github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
123,012 Commits 1 Branch 31 Tags
ae5543e4c8f99cb1555102a8ebc310aed3c82596
Commit Graph

49842 Commits

Author SHA1 Message Date
Kubernetes Prow Robot
ae5543e4c8 Merge pull request #125303 from AxeZhan/evaluatedNodes 
[Scheduler] Change back to original way of calculating EvaluatedNodes.
 2024-06-04 06:33:13 -07:00
Kubernetes Prow Robot
0122991a3c Merge pull request #125294 from hbostan/master 
Add a new workqueue to endpointslice controller for updating topology cache and checking node topology distribution.
 2024-06-04 02:44:23 -07:00
hbostan
db827e67fc Add a new workqueue to endpointslice controller for updating topology 
cache and checking node topology distribution.
 2024-06-04 08:33:32 +00:00
AxeZhan
cf73c9d93c remove EvaluatedNodes field in Diagnosis struct 2024-06-04 14:20:55 +08:00
Kubernetes Prow Robot
99cb3eba35 Merge pull request #125101 from alexzielenski/apiserver/vap-storageversion-bump 
store validatingadmissionpolicy and bindings at v1
 2024-06-03 14:34:02 -07:00
Kubernetes Prow Robot
cfe5a7d03a Merge pull request #125213 from carlory/fix-dra-flaky 
fix dra flaky test on TestPlugin
 2024-06-03 13:32:10 -07:00
Kubernetes Prow Robot
ff5b5f9b2c Merge pull request #124658 from sttts/sttts-controlplane-storage 
Step 10 – controlplane: add generic storage construction
 2024-06-03 08:37:56 -07:00
Kubernetes Prow Robot
8bd36c60bd Merge pull request #125197 from gabesaba/prefilter_perf 
[scheduler] absent key in NodeToStatusMap implies UnschedulableAndUnresolvable
 2024-06-03 07:35:41 -07:00
Dr. Stefan Schimanski
3a3be8c704 controlplane: add generic storage construction 
Signed-off-by: Dr. Stefan Schimanski <stefan.schimanski@gmail.com>
 2024-06-03 13:50:04 +02:00
Kubernetes Prow Robot
790dfdbe38 Merge pull request #125238 from munnerz/kep-4193-nodebinding-beta 
KEP-4193: promote ServiceAccountTokenNodeBinding feature to beta
 2024-05-31 12:27:18 -07:00
Gabe
c8f0ea1a54 Don't fill in NodeToStatusMap with UnschedulableAndUnresolvable 2024-05-31 15:52:16 +00:00
Kubernetes Prow Robot
6d0aab2e38 Merge pull request #125014 from carlory/fix-120287 
Remove volumesNeedReportedInUse for reconstructed volumes
 2024-05-31 05:32:24 -07:00
Kubernetes Prow Robot
4cc989a7a9 Merge pull request #124740 from bells17/use-sets-set-string 
[pkg/volume] Changed to use sets.Set[string] instead of sets.String
 2024-05-31 05:32:15 -07:00
James Munnelly
5481e630de KEP-4193: promote ServiceAccountTokenNodeBinding feature to beta 2024-05-31 12:16:03 +01:00
Kubernetes Prow Robot
6938c29a38 Merge pull request #125225 from aojea/ipmode 
fix loadbalancer status comparison
 2024-05-30 18:34:57 -07:00
Antonio Ojea
59adf3f833 remove unused function LoadBalancerStatusEqual 
It is duplicated in the cloud provider package, and is only used
there for the service load balancer controller.
 2024-05-30 23:03:54 +00:00
Kubernetes Prow Robot
f30a87d517 Merge pull request #122832 from benluddy/cbor-fuzz-native-to-unstructured-via 
KEP-4222: Add roundtrip tests to Unstructured via CBOR and JSON.
 2024-05-30 15:00:31 -07:00
Kubernetes Prow Robot
a0e3a70d53 Merge pull request #124671 from saschagrunert/logs-staging 
Move `pkg/kubelet/kuberuntime/logs` to `k8s.io/cri-client` staging
 2024-05-30 13:26:01 -07:00
carlory
2794baf4c0 fix dra flaky test on TestPlugin 2024-05-30 23:22:37 +08:00
Kubernetes Prow Robot
72226c7511 Merge pull request #123315 from bart0sh/PR134-graduate-DevicePluginCDIDevices-to-GA 
Graduate DevicePluginCDIDevices to GA
 2024-05-30 08:17:06 -07:00
Sascha Grunert
0c9949b6ec Move pkg/kubelet/kuberuntime/logs to k8s.io/cri-client staging 
Particulary helpful to decouple cri-tools from k/k.

