github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
103,736 Commits 1 Branch 31 Tags 1,019 MiB
a53e2eaeab
Commit Graph

732 Commits

Author SHA1 Message Date
Monis Khan
cd91e59f7c
csr: add expirationSeconds field to control cert lifetime 
This change updates the CSR API to add a new, optional field called
expirationSeconds.  This field is a request to the signer for the
maximum duration the client wishes the cert to have.  The signer is
free to ignore this request based on its own internal policy.  The
signers built-in to KCM will honor this field if it is not set to a
value greater than --cluster-signing-duration.  The minimum allowed
value for this field is 600 seconds (ten minutes).

This change will help enforce safer durations for certificates in
the Kube ecosystem and will help related projects such as
cert-manager with their migration to the Kube CSR API.

Future enhancements may update the Kubelet to take advantage of this
field when it is configured in a way that can tolerate shorter
certificate lifespans with regular rotation.

Signed-off-by: Monis Khan <mok@vmware.com>
 2021-07-01 23:38:15 -04:00
Kubernetes Prow Robot
98d20f552b
Merge pull request #99378 from mattcary/api 
StatefulSet PersistentVolumeClaimDeletePolicy
 2021-06-30 11:49:03 -07:00
Kubernetes Prow Robot
21f41b8e82
Merge pull request #101711 from hbagdi/ingressclass-namespaced-params-beta 
graduate IngressClassNamespacedParams to beta
 2021-06-29 17:07:03 -07:00
Elana Hashman
0dd4ce40ad
Add NodeSwapEnabled feature flag 2021-06-29 11:57:34 -07:00
Chris Henzie
48ba5020a2 ReadWriteOncePod PV access mode and feature gate 2021-06-28 21:25:35 -07:00
Kubernetes Prow Robot
d92f6c424d
Merge pull request #103099 from liggitt/podsecurity 
PodSecurity admission
 2021-06-28 20:46:52 -07:00
Kubernetes Prow Robot
db3a216fbb
Merge pull request #97238 from andrewsykim/kube-proxy-handle-terminating 
kube-proxy handle terminating endpoints
 2021-06-28 20:46:40 -07:00
Kubernetes Prow Robot
38f012320f
Merge pull request #101947 from cynepco3hahue/memory_manager_move_to_beta 
memory manager: move to beta
 2021-06-28 15:38:28 -07:00
Jordan Liggitt
65a42a483c PodSecurity: pkg/features: feature gate 2021-06-28 17:45:35 -04:00
Kubernetes Prow Robot
a0f9c8c277
Merge pull request #103001 from zshihang/csi 
CSIServiceAccountToken ga
 2021-06-26 19:31:23 -07:00
Rob Scott
0cdd8c1c10
Removing ServiceAppProtocol feature gate 
This feature gate went GA in 1.20 and can be safely removed as part of
1.22.
 2021-06-25 10:24:50 -07:00
Kubernetes Prow Robot
9254610765
Merge pull request #103129 from XudongLiuHarold/service-loadbalancer-class-e2e 
Promote loadbalancerclass feature to beta
 2021-06-25 09:48:57 -07:00
Xudong Liu
fe161579e2 Add integration test to promote serviceloadbalancerclass feature to beta. 2021-06-24 17:30:17 -07:00
Kubernetes Prow Robot
2e93b3924a
Merge pull request #101943 from saschagrunert/seccomp-default 
Add kubelet `SeccompDefault` alpha feature
 2021-06-24 13:07:41 -07:00
Kubernetes Prow Robot
de04c067ad
Merge pull request #101581 from carlory/remove-fg-RunAsGroup 
remove RunAsGroup feature gate
 2021-06-23 16:09:41 -07:00
Matthew Cary
0feba0c4ee Add StatefulSetAutoDeletePVC feature gate 
Change-Id: Iacb48932bd5402bf7e95431ffb95b0896421f88a
 2021-06-23 10:33:05 -07:00
Sascha Grunert
8b7003aff4
Add SeccompDefault feature 
This adds the gate `SeccompDefault` as new alpha feature. Seccomp path
and field fallbacks are now passed to the helper functions, whereas unit
tests covering those code paths have been added as well.

Beside enabling the feature gate, the feature has to be enabled by the
`SeccompDefault` kubelet configuration or its corresponding
`--seccomp-default` CLI flag.

