github
/
k3s
mirror of https://github.com/k3s-io/k3s
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
79,503 Commits
32 Branches
881 Tags
633 MiB
Commit Graph

2763 Commits (644632ddcfd5ceede125758d51c9aa3736763753)

Author SHA1 Message Date
Maciej Borsz 9da7db76b7
Revert "[Re-Apply][Distroless] Convert the GCE manifests for master containers." 2019-05-15 08:31:19 +02:00
Kubernetes Prow Robot 2c67fb397d
Merge pull request #77358 from yuwenma/node-termination-handler 
Updated gce node-termination-handler yaml.
 2019-05-13 18:25:09 -07:00
Yuwen Ma 1f0f050fde Update etcd* version to use latest released images. 2019-05-13 17:28:40 -07:00
Kubernetes Prow Robot 1c18c3263a
Merge pull request #77386 from SataQiu/fix-shellcheck-20190503 
Fix shellcheck failures of cluster/gce/upgrade-aliases.sh
 2019-05-10 21:30:24 -07:00
Kubernetes Prow Robot 5184b866d6
Merge pull request #77424 from MrHohn/gce-manifest-owners 
Add OWNERS file for gce/manifests
 2019-05-09 20:13:57 -07:00
Kubernetes Prow Robot a3f8e95f68
Merge pull request #77607 from dekkagaijin/mip 
when disabled, don't create the API server's insecure port mapping
 2019-05-09 17:52:10 -07:00
Jake Sanders 2576713a40 when disabled, don't create the API server's insecure port mapping 2019-05-09 11:50:59 -07:00
Zihong Zheng e6287c61e6 Add OWNERS file for gce/manifests 2019-05-08 17:39:23 -07:00
Kubernetes Prow Robot 5bd88c85bf
Merge pull request #77568 from yujuhong/catch-exception 
GCE/Windows: ignore stopping errors for stackdriver
 2019-05-08 17:15:38 -07:00
Kubernetes Prow Robot 0befec7fb6
Merge pull request #77447 from dekkagaijin/mip 
disable the apiserver's insecure port by default
 2019-05-07 22:14:32 -07:00
Kubernetes Prow Robot b34d7ac0ce
Merge pull request #77458 from grayluck/agent-v2.3.0 
Bump ip-masq-agent version to v2.3.0. Enable nomasq for reserved IPs.
 2019-05-07 17:52:58 -07:00
Yu-Ju Hong eadacaf058 GCE/Windows: ignore stopping errors for stackdriver 2019-05-07 17:17:34 -07:00
yankaiz 1059a71973 Bump ip-masq-agent version to v2.3.0. Enable nomasq for reserved IPs. 
Added the non-masq ranges to configure-helper.sh so that GCE clusters
will have the non-masq IP ranges aligned with GKE clusters.
 2019-05-06 22:32:34 -07:00
Kubernetes Prow Robot e1d40da0df
Merge pull request #76396 from yuwenma/reapply-75624 
[Re-Apply][Distroless] Convert the GCE manifests for master containers.
 2019-05-06 21:31:39 -07:00
Jake Sanders e4d521e825 disable the apiserver insecure port by default in configure-helper 2019-05-06 19:26:57 -07:00
Jake Sanders ff4c372eaa ensure that kubectl works when the master insecure port is disabled 2019-05-06 19:25:41 -07:00
