github/k3s - k3s - https://git.xinac.net

Commit Graph

Author	SHA1	Message	Date
Kubernetes Submit Queue	3ac0581a81	Merge pull request #39320 from bruceauyeung/k8s-branch-fix-incorrect-parameter-passing Automatic merge from submit-queue fix incorrect parameter passing Signed-off-by: bruceauyeung <ouyang.qinhua@zte.com.cn> What this PR does / why we need it: 1. fix incorrect parameter passing when creating error 2. fix ineffectual assignment to err variable.	2017-01-27 15:50:54 -08:00
deads2k	9fb37f3bba	remove storage dependency on api	2017-01-27 14:02:28 -05:00
deads2k	aea12038b4	move storage/storagebackend to apiserver	2017-01-27 08:49:55 -05:00
deads2k	9775269fb9	move genericapiserver/server/filters to apiserver	2017-01-27 08:49:30 -05:00
deads2k	c6fd6941a1	move pkg/api/validation/path to apimachinery	2017-01-27 08:49:29 -05:00
Kubernetes Submit Queue	1b8ae3a76a	Merge pull request #40543 from deads2k/generic-30-feature Automatic merge from submit-queue (batch tested with PRs 40543, 39999) remove pkg/feature dependency from genericapiserver. @sttts I think you just forgot this when you were snipping the rest of the link. If I understood the previous pull correctly, this ought to ensure proper registration of the bits we need, right?	2017-01-26 18:07:27 -08:00
Kubernetes Submit Queue	aace5a7b87	Merge pull request #40449 from deads2k/client-15-types Automatic merge from submit-queue (batch tested with PRs 40239, 40397, 40449, 40448, 40360) move the discovery and dynamic clients Moved the dynamic client, discovery client, testing/core, and testing/cache to `client-go`. Dependencies on api groups we don't have generated clients for have dropped out, so federation, kubeadm, and imagepolicy. @caesarxuchao @sttts approved based on https://github.com/kubernetes/kubernetes/issues/40363	2017-01-26 14:23:42 -08:00
deads2k	b511741df7	remove pkg/feature dependency from genericapiserver.	2017-01-26 14:53:05 -05:00
deads2k	9488e2ba30	move testing/core to client-go	2017-01-26 13:54:40 -05:00
deads2k	0d8e6b8500	move genericapiserver authenticator and authorizer factories	2017-01-26 08:50:47 -05:00
deads2k	2734f8f892	move dynamic and discovery clients	2017-01-26 08:37:06 -05:00
Kubernetes Submit Queue	cd4b9ca079	Merge pull request #40500 from kubernetes/revert-40359-owners-01-kubectl Automatic merge from submit-queue Revert "update kubectl approvers" Reverts kubernetes/kubernetes#40359	2017-01-26 05:05:05 -08:00
Kubernetes Submit Queue	a931b7e238	Merge pull request #40357 from sttts/sttts-more-cutoffs-2 Automatic merge from submit-queue (batch tested with PRs 39538, 40188, 40357, 38214, 40195) genericapiserver: cut off more dependencies – episode 2 Compare commit subjects. approved based on #40363	2017-01-25 17:47:13 -08:00
grodrigues3	61e9454883	Revert "update kubectl approvers"	2017-01-25 17:32:22 -08:00
Kubernetes Submit Queue	61d4a71853	Merge pull request #40429 from dgoodwin/self-hosted-wait Automatic merge from submit-queue Wait for the self-hosted control plane during kubeadm init. What this PR does / why we need it: Currently we are completing kubeadm init while the scheduler and controller manager are likely still not yet up. In some cases if they will fail, they won't ever come up. Instead wait until each pod enters running state before exiting kubeadm. Release note: ```release-note NONE ```	2017-01-25 13:26:05 -08:00
Kubernetes Submit Queue	de64280740	Merge pull request #40176 from timothysc/affinity_cleanup Automatic merge from submit-queue (batch tested with PRs 40428, 40176) Cleaup Affinity post conversion from annotations to fields What this PR does / why we need it: Cleans up leftover work from the conversion of affinity from annotations to fields. fixes #40016 related #25319 Special notes for your reviewer: There are some TODO items left for @luxas or @errordeveloper b/c they were trying to use affinity in a way that is not possible. Release note: ```release-note NONE ``` /cc @kubernetes/sig-scheduling-misc @rrati	2017-01-25 12:40:34 -08:00
Dr. Stefan Schimanski	a0137e9b28	Update generated files	2017-01-25 19:49:45 +01:00
Dr. Stefan Schimanski	d7eb3b6870	pkg/util: move uuid and strategicpatch into k8s.io/apimachinery	2017-01-25 19:45:09 +01:00
