kubernetes

mirror of https://github.com/k3s-io/kubernetes.git synced 2025-07-30 23:15:14 +00:00

Author	SHA1	Message	Date
Jeremy Edwards	c22f001a1b	GCE Windows: Use authenticated HTTP GET against GCS if VM has cloud-platform scope.	2021-04-15 23:30:19 +00:00
Mike Danese	ba3fc65072	add a warning about the filter table	2021-04-15 16:22:28 -07:00
Kubernetes Prow Robot	0d0d1889ed	Merge pull request #100930 from swetharepakula/update-glbc-image Update glbc image in glbc addon	2021-04-15 12:59:01 -07:00
Kubernetes Prow Robot	24350a922e	Merge pull request #101086 from enj/enj/i/auth_owners_gen Prune stale entries from OWNERS files	2021-04-15 08:27:50 -07:00
pacoxu	9847579699	gcp/kubeadm: upgrade etcd to 3.4.13-3 Signed-off-by: pacoxu <paco.xu@daocloud.io>	2021-04-15 11:19:41 +08:00
Maciej Borsz	493adbada9	Do not grep for curl --help for --retry-connrefused	2021-04-14 08:32:21 +02:00
Swetha Repakula	f882eadbdc	Update glbc image in addon	2021-04-13 19:32:03 -07:00
Kubernetes Prow Robot	f1c037889d	Merge pull request #100770 from avrittrohwer/configure-script-logging Add configure script logging instrumentation	2021-04-13 18:06:42 -07:00
Monis Khan	91241eac9b	Prune stale entries from OWNERS files Signed-off-by: Monis Khan <mok@vmware.com>	2021-04-13 20:54:50 -04:00
Kubernetes Prow Robot	318db993c8	Merge pull request #101020 from cindy52/bugfix/etcd Change file owner of /mnt/disks/master-pd/var/etcd instead of /var/etcd	2021-04-13 12:09:47 -07:00
Avritt Rohwer	d4495183c9	Add configure script logging instrumentation. - Add log functions to facilitate debug logging. - Wrap commands called in main with debug logging. - Configure a systemd service to forward the logs to the serial port. - Add a 'retry-forever' function to harden download steps. - Add default value support to 'get-metadata-value' function. - Fix some spellcheck lints.	2021-04-13 09:30:49 -07:00
Ben Hu	e3270e532c	GKE specific kubeconfig	2021-04-12 22:47:39 +00:00
Ben Hu	ccb742c43c	Resolve comments. Remove kubeconfig changes.	2021-04-12 22:39:53 +00:00
Cindy Guo	03f60f4b60	chown on /mnt/disks/master-pd/var/etcd instead of /var/etcd	2021-04-12 08:21:01 +00:00
Kubernetes Prow Robot	a96000311f	Merge pull request #100956 from saschagrunert/cri-tools Update cri-tools to v1.21.0	2021-04-12 00:35:59 -07:00
Kubernetes Prow Robot	dd95f3ab5a	Merge pull request #100980 from ibabou/update-containerd-path Update the containerd runtime binary path - gce	2021-04-11 06:21:59 -07:00
Kubernetes Prow Robot	99301e672b	Merge pull request #100436 from vinayakankugoyal/apiservernonroot Fix kube-apiserver manifest.	2021-04-10 20:29:35 -07:00
Antonio Ojea	93f4727aab	gce configure containerd default_runtime_name move config to v2	2021-04-11 00:48:22 +02:00
“Ibrahim	ec38cfcd15	Update the containerd runtime binary path - gce	2021-04-09 23:36:58 +00:00
Kubernetes Prow Robot	5b038e6cff	Merge pull request #100635 from cindy52/etcd/rootless Run the etcd as non-root	2021-04-09 05:19:37 -07:00
Sascha Grunert	33e0e035ea	Update cri-tools to v1.21.0 This updates crictl to the latest available release. Signed-off-by: Sascha Grunert <sgrunert@redhat.com>	2021-04-09 11:05:13 +02:00
Kubernetes Prow Robot	16082557cd	Merge pull request #100353 from zshihang/master strip prefix 'v' in coredns version if exists	2021-04-08 20:29:55 -07:00
Kubernetes Prow Robot	96db2323a4	Merge pull request #100041 from vteratipally/update_npd_version bump npd version to latest v0.8.7	2021-04-08 17:10:55 -07:00
Cindy Guo	9f058079d2	run etcd as nonroot Co-authored-by: Vinayak Goyal <vinayakankugoyal@gmail.com>	2021-04-08 20:51:45 +00:00
Ben Hu	a2d094797d	Use GKE specific configuration in startup scripts in GKE deployment.	2021-04-02 00:10:53 +00:00
Vinayak Goyal	4b3271a542	Fix kube-apiserver manifest.	2021-03-21 16:24:56 -07:00
“Ibrahim	bc3f6c1be9	Fix the containerd service check	2021-03-19 23:35:05 +00:00
Shihang Zhang	d313e69c9d	strip prefix 'v' in coredns version if exists	2021-03-18 10:38:06 -07:00
Maciej Szulik	a3a26171d1	Run GCE unit tests as non-root	2021-03-18 12:14:24 +01:00
Kubernetes Prow Robot	158e1464ec	Merge pull request #99971 from ibabou/update-containerd Update containerd config for gce	2021-03-16 15:56:56 -07:00
Kubernetes Prow Robot	0649dfbb52	Merge pull request #99990 from aojea/unboundv fix cluster util.sh unbound variable	2021-03-16 07:24:35 -07:00
Kubernetes Prow Robot	a5b5a685ec	Merge pull request #95655 from vteratipally/docker_daemon_json Moving docker options to daemon.json	2021-03-10 15:00:23 -08:00
varsha teratipally	90983f66e4	Moving docker options to daemon.json As per the new docker guidelines about customizing the options like adding registry-mirrors, moving the options to daemon.json	2021-03-10 19:14:48 +00:00
Varsha Teratipally	82434ec818	bump npd version to latest v0.8.7	2021-03-09 22:48:27 +00:00
Jeremy Edwards	60df5606d6	Add Windows Defender exclusion for unpigz.exe	2021-03-09 19:52:25 +00:00
Antonio Ojea	6787d464ca	fix cluster util.sh unbound variable	2021-03-09 09:18:23 +01:00
“Ibrahim	875396744f	Update containerd config for gce	2021-03-09 01:13:44 +00:00
Kubernetes Prow Robot	2d3acce39b	Merge pull request #99752 from pacoxu/coredns/promote update cluster/dns/coredns to 1.8.0 as kubeadm	2021-03-08 12:07:28 -08:00
Kubernetes Prow Robot	1485c6b76f	Merge pull request #99822 from dekkagaijin/addon Update kube-addon-manager to v9.1.4	2021-03-06 12:50:37 -08:00
Kubernetes Prow Robot	b33b426dd0	Merge pull request #99742 from ibabou/containerd-register Update gce Containerd initialization to handle the runtime existence case	2021-03-06 12:50:05 -08:00
Jake Sanders	fb40ab2cde	Update kube-addon-manager to v9.1.4	2021-03-04 22:39:46 -08:00
pacoxu	2185bb40d5	update clustere/dns/coredns to 1.8.0 as kubeadm	2021-03-05 09:38:15 +08:00
Kubernetes Prow Robot	7c4a9823f5	Merge pull request #99793 from pjh/log-message-fix Repair quotes for some Windows log messages	2021-03-04 13:39:40 -08:00
Kubernetes Prow Robot	9d353ef277	Merge pull request #99691 from amwat/metadata-project [cluster/gce] Target the correct project while adding kubeconfig metadata to the master	2021-03-04 00:29:31 -08:00
“Ibrahim	e58a0905de	Update gce Containerd initialization to handle runtime existence case	2021-03-04 03:46:30 +00:00
Peter Hornyack	bacf7394cd	Repair quotes for some Windows log messages	2021-03-03 12:40:53 -08:00
Amit Watve	d65a46c9c9	Target the correct project while adding master kubeconfig metadata.	2021-03-03 00:47:43 -08:00
Peter Hornyack	3d2e9600d9	Dump detailed service information during Windows node startup	2021-03-02 15:55:40 -08:00
Benjamin Elder	56e092e382	hack/update-bazel.sh	2021-02-28 15:17:29 -08:00
wojtekt	3a5d4d25bf	Set progress-notify-interval to 5s for GCE provider	2021-02-25 17:23:24 +01:00
Vinayak Goyal	c63ff05e6d	Run kube-apiserver as non-root.	2021-02-22 20:48:16 -08:00
Kubernetes Prow Robot	874877fa44	Merge pull request #99216 from ruiwen-zhao/remove_modprobe Remove modprobe configs from configure-helper	2021-02-22 17:24:32 -08:00