Kubernetes Prow Robot 6027a38e78
Merge pull request #77282 from MrHohn/addon-manager-9.0.1 
Bump addon-manager to v9.0.1
 2019-05-06 14:01:52 -07:00
Yuwen Ma 53bace16df Updated gce node-termination-handler yaml. 2019-05-06 11:29:47 -07:00
Yuwen Ma b8a8bdb127 [Distroless] Convert the GCE manifests for master containers. 
* Touched containers: kube-apiserver, kube-scheduler,
kube-controller-manager.
* Remove the shell dependencies when upstart the containers.
* Reformat the command parameters to ["Exec", "Param1", "Param2"]
 2019-05-06 08:04:06 -07:00
Kubernetes Prow Robot 5f8d290346
Merge pull request #75675 from mwwolters/addon-manager-kubeconfig 
Added function to create kubeconfig for addon-manager
 2019-05-03 22:17:51 -07:00
Mark Wolters 1456979e93 Added function to create kubeconfig for addon-manager 2019-05-03 15:12:16 -07:00
Yu-Ju Hong 9f65407833 GCE/Windows: send container logs to the proper resource 
This PR fixes a bug where all container logs are sent to the "k8s_node"
resource by adding a "match" directive that applies only to container
logs.
 2019-05-03 11:32:19 -07:00
Kubernetes Prow Robot eb41c9c5fc
Merge pull request #77369 from immutableT/remove-enc-from-kube-up 
Remove the option of encrypting secrets in etcd via a locally stored key.
 2019-05-03 02:56:29 -07:00
SataQiu 2ba0231670 fix shellcheck failures of cluster/gce/upgrade-aliases.sh 2019-05-03 17:01:15 +08:00
Kubernetes Prow Robot 6a23a6278f
Merge pull request #77378 from yujuhong/kill-sd 
GCE/Windows: force kill the stackdriver processes when necessary
 2019-05-02 20:20:17 -07:00
Yu-Ju Hong bee570a2f0 GCE/Windows: force kill the stackdriver processes when necessary 
StackdriverLogging service sometimes cannot be stopped properly. This
work around the bug by force killing the processes.
 2019-05-02 18:52:31 -07:00
Kubernetes Prow Robot 0b10d1b830
Merge pull request #77140 from dekkagaijin/glbc 
use static token to authenticate glbc
 2019-05-02 16:22:30 -07:00
immutablet 1ae9cb2f88 Remove encryption via locally stored key. 2019-05-02 15:09:02 -07:00
Jake Sanders 8bd0b45eae use static token to authenticate glbc 2019-05-01 22:24:48 -07:00
Zihong Zheng 037d4b3a07 Bump addon-manager to v9.0.1 
- Rebase image on debian-base:v1.0.0.
 2019-04-30 15:19:08 -07:00
Ling Huang d3fb7115ab Upgrade Stackdriver Logging Agent addon image from 1.6.0 to 1.6.8. 2019-04-29 15:07:10 -04:00
Wojciech Tyczynski 0d77f62c02
Revert "override ETCD_SERVER with https instead http when mTLS is enabled" 2019-04-27 06:50:20 +02:00
Krzysztof Siedlecki 862662f49e removing quotation marks 2019-04-26 00:25:58 +02:00
aaa c4898d6f56 fix shellcheck failures list-resources.sh 
update pull request

