github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
123,142 Commits 1 Branch 31 Tags
9a830da048a436e445a612b51ffae9ecd0cc2d1d
Commit Graph

290 Commits

Author SHA1 Message Date
TommyStarK
cce8551272 kube-apiserver: remove deprecated otel NewNoopTracerProvider 
Signed-off-by: TommyStarK <thomasmilox@gmail.com>
 2024-06-07 19:57:37 +02:00
Kubernetes Prow Robot
99cb3eba35 Merge pull request #125101 from alexzielenski/apiserver/vap-storageversion-bump 
store validatingadmissionpolicy and bindings at v1
 2024-06-03 14:34:02 -07:00
Dr. Stefan Schimanski
3a3be8c704 controlplane: add generic storage construction 
Signed-off-by: Dr. Stefan Schimanski <stefan.schimanski@gmail.com>
 2024-06-03 13:50:04 +02:00
Alexander Zielenski
cd41a7d8e1 store validatingadmissionpolicy and bindings at v1 2024-05-29 13:14:51 -07:00
Kubernetes Prow Robot
073c1596f2 Merge pull request #124602 from Iceber/fix_discovery_prioritized_versions 
fix the version order of 'discovery.k8s.io'
 2024-05-20 09:12:20 -07:00
Alvaro Aleman
6d0ac8c561 Use the generic/typed workqueue throughout 
This change makes us use the generic workqueue throughout the project in
order to improve type safety and readability of the code.
 2024-05-04 14:33:12 -04:00
Dr. Stefan Schimanski
89bafb2fed controlplane/apiserver: unify options package name 
Signed-off-by: Dr. Stefan Schimanski <stefan.schimanski@gmail.com>
 2024-05-01 20:08:20 +02:00
Dr. Stefan Schimanski
1aa24b0951 Make linter happy 
Signed-off-by: Dr. Stefan Schimanski <stefan.schimanski@gmail.com>
 2024-05-01 19:44:20 +02:00
Dr. Stefan Schimanski
1d0c72d15a aggregator: move construction to generic controlplane 
Signed-off-by: Dr. Stefan Schimanski <stefan.schimanski@gmail.com>
 2024-05-01 19:44:20 +02:00
Dr. Stefan Schimanski
d8c5f71403 kube-apiserver: split up config creation into generic and non-generic part 
Signed-off-by: Dr. Stefan Schimanski <stefan.schimanski@gmail.com>
 2024-05-01 11:28:25 +02:00
Kubernetes Prow Robot
6abdfb97c0 Merge pull request #124621 from sttts/sttts-controlplane-admission-initializers 
kube-apiserver: split admission initializers into generic and non-generic
 2024-05-01 01:10:15 -07:00
Kubernetes Prow Robot
79c81fab61 Merge pull request #124620 from sttts/sttts-controlplane-cosmetics 
controlplane: cosmetics
 2024-04-30 01:30:16 -07:00
Kubernetes Prow Robot
d0fddf143b Merge pull request #122148 from pohly/controllers-context-support 
controllers + apiserver: enhance context support
 2024-04-30 01:30:09 -07:00
Dr. Stefan Schimanski
acbb89d9b9 kube-apiserver: split admission initializers into generic and non-generic 
Signed-off-by: Dr. Stefan Schimanski <stefan.schimanski@gmail.com>
 2024-04-29 23:28:42 +02:00
Dr. Stefan Schimanski
b8d7e2edd7 controlplane: cosmetics 
Signed-off-by: Dr. Stefan Schimanski <stefan.schimanski@gmail.com>
 2024-04-29 21:24:41 +02:00
Dr. Stefan Schimanski
8c9bad8503 controlplane: return client error 
Signed-off-by: Dr. Stefan Schimanski <stefan.schimanski@gmail.com>
 2024-04-29 21:24:41 +02:00
Dr. Stefan Schimanski
be7b6c90bf Address comments 
Signed-off-by: Dr. Stefan Schimanski <stefan.schimanski@gmail.com>
 2024-04-29 21:22:35 +02:00
Patrick Ohly
b92273a760 apiserver + controllers: enhance context support 
27a68aee3a introduced context support for events. Creating an event
broadcaster with context makes tests more resilient against leaking goroutines
when that context gets canceled at the end of a test and enables per-test
output via ktesting.

The context could get passed to the constructor. A cleaner solution is to
enhance context support for the apiserver and then pass the context into the
controller's run method. This ripples up the call stack to all places which
start an apiserver.
 2024-04-29 20:59:21 +02:00
Dr. Stefan Schimanski
03ae7fcbdf aggregator: split API priority map into generic and non-generic 
Signed-off-by: Dr. Stefan Schimanski <stefan.schimanski@gmail.com>
 2024-04-29 16:19:51 +02:00
Dr. Stefan Schimanski
3b6d2a66a4 pkg/controlplane: split apart generic server part of instance.go 
Signed-off-by: Dr. Stefan Schimanski <stefan.schimanski@gmail.com>
 2024-04-29 10:15:02 +02:00
Kubernetes Prow Robot
c6b6163e2e Merge pull request #124576 from sttts/sttts-peer-proxy-generic-move 
controlplane/apiserver: move peer proxy code to allow generic aggregator construction
 2024-04-29 01:11:06 -07:00
Iceber Gu
498bebee6d fix the version order of 'discovery.k8s.io' 
Signed-off-by: Iceber Gu <caiwei95@hotmail.com>
 2024-04-29 14:31:58 +08:00
Dr. Stefan Schimanski
c252ebe50c controlplane/apiserver: move peer proxy code to allow aggregator construction 
This reverts commit 0bb6ff5e454cfc99c0b611e22162391eaa31e103.

