github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
111,905 Commits 1 Branch 31 Tags
429f1527a7ac94e5280cb41931e74ac52d7a3fb1
Commit Graph

2954 Commits

Author SHA1 Message Date
Jordan Liggitt
fc69084bf1 Update workload selector validation 2022-11-07 20:52:02 -05:00
Manjusaka
0843c4dfca Add extra value validation for matchExpression field in LabelSelector 2022-11-07 20:48:21 -05:00
Kubernetes Prow Robot
595ea32411 Merge pull request #113314 from cici37/celIntegration 
CEL validation in Admission chain
 2022-11-07 17:08:33 -08:00
Cici Huang
d3f48136d0 Add Authz check to validate policy and binding. 
Co-authored-by: Jiahui Feng <jhf@google.com>
Co-authored-by: Jordan Liggitt <liggitt@google.com>
 2022-11-07 21:29:56 +00:00
Cici Huang
0486e06261 Adding new api version of admissionregistration.k8s.io v1alpha1 for CEL in Admission Control 2022-11-07 20:51:51 +00:00
Kubernetes Prow Robot
0f3ac85d32 Merge pull request #113681 from andrewsykim/fix-node-address-validation 
fix node address validation
 2022-11-07 11:21:00 -08:00
Kubernetes Prow Robot
ac95e5b701 Merge pull request #113510 from alculquicondor/finalizers-stable 
Graduate JobTrackingWithFinalizers to stable
 2022-11-07 08:06:41 -08:00
Andrew Sy Kim
2aee9b26f7 fix node address validation 
Signed-off-by: Andrew Sy Kim <andrewsy@google.com>
 2022-11-07 10:22:44 -05:00
Aldo Culquicondor
4948918155 Graduate JobTrackingWithFinalizers to stable 
Change-Id: Ifc749a85b1270c0155ac511b91d4681d53236820
 2022-11-04 17:05:53 -04:00
Kubernetes Prow Robot
b20ddbd75a Merge pull request #113351 from andrewsykim/endpointslice-terminating-ga 
Promote EndpointSliceTerminatingCondition to GA
 2022-11-04 09:36:39 -07:00
kerthcet
04573fb8c9 Add api-side enablement tests for nodeInclusionPolicy when updating 
Signed-off-by: kerthcet <kerthcet@gmail.com>
 2022-11-04 15:11:08 +08:00
kerthcet
21dea23f56 Add api-side enablement tests for nodeInclusionPolicy 
Signed-off-by: kerthcet <kerthcet@gmail.com>
 2022-11-04 15:11:05 +08:00
Kubernetes Prow Robot
8c77820759 Merge pull request #113274 from Huang-Wei/kep-3521-A 
[KEP-3521] Part 1: New Pod API .spec.schedulingGates
 2022-11-03 21:24:25 -07:00
Andrew Sy Kim
5ca805fdee pkg/registry/discovery: remove references to EndpointSliceTerminatingCondition feature gate when dropping disabled fields 
Signed-off-by: Andrew Sy Kim <andrewsy@google.com>
 2022-11-03 20:26:51 -04:00
Wei Huang
7b6293b6b6 APIs, Validation and condition enforcements 
- New API field .spec.schedulingGates
- Validation and drop disabled fields
- Disallow binding a Pod carrying non-nil schedulingGates
- Disallow creating a Pod with non-nil nodeName and non-nil schedulingGates
- Adds a {type:PodScheduled, reason:WaitingForGates} condition if necessary
- New literal SchedulingGated in the STATUS column of `k get pod`
 2022-11-03 14:32:34 -07:00
Andy Voltz
29f4862ed8 Promote ServiceInternalTrafficPolicy to GA 2022-11-03 13:17:03 -04:00
Kubernetes Prow Robot
c98aef484d Merge pull request #112895 from nokia/kep-1435-GA 
KEP-1435 Mixed Protocol values in LoadBalancer Service GA
 2022-11-03 05:43:35 -07:00
Tim Hockin
0153bfad16 Copy LoadBalancerStatus from core to networking 
This type should never have been shared between Service and Ingress.
The `ports` field is unfortunate, but it is needed to stay compatible.
 2022-11-02 16:13:31 -07:00
Laszlo Janosi
82ce61afc7 KEP-1435 Mixed Protocol values in LoadBalancer Service GA 
Removed the unit tests that test the cases when the MixedProtocolLBService feature flag was false - the feature flag is locked to true with GA
Added an integration test to test whether the API server accepts an LB Service with different protocols.
Added an e2e test to test whether a service which is exposed by a multi-protocol LB Service is accessible via both ports.
Removed the conditional validation that compared the new and the old Service definitions during an update - the feature flag is locked to true with GA.
 2022-11-02 13:44:52 +02:00
Paco Xu
140502af8c add warning for PVC template in statefulset and in pod ephemeral volume source 2022-10-22 09:14:03 +08:00
Paco Xu
0b848bee4e pvc storage request warning for fractional byte value 
- create or update
 2022-10-21 16:15:55 +08:00
Jason Simmons
5a6acf85fa Align lifecycle handlers and probes 
Align the behavior of HTTP-based lifecycle handlers and HTTP-based
probers, converging on the probers implementation. This fixes multiple
deficiencies in the current implementation of lifecycle handlers
surrounding what functionality is available.

