github
/
k3s
mirror of https://github.com/k3s-io/k3s
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
49,480 Commits
32 Branches
881 Tags
633 MiB
Commit Graph

436 Commits (d152e20f41396d73f225f0bc96ecdcb8d34c2be3)

Author SHA1 Message Date
Kevin b7014561c1 Add admission controller to limit pod anti affinity topologykey to node level 2016-05-09 12:23:41 +00:00
k8s-merge-robot 8a04506546 Merge pull request #23009 from uluyol/c-pause 
Automatic merge from submit-queue

Reimplement 'pause' in C - smaller footprint all around

Statically links against musl. Size of amd64 binary is 3560 bytes.

I couldn't test the arm binary since I have no hardware to test it on, though I assume we want it to work on a raspberry pi.

This PR also adds the gcc5/musl cross compiling image used to build the binaries.

@thockin
 2016-05-08 09:29:32 -07:00
Matt Liggett e1fa2a08e5 Regenerate everything. 2016-05-06 17:24:54 -07:00
Kevin 82ba4f077e implement inter pod topological affinity and anti-affinity 2016-05-06 06:46:23 +00:00
Clayton Coleman e0ebcf4216
Split the storage and negotiation parts of Codecs 
The codec factory should support two distinct interfaces - negotiating
for a serializer with a client, vs reading or writing data to a storage
form (etcd, disk, etc). Make the EncodeForVersion and DecodeToVersion
methods only take Encoder and Decoder, and slight refactoring elsewhere.

In the storage factory, use a content type to control what serializer to
pick, and use the universal deserializer. This ensures that storage can
read JSON (which might be from older objects) while only writing
protobuf. Add exceptions for those resources that may not be able to
write to protobuf (specifically third party resources, but potentially
others in the future).
 2016-05-05 12:08:23 -04:00
Clayton Coleman 5622c8a471
Generated files 2016-05-05 12:08:23 -04:00
Muhammed Uluyol f3690e2d5e
build/pause: write in C 
Builds statically against glibc. References to the old pause
image have been updated.
 2016-05-04 21:45:52 -04:00
Hongchao Deng c0071a1595 add flags to enable etcd3 2016-04-28 09:48:16 +08:00
derekwaynecarr 1ff0a793d7 Add generated artifacts for kubelet flags 2016-04-24 19:03:23 -04:00
Wojciech Tyczynski 31e2f8e485 Regenerate files 2016-04-21 14:12:13 +02:00
Prashanth Balasubramanian 0ac10c6cc2 PetSet type, apps apigroup 2016-04-20 18:49:31 -07:00
CJ Cullen 760568796f Masquerade traffic from off-cluster going through kube-proxy. 2016-04-19 21:39:34 -07:00
k8s-merge-robot a275a045d1 Merge pull request #23914 from sky-uk/make-etcd-cache-size-configurable 
Automatic merge from submit-queue

Make etcd cache size configurable

Instead of the prior 50K limit, allow users to specify a more sensible size for their cluster.

I'm not sure what a sensible default is here. I'm still experimenting on my own clusters. 50 gives me a 270MB max footprint. 50K caused my apiserver to run out of memory as it exceeded >2GB. I believe that number is far too large for most people's use cases.

There are some other fundamental issues that I'm not addressing here:
- Old etcd items are cached and potentially never removed (it stores using modifiedIndex, and doesn't remove the old object when it gets updated)
- Cache isn't LRU, so there's no guarantee the cache remains hot. This makes its performance difficult to predict. More of an issue with a smaller cache size.
- 1.2 etcd entries seem to have a larger memory footprint (I never had an issue in 1.1, even though this cache existed there). I suspect that's due to image lists on the node status.

This is provided as a fix for #23323
 2016-04-17 00:06:31 -07:00
Robert Rati 83de3e9733 Added optional delays to starting controller managers. #22669 2016-04-13 09:52:28 -04:00
James Ravn 5bb0595260 Make deserialization cache size configurable 
Instead of the default 50K entries, allow users to specify more sensible
sizes for their cluster.
 2016-04-12 13:42:27 +01:00
AdoHe 1b305ee3bd update kubelet cluster-dns doc 2016-04-01 11:34:34 -04:00
Yifan Gu e817d1e26f *.*: Run hack/update-all.sh, Run hack/update-generated-docs.sh 2016-03-28 17:06:14 -07:00
nikhiljindal 1cccfc7074 Disabling swagger ui by default. Adding a flag to enable it 2016-03-23 13:19:22 -07:00
Marc Lough b6252cb9fc Update generated docs 2016-03-22 20:55:55 +00:00
Brian Grant 532ba5a3c6 Merge pull request #21535 from AdoHe/restore_secure_etcd 
restore ability to run against secured etcd
 2016-03-11 12:14:06 -08:00
AdoHe 7228b9b987 restore ability to run against secured etcd 2016-03-11 11:21:16 -05:00
David McMahon dae84f5306 Update the latestReleaseBranch to release-1.2 in the munger. 2016-03-08 18:59:28 -08:00
Eric Paris ca40c5dccb Fix docs README.md links to kubernetes.github.io 
kubernetes.github.io uses index not README for it's base dir. So we were
linking to the wrong place.
 2016-03-08 10:07:41 -05:00
k8s-merge-robot 2808973503 Merge pull request #22038 from mqliang/daemonset-cache 
Auto commit by PR queue bot
 2016-03-05 03:38:55 -08:00
Eric Paris f334fc4179 Remove all docs which are moving to http://kubernetes.github.io 
All .md files now are only a pointer to where they likely are on the new
site.