Kubernetes Prow Robot	b6e4c1c71a	Merge pull request #99242 from liu-cong/arm64 Add arm64 support for GCE node configuration	2021-02-19 16:55:41 -08:00
Cong Liu	03709c0ece	Add arm64 support for GCE node configuration Fix typo Add TODO	2021-02-19 14:22:26 -08:00
ruiwen-zhao	c053b232ba	Remove modprobe configs from configure-helper	2021-02-18 22:57:44 +00:00
Jeremy Edwards	82417fe763	Add GCE Kubernetes option to enable Windows DSR.	2021-02-17 01:34:36 +00:00
Kubernetes Prow Robot	111d82f87f	Merge pull request #98974 from dekkagaijin/master Update kube-addon-manager image to v9.1.2	2021-02-16 13:45:27 -08:00
Kubernetes Prow Robot	13bcc023f9	Merge pull request #98487 from pjh/readme-e2e Update e2e test instructions in GCE Windows README	2021-02-16 11:55:33 -08:00
Bob Killen	64f1eb7270	cluster/gce: Remove inactive members from OWNERS As a part of cleaning up inactive members (those with no activity within the past 18 months) from OWNERS files, this commit moves gmarek and jingax10 from approvers to emeritus_approvers.	2021-02-14 14:17:52 -05:00
Benjamin Elder	299c561b10	portably configure tempdir in configure-helper.sh fixes a `make test` failure on macOS	2021-02-12 01:15:14 -08:00
Jake Sanders	927eaffe19	Update kube-addon-manager image to v9.1.2	2021-02-11 09:38:39 -08:00
Joakim Roubert	3dd3211c81	Fix shellcheck failures in cluster/gce/gci/configure.sh Signed-off-by: Joakim Roubert <joakimr@axis.com>	2021-02-10 19:23:31 +01:00
Joakim Roubert	8bf2836e41	Fix remaining shellcheck issues in cluster/gce/util.sh Signed-off-by: Joakim Roubert <joakimr@axis.com>	2021-02-10 10:07:45 +01:00
Kubernetes Prow Robot	b87ae556b3	Merge pull request #95865 from joakimr-axis/joakimr-axis_master-helper.sh Fix shellcheck issues in cluster/gce/gci/master-helper.sh	2021-02-09 17:43:00 -08:00
Joakim Roubert	ec9065f2c1	Update after review comment	2021-02-09 09:54:55 +01:00
Joakim Roubert	c33672b010	Update after review comment Change-Id: Icc2281b98a0240e177f6d8b625a8ddc4f4161b79 Signed-off-by: Joakim Roubert <joakimr@axis.com>	2021-02-09 09:50:51 +01:00
Joakim Roubert	251c4111d5	Fix some shellcheck warnings/errors in cluster/gce/util.sh This patch splits declaration and assignment for local variables where shellcheck triggers risk of shadowing warnings. Some missing exports also added, and an unused variable was removed. Signed-off-by: Joakim Roubert <joakim.roubert@axis.com>	2021-02-09 09:50:51 +01:00
Kubernetes Prow Robot	6389c13960	Merge pull request #94463 from joakimr-axis/joakimr-axis_util.sh_internal Fix some shellcheck warnings/errors in cluster/gce/util.sh	2021-02-08 23:51:52 -08:00
Kubernetes Prow Robot	2b7c61b1bb	Merge pull request #98205 from pacoxu/build/pauses update pause image to 3.4.1 and also update the change log	2021-02-08 18:20:58 -08:00
Kubernetes Prow Robot	96a98e50af	Merge pull request #98790 from jkh52/master Bump konnectivity-client to v0.0.15	2021-02-05 16:33:11 -08:00
Kubernetes Prow Robot	ce1ee6461a	Merge pull request #98773 from mtaufen/said-fqdn Use FQDN for SERVICEACCOUNT_ISSUER in tests	2021-02-05 05:40:52 -08:00
pacoxu	d9b63439d2	update gce cluster windows infra image	2021-02-05 21:39:48 +08:00
Joseph Anttila Hall	6812a9c610	Bump network proxy images to v0.0.15	2021-02-05 00:35:33 -08:00
Michelle Tandya	904f0b628b	Disable sample submission and MAPS Reporting from Windows Defender Include logging when setting windows defender preferences Log Window Defender preferences to show configuration changes Move Defender configuration to be a part of Set-PrerequisiteOptions	2021-02-04 23:02:09 +00:00
Michael Taufen	8418fd9b15	Use FQDN for SERVICEACCOUNT_ISSUER in tests	2021-02-04 10:40:40 -08:00
Joakim Roubert	ba7e23620a	Fix some shellcheck warnings/errors in cluster/gce/util.sh This patch uses shell internals instead of sed and awk where suitable and also uses lower/upper classes for tr instead of a-z and A-Z. Signed-off-by: Joakim Roubert <joakim.roubert@axis.com>	2021-01-30 09:32:07 +01:00
Kubernetes Prow Robot	b77c886043	Merge pull request #94456 from joakimr-axis/joakimr-axis_util.sh_shellcheckdisables Fix some shellcheck warnings/errors in cluster/gce/util.sh	2021-01-28 22:49:40 -08:00
Peter Hornyack	8211582e2d	Update e2e test instructions in GCE Windows README	2021-01-27 11:03:47 -08:00
Matthew Cary	9a7dcd36c1	Disallow local loopback for volume hosts Change-Id: Ic356c3f859057153cfad97327f1938792a1a512c	2021-01-26 17:12:51 -08:00
Kubernetes Prow Robot	1a67280508	Merge pull request #98037 from vinayakankugoyal/kube-controller-manager-crp Update configure-helper.sh to early exit from start-kube-controller-m…	2021-01-25 12:38:59 -08:00
Kubernetes Prow Robot	7b3f0cd5ca	Merge pull request #98286 from jeremyje/win20h2 Fix GCE Windows Smoke Test and Support 2004 and 20H2.	2021-01-22 12:21:39 -08:00
Kubernetes Prow Robot	1bb0108574	Merge pull request #98284 from pjh/install-docker-on-node-start GCE Windows: add 20H2; install docker when nodes are started	2021-01-22 11:31:26 -08:00
Peter Hornyack	21592c23e1	GCE Windows: add 20H2; install docker when nodes are started	2021-01-22 09:58:22 -08:00
Jeremy Edwards	7575611fd5	Fix GCE Windows Smoke Test and Support 2004 and 20H2.	2021-01-22 01:14:50 +00:00
Peter Hornyack	313ac4751c	Improve the Windows GCE README	2021-01-21 15:42:37 -08:00
Vinayak Goyal	31807032e0	Update configure-helper.sh to early exit from start-kube-controller-manager if kube-controller-manager is deployed through CRP.	2021-01-20 16:22:46 -08:00
Kubernetes Prow Robot	1bfa1d4619	Merge pull request #98055 from qingsenLi/20210114 fix typo and decs in apiserver_etcd_test.go	2021-01-19 18:49:58 -08:00
Kubernetes Prow Robot	176c4c7916	Merge pull request #96823 from hasheddan/cleanup-cos-doc Cleanup GCI / COS README.md	2021-01-19 17:07:59 -08:00
Peter Hornyack	edd58b1a4e	Repair pigz URL New Windows nodes are failing to start with: windows-startup-script-ps1: Failed to download file from https://storage.googleapis.com/gke-release/winnode/pigz/prod/gke_windows/pigz/release/5/20201104-134221/pigz-$PIGZ_VERSION.zip. With this fix, the nodes start successfully.	2021-01-14 16:12:05 -08:00
Kubernetes Prow Robot	9da11e294f	Merge pull request #97868 from mtaufen/pki-tmpfs Mount /var/lib/kubelet/pki on tmpfs	2021-01-14 10:47:04 -08:00
10177505	deb509a068	fix typo and decs	2021-01-14 16:55:45 +08:00
rajibmitra	69aae7aa6c	Update cri-tools to v1.20.0 Signed-off-by: rajibmitra <rajib.jolite@gmail.com>	2021-01-12 19:02:51 +05:30
Michael Taufen	9f9e235b9d	Mount /var/lib/kubelet/pki on tmpfs This helps avoid some rare instances of corrupt cert files that cause Kubelet to crash-loop after node reboots, e.g. if Kubelet opens the file during the shutdown but is unable to write it.	2021-01-08 18:04:35 -08:00
Kubernetes Prow Robot	8b5aeeedb4	Merge pull request #97742 from benhxy/apiserver-cipher Configure --tls-cipher-suites on kube-apiserver	2021-01-08 13:44:29 -08:00
Ben Hu	d4e75baae1	Fix comment on comment	2021-01-08 20:24:59 +00:00
