github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
119,494 Commits 1 Branch 31 Tags
25447b95ad2caec7e01227efbb12bb7446c69dba
Commit Graph

19759 Commits

Author SHA1 Message Date
Abu Kashem
25447b95ad apiserver: add testdata for flowcontrol v1 2023-10-30 08:18:41 -04:00
Abu Kashem
730d10a8fb apiserver: add generated files for flowcontrol api change 2023-10-30 08:18:41 -04:00
Abu Kashem
9fd2ab419a apiserver: allow zero value for the 'nominalConcurrencyShares' field 2023-10-30 08:18:40 -04:00
Abu Kashem
430c226709 apiserver: fix lint issue, defaulting and validation test for flowcontrol v1 2023-10-30 08:18:40 -04:00
Abu Kashem
90c091deda apiserver: add pre-lifecycle replacement for flowcontrol v1beta3 2023-10-30 08:18:40 -04:00
Abu Kashem
17bda3c3e0 apiserver: apf controller, bootstrap, tests should use flowcontrol v1 API 2023-10-30 08:18:35 -04:00
Abu Kashem
5972037ffd apiserver: generate code for apf flowcontrol v1 API 
run:
- hack/update-codegen.sh
- hack/update-openapi-spec.sh
 2023-10-30 07:48:22 -04:00
Abu Kashem
03a9ad200d apiserver: remove copied generated files 
otherwsie we see the following error from code-gen
  Unrecognized package: k8s.io/api/flowcontrol/v1
 2023-10-30 07:48:22 -04:00
Abu Kashem
5cb03064d9 apiserver: update copy, rename v1beta3 to v1 2023-10-30 07:48:22 -04:00
Abu Kashem
dc72308093 apiserver: copy apf v1beta3 to v1 2023-10-30 07:48:21 -04:00
Kubernetes Prow Robot
38ed3ef7b7 Merge pull request #118886 from benluddy/apf-option-disable 
KEP-1040: Deep disablement for APF based on --enable-priority-and-fairness.
 2023-10-30 09:38:59 +01:00
Kubernetes Prow Robot
94f7049746 Merge pull request #119129 from shiftstack/deprecate-pvlabeler 
Document PVLabeler as deprecated
 2023-10-29 02:51:53 +02:00
Kubernetes Prow Robot
9482248aa9 Merge pull request #120474 from YaoC/register-apiserver-handlers-metrics 
Register metrics for apiserver handlers
 2023-10-28 19:34:52 +02:00
Kubernetes Prow Robot
1c8f88d4b6 Merge pull request #118760 from saschagrunert/user-namespaces-pss 
KEP-127: Update PSS based on feature gate
 2023-10-28 09:48:54 +02:00
Paco Xu
36d6917ae1 valid error for creation and update from valid to invalid only 
- using an option AllowNamespacedSysctlsForHostNetAndHostIPC

Signed-off-by: Paco Xu <paco.xu@daocloud.io>
 2023-10-28 06:58:54 +08:00
Paco Xu
9a8ccdebc5 use sysctl utils to do pod spec validation 
Signed-off-by: Paco Xu <paco.xu@daocloud.io>
 2023-10-28 06:58:51 +08:00
Paco Xu
11de9543ee move sysctl namespace and some funcs to component helpers util 
Signed-off-by: Paco Xu <paco.xu@daocloud.io>
 2023-10-28 06:58:28 +08:00
Kubernetes Prow Robot
1aef58b72a Merge pull request #121462 from alexzielenski/apiserver/apiextensions/ratcheting-metrics-actually 
KEP-4008: CRDValidationRatcheting Metrics
 2023-10-28 00:54:00 +02:00
Kubernetes Prow Robot
7310ea0628 Merge pull request #121405 from alexzielenski/apiserver/apiextensions/ratcheting-benchmarks 
KEP-4008: CRDValidationRatcheting: Add Benchmarks
 2023-10-28 00:53:46 +02:00
Alexander Zielenski
4bb7dc224c metrics: publish metrics from ratcheting across a request 2023-10-27 10:57:34 -07:00
Alexander Zielenski
8c72be3b74 ratcheting: add benchmark 2023-10-27 10:15:18 -07:00
Kubernetes Prow Robot
ec297aa13a Merge pull request #121524 from carlory/gomega 
bump gomega to 1.29.0
 2023-10-27 16:05:28 +02:00
Sascha Grunert
77e0adeb31 KEP-127: Update PSS based on feature gate 
Signed-off-by: Sascha Grunert <sgrunert@redhat.com>
 2023-10-27 10:49:11 +02:00
Kubernetes Prow Robot
036091645d Merge pull request #120615 from mkowalski/OCPBUGS-18641 
cloud-node-lifecycle controller: add fallback for empty providerID in shutdown
 2023-10-27 08:51:17 +02:00
carlory
760abc2a82 bump gomega to 1.29.0 2023-10-27 12:51:56 +08:00
Kubernetes Prow Robot
ebf46ce1b4 Merge pull request #121485 from ritazh/kmsv2-ga 
[KMSv2] promote KMSv2 and KMSv2KDF to GA
 2023-10-27 02:23:50 +02:00
Rita Zhang
a9b1adbafc [KMSv2] promote KMSv2 and KMSv2KDF to GA 
Signed-off-by: Rita Zhang <rita.z.zhang@gmail.com>
 2023-10-26 15:05:31 -07:00
Mat Kowalski
60a602f170 gce: fix test for non-existing instance in cloud 
This commit fixes a GCE instance test for a scenario where instance does
not exist in the cloud. In the `gce_instances.go` we have a code that
handles such a scenario and strips off the error, i.e.

```
if providerID, err = cloudprovider.GetInstanceProviderID(ctx, g, types.NodeName(node.Name)); err != nil {
	if err == cloudprovider.InstanceNotFound {
		return false, nil
	}
	return false, err
}
```

but nevertheless the test was expecing a non-empty error string. This
issue got exposed when implementation of `GetInstanceProviderID` in the
`cloud-provider/cloud.go` changed to return `InstanceNotFound` as-is and
not as a custom string.

