleman 984692d205 Verify in hack/test-cmd 2015-06-01 19:24:01 -04:00
Clayton Coleman 3368e12a6c Ensure TTL is not cleared in possible edge cases 2015-06-01 17:26:47 -04:00
Andy Goldstein 2a0d7ebb11 Add support for pluggable Docker exec handlers 
Add support for pluggable Docker exec handlers. The default handler is
now Docker's native exec API call. The previous default, nsenter, can be
selected by passing --docker-exec-handler=nsenter when starting the
kubelet.
 2015-06-01 16:59:59 -04:00
Eric Tune 8b498aee4a Merge pull request #8495 from gmarek/fix_ratelimit 
Move evicting pods to separate thread to allow for correct ratelimitting.
 2015-06-01 10:29:37 -07:00
Eric Tune 3db1f69eea Merge pull request #8764 from eparis/sd_notify 
API server explicitly notify systemd of successful startup
 2015-06-01 10:28:49 -07:00
gmarek 1490543d54 Move evicting pods to separate thread to allow for correct ratelimitting. 2015-06-01 11:39:20 +02:00
Kris f4e2c738f6 Delete deprecated API versions 
pkg/service:

There were a couple of references here just as a reminder to change the
behavior of findPort. As of v1beta3, TargetPort was always defaulted, so
we could remove findDefaultPort and related tests.

pkg/apiserver:

The tests were using versioned API codecs for some of their encoding
tests. Necessary API types had to be written and registered with the
fake versioned codecs.

pkg/kubectl:

Some tests were converted to current versions where it made sense.
 2015-05-29 17:17:35 -07:00
Rohit Jnagal 0579c19a55 Merge pull request #9015 from jlowdermilk/integration-flake 
Increase timeout on biggest contributor to hack/test-integration flakes
 2015-05-29 13:14:20 -07:00
Jeff Lowdermilk d5b24fdb69 Increase timeout on biggest contributor to hack/test-integration flakes 2015-05-29 11:46:43 -07:00
Rohit Jnagal 50b9d6284a Merge pull request #8681 from vmarmol/system-container 
Create a system container
 2015-05-29 09:41:06 -07:00
Tim Hockin 3005471100 Add new apiserver flags for clusterIP (nee portal) 
Leave old flags but marked as deprecated
 2015-05-28 16:10:44 -07:00
Tim Hockin 4318ca5a8b Rename 'portal IP' to 'cluster IP' most everywhere 
This covers obvious transforms, but not --portal_net, $PORTAL_NET and
similar.
 2015-05-28 16:10:44 -07:00
Chao Xu 9c1153322e update PodSpec.Host to PodSpec.NodeName in /pkg/api/types.go and /pkg/api/v1beta3/types.go 2015-05-28 14:10:06 -07:00
Eric Paris 9d304774d4 report glog error if unable to tell systemd things worked 2015-05-28 16:01:27 -04:00
Eric Paris 28ac1b3395 API server explicitly notify systemd of successful startup 
Use the systemd $NOTIFY_SOCKET convention for kube-apiserver
startup. This allows it to be part of dependency trees and for
consumers to wait until it is listening on its ports.

The $NOTIFY_SOCKET protocol is described here:

http://www.freedesktop.org/software/systemd/man/sd_notify.html

Currently this is limited to the kube-apiserver process. Other
kube processes are internal kubernetes moving points. The API
server is the entry point relied on by callers.

