kubernetes

mirror of https://github.com/k3s-io/kubernetes.git synced 2025-07-24 20:24:09 +00:00

Author	SHA1	Message	Date
Kubernetes Prow Robot	8e56a34195	Merge pull request #102966 from SergeyKanzhelev/deprecateDynamicKubeletConfig deprecate and disable by default DynamicKubeletConfig feature flag	2021-07-07 17:05:15 -07:00
Kubernetes Prow Robot	ac554af79b	Merge pull request #103142 from serathius/etcd-3.5.0 Upgrade etcd to 3.5.0	2021-07-07 12:40:22 -07:00
Kubernetes Prow Robot	5e3bed6399	Merge pull request #101433 from SergeyKanzhelev/patch-1 Make the service account error more apparent	2021-07-05 03:23:13 -07:00
Stephen Augustus	c24dfe528a	cluster,hack: Use community infra GCS bucket for retrieving CI builds Signed-off-by: Stephen Augustus <foo@auggie.dev>	2021-07-03 17:04:54 -04:00
Sergey Kanzhelev	dffc2a60a2	deprecate and disable by default DynamicKubeletConfig feature flag	2021-07-02 23:53:11 +00:00
Kubernetes Prow Robot	57720afb7e	Merge pull request #103387 from SergeyKanzhelev/makeSureToSplitNPDHashesByArch make sure to split NPD hashes by architecture when upgrading to 0.8.9	2021-07-02 13:38:46 -07:00
Kubernetes Prow Robot	a331cf74b7	Merge pull request #102050 from pohly/fix/deflake-metrics-proxy remove metrics proxy	2021-07-02 12:30:10 -07:00
Marian Lobur	5d80d6e7c3	Make cpu request of kube proxy configurable by env variable.	2021-07-02 16:00:56 +02:00
Patrick Ohly	c91496dda0	cluster: enable debug handlers on GCE master nodes This is needed for testing metrics support via the secure port of kube-scheduler and kube-controller-manager. To access that port, port-forwarding is used.	2021-07-02 10:38:49 +02:00
Piotr Tabor	de442ef860	Retry hostname->IP: [Errno -2] Name or service not known During cluster configuration, the hostname is getting resolved to IP, as etcd requires IP address as listening address. Due to connectivity flakes or delayed network inititalization, sometimes the IP fails to be resolved to a name with following error: ``` [Errno -2] Name or service not known ``` that leads to attempt to run etcd with empty flag. The PR adds a proper retry (up to 5 minutes) in case the connectivity problems happens. I considered alternatives like: `getent hosts foo`, but unfortunetelly thay can return IPv6 that etcd is not ready for (yet).	2021-07-01 12:20:07 +02:00
Sergey Kanzhelev	210c610d66	make sure to split NPD hashes by architecture when upgrading to 0.8.9	2021-07-01 08:12:35 +00:00
Kubernetes Prow Robot	d787eaa4d5	Merge pull request #103332 from mcshooter/updateNPDVersion Update NPD release version and include windows defender config	2021-06-30 01:19:02 -07:00
Kubernetes Prow Robot	61ee139a08	Merge pull request #103070 from jeremyje/logspam GCE Windows: Upgrade to flb-exporter v0.17.0 which reduces log spam.	2021-06-29 18:29:02 -07:00
Michelle Tandya	03f85e9ade	Update NPD release version and include windows defender config	2021-06-30 00:00:32 +00:00
Kubernetes Prow Robot	ebcb4a2d88	Merge pull request #103104 from pacoxu/npd-088 update npd to v0.8.8	2021-06-29 02:30:40 -07:00
pacoxu	ffdf3f5007	update node-problem-detector npd to v0.8.8 Signed-off-by: pacoxu <paco.xu@daocloud.io> Co-Authored-By: vteratipally <vteratipally@users.noreply.github.com>	2021-06-29 09:35:32 +08:00
Marek Siarkowicz	ebe550bd48	Upgrade etcd to 3.5.0	2021-06-24 09:15:17 +02:00
Kubernetes Prow Robot	e120459000	Merge pull request #102952 from wpedrak/master Specify etcdctl version in livenessProbe	2021-06-22 18:28:22 -07:00
pacoxu	f05f30943d	kube-apiserver in gce: use --api-audiences as --service-account-api-audiences is deprecated Signed-off-by: pacoxu <paco.xu@daocloud.io>	2021-06-22 11:09:46 +08:00
Jeremy Edwards	44360b315c	GCE Windows: Upgrade to flb-exporter v0.17.0 which reduces log spam.	2021-06-21 23:46:27 +00:00
Jeremy Edwards	7839668877	GCE Windows: Set TCP/IP parameters to keep idle connections alive on GCE.	2021-06-21 23:00:32 +00:00
Mauricio Poppe	e2061cfcd8	Expose envvar CSI_PROXY_VERSION	2021-06-21 18:33:23 +00:00
wpedrak	6cb448c10e	Specify etcdctl version for livenessProbe `--command-timeout` is supported in `ETCDCTL_API` version 3 and it is NOT supported in `ETCDCTL_API` version 2. Up to etcd 3.3 (inclusive) default version of `ETCDCTL_API` was 2. This change explicitly defines used `ETCDCTL_API` and allows usage of etcd versions below 3.4.	2021-06-21 16:12:32 +02:00
Vinayak Goyal	774d228637	remove the path if it exists before writing pki data. if setfacl is called before chmod g+r at anypoint during the lifetime of the cluster then the default group does not have read permissions on the file. so we explicitly grant the default group read permissions. See https://gist.github.com/mmdriley/85ca34f711acbec4b1b94902add488e5 for a repro.	2021-06-18 11:03:37 -07:00
Kubernetes Prow Robot	b43e4ec89b	Merge pull request #102857 from ingvagabund/drop-kube-scheduler-insecure-port-bits kube-scheduler: stop using insecure serving bits	2021-06-15 13:42:12 -07:00
