github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
115,151 Commits 1 Branch 31 Tags 1,019 MiB
main
Commit Graph

247 Commits

Author SHA1 Message Date
ravisantoshgudimetla
ebf54fc6e2 Changes to pdb healthy policy api docs 2023-02-20 18:36:45 -05:00
ravisantoshgudimetla
167ff49647 Promote pdb health policy to beta 2023-01-27 23:52:21 +05:30
SataQiu
571582b5b2 apiserver: update serialization version priority for policy API 2023-01-19 14:42:26 +08:00
TommyStarK
f166a52573 pkg/apis: Replace deprecated pointer function 
Signed-off-by: TommyStarK <thomasmilox@gmail.com>
 2023-01-05 11:48:05 +01:00
Filip Křepinský
3e3912467a generated 2022-11-10 23:32:27 +01:00
Filip Křepinský
a429797f2e api: add UnhealthyPodEvictionPolicy for PDBs 2022-11-10 23:25:42 +01:00
Manjusaka
0843c4dfca
Add extra value validation for matchExpression field in LabelSelector 2022-11-07 20:48:21 -05:00
Jonathan Dobson
5f774832a5 Move CSIInlineVolume feature to GA 2022-08-04 13:06:30 -06:00
Davanum Srinivas
a9593d634c
Generate and format files 
- Run hack/update-codegen.sh
- Run hack/update-generated-device-plugin.sh
- Run hack/update-generated-protobuf.sh
- Run hack/update-generated-runtime.sh
- Run hack/update-generated-swagger-docs.sh
- Run hack/update-openapi-spec.sh
- Run hack/update-gofmt.sh

Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2022-07-26 13:14:05 -04:00
Mengjiao Liu
20bb84b3f1 Pod SecurityContext and PodSecurityPolicy supports slash as sysctl separator 2022-06-22 10:24:35 +08:00
Jordan Liggitt
410ac59c0d Remove PodSecurityPolicy admission plugin 2022-05-04 16:00:56 -04:00
Tim Allclair
5f2b12e0d4 Move AppArmor profile validation to the API validation pkg 2022-02-15 16:17:37 -08:00
Davanum Srinivas
35864ac0de
Add labels when there sig aliases used in approvers/reviewers 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2022-01-20 10:02:07 -05:00
Davanum Srinivas
9405e9b55e
Check in OWNERS modified by update-yamlfmt.sh 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2021-12-09 21:31:26 -05:00
Mengjiao Liu
275d832ce2 Upgrade preparation to verify sysctl values containing forward slashes by regex 2021-11-04 11:49:56 +08:00
Patrick Ohly
d55f7c85ef psp: remove unused PodSecurityPolicyValidationOptions 
Since the only member of that struct is gone, the struct itself can also be
removed. If for whatever reason the struct is needed again, then this commit
can be reverted to bring it back.
 2021-10-28 17:25:07 +02:00
Patrick Ohly
a8c930ef46 generic ephemeral volume: graduation to GA 
The feature gate gets locked to "true", with the goal to remove it in two
releases.

All code now can assume that the feature is enabled. Tests for "feature
disabled" are no longer needed and get removed.

Some code wasn't using the new helper functions yet. That gets changed while
touching those lines.
 2021-10-11 20:54:20 +02:00
Stephen Augustus
481cf6fbe7
generated: Run hack/update-gofmt.sh 
Signed-off-by: Stephen Augustus <foo@auggie.dev>
 2021-08-24 15:47:49 -04:00
Jordan Liggitt
87a4e082ac Change defaulter-gen input to package path 2021-08-14 11:00:18 -04:00
Aldo Culquicondor
7c50cd762a Use aliases in sig apps and scheduling APIs OWNERS 
Add alculquicondor to sig-scheduling-api-reviewers and sig-apps-api-reviewers
 2021-05-17 17:56:20 +00:00
Kubernetes Prow Robot
d9abcee491
Merge pull request #100936 from lojies/cleanuppkgapi 
code cleanup for pkg/api and pkg/apis
 2021-05-07 13:31:25 -07:00
卢振兴10069964
4e447acab0 code cleanup for pkg/api and pkg/apis 2021-04-28 08:57:23 +08:00
Jordan Liggitt
e22cd7dbc4 Generated files 
Change-Id: Ibd7ac0392fd52ae7ce2f6864aefb47bf1b74f8c3
 2021-04-13 17:27:42 -04:00
Morten Torkildsen
621aed4d32 generated 2021-03-09 10:29:11 -05:00
Morten Torkildsen
21fba79d45 Promote PDBs to GA 2021-03-09 10:29:11 -05:00
Patrick Ohly
fb4b380fe2 PSP: validation errors for generic volume type 
It's not enough to silently drop the volume type if the feature is
disabled. Instead, the policy should fail validation, just as it would
have if the API server didn't know about the feature at all.
 2021-03-07 10:58:45 +01:00
Patrick Ohly
38384d5c13 PSP: conditional support for generic volume type 
When introducing the new "generic" volume type for generic ephemeral
inline volumes, the storage policy for PodSecurityPolicy objects
should have been extended so that this new type is valid only
if the generic ephemeral volume feature is enabled or an
existing object already has it.

