github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
41,947 Commits 1 Branch 31 Tags 1,019 MiB
8686d67c80
Commit Graph

396 Commits

Author SHA1 Message Date
Clayton Coleman
e1ebde9f92
Add spec.nodeName and spec.serviceAccountName to downward env var 
The serviceAccountName is occasionally useful for clients running on
Kube that need to know who they are when talking to other components.

The nodeName is useful for PetSet or DaemonSet pods that need to make
calls back to the API to fetch info about their node.

Both fields are immutable, and cannot easily be retrieved in another
way.
 2016-08-20 15:50:36 -04:00
Rudi Chiarito
88fdb96bfb Add ExternalName to ServiceSpec 
ExternalName allows kubedns to return CNAME records for external
services. No proxying is involved.

See original issue at
https://github.com/kubernetes/kubernetes/issues/13748

Feature tracking at
https://github.com/kubernetes/features/issues/33
 2016-08-19 11:30:57 -07:00
Kubernetes Submit Queue
0bef4243cd Merge pull request #30386 from derekwaynecarr/fix-pvc-validation 
Automatic merge from submit-queue

Fix pvc requests.storage validation

A `PersistentVolumeClaim` should not be able to request a negative amount of storage.

/cc @kubernetes/sig-storage @kubernetes/rh-cluster-infra @deads2k
 2016-08-19 07:46:03 -07:00
Kubernetes Submit Queue
40367df750 Merge pull request #30590 from kevin-wangzefeng/taint-unique-by-key-effect 
Automatic merge from submit-queue

make taints unique by <key, effect> on a node

closes #29362
 2016-08-19 04:58:12 -07:00
Johannes Scheuermann
eed42380f9 Initial Quobyte support 2016-08-18 17:13:50 +02:00
Rodrigo Campos
568f4c2e63 Add mode permission bits to configmap, secrets and downwardAPI 
This implements the proposal in:
docs/proposals/secret-configmap-downwarapi-file-mode.md

Fixes: #28317.

The mounttest image is updated so it returns the permissions of the linked file
and not the symlink itself.
 2016-08-17 14:44:41 -04:00
Kevin
1e2d560253 make taints unique by <key, effect> on a node 2016-08-17 15:40:33 +08:00
derekwaynecarr
cebb038935 Fix pvc requests.storage validation 2016-08-15 09:56:04 -04:00
Jess Frazelle
7e9d82129e
fix go vet errors 
Signed-off-by: Jess Frazelle <jessfraz@google.com>

fix composites

Signed-off-by: Jess Frazelle <me@jessfraz.com>
 2016-08-10 16:45:41 -07:00
Kubernetes Submit Queue
94fc389daa Merge pull request #29837 from thockin/validate-dotdot-in-projections 
Automatic merge from submit-queue

Validate .. in projections, fix tests

I noticed this when reviewing another PR.  I fixed it but the test was beyond comprehension, so I fixed that too.

<!-- Reviewable:start -->
---
This change is [<img src="https://reviewable.kubernetes.io/review_button.svg" height="34" align="absmiddle" alt="Reviewable"/>](https://reviewable.kubernetes.io/reviews/kubernetes/kubernetes/29837)
<!-- Reviewable:end -->
 2016-08-09 02:31:58 -07:00
Kubernetes Submit Queue
1edf254efb Merge pull request #25458 from errm/env-var-style-config-keys 
Automatic merge from submit-queue

Allow Secret & ConfigMap keys to contain caps, dots, and underscores

[![Analytics](https://kubernetes-site.appspot.com/UA-36037335-10/GitHub/.github/PULL_REQUEST_TEMPLATE.md?pixel)]()