Kubernetes Prow Robot	b766721332	Merge pull request #102814 from cheftako/master Update K/K to use ANP v0.0.20	2021-06-14 19:00:33 -07:00
Jan Chaloupka	7560f33e27	kube-scheduler: stop using insecure serving bits	2021-06-14 22:50:53 +02:00
Kubernetes Prow Robot	1400be60ff	Merge pull request #102495 from jeremyje/fb177 GCE Windows: Upgrade to fluent-bit 1.7.7, 1.7.6 had a major regression.	2021-06-11 17:03:01 -07:00
Walter Fender	9f7d61c520	Upgrade ANP components to v0.0.20. Pick up new metrics to help with debugging and monitoring. Pick up GRPC keep alive on frontend tunnel. Server now using apps/options.	2021-06-11 09:02:04 -07:00
Joseph Anttila Hall	9d514b2de4	Konnectivity: tune flags for larger clusters (5k nodes).	2021-06-10 14:05:44 -07:00
Marek Siarkowicz	12447bc803	Upgrade etcd server version to 3.5.0-rc.0	2021-06-09 17:00:05 +02:00
Kubernetes Prow Robot	028bffba58	Merge pull request #102661 from Jefftree/patch-4 Default GCE testing to using konnectivity	2021-06-07 11:45:08 -07:00
Kubernetes Prow Robot	3d2a7c146e	Merge pull request #102370 from JacobX33/master Remove set errexit from etcd manifest	2021-06-07 08:16:40 -07:00
Jeffrey Ying	7a63dff88b	Update konnectivity default	2021-06-07 11:06:28 -04:00
Kubernetes Prow Robot	9d27400fe2	Merge pull request #102040 from njuptlzf/fix_conversion Fix auditing failed of request: encoding failed	2021-06-05 19:58:38 -07:00
njuptlzf	7b0fbb7292	add audit log test cases for cross-group subresource	2021-06-06 09:52:05 +08:00
Kubernetes Prow Robot	74af3b712d	Merge pull request #102297 from deads2k/ssh-tunnels remove --ssh- options, deprecated 13 releases, that only work on GCE	2021-06-05 10:40:50 -07:00
Kubernetes Prow Robot	e6a8bc9fbe	Merge pull request #90368 from serathius/remove-legacy-metrics Remove legacy metrics client from podautoscaler	2021-06-05 08:44:38 -07:00
Marek Siarkowicz	4ebc0c94a4	Remove legacy metrics client from podautoscaler	2021-06-04 23:06:32 +02:00
Paco Xu	7f06d0d553	add NoExecute toleration for konnectivity agent	2021-06-04 17:39:02 +08:00
David Eads	ae603a38bc	remove -ssh-user from cluster scripts for GCE	2021-06-03 17:53:09 -04:00
Jeremy Edwards	47a7fcb17b	GCE Windows: Only create NPD kubeconfig when the file path is defined.	2021-06-02 21:15:45 +00:00
Walter Fender	355be99390	Default GCE testing to using konnectivity Turning GRPC based Konnectivity testing on id advance of removing the SSHTunnel code. https://testgrid.k8s.io/sig-api-machinery-network-proxy#ci-kubernetes-e2e-gci-gce-network-proxy-grpc&width=25 shows the feature to be stable and it should remain that way.	2021-06-01 16:53:41 -07:00
Jeremy Edwards	3cb4f3e1bf	GCE Windows: Upgrade to fluent-bit 1.7.7, 1.7.6 had a major regression.	2021-06-01 16:25:21 +00:00
Kubernetes Prow Robot	bc8acbc43e	Merge pull request #102328 from lentzi90/update-cni-plugins Update CNI plugins v0.9.1	2021-05-28 10:16:46 -07:00
Jakub Sroka	ac17d03e76	Remove set errexit from etcd manifest There were cases where this caused etcd to crashloop. It seems lesser evil to let migrator fail instead.	2021-05-27 14:25:35 +02:00
Kubernetes Prow Robot	d541872f9a	Merge pull request #102239 from Haleygo/clean-up-AlgorithmProvider-flag-and-pkg clean up algorithmprovider pkg and remove scheduler deprecated algorithm-provider flag	2021-05-27 00:54:23 -07:00
Lennart Jern	507710b50f	Update CNI plugins v0.9.1 ref: https://github.com/containernetworking/plugins/releases/tag/v0.9.1 Signed-off-by: Lennart Jern <lennart.jern@est.tech>	2021-05-26 11:02:04 +03:00
Haleygo	2769e99dba	remove scheduler deprecated algorithm-provider flag and clean up algorithmprovider pkg	2021-05-26 13:19:44 +08:00
Sascha Grunert	b167fc24d7	Update pause image to v3.5 Update dependencies and the test images to use pause 3.5. We also provide a changelog entry for the new container image version. Signed-off-by: Sascha Grunert <sgrunert@redhat.com>	2021-05-25 09:04:46 +02:00
Kubernetes Prow Robot	b876623070	Merge pull request #102264 from jeremyje/fb176 Upgrade Fluent-Bit 1.7.6.	2021-05-24 21:49:29 -07:00
Kubernetes Prow Robot	06d44d2f42	Merge pull request #101168 from mikedanese/warning add a warning about the filter table	2021-05-24 21:48:40 -07:00
walter	13ab65d356	Upgrade konnectivity-client for GRPC connection fixes The v0.0.19 Konnectivity client includes several significant fixes to prevent the GRPC tunnel between the KAS and the APIServer Network Proxy from becoming blocked/wedged. Importantly it picks up the fix for kubernetes-sigs/apiserver-network-proxy#167. We believe this will also fix many of the failures currently seen on https://testgrid.k8s.io/sig-api-machinery-network-proxy#ci-kubernetes-e2e-gci-gce-network-proxy-grpc&width=5.	2021-05-24 14:53:30 -07:00
Jeremy Edwards	54f3eb42e9	Upgrade Fluent-Bit 1.7.6.	2021-05-24 19:51:00 +00:00
Kubernetes Prow Robot	77937b1e8e	Merge pull request #101628 from bobbypage/addon-termination-handler Remove node termination handler addon	2021-05-24 11:31:39 -07:00
