8604 Commits

Author	SHA1	Message	Date
Kubernetes Prow Robot	4097a99fd7	Merge pull request #82800 from Random-Liu/fix-routes ... Only set ipv4/ipv6 routes when there is corresponding CIDR.	2019-09-18 19:14:59 -07:00
Kubernetes Prow Robot	cfa3e2c499	Merge pull request #82508 from aanm/fix-get-pod-ip-panic ... dockershim/network: fix panic for cni plugins in IPv4/IPv6 dual-stack mode	2019-09-17 19:43:32 -07:00
Kubernetes Prow Robot	67d928acdc	Merge pull request #82096 from logicalhan/version-deletion ... remove pkg/version and some of redundant copies of it	2019-09-17 14:27:16 -07:00
Lantao Liu	032c97daee	Only set ipv4/ipv6 routes when there is corresponding CIDR. ... Signed-off-by: Lantao Liu <lantaol@google.com>	2019-09-17 11:05:17 -07:00
Dan Winship	3948f16ff4	Add iptables.Monitor, use it from kubelet and kube-proxy ... Kubelet and kube-proxy both had loops to ensure that their iptables rules didn't get deleted, by repeatedly recreating them. But on systems with lots of iptables rules (ie, thousands of services), this can be very slow (and thus might end up holding the iptables lock for several seconds, blocking other operations, etc). The specific threat that they need to worry about is firewall-management commands that flush *all* dynamic iptables rules. So add a new iptables.Monitor() function that handles this by creating iptables-flush canaries and only triggering a full rule reload after noticing that someone has deleted those chains.	2019-09-17 10:19:26 -04:00
Han Kang	866ea74326	remove pkg/version and some of redundant copies of it ... Change-Id: Ia58367c1b1274bfb49c8a4784051463abaf795de	2019-09-16 16:24:35 -07:00
Dan Winship	b6c3d5416a	Drop iptables firewalld monitoring support ... The firewalld monitoring code was not well tested (and not easily testable), would never be triggered on most platforms, and was only being taken advantage of from one place (kube-proxy), which didn't need it anyway since it already has its own resync loop. Since the firewalld monitoring was the only consumer of pkg/util/dbus, we can also now delete that.	2019-09-15 15:35:40 -04:00
Niels van Oosterom	ef39312fa5	Fixed an issue where duplicate containerPorts where not allowed across different address families	2019-09-13 14:44:53 +02:00
David Zhu	f15cc60957	Update golang scientific notation using hack/update-gofmt.sh	2019-09-12 18:05:49 -07:00
Kubernetes Prow Robot	579e0c74c1	Merge pull request #82514 from dims/limit-exec-probe-bytes-read ... Exec probes should not be unbounded	2019-09-11 21:24:35 -07:00
Kubernetes Prow Robot	3f2f5dd36f	Merge pull request #82370 from zhuangqh/kubelet-tdt-containerLogs ... kubelet: refactor server containerLogs test to table driven test	2019-09-11 18:28:00 -07:00
Kubernetes Prow Robot	07cc813956	Merge pull request #81793 from lmdaly/topology-manager-owners ... Added OWNERS file for Topology Manager	2019-09-11 18:26:52 -07:00
Kubernetes Prow Robot	93d549cfdf	Merge pull request #82342 from carlosedp/nocgo ... Bump gonvml module and remove CGO dependency.	2019-09-11 15:26:38 -07:00
Kubernetes Prow Robot	252a7ecbe4	Merge pull request #82233 from SataQiu/fix-golint-kubelet ... Fix golint failures of pkg/kubelet	2019-09-11 10:41:19 -07:00
