github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
105,139 Commits 1 Branch 31 Tags
51b94de68f0889e4e9bd5bc7673041f1275ca175
Commit Graph

43518 Commits

Author SHA1 Message Date
Shiming Zhang
a42c066af7 Fix Data Race in nodeshutdown restart 2021-06-29 16:23:45 +08:00
Kubernetes Prow Robot
1151dc1ee5 Merge pull request #103138 from sbangari/winDsrLoadBalancerServiceFix 
Loadbalancer IngressIP policy should be configured as non-DSR to enable routing mesh by default
 2021-06-28 23:26:51 -07:00
Chris Henzie
b7d732d3d6 Map PV access modes to CSI access modes 2021-06-28 21:25:38 -07:00
Chris Henzie
8db83c89aa CSI client helpers for NodeGetCapabilities 2021-06-28 21:25:37 -07:00
Chris Henzie
5f98f6cfa4 Update helper methods to print and parse ReadWriteOncePod access mode 2021-06-28 21:25:37 -07:00
Chris Henzie
2b98f8edc7 Enforce ReadWriteOncePod access mode during mount 2021-06-28 21:25:37 -07:00
Chris Henzie
7491d01651 Validate use of the ReadWriteOncePod access mode 
This will only work if the "ReadWriteOncePod" feature gate is enabled.
Additionally, this access mode will only work when used by itself. This
is because when ReadWriteOncePod is used on a PV or PVC, it renders all
other access modes useless since it is most restrictive.
 2021-06-28 21:25:37 -07:00
Chris Henzie
48ba5020a2 ReadWriteOncePod PV access mode and feature gate 2021-06-28 21:25:35 -07:00
Chris Henzie
358d2e0bd1 Export contains access mode helper method 
Will be used during validation of PVs and PVCs
 2021-06-28 21:24:56 -07:00
Chris Henzie
83e3ee780a Rename access mode contains helper method 
So it is consistent with other methods performing the same check (one
for internal and external types)
 2021-06-28 21:24:56 -07:00
Chris Henzie
dba8ee229e Add validation options for PersistentVolumeClaims 
These options provide an extensible way of configuring how PVCs are
validated
 2021-06-28 21:24:55 -07:00
Chris Henzie
9ba0eed7c5 Add validation options for PersistentVolumes 
These options provide an extensible way of configuring how PVs are
validated
 2021-06-28 21:24:55 -07:00
Kubernetes Prow Robot
d92f6c424d Merge pull request #103099 from liggitt/podsecurity 
PodSecurity admission
 2021-06-28 20:46:52 -07:00
Kubernetes Prow Robot
db3a216fbb Merge pull request #97238 from andrewsykim/kube-proxy-handle-terminating 
kube-proxy handle terminating endpoints
 2021-06-28 20:46:40 -07:00
Kubernetes Prow Robot
15d3c3a5e2 Merge pull request #102821 from ehashman/phase-fix 
Ensure kubelet statuses can handle loss of container runtime state
 2021-06-28 15:38:40 -07:00
Kubernetes Prow Robot
38f012320f Merge pull request #101947 from cynepco3hahue/memory_manager_move_to_beta 
memory manager: move to beta
 2021-06-28 15:38:28 -07:00
Jordan Liggitt
f39bddd767 PodSecurity: kube-apiserver: admission wiring 2021-06-28 17:45:35 -04:00
Jordan Liggitt
65a42a483c PodSecurity: pkg/features: feature gate 2021-06-28 17:45:35 -04:00
Kubernetes Prow Robot
51e1969d9c Merge pull request #103133 from marwanad/allow-scheduler-to-patch-conditions 
switch scheduler to generate the merge patch on pod status instead of the full pod
 2021-06-28 12:46:28 -07:00
Marwan Ahmed
48dfa2a554 generate scheduler merge patches on the pod status instead of the full pod 2021-06-28 09:35:55 -07:00
Aditi Sharma
def93317b4 Kubelet Credential Provider 
Improve concurrency and cache for credential provider

Removed lock from "Provide" as it can be called in parallel
from image puller. To avoid execing for the same image concurrently
wrapped exec in singleflight.

Purging the cache for expried data with 15mins interval only when
a request for credential is made.

