github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
113,165 Commits 1 Branch 31 Tags
bdaa6bb617d776882034cd8e9db2b97d3a4b9fe4
Commit Graph

46252 Commits

Author SHA1 Message Date
Kubernetes Prow Robot
bdaa6bb617 Merge pull request #114776 from jsafrane/pv-secret-validation 
Allow SecretReference.Name in PVs to have 253 characters
 2023-01-18 10:54:34 -08:00
Kubernetes Prow Robot
c63434aaff Merge pull request #110838 from soltysh/cronjob_improvements 
CronJob controller cleanups
 2023-01-18 09:44:34 -08:00
Maciej Szulik
be44d67566 Re-use common parts between getNextScheduleTime and nextScheduledTimeDuration 
The two methods nextScheduledTimeDuration and getNextScheduleTime have a
lot of similarities, so this commit squashes the common parts together
along with getMostRecentScheduleTime to avoid code duplication.
 2023-01-18 16:52:45 +01:00
Kubernetes Prow Robot
cc68c06f9c Merge pull request #115163 from SataQiu/lock-AdvancedAuditing-gate-20230118 
Lock the AdvancedAuditing feature gate to true
 2023-01-18 07:12:41 -08:00
Kubernetes Prow Robot
4b2b4e19cc Merge pull request #114523 from zshihang/token 
graduate LegacyServiceAccountTokenTracking to beta
 2023-01-18 07:12:33 -08:00
Maciej Szulik
cb491a8d0f Cleanups in controller utils 
1. Squash two identical sorters byTime
2. Move helper for searching active jobs into utils to exist next to its
  counterpart
 2023-01-18 13:40:23 +01:00
Viacheslav Panasovets
6adf60fdf4 Do not create endpoints if service of type ExternalName (#114814) 2023-01-18 03:12:34 -08:00
SataQiu
c25095b223 the AdvancedAuditing featuregate has been GA since v1.12, and is locked to ture in v1.27 2023-01-18 18:50:15 +08:00
Kubernetes Prow Robot
46f3821bf4 Merge pull request #114586 from andrewsykim/apiserver-lease-rename 
Rename apiserver identity lease labels to apiserver.kubernetes.io/identity
 2023-01-17 21:36:34 -08:00
Kubernetes Prow Robot
5e9fc39d17 Merge pull request #114878 from Nordix/ipvs-allow-any-sheduler 
Ipvs: remove the scheduler validation
 2023-01-17 11:18:46 -08:00
Kubernetes Prow Robot
c913e6ce62 Merge pull request #114542 from pacoxu/EphemeralContainers 
cleanup: EphemeralContainers feature gate related codes
 2023-01-17 11:18:34 -08:00
Kubernetes Prow Robot
5550064bc2 Merge pull request #115063 from kannon92/tracking-remove-comments 
tracking with finalizers is the default way for the job controller so comments are not needed that say we are tracking with finalizers
 2023-01-17 07:56:44 -08:00
Kubernetes Prow Robot
727b5a4b47 Merge pull request #114231 from helio/fix-windows-cpu-maximum 
win: fix cpu count to calculate cpu_maximum
 2023-01-17 07:56:33 -08:00
Kubernetes Prow Robot
f16e62ae0c Merge pull request #114897 from kidddddddddddddddddddddd/volumebinding 
feature(volumebinding): return Skip in PreFilter
 2023-01-16 23:38:32 -08:00
Kubernetes Prow Robot
7b7b15b821 Merge pull request #115110 from HirazawaUi/delte-pkg-unused-functions 
delete unused functions in pkg directory
 2023-01-16 18:06:43 -08:00
Kubernetes Prow Robot
3d9b437df2 Merge pull request #115109 from HirazawaUi/delte-pkg-volume-unused-functions 
delete unused functions in pkg/volume directory
 2023-01-16 18:06:31 -08:00
Kubernetes Prow Robot
977465e310 Merge pull request #115103 from HirazawaUi/delte-pkg-util-unused-functions 
delete unused functions in pkg/util directory
 2023-01-16 16:58:10 -08:00
Kubernetes Prow Robot
7b01daba71 Merge pull request #115074 from yangjunmyfm192085/deleteklogv0-controller 
use klog instead of klog.V(0)--controller manager part
 2023-01-16 09:58:50 -08:00
HirazawaUi
3b18e80fb4 delete unused functions in pkg directory 2023-01-16 21:43:36 +08:00
HirazawaUi
79b799a0f3 delete unused functions in pkg/volume directory 2023-01-16 21:19:11 +08:00
Kubernetes Prow Robot
ed8cad1e80 Merge pull request #115056 from mimowo/podgc-do-not-add-condition-for-terminated-pods 