Signed-off-by: Sascha Grunert <sgrunert@redhat.com>

Apply suggestions from code review

Co-authored-by: Paulo Gomes <pjbgf@linux.com>
Signed-off-by: Sascha Grunert <sgrunert@redhat.com>
 2021-06-23 10:22:57 +02:00
Kubernetes Prow Robot
268cab5f44
Merge pull request #102022 from adtac/sbeta 
graduate SuspendJob to beta
 2021-06-22 17:18:10 -07:00
Artyom Lukianov
d4767ed5eb memory manager: move to beta 
Move the memory manager feature to beta.

Signed-off-by: Artyom Lukianov <alukiano@redhat.com>
 2021-06-22 20:15:29 +03:00
ravisantoshgudimetla
b6c75bee15 Remove balanced attached node volumes 
kubernetes#60525 introduced
Balanced attached node volumes feature gate to include volume
count for prioritizing nodes. The reason for introducing this
flag was its usefulness in Red Hat OpenShift Online environment
which is not being used any more. So, removing the flag
as it helps in maintainability of the scheduler code base
as mentioned at kubernetes#101489 (comment)
 2021-06-22 11:19:30 -04:00
Shihang Zhang
8231a3e921 CSIServiceAccountToken ga 2021-06-21 11:35:24 -07:00
Ricardo Pchevuzinske Katz
9f18ddf03c Promote endPort field in netpolicies to beta 
Signed-off-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com>
 2021-06-15 10:47:17 -03:00
Kubernetes Prow Robot
230a63514b
Merge pull request #100776 from pacoxu/fix/94495-ga-follow-up 
remove GAed feature gates group: LegacyNodeRoleBehavior
 2021-06-14 10:55:28 -07:00
Kubernetes Prow Robot
3d6e0694bb
Merge pull request #101294 from twosigma/gasethostnamefqdn 
Promote setHostnameAsFQDN feature to GA
 2021-06-09 09:07:48 -07:00
Kubernetes Prow Robot
29a8105cec
Merge pull request #101272 from Jiawei0227/deprecateflag 
Remove CSIMigrationvSphereComplete flag
 2021-06-05 10:40:38 -07:00
Andrew Sy Kim
25e2c92733 add feature gate ProxyTerminatingEndpoints 
Signed-off-by: Andrew Sy Kim <kim.andrewsy@gmail.com>
 2021-06-04 15:17:43 -04:00
Andrew Sy Kim
8c376426f3 features: remove alpha ServiceTopology feature gate 
Signed-off-by: Andrew Sy Kim <kim.andrewsy@gmail.com>
 2021-06-03 22:17:45 -04:00
Adhityaa Chandrasekar
ba708e5fc9 graduate SuspendJob to beta 
Also adds a label to two existing Job metrics.

Signed-off-by: Adhityaa Chandrasekar <adtac@google.com>
 2021-06-03 18:48:32 +00:00
Maciej Szulik
c3a9c7da16
Promote CronJobControllerV2 flag to GA 2021-06-02 15:03:08 +02:00
pacoxu
1bf8edfdd4 remove GAed feature gates group: LegacyNodeRoleBehavior/ServiceNodeExclusion/NodeDisruptionExclusion 
Signed-off-by: pacoxu <paco.xu@daocloud.io>
 2021-06-02 18:49:22 +08:00
Kubernetes Prow Robot
12e3860cb0
Merge pull request #102504 from thockin/master 
Add KEP links to sig-net feature gates
 2021-06-01 20:55:07 -07:00
Kubernetes Prow Robot
053aa7fde4
Merge pull request #102201 from chendave/graduate 
Graduate prefer nominated node to beta
 2021-06-01 20:54:50 -07:00
Tim Hockin
9880ceceb9 Add KEP links to sig-net feature gates 
Adjust 1 removal and comment another.
 2021-06-01 12:49:36 -07:00
Gunju Kim
6317ce63c6 Add feature gate ExpandedDNSConfig 
ExpandedDNSConfig allows kubernetes to have expanded DNS(Domain Name
System) configuration
 2021-05-27 07:10:13 +09:00
Kubernetes Prow Robot
c8abbc0edb
Merge pull request #101647 from pacoxu/disable-StreamingProxyRedirects 
Default StreamingProxyRedirects to disabled
 2021-05-26 13:46:02 -07:00
Kubernetes Prow Robot
a98d3d0700
Merge pull request #100842 from ravisantoshgudimetla/add-minReadySeconds-ss 
api: Add min ready seconds & availablereplicas for statefulsets
 2021-05-26 13:45:50 -07:00
pacoxu
27044f4855 depracate ValidateProxyRedirects as it is with StreamingProxyRedirects 
Signed-off-by: pacoxu <paco.xu@daocloud.io>
 2021-05-26 20:18:49 +08:00
ravisantoshgudimetla
d11cc95376 feature: Add minReadySeconds featuregate 2021-05-25 19:59:59 -04:00
Kubernetes Prow Robot
548f16dbbb
Merge pull request #101992 from zshihang/bound 
BoundServiceAccountTokenVolume ga
 2021-05-25 07:52:22 -07:00
Kubernetes Prow Robot
d8f9e4587a
Merge pull request #101742 from ravisantoshgudimetla/promote-maxSurge-beta 
Promote DS MaxSurge to beta
 2021-05-23 04:33:38 -07:00
Danil-Grigorev
5d57b3794c Add DisableCloudProviders FG 
FeatureGate acts as a secondary switch to disable cloud-controller loops
in KCM, Kubelet and KAPI.