Kubernetes Submit Queue	ebbf3a9383	Merge pull request #40359 from deads2k/owners-01-kubectl Automatic merge from submit-queue update kubectl approvers All the other owners files have names (not groups). Updated for individual users for approvers so `/approve` works. @kubernetes/sig-cli-api-reviews	2017-01-25 08:17:26 -08:00
Kubernetes Submit Queue	5c5ce3baee	Merge pull request #40362 from deads2k/client-14-move-pkgs Automatic merge from submit-queue move client/cache and client/discovery to client-go mechanical changes to move those packages. Had to create a `k8s.io/kubernetes/pkg/client/tests` package for tests that were blacklisted from client-go. We can rewrite these tests later and move them, but for now they'll still run at least. @caesarxuchao @sttts	2017-01-25 08:17:15 -08:00
Devan Goodwin	1eb2e60dbf	Wait for the self-hosted control plane during kubeadm init. Currently we are completing kubeadm init while the scheduler and controller manager are likely still not yet up. In some cases if they will fail, they won't ever come up. Instead wait until each pod enters running state before exiting kubeadm.	2017-01-25 12:16:03 -04:00
deads2k	ce17351ca6	update kubectl approvers	2017-01-25 09:39:23 -05:00
Timothy St. Clair	bfe41927ba	Cleaup Affinity post conversion from annotations to fields	2017-01-25 08:32:28 -06:00
Shyam Jeedigunta	b48de58311	Added OWNERS to kubemark subdirectories	2017-01-25 14:37:57 +01:00
deads2k	b0b156b381	make tools/cache authoritative	2017-01-25 08:29:45 -05:00
deads2k	c2ae6d5b40	remove api to util dependency hiding types	2017-01-25 08:28:28 -05:00
Kubernetes Submit Queue	df42444742	Merge pull request #40216 from sttts/sttts-more-cutoffs Automatic merge from submit-queue (batch tested with PRs 39260, 40216, 40213, 40325, 40333) genericapiserver: more dependency cutoffs - cut-off pkg/api.Resource and friends - lgtm - authn plugins -> k8s.io/apiserver - - webhook authz plugin -> k8s.io/apiserver - lgtm - ~~pkg/cert -> k8s.io/apimachinery (will rebase on @deads2k's PR also moving it)~~ - split pkg/config into kubelet config merger and flags - lgtm - split feature gate between generic apiserver and kube - lgtm - move pkg/util/flag into k8s.io/apiserver - lgtm	2017-01-24 16:26:00 -08:00
Dr. Stefan Schimanski	2b8e938128	Update generated files	2017-01-24 20:56:03 +01:00
Dr. Stefan Schimanski	82826ec273	pkg/util/flag: move to k8s.io/apiserver	2017-01-24 20:56:03 +01:00
Dr. Stefan Schimanski	a6b2ebb50c	pkg/flag: make feature gate extensible and split between generic and kube	2017-01-24 20:56:03 +01:00
Dr. Stefan Schimanski	56d60cfae6	pkg/util: move flags from pkg/util/config to pkg/util/flags	2017-01-24 20:56:03 +01:00
Clayton Coleman	be6d2933df	refactor: Move *Options references to metav1	2017-01-24 13:41:51 -05:00
Clayton Coleman	7b1c715496	generated: Move references to metav1.*Options	2017-01-24 13:41:48 -05:00
Clayton Coleman	1a49fc3283	client-gen should use metav1.DeleteOptions	2017-01-24 13:15:26 -05:00
Clayton Coleman	fca7e00608	Move all *Options to metav1	2017-01-24 13:15:26 -05:00
deads2k	5a8f075197	move authoritative client-go utils out of pkg	2017-01-24 08:59:18 -05:00
Kubernetes Submit Queue	0fac54e65e	Merge pull request #40316 from luxas/kubeadm_fix_apiserver_certs Automatic merge from submit-queue (batch tested with PRs 40303, 40316) kubeadm: Fix up the apiserver kubelet client cert What this PR does / why we need it: I didn't notice that the apiserver serving cert was _only_ a server cert, not both a server and client cert in https://github.com/kubernetes/kubernetes/pull/40292. This PR fixes that misconception and generates a dedicated client cert for apiserver -> kubelet communication and harmonizes the `ca.crt` path to `/etc/kubernetes/pki/ca.crt` on both master and node. Which issue this PR fixes (optional, in `fixes #<issue number>(, fixes #<issue_number>, ...)