Re: #23722

This makes loosens the regex used in in Secrets and ConfigMap,
in order to make environment variable style keys valid
 2016-08-02 21:00:52 -07:00
Michael Fraenkel
b1e7e6cf46 Service names conform to RFC 1035 2016-08-02 08:42:15 -06:00
Ed Robinson
d4969ff032
Allows Secret & ConfigMap Keys to look like Environment Variables 
This makes environment variable style keys (uppercase with underscores) valid
in Secrets and ConfigMap.
 2016-08-01 20:56:40 +01:00
Tim Hockin
ef4bccf63e Clean up the ugliest unit test ever 
This volume-validation test was a disaster.  Better now, if longer to
scroll-through.
 2016-07-31 22:37:11 -07:00
Tim Hockin
9f2e13acca Validate that projected files do not contain .. 
This was checked in the kubelet, but not at the API.
 2016-07-31 22:37:11 -07:00
Ivan Shvedunov
02baa44948 Fix update validation for pods w/init containers. 2016-07-20 00:30:12 +03:00
k8s-merge-robot
8677b0c545 Merge pull request #28743 from Clarifai/gpu-impl 
Automatic merge from submit-queue

Fix GPU resource validation

This fixes scheduling of pods with GPU resources. The change was never upstreamed during the 1.3 beta period, as it got lost in the noise of other changes in our fork. Ooops. I'll submit a cherry-pick request for 1.3.1 as soon as this lands in master.

Because of defaulting, requests are always set if limits are. Thus, the check can never succeed. Instead, make sure that the two values are equal.

Also, remove a few other error messages and remove unnecessary Sprintf calls.
 2016-07-16 11:48:42 -07:00
Rudi Chiarito
b86dfcf60a Fix GPU resource validation 
Because of defaulting, requests are always set if limits are. Thus, the check can never succeed. Instead, make sure that the two values are equal.

Also, remove a few other error messages and remove unnecessary Sprintf calls.
 2016-07-13 15:05:59 -04:00
jiangyaoguo
4e91166bc6 Use PreferAvoidPods annotation to avoid pods being scheduled to specific node. 
1. define PreferAvoidPods annotation
2. add PreferAvoidPodsPriority
3. validate AvoidPods in node annotations
 2016-07-13 17:07:46 +08:00
markturansky
3ddb8470b9 make PVCs immutable (except volumeName) post-creation 2016-07-11 11:50:16 -04:00
Michail Kargakis
93c2656d5a api: validate generation updates 2016-07-07 13:09:48 +02:00
Tim Hockin
87c1fc50a8 Make IsValidIP return error strings 
Also treat 0.0.0.0 as special, like loopback and multicast.
 2016-07-02 17:32:05 -07:00
Tim Hockin
14bece550f Make IsValidPortNum/Name return error strings 2016-07-02 17:32:05 -07:00
Tim Hockin
189d4a5159 Make CIdentifier return error strings 2016-07-02 17:32:05 -07:00
David McMahon
ef0c9f0c5b Remove "All rights reserved" from all the headers. 2016-06-29 17:47:36 -07:00
Dr. Stefan Schimanski
3826d2598c Move seccomp annotation validation into api/validation 2016-06-14 14:58:32 +02:00
k8s-merge-robot
5288a255f4 Merge pull request #25567 from gmarek/validate 
Automatic merge from submit-queue

Add Controller field to OwnerReference

cc @davidopp
 2016-05-31 14:21:38 -07:00
gmarek
a6dd89d797 Add Controller field to OwnerReference 2016-05-31 15:33:35 +02:00
Paul Morie
faa112bad1 Add selector to PersistentVolumeClaim 2016-05-30 12:09:50 -04:00
k8s-merge-robot
a550cf16b9 Merge pull request #25826 from freehan/svcsourcerange 
Automatic merge from submit-queue

promote sourceRange into service spec

@thockin  one more for your pile

I will add docs at `http://releases.k8s.io/HEAD/docs/user-guide/services-firewalls.md`

