github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
121,052 Commits 1 Branch 31 Tags
8a0147c8825ddd6afa56fd3e647e2d659683483c
Commit Graph

24681 Commits

Author SHA1 Message Date
Kubernetes Prow Robot
6ff6b51904 Merge pull request #123333 from liggitt/authz-metrics 
Add allowed/denied metrics for authorizers
 2024-02-17 18:28:55 -08:00
Davanum Srinivas
dfc598b6fe Bump containerLogMonitorInterval to the minimum allowed 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2024-02-17 17:53:19 -05:00
Jordan Liggitt
d5d3eddb95 Add allowed/denied metrics for authorizers 2024-02-16 08:20:59 -05:00
Kubernetes Prow Robot
66d038d84d Merge pull request #121946 from liggitt/reload-authz 
KEP-3221: Implement authorization configuration file reloading
 2024-02-15 18:37:13 -08:00
Kubernetes Prow Robot
1f40d5c095 Merge pull request #123285 from pohly/e2e-pod-phase 
e2e pod: dump pod in unexpected phase
 2024-02-15 16:34:54 -08:00
Kubernetes Prow Robot
50b4cfc414 Merge pull request #123321 from mimowo/job-reset-metrics 
Reset metrics in the Job integration test before testing
 2024-02-15 10:57:58 -08:00
Kubernetes Prow Robot
47f92ce231 Merge pull request #123242 from mimowo/fast-backoff-for-replacment-policy-tests 
Improve accuracy of the PodsCreationTotal metric and use fast pod failure backoff for ReplacementPolicy integration tests
 2024-02-15 09:54:53 -08:00
Kubernetes Prow Robot
50bf3a2060 Merge pull request #123305 from aramase/aramase/f/kep_3331_audience_match_policy_follow_up 
Add integration test for multiple audience in structured authn
 2024-02-15 08:16:27 -08:00
Michal Wozniak
ab8cdae3b1 Reset metrics in the Job integration test before testing 2024-02-15 14:50:24 +01:00
Maciej Szulik
ec7e051bc0 Always test PDB's during service upgrade test 
OpenShift has been running this tests on various platform for several
years now without any problems.
 2024-02-15 14:22:46 +01:00
Michal Wozniak
115dc90633 Increase accuracy of the pods_creation_total metric and improve test exec time 2024-02-15 10:59:01 +01:00
Anish Ramasekar
0feb1d5173 Add integration test for multiple audience in structured authn 
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
 2024-02-14 18:50:46 -08:00
Kubernetes Prow Robot
d76d7a1e7a Merge pull request #123288 from AkihiroSuda/agnhost 
e2e_node: replace `registry.k8s.io/stress:v1` with agnhost
 2024-02-14 18:08:41 -08:00
Kubernetes Prow Robot
72c3c7c924 Merge pull request #123282 from enj/enj/i/authn_config_algs 
Support all key algs with structured authn config
 2024-02-14 18:08:32 -08:00
Kubernetes Prow Robot
ba450636a4 Merge pull request #123165 from aramase/aramase/f/kep_3331_audience_match_policy 
Add `AudienceMatchPolicy` and support multiple audiences in AuthenticationConfiguration
 2024-02-14 17:00:04 -08:00
Kubernetes Prow Robot
8e11104f0b Merge pull request #121461 from alexzielenski/apiserver/apiextensions/ratcheting-beta 
KEP-4008: CRDValidationRatcheting Bump Feature Gate To Beta
 2024-02-14 15:56:47 -08:00
Kubernetes Prow Robot
5b2c919583 Merge pull request #114301 from harshanarayana/kubelet/log-rotate-improvements 
kubelet: enable configurable rotation duration and parallel rotate
 2024-02-14 15:56:38 -08:00
Jordan Liggitt
5dc92ada06 Implement authz config file reloading 2024-02-14 18:09:15 -05:00
Kubernetes Prow Robot
145ccf1f13 Merge pull request #123260 from pohly/e2e-tag-docs 
e2e: tag documentation + sorting
 2024-02-14 14:52:33 -08:00
Anish Ramasekar
18c563546a support multiple audiences with jwt authenticator 
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
 2024-02-14 10:47:07 -08:00
Monis Khan
b5e0068325 Support all key algs with structured authn config 
Signed-off-by: Monis Khan <mok@microsoft.com>
 2024-02-14 09:40:25 -05:00
Akihiro Suda
e8b08cd056 e2e_node: replace registry.k8s.io/stress:v1 with agnhost 
agnhost now contains the stress functionality (PR 123258).

