github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
122,541 Commits 1 Branch 31 Tags
b421bde1de40530b51b4b88c736bb007ed9afb17
Commit Graph

20744 Commits

Author SHA1 Message Date
Patrick Ohly
008b075b46 DRA: fix data race in resourceclaim.Lookup 
This gets uses concurrently as seen by a data race reported when running
integration tests with race detection enabled. All writes would have written
the same value, but it is a race nonetheless.
 2024-02-14 08:14:47 +01:00
Alexander Zielenski
3094395fa7 bugfix: avoid NPE possibility by making composition environment global 2024-02-13 13:06:39 -08:00
Alexander Zielenski
18fbc48b01 refactor: implement VAP off of policy plugin fw 2024-02-13 13:06:39 -08:00
Alexander Zielenski
a6366573d5 refactor: create generic policy plugin type similar to webhook 2024-02-13 13:06:39 -08:00
Anish Ramasekar
19da90d639 Add AudienceMatchPolicy to AuthenticationConfiguration 
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
 2024-02-13 09:50:00 -08:00
Stephen Kitt
1b1b902f81 codegen: don't nuke files if only verifying 
The code generation tools support verification only with the
--verify-only option, but this now fails because the files are nuked
ahead of time.

Signed-off-by: Stephen Kitt <skitt@redhat.com>
 2024-02-13 13:38:05 +01:00
Akihiro Suda
a834bd84b5 cri-api: KEP-3857: Recursive Read-only (RRO) mounts 
This commit modifies the following files:

- `staging/src/k8s.io/cri-api/pkg/apis/runtime/v1/api.proto`
- `staging/src/k8s.io/cri-api/pkg/errors/errors.go`

Other changes were auto-generated by running `make update`.

Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
 2024-02-13 16:14:22 +09:00
Anish Ramasekar
77241d3125 Add apiserver_encryption_config_controller_automatic_reloads_total 
metric

- Adds `apiserver_encryption_config_controller_automatic_reloads_total`
  metric with status label for encryption config reload success/failure.
- Deprecated `apiserver_encryption_config_controller_automatic_reload_failures_total` and `apiserver_encryption_config_controller_automatic_reload_success_total`

Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
 2024-02-12 21:47:46 -08:00
Alexander Zielenski
d697f43d73 refactor: move matching logic into parent policy folder 2024-02-12 10:58:25 -08:00
Alexander Zielenski
8b14116509 refactor: move vap into parent policy folder 
also renames to remove stutter

comment
 2024-02-12 10:58:24 -08:00
Alexander Zielenski
8b26b6eec1 refactor: move celmetrics close to its usage in vap 
does not need to be accessed from anywhere else, and removed an excessive lonesome `cel` pkg with just the metrics
 2024-02-12 10:58:24 -08:00
Kubernetes Prow Robot
e51e3c74f7 Merge pull request #122152 from pohly/client-go-event-context-fix 
client-go events: support context.Background() as context
 2024-02-12 06:48:06 -08:00
Akihiro Suda
5c825d8a22 core/v1: remove comment about non-existing constants 
`NodeReachable`, `NodeLive`, `NodeSchedulable`, and `NodeRunnable` are mentioned
as "built-in set of conditions" but some of them do not exist in the current API.

Updated `pkgs/apis/core/types.go` too for consistency.

Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
 2024-02-12 23:16:43 +09:00
cpanato
a8abed8015 Update publishing-bot rules to Go 1.21.7 
Signed-off-by: cpanato <ctadeu@gmail.com>
 2024-02-11 15:09:41 +01:00
Kubernetes Prow Robot
98b589a76d Merge pull request #123224 from mmerkes/cleanup 
Clean up dead code in node controller
 2024-02-09 17:15:23 -08:00
Kubernetes Prow Robot
48228bf9db Merge pull request #121486 from benluddy/cbor-stub 
KEP-4222: Add stub CBOR serializer.
 2024-02-09 14:42:05 -08:00
Matt Merkes
75210d0840 Clean up dead code in node controller 
Signed-off-by: Matt Merkes <merkes@amazon.com>
 2024-02-09 21:39:36 +00:00
cpanato
eec508e488 use patch number 
Signed-off-by: cpanato <ctadeu@gmail.com>
 2024-02-09 14:47:56 +01:00
cpanato
ddb0b8da9d [go] Bump images, dependencies and versions to go 1.22 
Signed-off-by: cpanato <ctadeu@gmail.com>
 2024-02-09 14:43:34 +01:00
Harsha Narayana
ab8c784ee9 kubelet: enable configurable rotation duration and parallel rotate 2024-02-09 16:49:11 +05:30
Kubernetes Prow Robot
012f04b178 Merge pull request #123023 from ah8ad3/fix-kubectl-explain-show-enum 
Fix kubectl explain to shows enum for field types if they were defined
 2024-02-08 19:52:59 -08:00
Kubernetes Prow Robot
002b0f0003 Merge pull request #123083 from jiahuif-forks/feature/validating-admission-policy/typechecking-variables 
ValidatingAdmissionPolicy: support variables
 2024-02-08 15:53:00 -08:00
Jiahui Feng
3e777540fd add test case for error inside variables. 2024-02-08 13:39:25 -08:00
José Carlos Chávez
6d6398ef92 chore: adds consistent vanity import to files and provides tooling for verifying and updating them. (#120642) 
* chore: drops update vanity imports from script.

