github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
108,585 Commits 1 Branch 31 Tags
8ef7dd49eecb523840dfdbab6ccddb010fd4e0fc
Commit Graph

1036 Commits

Author SHA1 Message Date
Kubernetes Prow Robot
198dd7668a Merge pull request #110395 from tnqn/fix-sctp-test 
Fix SCTP default-deny test
 2022-06-07 08:45:07 -07:00
Ryan Phillips
97db4ac963 add service e2e tests 2022-06-06 17:00:59 -05:00
Quan Tian
5dd9184945 Fix SCTP default-deny test 
The test is about SCTP and the accessed service only forwarded SCTP
traffic to the server Pod but the client Pod used TCP protocol, so the
test traffic never reached the server Pod and the test NetworkPolicy
was never enforced, which lead to test success even if the default-deny
policy was implemented wrongly. In some cases it may got failure result
if there was an external server having same IP as the cluster IP and
listening to TCP 80 port.

Signed-off-by: Quan Tian <qtian@vmware.com>
 2022-06-06 13:14:07 +08:00
Kubernetes Prow Robot
8b6dd065d7 Merge pull request #110255 from robscott/fix-pod-eviction-ip 
Endpoints and EndpointSlices should not publish IPs for terminal pods
 2022-05-27 16:24:42 -07:00
Rob Scott
aa02b7a434 Updating e2e test to check EndpointSlices and Endpoints as well 2022-05-27 21:10:59 +00:00
Kubernetes Prow Robot
f161dde085 Merge pull request #109977 from JohnTitor/remove-poddelete-use 
Remove the use of derecated `PodDeleteTimeout` const
 2022-05-27 06:21:08 -07:00
Antonio Ojea
3a8edca2d8 e2e: services with evicted pods doesn't have endpoints 2022-05-27 06:43:03 +02:00
Kubernetes Prow Robot
076168b84d Merge pull request #109990 from tnqn/fix-netpol-error 
Correct errors in the netpol test suite
 2022-05-12 03:43:26 -07:00
Quan Tian
b792f7392f Correct errors in the netpol test suite 
It was confusing to see message saying "unable to update pod" when it
was actually trying to create a Pod.

Signed-off-by: Quan Tian <qtian@vmware.com>
 2022-05-12 10:48:51 +08:00
Yuki Okushi
6bc6a671ae Remove the use of derecated PodDeleteTimeout const 2022-05-12 01:58:23 +09:00
Zhecheng Li
b4a3750912 [e2e][azure] Make internalStaticIP flexible 
Now, internalStaticIP is hard-coded to "10.240.11.11". Such IP works
for aks-engine cluster but not for CAPZ ones (node-subnet 10.1.0.0/16)

Signed-off-by: Zhecheng Li <zhechengli@microsoft.com>
 2022-04-15 10:08:36 +08:00
Kubernetes Prow Robot
8cd689e40d Merge pull request #109283 from s-urbaniak/ratchet-e2e 
test/e2e/framework: use restricted policy by default, default existing tests to privileged
 2022-04-05 14:37:25 -07:00
Sergiusz Urbaniak
1495c9f2cd test/e2e/*: default existing tests to privileged pod security policy 
This is to ensure that all existing tests don't break when defaulting
the pod security policy to restricted in the e2e test framework.
 2022-04-05 08:41:12 +02:00
Kubernetes Prow Robot
a315ec3388 Merge pull request #108590 from claudiubelu/tests/enable-windows-tests 
tests: Enables a few Conformance tests for Windows (part 1)
 2022-04-04 08:56:11 -07:00
Kubernetes Prow Robot
57a739bdf2 Merge pull request #108691 from andrewsykim/proxy-terminating-endpoints 
Apply ProxyTerminatingEndpoints to all traffic policies
 2022-03-29 17:34:57 -07:00
Andrew Sy Kim
01c178c9de test/e2e/network: add e2e tests for ProxyTerminatingEndpoints 
Signed-off-by: Andrew Sy Kim <andrewsy@google.com>
 2022-03-29 11:37:43 -04:00
Ricardo Katz
42a1201082 Implementation on Network Policy Status (#107963) 
* Implement status subresource in NetworkPolicy

* add NetworkPolicyStatus generated files

* Fix comments in netpol status review
 2022-03-29 01:52:48 -07:00
Sergiusz Urbaniak
373c08e0c7 test/e2e/framework: configure pod security admission level for e2e tests 2022-03-28 15:42:10 +02:00
Masaki Kimura
52afdc6259 Use WaitForPodRunningInNamespace for proxy e2e tests 2022-03-25 21:24:59 +00:00
Dave Chen
85dfca3e16 Remove the legacy Nginx testcases 
Those testcases does't work anymore after nginx-ingress controller
has been upgraded to v1.

Signed-off-by: Dave Chen <dave.chen@arm.com>
 2022-03-09 10:38:07 +08:00
Claudiu Belu
87123c49a0 tests: Enables a few Conformance tests for Windows 
Some of these tests could not be run previously, especially on Windows
Docker containers. But now, by using Windows Containerd, we can finally
run them:

- HostNetwork=true tests: This can now be enabled on Windows Privileged Containers.
- /etc/hosts related tests: These were not supported because it required single
  file mappings, which is possible in Containerd.
- termination message as non-root user: Requires RunAsUsername, and single file
  mappings.
 2022-03-06 09:36:39 -08:00
Dave Chen
cee132b197 Remove couple of variables to simplify the code 
Signed-off-by: Dave Chen <dave.chen@arm.com>
 2022-02-23 17:17:27 +08:00
Dave Chen
d5775aef5e e2e: Embed dns related maninfests into codebase 
Signed-off-by: Dave Chen <dave.chen@arm.com>
 2022-02-23 17:16:50 +08:00
Kubernetes Prow Robot
2047936f3f Merge pull request #107552 from aojea/e2e_parse_misalignment 
e2e test for CVE-2021-29923
 2022-02-08 19:10:18 -08:00
hxie
83974e4940 Remove option 'T' from wget on Windows 
Command 'wget' in Windows image agnhost does not support option timeout,
this test fails:
  - should be able to up and down services
 2022-02-07 00:38:07 -08:00
ahrtr
fe95aa614c io/ioutil has already been deprecated in golang 1.16, so replace all ioutil with io and os 2022-02-03 05:32:12 +08:00
justinsb
a905d7bfaf e2e: Feature tags must be in square brackets 
Otherwise the feature regexes that we use don't detect them.