update pull request

update pull request
 2019-04-21 18:17:44 -04:00
Kubernetes Prow Robot 2c2e7a01bb
Merge pull request #76655 from SataQiu/fix-shell-cluster-20190417 
Fix shellcheck failures of cluster/gce/gci/shutdown.sh
 2019-04-23 23:50:04 -07:00
Kubernetes Prow Robot c669b216dd
Merge pull request #76958 from yujuhong/docker-logs 
GCE/Windows: Configure Docker to rotate container logs
 2019-04-23 20:28:12 -07:00
Kubernetes Prow Robot 06bc7e3e00
Merge pull request #76792 from dekkagaijin/insecure-port 
add option to disable the apiserver's insecure port via env var
 2019-04-23 14:02:35 -07:00
Kubernetes Prow Robot 0df8b10557
Merge pull request #76786 from dekkagaijin/master 
add additional approvers from GKE
 2019-04-23 14:02:23 -07:00
Yu-Ju Hong 6e12de0744 GCE/Windows: Configure Docker to rotate container logs 2019-04-23 11:53:16 -07:00
Kubernetes Prow Robot aa11d0edef
Merge pull request #76850 from yujuhong/sd-agent 
GCE/Windows: enable stackdriver logging agent
 2019-04-22 13:18:03 -07:00
SataQiu 903c5a53b3 fix shellcheck failures of cluster/gce/gci/shutdown.sh 2019-04-22 11:46:45 +08:00
Yu-Ju Hong 4cd2625719 GCE/Windows: enable stackdriver logging agent 
This change bumps the stackdriver logging agent version to v1-9,
re-enable it, and change the script/configuration to:
  * Create /var/log in the startup script, since the fluentd
    configuration expects the directory to exists
  * Add support for collecting kubelet/kube-proxy logs
 2019-04-19 15:41:48 -07:00
Yu-Ju Hong 05074e9dde GCE/Windows: add cluster-location to instance metadata 
This will be used by stackdriver to annotate the logs.
 2019-04-19 15:41:48 -07:00
Jake Sanders d4d5afb9cc add additional approvers from GKE 2019-04-19 14:38:31 -07:00
Jake Sanders 42fcd5eb63 remove erroneous kube-apiserver.manifest sed line 2019-04-19 17:40:28 +00:00
Kubernetes Prow Robot e4f9d8fe3f
Merge pull request #76331 from xichengliudui/fixshellcheckfailures-17 
Fix shellcheck failures in stage-upload.sh
 2019-04-19 09:47:55 -07:00
Jake Sanders 113ab741e6 add option to set the value of the apiserver's insecure port 2019-04-18 20:35:08 +00:00
Peter Hornyack 81cc384a9a Pin GCE Windows node image to 1809 v20190312. 
This is to work around
https://github.com/kubernetes/kubernetes/issues/76666.
 2019-04-17 09:45:43 -07:00
Kubernetes Prow Robot dc2c9e8bd5
Merge pull request #74690 from wenjiaswe/etcdserverhttp 
override ETCD_SERVER with https instead http when mTLS is enabled
 2019-04-15 16:45:07 -07:00
Wenjia Zhang 80c4bccf0f override ETCD_SERVER with https instead http when mTLS is enabled 2019-04-14 22:11:37 -07:00
Matt Matejczyk 2efea76263 Ability to set up Private GCE Clusters with NAT. 
Ref. https://github.com/kubernetes/kubernetes/issues/76374
 2019-04-12 13:21:56 +02:00
Kubernetes Prow Robot ae8a4fcb0d
Merge pull request #76352 from jpbetz/reapply-72062 
[reapply] Perform GCE log rotation check every 5 minutes
 2019-04-12 00:41:14 -07:00
aaa 9768ba9eb3 Fix shellcheck failures in stage-upload.sh 
update pull request

update pull request

update pull request

update pull request
 2019-04-12 02:42:48 -04:00
Kubernetes Prow Robot 39073f0b9f
Merge pull request #74268 from wenjiaswe/fixingNitforetcdapiservertlspath 
fix nit for etcd_apiserver TLS path
 2019-04-11 01:22:11 -07:00
Kubernetes Prow Robot 134ed2e703
Merge pull request #76353 from Random-Liu/add-cni-version-env 
Add envs for CNI version.
 2019-04-10 18:46:22 -07:00
Lantao Liu ad5b64ca10 Add envs for CNI version. 
Signed-off-by: Lantao Liu <lantaol@google.com>
 2019-04-09 16:38:53 -07:00
Joe Betz 6297c4f750 Perform GCE log rotation check every 5 minutes 2019-04-09 16:37:38 -07:00
Pengfei Ni 1406e2b70f Update cri-tools to v1.14.0 2019-04-08 10:59:18 +08:00
Zhen Wang 953677d7a5 Use Node-Problem-Detector v0.6.3 on GCI 2019-04-05 11:08:24 -07:00
Maciej Borsz a0b51681c4
Revert "[Distroless] Convert the GCE manifests for master containers." 2019-04-05 12:55:14 +02:00
Ke Wu 925dc7f2e0 Fix empty array expansion error in cluster/gce/util.sh 
Empty array expansion causes "unbound variable" error in
bash 4.2 and bash 4.3.
 2019-04-04 16:46:58 -07:00
Kubernetes Prow Robot 1c105e1629
Merge pull request #75624 from yuwenma/gce-manifest 
[Distroless] Convert the GCE manifests for master containers.
 2019-04-04 16:21:19 -07:00
Yuwen Ma af2659527f [Distroless] Convert the GCE manifests for master containers. 
* Touched containers: kube-apiserver, kube-scheduler,
kube-controller-manager.
* Remove the shell dependencies when upstart the containers.
* Reformat the command parameters to ["Exec", "Param1", "Param2"]
 2019-04-04 11:16:23 -07:00
Yu-Ju Hong 2a37067735 GCE/Windows: disable stackdriver logging agent 
The logging service could not be stopped at times, causing node startup
failures. Disable it until the issue is fixed.
 2019-04-03 10:34:36 -07:00
Michelle Au d2aa8178f2 Remove alpha CRD install 2019-04-02 10:59:11 -07:00
Peter Hornyack 1814b0c495 Disable GCE agent address management on Windows nodes. 
With this metadata key set, "GCEWindowsAgent: GCE address manager
status: disabled" will appear in the VM's serial port output during
boot.