` format, will close that issue when PR gets merged): fixes # Special notes for your reviewer: ```console $ systemctl cat kubelet # /lib/systemd/system/kubelet.service [Unit] Description=kubelet: The Kubernetes Node Agent Documentation=http://kubernetes.io/docs/ [Service] ExecStart=/usr/bin/kubelet Restart=always StartLimitInterval=0 RestartSec=10 [Install] WantedBy=multi-user.target # /etc/systemd/system/kubelet.service.d/10-kubeadm.conf [Service] Environment="KUBELET_KUBECONFIG_ARGS=--kubeconfig=/etc/kubernetes/kubelet.conf --authorization-mode=Webhook --client-ca-file=/etc/kubernetes/pki/ca.crt --require-kubeconfig=true" Environment="KUBELET_SYSTEM_PODS_ARGS=--pod-manifest-path=/etc/kubernetes/manifests --allow-privileged=true" Environment="KUBELET_NETWORK_ARGS=--network-plugin=cni --cni-conf-dir=/etc/cni/net.d --cni-bin-dir=/opt/cni/bin" Environment="KUBELET_DNS_ARGS=--cluster-dns=10.96.0.10 --cluster-domain=cluster.local" ExecStart= ExecStart=/usr/bin/kubelet $KUBELET_KUBECONFIG_ARGS $KUBELET_SYSTEM_PODS_ARGS $KUBELET_NETWORK_ARGS $KUBELET_DNS_ARGS $KUBELET_EXTRA_ARGS $ curl -k https://localhost:10250/containerLogs/kube-system/weave-net-arm64-4t2xv/weave Forbidden (user=system:anonymous, verb=get, resource=nodes, subresource=proxy) $ curl --cert /etc/kubernetes/pki/apiserver-kubelet-client.crt --key /etc/kubernetes/pki/apiserver-kubelet-client.key -k https://localhost:10250/containerLogs/kube-system/weave-net-arm64-4t2xv/weave [Works!!] ``` Release note: ```release-note NONE ``` @liggitt @deads2k	2017-01-24 01:57:11 -08:00
bruceauyeung	21e49646b8	fix incorrect parameter passing Signed-off-by: bruceauyeung <ouyang.qinhua@zte.com.cn>	2017-01-24 14:37:57 +08:00
Clayton Coleman	9009c1ac14	generated: informer,client	2017-01-23 17:52:47 -05:00
Clayton Coleman	469df12038	refactor: move ListOptions references to metav1	2017-01-23 17:52:46 -05:00
Clayton Coleman	c12344b3b8	Tests that check metav1	2017-01-23 16:53:19 -05:00
Clayton Coleman	f623a8c908	Make all groups use metav1.AddToGroupVersion for ListOptions	2017-01-23 16:53:18 -05:00
Clayton Coleman	93e7c60ae0	Generators should reference metav1.ListOptions (informer,client,fake)	2017-01-23 16:53:18 -05:00
Lucas Käldström	695fb7440e	Fix up the misunderstanding about the apiserver kubelet client cert	2017-01-23 21:45:48 +02:00
Kubernetes Submit Queue	da14a4d836	Merge pull request #40309 from apelisse/complete-owners Automatic merge from submit-queue OWNERS: Update latest OWNERS files These files have been created lately, so we don't have much information about them anyway, so let's just: - Remove assignees and make them approvers - Copy approves as reviewers	2017-01-23 11:24:51 -08:00
Kubernetes Submit Queue	ee986696c8	Merge pull request #40171 from yujuhong/deprecate_nsenter_exec Automatic merge from submit-queue (batch tested with PRs 40251, 40171) Mark --docker-exec-handler deprecated We plan to drop support for the nsenter exec handler in the future. Marking this flag as deprecated to warn the users.	2017-01-23 11:24:09 -08:00
Antoine Pelisse	62af7dd33d	OWNERS: Update latest OWNERS files These files have been created lately, so we don't have much information about them anyway, so let's just: - Remove assignees and make them approvers - Copy approves as reviewers	2017-01-23 10:05:48 -08:00
Kubernetes Submit Queue	5ea80569ae	Merge pull request #40227 from deads2k/client-11-easy Automatic merge from submit-queue make client-go tools/auth and tools/clientcmd authoritative These moved easily. Pure mechanical. I'll have a couple snip pulls for some of the more complicated packages. `pkg/util/homedir` was a transitive that moved with. It was only used in `kubectl` and you'd need it to be consistent with `clientcmd` loading order. @sttts	2017-01-23 09:07:17 -08:00
Kubernetes Submit Queue	071844e35f	Merge pull request #40292 from luxas/kubeadm_node_ca Automatic merge from submit-queue (batch tested with PRs 38445, 40292) kubeadm: Secure apiserver -> kubelet communication and set storage backend to etcd3 What this PR does / why we need it: Switch storage backend to etcd3 Writes ca.crt down to disk so we can set `--client-ca-file=/etc/kubernetes/ca.crt` for the kubelet. Adds --kubelet-client-{certificate,key} to the apiserver args and make it allowed to access the kubelets In some cases the `path` dependency is switched to `filepath` Which issue this PR fixes (optional, in `fixes #<issue number>(, fixes #<issue_number>, ...)` format, will close that issue when PR gets merged): fixes https://github.com/kubernetes/kubeadm/issues/118 fixes https://github.com/kubernetes/kubeadm/issues/129 Special notes for your reviewer: This PR is should make it possible to secure the apiserver -> kubelet communication. Release note: ```release-note NONE ``` @pires @mikedanese @andrewrynhard @liggitt @deads2k	2017-01-23 08:11:08 -08:00
deads2k	335ef747d6	mechanical	2017-01-23 10:03:55 -05:00

1 2 3 4 5 ...

3406 Commits (c436671cca6f2ecff3674e64ef219e4fff02b2a3)