Signed-off-by: Mat Kowalski <mko@redhat.com>
 2023-10-26 18:06:46 +02:00
Mat Kowalski
4a640ea384 cloud-node-lifecycle controller: add fallback for empty providerID in shutdown 
Simiarly to the function `ensureNodeExistsByProviderID`,
`shutdownInCloudProvider` should have a logic where in case of an empty
providerID we get it using the name of the node. This is to support
scenarios when the function is called with Node object that has a name
but does not have any provider ID.

Currently in such a scenario we have an error as it is not possible to
call `InstanceShutdownByProviderID` with empty value. With this change
in such a scenario we will first obtain a correct provider ID and only
afterwards check the shutdown status.

Signed-off-by: Mat Kowalski <mko@redhat.com>
 2023-10-26 18:06:45 +02:00
Davanum Srinivas
7fc42189b1 Add back k8s.io/kms/internal/plugins/_mock/go.* 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2023-10-26 09:54:13 -04:00
Kubernetes Prow Robot
993c918311 Merge pull request #121255 from tukwila/OpenAPIV3-cleanup 
Remove GAed feature gates OpenAPIV3
 2023-10-26 14:09:17 +02:00
Kubernetes Prow Robot
d0084356b3 Merge pull request #121338 from dims/working-otel-bump 
Bump otel and other dependencies for CVE-2023-45142
 2023-10-26 08:34:47 +02:00
Kubernetes Prow Robot
2dc35c28bf Merge pull request #121306 from dims/drop-usage-of-deprecated-method-NewNamedRateLimitingQueue 
[sample-controller] Drop usage of deprecated method NewNamedRateLimitingQueue
 2023-10-26 08:34:30 +02:00
Kubernetes Prow Robot
9363edf07b Merge pull request #121517 from soltysh/security_contacts 
Update security contacts for sig-cli
 2023-10-26 02:14:01 +02:00
Alexander Zielenski
d0328df04e add time tracking to CorrelatedObject 2023-10-25 14:53:21 -07:00
Kubernetes Prow Robot
ab096ef3de Merge pull request #121459 from jiahuif-forks/feature/cel/allow-empty-object 
allow empty object to be CEL value.
 2023-10-25 23:48:40 +02:00
Kubernetes Prow Robot
d7b3d5d4ee Merge pull request #121343 from alexzielenski/apiserver/apiextensions/ratcheting-metrics 
KEP-4008: CRDValidationRatcheting: Shared CorrelatedObject for Schema and CEL Validators
 2023-10-25 23:48:26 +02:00
Davanum Srinivas
702d911e22 working-config-otel 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2023-10-25 16:31:21 -04:00
Kubernetes Prow Robot
12b01aff1b Merge pull request #121275 from haircommander/image-max-gc 
KEP-4210: add support for ImageMaximumGCAge field
 2023-10-25 21:29:10 +02:00
Kubernetes Prow Robot
ae603d5260 Merge pull request #121095 from aramase/aramase/f/kmsv2_tracing 
[KMSv2] Add tracing
 2023-10-25 21:29:01 +02:00
Alexander Zielenski
e7a9a14848 replace CEL ValidateWithRatcheting with variadic options 
so we can now supply a shared CorrelatedObject
 2023-10-25 10:23:03 -07:00
Maciej Szulik
0ac35fe44f Update security contacts for sig-cli 2023-10-25 19:00:44 +02:00
Anish Ramasekar
8d3a25c7c9 [KMSv2] Add tracing 
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
 2023-10-25 16:50:20 +00:00
Kubernetes Prow Robot
4294c35fc9 Merge pull request #121297 from calvinballing/spellcheck-markdown 
Fix typos in markdown
 2023-10-25 13:18:26 +02:00
Kubernetes Prow Robot
dd61cd037d Merge pull request #121430 from bzsuni/cleanup/fsnotify 
Bump the fsnotify from version v1.6.0 to v1.7.0
 2023-10-25 05:46:11 +02:00
Ben Luddy
83f5b5c240 Deep disablement for APF based on --enable-priority-and-fairness. 
Avoids starting informers or the config-consuming controller when
--enable-priority-and-fairness=false. For kube-apiserver, the config-producing controller runs if
and only if flowcontrol API storage is enabled.
 2023-10-24 17:53:51 -04:00
Kubernetes Prow Robot
03ba7efb85 Merge pull request #121455 from cici37/test_cost 
CRD validation rule: Add stability tests for CEL cost estimation
 2023-10-24 21:00:58 +02:00
Kubernetes Prow Robot
413b15a8d9 Merge pull request #120914 from kannon92/kubelet-disk-api-cri-update 
Kubelet disk api cri update
 2023-10-24 21:00:40 +02:00
Alexander Zielenski
b3525946d5 ratcheting: provide a shared correlated object 
will be shared with CEL and used for metrics
 2023-10-24 11:26:13 -07:00
Alexander Zielenski
dfeab6eca8 fetch a shared correlated object off the validation options if it exists 
c
 2023-10-24 11:23:28 -07:00