SataQiu	ff18e391e9	cleanup useless 'scheduler.alpha.kubernetes.io/critical-pod' annotation	2021-05-19 17:46:35 +08:00
Kubernetes Prow Robot	e830610854	Merge pull request #101539 from jeremyje/installnpd Install Node Problem Detector on GCE Windows nodes	2021-05-18 20:16:50 -07:00
Jeremy Edwards	09f9537338	Install Node Problem Detector on GCE Windows nodes	2021-05-15 16:14:17 +00:00
Jeremy Edwards	2f87f280fe	GCE Windows: Upgrade to fluent-bit 1.7.5	2021-05-14 21:23:30 +00:00
Kubernetes Prow Robot	e8cf412e5e	Merge pull request #101881 from vinayakankugoyal/konnectivity Update konnectivity network proxy server to run as non-root, by defau…	2021-05-13 23:16:04 -07:00
Sergey Kanzhelev	72fe1b722c	Make the service account error more apparent	2021-05-14 04:39:24 +00:00
Vinayak Goyal	b951b9349f	Update konnectivity network proxy server to run as non-root, by default in kube-up.	2021-05-13 12:35:34 -07:00
Avritt Rohwer	0a5a697882	Fix bug in retry-forever usage. - Push retry-forever wrapping to curl invocations. - Collect curl retry flags into a single variable. - Remove 'sudo: false' in master.yaml, is unnecessary and breaks older cloud-init versions. - Change log-error status reason to be more accurate. - Fix the some 'python' invocations to 'python3'.	2021-05-12 09:22:20 -07:00
Kubernetes Prow Robot	1bd00776b5	Merge pull request #101874 from tallclair/owners Remove tallclair for gce owners	2021-05-10 13:49:48 -07:00
Kubernetes Prow Robot	7563d3092e	Merge pull request #96216 from knight42/refactor/disable-insecure-port-in-ctrler-mgr refactor: disable insecure serving in controller-manager	2021-05-10 13:49:36 -07:00
Tim Allclair	9d349b6d21	Remove tallclair for gce owners	2021-05-10 10:21:17 -07:00
Kubernetes Prow Robot	8b1c82a34c	Merge pull request #101772 from swetharepakula/bump-glbc-image Update glbc image to v1.12.0	2021-05-06 22:05:02 -07:00
Kubernetes Prow Robot	ca0c04e4d3	Merge pull request #101164 from vinayakankugoyal/apiservernonroot Run control-plane as non root in kube-up.	2021-05-06 17:33:14 -07:00
Swetha Repakula	8c8db0d8e9	Update glbc image to v1.12.0 - glbc now uses networking.k8s.io/v1 Ingress	2021-05-06 15:20:05 -07:00
Kubernetes Prow Robot	1f3fd1cb80	Merge pull request #101751 from vinayakankugoyal/sshproxy Recursive chown the /etc/srv/sshproxy if kube-apiserver is running as…	2021-05-06 15:15:51 -07:00
Kubernetes Prow Robot	8955f55fcf	Merge pull request #101678 from vinayakankugoyal/goodbye-basicauth Remove remnants of basic auth from cluster bootstrap.	2021-05-06 14:14:14 -07:00
Vinayak Goyal	6aa495ddc6	Revert - Recursive chown the /etc/srv/sshproxy if kube-apiserver is running as non root. This way if a key already exists we will be able to read it.	2021-05-06 14:02:53 -07:00
Kubernetes Prow Robot	add13090e2	Merge pull request #101732 from spencer-p/master Promote kube-addon-manager to v9.1.5	2021-05-05 18:49:17 -07:00
Vinayak Goyal	487583bd0a	Recursive chown the /etc/srv/sshproxy if kube-apiserver is running as non root. This way if a key already exists we will be able to read it.	2021-05-05 15:23:04 -07:00
Vinayak Goyal	406ceae991	Recursive chown the /etc/srv/sshproxy if kube-apiserver is running as non root. This way if a key already exists we will be able to read it.	2021-05-05 14:49:59 -07:00
Vinayak Goyal	5d8c89b164	Run control-plane as non root in kube-up.	2021-05-05 14:46:28 -07:00
Jeremy Edwards	daa5be1d01	GCE Windows: Do not install docker when containerd CRI is selected.	2021-05-05 21:06:33 +00:00
Kubernetes Prow Robot	7d176851f2	Merge pull request #100612 from pacoxu/patch-8 kubeadm: upgrade etcd to 3.4.13-3	2021-05-05 07:11:27 -07:00
Spencer Peterson	a119b767d0	Promote kube-addon-manager to v9.1.5 Change-Id: Iffebad61634831b0c34eb54517a2543c75c55d68	2021-05-04 12:14:52 -07:00
David Porter	dac06aefb0	Revert "Revert "cluster: Use python3 everywhere"" This reverts commit `7038338e0f`.	2021-05-03 21:43:15 -07:00
Jian Zeng	e481d99965	refactor: disable insecure serving in controller-manager Now the following flags have no effect and would be removed in v1.24: * `--port` * `--address` The insecure port flags `--port` may only be set to 0 now. Signed-off-by: Jian Zeng <zengjian.zj@bytedance.com>	2021-05-03 00:01:49 +08:00
Kubernetes Prow Robot	c5b900b69c	Merge pull request #97399 from davidxia/comment-typo Fix typo in comment	2021-05-01 04:57:59 -07:00
Vinayak Goyal	b87762966d	Remove remnants of basic auth from cluster bootstrap.	2021-04-30 11:23:14 -07:00
Jeremy Edwards	5c713379a0	GCE Windows: mkdir -p fluent-bit pos-files directory.	2021-04-29 22:52:38 +00:00
David Porter	e02ff0687e	Remove node termination handler addon	2021-04-29 14:42:23 -07:00
Kubernetes Prow Robot	f631c0e520	Merge pull request #101271 from jeremyje/fixfb Fix fluent-bit configuration for GCE Windows.	2021-04-27 19:06:49 -07:00
Paco Xu	7038338e0f	Revert "cluster: Use python3 everywhere"	2021-04-26 11:21:44 +08:00