Jian Zeng	8c1971e17c	chore(gce): pass auth flags to KCM and KS Pass flags `--authentication-kubeconfig` and `--authorization-kubeconfig` to controller-manager and scheduler, so that we could grab metrics from their secure ports in tests.	2021-01-06 12:56:39 +08:00
Ben Hu	624b214481	Configure --tls-cipher-suites on kube-apiserver.	2021-01-06 00:31:39 +00:00
Sergey Kanzhelev	d78db9f161	configure docker on containerd nodes so it wouldn't reserver 172.17 subnet	2020-12-23 18:49:57 +00:00
David Xia	0756e54dfc	Fix typo in comment	2020-12-21 20:02:20 -05:00
Ben Hu	9581c40887	Revert "Use host IP instead of localhost for control plane component kubeconfig files." This reverts commit `49afcfa5f2`.	2020-12-11 22:36:39 +00:00
Kubernetes Prow Robot	0e2bf1e49f	Merge pull request #96470 from jeremyje/gkewinpigz Install pigz for GCE Windows Nodes.	2020-12-11 12:47:30 -08:00
Maciej Borsz	7f09d59215	Migrate etcd's livenessProbe to etcdctl endpoint health. Change-Id: Ie19c844050c75e3d1c4b431d09ba0ac851c5317b	2020-12-11 12:43:02 +01:00
Kubernetes Prow Robot	ee8983705a	Merge pull request #96679 from stmcginnis/appspot-cleanup Remove stale analytics links from docs	2020-12-10 23:17:22 -08:00
Jeremy Edwards	797ad961b8	Fix missing type error in Get-RemoteFile by loading System.Net.Http assembly.	2020-12-10 21:18:15 +00:00
Jeremy Edwards	3b8f32dd90	Install pigz for GCE Windows Nodes.	2020-12-09 06:38:59 +00:00
Kubernetes Prow Robot	cad9a8277d	Merge pull request #97127 from liggitt/revert-etcd-host-ip Revert "iAdd host IP to etcd listen client URLs."	2020-12-08 22:01:52 -08:00
Kubernetes Prow Robot	7b4fc68f52	Merge pull request #97011 from towca/patch-5 Bump Cluster Autoscaler to v1.20.0	2020-12-08 21:06:25 -08:00
Kubernetes Prow Robot	c0b173f108	Merge pull request #96994 from jeremyje/gceowners Add jeremyje to cluster/gce/OWNERS	2020-12-08 21:05:59 -08:00
Kubernetes Prow Robot	d2e7abb153	Merge pull request #96839 from vinayakankugoyal/crp Update configure-helper.sh to early exit from start-kube-scheduler if…	2020-12-08 20:03:51 -08:00
Kubernetes Prow Robot	d63a62d7bb	Merge pull request #96661 from jeremyje/fastboot Significantly improve download artifact latencies on GCE Windows node boot.	2020-12-08 18:35:05 -08:00
Kubernetes Prow Robot	56d7f138de	Merge pull request #96622 from vinayakankugoyal/groupfix If the file already exists we need to grant group read permissions ex…	2020-12-08 17:29:59 -08:00
Jordan Liggitt	8820dc4522	Revert "iAdd host IP to etcd listen client URLs." This reverts commit `8b4e164a78`.	2020-12-08 11:37:13 -05:00
Jeremy Edwards	90fa9de0dc	Add jeremyje to cluster/gce/OWNERS	2020-12-04 23:47:36 +00:00
Kuba Tużnik	9efbd914f6	Bump Cluster Autoscaler to v1.20.0	2020-12-02 11:10:54 +01:00
Jeremy Edwards	155bda010a	Significantly improve download artifact latencies on GCE Windows node boot.	2020-12-02 06:59:51 +00:00
Vinayak Goyal	18644cb1b2	Update configure-helper.sh to early exit from start-kube-scheduler if kube-scheduler is deployed through CRP.	2020-11-24 12:01:22 -08:00
hasheddan	1bf7de6239	Remove broken analytics tracking link Removes embedded tracking pixel which appears to be broken. Signed-off-by: hasheddan <georgedanielmangum@gmail.com>	2020-11-23 18:05:10 -06:00
hasheddan	b24f224ff2	Fix formatting in GCI / COS docs Fixes a few formatting issues in GCI / COS README.md. Signed-off-by: hasheddan <georgedanielmangum@gmail.com>	2020-11-23 18:01:30 -06:00
Kubernetes Prow Robot	b2ecd1b3a3	Merge pull request #96716 from tosi3k/bump-npd-to-v0.8.5 Bump node-problem-detector to v0.8.5	2020-11-21 06:33:33 -08:00
Antoni Zawodny	8f2dd3aaab	Bump node-problem-detector to v0.8.5	2020-11-20 20:00:25 +01:00
Mike Danese	7fc57a207e	gce: move iptables rule to mangle This avoids a conflict with rules that calico installs. Also, acquire the lock everywhere.	2020-11-18 11:28:03 -08:00
Sean McGinnis	be131457ef	Remove stale analytics links from docs Many README files and other docs contained a link to a an appspot tracking app that is no longer active. Following the links leads to an error about Go 1.9 no longer being supported. Go 1.9 support was dropped in appspot in 2019 and disabled June 2020. This also resulted in a broken image link displaying when viewing these files on GitHub. Since the app is no longer functioning, and since it causes a potentially (but granted, minor) confusing error to display, this just removes those links as I don't believe they are needed anymore. Signed-off-by: Sean McGinnis <sean.mcginnis@gmail.com>	2020-11-18 07:04:48 -06:00
Joakim Roubert	f9ca218872	Fix some shellcheck warnings/errors in cluster/gce/util.sh This patch adds shellcheck disables where we deliberately want to have the current code that shellcheck triggers on. Signed-off-by: Joakim Roubert <joakim.roubert@axis.com>	2020-11-17 08:05:54 +01:00
vinayak goyal	c2ea6842a7	If the file already exists we need to grant group read permissions explicitly.	2020-11-16 22:59:30 +00:00
Kubernetes Prow Robot	84d15ca322	Merge pull request #93765 from jeremyje/restartsd Configure StackdriverLogging Windows service to restart on failure.	2020-11-12 23:26:23 -08:00
Kubernetes Prow Robot	9a85031a25	Merge pull request #96027 from lizhuqi/fluentd-config-update Add keep_time_key setting to fluentd configuration	2020-11-12 16:02:39 -08:00
Kubernetes Prow Robot	fd6bd36081	Merge pull request #96389 from Jefftree/kas-013 Bump network proxy to v0.0.14	2020-11-12 11:21:39 -08:00
Jeremy Edwards	26cdcde3d5	Configure StackdriverLogging Windows service to restart on failure.	2020-11-11 21:04:21 -08:00
Kubernetes Prow Robot	8b3da41e8f	Merge pull request #96388 from Jefftree/enable_konn_default Set enable konnectivity service to true by default	2020-11-10 17:53:40 -08:00
Jefftree	58001e847d	Bump kas to v0.0.14	2020-11-10 17:22:41 -08:00
Kubernetes Prow Robot	fe9fd060c9	Merge pull request #96237 from jingxu97/nov/konnect Add nodeSelector for konnectivity daemonSet	2020-11-10 14:45:32 -08:00
Marcel Zięba	6e598a96ff	Forbid creating clusters with more than 100 nodes without vpc-native	2020-11-10 15:58:25 +00:00
Jefftree	c8716d4672	Set enable konnectivity service to true by default	2020-11-09 15:34:35 -08:00
Jing Xu	d6e805b38c	Add nodeSelector for konnectivity daemonSet konnectivity agent daemonSet can only run on Linux node. Add node selector to the yaml file Change-Id: I3a4790bbfe95a39d9b668443d59dcaa72fb4cd0d	2020-11-07 23:12:31 -08:00
Kubernetes Prow Robot	169683b05f	Merge pull request #95975 from jingxu97/oct/csiproxyversion Update csi-proxy version	2020-11-04 14:46:53 -08:00
Kubernetes Prow Robot	f7cfe3ba0f	Merge pull request #95076 from dougsland/deprecate-delete-local-data kubectl: deprecate --delete-local-data	2020-11-03 05:50:15 -08:00
Julie Qi	9987d34016	Add keep_time_key setting to fluentd configuration	2020-10-29 16:44:00 -07:00
wojtekt	eb63da77ea	Allow for configuring etcd progress notify interval on GCE	2020-10-29 15:43:51 +01:00
