github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
123,947 Commits 1 Branch 31 Tags 1,019 MiB
ce01dfc492
Commit Graph

2157 Commits

Author SHA1 Message Date
Kubernetes Prow Robot
fc3abdaf2d
Merge pull request #125470 from everpeace/kep-3619-SupplementalGroupsPolicy-e2e 
KEP-3619: Add NodeStatus.Features.SupplementalGroupsPolicy API and e2e
 2024-07-16 13:57:06 -07:00
xyz-li
18b81ab68c api: fix ValidatingAdmissionPolicyList json tag 
This change make api-server not omity the field `item` of
ValidatingAdmissionPolicyList when ValidatingAdmissionPolicy is empty.
So kubetl will print ValidatingAdmissionPolicyList correctly when ValidatingAdmissionPolicy is empty.

Signed-off-by: xyz-li <hui0787411@163.com>
 2024-07-16 17:00:28 +08:00
Shingo Omura
5d75660dc1
KEP-3619: API: add NodeFeatures.SupplementalGroupsPolicy in NodeStatus 
KEP-3619: don't capitalize comment in K8S API

KEP-3619: fix typos and grammatical ones in K8s API

KEP-3619: rephrase NodeFeatures, NodeHandlerFeatures in K8s API
 2024-07-16 12:35:55 +09:00
Peter Hunt
86240aaca1 api: add user namespaces field to NodeRuntimeHandlerFeatures 
Signed-off-by: Sohan Kunkerkar <sohank2602@gmail.com>
 2024-07-15 15:55:39 -04:00
Kubernetes Prow Robot
a87612b667
Merge pull request #126057 from thockin/make-pod-ip-host-ip-required 
make PodIP.IP and HostIP.IP required.
 2024-07-12 17:17:01 -07:00
Lan Liang
73613b48c6
make PodIP.IP and HostIP.IP required. 
Fields used as map keys must be required or defaulted when used in a CRD schema.

see https://github.com/kubernetes/kubernetes/issues/124540

Signed-off-by: Lan Liang <gcslyp@gmail.com>
 2024-07-12 09:27:27 -07:00
Michal Wozniak
f1233ac5e0 JobPodFailurePolicy to GA 
# Conflicts:
#	pkg/controller/job/job_controller_test.go
 2024-07-12 17:21:32 +02:00
Kubernetes Prow Robot
1080554307
Merge pull request #124969 from RomanBednar/pv-phase-transition-time-ga 
graduate PersistentVolumeLastPhaseTransitionTime to GA in 1.31
 2024-07-11 15:29:19 -07:00
Kubernetes Prow Robot
93d56511e6
Merge pull request #125021 from aojea/servicecidrbeta 
KEP-1880 Multiple Service CIDRs: Graduate to Beta (2/2)
 2024-06-30 08:53:25 -07:00
Antonio Ojea
bc8bce2ef9 make update 2024-06-30 09:48:46 +00:00
Antonio Ojea
d748fc024d add ServiceCIDR to the exception for api rules 2024-06-29 10:01:38 +00:00
Kubernetes Prow Robot
ac9aec9f9b
Merge pull request #125116 from pohly/dra-one-of-source 
DRA: remove "source" indirection from v1 Pod API
 2024-06-28 12:46:45 -07:00
Kubernetes Prow Robot
d40676c227
Merge pull request #122047 from aojea/treeless 
KEP-1880 Multiple Service CIDRs: Graduate to Beta (1/2)
 2024-06-28 01:00:20 -07:00
Antonio Ojea
ac82ba67f7 update openapi 2024-06-28 06:54:14 +00:00
Kubernetes Prow Robot
2c6daa41de
Merge pull request #125162 from sttts/sttts-code-generator-core-group 
code-generator/client-gen: decouple core group from package name 'api'
 2024-06-27 16:12:15 -07:00
Kubernetes Prow Robot
df20694c62
Merge pull request #125600 from thockin/plus_default_deprecated_volumes 
Use +default for deprecated volume types
 2024-06-27 10:40:00 -07:00
Patrick Ohly
bde9b64cdf DRA: remove "source" indirection from v1 Pod API 
This makes the API nicer:

    resourceClaims:
    - name: with-template
      resourceClaimTemplateName: test-inline-claim-template
    - name: with-claim
      resourceClaimName: test-shared-claim

Previously, this was:

    resourceClaims:
    - name: with-template
      source:
        resourceClaimTemplateName: test-inline-claim-template
    - name: with-claim
      source:
        resourceClaimName: test-shared-claim

A more long-term benefit is that other, future alternatives
might not make sense under the "source" umbrella.