100% stolen from Stef Walter from:
https://github.com/GoogleCloudPlatform/kubernetes/pull/8316
 2015-05-28 15:59:26 -04:00
Piotr Szczesniak cd2c7e16d7 Merge pull request #8320 from wojtek-t/generated_deep_copy 
Code to automatically generate functions for DeepCopy
 2015-05-27 13:14:07 +02:00
Victor Marmol 9a2630ac6e Make system container name configurable. 2015-05-26 20:49:55 -07:00
Wojciech Tyczynski b2280db724 Deep-copy functions autogeneration. 2015-05-26 21:16:26 +02:00
Saad Ali c5525ecfdc Merge pull request #8704 from roberthbailey/dead-flags 
Deprecate flags for nodecontroller
 2015-05-26 09:54:01 -07:00
Zach Loafman 4292866c03 Merge pull request #8720 from cjcullen/clusterName 
Re-add the cluster-name flag to ControllerManager
 2015-05-22 16:53:57 -07:00
CJ Cullen d6e0aedec1 Re-add the cluster_name flag that the ServiceController and RouteController need. 2015-05-22 16:31:22 -07:00
Justin Santa Barbara 3bb2fe2425 Create port allocator, based on IP allocator mechanism 
Including some refactoring of IP allocator
 2015-05-22 19:14:28 -04:00
Robert Bailey d0bcf953e9 Deprecate the following flags for node-controller: 
--node-milli-cpu
  --node-memory
  --machines
  --minion-regexp
  --sync-nodes

Remove the following flags from the standalon kubernetes binary:
  --node-milli-cpu
  --node-memory
 2015-05-22 15:18:36 -07:00
Dawn Chen 97727267c6 Merge pull request #8574 from bprashanth/apiserver_rand 
Randomize apiserver timeout
 2015-05-22 13:13:59 -07:00
Dawn Chen 677a4aa1a7 Merge pull request #8164 from cjcullen/cloudprovider 
Route creation reconciler loop.
 2015-05-22 12:27:50 -07:00
Prashanth Balasubramanian 8a5445d3db Randomize apiserver watch timeouts 2015-05-21 20:52:33 -07:00
Huamin Chen 4a800fd10e add rados block device(rbd) volume plugin 
Signed-off-by: Huamin Chen <hchen@redhat.com>
 2015-05-21 14:51:31 -04:00
Derek Carr 9b1fb6dca1 Merge pull request #8233 from csrwng/connect_adm_ctrl 
Admission control to prevent exec on privileged pods
 2015-05-21 14:35:28 -04:00
Cesar Wong e95d9c416d Admission control to prevent exec on privileged pods 2015-05-21 13:56:51 -04:00
Dawn Chen 3c38abe6b0 Merge pull request #8545 from dchen1107/cleanup 
Change the default value of maximum-dead-containers-per-container to 2
 2015-05-21 09:26:14 -07:00
Dawn Chen 9a5b05312f Merge pull request #8238 from thockin/probe-logs 
Better kubelet logging for probes
 2015-05-21 09:11:11 -07:00
CJ Cullen 0d12a15971 Route creation reconciler loop. 2015-05-20 14:21:30 -07:00
CJ Cullen bf646abf8d Revert "Revert "Modify nodes to register directly with the master."" 
This reverts commit c53786ab31.
 2015-05-20 14:21:03 -07:00
Quinton Hoole c53786ab31 Revert "Modify nodes to register directly with the master." 2015-05-20 13:47:51 -07:00
Tim Hockin 75617e8760 Better kubelet logging for probes 
Log when we actually run probes and event when they fail.  Print the output of
a probe, too.
 2015-05-20 08:56:45 -07:00
Dawn Chen d46bb117af Change the default value of maximum-dead-containers-per-container to 2 2015-05-19 17:30:16 -07:00
Tim Hockin 97abc19810 Merge pull request #8299 from thockin/import-names 
rename imported pkgs for readability
 2015-05-19 12:01:57 -07:00
Eric Tune 1f4172d23c Merge pull request #6949 from roberthbailey/node-register 
Modify nodes to register directly with the master.
 2015-05-19 11:29:43 -07:00
Tim Hockin 70c94fad6d Don't rename api imports in conversions 2015-05-19 11:21:21 -07:00
Robert Bailey 01467e0bb8 Modify nodes to register directly with the master. 
- Delete nodes when they are no longer ready and don't exist in the
cloud provider.
 - Label each node with it's hostname.
 - Add flag to skip node registration.
 - Add a test for registering an existing node.
 2015-05-19 09:55:07 -07:00
Jeff Grafton bf1de72f4a Revert "Revert "Use native Ginkgo test runner instead of cmd/e2e (attempt N)"" 
This reverts commit f4bb6aa37d.
 2015-05-19 09:13:08 -07:00
Brian Grant 2c81050e6f Merge pull request #8457 from davidopp/master 
Fix stylistic isues with #5547. Closes #4910.
 2015-05-19 07:43:21 -07:00
David Oppenheimer 44b1e1ca0c Fix stylistic isues with #5547. Closes #4910. 2015-05-18 23:32:06 -07:00
Quinton Hoole f4bb6aa37d Revert "Use native Ginkgo test runner instead of cmd/e2e (attempt N)" 2015-05-18 21:04:26 -07:00
Tim Hockin 2307350d1b Merge pull request #8443 from wojtek-t/conversion_improvements 
Script for regenerate auto-generated conversions.
 2015-05-18 17:24:08 -07:00
Wojciech Tyczynski 9a93206774 Script for automatically generate conversions. 2015-05-19 02:17:58 +02:00
Jeff Grafton b79fae5d71 Revert "Revert "Once again, use native Ginkgo test runner instead of cmd/e2e."" 
This reverts commit 67da1ac0c8.
 2015-05-18 11:39:21 -07:00
Victor Marmol a7341cfb77 Merge pull request #8386 from smarterclayton/make_kubelet_consumable 
Make it easier to reuse kubelet server code
 2015-05-18 11:26:55 -07:00
Victor Marmol 45874d5f76 Merge pull request #5547 from gmarek/client3 
Add a resource specifying number of Pods that are allowed to run on Kubelet.
 2015-05-18 11:11:43 -07:00
Clayton Coleman dc0e3dd0a4 Make it easier to reuse kubelet server code 
Ensure that RunKubelet() returns errors consistently,
and make info output match Kube conventions.