The functionality is gated by the features.ConsistentHTTPGetHandlers feature gate.
 2022-10-19 09:51:52 -07:00
Kubernetes Prow Robot
d754183866 Merge pull request #112163 from aojea/static_allocation_ga 
graduate ServiceIPStaticSubrange to GA
 2022-10-14 17:31:18 -07:00
Kubernetes Prow Robot
01019770cf Merge pull request #112789 from enj/enj/r/kms_load_once_v2 
Load encryption config once (second approach)
 2022-10-13 11:25:02 -07:00
Monis Khan
f507bc2553 Load encryption config once 
This change updates the API server code to load the encryption
config once at start up instead of multiple times.  Previously the
code would set up the storage transformers and the etcd healthz
checks in separate parse steps.  This is problematic for KMS v2 key
ID based staleness checks which need to be able to assert that the
API server has a single view into the KMS plugin's current key ID.

Signed-off-by: Monis Khan <mok@microsoft.com>
 2022-10-13 10:52:29 -04:00
Kubernetes Prow Robot
525280d285 Merge pull request #112643 from SergeyKanzhelev/removeDynamicKubeletConfig 
remove DynamicKubeletConfig feature gate from the code
 2022-10-12 01:33:00 -07:00
Kubernetes Prow Robot
9720af2ba3 Merge pull request #112306 from tkashem/v1beta3 
add v1beta3 for Priority And Fairness
 2022-10-03 10:06:14 -07:00
Abu Kashem
66fc0d7037 rename assuredConcurrencyShares for flowcontrol v1beta3 2022-09-26 15:34:10 -04:00
Sergey Kanzhelev
39e49a91d7 remove DynamicKubeletConfig feature gate from the code 2022-09-23 23:14:19 +00:00
JunYang
1706de24d2 use klog.InfoS instead of klog.V(0).Info and log structured(registry part) 2022-09-22 14:59:43 +08:00
Abu Kashem
0a99e6ebb1 apiserver: update apf logic to use v1beta3 2022-09-21 18:54:20 -04:00
Abu Kashem
e1a764d635 apiserver: enable v1beta3 for apf 2022-09-21 18:54:19 -04:00
Kubernetes Prow Robot
f6f44bff90 Merge pull request #111708 from yangjunmyfm192085/fixloginfi 
use klog.InfoS instead of klog.V(0).InfoS
 2022-09-19 07:53:18 -07:00
m.nabokikh
00dfba473b Add auth API to get self subject attributes 
Signed-off-by: m.nabokikh <maksim.nabokikh@flant.com>
 2022-09-14 18:00:26 +02:00
Monis Khan
4e68e9b5ad kms: fix go routine leak in gRPC connection 
Signed-off-by: Monis Khan <mok@microsoft.com>
 2022-09-08 11:46:57 -04:00
Antonio Ojea
c5a07b2e05 graduate ServiceIPStaticSubrange to GA 2022-09-02 07:13:18 +02:00
JunYang
2db4dea565 use klog.InfoS instead of klog.V(0).InfoS 2022-08-25 18:46:34 +08:00
Kubernetes Prow Robot
3e396dbac5 Merge pull request #111657 from aojea/hc_nodeport 
document that services healthcheckNodePort is inmutable once set
 2022-08-09 13:20:39 -07:00
Kubernetes Prow Robot
759785ea14 Merge pull request #109090 from sarveshr7/multicidr-rangeallocator 
Enhance NodeIPAM to support multiple ClusterCIDRs
 2022-08-07 15:40:18 -07:00
Kubernetes Prow Robot
64ed914545 Merge pull request #111258 from dobsonj/kep-596-ga-feature-flag 
KEP-596: Move CSIInlineVolume feature to GA
 2022-08-05 13:54:30 -07:00
Antonio Ojea
5ec9d4a530 doc services healthcheckNodePort is inmutable 2022-08-05 11:51:50 +02:00
Sarvesh Rangnekar
7093b10416 Introduce networking/v1alpha1 api, ClusterCIDR type 
Introduce networking/v1alpha1 api group.

Add `ClusterCIDR` type to networking/v1alpha1 api group, this type
will enable the NodeIPAM controller to support multiple ClusterCIDRs.
 2022-08-05 00:54:00 +00:00
Kubernetes Prow Robot
eefcf6aa80 Merge pull request #111113 from mimowo/retriable-pod-failures-job-controller 
Support handling of pod failures with respect to the configured rules
 2022-08-04 13:35:46 -07:00
Jonathan Dobson
5f774832a5 Move CSIInlineVolume feature to GA 2022-08-04 13:06:30 -06:00
Michal Wozniak
bf9ce70de3 Support handling of pod failures with respect to the specified rules 2022-08-04 18:39:08 +02:00
Jan Safranek
189f19a698 Update generation when SELinuxMount is changed 2022-08-04 10:51:00 +02:00
Jan Safranek
3efeeef346 Add CSIDriverSpec.SELinuxMount 
The new field tells Kubernetes if the CSI driver supports mounting of
volumes with -o context=XYZ or not.
 2022-08-04 10:51:00 +02:00
Kubernetes Prow Robot
c20ab84692 Merge pull request #104386 from shawnhanx/ut_2 
Add unit tests for registry/admissionregistration/validatingwebhookconfiguration
 2022-08-02 11:37:54 -07:00
Kubernetes Prow Robot
9ef16e7908 Merge pull request #108554 from pacoxu/bad-input-1 
add deprecated warning for node beta labels in pv/sc/rc/csi storage capacity
 2022-08-02 10:23:44 -07:00
Michal Wozniak
04fcbd721c Introduction of a pod condition type indicating disruption. Its reason field indicates the reason: 
- PreemptionByKubeScheduler (Pod preempted by kube-scheduler)
- DeletionByTaintManager (Pod deleted by taint manager due to NoExecute taint)
- EvictionByEvictionAPI (Pod evicted by Eviction API)
- DeletionByPodGC (an orphaned Pod deleted by PodGC)PreemptedByScheduler (Pod preempted by kube-scheduler)
 2022-08-02 11:12:16 +02:00