Adding the new type to the internal API was also missed.
 2021-03-07 10:56:48 +01:00
Morten Torkildsen
b08eb95168 generated 2021-03-04 19:03:00 -08:00
Morten Torkildsen
1e2a7f381f Add conditions to PDB status 2021-03-04 18:52:02 -08:00
Benjamin Elder
56e092e382 hack/update-bazel.sh 2021-02-28 15:17:29 -08:00
Patrick Ohly
99b5b13394 CSI ephemeral volumes: documentation and owner update 
The promotion to beta missed some code locations. The owner also
changed since the feature was initially designed and implemented.

The "is handled by an external CSI driver" to "by certain external CSI
drivers" change is supposed to avoid the misconception that this
volume type will work with arbitrary CSI drivers.
 2020-07-01 09:19:18 +02:00
wangkai1994
8d68452ea0 replace whitelist to allowlist 2020-06-12 10:20:58 +08:00
Andrew Sy Kim
2e56866c97 move apparmor annotation constants to k8s.io/api/core/v1 
Signed-off-by: Andrew Sy Kim <kim.andrewsy@gmail.com>
 2020-04-06 10:22:04 -04:00
Nan Yu
1fb0dd4ec5 Rename PodDisruptionsAllowed to DisruptionsAllowed in type PodDisruptionBudgetStatus 2019-12-03 14:26:35 -08:00
Roy Hvaara
10c8508acd
Fix golint issues in pkg/apis/policy 2019-11-09 21:15:35 +01:00
W. Trevor King
a05cabb3a6 pkg/apis/policy: Fix "informatio" -> "information" comment typo 
Typo from kubernetes/kubernetes@8e2347370e (Add observedGeneration to
PodDisruptionBudgetStatus, 2016-11-08, kubernetes/kubernetes#36438).
 2019-10-08 12:27:50 -07:00
Andy Bursavich
030aab29a1 Make API constants constant 2019-09-11 11:04:07 -07:00
Vladimir Vivien
8e0cf65310 Enforce pod security policy for CSI inline 2019-05-29 15:38:21 -04:00
Chao Xu
369314959c generated 2019-05-24 18:14:53 -07:00
David McCormick
3537eed826 Remove the generation altering code - validate an update for a PDB by running ValidatePodDisruptionBudget only. 2019-05-14 12:25:23 +01:00
David McCormick
5b9e4f1e88 Rebase allow updates to pdbs to latest upstream master 2019-05-14 12:25:22 +01:00
Kubernetes Prow Robot
6a48257627
Merge pull request #73795 from tallclair/runtimeclass-psp 
PodSecurityPolicy RuntimeClass support
 2019-05-02 00:46:17 -07:00
Tim Allclair
952c45f654 RuntimeClass PSP API validation 2019-05-01 13:43:41 -07:00
Tim Allclair
57c6eacdcf RuntimeClass PSP API generated files 2019-05-01 13:43:36 -07:00
Tim Allclair
821cb155ab PodSecurityPolicy RuntimeClass API 2019-04-30 16:45:09 -07:00
yue9944882
71a58de48b clean up genclient tags for hub types 2019-04-24 16:53:21 +08:00
Davanum Srinivas
7b8c9acc09
remove unused code 
Change-Id: If821920ec8872e326b7d85437ad8d2620807799d
 2019-04-19 08:36:31 -04:00
Vladimir Vivien
d998fc8f0f CSI Inline Volume - Generated files 2019-03-08 12:39:58 -05:00
Vladimir Vivien
4ec7d2305d CSI Inline Volume - API changes 2019-03-08 12:35:07 -05:00
Kubernetes Prow Robot
3f605a2337
Merge pull request #74285 from mourya007/selinux 
Adding Selinux test in validation
 2019-02-26 14:07:33 -08:00