PodGC should not add DisruptionTarget condition for pods which are in terminal phase
 2023-01-16 03:04:50 -08:00
HirazawaUi
488b34eeb2 delete unused functions in pkg/util directory 2023-01-16 17:22:35 +08:00
Paco Xu
70e56fa71a cleanup: EphemeralContainers feature gate related codes 2023-01-15 21:15:01 +08:00
JunYang
29086e2b04 use klog instead of klog.V(0) 2023-01-14 21:15:50 +08:00
Kubernetes Prow Robot
eabb70833a Merge pull request #114896 from kidddddddddddddddddddddd/volume_zone 
feature(volume_zone): return Skip in PreFilter
 2023-01-13 23:14:13 -08:00
Kubernetes Prow Robot
3a8e2e399b Merge pull request #114393 from danielvegamyhre/myfeature 
Option to ignore existing pods' preferred inter-pod affinities if the incoming pod has no preferred inter-pod affinities
 2023-01-13 17:28:15 -08:00
Daniel Vega-Myhre
41817b1888 optionally ignore preferred terms of existing pods unless incoming pod 
has inter-pod affinities
 2023-01-13 23:15:53 +00:00
Andrew Sy Kim
a7de3e15a5 apiserver: use the identity value in the apiserver identity hash 
Signed-off-by: Andrew Sy Kim <andrewsy@google.com>
 2023-01-13 16:20:14 -05:00
Andrew Sy Kim
3da0f1809c apiserver: update lease label key to apiserver.kubernetes.io/identity 
Signed-off-by: Andrew Sy Kim <andrewsy@google.com>
 2023-01-13 15:37:22 -05:00
Kubernetes Prow Robot
2ca95b4df9 Merge pull request #115035 from xing-yang/update_plugin_warning 
Update warnings for removed in-tree plugins
 2023-01-13 12:08:26 -08:00
Kubernetes Prow Robot
9af5ae0365 Merge pull request #115030 from kannon92/remove-pod-error-job-tracking 
Update SyncJob with PodControllerError updates in job unit tests
 2023-01-13 12:08:14 -08:00
Kubernetes Prow Robot
70217a4083 Merge pull request #114944 from mimowo/fix-active-deadline-test 
Fix the job controller unit test for enforcing ActiveDeadlineSeconds
 2023-01-13 10:46:26 -08:00
Michal Wozniak
3833c0c349 PodGC should not add DisruptionTarget condition for pods which are in terminal phase 2023-01-13 18:28:44 +01:00
kannon92
4890928b78 tracking with finalizers is the default way for the job controller 2023-01-13 16:48:35 +00:00
Kubernetes Prow Robot
e51fe4a61c Merge pull request #114492 from SataQiu/update-prefered-storageversion-20221215 
apiserver: update serialization version priority for flowcontrol API
 2023-01-13 08:42:24 -08:00
kannon92
3a838033f8 Update SyncJob with PodControllerError updates in job unit tests 2023-01-13 16:39:18 +00:00
Michal Wozniak
7065b42bb2 Fix the job controller unit test for enforcing ActiveDeadlineSeconds 2023-01-13 16:48:15 +01:00
Kubernetes Prow Robot
c0c386b9c9 Merge pull request #114516 from nikhita/job-backoff-fix 
pkg/controller/job: re-honor exponential backoff delay
 2023-01-13 07:36:40 -08:00
Kubernetes Prow Robot
696701b9fd Merge pull request #114086 from xmcqueen/113935 
block ephemeral container addition to static pods
 2023-01-13 07:36:28 -08:00
SataQiu
950c147db5 apiserver: update serialization version priority for flowcontrol API 2023-01-13 22:19:39 +08:00
Kubernetes Prow Robot
6ce055d62d Merge pull request #114947 from saschagrunert/seccomp-ga-cleanup 
Make seccomp annotations non-functional
 2023-01-12 13:48:54 -08:00
xing-yang
07a1bc5b3e Update warnings for removed in-tree plugins 2023-01-12 16:25:00 -05:00
Kubernetes Prow Robot
1b8692ce46 Merge pull request #114296 from cbroglie/concurrent-monitor-node-health 
controller/nodelifecycle: Make monitorNodeHealth process nodes concurrently
 2023-01-12 12:42:54 -08:00
Kubernetes Prow Robot
3e049c5e68 Merge pull request #114883 from bobbypage/cadvisor_v047 
deps: Bump cAdvisor to v0.47.1
 2023-01-12 09:04:54 -08:00
Sascha Grunert
af1f6a230b Make seccomp annotations non-functional 
This cleanup has been planned to finish the corresponding KEP:
https://github.com/kubernetes/kubernetes/issues/91286