Tested:
PROJECT=${CLOUDSDK_CORE_PROJECT} KUBE_GCE_ENABLE_IP_ALIASES=true NUM_WINDOWS_NODES=2 NUM_NODES=2 KUBERNETES_NODE_PLATFORM=windows go run ./hack/e2e.go -- --up
cluster/gce/windows/smoke-test.sh

cat > iis.yaml <<EOF
apiVersion: v1
kind: Pod
metadata:
  name: iis
  labels:
    app: iis
spec:
  containers:
  - image: mcr.microsoft.com/windows/servercore/iis
    imagePullPolicy: IfNotPresent
    name: iis-server
    ports:
    - containerPort: 80
      protocol: TCP
  nodeSelector:
    beta.kubernetes.io/os: windows
  tolerations:
  - effect: NoSchedule
    key: node.kubernetes.io/os
    operator: Equal
    value: windows1809
EOF

kubectl create -f iis.yaml
kubectl expose pod iis --type=LoadBalancer --name=iis
kubectl get services
curl http://<service external IP address>
 2019-03-28 17:28:18 -07:00
Kubernetes Prow Robot 9e1cf75bd1
Merge pull request #75381 from rramkumar1/configure-scripts-for-ingress-yaml 
Plumb CUSTOM_INGRESS_YAML into other setup scripts
 2019-03-25 12:10:33 -07:00
Kubernetes Prow Robot aa5fda22f2
Merge pull request #75269 from javier-b-perez/gce-configure 
gce: configure: validate SA has storage scope
 2019-03-19 11:06:22 -07:00
Łukasz Osipiuk ff18fbcebb Update Cluster Autscaler version to 1.14.0 
No changes since 1.14.0-beta.2
Changelog: https://github.com/kubernetes/autoscaler/releases/tag/cluster-autoscaler-1.14.0
 2019-03-19 16:15:20 +01:00
Dan Williams bfd8ad3268 build/gci: bump CNI version to 0.7.5 2019-03-18 17:16:42 -05:00
Rohit Ramkumar 8ac15cd54a Plumb CUSTOM_INGRESS_YAML into other setup scripts so that it can be set before a call to kubetest 2019-03-15 13:36:30 -07:00
Łukasz Osipiuk e4663f73d3 Update Cluster Autscaler version to 1.14.0-beta.2 2019-03-15 12:01:47 +01:00
Kubernetes Prow Robot a213886f9c
Merge pull request #74502 from Random-Liu/collect-pod-log 
Collect pod log in fluentd-gcp
 2019-03-12 01:34:37 -07:00
Javier Pérez Hernández e783f0bcd4 gce: configure: validate SA has storage scope 
If the VM SA doesn't have storage scope associated, don't use the
token in the curl request or the request will fail with 403.
 2019-03-11 12:04:01 -07:00
Kubernetes Prow Robot 6ec5a7d337
Merge pull request #75181 from losipiuk/lo/master-ca-1.14-beta.1 
Update Cluster Autscaler version to 1.14.0-beta.1
 2019-03-11 07:15:32 -07:00
Kubernetes Prow Robot 8dd09e0b36
Merge pull request #75208 from pjh/gce-windows-readme-update 
Update GCE Windows README steps for running e2e tests.
 2019-03-10 21:15:26 -07:00
Lantao Liu 7ffa7da112 Configure logrotate for pod logs. 2019-03-08 16:45:41 -08:00
Kubernetes Prow Robot c534a1b9b3
Merge pull request #75149 from yguo0905/m73 
GCE: bump COS image version to cos-beta-73-11647-64-0
 2019-03-08 14:19:35 -08:00
Peter Hornyack 0fbb246c30 Update GCE Windows README steps for running e2e tests. 2019-03-08 13:47:41 -08:00
Łukasz Osipiuk 2790d9151a Update Cluster Autscaler version to 1.14.0-beta.1 2019-03-08 14:01:55 +01:00
Kubernetes Prow Robot cf439192fb
Merge pull request #75139 from mtaufen/windows-kube-proxy-args 
