kubernetes

Author	SHA1	Message	Date
Kubernetes Prow Robot	6faeecc87d	Merge pull request #122631 from jmcgrath207/disable-service-links DisableServiceLinks admission controller	2024-04-18 00:00:28 -07:00
Kubernetes Prow Robot	2c6d5fae7a	Merge pull request #122471 from nayihz/feat_podaffinity_qhint interpodaffinity: scheduler queueing hints	2024-04-18 00:00:21 -07:00
Kubernetes Prow Robot	854af6aba6	Merge pull request #122411 from huww98/lift-mountedByNode ad controller: lift nodeAttachedTo.mountedByNode	2024-04-18 00:00:14 -07:00
Kubernetes Prow Robot	ef2c682635	Merge pull request #122082 from carlory/remove-keep-terminated-pod-volumes keep-terminated-pod-volumes flag on kubelet is removed	2024-04-17 23:59:54 -07:00
Kubernetes Prow Robot	a2abca11ff	Merge pull request #121898 from carlory/ing-registry-test ingress registry: add unit test for UpdateStatus	2024-04-17 23:59:40 -07:00
Kubernetes Prow Robot	3fda574e5e	Merge pull request #121770 from frzifus/tracing_kubelet_read-only pass tracerprovider to kublet-readonly server	2024-04-17 23:59:33 -07:00
Kubernetes Prow Robot	528cff12f6	Merge pull request #120969 from skitt/uber-go-mock Switch from golang/mock to uber-go/mock	2024-04-17 23:59:24 -07:00
Kubernetes Prow Robot	56b39eab7c	Merge pull request #119436 from claudiubelu/unittests-9 unittests: Fixes unit tests for Windows (part 9)	2024-04-17 22:51:32 -07:00
nayihz	1b3d10aafa	fix: node added with matched pod anti-affinity topologyKey Co-authored-by: Kensei Nakada <handbomusic@gmail.com>	2024-04-12 11:08:44 +08:00
huweiwen	3a71fe57f7	ad controller: lift nodeAttachedTo.mountedByNode optimize adc.nodeUpdate(). Time complexity reduced from O(n) to O(1), where n is the number of nodes. Data stored in nodeAttachedTo.mountedByNode is now at actualStateOfWorld.inUseVolumes. This refactor also ensures that we can record the state update even if the volume is not present in ASW yet. The added BenchmarkNodeUpdate result is reduced from 28076923 to 16030 ns/op. The previous BenchmarkPopulateActualStateOfWorld result is also reduced from 13s to 8s.	2024-04-11 15:35:17 +08:00
Maksym Pavlenko	be4b7176dc	Fix Abs path validation on Windows (#124084 ) * Windows: Consider slash-prefixed paths as absolute filepath.IsAbs does not consider "/" or "\" as absolute paths, even though files can be addressed as such. [1][2] Currently, there are some unit tests that are failing on Windows due to this reason. [1] https://learn.microsoft.com/en-us/dotnet/standard/io/file-path-formats#traditional-dos-paths [2] https://learn.microsoft.com/en-us/windows/win32/fileio/naming-a-file#fully-qualified-vs-relative-paths * Add test to verify IsAbs for windows Signed-off-by: Maksym Pavlenko <pavlenko.maksym@gmail.com> * Fix abs path validation on windows Signed-off-by: Maksym Pavlenko <pavlenko.maksym@gmail.com> * Skipp path clean check for podLogDir on windows Signed-off-by: Maksym Pavlenko <pavlenko.maksym@gmail.com> * Implement IsPathClean to validate path Signed-off-by: Maksym Pavlenko <pavlenko.maksym@gmail.com> * Add warn comment for IsAbs Signed-off-by: Maksym Pavlenko <pavlenko.maksym@gmail.com> --------- Signed-off-by: Maksym Pavlenko <pavlenko.maksym@gmail.com> Co-authored-by: Claudiu Belu <cbelu@cloudbasesolutions.com>	2024-04-10 10:13:59 -07:00
cpanato	fc428df491	update setcap/debian-base to bookworm-v1.0.2 Signed-off-by: cpanato <ctadeu@gmail.com>	2024-03-28 14:57:22 +01:00
Claudiu Belu	c2dfcf1e34	unittests: Fixes unit tests for Windows (part 9) Currently, there are some unit tests that are failing on Windows due to various reasons: - time.Now() is not as precise on Windows, which means that 2 consecutive calls may return the same timestamp. - Different "File not found" error messages on Windows. - The default Container Runtime URL scheme on Windows is npipe, not unix.	2024-03-26 13:42:50 +00:00
Fabio Bertinatto	c893c48432	Use the right feature gate when updating uncertain volumes	2024-03-25 16:47:08 -03:00