cc: @justinsb 

Fixes: #20392
 2016-05-28 02:20:13 -07:00
Alex Mohr
edda837142 Merge pull request #25599 from caesarxuchao/orphaning-finalizer 
Add orphaning finalizer logic to GC
 2016-05-26 13:19:19 -07:00
Minhan Xia
a1bd33f510 promote sourceRange into service spec 2016-05-26 10:42:30 -07:00
Chao Xu
1665546d2d add finalizer logics to the API server and the garbage collector; handling DeleteOptions.OrphanDependents in the API server 2016-05-24 13:07:28 -07:00
Avesh Agarwal
1931931494 Downward API implementation for resources limits and requests 2016-05-24 12:22:35 -04:00
Tim Hockin
5862a60ae7 Make IsDNS1123Subdomain return error strings 2016-05-19 08:57:49 -07:00
Tim Hockin
77eff06a53 Make IsDNS1123Label return error strings 2016-05-19 08:57:49 -07:00
k8s-merge-robot
4f09f51486 Merge pull request #24800 from thockin/validation_pt8-3 
Automatic merge from submit-queue

Make name validators return string slices

Part of the larger validation PR, broken out for easier review and merge.  Builds on previous PRs in the series.
 2016-05-19 02:15:27 -07:00
Kevin
52fb89ff73 implement taints and tolerations 2016-05-18 15:06:23 +00:00
Tim Hockin
152c86ab06 Make name validators return string slices 2016-05-18 00:48:01 -07:00
k8s-merge-robot
4ac32179bf Merge pull request #24798 from thockin/validation_pt8-1 
Automatic merge from submit-queue

Make IsQualifiedName return error strings

Part of the larger validation PR, broken out for easier review and merge.

@lavalamp FYI, but I know you're swamped, too.
 2016-05-14 22:14:17 -07:00
k8s-merge-robot
08440b5dcc Merge pull request #24836 from Clarifai/gpu-impl 
Automatic merge from submit-queue

WIP v0 NVIDIA GPU support

```release-note
* Alpha support for scheduling pods on machines with NVIDIA GPUs whose kubelets use the `--experimental-nvidia-gpus` flag, using the alpha.kubernetes.io/nvidia-gpu resource 
```

Implements part of #24071 for  #23587

I am not familiar with the scheduler enough to know what to do with the scores. Mostly punting for now.

Missing items from the implementation plan: limitranger, rkt support, kubectl
support and docs

cc @erictune @davidopp @dchen1107 @vishh @Hui-Zhi @gopinatht
 2016-05-12 14:04:15 -07:00
Tim Hockin
72955770f3 Make IsQualifiedName return error strings 2016-05-10 11:23:23 -07:00
Rudi Chiarito
362c763fca WIP v0 NVIDIA GPU support 
Implements part of #24071

I am not familiar with the scheduler enough to know what to do with the scores. Punting for now.

Missing items from the implementation plan: limitranger, rkt support, kubectl
support and user docs
 2016-05-09 19:20:05 -04:00
k8s-merge-robot
f2f3b49f58 Merge pull request #22575 from MikaelCluseau/wip-issue-20466 
Automatic merge from submit-queue

Add subPath to mount a child dir or file of a volumeMount

Allow users to specify a subPath in Container.volumeMounts so they can use a single volume for many mounts instead of creating many volumes. For instance, a user can now use a single PersistentVolume to store the Mysql database and the document root of an Apache server of a LAMP stack pod by mapping them to different subPaths in this single volume.

Also solves https://github.com/kubernetes/kubernetes/issues/20466.
 2016-05-08 08:45:15 -07:00
Kevin
82ba4f077e implement inter pod topological affinity and anti-affinity 2016-05-06 06:46:23 +00:00
Mikaël Cluseau
06900a934d Introduce subPath in VolumeMount 2016-05-06 15:08:41 +11:00
Chao Xu
a46b7775fc API changes for finalizers and system-wide garbage collector 2016-05-04 21:54:55 -07:00
Clayton Coleman
fdb110c859
Fix the rest of the code 2016-04-29 17:12:10 -04:00
Jordan Liggitt
1e5815872e Validate deletion timestamp doesn't change on update 2016-04-28 11:50:48 -04:00
André Martins
c1a360b1d5 Removing IPv4 enforcement on Endpoints 
Signed-off-by: André Martins <aanm90@gmail.com>
 2016-04-14 16:20:00 +01:00
goltermann
32d569d6c7 Fixing all the "composite literal uses unkeyed fields" Vet errors. 2016-03-25 15:25:09 -07:00
Paul Morie
24aade64f5 Validate that volume mountpoints are unique 2016-03-17 23:52:34 -04:00
Avesh Agarwal
427774306c Fix validation of resources (cpu, memory, storage) for limit range types. 2016-03-10 11:33:53 -05:00
k8s-merge-robot
0e3469dce3 Merge pull request #22183 from pmorie/config-quota 
Auto commit by PR queue bot
 2016-03-04 03:12:51 -08:00
k8s-merge-robot
de72b6be1b Merge pull request #21907 from justinsb/load_balancer_source_ranges 
Auto commit by PR queue bot
 2016-03-03 14:10:47 -08:00
Justin Santa Barbara
cb92133dfa LB Source Ranges: Move validation into API layer 
Had to move other things around too to avoid a weird api ->
cloudprovider dependency.