Kubernetes Prow Robot	3f4e30a80e	Merge pull request #82113 from kebe7jun/fix/log-format-and-typo ... Fix sync pod log format	2019-09-11 10:39:14 -07:00
Ted Yu	156c5cb3d3	Check the error return from AddPlugin	2019-09-11 10:38:28 -07:00
Davanum Srinivas	5706a13bd6	Exec probes should not be unbounded ... In 1f270ef4e2, we added 10KB as the read limit for http probes. we should do the same for exec probes as well. Change-Id: If154c5c4e669829ab94839c56260a894a6714f0f	2019-09-11 10:15:35 -04:00
Davanum Srinivas	1b79c1f6b3	Add 16MB limit to dockershim ExecSync ... Change-Id: Ia86cfdb9bdaf994d30216621f78aebc6c555cf4a	2019-09-11 09:52:28 -04:00
Tim Allclair	20fc22f461	Add LimitWriter util	2019-09-11 09:52:28 -04:00
Louise Daly	fbccf25e29	Added OWNERS file for Topology Manager	2019-09-11 06:40:24 +01:00
Kubernetes Prow Robot	349143ec35	Merge pull request #81530 from tedyu/dsow-pop-pod-vol ... Fixing contradictory log messages when AddPodToVolume encounters error	2019-09-10 22:11:22 -07:00
Kubernetes Prow Robot	e972912fe4	Merge pull request #74881 from qingsenLi/k8s190304-fix-syntactic ... fix syntactic error in kuberuntime_manager.go	2019-09-10 14:28:48 -07:00
André Martins	a5365d5be1	dockershim/network: fix panic for cni plugins in IPv4/IPv6 dual-stack mode ... ``` k8s.io/kubernetes/pkg/kubelet/dockershim/network/cni.(*cniNetworkPlugin).GetPodNetworkStatus(0xc000a04370, 0xc000b89a62, 0xb, 0xc000b89a49, 0x18, 0x42edffb, 0x6, 0xc000cfa340, 0x40, 0xc000ced7d0, ...) /workspace/anago-v1.16.0-beta.1.787+48ca054daba9e6/src/k8s.io/kubernetes/_output/dockerized/go/src/k8s.io/kubernetes/pkg/kubelet/dockershim/network/cni/cni_others.go:78 +0x420 k8s.io/kubernetes/pkg/kubelet/dockershim/network.(*PluginManager).GetPodNetworkStatus(0xc000a51880, 0xc000b89a62, 0xb, 0xc000b89a49, 0x18, 0x42edffb, 0x6, 0xc000cfa340, 0x40, 0x0, ...) /workspace/anago-v1.16.0-beta.1.787+48ca054daba9e6/src/k8s.io/kubernetes/_output/dockerized/go/src/k8s.io/kubernetes/pkg/kubelet/dockershim/network/plugins.go:391 +0x1f9 k8s.io/kubernetes/pkg/kubelet/dockershim.(*dockerService).getIPsFromPlugin(0xc00029b600, 0xc000c25cb0, 0x40, 0x78c0000, 0x7982100, 0x0, 0x0) /workspace/anago-v1.16.0-beta.1.787+48ca054daba9e6/src/k8s.io/kubernetes/_output/dockerized/go/src/k8s.io/kubernetes/pkg/kubelet/dockershim/docker_sandbox.go:335 +0x1c3 k8s.io/kubernetes/pkg/kubelet/dockershim.(*dockerService).getIPs(0xc00029b600, 0xc000b66cc0, 0x40, 0xc000c25cb0, 0x30bd171a, 0xed508364b, 0x0) /workspace/anago-v1.16.0-beta.1.787+48ca054daba9e6/src/k8s.io/kubernetes/_output/dockerized/go/src/k8s.io/kubernetes/pkg/kubelet/dockershim/docker_sandbox.go:373 +0xe3 k8s.io/kubernetes/pkg/kubelet/dockershim.(*dockerService).PodSandboxStatus(0xc00029b600, 0x4ad8b20, 0xc000c25c80, 0xc000cde1c0, 0xc00029b600, 0xc000c25c80, 0xc0005f5bd0) /workspace/anago-v1.16.0-beta.1.787+48ca054daba9e6/src/k8s.io/kubernetes/_output/dockerized/go/src/k8s.io/kubernetes/pkg/kubelet/dockershim/docker_sandbox.go:439 +0x133 k8s.io/kubernetes/vendor/k8s.io/cri-api/pkg/apis/runtime/v1alpha2._RuntimeService_PodSandboxStatus_Handler(0x42c4e00, 0xc00029b600, 0x4ad8b20, 0xc000c25c80, 0xc000c126c0, 0x0, 0x4ad8b20, 0xc000c25c80, 0xc000cb2d20, 0x42) /workspace/anago-v1.16.0-beta.1.787+48ca054daba9e6/src/k8s.io/kubernetes/_output/dockerized/go/src/k8s.io/kubernetes/vendor/k8s.io/cri-api/pkg/apis/runtime/v1alpha2/api.pb.go:7663 +0x23e k8s.io/kubernetes/vendor/google.golang.org/grpc.