Kubernetes Prow Robot	7a20fcf6ef	Merge pull request #95890 from barney-s/winlog_add_fluentd If image has stack driver agent installed, use it.	2020-10-28 22:42:59 -07:00
Jing Xu	5790971267	Update csi-proxy version update csi-proxy version to 0.2.2 change log https://github.com/kubernetes-csi/csi-proxy/blob/master/CHANGELOG/CHANGELOG-0.2.2.md Change-Id: I19a7a6776970eb0056287792bb2676cece5b8063	2020-10-28 19:45:45 -07:00
Kubernetes Prow Robot	f3c957c349	Merge pull request #95947 from wojtek-t/bump_gce_master_sizes Update function setting master node size for GCE	2020-10-28 18:36:58 -07:00
Barni S	73916e5a9b	If image has stackdriver agent installed, use it. Check if stackdriver agent is preinstalled in the image. If so configure and use it. Else check for fluentbit agent	2020-10-28 13:34:44 -04:00
Kubernetes Prow Robot	53d63fb748	Merge pull request #95943 from aojea/upgradejob fix unbound variable on upgrade	2020-10-28 06:39:56 -07:00
wojtekt	f69cc2cd96	Update function setting master node size for GCE	2020-10-28 13:04:26 +01:00
Kubernetes Prow Robot	1a645c2135	Merge pull request #95743 from benhxy/apiserver-health Use host IP instead of 127.0.0.1 for kube-apiserver healthcheck.	2020-10-28 04:03:56 -07:00
Antonio Ojea	7c3bd972e9	fix unbound variable on upgrade	2020-10-28 09:05:29 +01:00
Kubernetes Prow Robot	3523555aab	Merge pull request #95771 from vinayakankugoyal/fluentbit Grant group KUBE_POD_LOG_READERS_GROUP access to read pod logs on gke…	2020-10-27 10:36:48 -07:00
Ben Hu	8416c5cc51	Use host IP instead of 127.0.0.1 for kube-apiserver healthcheck.	2020-10-27 16:25:27 +00:00
Joakim Roubert	434611b3fb	Fix shellcheck issues in cluster/gce/gci/master-helper.sh Based on PR 88582 by gavinfish that was closed due to inactivity. Contains a few updates. Signed-off-by: Joakim Roubert <joakim.roubert@axis.com>	2020-10-27 08:58:48 +01:00
Kubernetes Prow Robot	557885d5d7	Merge pull request #91788 from rahulkjoshi/detect-local-mode Add option to specify detect-local-mode during cluster configuration	2020-10-26 10:25:02 -07:00
Kubernetes Prow Robot	5935fcd704	Merge pull request #95766 from towca/jtuznik/ca-params-fix Properly quote flags passed to Cluster Autoscaler	2020-10-23 20:47:00 -07:00
Kubernetes Prow Robot	1f756e4a37	Merge pull request #92669 from Jefftree/netproxy-configure-helper Separate network proxy flag for apiserver egress and starting pods	2020-10-23 16:47:00 -07:00
Vinayak Goyal	83c1ce0225	Grant group KUBE_POD_LOG_READERS_GROUP access to read pod logs on gke control-plane.	2020-10-23 12:14:26 -07:00
Rahul Joshi	889446810c	Add configuration options to specify --detect-local-mode on kube-proxy.	2020-10-23 12:12:59 -07:00
Kubernetes Prow Robot	1257bc5acb	Merge pull request #91474 from cici37/pkgController Cleanup CCM dependencies	2020-10-22 23:17:45 -07:00
Kubernetes Prow Robot	e850fa6a6c	Merge pull request #95209 from benhxy/gke/kubeconfig Use host IP instead of localhost for GKE control plane kubeconfig	2020-10-22 22:15:49 -07:00
Jefftree	0e5d057755	Rename flags	2020-10-22 08:43:28 -07:00
Jefftree	ed52ad3f25	Add SETUP_KONNECTIVITY_SERVICE flag	2020-10-22 08:43:28 -07:00
Jefftree	7820b05467	Separate network proxy flag for apiserver egress and starting pods	2020-10-22 08:43:27 -07:00
Jakub Tużnik	236ade027b	Properly quote flags passed to Cluster Autoscaler In the current implementation, the flags are not put between quotes, and so the Cluster Autoscaler manifest doesn't parse as valid JSON.	2020-10-22 15:10:39 +02:00
Daniel Gutowski	6c8b1ab266	Fix default values for logrotate in /var/log/	2020-10-21 09:18:32 +00:00
Ben Hu	49afcfa5f2	Use host IP instead of localhost for control plane component kubeconfig files. This is a part of work to allow control plane components to be moved off hostNetwork.	2020-10-20 22:47:33 +00:00
Ben Hu	8b4e164a78	iAdd host IP to etcd listen client URLs. Allow kube-apiserver to use host IP to connect to etcd. Update etcd/migrate to allow additional client listening URLs.	2020-10-20 16:43:52 +00:00
cici37	95acec5a3b	Move client_builder to k8s.io/controller-manager	2020-10-19 14:48:22 -07:00
Kubernetes Prow Robot	a5dceab0ce	Merge pull request #95580 from jayunit100/jayunit100/pillarnodelocal support multiple bind records (fie nodelocaldns test regression)	2020-10-16 22:24:12 -07:00
jayunit100	aefe930562	support multiple bind records (fie nodelocaldns test regression), by first replacing PILLAR_ and then replacing other vars.	2020-10-16 14:28:55 -04:00
Barni S	847ae378ef	Fix windows node startup failures. 1. cd to root dir before removing temp installer path. It was failing because we were trying to remove while being in the same dir. 2. Expand variables in a regular string and use it in the command. Expansion was failing in single quotes.	2020-10-15 16:17:22 -04:00
Kubernetes Prow Robot	b3d4b8ed8a	Merge pull request #93912 from barney-s/fluentbit_win Use fluentbit as logging agent. Replace stackdriver	2020-10-14 18:45:50 -07:00
Barni S	bbe7b2ebed	Use fluentbit as logging agent. Replace stackdriver	2020-10-14 18:27:09 -04:00
Kubernetes Prow Robot	5c5d26786e	Merge pull request #94987 from zshihang/fix-upgrade fix upgrade test	2020-10-13 17:23:54 -07:00
Kubernetes Prow Robot	c1e5e6a556	Merge pull request #93836 from jayunit100/salt_cleanup_92835 remove __pillar__ refs	2020-10-11 17:58:47 -07:00
Kubernetes Prow Robot	a4a7b574b3	Merge pull request #94465 from joakimr-axis/joakimr-axis_util.sh_arrays Fix some shellcheck warnings/errors in cluster/gce/util.sh	2020-10-09 20:34:59 -07:00
Kubernetes Prow Robot	33fd5552bb	Merge pull request #95418 from vinayakankugoyal/pki Update write-pki-data to give read permissions to KUBE_PKI_READERS_GR…	2020-10-09 18:08:47 -07:00
Shihang Zhang	079cd8ddc2	fix upgrade test	2020-10-09 15:28:28 -07:00
Kubernetes Prow Robot	4fbf5df52b	Merge pull request #95388 from ii/policy Enable Logging of event requests to audit log in cluster/gce/gci/configure-helper.sh	2020-10-09 14:08:48 -07:00
Hippie Hacker	b1e3a2ac7a	Clarify that we don't audit events due to performance impact	2020-10-09 13:30:20 +13:00
Vinayak Goyal	7cbe8070bc	Update write-pki-data to give read permissions to KUBE_PKI_READERS_GROUP, for components running as non-root to be able to read the credentials.	2020-10-08 16:25:43 -07:00
Joseph Anttila Hall	2f318bdd57	API server: fix default_konnectivity_socket_path typo. Make it consistent with configure-helper.sh	2020-10-08 13:19:05 -07:00
Shihang Zhang	e0dcfbf9c2	make download-or-bust compatible with both sha512/sha1	2020-10-06 15:16:26 -07:00
Kubernetes Prow Robot	446da13de1	Merge pull request #94975 from zshihang/hash replace sha1 with sha512	2020-10-06 13:00:42 -07:00
Joakim Roubert	2868e07b98	Update after code review Change-Id: I89b66f2bdcb68be7eee325e6246183638d3983b3 Signed-off-by: Joakim Roubert <joakimr@axis.com>	2020-10-06 08:40:05 +02:00
Joakim Roubert	62ee0f5a1a	Update cluster/gce/util.sh Co-authored-by: Aaron Crickenberger <spiffxp@google.com>	2020-10-06 08:37:12 +02:00