David Porter	3f87f4f278	Use python3 everywhere	2021-04-23 14:33:58 -07:00
Kubernetes Prow Robot	ae35c6f10c	Merge pull request #101255 from basantsa1989/stack-type Adding stack-type to gce cloud config (to be used for dual stack in legacy-cloud-providers gce code)	2021-04-22 15:55:28 -07:00
Jeremy Edwards	e62301c87d	Fix fluent-bit configuration for GCE Windows.	2021-04-22 20:04:54 +00:00
Kubernetes Prow Robot	6aa683e9cf	Merge pull request #100639 from zshihang/proxy dnat to 169.254.169.252 for metadata server traffic	2021-04-21 11:15:51 -07:00
Ikko Ashimine	f69a2b40da	Fix typo in gci/README.md becase -> because	2021-04-21 21:35:05 +09:00
Kubernetes Prow Robot	41505f7109	Merge pull request #101176 from jkh52/master kube-master-installation: improve systemd cross-unit robustness.	2021-04-20 00:42:45 -07:00
Kubernetes Prow Robot	46b0ad1327	Merge pull request #101207 from vinayakankugoyal/sshproxy If kube-apiserver is running as non-root then set the permissions of …	2021-04-19 17:24:33 -07:00
Joseph Anttila Hall	05bcc72dc2	kube-master-installation: reboot on failure. Also some minor reliability tweaks.	2021-04-19 17:16:21 -07:00
Vinayak Goyal	94e34da471	If kube-apiserver is running as non-root then set the permissions of /etc/srv/sshproxy accordingly.	2021-04-19 13:16:06 -07:00
Basant Amarkhed	e15d811652	Adding stack-type to cloud config (to be used for dual stack in legacy-cloud-providers code)	2021-04-19 19:06:55 +00:00
Shihang Zhang	297ad30610	dnat to 169.254.169.252 for metadata server traffic	2021-04-19 10:47:51 -07:00
Kubernetes Prow Robot	28c877dcb6	Merge pull request #101043 from benhxy/tls-2 Use GKE specific configuration for kubeconfig file generation	2021-04-16 11:54:51 -07:00
Kubernetes Prow Robot	7ecd93ea1e	Merge pull request #100764 from benhxy/tls Use GKE specific configuration for kube-apiserver SNI cert	2021-04-15 19:52:22 -07:00
Jeremy Edwards	c22f001a1b	GCE Windows: Use authenticated HTTP GET against GCS if VM has cloud-platform scope.	2021-04-15 23:30:19 +00:00
Mike Danese	ba3fc65072	add a warning about the filter table	2021-04-15 16:22:28 -07:00
Kubernetes Prow Robot	0d0d1889ed	Merge pull request #100930 from swetharepakula/update-glbc-image Update glbc image in glbc addon	2021-04-15 12:59:01 -07:00
Kubernetes Prow Robot	24350a922e	Merge pull request #101086 from enj/enj/i/auth_owners_gen Prune stale entries from OWNERS files	2021-04-15 08:27:50 -07:00
pacoxu	9847579699	gcp/kubeadm: upgrade etcd to 3.4.13-3 Signed-off-by: pacoxu <paco.xu@daocloud.io>	2021-04-15 11:19:41 +08:00
Maciej Borsz	493adbada9	Do not grep for curl --help for --retry-connrefused	2021-04-14 08:32:21 +02:00
Swetha Repakula	f882eadbdc	Update glbc image in addon	2021-04-13 19:32:03 -07:00
Kubernetes Prow Robot	f1c037889d	Merge pull request #100770 from avrittrohwer/configure-script-logging Add configure script logging instrumentation	2021-04-13 18:06:42 -07:00
Monis Khan	91241eac9b	Prune stale entries from OWNERS files Signed-off-by: Monis Khan <mok@vmware.com>	2021-04-13 20:54:50 -04:00
Kubernetes Prow Robot	318db993c8	Merge pull request #101020 from cindy52/bugfix/etcd Change file owner of /mnt/disks/master-pd/var/etcd instead of /var/etcd	2021-04-13 12:09:47 -07:00
Avritt Rohwer	d4495183c9	Add configure script logging instrumentation. - Add log functions to facilitate debug logging. - Wrap commands called in main with debug logging. - Configure a systemd service to forward the logs to the serial port. - Add a 'retry-forever' function to harden download steps. - Add default value support to 'get-metadata-value' function. - Fix some spellcheck lints.	2021-04-13 09:30:49 -07:00
Ben Hu	e3270e532c	GKE specific kubeconfig	2021-04-12 22:47:39 +00:00
Ben Hu	ccb742c43c	Resolve comments. Remove kubeconfig changes.	2021-04-12 22:39:53 +00:00
Cindy Guo	03f60f4b60	chown on /mnt/disks/master-pd/var/etcd instead of /var/etcd	2021-04-12 08:21:01 +00:00
Kubernetes Prow Robot	a96000311f	Merge pull request #100956 from saschagrunert/cri-tools Update cri-tools to v1.21.0	2021-04-12 00:35:59 -07:00
Kubernetes Prow Robot	dd95f3ab5a	Merge pull request #100980 from ibabou/update-containerd-path Update the containerd runtime binary path - gce	2021-04-11 06:21:59 -07:00
Kubernetes Prow Robot	99301e672b	Merge pull request #100436 from vinayakankugoyal/apiservernonroot Fix kube-apiserver manifest.	2021-04-10 20:29:35 -07:00
Antonio Ojea	93f4727aab	gce configure containerd default_runtime_name move config to v2	2021-04-11 00:48:22 +02:00
“Ibrahim	ec38cfcd15	Update the containerd runtime binary path - gce	2021-04-09 23:36:58 +00:00
Kubernetes Prow Robot	5b038e6cff	Merge pull request #100635 from cindy52/etcd/rootless Run the etcd as non-root	2021-04-09 05:19:37 -07:00
Sascha Grunert	33e0e035ea	Update cri-tools to v1.21.0 This updates crictl to the latest available release. Signed-off-by: Sascha Grunert <sgrunert@redhat.com>	2021-04-09 11:05:13 +02:00