Allows OpenShift to more easily reuse the Kubelet.
 2015-05-18 13:38:23 -04:00
Clayton Coleman 3b10d82864 Merge pull request #8391 from liggitt/etcd_token_lookup 
Make serviceaccount/token lookup more flexible
 2015-05-18 11:08:30 -04:00
Clayton Coleman 485a420326 Merge pull request #8257 from liggitt/multi_user_controller 
Allow ServiceAccountsController to manage multiple named service accounts
 2015-05-18 10:39:50 -04:00
Clayton Coleman a2e4f95e32 Merge pull request #8269 from smarterclayton/add_proxier_error 
Proxier should return typed errors
 2015-05-18 10:00:44 -04:00
Jordan Liggitt d90e7409e4 Prevent auth recursion for service account tokens 2015-05-16 23:39:07 -04:00
Jordan Liggitt 7e9281fc39 Allow ServiceAccountsController to manage multiple named service accounts 2015-05-15 23:42:00 -04:00
Daniel Smith cf337051e0 Merge pull request #7819 from nikhiljindal/etcdTranslation 
Adding a script to update etcd objects as per the latest API Version
 2015-05-15 18:28:36 -07:00
Jeff Grafton 67da1ac0c8 Revert "Once again, use native Ginkgo test runner instead of cmd/e2e." 
This change broke compilation on go 1.3 and running e2e tests on OS X.

This reverts commit 86b023fdd6.
 2015-05-15 16:41:55 -07:00
nikhiljindal fa9f864782 Adding a script to update etcd objects 2015-05-15 16:20:35 -07:00
Jeff Grafton 86b023fdd6 Once again, use native Ginkgo test runner instead of cmd/e2e. 
This commit deletes cmd/e2e and updates hack/ginkgo-e2e.sh to use the
'ginkgo' command instead. All logic from cmd/e2e/e2e.go and
test/e2e/driver.go have been combined into the new file
test/e2e/e2e_test.go.

The test tarball now includes a built version of the test/e2e test
binary, which includes all tests under test/e2e. This was accomplished
by updating the build scripts to use 'go test -c' when a target name
ended with '.test', and adding a dependency on test/e2e/e2e.test.

This prebuilt test binary is passed to the Ginkgo runner in
hack/ginkgo-e2e.sh. In a future change, we can add support to run
Ginkgo against the source tree if it is available.

This change is generally intended to have no externally visible changes,
aside from the following caveats:
 - The -t/--tests flag has been removed
 - Calling cmd/e2e/e2e directly obviously won't work, but that was never
   intended to be supported anyway
 - If the GINKGO_PARALLEL environment variable is set to y, then ginkgo
   will run test specs in parallel. (Currently defaults to n, since some
   tests are broken in this mode.)