Provide comprehensive logging information to users, so they will be
guided in adoption of out-of-tree cloud provider implementation.
 2021-05-21 16:09:44 +02:00
Dave Chen
fadf3e1531 Graduate prefer nominated node to beta 
Signed-off-by: Dave Chen <dave.chen@arm.com>
 2021-05-21 15:13:50 +08:00
Kubernetes Prow Robot
6e4e32985a
Merge pull request #99576 from marosset/windows-host-process-work 
Windows host process work
 2021-05-20 14:16:15 -07:00
Kubernetes Prow Robot
77e769b040
Merge pull request #100754 from liggitt/warning-ga 
Graduate WarningHeader feature to GA
 2021-05-20 13:14:16 -07:00
ravisantoshgudimetla
040e9c8b51 Promote DS MaxSurge to beta 2021-05-19 16:12:52 -04:00
Kubernetes Prow Robot
49a60be8ab
Merge pull request #101496 from ahg-g/ahg-nss-beta 
Graduate pod affinity NamespaceSelector to Beta
 2021-05-14 08:48:04 -07:00
Abdullah Gharaibeh
e49d1144d5 graduate pod affinity NamespaceSelector to Beta 2021-05-14 10:44:57 -04:00
Shihang Zhang
88b31814f4 BoundServiceAccountTokenVolume ga 2021-05-13 20:45:47 -07:00
marosset
ffed017b76 Adding WindowsHostProcessContainers feature flag 2021-05-13 15:19:06 -07:00
Jordan Liggitt
e3ea169d7d Graduate WarningHeader feature to GA 2021-05-11 16:25:14 -04:00
Ed Bartosh
c12aa0f6b7 promote HugePageStorageMediumSize to GA 2021-05-10 15:57:55 +03:00
Kubernetes Prow Robot
548fb43643
Merge pull request #101292 from AliceZhang2016/job_controller_metrics 
Graduate indexed job to beta
 2021-05-07 13:31:44 -07:00
carlory
330fee1350 remove the RunAsGroup feature-gate 2021-05-07 10:35:34 +08:00
Kubernetes Prow Robot
545d595674
Merge pull request #101578 from carlory/remove-fg-CRIContainerLogRotation 
remove CRIContainerLogRotation feature gate
 2021-05-06 10:22:12 -07:00
Jiawei Wang
fa1a4100c6 Remove CSIMigrationVSphereComplete flag 2021-05-04 21:38:47 -07:00
Javier Diaz-Montes
baa88b26cd Remove feature gate to GA the setHostnameAsFQDN feature 2021-05-04 13:35:31 -04:00
Harry Bagdi
60377ba1a3 graduate IngressClassNamespacedParams to beta 2021-05-03 15:00:40 -07:00
Kubernetes Prow Robot
ef9d6f8c93
Merge pull request #101579 from carlory/remove-fg-RootCAConfigMap 
remove RootCAConfigMap feature gate
 2021-04-30 12:06:33 -07:00
Mengxue Zhang
2d2ee6bc3a change default feature gate value of IndexedJob 2021-04-30 14:36:15 +00:00
pacoxu
2eb90f9b80 Default StreamingProxyRedirects to disabled 
Signed-off-by: pacoxu <paco.xu@daocloud.io>
 2021-04-30 14:13:11 +08:00
carlory
b2e6df1e3a remove RootCAConfigMap feature gate 2021-04-28 17:59:07 +08:00
carlory
bdb99c5f16 remove CRIContainerLogRotation feature gate 2021-04-28 17:48:55 +08:00
ialidzhikov
8492301b93 Remove the VolumeSnapshotDataSource feature gate 
Signed-off-by: ialidzhikov <i.alidjikov@gmail.com>
 2021-04-27 20:32:18 +03:00
Kubernetes Prow Robot
5b46064cae
Merge pull request #101448 from wangyysde/remove-GAed-feature-gate-ExternalPolicyForExternalIP 
remove GAed feature gate ExternalPolicyForExternalIP
 2021-04-26 08:31:02 -07:00
wangyysde
1c5e08aa79 remove GAed feature gate ExternalPolicyForExternalIP 
Signed-off-by: wangyysde <net_use@bzhy.com>
 2021-04-26 21:54:34 +08:00
Kubernetes Prow Robot
6067d8556a
Merge pull request #100139 from Jefftree/ssa-ga2 
Promote SSA GA
 2021-04-24 21:39:00 -07:00
Kubernetes Prow Robot
75d571a10b
Merge pull request #101342 from rosenhouse/promote-namespace-default-labels-to-ga 
Promote NamespaceDefaultLabelName to GA
 2021-04-22 13:19:57 -07:00
wangyysde
361cc61a2e remove GAed feature gate:SCTPSupport 
Signed-off-by: wangyysde <net_use@bzhy.com>
 2021-04-22 16:34:18 +08:00
Gabe Rosenhouse
b5d4551ac7 Promote NamespaceDefaultLabelName to GA 
Lock to default for 1.22