Kubernetes Prow Robot	16082557cd	Merge pull request #100353 from zshihang/master strip prefix 'v' in coredns version if exists	2021-04-08 20:29:55 -07:00
Kubernetes Prow Robot	96db2323a4	Merge pull request #100041 from vteratipally/update_npd_version bump npd version to latest v0.8.7	2021-04-08 17:10:55 -07:00
Cindy Guo	9f058079d2	run etcd as nonroot Co-authored-by: Vinayak Goyal <vinayakankugoyal@gmail.com>	2021-04-08 20:51:45 +00:00
Ben Hu	a2d094797d	Use GKE specific configuration in startup scripts in GKE deployment.	2021-04-02 00:10:53 +00:00
Vinayak Goyal	4b3271a542	Fix kube-apiserver manifest.	2021-03-21 16:24:56 -07:00
“Ibrahim	bc3f6c1be9	Fix the containerd service check	2021-03-19 23:35:05 +00:00
Shihang Zhang	d313e69c9d	strip prefix 'v' in coredns version if exists	2021-03-18 10:38:06 -07:00
Maciej Szulik	a3a26171d1	Run GCE unit tests as non-root	2021-03-18 12:14:24 +01:00
Kubernetes Prow Robot	158e1464ec	Merge pull request #99971 from ibabou/update-containerd Update containerd config for gce	2021-03-16 15:56:56 -07:00
Kubernetes Prow Robot	0649dfbb52	Merge pull request #99990 from aojea/unboundv fix cluster util.sh unbound variable	2021-03-16 07:24:35 -07:00
Kubernetes Prow Robot	a5b5a685ec	Merge pull request #95655 from vteratipally/docker_daemon_json Moving docker options to daemon.json	2021-03-10 15:00:23 -08:00
varsha teratipally	90983f66e4	Moving docker options to daemon.json As per the new docker guidelines about customizing the options like adding registry-mirrors, moving the options to daemon.json	2021-03-10 19:14:48 +00:00
Varsha Teratipally	82434ec818	bump npd version to latest v0.8.7	2021-03-09 22:48:27 +00:00
Jeremy Edwards	60df5606d6	Add Windows Defender exclusion for unpigz.exe	2021-03-09 19:52:25 +00:00
Antonio Ojea	6787d464ca	fix cluster util.sh unbound variable	2021-03-09 09:18:23 +01:00
“Ibrahim	875396744f	Update containerd config for gce	2021-03-09 01:13:44 +00:00
Kubernetes Prow Robot	2d3acce39b	Merge pull request #99752 from pacoxu/coredns/promote update cluster/dns/coredns to 1.8.0 as kubeadm	2021-03-08 12:07:28 -08:00
Kubernetes Prow Robot	1485c6b76f	Merge pull request #99822 from dekkagaijin/addon Update kube-addon-manager to v9.1.4	2021-03-06 12:50:37 -08:00
Kubernetes Prow Robot	b33b426dd0	Merge pull request #99742 from ibabou/containerd-register Update gce Containerd initialization to handle the runtime existence case	2021-03-06 12:50:05 -08:00
Jake Sanders	fb40ab2cde	Update kube-addon-manager to v9.1.4	2021-03-04 22:39:46 -08:00
pacoxu	2185bb40d5	update clustere/dns/coredns to 1.8.0 as kubeadm	2021-03-05 09:38:15 +08:00
Kubernetes Prow Robot	7c4a9823f5	Merge pull request #99793 from pjh/log-message-fix Repair quotes for some Windows log messages	2021-03-04 13:39:40 -08:00
Kubernetes Prow Robot	9d353ef277	Merge pull request #99691 from amwat/metadata-project [cluster/gce] Target the correct project while adding kubeconfig metadata to the master	2021-03-04 00:29:31 -08:00
“Ibrahim	e58a0905de	Update gce Containerd initialization to handle runtime existence case	2021-03-04 03:46:30 +00:00
Peter Hornyack	bacf7394cd	Repair quotes for some Windows log messages	2021-03-03 12:40:53 -08:00
Amit Watve	d65a46c9c9	Target the correct project while adding master kubeconfig metadata.	2021-03-03 00:47:43 -08:00
Peter Hornyack	3d2e9600d9	Dump detailed service information during Windows node startup	2021-03-02 15:55:40 -08:00
Benjamin Elder	56e092e382	hack/update-bazel.sh	2021-02-28 15:17:29 -08:00
wojtekt	3a5d4d25bf	Set progress-notify-interval to 5s for GCE provider	2021-02-25 17:23:24 +01:00
Vinayak Goyal	c63ff05e6d	Run kube-apiserver as non-root.	2021-02-22 20:48:16 -08:00
Kubernetes Prow Robot	874877fa44	Merge pull request #99216 from ruiwen-zhao/remove_modprobe Remove modprobe configs from configure-helper	2021-02-22 17:24:32 -08:00
Kubernetes Prow Robot	b6e4c1c71a	Merge pull request #99242 from liu-cong/arm64 Add arm64 support for GCE node configuration	2021-02-19 16:55:41 -08:00
Cong Liu	03709c0ece	Add arm64 support for GCE node configuration Fix typo Add TODO	2021-02-19 14:22:26 -08:00
ruiwen-zhao	c053b232ba	Remove modprobe configs from configure-helper	2021-02-18 22:57:44 +00:00
Jeremy Edwards	82417fe763	Add GCE Kubernetes option to enable Windows DSR.	2021-02-17 01:34:36 +00:00
Kubernetes Prow Robot	111d82f87f	Merge pull request #98974 from dekkagaijin/master Update kube-addon-manager image to v9.1.2	2021-02-16 13:45:27 -08:00
Kubernetes Prow Robot	13bcc023f9	Merge pull request #98487 from pjh/readme-e2e Update e2e test instructions in GCE Windows README	2021-02-16 11:55:33 -08:00
Bob Killen	64f1eb7270	cluster/gce: Remove inactive members from OWNERS As a part of cleaning up inactive members (those with no activity within the past 18 months) from OWNERS files, this commit moves gmarek and jingax10 from approvers to emeritus_approvers.	2021-02-14 14:17:52 -05:00
Benjamin Elder	299c561b10	portably configure tempdir in configure-helper.sh fixes a `make test` failure on macOS	2021-02-12 01:15:14 -08:00
