github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
111,580 Commits 1 Branch 31 Tags
bbe050dd01fbf60661b8b8d8f750a0dc675dcbb9
Commit Graph

45667 Commits

Author SHA1 Message Date
Kubernetes Prow Robot
818b13544f Merge pull request #106242 from thockin/revive-copy-lb-status-type-to-ingress 
Copy LoadBalancerStatus from core to networking
 2022-11-02 21:39:34 -07:00
Kubernetes Prow Robot
3cf75a2f76 Merge pull request #103177 from arkbriar/support_cancelable_exec_stream 
Support cancelable SPDY executor stream
 2022-11-02 19:47:36 -07:00
Kubernetes Prow Robot
fccd8b12d0 Merge pull request #113363 from andrewsykim/proxy-terminating-endpoints-beta 
promote ProxyTerminatingEndpoints feature to Beta
 2022-11-02 18:21:17 -07:00
Kubernetes Prow Robot
86a6ace994 Merge pull request #113277 from manav014/master 
Cleanup: kube-proxy internal naming
 2022-11-02 18:21:05 -07:00
Kubernetes Prow Robot
b60b0c74c9 Merge pull request #113521 from daschott/user/daschott/winkernel-stale-vips 
resolve winkernel proxier treating stale VIPs as valid
 2022-11-02 16:29:24 -07:00
Kubernetes Prow Robot
4b2aa18bde Merge pull request #113478 from alculquicondor/finalizer_metric 
Add benchmark for large indexed job
 2022-11-02 16:29:13 -07:00
Kubernetes Prow Robot
32ea818d21 Merge pull request #112838 from zshihang/token 
graduate LegacyServiceAccountTokenNoAutoGeneration to ga
 2022-11-02 16:29:01 -07:00
Tim Hockin
0153bfad16 Copy LoadBalancerStatus from core to networking 
This type should never have been shared between Service and Ingress.
The `ports` field is unfortunate, but it is needed to stay compatible.
 2022-11-02 16:13:31 -07:00
Manav Agarwal
3320e50e24 If applied, this commit will refactor variable names in kube-proxy 2022-11-03 03:45:57 +05:30
Kubernetes Prow Robot
433787d25b Merge pull request #113018 from fromanirh/cpumanager-ga-features 
node: kubelet: cpumgr: CPU Manager to GA
 2022-11-02 14:41:01 -07:00
Kubernetes Prow Robot
25dc4c4f32 Merge pull request #112980 from swatisehgal/devicemanager-ga-graduation 
node: devicemgr: Graduate Kubelet DeviceManager to GA
 2022-11-02 13:17:01 -07:00
Francesco Romani
a6b928d90c kubelet: cpumgr: internal variable trivial rename 
CPUManager is going GA, thus it makes little sense
to keep the names of the internal configuration
variables `Experimental*`.

Trivial rename only.

Signed-off-by: Francesco Romani <fromani@redhat.com>
 2022-11-02 18:41:42 +01:00
Francesco Romani
5e12338a22 node: cpumgr: address golint complains 
Add docstrings and trivial fixes.

Signed-off-by: Francesco Romani <fromani@redhat.com>
 2022-11-02 18:41:42 +01:00
Francesco Romani
ff44dc1932 cpumanager: the FG is locked to default (ON) 
hence we can remove the if() guards, the feature
is always available.

