github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
112,718 Commits 1 Branch 31 Tags
8a714856431ff96d102f7ff6c899c807346f73e1
Commit Graph

2981 Commits

Author SHA1 Message Date
Kubernetes Prow Robot
038d983769 Merge pull request #114505 from aojea/service_warnings 
Services API: warnings on IP addresses
 2022-12-16 18:07:52 -08:00
Tim Hockin
8f62b94991 cronjob: API warn when name is not DNS label 2022-12-16 13:08:08 -08:00
Tim Hockin
fec8e721b2 job: API warn when name is not DNS label 2022-12-16 13:07:42 -08:00
Tim Hockin
b65cec86eb deployment: API warn when name is not DNS label 2022-12-16 13:07:13 -08:00
Tim Hockin
820e2fff0d rs: API warn when name is not DNS label 2022-12-16 13:06:43 -08:00
Tim Hockin
e27cf75094 rc: API warn when name is not DNS label 2022-12-16 13:06:10 -08:00
Tim Hockin
c555d290c1 pod: API warn when name is not DNS label 2022-12-16 13:05:17 -08:00
Antonio Ojea
1b804fc87c Services API: warnings 
The Services API should warn users about some IP addresses
representations, mainly because some of them are not allowed
by the golang std parsers since go 1.17

Specifically:

- IPv4 addresses with leading zeros, that may cause security risks
- IPv6 addresses in non canonical format, that may cause problems
with controllers hotlooping or cause security issues