Signed-off-by: Sascha Grunert <sgrunert@redhat.com>
 2024-05-30 15:13:22 +02:00
Kubernetes Prow Robot
f44bb5e6e5 Merge pull request #125176 from mauri870/feature/testing-MainStart-go1.23 
pkg/util/coverage: update fakeTestDeps methods
 2024-05-29 15:40:38 -07:00
Shingo Omura
552fd7e850 KEP-3619: Fine-grained SupplementalGroups control (#117842) 
* Add `Linux{Sandbox,Container}SecurityContext.SupplementalGroupsPolicy` and `ContainerStatus.user` in cri-api

* Add `PodSecurityContext.SupplementalGroupsPolicy`, `ContainerStatus.User` and its featuregate

* Implement DropDisabledPodFields for PodSecurityContext.SupplementalGroupsPolicy and ContainerStatus.User fields

* Implement kubelet so to wire between SecurityContext.SupplementalGroupsPolicy/ContainerStatus.User and cri-api in kubelet

* Clarify `SupplementalGroupsPolicy` is an OS depdendent field.

* Make `ContainerStatus.User` is initially attached user identity to the first process in the ContainerStatus

It is because, the process identity can be dynamic if the initially attached identity
has enough privilege calling setuid/setgid/setgroups syscalls in Linux.

* Rewording suggestion applied

* Add TODO comment for updating SupplementalGroupsPolicy default value in v1.34

* Added validations for SupplementalGroupsPolicy and ContainerUser

* No need featuregate check in validation when adding new field with no default value

* fix typo: identitiy -> identity
 2024-05-29 15:40:29 -07:00
Ben Luddy
0600269c1a Fuzz roundtrip to Unstructured via both JSON and CBOR. 2024-05-29 17:48:10 -04:00
Kubernetes Prow Robot
ee2c1ffa80 Merge pull request #124630 from carlory/fix-123731 
DRA: scheduler: index claim and class parameters to simplify lookup
 2024-05-29 14:38:14 -07:00
Alexander Zielenski
cd41a7d8e1 store validatingadmissionpolicy and bindings at v1 2024-05-29 13:14:51 -07:00
Kubernetes Prow Robot
1ebc3d2a64 Merge pull request #120699 from liyuerich/ptrderefcontroller 
drop deprecated pointer package in controller
 2024-05-29 10:12:36 -07:00
Mauri de Souza Meneguzzo
b8e5a3ed32 pkg/util/coverage: update fakeTestDeps methods 
Go 1.23 changed the signature of the testDeps interface so we need to
add a blank implementation for InitRuntimeCoverage to fakeTestDeps.
 2024-05-29 12:31:22 -03:00
Kubernetes Prow Robot
da02fdb2ae Merge pull request #123339 from skitt/canonical-json-patch 
Update kustomize, use canonical json-patch v4 import
 2024-05-29 08:02:24 -07:00
Gabe
7ea3bf4db4 Revert "scheduler: preallocation for NodeToStatusMap" 
This reverts commit 9fcd791c01.
 2024-05-29 14:09:58 +00:00
Kubernetes Prow Robot
1ff1207d22 Merge pull request #124017 from carlory/rm-ctrl-flags 
kube-controller-manager removes deprecated command flags
 2024-05-28 10:54:22 -07:00
Kubernetes Prow Robot
fad52aedfc Merge pull request #125086 from oxxenix/exponential-backoff 
add exponential backoff in NodeResourceSlices controller
 2024-05-28 02:46:43 -07:00
Stephen Kitt
5300466a5c Use canonical json-patch v4 import 
The canonical import for json-patch v4 is
gopkg.in/evanphx/json-patch.v4 (see
https://github.com/evanphx/json-patch/blob/master/README.md#get-it for
reference).

