github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
101,965 Commits 1 Branch 31 Tags
43ebff8fa4365df10852f3be04ef1750d63243b4
Commit Graph

42458 Commits

Author SHA1 Message Date
WanLinghao
7df1078d6f Currently, kubelet token mamanger only clean tokens who are expired. For tokens with long expiration, if the pod who creates them got killed or evicted, those tokens may stay in kubelet's memory until they are expired. It's bad for kubelet and node itself. After this patch, each time a pod was deleted, token manager would clean related tokens. 2018-10-22 09:32:59 +08:00
gman
571ad40fa1 CSI client: added missing lock when reading from csiDrivers 2018-10-20 22:43:17 +02:00
andrewsykim
3521ebd1e7 pass in stopCh for GCE cluster ID controller 2018-10-19 17:51:58 -04:00
andrewsykim
2908174517 pass in stopCh to cloud provider Initialize method for custom controllers 2018-10-19 17:51:58 -04:00
Matt Matejczyk
d99b68a6e2 Update annotation name and documentation. 2018-10-19 16:57:49 -04:00
Jordan Liggitt
fdd87a8872 Avoid dropping resourcequota metadata in controller 2018-10-19 14:52:53 -04:00
Matt Matejczyk
536cee71b4 Merge branch 'master' into annotation 2018-10-19 13:54:06 -04:00
Matt Matejczyk
4cdab7c985 Rename and update the doc. 2018-10-19 13:11:56 -04:00
Matt Matejczyk
7f7a4590b9 Specify in the documentation that the timestamp will be expressed in milliseconds. 2018-10-19 12:19:02 -04:00
k8s-ci-robot
37cb88efd2 Merge pull request #70012 from andyzhangx/azuredisk-logging 
add more logging for azure disk diagnostics
 2018-10-19 07:18:19 -07:00
k8s-ci-robot
34196ac946 Merge pull request #69692 from seans3/deployment-util-fix 
kubectl: copy deployment util dependency into kubectl
 2018-10-19 06:07:40 -07:00
andyzhangx
79a5bb6216 add more logging for azure disk diagnostics 2018-10-19 08:11:49 +00:00
k8s-ci-robot
3d4cc707a2 Merge pull request #69454 from zetaab/fix_aws_node_delete 
delete node from aws if it is terminated
 2018-10-19 00:10:22 -07:00
k8s-ci-robot
d8f9b5b668 Merge pull request #69958 from Pingan2017/cleanup-kubectl-delete 
remove unneed if block for kubectl delete command
 2018-10-18 19:50:53 -07:00
k8s-ci-robot
85e460e362 Merge pull request #69809 from sc14aec/create-context-error-messages 
Fix error messages suggesting invalid flag
 2018-10-18 19:50:43 -07:00
k8s-ci-robot
34db40fbf5 Merge pull request #67930 from AdamDang/patch-15 
Fix the returned messaged: statefullset->statefulset
 2018-10-18 18:39:03 -07:00
k8s-ci-robot
4339a70dfa Merge pull request #68841 from krzysztof-jastrzebski/cpuandmemeory2 
Optimizes calculating stats when only CPU and Memory stats are returned from Kubelet stats/summary http endpoint.
 2018-10-18 16:41:07 -07:00
k8s-ci-robot
007ad9179c Merge pull request #69760 from Pingan2017/validate-args 
validate args for kubectl api-versions/api-resources command
 2018-10-18 14:44:00 -07:00
k8s-ci-robot
00dd32b167 Merge pull request #69573 from bjhaid/master 
Opt out of chowning and chmoding from kubectl cp.
 2018-10-18 14:43:49 -07:00
Sean Sullivan
ffd4ea963d kubectl: copy deployment util dependency into kubectl 2018-10-18 12:02:39 -07:00
Brad Hoekstra
409a48ef91 Set the default for EnableServiceLinks only in Pod 2018-10-18 13:44:21 -04:00
k8s-ci-robot
4d66eeb922 Merge pull request #69709 from seans3/kubectl-translate-fix 
kubectl: move translated data into kubectl
 2018-10-18 10:25:18 -07:00
Han Kang
56cd8ecf08 fix lint issues in the apis/abac directory (except latest.go) 2018-10-18 09:05:04 -07:00
bjhaid
44bed94f0e Opt out of chowning and chmoding from kubectl cp. 
`kubectl cp` relies on tar to extract the copied file/directory in the
container, tar by default attempts to chown/chmod the extracted file
after extraction if the user is the "superuser"(root)

```
--same-owner
try extracting files with the same ownership as exists in the archive
(default for superuser)
-p, --preserve-permissions, --same-permissions
extract information about file permissions (default for superuser)
```

This fails in environment where the container runs as root but is not
granted the OWNER or CHOWN capability.

