Commit Graph

110157 Commits

Author SHA1 Message Date
Dan Winship
946ce55b04 kube-proxy: use API constants for proxy modes rather than local redefinitions 2022-08-16 09:30:42 -04:00
Dan Winship
1609017f2b kube-proxy: remove ipvs-to-iptables fallback
If the user passes "--proxy-mode ipvs", and it is not possible to use
IPVS, then error out rather than falling back to iptables.

There was never any good reason to be doing fallback; this was
presumably erroneously added to parallel the iptables-to-userspace
fallback (which only existed because we had wanted iptables to be the
default but not all systems could support it).

In particular, if the user passed configuration options for ipvs, then
they presumably *didn't* pass configuration options for iptables, and
so even if the iptables proxy is able to run, it is likely to be
misconfigured.
2022-08-16 09:30:08 -04:00
Dan Winship
9f69a3a9d4 kube-proxy: remove iptables-to-userspace fallback
Back when iptables was first made the default, there were
theoretically some users who wouldn't have been able to support it due
to having an old /sbin/iptables. But kube-proxy no longer does the
things that didn't work with old iptables, and we removed that check a
long time ago. There is also a check for a new-enough kernel version,
but it's checking for a feature which was added in kernel 3.6, and no
one could possibly be running Kubernetes with a kernel that old. So
the fallback code now never actually falls back, so it should just be
removed.
2022-08-16 09:21:34 -04:00
Dan Winship
477d14e53b Reorganize "kube-proxy --cleanup-and-exit"
This was implemented partly in server.go and partly in
server_others.go even though even the parts in server.go were totally
linux-specific. Simplify things by putting it all in server_others.go
and get rid of some unnecessary abstraction.
2022-08-16 09:16:05 -04:00
ialidzhikov
7c8a151faa pkg/scheduler: Replace deprecated func usage from the k8s.io/utils/pointer pkg 2022-08-16 08:39:18 +03:00
Kubernetes Prow Robot
d5fdf3135e Merge pull request #111846 from omertuc/fixparallelclosure
Fix capture loop vars in parallel or ginkgo tests
2022-08-15 11:51:55 -07:00
Omer Tuchfeld
eb317ecd40 Fix capture loop vars in parallel or ginkgo tests
Fixes instances of #98213 (to ultimately complete #98213 linting is
required).

This commit fixes a few instances of a common mistake done when writing
parallel subtests or Ginkgo tests (basically any test in which the test
closure is dynamically created in a loop and the loop doesn't wait for
the test closure to complete).

I'm developing a very specific linter that detects this king of mistake
and these are the only violations of it it found in this repo (it's not
airtight so there may be more).

In the case of Ginkgo tests, without this fix, only the last entry in
the loop iteratee is actually tested. In the case of Parallel tests I
think it's the same problem but maybe a bit different, iiuc it depends
on the execution speed.

Waiting for the CI to confirm the tests are still passing, even after
this fix - since it's likely it's the first time those test cases are
executed - they may be buggy or testing code that is buggy.

