github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
111,174 Commits 1 Branch 31 Tags
c6e5fd467938f1db9cc226fda9348222e67e8d08
Commit Graph

3567 Commits

Author SHA1 Message Date
Claudiu Belu
af77381e01 unit tests: Skip Windows-unrelated tests on Windows 
Some of the unit tests cannot pass on Windows due to various reasons:

- fsnotify does not have a Windows implementation.
- Proxy Mode IPVS not supported on Windows.
- Seccomp not supported on Windows.
- VolumeMode=Block is not supported on Windows.
- iSCSI volumes are mounted differently on Windows, and iscsiadm is a
  Linux utility.
 2022-10-18 12:43:07 +03:00
Paco Xu
2ce7a81169 fsnotify: use event.Has instead of "event.Op&h == h" 2022-10-13 13:42:26 +08:00
Kubernetes Prow Robot
3af1e5fdf6 Merge pull request #112707 from enj/enj/i/https_links 
Use https links for k8s KEPs, issues, PRs, etc
 2022-09-29 12:34:40 -07:00
Davanum Srinivas
f5339fc1ec Remove references to already deleted volume plugins 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2022-09-25 15:26:22 -04:00
Monis Khan
b738be9b46 Use https links for k8s KEPs, issues, PRs, etc 
Signed-off-by: Monis Khan <mok@microsoft.com>
 2022-09-23 23:36:24 +00:00
Kubernetes Prow Robot
91a9ce28ac Merge pull request #112607 from mattcary/ubuntu-path 
Consider only plugin subpath when cleaning up mounts
 2022-09-22 17:24:38 -07:00
Kubernetes Prow Robot
0fff024276 Merge pull request #112640 from humblec/rbd-owner 
Add humblec to approvers and reviewers list for Ceph driver
 2022-09-21 19:11:13 -07:00
Humble Chirammal
c15757d611 Add humblec to approvers and reviewers list for Ceph driver 
Ref#
https://github.com/kubernetes/kubernetes/pull/95361
https://github.com/kubernetes/kubernetes/pull/111137

Signed-off-by: Humble Chirammal <hchiramm@redhat.com>
 2022-09-21 20:01:39 +05:30
Matthew Cary
3993c23a74 Make mount ref search more robust 
Change-Id: Id28c2d1c8e996c10e4ad19a993ebbe75b142c1af
 2022-09-20 17:57:39 -07:00
Kubernetes Prow Robot
60e2f6c519 Merge pull request #112509 from humblec/new-1 
various corrections in pkg/volume
 2022-09-19 09:09:18 -07:00
Kubernetes Prow Robot
64a38b165e Merge pull request #112238 from demoManito/feat/optimize-ifelse 
Optimize: correction code specification
 2022-09-19 05:29:22 -07:00
Hemant Kumar
8d1e2e0faa Do not return err if CSIdriver is not found 
while checking for selinux support
 2022-09-16 15:53:03 -04:00
Humble Chirammal
f22a74aa6a various corrections in pkg/volume 
Signed-off-by: Humble Chirammal <hchiramm@redhat.com>
 2022-09-16 16:42:06 +05:30
Kubernetes Prow Robot
ee94dce5b1 Merge pull request #112015 from humblec/glusterfs-gone 
Removal of GlusterFS code from the repo
 2022-09-14 10:03:00 -07:00
Kubernetes Prow Robot
178f246bbc Merge pull request #111381 from muyangren2/assert_Equal_azure 
Fix test order  pkg/volume/azuredd/azure_common_test.go
 2022-09-14 04:59:01 -07:00
Humble Chirammal
c2a7bfd6b4 removal of glusterfs in-tree driver code from the source 
Signed-off-by: Humble Chirammal <hchiramm@redhat.com>
 2022-09-13 20:11:50 +05:30
demoManito
7a7c8d1ec9 revert interface check 2022-09-13 22:26:06 +08:00
Akanksha Kumari
86fa479273 Call SetupDevice only if Volume is not globally Mounted 2022-09-12 23:00:00 +05:30
demoManito
bf9c829e34 fix add code style 2022-09-10 23:22:40 +08:00
demoManito
e1a5e8537a optimize ifelse 2022-09-05 18:53:52 +08:00
Kubernetes Prow Robot
4d0ad0783a Merge pull request #110951 from 249043822/br-nestedPendingOperations 
fix nestedPendingOperations mount and umount parallel bug -- minimal change
 2022-08-25 19:36:10 -07:00
ZhangKe10140699
593f6c9fcc fix nestedPendingOperations mount and umount parallel bug 2022-08-26 09:29:17 +08:00
cndoit18
ec43037d0f style: remove redundant judgment 
Signed-off-by: cndoit18 <cndoit18@outlook.com>
 2022-08-25 12:07:36 +08:00
Kubernetes Prow Robot
69136c0c81 Merge pull request #111894 from wongma7/pvcnpd 
Fix PVC nil pointer dereference during migration-enabled volume expand
 2022-08-23 20:08:37 -07:00
Kubernetes Prow Robot
07bca2d791 Merge pull request #67782 from dims/yank-in-tree-openstack-cloud-provider 
Remove in-tree openstack cloud provider
 2022-08-23 18:59:48 -07:00
Kubernetes Prow Robot
71e534c580 Merge pull request #111527 from mengjiao-liu/clean-prometheus-in-volume 
Cleanup: remove prometheus dependencies for volume
 2022-08-23 16:05:31 -07:00
Davanum Srinivas
9bbf01bae9 Remove references to openstack and cinder 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2022-08-22 16:43:14 -04:00
Matthew Wong
a322a708f3 Fix PVC nil pointer dereference during migration-enabled volume expand 2022-08-17 11:32:22 -07:00
Kubernetes Prow Robot
64ed914545 Merge pull request #111258 from dobsonj/kep-596-ga-feature-flag 
KEP-596: Move CSIInlineVolume feature to GA
 2022-08-05 13:54:30 -07:00
Kubernetes Prow Robot
11d4cb52f2 Merge pull request #111693 from kinvolk/rata/userns-support-2022 
volume: FeatureGate access to GetHostIDsForPod()
 2022-08-05 09:37:48 -07:00
Jonathan Dobson
5f774832a5 Move CSIInlineVolume feature to GA 2022-08-04 13:06:30 -06:00
Rodrigo Campos
4267f2ee0c volume: FeatureGate access to GetHostIDsForPod() 
After the userns PR got merged:
	https://github.com/kubernetes/kubernetes/pull/111090