(*Server).processUnaryRPC(0xc000a4f760, 0x4b45280, 0xc000b02d80, 0xc000847c00, 0xc000a61b00, 0x78c97c0, 0x0, 0x0, 0x0) /workspace/anago-v1.16.0-beta.1.787+48ca054daba9e6/src/k8s.io/kubernetes/_output/dockerized/go/src/k8s.io/kubernetes/vendor/google.golang.org/grpc/server.go:995 +0x466 k8s.io/kubernetes/vendor/google.golang.org/grpc.(*Server).handleStream(0xc000a4f760, 0x4b45280, 0xc000b02d80, 0xc000847c00, 0x0) /workspace/anago-v1.16.0-beta.1.787+48ca054daba9e6/src/k8s.io/kubernetes/_output/dockerized/go/src/k8s.io/kubernetes/vendor/google.golang.org/grpc/server.go:1275 +0xda6 k8s.io/kubernetes/vendor/google.golang.org/grpc.(*Server).serveStreams.func1.1(0xc000a8e9c0, 0xc000a4f760, 0x4b45280, 0xc000b02d80, 0xc000847c00) /workspace/anago-v1.16.0-beta.1.787+48ca054daba9e6/src/k8s.io/kubernetes/_output/dockerized/go/src/k8s.io/kubernetes/vendor/google.golang.org/grpc/server.go:710 +0x9f created by k8s.io/kubernetes/vendor/google.golang.org/grpc.(*Server).serveStreams.func1 /workspace/anago-v1.16.0-beta.1.787+48ca054daba9e6/src/k8s.io/kubernetes/_output/dockerized/go/src/k8s.io/kubernetes/vendor/google.golang.org/grpc/server.go:708 +0xa1 ``` Fixes: dba434c4ba ("kubenet for ipv6 dualstack") Signed-off-by: André Martins <aanm90@gmail.com>	2019-09-10 21:06:19 +02:00
zhuangqh	057caf7fcf	kubelet: refactor server containerLogs test to table driven test ... Signed-off-by: zhuangqh <zhuangqhc@gmail.com>	2019-09-09 10:04:45 +08:00
Ted Yu	253797acab	Avoid conflicting log message when AddPodToVolume encounters error	2019-09-05 09:38:56 +08:00
Paul Fisher	d32aa6af1d	Add comment for testing 100+ CPU usage	2019-09-04 11:49:15 -07:00
Carlos de Paula	8cd98fbd60	Bump gonvml module and remove CGO dependency. ... Signed-off-by: Carlos de Paula <me@carlosedp.com>	2019-09-04 15:27:57 -03:00
Bruce Ma	f9169d29cb	skip recording inputs & outputs in fake script plugin when CNI_COMMAND=VERSION ... Signed-off-by: Bruce Ma <brucema19901024@gmail.com>	2019-09-04 22:50:13 +08:00
Paul Fisher	f798cee51e	pkg/kubelet: fix uint64 overflow when elapsed UsageCoreNanoSeconds exceeds 18446744073	2019-09-03 15:54:26 -07:00
Kubernetes Prow Robot	542f3c65a0	Merge pull request #78547 from MikeSpreitzer/fix-76699 ... Make iptables and ipvs modes of kube-proxy MASQUERADE --random-fully if possible	2019-09-03 14:34:58 -07:00
SataQiu	6d6b0be36b	fix golint failures of pkg/kubelet	2019-09-02 17:47:08 +08:00
Mike Spreitzer	d86d1defa1	Made IPVS and iptables modes of kube-proxy fully randomize masquerading if possible ... Work around Linux kernel bug that sometimes causes multiple flows to get mapped to the same IP:PORT and consequently some suffer packet drops. Also made the same update in kubelet. Also added cross-pointers between the two bodies of code, in comments. Some day we should eliminate the duplicate code. But today is not that day.	2019-09-01 22:07:30 -04:00
Kubernetes Prow Robot	7d40536c81	Merge pull request #82024 from codenrhoden/mv-hostutil ... Move HostUtil to pkg/volume/util/hostutil	2019-08-30 19:21:49 -07:00