Kubernetes Prow Robot	227c2e7c2b	Merge pull request #123720 from HirazawaUi/fix-slow-dra-test kubelet: fix slow dra unit test	2024-03-25 10:22:33 -07:00
nayihz	0cfe4438e9	interpodaffinity: scheduler queueing hints	2024-03-20 21:44:24 +08:00
kerthcet	84750fe52e	Revert "enhancement(scheduler): share waitingPods among profiles" This reverts commit `227c1915db`.	2024-03-19 22:52:59 +01:00
kerthcet	a67d1dc010	Revert "Fix flaky test on multi profiles waiting pod" This reverts commit `5b072a59a2`.	2024-03-19 22:52:07 +01:00
Kubernetes Prow Robot	aa73f3163a	Merge pull request #122292 from sanposhiho/nodeupdate register Node/UpdateTaint event to plugins which has Node/Add only and doesn't have Node/UpdateTaint	2024-03-18 08:33:54 -07:00
Marek Siarkowicz	0130072b05	Serve watch without resourceVersion from cache and introduce a WatchFromStorageWithoutResourceVersion feature gate to allow serving watch from storage.	2024-03-18 11:55:13 +01:00
HirazawaUi	10b6319e64	fix slow dra unit test	2024-03-16 22:21:15 +08:00
Kensei Nakada	2b56de43e5	register Node/UpdateNodeTaint event to plugins which has Node/Add only, doesn't have Node/UpdateNodeTaint	2024-03-16 14:13:06 +00:00
Ed Bartosh	26881132bd	kubelet: assign Node as an owner for the ResourceSlice Co-authored-by: Patrick Ohly <patrick.ohly@intel.com>	2024-03-15 09:46:13 +02:00
Kubernetes Prow Robot	d194e6d06c	Merge pull request #123932 from pohly/dra-api-resource-model-rename dra api: NodeResourceModel -> ResourceModel	2024-03-14 12:11:35 -07:00
Patrick Ohly	a0add8d2c7	dra api: NodeResourceModel -> ResourceModel When renaming NodeResourceSlice to ResourceSlice, the embedded [Node]ResourceModel also should have been renamed.	2024-03-14 18:07:36 +01:00
Akihiro Suda	8963e73f12	kubelet: fix mixing up runtime classes with runtime handlers Fix issue 123906 Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>	2024-03-14 08:14:48 +09:00
Akihiro Suda	1dc05009fe	api: NodeStatus: rename RuntimeClasses to RuntimeHandlers The runtime classes are apiserver's concept, while the handlers are kubelet's concept. For NodeStatus, it makes more sense to return the latter ones here. This commit modifies the following files: - pkg/apis/core/types.go - staging/src/k8s.io/api/core/v1/types.go - pkg/kubelet/nodestatus/setters.go - pkg/kubelet/kubelet_node_status.go - pkg/registry/core/node/strategy.go - test/e2e_node/mount_rro_linux_test.go Other changes were auto-generated by running `make update`. Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>	2024-03-14 08:06:39 +09:00
Akihiro Suda	4a776f66ec	kubelet: silence "unknown runtime class" errors when unsupported Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>	2024-03-14 07:08:42 +09:00
Antonio Ojea	7ab1ef644e	Revert "Implement a field selector for ClusterIP on Services"	2024-03-12 12:20:27 +00:00
Kubernetes Prow Robot	3ec6a38795	Merge pull request #123828 from klueska/non-nil-parameters dra scheduler: ensure that we never have nil claim/class parameters	2024-03-11 14:35:57 -07:00
Kubernetes Prow Robot	57c89abb45	Merge pull request #123792 from mimowo/propose-api-comments-fix Adjust the Job field API comments and validation to the current state	2024-03-11 11:26:04 -07:00
Kevin Klues	21a0dd1d70	dra scheduler: create default claim/class parameters instead of nil Without this, the scheduler was crashing in newClaimController() in pkg/scheduler/framework/plugins/dynamicresources/structuredparameters.go The code in newClaimController() assumes that the parameters are not nil. Furthermore it assumes that there is at least one DriverRequest populated in order to allocate any resources to a claim. This PR adds logic to define default claim/class parameters that will allow allocation to proceed even if an end user doesn't provide any class or claim parameters themselves. Signed-off-by: Kevin Klues <kklues@nvidia.com>	2024-03-11 13:57:16 +00:00
Kevin Klues	fc2134c84c	dra kubelet: fix error log Previously we were returning the error string from 'err' (which is nil), when we should have been returning it from result.Error. Without this it is hard to debug issues with NodeUnprepareResources. Signed-off-by: Kevin Klues <kklues@nvidia.com>	2024-03-11 13:51:29 +00:00