gnufied decided it might be safer if we feature gate this part of the
code, due to the kubelet volume host type assertion.

That is a great catch and this patch just moves the code inside the
feature gate if.

Signed-off-by: Rodrigo Campos <rodrigoca@microsoft.com>
 2022-08-04 14:08:29 +02:00
Jan Safranek
f9c7ce5b9c Add unit tests for DesiredStateOfWorldPopulator 2022-08-04 10:51:59 +02:00
Jan Safranek
39f0d78714 Add unit tests for GetPodVolumeNames 2022-08-04 10:51:57 +02:00
Jan Safranek
a01e720a1a Rename IsRWOP 
To be able to update content of the function to other access modes when we
implement SELinux mount for more of them.
 2022-08-04 10:51:54 +02:00
Jan Safranek
17d850ee0e Add interface for SELinuxOptionsToFileLabel 
github.com/opencontainers/selinux/go-selinux needs OS that supports SELinux
and SELinux enabled in it to return useful data, therefore add an interface
in front of it, so we can mock its behavior in unit tests.
 2022-08-04 10:51:51 +02:00
Jan Safranek
d9f792633d Add AddPodToVolume unit tests with SELinux 2022-08-04 10:51:50 +02:00
Jan Safranek
4df3f58737 Add SELinux feature check for iSCSI volume plugin 
In theory the check is not necessary, but for sake of robustness and
completenes, let's check SELinuxMountReadWriteOncePod feature gate before
assuming anything about SELinux labels.
 2022-08-04 10:51:47 +02:00
Jan Safranek
5c90474f38 Add SELinux mount support to CSI driver 
With some minor refactoring to use common getCSIDriver function.
 2022-08-04 10:51:45 +02:00
Jan Safranek
de7f5b66ed Fix existing unit tests 2022-08-04 10:51:44 +02:00
Jan Safranek
48b0751269 Add SELinux context tracking to volume manager 
Both ActualStateOfWorld and DesiredStateOfWorld must track SELinux context
of volume mounts.
 2022-08-04 10:51:41 +02:00
Jan Safranek
4cfb277e8b Implement mounting with -o context= in iSCSI volume plugin 2022-08-04 10:51:31 +02:00
Jan Safranek
cdb3ead5a9 Add SupportsSELinuxContextMount 
Add a new call to VolumePlugin interface and change all its
implementations.

Kubelet's VolumeManager will be interested whether a volume supports
mounting with -o conext=XYZ or not to hanle SetUp() / MountDevice()
accordingly.
 2022-08-04 10:51:28 +02:00
Jan Safranek
f99cf5180e Add SELinux mount option to NewMounter() and MountDevice() 
Let volume plugins decide if they want to mount volumes with "-o
context=XYZ" or let the container runtime relabel the volume on container
startup.

Using NewMounter, as it's the call where a volume plugin gets the other MountOptions.
 2022-08-04 10:51:11 +02:00
Jiawei Wang
d52cdeae79 cleanup: Remove storageos volume plugins from k8s codebase 2022-08-03 20:19:59 +00:00
Kubernetes Prow Robot
4b6134b6dc Merge pull request #111090 from kinvolk/rata/userns-support-2022 
Add support for user namespaces phase 1 (KEP 127)
 2022-08-03 13:05:47 -07:00
Rodrigo Campos
695b30e91c volume: use GetHostIDsForPod() 
This commit only changes the UID/GID if user namespaces is enabled. When
it is enabled, it changes it so the hostUID and hostGID that are mapped
to the currently used UID/GID. This is needed so volumes are created
with the hostUID/hostGID and the user inside the container can read
them.

If user namespaces are disabled for this pod, this is a no-op: there is
no user namespace mapping, so the hostUID/hostGID are the same as inside
the container.

Signed-off-by: Rodrigo Campos <rodrigoca@microsoft.com>
 2022-08-03 19:53:22 +02:00
Rodrigo Campos
d07c2688fe kubelet: add GetHostIDsForPod() 
In future commits we will need this to set the user/group of supported
volumes of KEP 127 - Phase 1.

Signed-off-by: Rodrigo Campos <rodrigoca@microsoft.com>
 2022-08-03 19:53:22 +02:00
Kubernetes Prow Robot
90f9a52db6 Merge pull request #111467 from RomanBednar/retro-sc-assignment 
Allow retroactive storage class assigment to PVCs
 2022-08-02 15:05:57 -07:00
Giuseppe Scrivano
eee5fa8b8d volume: use the effective uid 
Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
 2022-08-02 23:47:58 +02:00