Another instance of this is in `test/e2e/storage/csi_mock_volume.go` and
is still failing so it has been left out of this commit and will be
addressed in a separate one
2022-08-15 16:28:50 +02:00
wanlei
22b0be9842 fix(apf): not reset apf when panic 2022-08-15 10:38:50 +08:00
Stephen Heywood
06346de0bb Create e2e test for endpoint: replaceCoreV1Namespace 2022-08-15 10:14:33 +12:00
ialidzhikov
f2bc2ed2da pkg/proxy: Replace deprecated func usage from the k8s.io/utils/pointer pkg 2022-08-14 18:27:33 +03:00
ialidzhikov
76bf5a41cf cmd/kubeadm: Replace deprecated func usage from the k8s.io/utils/pointer pkg 2022-08-14 12:49:45 +03:00
ialidzhikov
17c14ced18 cmd/kube-proxy: Replace deprecated func usage from the k8s.io/utils/pointer pkg 2022-08-13 22:01:02 +03:00
tianyang ni
8310c8f6cc fix(typo): remove extra " from autoscaling doc string
Signed-off-by: tianyang ni <tianzong48@gmail.com>
2022-08-13 22:51:28 +08:00
Han Kang
822c52c220 address comments
Change-Id: I9c9854b8bb3221e4791c70f566361bd0421061c1
2022-08-12 18:11:02 -07:00
Kubernetes Prow Robot
132f29769d Merge pull request #111697 from thockin/master
Docs: node-port-range should not overlap ephemeral
2022-08-12 13:44:32 -07:00
Han Kang
895c80be2a add metrics for health checks (for later use in apiserver)
Change-Id: I0dff11cc298c4960ae6620004a071ef6a62ddc9a
2022-08-12 06:21:44 -07:00
kidddddddddddddddddddddd
b5f0c34ef1 replace os.Exit with FlushAndExit 2022-08-12 17:34:13 +08:00
Wei Huang
a07e27082a Fix potential context leaking in scheduler 2022-08-11 22:22:40 -07:00
Wei Huang
469e63eb5b [sched] Add more retriable errors 2022-08-11 20:48:20 -07:00
Alvaro Aleman
b285beeb3e Apimachinery meta errors: Support errors.Is and error wrapping
Currently, the errors in the pkg/api/meta package don't work correctly
with the stdlibs `errors.Is` because they do not implement an `Is`
method, which makes the matching fall through to use reflect to check
for equality. This change fixes that and as a side-effect also adds
support to match on wrapped errors.
2022-08-11 18:50:51 -04:00
Kubernetes Prow Robot
7b1b801295 Merge pull request #111773 from amewayne/fix_mem_leak_in_preemption
fix a memory leakage problem when calling DryRunPreemption
2022-08-11 08:36:58 -07:00
SataQiu
25a81a7514 kube-proxy: optimize the format of the flag usage string 2022-08-11 19:37:25 +08:00
Antonin Bas
2e282e8e02 Update Netpol e2e tests to use framework CreateNamespace
The main purpose of this change is to update the e2e Netpol tests to use
the srandard CreateNamespace function from the Framework. Before this
change, a custom Namespace creation function was used, with the
following consequences:

* Pod security admission settings had to be enforced locally (not using
  the centralized mechanism)
* the custom function was brittle, not waiting for default Namespace
  ServiceAccount creation, causing tests to fail in some infrastructures
* tests were not benefiting from standard framework capabilities:
  Namespace name generation, automatic Namespace deletion, etc.

As part of this change, we also do the following:

* clearly decouple responsibilities between the Model, which defines the
  K8s objects to be created, and the KubeManager, which has access to
  runtime information (actual Namespace names after their creation by
  the framework, Service IPs, etc.)
* simplify / clean-up tests and remove as much unneeded logic / funtions
  as possible for easier long-term maintenance
* remove the useFixedNamespaces compile-time constant switch, which
  aimed at re-using existing K8s resources across test cases. The
  reasons: a) it is currently broken as setting it to true causes most
  tests to panic on the master branch, b) it is not a good idea to have
  some switch like this which changes the behavior of the tests and is
  never exercised in CI, c) it cannot possibly work as different test
  cases have different Model requirements (e.g., the protocols list can
  differ) and hence different K8s resource requirements.

For #108298

Signed-off-by: Antonin Bas <abas@vmware.com>
2022-08-10 11:38:26 -07:00
Kubernetes Prow Robot
f5956716e3 Merge pull request #111786 from jeremyrickard/publishing-release-125
staging/publishing: add release-1.25 branch
2022-08-10 11:16:25 -07:00
Ashutosh Kumar
707d50d806 chore(e2e): add e2e test for non graceful node shutdown
Signed-off-by: Ashutosh Kumar <sonasingh46@gmail.com>
2022-08-10 21:55:00 +05:30
Kubernetes Prow Robot
3b945fd77d Merge pull request #111746 from RomanBednar/retro-sc-assignment-int
Add integration test for Retroactive default StorageClass assignement
2022-08-10 09:04:25 -07:00
Jeremy Rickard
ac1d38b750 Add missing codegen rule
Signed-off-by: Jeremy Rickard <jeremyrrickard@gmail.com>
2022-08-10 09:02:35 -06:00
Kubernetes Prow Robot
518e0aca6f Merge pull request #111784 from deads2k/fix-cleaner
Revert "enforce strict alpha handling for API serving"
2022-08-10 07:52:30 -07:00
Jeremy Rickard
3d2ffc5287 Add publishing bot rules for 1.25 2022-08-10 08:27:41 -06:00
David Eads
696e41a698 Revert "enforce strict alpha handling for API serving"
This reverts commit 233e0cb8c3.
2022-08-10 09:42:37 -04:00
SataQiu
31f1d84d9a kubeadm: try to load CA cert from external CertificateAuthority file when CertificateAuthorityData is empty for existing kubeconfig 2022-08-10 21:03:27 +08:00
amewayne
1457ad548c fix a memory leak problem when calling DryRunPreemption 2022-08-10 12:02:27 +08:00
Dmitry Verkhoturov
f2d591fae6 change CPUCFSQuotaPeriod default value to 100us to match Linux default
cpu.cfs_period_us is 100μs by default despite having an "ms" unit
for some unfortunate reason. Documentation:
https://www.kernel.org/doc/html/latest/scheduler/sched-bwc.html#management