Also adding fixes per code reviews.

(This is a squash of the previously approved commits)
 2016-03-03 10:27:17 -05:00
Paul Morie
834776aa1f Add resource quota for ConfigMap 2016-03-02 09:59:51 -05:00
Tim Hockin
56be551416 Validate volume paths do not have ':' 2016-02-29 13:22:45 -08:00
derekwaynecarr
df064bd53d ResourceQuota API validation for scopes and new resource types 2016-02-26 20:34:14 -05:00
Jordan Liggitt
b502b8f6a1 Restore service port validation compatibility with 1.0/1.1 2016-02-23 21:27:44 -05:00
k8s-merge-robot
c91a79be45 Merge pull request #21199 from erictune/validation-helper 
Auto commit by PR queue bot
 2016-02-16 07:07:49 -08:00
derekwaynecarr
c5cb09405c Improve persistent volume claim validation 2016-02-15 15:13:53 -05:00
David Oppenheimer
66368efad5 Comment out NodeAffinity.RequiredDuringSchedulingRequiredDuringExecution 
because it is not yet implemented.
 2016-02-14 17:46:13 -08:00
Eric Tune
825dc470cc Add a validation helper function. 
I will use this in a subsequent PR as part of #12298
 2016-02-12 14:38:22 -08:00
Huamin Chen
d7e4b826b9 support Azure File Service volume 
Signed-off-by: Huamin Chen <hchen@redhat.com>
 2016-02-09 01:07:12 +00:00
k8s-merge-robot
aac20ed69d Merge pull request #20600 from freehan/servicevalidation 
Auto commit by PR queue bot
 2016-02-06 10:23:18 -08:00
k8s-merge-robot
0ad6326d7f Merge pull request #20170 from pmorie/update-ads-pod 
Auto commit by PR queue bot
 2016-02-05 20:37:39 -08:00
Paul Morie
0b82d0b491 Allow pod.Spec.ActiveDeadlineSeconds to be updateable 2016-02-05 15:58:31 -05:00
Prashanth Balasubramanian
c56bebf594 Basic TLS support. 2016-02-05 11:00:04 -08:00
Rudi Chiarito
a2d1bb7acf Add httpHeaders to httpGet liveness probe 
Also update existing documentation and try to steer users away from 'host'.
Add validation.
 2016-02-05 11:20:04 -05:00
Daniel Smith
e6639de333 Merge pull request #20380 from mqliang/podcidr-validation 
pod cidr validation
 2016-02-04 23:16:02 -08:00
Kevin
c8c82c1d8f implement Node affinity and NodeSelector 2016-02-04 01:53:14 +00:00
Minhan Xia
ec7366fc2a add service validation for mix protocol 2016-02-03 14:54:32 -08:00
k8s-merge-robot
54808fb7ab Merge pull request #19824 from pmorie/env-source-variant 
Auto commit by PR queue bot
 2016-01-31 20:12:08 -08:00
mqliang
470d7af8c9 pod cidr validation 2016-01-31 11:49:31 +08:00
Paul Morie
defd1d0544 Add size limit for ConfigMap 2016-01-29 00:14:28 -05:00
Paul Morie
9030f16071 Move ConfigMap to main API 2016-01-28 17:07:05 -05:00
jhadvig
5927ad81be Additional SecretTypes 2016-01-26 14:34:12 +01:00
k8s-merge-robot
3978c76a26 Merge pull request #18790 from erictune/secret-validate 
Auto commit by PR queue bot
 2016-01-21 00:46:49 -08:00
Paul Morie
a45cbcd8a2 Add validation for EnvVarSource variant 2016-01-20 11:10:09 -05:00
Eric Tune
4a3d4defdf Validate kubernetes.io/dockerconfigjson secrets 
Added unit test.
 2016-01-19 12:35:30 -08:00
Paul Morie
60cf252e8b Add validation for variant-type of EnvVarSource 2016-01-18 15:07:48 -05:00
k8s-merge-robot
170c03a85f Merge pull request #16354 from mdshuai/valid-supplemental-groups 
Auto commit by PR queue bot
 2016-01-11 00:48:34 -08:00
mdshuai
27934da9cc Validate uids and gids for securitycontext 2016-01-11 15:17:25 +08:00
Kenneth Shelton
d399a8f8cc * Added UDP LB support (for GCE) 2016-01-05 20:51:21 +00:00
Chakravarthy Nelluri
fa76de79e5 Add support for flex volume. Flex volume adds support for thirdparty(vendor) 
volumes and custom mounts.
 2015-12-23 14:11:38 -08:00
Tim Hockin
0fecf965b4 Change how one-of blocks are validated 
I took a hard look at error output and played until I was happier.  This now
prints JSON for structs in the error, rather than go's format.