Jake Sanders	927eaffe19	Update kube-addon-manager image to v9.1.2	2021-02-11 09:38:39 -08:00
Joakim Roubert	3dd3211c81	Fix shellcheck failures in cluster/gce/gci/configure.sh Signed-off-by: Joakim Roubert <joakimr@axis.com>	2021-02-10 19:23:31 +01:00
Joakim Roubert	8bf2836e41	Fix remaining shellcheck issues in cluster/gce/util.sh Signed-off-by: Joakim Roubert <joakimr@axis.com>	2021-02-10 10:07:45 +01:00
Kubernetes Prow Robot	b87ae556b3	Merge pull request #95865 from joakimr-axis/joakimr-axis_master-helper.sh Fix shellcheck issues in cluster/gce/gci/master-helper.sh	2021-02-09 17:43:00 -08:00
Joakim Roubert	ec9065f2c1	Update after review comment	2021-02-09 09:54:55 +01:00
Joakim Roubert	c33672b010	Update after review comment Change-Id: Icc2281b98a0240e177f6d8b625a8ddc4f4161b79 Signed-off-by: Joakim Roubert <joakimr@axis.com>	2021-02-09 09:50:51 +01:00
Joakim Roubert	251c4111d5	Fix some shellcheck warnings/errors in cluster/gce/util.sh This patch splits declaration and assignment for local variables where shellcheck triggers risk of shadowing warnings. Some missing exports also added, and an unused variable was removed. Signed-off-by: Joakim Roubert <joakim.roubert@axis.com>	2021-02-09 09:50:51 +01:00
Kubernetes Prow Robot	6389c13960	Merge pull request #94463 from joakimr-axis/joakimr-axis_util.sh_internal Fix some shellcheck warnings/errors in cluster/gce/util.sh	2021-02-08 23:51:52 -08:00
Kubernetes Prow Robot	2b7c61b1bb	Merge pull request #98205 from pacoxu/build/pauses update pause image to 3.4.1 and also update the change log	2021-02-08 18:20:58 -08:00
Kubernetes Prow Robot	96a98e50af	Merge pull request #98790 from jkh52/master Bump konnectivity-client to v0.0.15	2021-02-05 16:33:11 -08:00
Kubernetes Prow Robot	ce1ee6461a	Merge pull request #98773 from mtaufen/said-fqdn Use FQDN for SERVICEACCOUNT_ISSUER in tests	2021-02-05 05:40:52 -08:00
pacoxu	d9b63439d2	update gce cluster windows infra image	2021-02-05 21:39:48 +08:00
Joseph Anttila Hall	6812a9c610	Bump network proxy images to v0.0.15	2021-02-05 00:35:33 -08:00
Michelle Tandya	904f0b628b	Disable sample submission and MAPS Reporting from Windows Defender Include logging when setting windows defender preferences Log Window Defender preferences to show configuration changes Move Defender configuration to be a part of Set-PrerequisiteOptions	2021-02-04 23:02:09 +00:00
Michael Taufen	8418fd9b15	Use FQDN for SERVICEACCOUNT_ISSUER in tests	2021-02-04 10:40:40 -08:00
Joakim Roubert	ba7e23620a	Fix some shellcheck warnings/errors in cluster/gce/util.sh This patch uses shell internals instead of sed and awk where suitable and also uses lower/upper classes for tr instead of a-z and A-Z. Signed-off-by: Joakim Roubert <joakim.roubert@axis.com>	2021-01-30 09:32:07 +01:00
Kubernetes Prow Robot	b77c886043	Merge pull request #94456 from joakimr-axis/joakimr-axis_util.sh_shellcheckdisables Fix some shellcheck warnings/errors in cluster/gce/util.sh	2021-01-28 22:49:40 -08:00
Peter Hornyack	8211582e2d	Update e2e test instructions in GCE Windows README	2021-01-27 11:03:47 -08:00
Matthew Cary	9a7dcd36c1	Disallow local loopback for volume hosts Change-Id: Ic356c3f859057153cfad97327f1938792a1a512c	2021-01-26 17:12:51 -08:00
Kubernetes Prow Robot	1a67280508	Merge pull request #98037 from vinayakankugoyal/kube-controller-manager-crp Update configure-helper.sh to early exit from start-kube-controller-m…	2021-01-25 12:38:59 -08:00
Kubernetes Prow Robot	7b3f0cd5ca	Merge pull request #98286 from jeremyje/win20h2 Fix GCE Windows Smoke Test and Support 2004 and 20H2.	2021-01-22 12:21:39 -08:00
Kubernetes Prow Robot	1bb0108574	Merge pull request #98284 from pjh/install-docker-on-node-start GCE Windows: add 20H2; install docker when nodes are started	2021-01-22 11:31:26 -08:00
Peter Hornyack	21592c23e1	GCE Windows: add 20H2; install docker when nodes are started	2021-01-22 09:58:22 -08:00
Jeremy Edwards	7575611fd5	Fix GCE Windows Smoke Test and Support 2004 and 20H2.	2021-01-22 01:14:50 +00:00
Peter Hornyack	313ac4751c	Improve the Windows GCE README	2021-01-21 15:42:37 -08:00
Vinayak Goyal	31807032e0	Update configure-helper.sh to early exit from start-kube-controller-manager if kube-controller-manager is deployed through CRP.	2021-01-20 16:22:46 -08:00
Kubernetes Prow Robot	1bfa1d4619	Merge pull request #98055 from qingsenLi/20210114 fix typo and decs in apiserver_etcd_test.go	2021-01-19 18:49:58 -08:00
Kubernetes Prow Robot	176c4c7916	Merge pull request #96823 from hasheddan/cleanup-cos-doc Cleanup GCI / COS README.md	2021-01-19 17:07:59 -08:00
Peter Hornyack	edd58b1a4e	Repair pigz URL New Windows nodes are failing to start with: windows-startup-script-ps1: Failed to download file from https://storage.googleapis.com/gke-release/winnode/pigz/prod/gke_windows/pigz/release/5/20201104-134221/pigz-$PIGZ_VERSION.zip. With this fix, the nodes start successfully.	2021-01-14 16:12:05 -08:00