Co-authored-by: Jay Vyas <jvyas@vmware.com>
 2021-04-21 22:29:30 +00:00
wangyysde
17c09a06f2 remove GAed feature gate:SCTPSupport 
Signed-off-by: wangyysde <net_use@bzhy.com>
 2021-04-19 21:41:30 +08:00
Kubernetes Prow Robot
677210ba32
Merge pull request #101048 from dims/revert-revert-derekwaynecarrpromote-memory-backed-volumes 
Revert "Revert "Promote SizeMemoryBackedVolumeSizing to beta""
 2021-04-14 20:25:49 -07:00
Davanum Srinivas
e47593359a
Revert "Revert "Promote SizeMemoryBackedVolumeSizing to beta"" 
This reverts commit 0e70b6a251.

Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2021-04-13 22:23:51 -04:00
Abdullah Gharaibeh
6ebafb37dd Graduate PodDeletionCost to Beta 2021-04-13 20:01:21 -04:00
Jefftree
94cf48a2d1 Promote SSA GA 2021-04-06 10:04:56 -07:00
Davanum Srinivas
0e70b6a251
Revert "Promote SizeMemoryBackedVolumeSizing to beta" 
This reverts commit 23523357ec.

Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2021-03-17 15:30:59 -04:00
Derek Carr
23523357ec Promote SizeMemoryBackedVolumeSizing to beta 2021-03-16 16:41:03 -04:00
Kubernetes Prow Robot
faa5c8ccd4
Merge pull request #99375 from ehashman/probe-kep-2238 
Add Probe-level terminationGracePeriodSeconds
 2021-03-11 23:10:18 -08:00
Elana Hashman
c88512d34f
Add feature flag ProbeTerminationGracePeriod, test field drop in API 2021-03-11 14:38:00 -08:00
Jefftree
4a41c474cc Revert SSA GA 2021-03-10 18:04:40 -08:00
Kubernetes Prow Robot
e95a8c878a
Merge pull request #99652 from Jefftree/ssa-ga 
Promote SSA to GA
 2021-03-09 23:31:15 -08:00
Shihang Zhang
4ad1c71174 graduate CSIServiceAccountToken to beta 2021-03-09 18:36:35 -08:00
Kubernetes Prow Robot
410d092d8a
Merge pull request #99643 from pohly/generic-ephemeral-volume-beta 
generic ephemeral volume beta
 2021-03-09 17:39:26 -08:00
Kubernetes Prow Robot
a6de8d74a1
Merge pull request #100023 from SergeyKanzhelev/postponeExecProbeTimeout 
postpone ExecProbeTimeout locking for at least 1 release based on use…
 2021-03-09 16:09:07 -08:00
Kubernetes Prow Robot
dcb3c56957
Merge pull request #99284 from fengzixu/support-external-health-monitor 
feature: add CSIVolumeHealth feature and gate
 2021-03-09 16:07:50 -08:00
Kubernetes Prow Robot
770a9504ea
Merge pull request #95734 from fromanirh/podresources-concrete-resources-apis 
podresources APIs: concrete resources apis: implement GetAllocatableResources
 2021-03-09 14:29:04 -08:00
Kubernetes Prow Robot
046ad61479
Merge pull request #99290 from mortent/PromotePDBsToGA 
Promote PodDisruptionBudget to policy/v1
 2021-03-09 11:05:05 -08:00
Sergey Kanzhelev
2449075825 postpone ExecProbeTimeout locking for at least 1 release based on user feedback 2021-03-09 18:07:13 +00:00
Kubernetes Prow Robot
207c75c6f7
Merge pull request #99522 from robscott/topology-hints 
Adding support for Topology Aware Hints
 2021-03-09 09:19:12 -08:00
fengzixu
edc1c62471 feature: add CSIVolumeHealth feature and gate 
1. add EventRecorder to ResourceAnalyzer
2. add CSIVolumeHealth feature and gate
 2021-03-10 01:16:37 +09:00
Morten Torkildsen
21fba79d45 Promote PDBs to GA 2021-03-09 10:29:11 -05:00
Francesco Romani
d7a30e1b08 podresources: getallocatable: add feature gate 
Add feature gate to disable the GetAllocatableResources API.
The feature gate isd alpha stage, disabled by default.