* chore: changes copyright year to 2024.

* chore: makes lint happy.
 2024-02-08 04:33:30 -08:00
Ivo Gosemann
e821e0de15 remove error wrapping from builder 2024-02-08 09:53:29 +01:00
Kubernetes Prow Robot
fae7ec4a37 Merge pull request #123164 from liggitt/api-validation 
Put validation utility packages used by API validation under API review
 2024-02-07 14:25:55 -08:00
Dan Winship
7a56b6e3f7 Add validation.IsValidCIDR 
Move apivalidation.ValidateCIDR to apimachinery, and rename it and
change its return value to match the other functions.

Also, add unit tests.

(Also, while updating NetworkPolicy validation for the API change, fix
a variable name that implied that IPBlock.Except[] is IP-valued rather
than CIDR-valued.)
 2024-02-07 09:48:01 -05:00
bzsuni
658e3308f3 etcd: Update to version 3.5.12 
Signed-off-by: bzsuni <bingzhe.sun@daocloud.io>
 2024-02-07 21:16:08 +08:00
Kubernetes Prow Robot
052bce26f4 Merge pull request #122931 from danwinship/ip-validation-cleanup 
consistently use IsValidIP for IP validation
 2024-02-06 15:58:15 -08:00
Jordan Liggitt
eceaed8c07 Put validation utility packages used by API validation under API review 2024-02-06 17:50:09 -05:00
Kubernetes Prow Robot
862ff187ba Merge pull request #123001 from tkashem/apf-allow-zero-concurrency 
Allow zero value for the 'nominalConcurrencyShares' field
 2024-02-06 09:08:18 -08:00
Kubernetes Prow Robot
35b1bc45ef Merge pull request #122925 from tkashem/timeout-refactor-handle-error 
apiserver: refactor handleError in endpoints/filters
 2024-02-06 04:14:31 -08:00
Kubernetes Prow Robot
920333b5fb Merge pull request #123134 from danwinship/kep-3705-to-ga 
KEP-3705 CloudDualStackNodeIPs to GA
 2024-02-05 23:25:55 -08:00
Abu Kashem
9e37ccedc7 apiserver: refactor handleError in endpoints/filters 2024-02-05 16:12:12 -05:00
Kubernetes Prow Robot
8c6e940a97 Merge pull request #123098 from munnerz/4193-jti-audit-changes 
use authentication.kubernetes.io/issued-credential-id audit annotation in serviceaccount token registry endpoint
 2024-02-05 08:45:43 -08:00
Kubernetes Prow Robot
6972fd7d0b Merge pull request #122557 from liangyuanpeng/anp_0.29 
Bump konnectivity-client to v0.29.0
 2024-02-05 08:45:16 -08:00
buddie.wei
5855f5178f Fix the syntax error in the comment of the checkQuotas method. (#121428) 
* Update controller.go

Fix comment error.
From "It there was no quota change mark the waiter as succeeded." to "If there was no quota change mark the waiter as succeeded."

* Adjust the comments to maintain consistent tense throughout.

Adjust the comments to maintain consistent tense throughout.
 2024-02-05 08:45:00 -08:00
Dan Winship
4ddf69a835 Remove checks of the CloudDualStackNodeIPs feature gate 2024-02-05 11:35:11 -05:00
Dan Winship
eba4fd82eb KEP-3705 CloudDualStackNodeIPs to GA 2024-02-05 10:17:03 -05:00
James Munnelly
7f12735fff use authentication.kubernetes.io/issued-credential-id audit annotation in serviceaccount token registry endpoint 2024-02-05 10:24:31 +00:00
Jiahui Feng
dc832c6e59 add support of variables for Type Checking. 2024-02-01 15:28:21 -08:00
Kubernetes Prow Robot
ac6d67d27c Merge pull request #115282 from tkashem/panic-warning 
apiserver: warning.AddWarning should not panic when request times out
 2024-02-01 13:29:59 -08:00
Jiahui Feng
21ba0d59d3 refactor type checking to use CompositedCompiler. 2024-02-01 13:20:21 -08:00
Abu Kashem
7cab0ad2d2 apiserver: warning should not panic when request times out 2024-02-01 11:21:22 -05:00
ah8ad3
c82c80099d add some comments, redesign style of enums in simple and long view, fix tests to these new changes 2024-02-01 14:46:05 +03:30
Kubernetes Prow Robot
11b9740436 Merge pull request #121512 from HirazawaUi/add-decod-time-trace 
Add decode time to the audit log
 2024-01-31 12:54:17 -08:00
Kubernetes Prow Robot
fb7181792b Merge pull request #118511 from lowang-bh/fix_spell_error 
fix comment of rbac decision for NoOpinion
 2024-01-31 12:54:03 -08:00
ahmad.zo
9d4997ea69 change the extractEnum function to add limit, intent and add tests for new behaviours 2024-01-31 13:54:53 +03:30
ahmad.zo
0283498ab4 fix gofmt error 2024-01-30 11:23:41 +03:30
ahmad.zo
0c7281624e change style of enums 2024-01-30 10:01:12 +03:30