Kubernetes Prow Robot	9da11e294f	Merge pull request #97868 from mtaufen/pki-tmpfs Mount /var/lib/kubelet/pki on tmpfs	2021-01-14 10:47:04 -08:00
10177505	deb509a068	fix typo and decs	2021-01-14 16:55:45 +08:00
rajibmitra	69aae7aa6c	Update cri-tools to v1.20.0 Signed-off-by: rajibmitra <rajib.jolite@gmail.com>	2021-01-12 19:02:51 +05:30
Michael Taufen	9f9e235b9d	Mount /var/lib/kubelet/pki on tmpfs This helps avoid some rare instances of corrupt cert files that cause Kubelet to crash-loop after node reboots, e.g. if Kubelet opens the file during the shutdown but is unable to write it.	2021-01-08 18:04:35 -08:00
Kubernetes Prow Robot	8b5aeeedb4	Merge pull request #97742 from benhxy/apiserver-cipher Configure --tls-cipher-suites on kube-apiserver	2021-01-08 13:44:29 -08:00
Ben Hu	d4e75baae1	Fix comment on comment	2021-01-08 20:24:59 +00:00
Jian Zeng	8c1971e17c	chore(gce): pass auth flags to KCM and KS Pass flags `--authentication-kubeconfig` and `--authorization-kubeconfig` to controller-manager and scheduler, so that we could grab metrics from their secure ports in tests.	2021-01-06 12:56:39 +08:00
Ben Hu	624b214481	Configure --tls-cipher-suites on kube-apiserver.	2021-01-06 00:31:39 +00:00
Sergey Kanzhelev	d78db9f161	configure docker on containerd nodes so it wouldn't reserver 172.17 subnet	2020-12-23 18:49:57 +00:00
David Xia	0756e54dfc	Fix typo in comment	2020-12-21 20:02:20 -05:00
Ben Hu	9581c40887	Revert "Use host IP instead of localhost for control plane component kubeconfig files." This reverts commit `49afcfa5f2`.	2020-12-11 22:36:39 +00:00
Kubernetes Prow Robot	0e2bf1e49f	Merge pull request #96470 from jeremyje/gkewinpigz Install pigz for GCE Windows Nodes.	2020-12-11 12:47:30 -08:00
Maciej Borsz	7f09d59215	Migrate etcd's livenessProbe to etcdctl endpoint health. Change-Id: Ie19c844050c75e3d1c4b431d09ba0ac851c5317b	2020-12-11 12:43:02 +01:00
Kubernetes Prow Robot	ee8983705a	Merge pull request #96679 from stmcginnis/appspot-cleanup Remove stale analytics links from docs	2020-12-10 23:17:22 -08:00
Jeremy Edwards	797ad961b8	Fix missing type error in Get-RemoteFile by loading System.Net.Http assembly.	2020-12-10 21:18:15 +00:00
Jeremy Edwards	3b8f32dd90	Install pigz for GCE Windows Nodes.	2020-12-09 06:38:59 +00:00
Kubernetes Prow Robot	cad9a8277d	Merge pull request #97127 from liggitt/revert-etcd-host-ip Revert "iAdd host IP to etcd listen client URLs."	2020-12-08 22:01:52 -08:00
Kubernetes Prow Robot	7b4fc68f52	Merge pull request #97011 from towca/patch-5 Bump Cluster Autoscaler to v1.20.0	2020-12-08 21:06:25 -08:00
Kubernetes Prow Robot	c0b173f108	Merge pull request #96994 from jeremyje/gceowners Add jeremyje to cluster/gce/OWNERS	2020-12-08 21:05:59 -08:00
Kubernetes Prow Robot	d2e7abb153	Merge pull request #96839 from vinayakankugoyal/crp Update configure-helper.sh to early exit from start-kube-scheduler if…	2020-12-08 20:03:51 -08:00
Kubernetes Prow Robot	d63a62d7bb	Merge pull request #96661 from jeremyje/fastboot Significantly improve download artifact latencies on GCE Windows node boot.	2020-12-08 18:35:05 -08:00
Kubernetes Prow Robot	56d7f138de	Merge pull request #96622 from vinayakankugoyal/groupfix If the file already exists we need to grant group read permissions ex…	2020-12-08 17:29:59 -08:00
Jordan Liggitt	8820dc4522	Revert "iAdd host IP to etcd listen client URLs." This reverts commit `8b4e164a78`.	2020-12-08 11:37:13 -05:00
Jeremy Edwards	90fa9de0dc	Add jeremyje to cluster/gce/OWNERS	2020-12-04 23:47:36 +00:00
Kuba Tużnik	9efbd914f6	Bump Cluster Autoscaler to v1.20.0	2020-12-02 11:10:54 +01:00
Jeremy Edwards	155bda010a	Significantly improve download artifact latencies on GCE Windows node boot.	2020-12-02 06:59:51 +00:00
Vinayak Goyal	18644cb1b2	Update configure-helper.sh to early exit from start-kube-scheduler if kube-scheduler is deployed through CRP.	2020-11-24 12:01:22 -08:00
hasheddan	1bf7de6239	Remove broken analytics tracking link Removes embedded tracking pixel which appears to be broken. Signed-off-by: hasheddan <georgedanielmangum@gmail.com>	2020-11-23 18:05:10 -06:00
hasheddan	b24f224ff2	Fix formatting in GCI / COS docs Fixes a few formatting issues in GCI / COS README.md. Signed-off-by: hasheddan <georgedanielmangum@gmail.com>	2020-11-23 18:01:30 -06:00
Kubernetes Prow Robot	b2ecd1b3a3	Merge pull request #96716 from tosi3k/bump-npd-to-v0.8.5 Bump node-problem-detector to v0.8.5	2020-11-21 06:33:33 -08:00
Antoni Zawodny	8f2dd3aaab	Bump node-problem-detector to v0.8.5	2020-11-20 20:00:25 +01:00
Mike Danese	7fc57a207e	gce: move iptables rule to mangle This avoids a conflict with rules that calico installs. Also, acquire the lock everywhere.	2020-11-18 11:28:03 -08:00