Fix issue 123146

Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
 2024-02-14 19:37:13 +09:00
Akihiro Suda
5d861b6f12 promote agnhost to v2.47 
Since v2.45, the `stress` subcommand was added and the CI issue was fixed:
- kubernetes/kubernetes PR 123258
- kubernetes/kubernetes PR 123284
- kubernetes/k8s.io     PR 6422

Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
 2024-02-14 19:33:46 +09:00
Patrick Ohly
aa772d77fb e2e pod: dump pod in unexpected phase 
When stopping polling, the provided messages becomes the complete failure
message. This means that the code which calls gomega.StopTrying must include
the pod in the message instead of just summarizing the phase. This makes the
failure more useful.
 2024-02-14 09:01:32 +01:00
Akihiro Suda
9c726b015c agnhost: v2.47 
agnhost was updated to v2.46 in PR 123258, but the image was not
published due to the failue of `post-kubernetes-push-e2e-agnhost-test-images`
(issue 123266).

Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
 2024-02-14 15:11:31 +09:00
Monis Khan
b8a59346fe test/oidc: extract key type to allow testing different algs 
Signed-off-by: Monis Khan <mok@microsoft.com>
 2024-02-13 17:05:33 -05:00
Akihiro Suda
6ff675310c image-util.sh: fix gcr.io/.../agnhost:2.46-linux-amd64 is a manifest list 
Fix issue 123266

> CI: `post-kubernetes-push-e2e-agnhost-test-images` is failing
> (`gcr.io/k8s-staging-e2e-test-images/agnhost:2.46-linux-amd64 is a manifest list`)

To avoid creating a manifest list with the recent version of buildx,
`--provenance=false --sbom=false` has to be specified.

Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
 2024-02-14 01:37:05 +09:00
Kubernetes Prow Robot
7abb063b42 Merge pull request #123179 from aramase/aramase/f/encryption_config_reload_metric 
Add `apiserver_encryption_config_controller_automatic_reloads_total` metric and deprecate success/failure counter
 2024-02-13 08:28:47 -08:00
Akihiro Suda
7ee89440c3 agnhost: v2.46 
Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
 2024-02-13 23:21:52 +09:00
Akihiro Suda
07c701fecb agnhost: merge registry.k8s.io/stress:v1 (github.com/vishh/stress) 
Merge vishh/stress@eab4e3384b into
agnhost.

Old usage: `stress -mem-alloc-size 12Mi -mem-alloc-sleep 10s -mem-total 4Gi`
New usage: `agnhost stress --mem-alloc-size 12Mi --mem-alloc-sleep 10s --mem-total 4Gi`

This is a part of the steps to migrate from legacy Schema 1 images
(issue 123146)

Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
 2024-02-13 23:21:05 +09:00
Patrick Ohly
e53ac42633 e2e labels: add placeholder docs for existing items 
Adding a doc comment for all existing items makes it more obvious that new
items should be documented more carefully. It also has the welcome side effect
that each item gets indented independently from the others.
 2024-02-13 11:57:36 +01:00
Patrick Ohly
445443bd8a e2e labels: ensure that the lists remain sorted 
Adding new entries at the bottom is tempting, but increases the risk of merge
conflicts between unrelated PRs. Let's use alphabetic order instead.
 2024-02-13 11:51:45 +01:00
Anish Ramasekar
77241d3125 Add apiserver_encryption_config_controller_automatic_reloads_total 
metric

