gerrit.akraino Code Review - ta/caas-kubernetes.git/log

Balazs Szekeres [Wed, 2 Oct 2019 11:28:56 +0000 (13:28 +0200)]

Kube proxy can not resolve host ip

Workaround added as can seen below:
https://bugs.launchpad.net/charm-kubernetes-master/+bug/1841114

Change-Id: Icf7c352fff19b976bd788611c0c77894c5962b04
Signed-off-by: Balazs Szekeres <balazs.szekeres@nokia.com>

commit | commitdiff | tree

Balazs Szekeres [Wed, 2 Oct 2019 06:51:05 +0000 (08:51 +0200)]

HugePages are GA from 1.16.0

The flag no longer needed to be set.
https://github.com/kubernetes/kubernetes/pull/79307

Change-Id: Ie49d8e21f22d9a759aa3925de9279cb0d4fdd2aa
Signed-off-by: Balazs Szekeres <balazs.szekeres@nokia.com>

commit | commitdiff | tree

Balint Varga [Fri, 30 Aug 2019 11:09:32 +0000 (13:09 +0200)]

Configurable flannel cidr introduction

Change-Id: Id36280be18a9b5158f7a20a65ec1d94fd2669daf
Signed-off-by: Balint Varga <balint.varga@nokia.com>

commit | commitdiff | tree

Balazs Szekeres [Fri, 27 Sep 2019 13:17:15 +0000 (15:17 +0200)]

Kubernetes minor version update

Previous merge missed one.

Change-Id: I9c10358ab23782dec3ef4b70f943622a4d6fd240
Signed-off-by: Balazs Szekeres <balazs.szekeres@nokia.com>

commit | commitdiff | tree

Levente Kálé [Fri, 27 Sep 2019 13:01:48 +0000 (13:01 +0000)]

Merge "Added kubelet root dir as parameter"

commit | commitdiff | tree

Balazs Szekeres [Thu, 26 Sep 2019 13:49:49 +0000 (15:49 +0200)]

Kubernetes update to 1.16.0

CVE-2019-11251: Kubernetes kubectl - Directory Traversal Vulnerability fix

Change-Id: I17bb6f5346f2b7fe3131c491cf0e66564f42e21d
Signed-off-by: Balazs Szekeres <balazs.szekeres@nokia.com>

commit | commitdiff | tree

Balazs Szekeres [Wed, 11 Sep 2019 19:35:22 +0000 (21:35 +0200)]

Added kubelet root dir as parameter

Kubelet root directory as a parameter
Kubernetes dumps JAVA heap dump to kubernetes root dir which is not too nice

Change-Id: Icabd893f93da817592e5c457b93eb100925813bf
Signed-off-by: Balazs Szekeres <balazs.szekeres@nokia.com>

commit | commitdiff | tree

Krisztian Lengyel [Thu, 19 Sep 2019 19:33:16 +0000 (15:33 -0400)]

Bump RPM version

Change-Id: I6bc6d9ca526b57632e572f128045a76a66963356

commit | commitdiff | tree

Krisztian Lengyel [Fri, 13 Sep 2019 19:29:29 +0000 (15:29 -0400)]

Add missing SNIs for custom-metrics certificate

Change-Id: I50c9df36f3f0f757adcce359beb150d53ef2dc16
Signed-off-by: Krisztian Lengyel <krisztian.lengyel@nokia.com>

commit | commitdiff | tree

Krisztian Lengyel [Tue, 17 Sep 2019 14:33:51 +0000 (10:33 -0400)]

Remove binding from kubelet health check

There is no more need to bind `kubelet_healthcheck.service` to
`kubelet.service`, because monitoring will take care about service
availability.

Depends-On: I0072986e8c697c1ebffaea67a06ba14b68d920b0
Change-Id: If068e42a0ad4c155ba2981c9b7a0f0330be38be7
Signed-off-by: Krisztian Lengyel <krisztian.lengyel@nokia.com>

commit | commitdiff | tree

Balazs Szekeres [Wed, 11 Sep 2019 21:26:13 +0000 (23:26 +0200)]

Missed the secure part

Https not http

Change-Id: Iba22d6a7bae05149047aeab85caee8080873488d
Signed-off-by: Balazs Szekeres <balazs.szekeres@nokia.com>

commit | commitdiff | tree

Balazs Szekeres [Tue, 10 Sep 2019 17:11:38 +0000 (19:11 +0200)]

Etcd server istead of proxy

In version 3.4.0 etcd fixed it's high availability issue,
so etcd proxy no longer needed for HA.