Sean McGinnis	be131457ef	Remove stale analytics links from docs Many README files and other docs contained a link to a an appspot tracking app that is no longer active. Following the links leads to an error about Go 1.9 no longer being supported. Go 1.9 support was dropped in appspot in 2019 and disabled June 2020. This also resulted in a broken image link displaying when viewing these files on GitHub. Since the app is no longer functioning, and since it causes a potentially (but granted, minor) confusing error to display, this just removes those links as I don't believe they are needed anymore. Signed-off-by: Sean McGinnis <sean.mcginnis@gmail.com>	2020-11-18 07:04:48 -06:00
Joakim Roubert	f9ca218872	Fix some shellcheck warnings/errors in cluster/gce/util.sh This patch adds shellcheck disables where we deliberately want to have the current code that shellcheck triggers on. Signed-off-by: Joakim Roubert <joakim.roubert@axis.com>	2020-11-17 08:05:54 +01:00
vinayak goyal	c2ea6842a7	If the file already exists we need to grant group read permissions explicitly.	2020-11-16 22:59:30 +00:00
Kubernetes Prow Robot	84d15ca322	Merge pull request #93765 from jeremyje/restartsd Configure StackdriverLogging Windows service to restart on failure.	2020-11-12 23:26:23 -08:00
Kubernetes Prow Robot	9a85031a25	Merge pull request #96027 from lizhuqi/fluentd-config-update Add keep_time_key setting to fluentd configuration	2020-11-12 16:02:39 -08:00
Kubernetes Prow Robot	fd6bd36081	Merge pull request #96389 from Jefftree/kas-013 Bump network proxy to v0.0.14	2020-11-12 11:21:39 -08:00
Jeremy Edwards	26cdcde3d5	Configure StackdriverLogging Windows service to restart on failure.	2020-11-11 21:04:21 -08:00
Kubernetes Prow Robot	8b3da41e8f	Merge pull request #96388 from Jefftree/enable_konn_default Set enable konnectivity service to true by default	2020-11-10 17:53:40 -08:00
Jefftree	58001e847d	Bump kas to v0.0.14	2020-11-10 17:22:41 -08:00
Kubernetes Prow Robot	fe9fd060c9	Merge pull request #96237 from jingxu97/nov/konnect Add nodeSelector for konnectivity daemonSet	2020-11-10 14:45:32 -08:00
Marcel Zięba	6e598a96ff	Forbid creating clusters with more than 100 nodes without vpc-native	2020-11-10 15:58:25 +00:00
Jefftree	c8716d4672	Set enable konnectivity service to true by default	2020-11-09 15:34:35 -08:00
Jing Xu	d6e805b38c	Add nodeSelector for konnectivity daemonSet konnectivity agent daemonSet can only run on Linux node. Add node selector to the yaml file Change-Id: I3a4790bbfe95a39d9b668443d59dcaa72fb4cd0d	2020-11-07 23:12:31 -08:00
Kubernetes Prow Robot	169683b05f	Merge pull request #95975 from jingxu97/oct/csiproxyversion Update csi-proxy version	2020-11-04 14:46:53 -08:00
Kubernetes Prow Robot	f7cfe3ba0f	Merge pull request #95076 from dougsland/deprecate-delete-local-data kubectl: deprecate --delete-local-data	2020-11-03 05:50:15 -08:00
Julie Qi	9987d34016	Add keep_time_key setting to fluentd configuration	2020-10-29 16:44:00 -07:00
wojtekt	eb63da77ea	Allow for configuring etcd progress notify interval on GCE	2020-10-29 15:43:51 +01:00
Kubernetes Prow Robot	7a20fcf6ef	Merge pull request #95890 from barney-s/winlog_add_fluentd If image has stack driver agent installed, use it.	2020-10-28 22:42:59 -07:00
Jing Xu	5790971267	Update csi-proxy version update csi-proxy version to 0.2.2 change log https://github.com/kubernetes-csi/csi-proxy/blob/master/CHANGELOG/CHANGELOG-0.2.2.md Change-Id: I19a7a6776970eb0056287792bb2676cece5b8063	2020-10-28 19:45:45 -07:00
Kubernetes Prow Robot	f3c957c349	Merge pull request #95947 from wojtek-t/bump_gce_master_sizes Update function setting master node size for GCE	2020-10-28 18:36:58 -07:00
Barni S	73916e5a9b	If image has stackdriver agent installed, use it. Check if stackdriver agent is preinstalled in the image. If so configure and use it. Else check for fluentbit agent	2020-10-28 13:34:44 -04:00
Kubernetes Prow Robot	53d63fb748	Merge pull request #95943 from aojea/upgradejob fix unbound variable on upgrade	2020-10-28 06:39:56 -07:00
wojtekt	f69cc2cd96	Update function setting master node size for GCE	2020-10-28 13:04:26 +01:00
Kubernetes Prow Robot	1a645c2135	Merge pull request #95743 from benhxy/apiserver-health Use host IP instead of 127.0.0.1 for kube-apiserver healthcheck.	2020-10-28 04:03:56 -07:00
Antonio Ojea	7c3bd972e9	fix unbound variable on upgrade	2020-10-28 09:05:29 +01:00
Kubernetes Prow Robot	3523555aab	Merge pull request #95771 from vinayakankugoyal/fluentbit Grant group KUBE_POD_LOG_READERS_GROUP access to read pod logs on gke…	2020-10-27 10:36:48 -07:00
Ben Hu	8416c5cc51	Use host IP instead of 127.0.0.1 for kube-apiserver healthcheck.	2020-10-27 16:25:27 +00:00
Joakim Roubert	434611b3fb	Fix shellcheck issues in cluster/gce/gci/master-helper.sh Based on PR 88582 by gavinfish that was closed due to inactivity. Contains a few updates. Signed-off-by: Joakim Roubert <joakim.roubert@axis.com>	2020-10-27 08:58:48 +01:00
Kubernetes Prow Robot	557885d5d7	Merge pull request #91788 from rahulkjoshi/detect-local-mode Add option to specify detect-local-mode during cluster configuration	2020-10-26 10:25:02 -07:00

... 3 4 5 6 7 ...

3727 Commits