Signed-off-by: Dr. Stefan Schimanski <stefan.schimanski@gmail.com>
 2024-04-29 08:13:43 +02:00
Dr. Stefan Schimanski
3daae717c3 controlplane: split out SystemNamespaces 
Signed-off-by: Dr. Stefan Schimanski <stefan.schimanski@gmail.com>
 2024-04-27 14:19:56 +02:00
Dr. Stefan Schimanski
7e0fea2331 kube-apiserver/aggregator: remove unused PeerCAFile in config 
Signed-off-by: Dr. Stefan Schimanski <stefan.schimanski@gmail.com>
 2024-04-26 23:22:09 +02:00
Dr. Stefan Schimanski
96a144c977 Address comments 
Signed-off-by: Dr. Stefan Schimanski <stefan.schimanski@gmail.com>
 2024-04-26 17:47:30 +02:00
Dr. Stefan Schimanski
e37917fea7 pkg/controlplane: split up config into generic controlplane and kube-related part 
Signed-off-by: Dr. Stefan Schimanski <stefan.schimanski@gmail.com>
 2024-04-26 14:14:06 +02:00
Marek Siarkowicz
3ee8178768 Cleanup defer from SetFeatureGateDuringTest function call 2024-04-24 20:25:29 +02:00
Kubernetes Prow Robot
69b648a1d7 Merge pull request #124223 from chenk008/fix_apf_countTracker 
Fix: EtcdOptions.StorageObjectCountTracker is nil, APF estimator got ObjectCountNotFoundErr
 2024-04-19 01:56:35 -07:00
chenk008
c5d0e59d45 Update pkg/controlplane/apiserver/config_test.go 
Co-authored-by: Paco Xu <paco.xu@daocloud.io>
 2024-04-19 11:11:21 +08:00
chenk008
4abc2b387b Fix: StorageObjectCountTracker is nil, apf estimator got ObjectCountNotFoundErr 2024-04-18 22:50:18 +08:00
Dan Winship
cd980ee076 Fix unit tests that expected the old FakeClient semantics 2024-04-18 08:23:16 -04:00
Anish Ramasekar
62ac88b9ea Add metrics for authentication config reload 
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
 2024-03-09 14:40:22 -08:00
Monis Khan
b4935d910d Add dynamic reload support for authentication configuration 
Signed-off-by: Monis Khan <mok@microsoft.com>
 2024-03-09 14:29:33 -05:00
Nilekh Chaudhari
91a7708cdc feat: implements Storage Version Migration API in-tree 
Signed-off-by: Nilekh Chaudhari <1626598+nilekhc@users.noreply.github.com>
 2024-03-08 04:18:56 +00:00
cici37
de506ce7ac Promote ValidatingAdmissionPolicy to GA. 2024-03-05 16:00:21 -08:00
Tim Hockin
b3dd724174 Remove dep on set-gen: gone in gengo/v2 2024-02-29 22:06:18 -08:00
Jordan Liggitt
5dc92ada06 Implement authz config file reloading 2024-02-14 18:09:15 -05:00
Paco Xu
f73bba51c9 flowcontrol: set the serialization version to v1 2023-12-25 14:24:50 +08:00
weilaaa
eb8f3f194f use build-in max and min func to instead of k8s.io/utils/integer funcs 2023-12-15 15:09:11 +08:00
Antonio Ojea
99f7df3e1c improve default_servicecidr_controller startup 
The default service-cidr controller blocks the apiserver because it
needs to create the default ServiceCIDR so Services can be allocated.

If the apiserver is started without the default ServiceCIDR any attempt
to createa  new Service will fail, and this is a breaking change for
users and installers that does not retry on this operation.

Instead of using a channel to signal the controller is ready, just
implement two loops, a first one that verifies that is ready and that
polls with a shorted interval, and leave the second loop with the
existing interval.

Change-Id: I54303af9faeaa9c5cce2a840b6b7b0320cd2f4ad
 2023-11-14 23:31:58 +00:00
Jordan Liggitt
264cd64824 Run RBAC hook correctly when running from authz config file 2023-11-08 14:36:01 -06:00
Jordan Liggitt
1f40e0916e Only default mode to AlwaysAllow when config file is unspecified 2023-11-08 11:24:28 -06:00
Antonio Ojea
7e87806fab default_servicecidr_controller: use new ServiceCIDR API 
Change-Id: I2c53815136e0d985959420911339aacd62e01e78
 2023-10-31 21:05:06 +00:00
Antonio Ojea
3b450378e0 bootstrap controller for default ServiceCIDR 
The bootstrap controller for ServiceCIDR ensures that the default
ServiceCIDR is created from the existing flags.

It follows the same behavior than the kubernetes.default Service,
it only creates the default ServiceCIDR if it doesn't exist, but
does not modify it despite the parameters doesn't match.

review: bootstrap controller for default ServiceCIDR
 2023-10-31 21:05:04 +00:00
Abu Kashem
c7fcef1875 apiserver: set APF featuregate to ga 2023-10-31 08:46:24 -04:00
Abu Kashem
233bc2449d apiserver: fix apf enablement with runtime-config 2023-10-30 08:18:41 -04:00
Abu Kashem
25aebca8d5 apiserver: add etcd data and storage version hash for apf v1 2023-10-30 07:48:23 -04:00
Abu Kashem
b24dd44904 apiserver: enable apf v1 API 2023-10-30 07:48:22 -04:00
Ben Luddy
83f5b5c240 Deep disablement for APF based on --enable-priority-and-fairness. 
Avoids starting informers or the config-consuming controller when
--enable-priority-and-fairness=false. For kube-apiserver, the config-producing controller runs if
and only if flowcontrol API storage is enabled.
 2023-10-24 17:53:51 -04:00