Signed-off-by: Francesco Romani <fromani@redhat.com>
 2022-11-02 18:41:41 +01:00
Francesco Romani
c8ab5a092c node: kubelet: cpumgr: CPU Manager to GA 
Signed-off-by: Francesco Romani <fromani@redhat.com>
 2022-11-02 18:41:04 +01:00
Kubernetes Prow Robot
63e40b1ed4 Merge pull request #113548 from aojea/revert_113408 
Revert "plumb context from CRI calls through kubelet"
 2022-11-02 10:13:14 -07:00
Aldo Culquicondor
5e03865f65 Add benchmark for large indexed job 
Change-Id: I556f0cce5842699c98654cfb5a66e7c8d63b2e2e
 2022-11-02 11:56:26 -04:00
Kubernetes Prow Robot
447706238f Merge pull request #113419 from chrishenzie/rwop-integration-test 
scheduler: integration test for ReadWriteOncePod alpha
 2022-11-02 08:35:38 -07:00
Antonio Ojea
9c2b333925 Revert "plumb context from CRI calls through kubelet" 
This reverts commit f43b4f1b95.
 2022-11-02 13:37:23 +00:00
Swati Sehgal
40741681a2 node: devicemgr: Address warnings from golint 
Signed-off-by: Swati Sehgal <swsehgal@redhat.com>
 2022-11-02 11:05:20 +00:00
Swati Sehgal
8b29eded52 node: devicemgr: Remove devicePluginEnabled field from container mgr 
With graduation of device plugins to GA in 1.26, the feature gate is
enabled by default so `devicePluginEnabled` field no longer needs to
be passed at the time of Container Manager creation.

In addition to that, we remove the `ManagerStub` as it is no longer
needed.

Signed-off-by: Swati Sehgal <swsehgal@redhat.com>
 2022-11-02 11:05:20 +00:00
Swati Sehgal
752fa093e0 node: devicemgr: GA graduation implies Feature Gate is ON by default 
Signed-off-by: Swati Sehgal <swsehgal@redhat.com>
 2022-11-02 11:05:20 +00:00
Roman Bednar
8d48c107a7 fix unit tests 2022-11-02 10:14:58 +01:00
Roman Bednar
8209066c4c graduate RetroactiveDefaultStorageClass to beta 
Change feature to beta and remove e2e test feature flags since they're
not needed anymore.
 2022-11-02 09:25:10 +01:00
Kubernetes Prow Robot
5899432f92 Merge pull request #113481 from rphillips/fixes/77063 
kubelet: fix pod log line corruption when using timestamps and long lines
 2022-11-01 19:59:50 -07:00
Kubernetes Prow Robot
9bbd0fbdb2 Merge pull request #113476 from marosset/hpc-to-stable 
Promoting WindowsHostProcessContainers to stable
 2022-11-01 19:59:43 -07:00
Kubernetes Prow Robot
114a54c098 Merge pull request #113450 from neogopher/pv-controller-fix-log-message 
docs: Correct the log message for pv controller to make it more accurately descriptive
 2022-11-01 19:59:19 -07:00
Kubernetes Prow Robot
7b84436168 Merge pull request #113408 from dashpole/kubelet_context 
Plumb context to Kubelet CRI calls
 2022-11-01 19:59:08 -07:00
Kubernetes Prow Robot
3edbebe348 Merge pull request #110268 from danwinship/minimize-iptables-changes 
minimize iptables-restore input
 2022-11-01 18:06:46 -07:00
daschott
7b6e4e4d8b added retries to winkernel proxy rules deletion 2022-11-01 16:42:07 -07:00
Chris Henzie
2d0afbc054 scheduler: integration test for ReadWriteOncePod alpha 
Tests scheduler enforcement of the ReadWriteOncePod PVC access mode.