Also made the error message easier to read.

Fixed tests.
 2015-12-18 09:42:14 -08:00
Tim Hockin
43ed74748e Clean up and document validation strings 
Also add a detail string for Required and Forbidden.  Fix tests.
 2015-12-18 09:40:50 -08:00
Tim Hockin
27fc14000d audit validation errors to not double-print field names 2015-12-18 09:06:02 -08:00
Tim Hockin
87a35047dd Move FieldPath and errors to a sub-package 
This makes the naming and reading a lot simpler.
 2015-12-10 11:48:16 -08:00
deads2k
2ee3dfe415 update testapi to eliminate redundant fields 2015-12-07 15:54:26 -05:00
Jordan Liggitt
7d10fd3591 Validate pod spec.nodeName 2015-12-05 11:34:09 -05:00
Tim Hockin
e6df0b1a24 Convert validation to use FieldPath 
Before this change we have a mish-mash of ways to pass field names around for
error generation.  Sometimes string fieldnames, sometimes .Prefix(), sometimes
neither, often wrong names or not indexed when it should be.

Instead of that mess, this is part one of a couple of commits that will make it
more strongly typed and hopefully encourage correct behavior.  At least you
will have to think about field names, which is better than nothing.

It turned out to be really hard to do this incrementally.
 2015-12-03 08:19:44 -08:00
k8s-merge-robot
b3846ea748 Merge pull request #17862 from feihujiang/ensureHeadlessServicePortEqualToTargetPort 
Auto commit by PR queue bot
 2015-12-02 03:35:36 -08:00
Harry Zhang
70a9c0bf56 Add directory in GitRepo and updated tests. 
Update validate and gitRepo

Update generated code
 2015-12-02 00:20:38 +08:00
feihujiang
81b095ee52 Ensure headless service port equal to targetPort 2015-12-01 14:37:26 +08:00
Tim Hockin
682f2a5a79 Stronger typing for validation ErrorList 2015-11-23 10:01:43 -08:00
Tim Hockin
48b49a5cae s/ValidationErrorList/ErrorList/ 2015-11-22 20:13:20 -08:00
Tim Hockin
d64d1fbb3d s/ValidationError/Error/ 2015-11-22 20:12:46 -08:00
Tim Hockin
2a127d089a s/ValidationErrorType/ErrorType/ 2015-11-22 20:12:39 -08:00