Kubernetes Prow Robot	c86da8e2c1	Merge pull request #82048 from cheftako/kas-np4 ... Add support for konnectivity service to the etcd3 client.	2019-08-30 16:15:28 -07:00
Kubernetes Prow Robot	887edd2273	Merge pull request #82099 from lmdaly/single-numa-node-policy ... Topology Manager Policy: single-numa-node	2019-08-30 11:21:26 -07:00
Walter Fender	edbb0fa2fe	Add support for konnectivity service to the etcd3 client. ... If konnectivity service is enabled, the etcd client will now use it. This did require moving a few methods to break circular dependencies. Factored in feedback from lavalamp and wenjiaswe.	2019-08-30 10:31:53 -07:00
Travis Rhoden	935c23f2ad	Move HostUtil to pkg/volume/util/hostutil ... This patch moves the HostUtil functionality from the util/mount package to the volume/util/hostutil package. All `*NewHostUtil*` calls are changed to return concrete types instead of interfaces. All callers are changed to use the `*NewHostUtil*` methods instead of directly instantiating the concrete types.	2019-08-30 10:14:42 -06:00
Kubernetes Prow Robot	9165f7bf56	Merge pull request #82104 from klueska/upstream-fix-cpu-manager-topology-bug ... Fix bug in CPUManager with setting topology for policies	2019-08-30 08:00:44 -07:00
Kubernetes Prow Robot	f442b6ef32	Merge pull request #82090 from liggitt/webhook-http2 ... Use http/1.1 for apiserver->webhook clients	2019-08-30 06:26:54 -07:00
Antonio Ojea	cc7257b462	Kubenet can't fail fast on teardown	2019-08-30 10:19:10 +02:00
yuxiaobo	065343933d	delete extra comma	2019-08-30 16:03:33 +08:00
Antonio Ojea	c1e3d375d4	Add IPv6 support to kubenet hostport	2019-08-30 09:59:43 +02:00
Louise Daly	8ad1b5ba3b	Single-numa-node Topology Manager bug fix ... Added one off fix for single-numa-node policy to correctly reject pod admission on a resource allocation that spans NUMA nodes Co-authored-by: Kevin Klues <kklues@nvidia.com>	2019-08-30 07:17:56 +01:00
Louise Daly	f6c085f60e	Added Single NUMA Node Policy which ensure resource are ... aligned on a single NUMA node Co-authored-by: Kevin Klues <kklues@nvidia.com>	2019-08-30 07:17:17 +01:00
Kevin Klues	5ed80dadcf	Update CanAdmitPodResult() in TopologyManager to take a TopologyHint ... Previously it only took a bool, which limited the logic it could perform to determine if a pod should be admitted or not based on the merged hint from the policy.	2019-08-30 07:17:17 +01:00
Kubernetes Prow Robot	7d6f8d8f69	Merge pull request #80570 from klueska/upstream-add-topology-manager-to-devicemanager ... Add support for Topology Manager to Device Manager	2019-08-29 21:21:44 -07:00
Kubernetes Prow Robot	3ebe6a6a5f	Merge pull request #77807 from matthyx/startupProbe ... Add startupProbe to health checks	2019-08-29 21:21:30 -07:00
Kubernetes Prow Robot	7da563f0f8	Merge pull request #81573 from irajdeep/irajdeep/change_runningPod_runningContainer_metrics ... Convert kubelet metrics(running_pod_count and running_container_count) from non-standard prometheus collectors to standard gauges	2019-08-29 18:08:42 -07:00
Matthias Bertschy	a042a4b0ee	startupProbe: make update	2019-08-30 00:42:43 +02:00
Matthias Bertschy	1a08ea5984	startupProbe: Test changes	2019-08-30 00:40:26 +02:00