Additionally, several tests which made poor assumptions about cwd or
used testContext before it had been set have been fixed.
 2015-05-15 11:54:53 -07:00
Clayton Coleman de36967c7e Proxier should return typed errors 2015-05-15 13:50:05 -04:00
Victor Marmol 43e4654333 Merge pull request #8292 from yujuhong/rm_podinfo 
Remove /podInfo endpoint on kubelet
 2015-05-15 08:42:02 -07:00
Wojciech Tyczynski 108615d081 Refactor conversion generator 2015-05-15 15:11:18 +02:00
gmarek 27d660d0ac Add a resource specifying number of Pods that are allowed to run on Kubelet. 2015-05-15 10:57:46 +02:00
Yu-Ju Hong 4b40db3367 Remove /podInfo endpoint on kubelet 
Kubelet sends pod status updates to the API server now. This endpoint is no
longer needed.
 2015-05-14 17:51:26 -07:00
David Oppenheimer 7a21d7ab1f Merge pull request #8053 from jdef/upstream_mesos_cloud 
integrate mesos cloud provider with k8s proper
 2015-05-14 13:57:39 -07:00
Rohit Jnagal bd0156c65a Merge pull request #8204 from jlowdermilk/gke-todos 
Cleanup some todos for gke + rip out dead code
 2015-05-14 10:30:24 -07:00
gmarek 8a4717d3f5 Remove unused ClusterName from NodeController 2015-05-14 18:01:23 +02:00
Dawn Chen 309a157665 Merge pull request #7984 from cjcullen/kubelet 
Kubelet configure cbr0 instead of configure-vm.sh
 2015-05-13 17:32:52 -07:00
Victor Marmol 2aaa4e08eb Revert "Change default CgroupRoot to /." 2015-05-13 15:50:23 -07:00
Jeff Lowdermilk 3f3760a14a Cleanup some todos for gke + rip out dead AuthConfig code 2015-05-13 13:54:02 -07:00
derekwaynecarr 3e503f5040 Conversion tool was not able to build v1 conversions 2015-05-13 16:23:22 -04:00
Tim Hockin 9aa9260295 Merge pull request #7529 from markturansky/yoko_pv_mgr 
Changed binding from volume.Spec.ClaimRef to claim.Spec.VolumeName
 2015-05-13 12:40:57 -07:00
markturansky 0191574f7e Bi-directional bind between pv.Spec.ClaimRef and pvc.Spec.VolumeName 2015-05-13 14:05:21 -04:00
Robert Bailey c47b9178b4 Replace the auth config file with a kubeconfig file when 
starting the kubelet on GCE.
 2015-05-13 01:03:28 -07:00
CJ Cullen 31ea7d1295 Put cbr0-modifying stuff behind a flag. Address some other comments. 2015-05-12 23:00:28 -07:00
Victor Marmol 40ec627cd4 Merge pull request #8108 from rjnagal/kubelet 
Handle out of disk situation on kubelet.
 2015-05-12 15:49:31 -07:00
Rohit Jnagal fab980598a Merge pull request #8122 from vmarmol/docker-container 
Run Docker Daemon in a Resource-only Container
 2015-05-12 13:16:05 -07:00
Rohit Jnagal 2cf0dfb79d Handle out of disk situation on kubelets. 
Kubelet will stop accepting new pods if it detects low disk space on root fs or fs holding docker images.
Running pods are not affected. low-diskspace-threshold-mb is used to configure the low diskspace threshold.
 2015-05-12 18:23:09 +00:00
Nikhil Jindal d75bd8bf2a Merge pull request #7101 from liggitt/service_account 
ServiceAccounts
 2015-05-12 10:23:41 -07:00
Victor Marmol e1447618f4 Integrating ContainerManager into Kubelet 2015-05-12 10:13:23 -07:00
James DeFelice 652c14d8d7 integrate mesos cloud provider into kube apps 2015-05-12 16:02:38 +00:00
Victor Marmol 8d304b7d1e Change default CgroupRoot to /. 
This will make all Docker containers to be top-level containers. This
will more equally share the CPU under cases of contention.
 2015-05-12 08:04:20 -07:00
Nikhil Jindal 3d31883829 Merge pull request #8083 from brendandburns/kubectl 
Add a flag to disable legacy APIs
 2015-05-11 17:35:28 -07:00
Victor Marmol 8d6e32d378 Merge pull request #8080 from yujuhong/disable_test 
Temporarily disable the static pod test in integration.go
 2015-05-11 16:10:30 -07:00
Brendan Burns d8f48290e9 Add a flag to disable legacy APIs 2015-05-11 16:09:25 -07:00
Jeff Lowdermilk ac87ed6516 Merge pull request #8064 from deads2k/death-to-auth-path 
eliminate auth-path
 2015-05-11 15:41:41 -07:00
Yu-Ju Hong 2adfb489ff Temporarily disable the static pod test in the integration test 
The test has been flaky for a while due to the potential watch performance
problem. Temporarily disable this test until we resolve #6651.