KEP:2133

Signed-off-by: Aditi Sharma <adi.sky17@gmail.com>
 2021-06-28 21:15:03 +05:30
Raymonder jin
03f9f75e88 fix typo for daemon_controller_test.go 2021-06-28 04:54:09 -07:00
pacoxu
f2eec0a816 ResourceConfigForPod: check initContainers as other QoS func 
Signed-off-by: pacoxu <paco.xu@daocloud.io>
 2021-06-28 19:22:42 +08:00
Shiming Zhang
45ce2dfacc Treat negative as 1s in delete path 2021-06-28 11:49:39 +08:00
Shiming Zhang
40593fa4d3 spec.terminationGracePeriodSeconds allow it to be set to 1s if it was previously negative 2021-06-28 11:49:39 +08:00
wangyx1992
c85e567a3d cleanup: fix errors in wrapped format and log capitalization in proxy 
Signed-off-by: wangyx1992 <wang.yixiang@zte.com.cn>
 2021-06-28 04:39:15 +08:00
Kubernetes Prow Robot
a0f9c8c277 Merge pull request #103001 from zshihang/csi 
CSIServiceAccountToken ga
 2021-06-26 19:31:23 -07:00
Kubernetes Prow Robot
df2e13376d Merge pull request #103169 from Huang-Wei/res-scorer 
Optimize scheduler res scorer on non-requested extended res
 2021-06-26 04:21:23 -07:00
Kubernetes Prow Robot
7ab6c5322c Merge pull request #103190 from robscott/remove-app-protocol-gate 
Removing ServiceAppProtocol feature gate
 2021-06-26 03:15:23 -07:00
Kubernetes Prow Robot
fc26906546 Merge pull request #103049 from gdsoumya/feat/errors 
Updating github.com/pkg/errors with native go errors pkg
 2021-06-25 23:43:23 -07:00
Antonio Ojea
fa7b5d86e6 remove duplicate validation on services 
The rest api for services was validating that, on updates, both
the old and new service have the same type. That guarantees that
the type is going to be the same after that, thus we don't need
to validate the service type on the old and the new service.
 2021-06-25 23:18:56 +02:00
Kubernetes Prow Robot
015a0d9b01 Merge pull request #103130 from ahg-g/ahg-ca 
Add a function that returns default scheduler configuration
 2021-06-25 12:13:24 -07:00
Wei Huang
20f84b12a1 Optimize scheduler res scorer on non-requested extended res 2021-06-25 11:41:36 -07:00
Kubernetes Prow Robot
e19dc07ac5 Merge pull request #102898 from khenidak/fix-prefer-dualstack 
fix auto upgraded preferDual-Stack services (in cluster upgrade)
 2021-06-25 10:58:08 -07:00
Rob Scott
0cdd8c1c10 Removing ServiceAppProtocol feature gate 
This feature gate went GA in 1.20 and can be safely removed as part of
1.22.
 2021-06-25 10:24:50 -07:00
Kubernetes Prow Robot
9254610765 Merge pull request #103129 from XudongLiuHarold/service-loadbalancer-class-e2e 
Promote loadbalancerclass feature to beta
 2021-06-25 09:48:57 -07:00
Lee Verberne
babebf76d3 Apply PSP container tests to EphemeralContainers 2021-06-25 18:47:22 +02:00
Lee Verberne
70765fa24d Allow securityContext in EphemeralContainers 2021-06-25 18:47:22 +02:00
Kubernetes Prow Robot
07358f1663 Merge pull request #103146 from tech-geek29/fix-95380 
Change log level to Debug
 2021-06-25 07:44:45 -07:00
Kubernetes Prow Robot
55c0d318bb Merge pull request #103127 from PushkarJ/pkg-vol-csi-non-root-test-fix 
Fix panic in pkg/volume/csi tests
 2021-06-25 06:38:44 -07:00
Kubernetes Prow Robot
859004b271 Merge pull request #103161 from MikeSpreitzer/comment-apf-types 
Fix commenting oversights in APF types
 2021-06-24 22:32:45 -07:00
Mike Spreitzer
179e48c4be Add missing comments in APF API types 2021-06-25 00:27:40 -04:00
Xudong Liu
fe161579e2 Add integration test to promote serviceloadbalancerclass feature to beta. 2021-06-24 17:30:17 -07:00
Kubernetes Prow Robot
49ab9ac160 Merge pull request #103154 from jsafrane/fix-asw-mounter 
Update mounter interface in volume manager
 2021-06-24 14:18:05 -07:00
Kubernetes Prow Robot
2e93b3924a Merge pull request #101943 from saschagrunert/seccomp-default 
Add kubelet `SeccompDefault` alpha feature
 2021-06-24 13:07:41 -07:00
Kubernetes Prow Robot
79494183b7 Merge pull request #102869 from mengjiao-liu/json-register-move 
Remove default JSON logging format registration from k8s.io/component-base/logs package
 2021-06-24 11:59:41 -07:00
Pushkar Joglekar
1e250610b2 Fix panic in pkg/volume/csi tests 
When run as non-root user, TestAttacherMountDevice fails, because of missing
nil check that induces a panic. Fixed by doing err nil check
before using the returned user value from user.Current()
 2021-06-24 10:14:20 -07:00
Abdullah Gharaibeh
b6a317aeaf add a function that returns default scheduler configuration 2021-06-24 11:48:35 -04:00
Kubernetes Prow Robot
06dfe683ce Merge pull request #103123 from dims/remove-fakefs-to-drop-spf13/afero-dependency 
Remove fakefs to drop spf13/afero dependency
 2021-06-24 07:57:41 -07:00
Davanum Srinivas
5feff280e1 remove fakefs to drop spf13/afero dependency 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2021-06-24 09:51:34 -04:00