Joakim Roubert	e924c3568e	Fix some shellcheck warnings/errors in cluster/gce/util.sh This patch fixes the use of arrays. Change-Id: I6c7f7eaf89387ed96c7b2ddf4fbb4627ec2c6075 Signed-off-by: Joakim Roubert <joakim.roubert@axis.com>	2020-10-06 08:37:12 +02:00
Kubernetes Prow Robot	bbbab14216	Merge pull request #95311 from karan/startup-console-logs Send gce node startup scripts logs to console and journal	2020-10-05 17:58:19 -07:00
Kubernetes Prow Robot	3f7e26dece	Merge pull request #95242 from jingxu97/sep/gate Add gate to install CSI proxy	2020-10-05 15:16:42 -07:00
Kubernetes Prow Robot	add19e4680	Merge pull request #95168 from jingxu97/sep/image Update Windows image patch version	2020-10-05 15:16:32 -07:00
Karan Goel	f707db32cc	Send node startup scripts to console and journal	2020-10-05 13:25:28 -07:00
Jing Xu	d02f3a84e1	Add gate to install CSI proxy Add a gate ENABLE_CSI_PROXY to enable/disable csi proxy installation. The default value is true	2020-10-02 16:37:08 -07:00
Kubernetes Prow Robot	deebe6619a	Merge pull request #94457 from joakimr-axis/oakimr-axis_util.sh_cat Fix some shellcheck warnings/errors in cluster/gce/util.sh	2020-10-01 14:39:19 -07:00
Jing Xu	f973c1d96e	Add CSI proxy log to fluentd Add csi proxy log	2020-09-29 22:57:31 -07:00
Jing Xu	ef3e4391c4	Update Windows image patch version Update Windows image version to the latest one. This one includes a fix for unix domain socket	2020-09-29 22:46:38 -07:00
Douglas Schilling Landgraf	625e47aaa2	kubectl: deprecate --delete-local-data The option --delete-local-data according with users is not clear. This patch deprecate --delete-local-data in favor of --delete-emptydir-data. Reference: https://github.com/kubernetes/kubernetes/issues/80228 Signed-off-by: Douglas Schilling Landgraf <dougsland@redhat.com>	2020-09-27 10:03:52 -04:00
Kubernetes Prow Robot	c8ebc8ab75	Merge pull request #95077 from mikedanese/mds-block gce: redirect handshake server requests to metadata-concealment too	2020-09-25 22:36:47 -07:00
Mike Danese	cc5b12cdff	gce: redirect handshake server requests to metadata-concealment too	2020-09-25 17:50:53 -07:00
Kubernetes Prow Robot	b39a9a943f	Merge pull request #94983 from Jefftree/update-netproxy Bump konnectivity-client to v0.0.12	2020-09-25 17:37:02 -07:00
Kubernetes Prow Robot	3777ca7c2a	Merge pull request #94784 from vteratipally/revert-94669-revert-94634-master "Switch cos version to M85""	2020-09-24 20:45:11 -07:00
varsha teratipally	7b2ef398a3	switching to stable version	2020-09-25 00:39:29 +00:00
Shihang Zhang	e99dbbde62	replace sha1 with sha512	2020-09-23 11:27:20 -07:00
Varun Marupadi	04a51cac17	Allow the lifecycle of kube-proxy to be managed independently of the startup scripts for GCE Introduces a new env variable KUBE_PROXY_DISABLE which causes the configure scripts to skip over the creation of both static pods as well as daemonset addons for kube-proxy. When false, the behavior falls back to the default today, which is to rely on the value of KUBE_PROXY_DAEMONSET to decide whether to start static pods on the nodes or an addon on the master.	2020-09-22 20:37:35 -07:00
Jefftree	300c88cf47	Bump network proxy images to v0.0.12	2020-09-22 13:26:56 -07:00
Kubernetes Prow Robot	1bb1702a45	Merge pull request #94458 from joakimr-axis/joakimr-axis_util.sh_calc Fix some shellcheck warnings/errors in cluster/gce/util.sh	2020-09-22 12:23:30 -07:00
Kubernetes Prow Robot	6b39cdf376	Merge pull request #93305 from alculquicondor/lssd-ephemeral Mount kubelet and container runtime rootdir on LSSD	2020-09-22 12:22:06 -07:00
Kubernetes Prow Robot	dbaaed3592	Merge pull request #92140 from ash2k/ash2k/fix-error-check Fix error check logic in test	2020-09-22 12:21:38 -07:00
Jing Xu	0752b78081	Remove testcluster check for csi proxy Remove testcluster check for csi proxy after it is beta	2020-09-18 16:15:17 -07:00
Kubernetes Prow Robot	2aa1cd25f3	Merge pull request #94842 from jingxu97/sep/csiproxy Update csi proxy to v0.2.1	2020-09-17 15:38:47 -07:00
Kubernetes Prow Robot	9707537b72	Merge pull request #94267 from lizhuqi/hostname-override Override hostname with instance name	2020-09-17 04:18:45 -07:00
Jing Xu	8241f9264e	Update csi proxy to v0.2.1 Update csi proxy to v0.2.1	2020-09-16 17:36:06 -07:00
vteratipally	8f22a58dda	Revert "Revert "Switch cos version to M85""	2020-09-14 15:16:41 -07:00
Kubernetes Prow Robot	f5a54e3f58	Merge pull request #94671 from jingxu97/sep/csiproxybeta Update csi-proxy to use beta version	2020-09-14 13:03:25 -07:00
Aldo Culquicondor	2ae4eeb3ea	Mount kubelet and container runtime rootdir on LSSD When environment variable NODE_LOCAL_SSD_EPHEMERAL=true, create a RAID 0 array on all attached SSDs to mount: - kubelet root dir - container runtime root dir - pod logs dir Those directories account for all ephemeral storage. An array is not created when there is only one SSD. Change-Id: I22137f1d83fc19e9ef58a556d7461da43e4ab9bd Signed-off-by: Aldo Culquicondor <acondor@google.com>	2020-09-14 14:32:28 -04:00
David Eads	c7911a384c	remove pod presets	2020-09-14 09:24:40 -04:00
Joakim Roubert	82db7cf4f5	Fix some shellcheck warnings/errors in cluster/gce/util.sh This patch adds quotes for those yaml-quote arguments that do not already have it. Change-Id: Iee0fb79e41aa4aff7de0df93a25aee781e574934 Signed-off-by: Joakim Roubert <joakim.roubert@axis.com>	2020-09-11 08:29:55 +02:00
Kubernetes Prow Robot	1b5802fd5d	Merge pull request #94461 from joakimr-axis/joakimr-axis_util.sh_file Fix some shellcheck warnings/errors in cluster/gce/util.sh	2020-09-10 16:10:29 -07:00
Kubernetes Prow Robot	0627c35411	Merge pull request #93781 from kisieland/allow-to-switch-off-logrotate Disable log rotation of kubernetes and pod logs	2020-09-10 16:10:14 -07:00
Jing Xu	555c8dbd1b	Update csi-proxy to use beta version This PR update csi-proxy version, remove diskutil.exe and set up log file	2020-09-09 18:43:39 -07:00
vteratipally	244718a9eb	Revert "Switch cos version to M85"	2020-09-09 16:52:05 -07:00
varsha teratipally	34467c27f9	Switch cos version to M85	2020-09-08 23:06:19 +00:00
Daniel Gutowski	adf7ed4241	Allow to disable logrotation of kubernetes and pod logs Make logrotate disabled by default	2020-09-03 11:21:44 +00:00
Joakim Roubert	36d056a29b	Fix some shellcheck warnings/errors in cluster/gce/util.sh This patch adds whitespace handling for the $file variable(s). Signed-off-by: Joakim Roubert <joakim.roubert@axis.com>	2020-09-03 12:02:50 +02:00
Joakim Roubert	3f3958deea	Fix some shellcheck warnings/errors in cluster/gce/util.sh This patch cleans up the use of arithmetic shell functionality. Signed-off-by: Joakim Roubert <joakim.roubert@axis.com>	2020-09-03 11:34:03 +02:00
Joakim Roubert	e773c5d19b	Fix some shellcheck warnings/errors in cluster/gce/util.sh This patch removes superfluous use of cat. Signed-off-by: Joakim Roubert <joakim.roubert@axis.com>	2020-09-03 09:07:06 +02:00
Kubernetes Prow Robot	8aaa7515e5	Merge pull request #94374 from jingxu97/Aug/csiproxyservice Start CSI proxy as service	2020-09-02 18:21:40 -07:00