Before this patch below was the behavior of `kubectl cp`

```
kubectl cp README.md foo-67b6fcbd4c-qjlt6:/tmp
tar: README.md: Cannot change ownership to uid 1000, gid 1000: Operation
not permitted
tar: Exiting with failure status due to previous errors
command terminated with exit code 2
kubectl exec -it foo-67b6fcbd4c-qjlt6 -- ls -l /tmp/README.md
-rw------- 1 1000 1000 3179 Oct  7 22:00 /tmp/README.md
```

After this patch

```
kubectl cp -x a foo-67b6fcbd4c-qjlt6:/
kubectl exec -it foo-67b6fcbd4c-qjlt6 -- ls -l /tmp/README.md
-rw-r--r-- 1 root root 3179 Oct  7 22:00 /tmp/README.md
```
 2018-10-18 14:16:06 +00:00
k8s-ci-robot
d425258532 Merge pull request #69788 from ravisantoshgudimetla/taint-based-eviction 
Add test cases for taintbasedevictions
 2018-10-18 06:34:31 -07:00
Matt Matejczyk
803ee8426d Add EndpointsLastTriggerTime annotation. 2018-10-18 09:25:27 -04:00
k8s-ci-robot
b5c25728ec Merge pull request #69718 from andyzhangx/azurefile-premium 
support Azure premium file for azure file plugin
 2018-10-18 05:18:50 -07:00
k8s-ci-robot
060ecb8837 Merge pull request #69936 from seans3/describe-fix 
kubectl: remove internalclientset dependency
 2018-10-17 22:25:49 -07:00
k8s-ci-robot
7a53a075e4 Merge pull request #69824 from Huang-Wei/enable-TaintBasedEvictions 
promote TaintBasedEvictions featuregate to beta
 2018-10-17 21:04:04 -07:00
Pingan2017
797f0ac660 remove unneed if block for kubectl delete command 2018-10-18 11:33:45 +08:00
k8s-ci-robot
aad6437aa9 Merge pull request #64061 from wgliang/master.remove-unused-code-pkg-controller 
remove unused code of (pkg/controller)
 2018-10-17 19:54:05 -07:00
Weibin Lin
e81776b140 update bazel 2018-10-18 10:18:15 +08:00
Weibin Lin
d02e3bd780 use PodSecurityPolicySpec of policy/v1beta1 instead of extensions/v1beta1 2018-10-18 10:18:13 +08:00
k8s-ci-robot
6f4b768c94 Merge pull request #65350 from liggitt/simplify-taint-manager-key 
Simplify taint manager workqueue keys
 2018-10-17 18:39:03 -07:00
k8s-ci-robot
feb6475a30 Merge pull request #68952 from grayluck/node-cidr-size 
Skip node cidr mask size check for cloud allocation
 2018-10-17 16:19:49 -07:00
k8s-ci-robot
0652e098d0 Merge pull request #67547 from pbarker/audit-api 
dynamic audit configuration api
 2018-10-17 16:19:39 -07:00
k8s-ci-robot
bc79dcfd05 Merge pull request #69933 from wangzhen127/fix 
Put node lease lister behind feature gate
 2018-10-17 13:42:12 -07:00
k8s-ci-robot
30a06af453 Merge pull request #69671 from mooncak/fix_kubelet 
Delete duplicated words in logs
 2018-10-17 11:57:12 -07:00
k8s-ci-robot
897b3a9fa7 Merge pull request #69437 from ravisantoshgudimetla/promote-resource-limits-priority-function 
Promote resource limits priority function to beta
 2018-10-17 11:57:02 -07:00
k8s-ci-robot
1669277bb3 Merge pull request #68350 from wgliang/fixbug/recursive-call-cloudprovider 
fix bug, infinite recursive call of GetLoadBalancerName()
 2018-10-17 11:56:51 -07:00
k8s-ci-robot
e85cb406eb Merge pull request #65567 from ceshihao/pod_status_after_eviction 
Pod status should contain ContainerStatuses if deadline exceeded
 2018-10-17 11:56:41 -07:00
k8s-ci-robot
7c17beb639 Merge pull request #65477 from pusher/fix-client-ca-hook 
Minimize writes to the client CA ConfigMap during API server start up
 2018-10-17 11:56:30 -07:00
yankaiz
e3121c1f81 Skip node cidr mask size check for cloud allocation. 
Unittest added for node_ipan_controller.go.
 2018-10-17 11:29:49 -07:00
Sean Sullivan
b7f8369da2 kubectl: move translated data into kubectl 2018-10-17 10:34:21 -07:00
Sean Sullivan
a76b6ee56a kubectl: remove internalclientset dependency 2018-10-17 10:23:55 -07:00
Zhen Wang
7bb61c566d Put node lease lister behind feature gate 2018-10-17 09:41:30 -07:00
Jordan Liggitt
9503c64f27 Simplify taint manager workqueue keys 2018-10-17 10:47:14 -04:00
k8s-ci-robot
0d6f6a680b Merge pull request #68441 from smarterclayton/describe_dependency 
Move versioned generators into their own package
 2018-10-17 04:24:06 -07:00
Renan Gonçalves
5cd3c00dba Combine creating a volume and applying tags in one operation 
The previous version forced us to create AWS IAM Policies that are too
permissive when dealing with volumes. That's because:

1. Volumes were created without tags that identifies the new resource as
managed by the cluster. So technically the resourse, at creation time,
is not owned by the cluster.

2. Tags were added to the volume making the resource now managed by the
cluster. The problem being that it could make ANY volume as managed by the
cluster. Thus allowing resources that aren't really part of the cluster,
or part of no cluster at all, to become a resource managed by the cluster.

By combining the operations we can both make the code simpler, since we
don't need to deal with deleting a volume in case we can't apply tags to
it, plus the security model gets a nice improvement.
 2018-10-17 11:14:01 +02:00
k8s-ci-robot
ec87d22dea Merge pull request #66057 from xujieasd/cleanLeacyBindAddr-test 
add UT code for cleanLegacyBindAddr
 2018-10-17 01:22:05 -07:00