Change-Id: Ia34b4f0faf60b4c60b75ed24f9b75578c5ae2cb9
Signed-off-by: Balazs Szekeres <balazs.szekeres@nokia.com>

commit | commitdiff | tree

Balazs Szekeres [Fri, 30 Aug 2019 14:34:06 +0000 (16:34 +0200)]

Go version updated to 1.12.9

Change-Id: I130a42e3f0882cbedb69e6907c5861c598d35a65
Signed-off-by: Balazs Szekeres <balazs.szekeres@nokia.com>

commit | commitdiff | tree

simicza [Mon, 26 Aug 2019 11:36:00 +0000 (13:36 +0200)]

Audit log bugfix

Set 0700 permissions to the /var/log/audit/kube_apiserver directory.
Fix the number of audit log file countig process. It needed a new task, which asks the size of the audit log disk.

Depends-On: I32c515003e747293ac504672557e9862c0a24764
Signed-off-by: simicza <szilveszter.simicza@nokia.com>
Change-Id: I0f4e76ff49de5ef2d74cf9535d7f7f0d0b97ddf9

commit | commitdiff | tree

Krisztian Lengyel [Mon, 26 Aug 2019 13:07:37 +0000 (15:07 +0200)]

Update Kubernetes to version 1.15.3

Change-Id: I37f25314a8f952735841a338f24b693a1c494a17
Signed-off-by: Krisztian Lengyel <krisztian.lengyel@nokia.com>

commit | commitdiff | tree

Krisztián Lengyel [Mon, 26 Aug 2019 08:56:15 +0000 (08:56 +0000)]

Revert "Audit log bugfix"

This reverts commit 0141a51caf9c391aa8492a5d5ef4ba34e60d570b.

Reason for revert: Fails because of missing dependencies

Change-Id: I77f1f5344b4043223778bcabecd559759b3cecc1

commit | commitdiff | tree

simicza [Wed, 7 Aug 2019 14:57:53 +0000 (16:57 +0200)]

Audit log bugfix

Set 0700 permissions to the /var/log/audit/kube_apiserver directory.
Fix the number of audit log file countig process. It needed a new task, which asks the size of the audit log disk.

Change-Id: I3be5a5ee0300d817e7faee1ab82587746d3f57f7
Signed-off-by: simicza <szilveszter.simicza@nokia.com>

commit | commitdiff | tree

bela.szanics [Fri, 9 Aug 2019 04:30:09 +0000 (07:30 +0300)]

Add SCTP support to kube-api server

- Add SCTPSupport to kube-api feature-gate
- Increase minor version number

Change-Id: I9b0687692c11d4971fea5066fd51fceb9ae7c160
Signed-off-by: bela.szanics <bela.szanics@nokia.com>

commit | commitdiff | tree

Balazs Szekeres [Thu, 8 Aug 2019 07:44:49 +0000 (09:44 +0200)]

Kubernetes update to 1.15.2

Kubernetes update to 1.15.2

Change-Id: I92ea5e1bc8ad472290a157d8a8e311c4accaa3d3
Signed-off-by: Balazs Szekeres <balazs.szekeres@nokia.com>

commit | commitdiff | tree

Balint Varga [Fri, 26 Jul 2019 07:36:49 +0000 (09:36 +0200)]

Kubelet env.list updated for ansible variable

Signed-off-by: Balint Varga <balint.varga@nokia.com>
Change-Id: Ic40836b4291d7c5b5e24f52677c30a7268322ed8

commit | commitdiff | tree

Balazs Szekeres [Tue, 23 Jul 2019 09:15:16 +0000 (11:15 +0200)]

Kubernetes update

Kubernetes update to 1.15.1

Change-Id: I0afae1161b5348c32981453ef1608168533b3d31
Signed-off-by: Balazs Szekeres <balazs.szekeres@nokia.com>

commit | commitdiff | tree

Balazs Szekeres [Tue, 16 Jul 2019 13:18:57 +0000 (15:18 +0200)]

Etcd proxy added caas-etcd

Use etcd proxy in kube api server.