All other files are untouched.
 2016-03-04 12:49:17 -05:00
Tim St. Clair 3ad59de829 Garbage collect containers for deleted pods 2016-03-02 14:35:17 -08:00
Dawn Chen a90ac42dd8 Kill docker daemon after configing cbr0 if flag --babysit-daemon is true so that babysitter process can restart it again with proper configurations and checkpoint file. 2016-03-01 16:46:31 -08:00
k8s-merge-robot bef2b8f1ed Merge pull request #21927 from caesarxuchao/fix-404-links 
Auto commit by PR queue bot
 2016-03-01 15:41:32 -08:00
Kel Cecil 0d85a814d8 Rewrite garbage collection page 
Try to make the garbage collection page read
a little easier.
 2016-03-01 16:46:45 -05:00
mqliang 7e1ab26c06 add lookup cache for daemonset 2016-03-01 22:04:56 +08:00
Chao Xu 7a85d54d4e fix links 2016-02-29 13:27:29 -08:00
Casey D e78a6f110a Update Calico link 2016-02-29 09:28:28 -08:00
Wojciech Tyczynski cf7e6d0fc3 Merge pull request #21965 from mqliang/flag-abbreviation 
avoid use abbreviation in flag
 2016-02-29 14:43:26 +01:00
k8s-merge-robot 5703945a29 Merge pull request #21361 from yujuhong/maxpods 
Auto commit by PR queue bot
 2016-02-27 09:18:48 -08:00
k8s-merge-robot 43792754d8 Merge pull request #21469 from wojtek-t/parallel_namespace_deletion 
Auto commit by PR queue bot
 2016-02-27 07:26:49 -08:00
k8s-merge-robot 00d99ac261 Merge pull request #20347 from ericchiang/authz_grpc 
Auto commit by PR queue bot
 2016-02-26 22:00:42 -08:00
Wojciech Tyczynski 506899008f Parallelization of namespace deletion 2016-02-25 16:33:25 +01:00
mqliang 4a9a3aeeea avoid use abbreviation in flag 2016-02-25 17:30:21 +08:00
k8s-merge-robot 33ef7a93a4 Merge pull request #20647 from dcbw/allow-disabling-bridge-nf-call-iptables 
Auto commit by PR queue bot
 2016-02-25 01:27:47 -08:00
mqliang e44e71ca87 make cache size configurable 2016-02-24 22:37:02 +08:00
Yu-Ju Hong a07d1411a8 Change default --max-pods in kubelet to 110 
Also increase maximum dead containers to 240
 2016-02-23 15:37:36 -08:00
Dan Williams 6248939e11 Push responsibility for bridge-nf-call-iptables to kubelet network plugins 
bridge-nf-call-iptables appears to only be relevant when the containers are
attached to a Linux bridge, which is usually the case with default Kubernetes
setups, docker, and flannel.  That ensures that the container traffic is
actually subject to the iptables rules since it traverses a Linux bridge
and bridged traffic is only subject to iptables when bridge-nf-call-iptables=1.

But with other networking solutions (like openshift-sdn) that don't use Linux
bridges, bridge-nf-call-iptables may not be not relevant, because iptables is
invoked at other points not involving a Linux bridge.