This was relatively hidden because we don't have many e2e tests that
test multizone.
 2022-01-30 13:10:04 -05:00
Kubernetes Prow Robot
1c216c6ec8 Merge pull request #107777 from hxietkg/hxietkg/windows-numberofworkers-3 
Increase number of workers to 3 for Windows
 2022-01-27 20:50:30 -08:00
Martin André
363ad4c3b3 Ensure the execHostnameTest() compares hostnames 
We do not have guarantee that the agnhost's `/hostname` endpoint returns
a hostname and not an FQDN. We also do not have guarantee a hostname
gets passed to the execHostnameTest() function for comparison.

So make sure we're comparing hostnames in execHostnameTest().
 2022-01-26 11:16:18 +01:00
Martin André
5f809703a6 Revert "Fix comparison between FQDN and hostname" 
This reverts commit 752a532c3d.
 2022-01-26 11:09:27 +01:00
Kubernetes Prow Robot
25697c4812 Merge pull request #107753 from srikiz/fix-ingress-path-tests 
fix ingress path for tests when ingress controller is already running
 2022-01-26 01:30:25 -08:00
hxie
56382ddf16 Increase number of workers to 3 for Windows 
Number of workers was set to be 1 because prallel probing on Windows is
flakier, network policy tests may get stuck, this symptom disappears on
the newest kubernetes, network poicy tests run very well with 3 workers.
 2022-01-25 21:32:21 -08:00
Kubernetes Prow Robot
dee90598d2 Merge pull request #107525 from hxietkg/hxietkg/support-udp-for-windows 
Support UDP test for netwpol on windows
 2022-01-25 19:20:38 -08:00
srikiz
b4dd9cb388 incorporate review comments 2022-01-25 20:11:12 +05:30
srikiz
430b8e6981 fix ingress path when validating webhook for ingress is in place while tests are running 2022-01-25 18:56:47 +05:30
Zhecheng Li
9292742821 Fix topology hints test 
* It should check one Node in a zone instead of
each Node and its fromZone.
* Check Nodes' CPUs if they are equivalent

Signed-off-by: Zhecheng Li <zhechengli@microsoft.com>
 2022-01-19 10:33:26 +08:00
hxie
ac0f2e48ad Support UDP test for netwpol on windows 2022-01-18 17:02:18 -08:00
Antonio Ojea
ac9eec0093 e2e test for CVE-2021-29923 
The e2e test checks that the component implementing Kubernetes Services
interprets ClusterIPs with leading zeros as decimal, otherwise the
cluster will be exposed to CVE-2021-29923.
 2022-01-14 16:58:29 +01:00
Cristian Boarna
bcb7b938a6 feat(netpol tests): added netpol probeConnectivity args improvement 2021-12-21 12:32:09 +02:00
Antonio Ojea
a4bbf92577 cap nunmber of tries on e2e nodePort stop service test 
The tests were asserting that after a NodePort Service was removed,
no new traffic was still reaching the endpoints.
However, the number of tries was so large that another test running
in parallel could create a working Service on that NodePort, making
the test fails.

Use only 10 tries to confirm that the Service stopped working.
 2021-12-13 10:33:35 +01:00
Kubernetes Prow Robot
aed75bf2ed Merge pull request #106880 from ii/promote-proxy-301-redirect 
Promote Pod- & ServiceProxy Test to Conformance - +12 endpoint coverage
 2021-12-10 21:31:57 -08:00
Davanum Srinivas
9405e9b55e Check in OWNERS modified by update-yamlfmt.sh 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2021-12-09 21:31:26 -05:00
Ahmed Aghadi
93d858c46e Improve checks for test/e2e/network and test/e2e/network/netpol (#106655) 2021-12-07 22:07:56 -08:00
Kubernetes Prow Robot
bf5b5496a0 Merge pull request #106522 from aojea/e2e_disable_nodeport_lb 
Add e2e tests for disable nodeport lb feature
 2021-12-07 18:25:53 -08:00
Stephen Heywood
27a247df85 Promote pod and service Proxy e2e test to Conformance 2021-12-08 15:21:40 +13:00
Antonio Ojea
020cf2d7aa e2e disable node port on loadbalancers 2021-11-20 20:24:37 +01:00
Kubernetes Prow Robot
203d145b6a Merge pull request #106281 from ii/promote-delete-service-collection 
Promote DeleteCollection service e2e test to conformance - +1 endpoint
 2021-11-18 07:47:03 -08:00
Kubernetes Prow Robot
1ff64edffb Merge pull request #104636 from hbagdi/ingress-class-namespaced-params-ga 
Graduate IngressClassNamespacedParams to GA
 2021-11-10 12:53:26 -08:00
Harry Bagdi
d09a8c0a88 Graduate IngressClassNamespacedParams to GA 2021-11-10 08:58:39 -08:00
Stephen Heywood
675be94024 Promote DeleteCollection service e2e test to conformance 2021-11-10 10:19:46 +13:00