Change-Id: I8314d28c5fca6d568f3a8a75d1fc195dbe227122
Signed-off-by: Balazs Szekeres <balazs.szekeres@nokia.com>

commit | commitdiff | tree

Balint Varga [Fri, 28 Jun 2019 12:33:48 +0000 (14:33 +0200)]

do not set ceph if ceph not configured

Signed-off-by: Balint Varga <balint.varga@nokia.com>
Change-Id: I57ef6b5f6c2650ec0796eff3b314b5f83cc64ba6

Manifest update

Cpu request setted to kubernetes.
Minor version bump.

Change-Id: I9b6c3da0c45c31102cc642cc8395c4e441ede6a1
Signed-off-by: Szekeres, Balazs (Nokia - HU/Budapest) <balazs.szekeres@nokia.com>

commit | commitdiff | tree

Ferenc Tóth [Wed, 26 Jun 2019 11:33:01 +0000 (13:33 +0200)]

Compress image using xz

Signed-off-by: Ferenc Tóth <ferenc.2.toth@nokia.com>
Change-Id: I0105fcda8a216fc57c45480c15311b2e3a2c1933

Kubernetes version update

Kuberntets updated to 1.15.0
Eviction and system reserved settings now set.

Change-Id: I9e748a3bb1580d1ba7309f3301c7bbddafad5546
Signed-off-by: Szekeres, Balazs (Nokia - HU/Budapest) <balazs.szekeres@nokia.com>

commit | commitdiff | tree

Krisztian Lengyel [Fri, 7 Jun 2019 10:55:29 +0000 (12:55 +0200)]

Make CPU reservations based on CPU allocation

Kubelet CPU reservations set to configure proper node allocatable resources:
- kube-reserved currently set to 0
- system-reserved is calculated by the following formula:
system-reserved = total cpu count - kube-reserved count - default cpu pool

Change-Id: Ibc937a533c881d55e2933c55eb3c208200c12a4f
Signed-off-by: Krisztian Lengyel <krisztian.lengyel@nokia.com>

Set time zone

Apiserver container now uses the host time zone settings.
Controller managercontainer now uses the host time zone settings.
Scheduler container now uses the host time zone settings.
Proxy container now uses the host time zone settings.

Change-Id: Icf102dedbfacf8e64b0f5bcaa2979ec30d4ee1cd
Signed-off-by: Szekeres, Balazs (Nokia - HU/Budapest) <balazs.szekeres@nokia.com>

commit | commitdiff | tree

Krisztian Lengyel [Mon, 29 Apr 2019 12:52:24 +0000 (14:52 +0200)]

Remove hardcoded libexec directory path

Change-Id: I3caab31b031fbf306ddcf8e6940b1b349c63a537
Depends-On: I2969223948218155aff121c20731eb336c13fca6
Signed-off-by: Krisztian Lengyel <krisztian.lengyel@nokia.com>

commit | commitdiff | tree

Krisztian Lengyel [Fri, 10 May 2019 20:17:23 +0000 (16:17 -0400)]

Make CaaS DNS domains configurable

Change-Id: Ib6ec6b77f75ae0793376a3cf20f0b7735434c1ab

Missing package added.

- In docker-build/hyperkube/Dockerfile the
contrack-tools package was missing,
which resulted proxier.go errors
when tried to call conntack.
- Also added .gitreview for ease of use.

Change-Id: I7282280fa710665d51c958df83ad3af6bc387fbe
Signed-off-by: Szekeres, Balazs (Nokia - HU/Budapest) <balazs.szekeres@nokia.com>

Added seed code for caas-kubernetes.

Added seed code for caas-kubernetes.

Change-Id: Iff1a433f3fb6436b83c09ebf909e636b4e8c4e0c
Signed-off-by: Szekeres, Balazs (Nokia - HU/Budapest) <balazs.szekeres@nokia.com>

commit | commitdiff | tree

Eric Ball [Wed, 1 May 2019 00:25:17 +0000 (00:25 +0000)]

Initial empty repository

packages, configures, and integrates the major components of the Kubernetes management plane (https://github.com/kubernetes/kubernetes ). Includes the code related to deploying the API server, scheduler, controller-manager, kube-proxy, and kubelet components.

RSS Atom