The desired effect of that change is to match
k8s default `CPUCFSQuotaPeriod` value (100ms before that change)
with one used in k8s without the `CustomCPUCFSQuotaPeriod` flag enabled
and Linux CFS (100us, 1000x smaller than 100ms).
2022-08-10 03:25:05 +02:00
Kubernetes Release Robot
a38bb7ed81 CHANGELOG: Update directory for v1.25.0-rc.0 release 2022-08-09 22:36:19 +00:00
Kubernetes Prow Robot
d1a9a77280 Merge pull request #111770 from cici37/testForCelBeta
[test] Remove feature to enable e2e tests
2022-08-09 14:48:38 -07:00
Kubernetes Prow Robot
3e396dbac5 Merge pull request #111657 from aojea/hc_nodeport
document that services healthcheckNodePort is inmutable once set
2022-08-09 13:20:39 -07:00
Cici Huang
00ca624362 Remove feature 2022-08-09 19:23:27 +00:00
André Martins
94e7b2b8fd client-go/rest: check if url is nil to prevent nil pointer dereference
Signed-off-by: André Martins <aanm90@gmail.com>
2022-08-09 16:53:45 +02:00
Kubernetes Prow Robot
42a5eb4818 Merge pull request #111748 from zhaodiaoer/check-nil-InstanceMetadata
Prevent panic in cloud-provider
2022-08-09 07:00:50 -07:00
Roman Bednar
77d904f053 add integration tests for retroactive SC assignment
Also stress tested for ~2 hours to minimize possible races:

$ stress ./volume.test  -test.run=TestRetroactiveStorageClassAssignment
...
1h59m50s: 3198 runs so far, 0 failures
1h59m55s: 3200 runs so far, 0 failures
2h0m0s: 3201 runs so far, 0 failures
2h0m5s: 3202 runs so far, 0 failures
2022-08-09 15:22:38 +02:00
Chih-Chieh Yang
94097457fd Minor fixes 2022-08-09 12:19:00 +00:00
Kubernetes Prow Robot
f0bd02ca5e Merge pull request #111346 from piotrnosek/hpa-tests-2
Add e2e HPA Behavior tests: scale up/down limited by number of Pods / min, scale up/down limited by percentage / min
2022-08-09 03:14:50 -07:00
Arda Güçlü
60680fc1d5 (kubectl cluster-info): Move towards RESTClientGetter instead cmdutil.Factory
To preserve loose coupling, it is needed to pass `RESTClientGetter`
instead `cmdutil.Factory` for all kubectl commands.

This PR removes `cmdutil.Factory` usage in `cluster-info` command and
instead passes `RESTClientGetter`.
2022-08-09 12:50:21 +03:00
SataQiu
5d7d288c04 make the validation logic about LeaderElectionConfiguration consistent between component-base and client-go 2022-08-09 11:47:05 +08:00
Kubernetes Prow Robot
a837be03ff Merge pull request #111751 from dobsonj/issue111740
Fix flaky CSIInlineVolumes e2e test (issue 111740)
2022-08-08 19:54:49 -07:00
Kubernetes Prow Robot
25a3274a4f Merge pull request #111440 from verb/111025-ec-conformance
Promote Ephemeral Containers e2e test to Conformance
2022-08-08 15:35:57 -07:00
Kubernetes Prow Robot
0d9aaf1bca Merge pull request #111749 from endocrimes/dani/dbus-restart-test
node_e2e: add a dbus restart test
2022-08-08 14:27:57 -07:00
André Martins
f8f190cdd2 Revert "client-go: remove no longer used finalURLTemplate"
The functionality provided by the finalURLTemplate is still used by
certain external projects to track the request latency for requests
performed to kube-apiserver.

Using a template of the URL, instead of the URL itself, prevents the
explosion of label cardinality in exposed metrics since it aggregates
the URLs in a way that common URLs requests are reported as being the
same.

This reverts commit bebf5a608f.

Signed-off-by: André Martins <aanm90@gmail.com>
2022-08-08 23:27:45 +02:00
Jonathan Dobson
645f667376 Fix flaky CSIInlineVolumes e2e test (issue 111740) 2022-08-08 12:54:11 -06:00
Danielle Lancashire
e8442054fe node_e2e: add a dbus restart test 2022-08-08 16:56:13 +00:00