The decision to set bridge-nf-call-iptables should be influenced by networking
plugins, so push the responsiblity out to them.  If no network plugin is
specified, fall back to the existing bridge-nf-call-iptables=1 behavior.
 2016-02-23 09:34:59 -06:00
Jeff Lowdermilk c406665b2b Plumb node labels through salt 
Expose node-labels flag on kubelet for gce via a startup script
env var.
 2016-02-22 15:31:34 -08:00
Dawn Chen 699c80b752 Merge pull request #21641 from bprashanth/promisc 
Teach the kubelet about promiscuous mode, take 2
 2016-02-22 15:08:18 -08:00
Eric Chiang 080bdde5c1 *: update documentation for webhook authorizer 2016-02-22 11:39:07 -08:00
Brian Grant 3042f1d1c8 Merge pull request #21300 from soltysh/ds_docs 
Updated label selector for daemon set
 2016-02-22 10:17:56 -08:00
k8s-merge-robot aee2eb3977 Merge pull request #21434 from erictune/job-ga 
Auto commit by PR queue bot
 2016-02-22 00:12:54 -08:00
Prashanth Balasubramanian 2e8ff81de1 Teach the kubelet about --hairpin-mode=promiscuous-bridge. 2016-02-20 22:40:54 -08:00
k8s-merge-robot 0f1043d6df Merge pull request #21299 from wojtek-t/always_event_etcd 
Auto commit by PR queue bot
 2016-02-20 21:03:27 -08:00
Daniel Smith a8b943dddd Revert "Put the container bridge in promiscuous mode." 2016-02-19 23:14:53 -08:00
Prashanth Balasubramanian a694a7ae4b Teach the kubelet about --hairpin-mode=promiscuous-bridge. 2016-02-19 14:59:16 -08:00
Eric Tune b4d454e9d5 Autogenerate. 2016-02-19 09:48:03 -08:00
k8s-merge-robot d792e55e21 Merge pull request #21388 from justinsb/docs_quotas 
Auto commit by PR queue bot
 2016-02-18 18:23:00 -08:00
k8s-merge-robot 5acdb92126 Merge pull request #21177 from laushinka/spelling-fixes 
Auto commit by PR queue bot
 2016-02-18 10:29:49 -08:00
k8s-merge-robot 17325ef6ef Merge pull request #20501 from piosz/hpa-ga 
Auto commit by PR queue bot
 2016-02-18 06:52:39 -08:00
laushinka 7ef585be22 Spelling fixes inspired by github.com/client9/misspell 2016-02-18 06:58:05 +07:00
Madhusudan.C.S 6023d2075c Auto-generated docs and specs. 2016-02-17 15:10:53 -08:00
Madhusudan.C.S 475546be66 Remove the Caveats section from DaemonSet doc because DaemonSet is now enabled by default. 2016-02-17 15:04:31 -08:00
Justin Santa Barbara 98e9985c1b Docs: fix invalid json in quota example 
Fixes #21385
 2016-02-17 10:32:14 -05:00
k8s-merge-robot 1a2f811a3b Merge pull request #20063 from mqliang/imageGC-config 
Auto commit by PR queue bot
 2016-02-17 06:16:45 -08:00
Maciej Szulik eccced231b Updated label selector for daemon set 2016-02-16 12:16:03 +01:00
Wojciech Tyczynski f6dc06bdc7 Always enable second etcd for events 2016-02-16 11:48:46 +01:00
k8s-merge-robot 0e037ac3ce Merge pull request #21176 from davidopp/large-cluster-doc 
Auto commit by PR queue bot
 2016-02-16 01:48:34 -08:00
David Oppenheimer 4a817c7156 Clarify 2016-02-16 01:24:12 -08:00
David Oppenheimer f00e831607 Add PR with new heapster limits. 2016-02-15 23:12:08 -08:00
Piotr Szczesniak e96515f590 Autogenerated conversions, deep copies, types 2016-02-15 21:39:00 +01:00
David Oppenheimer 97e2f4b413 Respond to reviewer comments. 2016-02-15 12:38:31 -08:00
mqliang 641ba92aa3 move minGCAge to ImageGCPolicy and make it configurable 2016-02-15 22:54:54 +08:00
k8s-merge-robot 38e827011b Merge pull request #21005 from liggitt/delete-all 
Auto commit by PR queue bot
 2016-02-14 07:15:09 -08:00
k8s-merge-robot 43fb544a4a Merge pull request #21001 from ericchiang/oidc_groups 
Auto commit by PR queue bot
 2016-02-14 05:24:43 -08:00
David Oppenheimer 8930c4c250 Update cluster-large.md to reflect 1000-node clusters. 2016-02-12 11:35:56 -08:00
Eric Chiang 92d37d5cc5 plugin/pkg/auth/authenticator/token/oidc: get groups from custom claim 2016-02-12 09:58:18 -08:00
derekwaynecarr e5e691ed5f Default lockfile to empty string while alpha 2016-02-12 10:50:17 -05:00
Mike Danese 33c4332b28 autogenerated 2016-02-11 13:14:47 -08:00
Vishnu kannan c3b5d5774c Update flag values for cgroups managed by kubelet. 
Signed-off-by: Vishnu kannan <vishnuk@google.com>
 2016-02-10 17:33:29 -08:00
Vishnu kannan 51e4ccf106 Updating the default values for the cgroups hierarchies that kubelet 
creates for managing the nodes.