- Adds `apiserver_encryption_config_controller_automatic_reloads_total`
  metric with status label for encryption config reload success/failure.
- Deprecated `apiserver_encryption_config_controller_automatic_reload_failures_total` and `apiserver_encryption_config_controller_automatic_reload_success_total`

Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
 2024-02-12 21:47:46 -08:00
Anish Ramasekar
0e6409873a remove --v arg from kubetest2-tester-ginkgo test args 
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
 2024-02-13 00:02:49 +00:00
Anish Ramasekar
7dd624d344 ci: bump kind to latest for kms jobs 
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
 2024-02-12 23:01:50 +00:00
Kubernetes Prow Robot
3bf9477b52 Merge pull request #122472 from pacoxu/flowcontrolv1 
flowcontrol: set the serialization version to v1
 2024-02-12 13:17:48 -08:00
Kubernetes Prow Robot
7bea14097b Merge pull request #122612 from mtardy/remove-scdeny 
auth: remove SecurityContextDeny admission plugin
 2024-02-12 08:37:13 -08:00
Kubernetes Prow Robot
48228bf9db Merge pull request #121486 from benluddy/cbor-stub 
KEP-4222: Add stub CBOR serializer.
 2024-02-09 14:42:05 -08:00
cpanato
73cc31847f fix 
Signed-off-by: cpanato <ctadeu@gmail.com>
 2024-02-09 15:01:16 +01:00
cpanato
eec508e488 use patch number 
Signed-off-by: cpanato <ctadeu@gmail.com>
 2024-02-09 14:47:56 +01:00
cpanato
ddb0b8da9d [go] Bump images, dependencies and versions to go 1.22 
Signed-off-by: cpanato <ctadeu@gmail.com>
 2024-02-09 14:43:34 +01:00
Harsha Narayana
ab8c784ee9 kubelet: enable configurable rotation duration and parallel rotate 2024-02-09 16:49:11 +05:30
bzsuni
658e3308f3 etcd: Update to version 3.5.12 
Signed-off-by: bzsuni <bingzhe.sun@daocloud.io>
 2024-02-07 21:16:08 +08:00
Kubernetes Prow Robot
87fa400d9d Merge pull request #123126 from bart0sh/PR131-bump-sample-device-plugins-version 
Bump sample-device-plugin version
 2024-02-07 05:01:10 -08:00
cpanato
ac9482d15f update distroless-iptables to v0.5.0 debian-base to bookworm-v1.0.1 and setcap to bookworm-v1.0.1 
Signed-off-by: cpanato <ctadeu@gmail.com>
 2024-02-07 11:46:19 +01:00
Kubernetes Prow Robot
eb5b9b0b6d Merge pull request #123140 from Jefftree/latest-sampleapiserver 
Bump sample-apiserver to latest version (1.29.1)
 2024-02-06 12:30:43 -08:00
Kubernetes Prow Robot
2fb99eb9e8 Merge pull request #121141 from wlq1212/introduceNewethod 
using wait.Interrupted instead of deprecated wait.ErrWaitTimeout for utils
 2024-02-06 11:06:34 -08:00
Ed Bartosh
1085c0b15a Bump sample-device-plugin image version 
Currently published image version doesn't include latest code changes,
for example CDI support.

Manifests include different and outdated image versions
 2024-02-06 15:35:11 +02:00
Kubernetes Prow Robot
1ee42beab9 Merge pull request #123122 from carlory/clean-e2e-Azure 
Update in-tree azureDisk and azureFile tests
 2024-02-05 21:41:35 -08:00
Kubernetes Prow Robot
2ec3ef62d6 Merge pull request #122594 from aravindhp/nlq-windows-e2e 
e2e: add NodeLogQuery tests for Windows nodes
 2024-02-05 21:41:27 -08:00