Add e2e test to demonstrate the behaviour with feature gate disabled.

Signed-off-by: Francesco Romani <fromani@redhat.com>
 2021-03-09 13:14:56 +01:00
Patrick Ohly
dcce753eda generic ephemeral volumes: promote to beta 2021-03-09 08:22:48 +01:00
jay vyas
c94ce8c507
Add default namespace labels to all namespaces for selectors (#96968) 
* namespace by name default labelling

Co-authored-by: Jordan Liggitt <jordan@liggitt.net>
Co-authored-by: Abhishek Raut <rauta@vmware.com>

* Make some logic improvement into default namespace label

* Fix unit tests

* minor change to trigger the CI

* Correct some tests and validation behaviors

* Add Canonicalize normalization and improve validation

* Remove label validation that should be dealt by strategy

* Update defaults_test.go
add fuzzer
ns spec

* remove the finalizer thingy

* Fix integration test

* Add namespace canonicalize unit test

* Improve validation code and code comments

* move validation of labels to validateupdate

* spacex will save us all

* add comment to testget

* readablility of canonicalize

* Added namespace finalize and status update validation

* comment about ungenerated names

* correcting a missing line on storage_test

* Update the namespace validation unit test

* Add more missing unit test changes

* Let's just blast the value. Also documenting the workflow here

* Remove unnecessary validations

Co-authored-by: Jordan Liggitt <jordan@liggitt.net>
Co-authored-by: Abhishek Raut <rauta@vmware.com>
Co-authored-by: Ricardo Pchevuzinske Katz <ricardo.katz@gmail.com>
 2021-03-08 20:46:59 -08:00
Kubernetes Prow Robot
a0341d7471
Merge pull request #98727 from adtac/suspend 
batch API: add suspended job
 2021-03-08 16:26:59 -08:00
Kubernetes Prow Robot
14c25eed8d
Merge pull request #99641 from pohly/storage-capacity-beta 
CSIStorageCapacity beta API
 2021-03-08 15:04:59 -08:00
Kubernetes Prow Robot
7c702138f9
Merge pull request #98538 from dims/mark-openstack/cinder-csi-migration-as-ga 
Mark openstack/cinder csi migrations as GA
 2021-03-08 13:39:12 -08:00
Rob Scott
fe43948d44
Adding TopologyAwareHints feature gate 2021-03-08 12:18:05 -08:00
Adhityaa Chandrasekar
a0844da8f7 batch: add suspended job 
Signed-off-by: Adhityaa Chandrasekar <adtac@google.com>
 2021-03-08 20:08:21 +00:00
Kubernetes Prow Robot
eb4dafb7f1
Merge pull request #99651 from umohnani8/cri 
Move CRIContainerLogRotation to GA
 2021-03-08 12:07:20 -08:00
Patrick Ohly
a94c141060 CSIStorageCapacity: promote API to beta 
The v1alpha1 API is left in place for now to ease the migration.
 2021-03-08 20:52:50 +01:00