Note that there is extensive coverage of mirror pod creation/deletion via unit
tests in kubelet_test.go.
 2015-05-11 15:37:40 -07:00
Jordan Liggitt 7e14a80f63 ServiceAccount admission plugin 2015-05-11 17:18:06 -04:00
Jordan Liggitt db1f0dc906 JWT token generation/verification 2015-05-11 17:18:06 -04:00
Jordan Liggitt 6e570732f5 ServiceAccounts controller 2015-05-11 17:18:05 -04:00
Jordan Liggitt 0955808668 ServiceAccountTokens controller 2015-05-11 17:18:05 -04:00
Nikhil Jindal 0da12c1ba9 Merge pull request #7869 from bprashanth/rc_rl 
Rate limit replica creation
 2015-05-11 11:24:02 -07:00
Clayton Coleman 382623f3fa Merge pull request #7896 from wojtek-t/generated_calling_manual 
Improments to conversion methods generator
 2015-05-11 10:15:32 -04:00
Wojciech Tyczynski 5578dc99e3 Improvements for conversions generator 2015-05-11 12:21:11 +02:00
Prashanth Balasubramanian 4fdd5bc3f3 Ratelimit replica creation 2015-05-08 14:24:25 -07:00
deads2k 6498fc1fda remove cmd respect for auth-path 2015-05-08 16:33:33 -04:00
Clayton Coleman e200d5a317 Make PortalIP alloc HA 
* Add an allocator which saves state in etcd
* Perform PortalIP allocation check on startup and periodically afterwards