Using the v4-specific path should also reduce the risk of unwanted v5
upgrade attempts, because they won't be offered as automated upgrades
by dependency upgrade management tools, and they won't happen through
indirect dependencies (see
https://github.com/kubernetes/kubernetes/pull/120327 for context).

Signed-off-by: Stephen Kitt <skitt@redhat.com>
 2024-05-28 10:48:22 +02:00
Oksana Baranova
c4ec24890e nodeResourceSlicesController: add exponential backoff 2024-05-27 23:12:53 +03:00
Kubernetes Prow Robot
b2817dc432 Merge pull request #125040 from carlory/fix-125012 
Fix kubelet on Windows fails if a pod has SecurityContext with RunAsUser
 2024-05-27 04:58:20 -07:00
carlory
3072987fcc DRA: scheduler: index claim and class parameters to simplify lookup 2024-05-27 15:57:10 +08:00
carlory
214287b370 kube-controller-manager removed deprecated command flags: --volume-host-cidr-denylist and --volume-host-allow-local-loopback 2024-05-27 10:59:09 +08:00
Kubernetes Prow Robot
ef39aa896a Merge pull request #124948 from SataQiu/clean-20240519 
kube-controller-manager: remove the deprecated horizontal-pod-autoscaler-upscale-delay and horizontal-pod-autoscaler-downscale-delay flags
 2024-05-23 08:15:56 -07:00
Kubernetes Prow Robot
b42bb8fa58 Merge pull request #124060 from iholder101/swap/tmpfs-noswap 
[KEP-2400] Mount tmpfs memory-backed volumes with a noswap option if supported
 2024-05-23 07:02:03 -07:00
carlory
3812fa1d6d Fix kubelet on Windows fails if a pod has SecurityContext with RunAsUser. 
Co-authored-by: rphillips <rphillips@redhat.com>
 2024-05-23 12:44:51 +08:00
Kubernetes Prow Robot
dad8fe71f2 Merge pull request #124220 from HirazawaUi/fix-pod-restarted 
[kubelet]: fixed container restart due to pod spec field changes
 2024-05-22 15:43:36 -07:00
Kubernetes Prow Robot
74d578485d Merge pull request #123910 from MarSik/fix-printer-leap-y 
Fix printers tests - remove dependency on leap years
 2024-05-22 07:51:29 -07:00
HirazawaUi
3ec13c5e37 remove HashWithoutResources field 2024-05-22 10:01:31 +08:00
HirazawaUi
f6b650430a fixed container restart due to field changes 2024-05-22 09:55:46 +08:00
Kubernetes Prow Robot
0f584a9b86 Merge pull request #124933 from AxeZhan/fix_panic 
[Scheduler] Use allNodes when calculating nextStartNodeIndex
 2024-05-21 10:29:35 -07:00
Kubernetes Prow Robot
027f346f60 Merge pull request #124926 from kerthcet/feat/sharing-waitingPods 
enhancement(scheduler): share waitingPods among profiles
 2024-05-21 03:37:14 -07:00
carlory
2491560ae5 Remove volumesNeedReportedInUse for reconstructed volumes 2024-05-21 18:23:12 +08:00
Itamar Holder
a6b971f14b Use kubelet owned directories for mounting rather than /tmp 
Signed-off-by: Itamar Holder <iholder@redhat.com>
 2024-05-21 13:18:16 +03:00
Itamar Holder
74f29880bd Replace log entry by a warning event 
Signed-off-by: Itamar Holder <iholder@redhat.com>
 2024-05-21 13:18:16 +03:00
Itamar Holder
29535c0463 Warn of swap is enabled on the OS and tmpfs noswap is not supported 
When --fail-swap-on=false kubelet CLI argument
is provided, but tmpfs noswap is not supported
by the kernel, warn about the risks of memory-backed
volumes being swapped into disk

Signed-off-by: Itamar Holder <iholder@redhat.com>
 2024-05-21 13:18:16 +03:00