Kubernetes Prow Robot	b3926d137c	Merge pull request #123831 from klueska/fix-unprepare-resources Add StructuredResourceModel to UnprepareResources call	2024-03-11 03:25:14 -07:00
Kubernetes Prow Robot	611dbaa055	Merge pull request #122790 from carlory/fix-121696 Fix flaky test: Test_Run_OneVolumeDetachFailNodeWithReadWriteOnce	2024-03-10 19:23:40 -07:00
Kubernetes Prow Robot	8f80e01467	Merge pull request #123719 from enj/enj/f/authn_config_beta Mark StructuredAuthenticationConfiguration feature gate as beta	2024-03-09 17:09:56 -08:00
Anish Ramasekar	62ac88b9ea	Add metrics for authentication config reload Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>	2024-03-09 14:40:22 -08:00
Kubernetes Prow Robot	77ecfb7800	Merge pull request #123525 from enj/enj/f/authn_config_reload Add dynamic reload support for authentication configuration	2024-03-09 14:13:37 -08:00
Monis Khan	b4935d910d	Add dynamic reload support for authentication configuration Signed-off-by: Monis Khan <mok@microsoft.com>	2024-03-09 14:29:33 -05:00
Kevin Klues	13a6dcc21c	dra kubelet: add StructuredResourceModel to UnprepareResources call Signed-off-by: Kevin Klues <kklues@nvidia.com>	2024-03-09 18:08:14 +00:00
Akihiro Suda	c7f52b34f3	kubelet: KEP-3857: Recursive Read-only (RRO) mounts See <https://kep.k8s.io/3857>. An example manifest: ```yaml apiVersion: v1 kind: Pod metadata: name: rro spec: volumes: - name: mnt hostPath: # tmpfs is mounted on /mnt/tmpfs path: /mnt containers: - name: busybox image: busybox args: ["sleep", "infinity"] volumeMounts: # /mnt-rro/tmpfs is not writable - name: mnt mountPath: /mnt-rro readOnly: true mountPropagation: None recursiveReadOnly: IfPossible # /mnt-ro/tmpfs is writable - name: mnt mountPath: /mnt-ro readOnly: true # /mnt-rw/tmpfs is writable - name: mnt mountPath: /mnt-rw ``` Requirements: - Feature gate "RecursiveReadOnlyMounts" to be enabled - Linux kernel >= 5.12 - runc >= 1.1 Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>	2024-03-10 03:00:59 +09:00
Akihiro Suda	6f12e1d8e5	kubelet: expose `containerStatuses.volumeMounts` For KEP-3857: Recursive Read-only (RRO) mounts Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>	2024-03-10 03:00:59 +09:00
Akihiro Suda	dd0882a83e	kubelet: expose `node.status.runtimeClasses` For KEP-3857: Recursive Read-only (RRO) mounts Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>	2024-03-10 03:00:59 +09:00
Akihiro Suda	8db07446f1	api: validate RecursiveReadOnlyMounts Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>	2024-03-10 02:59:30 +09:00
Akihiro Suda	8828530fd5	node: dropDisabledFields: recognize RecursiveReadOnlyMounts gate Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>	2024-03-09 09:48:13 +09:00
Akihiro Suda	ce1918875f	pod: dropDisabledFields: recognize RecursiveReadOnlyMounts Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>	2024-03-09 09:48:12 +09:00
Akihiro Suda	d940886d0a	api: KEP-3857: Recursive Read-only (RRO) mounts This commit modifies the following files: - pkg/apis/core/types.go - staging/src/k8s.io/api/core/v1/types.go Other changes were auto-generated by running `make update`. Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>	2024-03-09 09:48:12 +09:00
Akihiro Suda	0b1a507b00	pkg/features: add RecursiveReadOnlyMounts For KEP-3857: Recursive Read-only (RRO) mounts Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>	2024-03-09 09:48:10 +09:00
Akihiro Suda	76081a10c2	kubelet: RuntimeHandler: add SupportsRecursiveReadOnlyMounts For KEP-3857: Recursive Read-only (RRO) mounts Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>	2024-03-09 09:48:09 +09:00
Akihiro Suda	27f24a62e3	kubelet: change map[string]RuntimeHandler to []RuntimeHandler The map is changed to an array so as to retain the order of the original array propagated from the CRI runtime. Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>	2024-03-09 09:48:07 +09:00

1 2 3 4 5 ...

49512 Commits