Also expose methods in master for downstream components to handle IP allocation
/ master registration themselves.
 2015-05-08 13:34:16 -04:00
Yifan Gu 7e9ba26103 kubelet: Add container runtime option for rkt. 2015-05-07 23:39:37 -07:00
Victor Marmol ecf8348609 Revert "kubelet: Add container runtime option for rkt." 2015-05-07 13:01:37 -07:00
Yifan Gu 4f6535ed8a kubelet: Add container runtime option for rkt. 2015-05-07 10:31:58 -07:00
Brendan Burns 5461231c1c Merge pull request #7567 from endocode/kbeecher/wip_etcd_migrate_keys 
WIP: Add startup code to apiserver to migrate etcd keys
 2015-05-07 10:05:41 -07:00
CJ Cullen fbd125e4e2 Remove restriction that cluster-cidr be a class-b 2015-05-06 15:01:13 -07:00
Robert Bailey 06c2f4e3d5 Merge pull request #7799 from cjcullen/test_pull_5246 
Fix sync problems in #5246
 2015-05-05 22:31:10 -07:00
Jerzy Szczepkowski e967ffd522 Added flag to set cluster class B network address for pods, add flag to disable allocation CIDRs for Pods. Fixed synchornization bug in NodeController registerNodes(). 2015-05-05 16:10:43 -07:00
Zach Loafman 875e83a741 Revert "Revert "Security context - types, kubelet, admission"" 2015-05-05 16:02:13 -07:00
Zach Loafman 3fcea23185 Revert "Revert "Revert "Kubelet: Add rkt as a runtime option""" 2015-05-05 15:55:12 -07:00
Zach Loafman 92ca92f43a Revert "Revert "Kubelet: Add rkt as a runtime option"" 2015-05-05 15:28:09 -07:00
Zach Loafman f48904fd5e Revert "Security context - types, kubelet, admission" 2015-05-05 15:20:39 -07:00
Zach Loafman 6016408096 Revert "Kubelet: Add rkt as a runtime option" 2015-05-05 15:15:15 -07:00
Yu-Ju Hong b2c0ea37b4 Merge pull request #7743 from vmarmol/runtime-switch 
Kubelet: Add rkt as a runtime option
 2015-05-05 13:36:46 -07:00
Victor Marmol 22297d316a Add rkt runtime to Kubelet init 2015-05-05 10:55:21 -07:00
Paul Weil 982bf19c20 security context initial implementation - squash 2015-05-05 13:46:13 -04:00
Paul Morie 553265ce0c Add containerized option to kubelet binary 2015-05-05 13:10:06 -04:00
Karl Beecher 0473f652fd Add startup code to apiserver to migrate etcd keys 
Refs: #3476
 2015-05-05 12:28:14 +02:00
Victor Marmol 27dea5f400 Revert "Add containerized option to kubelet binary" 2015-05-04 16:34:22 -07:00
Victor Marmol 9340b7af48 Merge pull request #7741 from pmorie/containerized 
Add containerized option to kubelet binary
 2015-05-04 16:18:31 -07:00
Paul Morie ddbf9f7a28 Add containerized option to kubelet binary 2015-05-04 18:59:52 -04:00
Yu-Ju Hong d231eb6bef Kubelet: wait until container runtime is up 
Instead of waiting for the docker client to be up, we wait for the container
runtime to be up.
 2015-05-04 15:16:38 -07:00
Paul Morie b538642464 Inject mounter into volume plugins 2015-05-04 11:28:57 -04:00
Wojciech Tyczynski 0a032ade46 Enable profiling in kube-controller 2015-05-04 13:22:25 +02:00
Daniel Smith 4a6ab7fd36 Merge pull request #7597 from eparis/copyright 
Use generic copyright holder name in license boilerplate
 2015-05-01 17:01:39 -07:00
Eric Paris 6b3a6e6b98 Make copyright ownership statement generic 
Instead of saying "Google Inc." (which is not always correct) say "The
Kubernetes Authors", which is generic.
 2015-05-01 17:49:56 -04:00
Victor Marmol d9d61c3511 Kubelet: Add container runtime option. 2015-05-01 14:26:54 -07:00
Vish Kannan cadfde0bd1 Merge pull request #7277 from guenter/cgroup-parent 
Add --cgroup_parent flag to Kubelet to set the parent cgroup for pods
 2015-05-01 10:24:58 -07:00
Quinton Hoole bfaf976df7 Revert "Use native Ginkgo test runner instead of cmd/e2e" 2015-04-30 13:45:46 -07:00
Quinton Hoole 3602884d32 Merge pull request #7462 from ixdy/native-ginkgo-runner 
Use native Ginkgo test runner instead of cmd/e2e
 2015-04-30 13:27:04 -07:00
Tobi Knaup b96c4046a8 Add --cgroup_root flag to Kubelet to set the parent cgroup for all pods. 
Implements #6991.
 2015-04-30 10:32:27 -07:00
Piotr Szczesniak 11a2dc496f Added TerminationGracePeriod field to PodSpec and grace-period flag to kubectl stop 
Those are changes which touch users required by Termination Notice

Addresses #6804
 2015-04-30 18:00:33 +02:00
Filip Grzadkowski 231284187e Merge pull request #7431 from wojtek-t/conversion_chains 
Prepare for chaining autogenerated conversion methods
 2015-04-30 09:08:40 +02:00
Jeff Lowdermilk 9fd8cbae64 Merge pull request #7510 from eparis/cobra-rebase 
Cobra rebase
 2015-04-29 15:08:41 -07:00
Daniel Smith 4d2f7a38c2 Merge pull request #6866 from bprashanth/rc_watch_pods 
RcManager watches pods and RCs instead of polling every 10s
 2015-04-29 09:10:55 -07:00
Eric Paris a17a26643b Update kube to support new pflag/cobra 2015-04-29 11:26:30 -04:00
Wojciech Tyczynski 8eca76298f Improvements to conversions generator. 2015-04-29 16:32:31 +02:00
Jeff Grafton 57750ccb51 Use native Ginkgo test runner instead of cmd/e2e. 
This commit deletes cmd/e2e and updates hack/ginkgo-e2e.sh to use the
'ginkgo' command instead. All logic from cmd/e2e/e2e.go and
test/e2e/driver.go have been combined into the new file
test/e2e/e2e_test.go.