Windows kubeproxy flags cleanup
 2019-03-08 00:53:28 -08:00
Kubernetes Prow Robot 6a86f1576f
Merge pull request #75014 from mtaufen/windows-logrotate 
Windows log rotation
 2019-03-07 22:43:41 -08:00
Yang Guo eef545abfd GCE: bump COS image version to cos-beta-73-11647-64-0 2019-03-07 16:11:02 -08:00
Michael Taufen 0d59d2a43e Windows kubeproxy flags cleanup 
- Pass most of the flags via kube-env, similar to Kubelet, to make it
  easier to reconfigure.
- Use kube-proxy's kubeconfig file to pass the API server address,
  rather than the --master flag.
- Make KUBEPROXY_ARGS a required variable in Windows kube-env, similar
  to KUBELET_ARGS.
 2019-03-07 14:45:34 -08:00
Tim Allclair 63f61a6714 Migrate RuntimeClass to internal API 2019-03-07 11:07:54 -08:00
Michael Taufen 0a21d644f5 Rotate windows logs 2019-03-07 10:42:31 -08:00
Kubernetes Prow Robot 57da888ff4
Merge pull request #75055 from pjh/gce-windows-disable-defender-again 
Disable Windows Defender in Windows nodes on GCE again.
 2019-03-07 01:07:26 -08:00
Kubernetes Prow Robot a60d44848f
Merge pull request #74748 from pjh/gce-windows-stackdriver 
Install Stackdriver agent in Windows nodes on GCE.
 2019-03-06 17:59:39 -08:00
Kubernetes Prow Robot ab7a48d796
Merge pull request #70036 from pbarker/audit-etoe 
dynamic audit e2e test
 2019-03-06 17:58:58 -08:00
Peter Hornyack 80c635880d Disable Windows Defender in Windows nodes on GCE again. 
This reverts commit fbf4fe4714. Windows
Defender seems to be causing our Windows nodes to crash and reboot
during e2e tests, e.g.
https://gcsweb.k8s.io/gcs/kubernetes-jenkins/logs/ci-kubernetes-e2e-windows-gce/228/artifacts/e2e-228-36623-windows-node-group-q4.
 2019-03-06 11:42:03 -08:00
Kubernetes Prow Robot 45e5f6053b
Merge pull request #74424 from liggitt/drop-k8s-io-node-labels 
Clean up self-set node labels
 2019-03-06 08:24:26 -08:00
Kubernetes Prow Robot 5a89793f8e
Merge pull request #74612 from jingxu97/windows 
Add GcePD windows support
 2019-03-05 21:42:22 -08:00
Peter Hornyack 197513141e Install Stackdriver agent in Windows test clusters. 2019-03-05 15:14:07 -08:00
Patrick Barker 67a245ae61 remove unneeded println 2019-03-05 14:38:58 -07:00
Patrick Barker 45d715cdc6 adds dynamic audit e2e test 2019-03-05 14:38:58 -07:00
Kubernetes Prow Robot 365c504e2b
Merge pull request #74928 from pjh/gce-windows-reenable-defender 
Don't disable Windows Defender.
 2019-03-05 11:10:25 -08:00
Peter Hornyack fbf4fe4714 Don't disable Windows Defender. 2019-03-04 16:34:21 -08:00
Joe Betz add956f00f Revert "Perform GCE log rotation check every 5 minutes" 
This reverts commit 1ba05d51a6.
 2019-03-04 14:10:20 -08:00
Kubernetes Prow Robot e001276b1d
Merge pull request #74836 from yujuhong/update-win-cni-config 
GCE/Windows: exclude gateways from the IPAM subnet
 2019-03-01 20:35:03 -08:00
Yu-Ju Hong 1f86bce95e GCE/Windows: exclude gateways from the IPAM subnet 
Exclude IPs assigned for gateways in the IPAM configuration.
 2019-03-01 16:35:26 -08:00