Change-Id: Ife50a651d1b22dc4c318e42bd3e5f2e5f88ecbcd
 2022-12-16 11:54:05 +00:00
Kubernetes Prow Robot
4b27077eb2 Merge pull request #114428 from SataQiu/clean-rest-20221212 
apiserver: cleanup unused StrategyExceptions
 2022-12-14 06:47:34 -08:00
SataQiu
090c36027f apiserver: cleanup unused StrategyExceptions 2022-12-12 23:56:24 +08:00
Tim Hockin
dd0a50336e ServiceInternalTrafficPolicyType: s/Type// 
Rename ServiceInternalTrafficPolicyType => ServiceInternalTrafficPolicy
 2022-12-11 13:48:31 -08:00
Tim Hockin
d0e2b06850 ServiceExternalTrafficPolicyType: s/Type// 
Rename ServiceExternalTrafficPolicyType => ServiceExternalTrafficPolicy
 2022-12-11 13:48:27 -08:00
Kubernetes Prow Robot
4106b10d9c Merge pull request #112799 from kerthcet/cleanup/strategy-test 
optimize testcases arrangement
 2022-12-09 15:43:29 -08:00
Kubernetes Prow Robot
6f6bf42ee5 Merge pull request #113768 from lojies/codecleanupforkubeleteviction 
cleanup:Omit comparison with boolean constant
 2022-12-09 14:34:26 -08:00
Kubernetes Prow Robot
d1c0171aed Merge pull request #111023 from pohly/dynamic-resource-allocation 
dynamic resource allocation
 2022-11-11 16:21:56 -08:00
Kubernetes Prow Robot
cc704f9778 Merge pull request #113375 from atiratree/PodHealthyPolicy-api 
api: add unhealthyPodEvictionPolicy for PDBs
 2022-11-11 04:02:10 -08:00
Filip Křepinský
a429797f2e api: add UnhealthyPodEvictionPolicy for PDBs 2022-11-10 23:25:42 +01:00
Patrick Ohly
5cca60f0b8 api: dynamic resource allocation API 
This adds a new resource.k8s.io API group with v1alpha1 as version. It contains
four new types: resource.ResourceClaim, resource.ResourceClass, resource.ResourceClaimTemplate, and
resource.PodScheduling.
 2022-11-10 20:08:24 +01:00
Takafumi Takahashi
87c1ca88d4 Add API and validation for CrossNamespaceVolumeDataSource 2022-11-09 20:58:25 +00:00
Kubernetes Prow Robot
ff19efdf9b Merge pull request #112744 from pwschuurman/statefulset-slice-impl 
Add implementation of KEP-3335, StatefulSetSlice
 2022-11-09 11:12:28 -08:00
Kubernetes Prow Robot
7e0e0c8ec3 Merge pull request #113360 from mimowo/handling-pod-failures-beta-enable 
Enable the "Retriable and non-retriable pod failures for jobs" feature into beta
 2022-11-09 08:30:24 -08:00
Michal Wozniak
c803892bd8 Enable the feature into beta 2022-11-09 09:02:40 +01:00
lojies
e2a4565a2b cleanup:Omit comparison with boolean constant 2022-11-09 09:54:41 +08:00
Abu Kashem
424b23bb15 apiserver: fix defaulting for apf bootstrap configuration 2022-11-08 13:23:09 -08:00
Peter Schuurman
366997951b Update doc comments and change name of feature gate 2022-11-08 07:48:10 -08:00
Peter Schuurman
7b3d77a41a Adding implementation of KEP-3335, StatefulSetSlice 2022-11-08 07:48:00 -08:00
Jordan Liggitt
fc69084bf1 Update workload selector validation 2022-11-07 20:52:02 -05:00
Manjusaka
0843c4dfca Add extra value validation for matchExpression field in LabelSelector 2022-11-07 20:48:21 -05:00
Kubernetes Prow Robot
595ea32411 Merge pull request #113314 from cici37/celIntegration 
CEL validation in Admission chain
 2022-11-07 17:08:33 -08:00
Cici Huang
d3f48136d0 Add Authz check to validate policy and binding. 
Co-authored-by: Jiahui Feng <jhf@google.com>
Co-authored-by: Jordan Liggitt <liggitt@google.com>
 2022-11-07 21:29:56 +00:00
Cici Huang
0486e06261 Adding new api version of admissionregistration.k8s.io v1alpha1 for CEL in Admission Control 2022-11-07 20:51:51 +00:00
Kubernetes Prow Robot
0f3ac85d32 Merge pull request #113681 from andrewsykim/fix-node-address-validation 
fix node address validation
 2022-11-07 11:21:00 -08:00
Kubernetes Prow Robot
ac95e5b701 Merge pull request #113510 from alculquicondor/finalizers-stable 
Graduate JobTrackingWithFinalizers to stable
 2022-11-07 08:06:41 -08:00
Andrew Sy Kim
2aee9b26f7 fix node address validation 
Signed-off-by: Andrew Sy Kim <andrewsy@google.com>
 2022-11-07 10:22:44 -05:00
Aldo Culquicondor
4948918155 Graduate JobTrackingWithFinalizers to stable 
Change-Id: Ifc749a85b1270c0155ac511b91d4681d53236820
 2022-11-04 17:05:53 -04:00
Kubernetes Prow Robot
b20ddbd75a Merge pull request #113351 from andrewsykim/endpointslice-terminating-ga 
Promote EndpointSliceTerminatingCondition to GA
 2022-11-04 09:36:39 -07:00
kerthcet
04573fb8c9 Add api-side enablement tests for nodeInclusionPolicy when updating 
Signed-off-by: kerthcet <kerthcet@gmail.com>
 2022-11-04 15:11:08 +08:00
kerthcet
21dea23f56 Add api-side enablement tests for nodeInclusionPolicy 
Signed-off-by: kerthcet <kerthcet@gmail.com>
 2022-11-04 15:11:05 +08:00
Kubernetes Prow Robot
8c77820759 Merge pull request #113274 from Huang-Wei/kep-3521-A 
[KEP-3521] Part 1: New Pod API .spec.schedulingGates
 2022-11-03 21:24:25 -07:00
Andrew Sy Kim
5ca805fdee pkg/registry/discovery: remove references to EndpointSliceTerminatingCondition feature gate when dropping disabled fields 
Signed-off-by: Andrew Sy Kim <andrewsy@google.com>
 2022-11-03 20:26:51 -04:00
Wei Huang
7b6293b6b6 APIs, Validation and condition enforcements 
- New API field .spec.schedulingGates
- Validation and drop disabled fields
- Disallow binding a Pod carrying non-nil schedulingGates
- Disallow creating a Pod with non-nil nodeName and non-nil schedulingGates
- Adds a {type:PodScheduled, reason:WaitingForGates} condition if necessary
- New literal SchedulingGated in the STATUS column of `k get pod`
 2022-11-03 14:32:34 -07:00
Andy Voltz
29f4862ed8 Promote ServiceInternalTrafficPolicy to GA 2022-11-03 13:17:03 -04:00
Kubernetes Prow Robot
c98aef484d Merge pull request #112895 from nokia/kep-1435-GA 
KEP-1435 Mixed Protocol values in LoadBalancer Service GA
 2022-11-03 05:43:35 -07:00
Tim Hockin
0153bfad16 Copy LoadBalancerStatus from core to networking 
This type should never have been shared between Service and Ingress.
The `ports` field is unfortunate, but it is needed to stay compatible.
 2022-11-02 16:13:31 -07:00
Laszlo Janosi
82ce61afc7 KEP-1435 Mixed Protocol values in LoadBalancer Service GA 
Removed the unit tests that test the cases when the MixedProtocolLBService feature flag was false - the feature flag is locked to true with GA
Added an integration test to test whether the API server accepts an LB Service with different protocols.
Added an e2e test to test whether a service which is exposed by a multi-protocol LB Service is accessible via both ports.
Removed the conditional validation that compared the new and the old Service definitions during an update - the feature flag is locked to true with GA.
 2022-11-02 13:44:52 +02:00
Paco Xu
140502af8c add warning for PVC template in statefulset and in pod ephemeral volume source 2022-10-22 09:14:03 +08:00
Paco Xu
0b848bee4e pvc storage request warning for fractional byte value 
- create or update
 2022-10-21 16:15:55 +08:00
Jason Simmons
5a6acf85fa Align lifecycle handlers and probes 
Align the behavior of HTTP-based lifecycle handlers and HTTP-based
probers, converging on the probers implementation. This fixes multiple
deficiencies in the current implementation of lifecycle handlers
surrounding what functionality is available.

The functionality is gated by the features.ConsistentHTTPGetHandlers feature gate.
 2022-10-19 09:51:52 -07:00
Kubernetes Prow Robot
d754183866 Merge pull request #112163 from aojea/static_allocation_ga 
graduate ServiceIPStaticSubrange to GA
 2022-10-14 17:31:18 -07:00
Kubernetes Prow Robot
01019770cf Merge pull request #112789 from enj/enj/r/kms_load_once_v2 
Load encryption config once (second approach)
 2022-10-13 11:25:02 -07:00