Additionally, several tests which made poor assumptions about cwd or
used testContext before it was set have been fixed.

This change is generally intended to have no externally visible changes,
aside from the following caveats:
- The -t/--tests flag has been removed
- Calling cmd/e2e/e2e directly obviously won't work, but that was never
  supported anyway
- If the GINKGO_PARALLEL environment variable is set to y, then ginkgo
  will run test specs in parallel. (Currently defaults to n, since some
  tests are broken in this mode.)
 2015-04-28 18:42:37 -07:00
Brian Grant a4316aa638 Merge pull request #7454 from nikhiljindal/v1 
Cloning v1beta3 as v1 and exposing it in the apiserver
 2015-04-28 18:06:57 -07:00
nikhiljindal c4d7e19c8c Cloning v1beta3 as v1 and exposing it in the apiserver 2015-04-28 16:06:03 -07:00
Prashanth Balasubramanian 7592dabeba RcManager uses informers 2015-04-28 13:45:15 -07:00
Brendan Burns c9f4d8e57e Merge pull request #7425 from roberthbailey/basic-auth-headers 
Set the 'WWW-Authenticate' header on 401 responses when basic auth is enabled
 2015-04-28 11:10:05 -07:00
Daniel Smith 19ae113fe0 Merge pull request #7353 from wojtek-t/too_many_dials 
Increase maxIdleConnection limit when creating etcd client in apiserver.
 2015-04-28 11:03:12 -07:00
Robert Bailey 4304b1d24a Set the 'WWW-Authenticate' header on 401 responses when basic 
auth is enabled. This is required for basic auth to work with
web browsers.
 2015-04-28 11:00:05 -07:00
Robert Bailey 6d85dcb4a0 Add support for HTTP basic auth to the kube-apiserver. 2015-04-28 10:33:51 -07:00
Wojciech Tyczynski 07400f9d2b Increase maxIdleConnection limit in etcd client. 2015-04-28 09:50:56 +02:00
Tim Hockin 0c611370e0 Merge pull request #7281 from thockin/flag-word-separators 
Make flags accept - or _ between words
 2015-04-27 18:11:58 -07:00
Tim Hockin a3d45fada8 Change flags to use dashes in help 2015-04-27 15:11:03 -07:00
Tim Hockin 6694eff020 Use pflags word separators to make - and _ equiv. 2015-04-27 15:10:52 -07:00
Dawn Chen aa487b7cab Merge pull request #7382 from vmarmol/rkt-deps 
Move Docker-specific log handling to DockerManager.
 2015-04-27 15:10:14 -07:00
Daniel Smith 83093af8b0 Merge pull request #5707 from endocode/kbeecher/etcd_prefix 
Adds ability to define a prefix for etcd paths
 2015-04-27 13:37:43 -07:00
Victor Marmol 7404b7019c Move Docker-specific log handling to DockerManager. 
Eases the separation of Docker-specific code into the Docker-specific
runtime.
 2015-04-27 13:10:10 -07:00
markturansky beacd8722a addressed feedback. added opt-in cmd line flag 2015-04-27 15:00:01 -04:00
markturansky 37d7f3f4f1 Added integration test, fixed a validation issue 2015-04-27 12:05:12 -04:00
markturansky b634f17ca7 Refactored to DeltaFifo 2015-04-27 12:05:12 -04:00
markturansky 6c6aab60ab goformatted 2015-04-27 12:05:12 -04:00
markturansky fb412e47e4 Addressed feedback, improved flow and comments 2015-04-27 12:05:11 -04:00
Robert Bailey 0f22b6fc4d Merge pull request #7251 from a-robinson/tp 
Move load balancer host / target pool reconciliation to the service controller
 2015-04-24 13:17:54 -07:00
Alex Robinson 6ae8e40d3d Move the logic for reconciling the host targets of external load balancers 
from the node controller to the service controller before impending changes
to the node controller make it not fit there anymore.
 2015-04-24 18:44:04 +00:00
Clayton Coleman ed00dae7c8 Merge pull request #7107 from wojtek-t/conversion_generator 
Code to automatically generate conversion methods
 2015-04-24 08:39:11 -04:00
Karl Beecher a7623ca6cc Adds ability to define a prefix for etcd paths 
The API server can be supplied (via a command line flag) with a custom
prefix that is prepended to etcd resources paths.