Jing Xu	28ab3488b6	Start CSI proxy as service Now CSI proxy can support starting as service. Update node startup script to create and start it as service	2020-09-02 13:28:09 -07:00
Shihang Zhang	38f040c0a8	bind metadata proxy to 0.0.0.0	2020-09-01 18:34:02 -07:00
Kubernetes Prow Robot	b49724d5fc	Merge pull request #94287 from jingyih/update_etcd_server_3p4p13 Update default etcd server to 3.4.13	2020-09-01 15:35:20 -07:00
Stephen Augustus	e59d9f372d	Update CNI plugins to v0.8.7 ref: https://github.com/containernetworking/plugins/releases/tag/v0.8.7 Signed-off-by: Stephen Augustus <saugustus@vmware.com>	2020-08-31 09:01:07 -04:00
jay vyas	1693c111be	Getting rid of the Salt DNS replacements, addded / back.	2020-08-30 09:11:27 +00:00
Julie Qi	16f85883c4	Override hostname with instance name	2020-08-28 18:03:40 -07:00
Kubernetes Prow Robot	b440ecc315	Merge pull request #93095 from pjbgf/migrate-seccomp-usage-to-ga Update yaml files to use seccomp GA syntax	2020-08-28 12:35:49 -07:00
Kubernetes Prow Robot	b02b84870c	Merge pull request #94307 from xmudrii/update-cri-tools Update cri-tools to v1.19.0	2020-08-28 10:40:03 -07:00
Kubernetes Prow Robot	a9d1482710	Merge pull request #93311 from logicalhan/monitoring-role Add bootstrap policy for monitoring endpoints	2020-08-28 06:36:52 -07:00
Marko Mudrinić	084bc9db43	Update cri-tools to v1.19.0	2020-08-28 15:34:42 +02:00
jingyih	c96b93fbd4	Update default etcd server to 3.4.13	2020-08-28 21:19:24 +08:00
Kubernetes Prow Robot	fd20de89d9	Merge pull request #90433 from joakimr-axis/joakimr-axis_configure-helper.sh Fix shellcheck w/e in cluster/gce/gci/configure-helper.sh	2020-08-27 19:05:47 -07:00
Jeremy Edwards	9a315cc2ec	Simplify and de-lint GCE Windows kube-up docs.	2020-08-17 10:23:39 -07:00
Paulo Gomes	8f8f1bad72	Update yaml files to use seccomp GA syntax	2020-08-13 08:45:36 +01:00
Jing Xu	116465bb04	Add test cluster check when starting csi proxy Add the check for test cluster when starting csi proxy	2020-08-07 14:46:38 -07:00
Vivek Bagade	2e4a329b35	Update Cluster Autoscaler version to 1.19.0	2020-07-31 14:13:22 +02:00
Han Kang	f57611970c	add bootstrap policy for monitoring roles (we enable metrics and pprof by default, but that doesn't mean we should have full cluster-admin access to use those endpoints) Change-Id: I20cf1a0c817ffe3b7fb8e5d3967f804dc063ab03 remove pprof but add read access to detailed health checks Change-Id: I96c0997be2a538aa8c689dea25026bba638d6e7d add base health check endpoints and remove the todo for flowcontrol, as there is an existing ticket Change-Id: I8a7d6debeaf91e06d8ace3cb2bd04d71ef3e68a9 drop blank line Change-Id: I691e72e9dee3cf7276c725a12207d64db88f4651	2020-07-24 09:21:55 -07:00
Stephen Augustus	90c223fa5c	[VDF] Remove references to us.gcr.io/k8s-artifacts-prod Signed-off-by: Stephen Augustus <saugustus@vmware.com>	2020-07-22 16:08:30 -04:00
Kubernetes Prow Robot	4804fbe4c1	Merge pull request #93121 from liggitt/resource-quota kube-up: limit critical pods to kube-system by default	2020-07-19 00:00:50 -07:00
Kubernetes Prow Robot	f9ad7db9a6	Merge pull request #92349 from jingyih/update_etcd_server_3p4p9 Update default etcd server to 3.4.9	2020-07-17 07:53:01 -07:00
Jordan Liggitt	3b323b2ef0	Limit critical pods to kube-system by default	2020-07-17 09:52:19 -04:00
Kubernetes Prow Robot	a2978e3ddb	Merge pull request #92718 from rajansandeep/kube-up-coredns1.7.0 [kube-up]: Bump CoreDNS to v1.7.0	2020-07-12 01:46:01 -07:00
jingyih	e9bf1c3c90	Update default etcd server to 3.4.9	2020-07-08 14:16:40 +08:00
Kubernetes Prow Robot	c430183fff	Merge pull request #91854 from bsdnet/gci Update the COS E2E image policy	2020-07-02 06:41:15 -07:00
Kubernetes Prow Robot	dbf6c456a2	Merge pull request #91835 from jingxu97/June/csi Add csi-proxy installation into node setup script	2020-07-02 06:41:00 -07:00
Kubernetes Prow Robot	adf2cd40ae	Merge pull request #92668 from michaelmdresser/fix-kubeup-acls-mb Fix an unnecessary failure during kube-up during bucket ACL setting and make bucket in the configured project	2020-07-01 23:14:27 -07:00
Kubernetes Prow Robot	61342e398e	Merge pull request #92562 from bsdnet/newbranch Fix sig-node-containerd/containerd-e2e-gci	2020-07-01 23:13:38 -07:00
Jing Xu	57d0dc540d	Add csi-proxy installation into node setup script This PR follows the same step to install and start csi-proxy as kubelet binary	2020-07-01 15:08:29 -07:00
Sandeep Rajan	adffc7fcca	kube-up: update coredns to v1.7.0	2020-07-01 14:58:29 -04:00
Roy Yang	f86b720cf6	Update the COS E2E image policy Signed-off-by: Roy Yang <royyang@google.com>	2020-06-30 15:24:35 -07:00
Michael Dresser	902a4db5fc	Fixes an unnecessary failure during kube-up Also corrects bucket creation to use the project env var	2020-06-30 21:05:55 +00:00
Kubernetes Prow Robot	6257f83f88	Merge pull request #92569 from dims/tolerate-slightly-different-containerd-urls Tolerate slightly different containerd urls	2020-06-29 18:35:08 -07:00
Kubernetes Prow Robot	de491f11b1	Merge pull request #92444 from dims/additional-check-for-containerd-for-better-loading-images Additional test for loading images with containerd	2020-06-29 18:34:40 -07:00
Joakim Roubert	0c48e0e1bb	Find what fails pull-kubernetes-e2e-gce-ubuntu-containerd Change-Id: I7919d03926880cd9c93c61a07ada645ebfe32a89 Signed-off-by: Joakim Roubert <joakim.roubert@axis.com>	2020-06-29 09:43:37 +02:00
Joakim Roubert	b529485f65	Review update Signed-off-by: Joakim Roubert <joakim.roubert@axis.com>	2020-06-29 08:43:58 +02:00
Joakim Roubert	605be2216b	Sync with master Add fixes for newly added code. Signed-off-by: Joakim Roubert <joakim.roubert@axis.com>	2020-06-29 08:43:58 +02:00
Joakim Roubert	196ae34f9b	Remove previously added '' no longer needed Adapt to changes on master since the first commit here. Signed-off-by: Joakim Roubert <joakim.roubert@axis.com>	2020-06-29 08:43:57 +02:00
Joakim Roubert	a20a005986	No quotes needed/wanted for CURL_RETRY_CONNREFUSED Signed-off-by: Joakim Roubert <joakim.roubert@axis.com>	2020-06-29 08:43:57 +02:00
Joakim Roubert	1b9e9c6fe6	Add fix for run-kube-controller-manager-as-non-root Signed-off-by: Joakim Roubert <joakim.roubert@axis.com>	2020-06-29 08:43:57 +02:00
Joakim Roubert	11f6d43747	Updates after review Signed-off-by: Joakim Roubert <joakim.roubert@axis.com>	2020-06-29 08:43:57 +02:00
Joakim Roubert	4abf7da53e	Update cluster/gce/gci/configure-helper.sh Co-authored-by: Aaron Crickenberger <spiffxp@google.com>	2020-06-29 08:43:56 +02:00
Joakim Roubert	3e211386c1	Update cluster/gce/gci/configure-helper.sh Co-authored-by: Aaron Crickenberger <spiffxp@google.com>	2020-06-29 08:43:56 +02:00
Joakim Roubert	d66456fe01	Update cluster/gce/gci/configure-helper.sh Co-authored-by: Aaron Crickenberger <spiffxp@google.com>	2020-06-29 08:43:56 +02:00
Joakim Roubert	6e8504003b	Update cluster/gce/gci/configure-helper.sh Co-authored-by: Aaron Crickenberger <spiffxp@google.com>	2020-06-29 08:43:56 +02:00