- Creates a pod using a PVC with ReadWriteOncePod
- Creates a second pod using the same PVC
- Observes the second pod fails to schedule because PVC is in-use
- Deletes the first pod
- Observes the second pod successfully schedules
 2022-11-01 15:08:01 -07:00
Kubernetes Prow Robot
2452a95bd4 Merge pull request #112796 from SataQiu/clean-kubelet-20220930 
kubelet: remove the unused constant AnnotationInvalidReason since sysctl annotations are deprecated and migrated to fields
 2022-11-01 14:56:45 -07:00
Mark Rossetti
498d065cc5 Promoting WindowsHostProcessContainers to stable 
Signed-off-by: Mark Rossetti <marosset@microsoft.com>
 2022-11-01 14:06:25 -07:00
Kubernetes Prow Robot
9b72f20156 Merge pull request #112373 from loktev-d/k8s_109717 
Add unit tests for active_deadline.go
 2022-11-01 12:54:44 -07:00
Kubernetes Prow Robot
1a41cb8985 Merge pull request #113021 from rphillips/fixes/112936 
kubelet: fix nil crash in allocateRemainingFrom
 2022-11-01 10:46:45 -07:00
Kubernetes Prow Robot
e6060f2780 Merge pull request #111220 from giuseppe/drop-superfluous-function 
kubelet: remove superfluous function
 2022-11-01 09:34:45 -07:00
Kubernetes Prow Robot
9b5fa57654 Merge pull request #113358 from mengjiao-liu/fix-StatefulSetAutoDeletePVC 
StatefulSet: fix kube-controller-manager panic due to StatefulSetPersistentVolumeClaimRetentionPolicy being nil
 2022-11-01 08:24:45 -07:00
Ryan Phillips
ddae396ce3 kubelet: fix pod log line corruption when using timestamps and long lines 2022-11-01 09:22:30 -05:00
Kubernetes Prow Robot
2d14d50b31 Merge pull request #113406 from jsafrane/fix-selinux-check-of-mounted 
Fix SELinux check of mounted volumes
 2022-11-01 04:14:45 -07:00
Shihang Zhang
af72ea5c07 graduate LegacyServiceAccountTokenNoAutoGeneration to ga 2022-10-31 22:55:21 -07:00
daschott
dc2fc1045d added backend hashing to winkernel proxier 2022-10-31 21:57:34 -07:00
Kubernetes Prow Robot
7d9c0e0a78 Merge pull request #113411 from jsafrane/fix-selinux-context-mount 
Fix SELinux context mount with unknown context
 2022-10-31 17:00:44 -07:00
Kubernetes Prow Robot
4c657e5014 Merge pull request #110403 from claudiubelu/unittests-3 
unittests: Fixes unit tests for Windows (part 3)
 2022-10-31 15:52:44 -07:00
Kubernetes Prow Robot
f892ab1bd7 Merge pull request #113405 from jsafrane/reduce-log-noise-on-selinux 
Reduce log noise on SELinux mount mismatch
 2022-10-31 13:14:56 -07:00
Kubernetes Prow Robot
373a78feab Merge pull request #113321 from jsafrane/selinux-all-plugins 
Add SELinux mount support to all volume plugins
 2022-10-31 13:14:44 -07:00
Kubernetes Prow Robot
4a3bac5eae Merge pull request #113281 from ialidzhikov/seccomp-default-fg 
Update the doc string of the SeccompDefault feature gate
 2022-10-31 11:50:56 -07:00
Jan Safranek
8dd3510032 Fix SELinux context mount with unknown context 
Don't mount with SELinux mount option if kubelet does not know the SELinux
context, i.e. MounterArgs.SELinuxLabel is ""
 2022-10-31 19:11:48 +01:00
Michał Woźniak
3628532311 Extend metrics with the new labels (#113324) 
* Extend job metrics

* Refactor TestMetrics to extract its checks into dedicated tests per feature
 2022-10-31 08:50:45 -07:00
Jan Safranek
d37808faae Report error on a pod startup on SELinux mismatch 
When a volume is already mounted with an unexpected SELinux label,
kubelet must unmount it first and then mount it back with the expected one.
Report an error to user, just in case the unmount takes too long.

In therory, this error should not happen too often, because two Pods with
different SELinux label will not enter Desired State of World, see
dsw.AddPodToVolume. It can happen when DSW and ASW SELinux labels only when
a volume has been deleted from DSW (= Pod was deleted) or a volume was
reconstructed after kubelet restart. In both cases, volume manager should
unmount the volume quickly.
 2022-10-31 13:59:23 +01:00
Jan Safranek
805482413a Fix SELinux check of mounted volumes 
In PodExistsInVolume with volumeObj.seLinuxMountContext != nil we know that
the volume has been previously mounted with a given SELinuxMountContext.

Either it has been mounted by this kubelet and we know it's correct or it
was by a previous instance of kubelet and the context has been
reconstructed from the filesystem. In both cases, the actual context is
correct, regardless if the volume plugin or PV access mode supports SELinux
mounts.
 2022-10-31 13:39:48 +01:00