Refs: #3476
 2015-04-24 12:12:39 +02:00
Wojciech Tyczynski c4a27f5c0f Generating conversion methods. 2015-04-23 18:26:24 +02:00
Satnam Singh 2444c1f943 Propagate pod and container name for log files 2015-04-22 15:08:51 -07:00
Filip Grzadkowski 9357341995 Add metrics handler in controller manager. 2015-04-22 16:46:03 +02:00
Brian Grant 15c2986a07 Merge pull request #7067 from ravigadde/master 
Added field selector for listing pods
 2015-04-22 07:12:21 -07:00
Ravi Gadde bf8f258471 Added field selector for listing pods. 2015-04-21 06:33:28 -07:00
Kenjiro Nakayama c7d3a72c6a Fix gofmt complaint 2015-04-21 09:36:41 +09:00
Kenjiro Nakayama 5e2e59e728 Add more help description to cert_dir flag 2015-04-20 00:35:56 +09:00
Kenjiro Nakayama 51d0443dde Add cert_dir option to kube-apiserver 2015-04-19 17:40:08 +09:00
Prashanth B f2f40b06aa Merge pull request #6943 from lavalamp/fix4 
Improve endpoint controller
 2015-04-17 16:30:31 -07:00
Daniel Smith a2953fdc7e Make endpoint controller use framework 2015-04-17 15:21:51 -07:00
Jeff Lowdermilk aba5d9aca5 Merge pull request #6969 from erictune/use_kubeconfig 
Use kubeconfig in several components
 2015-04-17 15:07:04 -07:00
Eric Tune 6081fa52a7 controller, scheduler, proxy use kubeconfig 
--master option still supported.
--kubeconfig option added to kube-proxy,
kube-scheduler, and kube-controller-manager
binaries.

Kube-proxy now always makes some kind of API
source, since that is its only kind of config.
Warn if it is using a default client, which probably won't work.

Uses the clientcmd builder.
 2015-04-17 12:44:17 -07:00
Robert Bailey f3dd053a08 Merge pull request #6952 from mikedanese/kubelet-profiling 
add enable_profiling option to kubelet healthz port
 2015-04-17 07:42:35 -07:00
Eric Tune 6b93e5ba9d Kube-proxy learns to read a kubeconfig 
--master flag is still supported for distros that need it.
But now, --kubeconfig flag can be used instead, or in addition,
to specify the auth info, and/or the location of the master.

A subsequent PR will change salt to generate a kubeconfig,
and to make kube-proxy use it, for salt-based clouds.
 2015-04-16 23:42:54 -07:00
Mike Danese 7b13870b32 add profiling to kubelet 2015-04-16 23:11:40 -07:00
Robert Bailey 8aff238c5f Remove an unused function in the kubelet code. 2015-04-16 15:38:12 -07:00
Tim Hockin c2bacd588d Stop using dockerfile/* images 
As per
http://blog.docker.com/2015/03/updates-available-to-popular-repos-update-your-images/
docker has stopped answering dockerfile/redis and dockerfile/nginx.  Fix all
users in our tree.  Sadly this means a lot of published examples are now broken.
 2015-04-16 12:20:43 -07:00
Dawn Chen d912398d07 Merge pull request #6813 from vmarmol/in-container 
Run Kubelet and Kube-proxy in resource-only containers.
 2015-04-15 10:37:00 -07:00