Joakim Roubert	0c899b2bc2	Mitigate newly added shellcheck issues Issues not present when the original patch was created have now also been fixed. Signed-off-by: Joakim Roubert <joakim.roubert@axis.com>	2020-06-29 08:43:56 +02:00
Joakim Roubert	826274c867	Updates after code review Add double quotes at assignments as requested by phenixblue. Signed-off-by: Joakim Roubert <joakim.roubert@axis.com>	2020-06-29 08:43:55 +02:00
Joakim Roubert	3fb0d1c15d	Update after code review Simplified local variable declaration as suggested by phenixblue. Signed-off-by: Joakim Roubert <joakim.roubert@axis.com>	2020-06-29 08:43:55 +02:00
Joakim Roubert	1f9704c713	Code review update Change-Id: I384a73efe995c529fb4b3636cb9639eafb90787f Signed-off-by: Joakim Roubert <joakimr@axis.com>	2020-06-29 08:43:55 +02:00
Joakim Roubert	80a8566a8c	Fix shellcheck w/e in cluster/gce/gci/configure-helper.sh Change-Id: Ic8fca2509a7cb07f4170eaf25a878036d18ba51c Signed-off-by: Joakim Roubert <joakimr@axis.com>	2020-06-29 08:43:55 +02:00
Davanum Srinivas	a653c21479	Tolerate slightly different containerd urls Signed-off-by: Davanum Srinivas <davanum@gmail.com>	2020-06-27 06:41:19 -04:00
Roy Yang	1b13308edb	Fix sig-node-containerd/containerd-e2e-gci Signed-off-by: Roy Yang <royyang@google.com>	2020-06-26 18:38:27 -07:00
Jordan Liggitt	a36aa9c31e	Stop enabling alpha runtimeclass API	2020-06-25 20:29:11 -04:00
Kubernetes Prow Robot	4a91ecb976	Merge pull request #91863 from knabben/kubelet-memcg-notification Moving Kubelet kernel-memgc-notification to configuration file	2020-06-25 00:20:37 -07:00
Amim Knabben	c39cf28ed3	Moving Kubelet kernel-memgc-notification to configuration file	2020-06-24 06:44:00 -04:00
Kubernetes Prow Robot	ca372d3ca5	Merge pull request #92422 from joakimr-axis/joakimr-axis_wait-until-stable util.sh: Replace wait-until-stable with wait-until --stable	2020-06-24 02:00:13 -07:00
Kubernetes Prow Robot	c3a6a66592	Merge pull request #92395 from sambdavidson/vip-sni-fix Added missing apiserver config var.	2020-06-24 01:59:54 -07:00
Davanum Srinivas	2d7c47d2be	Additional test for loading images with containerd Signed-off-by: Davanum Srinivas <davanum@gmail.com>	2020-06-23 18:21:59 -04:00
Jonathan Sun	2f7874bd4b	Install firewall logging rules to log metadata server access for unauthorized components.	2020-06-23 11:22:05 -07:00
Joakim Roubert	db9d6d0bff	util.sh: Replace wait-until-stable with wait-until --stable This change follows the recommendation from the CI logs: "WARNING: `gcloud compute instance-groups managed wait-until-stable` is deprecated. Please use `gcloud compute instance-groups managed wait-until --stable` instead." Signed-off-by: Joakim Roubert <joakim.roubert@axis.com>	2020-06-23 13:30:52 +02:00
Samuel Davidson	31ae200ebf	fix for missing kube-env var in SNI config	2020-06-22 13:33:42 -07:00
Kubernetes Prow Robot	d140769e4d	Merge pull request #92344 from jherrera123/restore-docker-focal-version Restore docker focal version in gci nodes	2020-06-21 15:28:39 -07:00
Kubernetes Prow Robot	4c8207dc1e	Merge pull request #92314 from dims/set-better-default-for-loading-images-2 Set better default commands for loading images - take 2	2020-06-21 05:12:39 -07:00
Kubernetes Prow Robot	c6011f2d54	Merge pull request #91390 from vinayakankugoyal/nonroot Updating kube-controller-manager to run as non-root.	2020-06-21 00:56:38 -07:00
Jesus Herrera	9714f3ac86	Restore docker focal version	2020-06-20 11:16:25 -04:00
Kubernetes Prow Robot	2d1c417934	Merge pull request #92258 from SidneyShen/node-boot-nvme-disk-fix Add logic to check if local NVMe SSDs in node boot-up script	2020-06-19 11:38:14 -07:00
Kubernetes Prow Robot	4369eb3155	Merge pull request #92083 from alculquicondor/sched_config_script Support kube-scheduler component-config in GCE init scripts	2020-06-19 11:36:53 -07:00
Kubernetes Prow Robot	87e6ec493c	Merge pull request #90223 from caesarxuchao/remove-unused-var Remove unused network proxy variables and functions	2020-06-19 11:36:14 -07:00
Davanum Srinivas	60bd17a61f	Set better default commands for loading images - take 2 Signed-off-by: Davanum Srinivas <davanum@gmail.com>	2020-06-19 14:25:12 -04:00
Kubernetes Prow Robot	bfa6eb1772	Merge pull request #91964 from wenjiaswe/etcdNameComment Add a comment to keep etcd name in sync and change `hostname` to `HOSTNAME`	2020-06-18 19:05:40 -07:00
Wenjia Zhang	0da9c3e379	Add a comment to keep etcd name in sync and change `hostname` to `HOSTNAME`	2020-06-18 11:11:12 -07:00
Kubernetes Prow Robot	6bb668c3c4	Merge pull request #92204 from dims/check-for-either-docker-or-containerd-getting-active Check for either docker or containerd getting active	2020-06-18 06:03:21 -07:00
Kubernetes Prow Robot	c83c4d5453	Merge pull request #92184 from dims/set-better-default-for-loading-images Set better default commands for loading images	2020-06-18 06:02:52 -07:00
Xinning Shen	27658f8241	Add logic to check if local NVMe SSDs in node boot-up script Current logic would assume all the NVMe disks are data disks and applicable for reformat and mount. This will cause the issue when booting disk is also NVMe disk, which will fail the node boot up. This change will check if any additional NVMe disks are required/specified and skip the reformat step otherwise.	2020-06-18 08:48:43 +00:00
Chao Xu	06d034f3c8	remove unnecessary certs generation	2020-06-16 23:47:10 -07:00
Kubernetes Prow Robot	1f629ca4a2	Merge pull request #92150 from sambdavidson/sniflagfix Fix to configure-kubeapiserver.sh error.	2020-06-16 19:24:12 -07:00
Kubernetes Prow Robot	51aac92f69	Merge pull request #91922 from Jefftree/netproxy-009 Upgrade apiserver-network-proxy to v0.0.9	2020-06-16 19:22:39 -07:00
Davanum Srinivas	01183e51f0	Check for either Docker or Containerd getting active for e2e_node tests Signed-off-by: Davanum Srinivas <davanum@gmail.com>	2020-06-16 20:08:01 -04:00
Davanum Srinivas	fbb4bb0003	Set better default commands for loading images Signed-off-by: Davanum Srinivas <davanum@gmail.com>	2020-06-16 07:47:02 -04:00
Kubernetes Prow Robot	0a1e58913c	Merge pull request #92123 from YangLu1031/improveStackdriverInstallation Stabilize StackdriverLogging installation	2020-06-16 04:04:05 -07:00
Yang Lu	0239a7d857	Stabilize stackdriver installation	2020-06-15 18:50:25 -07:00
Samuel Davidson	3958ecb5c7	Fix to configure-kubeapiserver.sh error. It no no longer errors and exits if env-var OLD_LOAD_BALANCER_IP is undefined.	2020-06-15 11:42:05 -07:00
Aldo Culquicondor	55242bf3c9	Support kube-scheduler component-config in GCE init scripts Taking precedence over some existing flags. Signed-off-by: Aldo Culquicondor <acondor@google.com>	2020-06-15 09:41:18 -04:00
Mikhail Mazurskiy	b75ea1b052	Fix error check logic If copy finished file (err == nil) then use the error returned from out.Close()	2020-06-15 22:00:56 +10:00
Kubernetes Prow Robot	29f96dfa2d	Merge pull request #92063 from jingxu97/June/docker Add WINDOWS_CONTAINER_RUNTIME env variable and set default to docker for windows node	2020-06-14 18:53:56 -07:00