As follow-up on the partly removal of the seccomp annotations in
https://github.com/kubernetes/kubernetes/pull/109819, we now drop
the version skew handling completely, but still warn as well as keep
the validation in place if both (annotation and field) are set.

The Pod Security Admission code has been already changed in
https://github.com/kubernetes/kubernetes/pull/114846.

Signed-off-by: Sascha Grunert <sgrunert@redhat.com>
 2023-01-12 17:11:52 +01:00
Nikhita Raghunath
fd8d92a29d pkg/controller/job: re-honor exponential backoff 
This commit makes the job controller re-honor exponential backoff for
failed pods. Before this commit, the controller created pods without any
backoff. This is a regression because the controller used to
create pods with an exponential backoff delay before (10s, 20s, 40s ...).

The issue occurs only when the JobTrackingWithFinalizers feature is
enabled (which is enabled by default right now). With this feature, we
get an extra pod update event when the finalizer of a failed pod is
removed.

Note that the pod failure detection and new pod creation happen in the
same reconcile loop so the 2nd pod is created immediately after the 1st
pod fails. The backoff is only applied on 2nd pod failure, which means
that the 3rd pod created 10s after the 2nd pod, 4th pod is created 20s
after the 3rd pod and so on.

This commit fixes a few bugs:

1. Right now, each time `uncounted != nil` and the job does not see a
_new_ failure, `forget` is set to true and the job is removed from the
queue. Which means that this condition is also triggered each time the
finalizer for a failed pod is removed and `NumRequeues` is reset, which
results in a backoff of 0s.

2. Updates `updatePod` to only apply backoff when we see a particular
pod failed for the first time. This is necessary to ensure that the
controller does not apply backoff when it sees a pod update event
for finalizer removal of a failed pod.

3. If `JobsReadyPods` feature is enabled and backoff is 0s, the job is
now enqueued after `podUpdateBatchPeriod` seconds, instead of 0s. The
unit test for this check also had a few bugs:
    - `DefaultJobBackOff` is overwritten to 0 in certain unit tests,
    which meant that `DefaultJobBackOff` was considered to be 0,
    effectively not running any meaningful checks.
    - `JobsReadyPods` was not enabled for test cases that ran tests
    which required the feature gate to be enabled.
    - The check for expected and actual backoff had incorrect
    calculations.
 2023-01-12 20:34:10 +05:30
Kubernetes Prow Robot
457341c3d4 Merge pull request #114647 from kannon92/remove-legacy-job-tracking-job-controller 
Removing Legacy Job Tracking Code
 2023-01-12 04:38:53 -08:00
David Porter
8e3a02efa8 Remove AcceleratorUsageMetrics from kubelet 
The feature gate is GA'd and enabled by default and the metrics have
been removed from cAdvisor.

Signed-off-by: David Porter <david@porter.me>
 2023-01-11 16:07:39 -08:00
Kubernetes Prow Robot
08d9a0ef5b Merge pull request #113467 from pacoxu/psp-cleanup 
Remove PodSecurityPolicy related code except client-go & API type
 2023-01-11 14:28:07 -08:00
Christopher Broglie
3c88de52c8 controller/nodelifecycle: Make monitorNodeHealth process nodes concurrently 
Marking the pods not ready on a node requires looping over them and
updating each pod's status one at a time. This is performed serially,
and can take a while if we're processing each node serially as well.

Since the time is spent waiting on io, there's an opportunity to go
faster by processing multiple nodes concurrently. This change modifies
the loop to process nodes in parallel, using the same number of workers
as doNodeProcessingPassWorker.

This change also introduces histogram metrics to better observe
monitorNodeHealth.
 2023-01-11 12:34:39 -08:00