Signed-off-by: Vishnu kannan <vishnuk@google.com>
 2016-02-10 16:02:36 -08:00
Vishnu kannan 38efc837b9 Make container runtime's cgroup configurable. 
Use the real cgroups for metrics generation.

Signed-off-by: Vishnu kannan <vishnuk@google.com>
 2016-02-10 16:02:34 -08:00
Jordan Liggitt 3038eec2aa Use a different verb for delete collection 2016-02-10 18:08:46 -05:00
Mike Danese e0ab7f43e7 autogenerated 2016-02-10 11:41:05 -08:00
k8s-merge-robot 71b6b81102 Merge pull request #20076 from derekwaynecarr/namespace_controller_workers 
Auto commit by PR queue bot
 2016-02-10 00:55:57 -08:00
derekwaynecarr 106693d9b3 Refactor namespace controller to use workers, do more delete collection calls 2016-02-09 16:39:13 -05:00
Prashanth Balasubramanian c3a3a2bacd Pipe hairpin-mode flag through kubelet, enable on soak. 2016-02-09 12:12:19 -08:00
Matt Dupre 9925cddc11 Change iptables fwmark to use single configurable bit instead of whole mark space 2016-02-08 11:12:09 +00:00
Madhusudan.C.S 4f9b8b2bfc Link all the ReplicaSet controller boilerplate together. 
1. Enable replica set in controller manager.
2. Enable replica set etcd storage in master package.
3. Add replica set support to kubectl commands.
 2016-02-05 21:05:10 -08:00
k8s-merge-robot fcf9c4a1e4 Merge pull request #19741 from pwittrock/syncfsmetrics 
Auto commit by PR queue bot
 2016-02-05 17:54:22 -08:00
Mike Danese b1743a6887 this is a manual reversion of #20702 
I can't revert with github which says "Sorry, this pull request couldn’t be
reverted automatically. It may have already been reverted, or the content may
have changed since it was merged."

Reverts commit: 0c191e787b
 2016-02-05 16:34:02 -08:00
Phillip Wittrock 3de94cd23c Supply volume fs metrics to server/stats/handler.go 
* Metrics will not be expose until they are hooked up to a handler
* Metrics are not cached and expose a dos vector, this must be fixed before release or the stats should not be exposed through an api endpoint
 2016-02-05 16:00:24 -08:00
k8s-merge-robot 14d74a1c01 Merge pull request #19365 from jsafrane/devel/retry-delete 
Auto commit by PR queue bot
 2016-02-05 09:55:21 -08:00
k8s-merge-robot 266d7aa5b3 Merge pull request #19783 from magicwang-cn/master 
Auto commit by PR queue bot
 2016-02-05 08:53:30 -08:00
Jan Safranek 76b6449715 Retry recycle or delete operation on failure. 
Recycle controller tries to recycle or delete a PV several times.
It stores count of failed attempts and timestamp of the last attempt in
annotations of the PV.

By default, the controller tries to recycle/delete a PV 3 times in
10 minutes interval. These values are configurable by
kube-controller-manager --pv-recycler-maximum-retry=X --pvclaimbinder-sync-period=Y
arguments.
 2016-02-05 17:02:13 +01:00
k8s-merge-robot ae15a4437b Merge pull request #19944 from mwielgus/simple-cm 
Auto commit by PR queue bot
 2016-02-05 06:41:28 -08:00
gmarek 0c191e787b Split controller flags between controllers 2016-02-05 12:17:51 +01:00
Marcin Wielgus bf0c881263 Set Docker custom metric label for cAdvisor if custom metric volume is mounted 2016-02-05 12:00:02 +01:00
magicwang-cn d2cf858560 make watch cache sizes configuratable of kube-apiserver 2016-02-05 15:47:27 +08:00
k8s-merge-robot bb7ad7cd09 Merge pull request #18795 from dcbw/cbr0-network-plugin 
Auto commit by PR queue bot
 2016-02-03 19:46:25 -08:00
Robert Bailey 344a587f34 Document the communication paths between the master and node. 2016-02-03 10:21:22 -08:00
Dan Williams fabb65c13f Add a network plugin that duplicates "configureCBR0" functionality 2016-02-03 10:08:08 -06:00
k8s-merge-robot a7ef693f84 Merge pull request #20464 from thockin/proxymode-iptables 
Auto commit by PR queue bot
 2016-02-03 00:17:38 -08:00
Tim Hockin 7ed83ad4f9 Make kube-proxy default to iptables (regression) 
This was accidentally introduced as part of the component config changes.
 2016-02-02 12:45:11 -08:00
CJ Cullen 04eb90a5d4 Make tunneler hold tunnels open and healthcheck vs. reopening every 5 minutes. 
Also add a test for the Update() logic.
Reordered tunnels vs. storage initialization (prevent a nil ptr panic)
 2016-02-02 12:00:29 -08:00