Kubernetes Prow Robot	79960095dd	Merge pull request #91124 from barney-s/update_win_sd Bump Stackdriver version to 1.11	2020-06-13 00:33:56 -07:00
Jing Xu	953597134b	Add WINDOWS_CONTAINER_RUNTIME env vairable Now the default value of container runtime for linux is changed to containerd. However, containerd is not ready to be used in Windows node. THis PR adds a new env varabile to handle container runtime setup for windows nodes. This way, linux and windows can set up their owe container runtime. By default, linux uses containerd while windows uses dockerd	2020-06-12 17:22:12 -07:00
Jefftree	c6b2b1fad3	Add health port to network proxy	2020-06-12 16:44:56 -07:00
Kubernetes Prow Robot	eff58cc003	Merge pull request #92034 from YangLu1031/master Flush cache to disk to persist configuration status	2020-06-12 02:24:25 -07:00
Yang Lu	c84eb12357	Flush cache to disk to persist setup status	2020-06-11 05:15:30 -07:00
Davanum Srinivas	66015ff654	fix default CONTAINER_RUNTIME_ENDPOINT for docker Signed-off-by: Davanum Srinivas <davanum@gmail.com>	2020-06-11 06:41:17 -04:00
Jordan Liggitt	ac5ec4aa80	Adjust admission webhook auth config for default-enabled admission plugins	2020-06-10 13:46:30 -04:00
Davanum Srinivas	1731cb30f5	Use containerd as default in kube-up.sh Signed-off-by: Davanum Srinivas <davanum@gmail.com>	2020-06-07 14:34:50 -04:00
Kubernetes Prow Robot	db152fdd7d	Merge pull request #91756 from wojtek-t/remove_etcd_empty_dir_cleanup Remove etcd-empty-dir-cleanup image	2020-06-05 15:30:24 -07:00
Kubernetes Prow Robot	3509b46fc6	Merge pull request #91612 from bsdnet/gci Improve COS image document for E2E test	2020-06-05 15:30:00 -07:00
Kubernetes Prow Robot	65821acd87	Merge pull request #91796 from pjh/repair-powershell Repair syntax error in Windows-GCE startup script	2020-06-05 01:53:43 -07:00
wojtekt	ee27e5b8be	Remove all references to etcd-empty-dir-cleanup.	2020-06-05 08:41:31 +02:00
Kubernetes Prow Robot	c0455a1853	Merge pull request #91154 from liggitt/signer-duration Mark experimental-cluster-signing-duration deprecated, add --cluster-signing-duration	2020-06-04 17:59:45 -07:00
Peter Hornyack	0a4f3f64a7	Repair syntax error in Windows-GCE startup script	2020-06-04 17:45:38 -07:00
Vinayak Goyal	8daa9e6f77	Updating kube-controller-manager to run as non-root.	2020-06-02 14:07:00 -07:00
Roy Yang	3336d59ab2	Update COS/GCI document Signed-off-by: Roy Yang <royyang@google.com>	2020-06-01 14:34:31 -07:00
Sascha Grunert	d2fc2d282d	Update cri-tools to v1.18.0 This updates cri-tools to the latest release as well as pointing the artifacts to the new Google Cloud Bucket `k8s-artifacts-cri-tools`. This reverts commit `ce1840d253`. Signed-off-by: Sascha Grunert <sgrunert@suse.com>	2020-05-29 10:56:02 +02:00
Kubernetes Prow Robot	c1707541d8	Merge pull request #91456 from tosi3k/propagate-am-whitelist-override Propagate KUBECTL_PRUNE_WHITELIST_OVERRIDE to master kube-env	2020-05-27 02:20:40 -07:00
Kubernetes Prow Robot	f91c1ef60e	Merge pull request #91370 from justaugustus/cni Update CNI to v0.8.6	2020-05-26 13:38:01 -07:00
Antoni Zawodny	b1bd5113d4	Propagate KUBECTL_PRUNE_WHITELIST_OVERRIDE to master kube-env	2020-05-26 15:58:15 +02:00
Kubernetes Prow Robot	f01d848c48	Merge pull request #91329 from dims/switch-kube-controller-manager-to-distroless-image Switch kube-controller-manager to distroless image	2020-05-22 17:23:10 -07:00
Stephen Augustus	b692502a9d	Update CNI to v0.8.6 Signed-off-by: Stephen Augustus <saugustus@vmware.com>	2020-05-22 17:48:56 -04:00
Kubernetes Prow Robot	10caa46f6b	Merge pull request #91300 from dims/move-to-latest-etcd-3.4.7-2 Switch over to new etcd 3.4.7-2 image	2020-05-22 04:14:37 -07:00
Kubernetes Prow Robot	9e06faa1fb	Merge pull request #91240 from tosi3k/bump-am-version Update kube-addon-manager to v9.1.1	2020-05-21 19:40:37 -07:00
Davanum Srinivas	b1742f19ef	Switch kube-controller-manager to distroless image Signed-off-by: Davanum Srinivas <davanum@gmail.com>	2020-05-21 22:33:54 -04:00
Davanum Srinivas	bd835d8a1c	Switch over to new etcd 3.4.7-2 image Add a safety switch to stop doing anything if migrate failed. We previously just ignored the exit code from migrate utility Signed-off-by: Davanum Srinivas <davanum@gmail.com>	2020-05-21 22:16:08 -04:00
Kubernetes Prow Robot	c97c61ebe8	Merge pull request #91304 from karan/gcireviewer add karan to gci reviewer	2020-05-20 19:42:20 -07:00
Kubernetes Prow Robot	52358fe010	Merge pull request #91228 from sambdavidson/iprotflags Add SNI flags usage to configure-*.sh	2020-05-20 19:41:30 -07:00
Kubernetes Prow Robot	2f883e5802	Merge pull request #90618 from jingxu97/Mar/windows Install diskutil into GCE windows node	2020-05-20 19:40:33 -07:00
Samuel Davidson	20b37d6c5a	Add IP rotation flags and env-vars to configure-*.sh	2020-05-20 13:07:37 -07:00
Karan Goel	451592c6a5	add karan to gci reviewer	2020-05-20 10:42:42 -07:00
Jacek Kaniuk	57caa27b8d	Do not add kube-apiserver performance flags if already set	2020-05-20 19:05:16 +02:00
Antoni Zawodny	15e491eb2f	Update kube-addon-manager to v9.1.1	2020-05-20 09:50:20 +02:00
Jing Xu	e71acffdfe	Install diskutil into GCE windows node This PR installs a utility diskutil.exe into GCE windows node. This is a workaround for csiproxy be able to get disk id by name. This utility will be placed once issue is addressed.	2020-05-19 18:36:16 -07:00
Jakub Przychodzeń	ce1840d253	Revert "Update cri-tools to v1.18.0" This reverts commit `4b3e023659`.	2020-05-19 11:19:39 +02:00
Kubernetes Prow Robot	e215a8772c	Merge pull request #91210 from tosi3k/dont-log-node-ip-range-to-stdout Log user provided NODE_IP_RANGE to stdout instead of stderr	2020-05-18 13:34:08 -07:00
Antoni Zawodny	5ec2ff2d20	Remove logging user provided NODE_IP_RANGE to stderr	2020-05-18 16:59:27 +02:00
Sascha Grunert	4b3e023659	Update cri-tools to v1.18.0 Bump cri-tools to the latest version and update test scripts. Signed-off-by: Sascha Grunert <sgrunert@suse.com>	2020-05-18 13:38:41 +02:00
Jordan Liggitt	950ed38996	Mark experimental-cluster-signing-duration deprecated, add --cluster-signing-duration	2020-05-15 14:09:58 -04:00
Barni S	d826b4b05c	Bump Stackdriver version to 1.11	2020-05-14 18:45:17 -04:00
Tim Hockin	d681a04541	Force LICENSES refresh on GCE images Some test images have it baked in.	2020-05-11 14:25:26 -07:00
Yuwen Ma	1aa67fc525	Switch core master base images from debian to distroless Signed-off-by: Davanum Srinivas <davanum@gmail.com>	2020-05-09 06:55:00 -04:00
Kubernetes Prow Robot	7d53ecee37	Merge pull request #90575 from thockin/fix_license_again Reorganize vendor licenses again (revert #85220)	2020-05-08 23:03:51 -07:00
Tim Hockin	325ea6e3c2	Restructure licenses again (revert `cd4474a`) This moves licenses of vendored code from one monolith file into a tree of individual files for easier reviews. This fixes both the bash and bazel paths.	2020-05-07 21:48:59 -07:00

... 5 6 7 8 9 ...

3727 Commits