This is a breaking change. It's justified because DRA is still
alpha and will have several other API breaks in 1.31.
 2024-06-27 17:53:24 +02:00
Dr. Stefan Schimanski
ac3b7643ad
make codegen 
Signed-off-by: Dr. Stefan Schimanski <stefan.schimanski@gmail.com>
 2024-06-27 15:33:08 +02:00
Dr. Stefan Schimanski
7e52d34852
code-generator/client-gen: add example with core group 
Signed-off-by: Dr. Stefan Schimanski <stefan.schimanski@gmail.com>
 2024-06-27 15:16:39 +02:00
Kubernetes Prow Robot
3ee4d98364
Merge pull request #125576 from alvaroaleman/fix 
Corev1.Node: Link to node doc and not PV doc in status.capacity
 2024-06-20 10:19:49 -07:00
Tim Hockin
a074dd6f2e
Use +default for now deprecated ScaleIO volume 2024-06-19 12:18:33 -07:00
Tim Hockin
0f5ab4beec
Use +default for now deprecated AzureDisk volume 2024-06-19 11:59:52 -07:00
Tim Hockin
333c02cf28
Use +default for now deprecated ISCSI volume 2024-06-19 11:59:20 -07:00
Tim Hockin
03f0110b95
Use +default for now deprecated RBD volume 
THis leaves us less hand-written code and a better schema.
 2024-06-19 11:58:26 -07:00
Alvaro Aleman
5e56953337 Corev1.Node: Link to node doc and not PV doc in status.capacity 
Currently, the go doc and as a result the generated swagger docs for
node.status.capacity links to a documentation page for PV capacity.
Update it to link to our nodes about node capacity and alloctable
instead.
 2024-06-18 23:12:52 -04:00
Kubernetes Prow Robot
9e2075b3c8
Merge pull request #125189 from mimowo/improve-ready-comment 
Improve the Job API comment for ready field
 2024-06-05 11:37:07 -07:00
Kubernetes Prow Robot
99cb3eba35
Merge pull request #125101 from alexzielenski/apiserver/vap-storageversion-bump 
store validatingadmissionpolicy and bindings at v1
 2024-06-03 14:34:02 -07:00
Shingo Omura
552fd7e850
KEP-3619: Fine-grained SupplementalGroups control (#117842) 
* Add `Linux{Sandbox,Container}SecurityContext.SupplementalGroupsPolicy` and `ContainerStatus.user` in cri-api

* Add `PodSecurityContext.SupplementalGroupsPolicy`, `ContainerStatus.User` and its featuregate

* Implement DropDisabledPodFields for PodSecurityContext.SupplementalGroupsPolicy and ContainerStatus.User fields

* Implement kubelet so to wire between SecurityContext.SupplementalGroupsPolicy/ContainerStatus.User and cri-api in kubelet

* Clarify `SupplementalGroupsPolicy` is an OS depdendent field.

* Make `ContainerStatus.User` is initially attached user identity to the first process in the ContainerStatus

It is because, the process identity can be dynamic if the initially attached identity
has enough privilege calling setuid/setgid/setgroups syscalls in Linux.

* Rewording suggestion applied

* Add TODO comment for updating SupplementalGroupsPolicy default value in v1.34

* Added validations for SupplementalGroupsPolicy and ContainerUser

* No need featuregate check in validation when adding new field with no default value

* fix typo: identitiy -> identity
 2024-05-29 15:40:29 -07:00
Alexander Zielenski
cd41a7d8e1 store validatingadmissionpolicy and bindings at v1 2024-05-29 13:14:51 -07:00
Michal Wozniak
551464fe53 Improve the Job API comment for ready field 2024-05-29 14:01:28 +02:00
carlory
214287b370 kube-controller-manager removed deprecated command flags: --volume-host-cidr-denylist and --volume-host-allow-local-loopback 2024-05-27 10:59:09 +08:00
Kubernetes Prow Robot
ef39aa896a
Merge pull request #124948 from SataQiu/clean-20240519 
kube-controller-manager: remove the deprecated horizontal-pod-autoscaler-upscale-delay and horizontal-pod-autoscaler-downscale-delay flags
 2024-05-23 08:15:56 -07:00
Kubernetes Prow Robot
073c1596f2
Merge pull request #124602 from Iceber/fix_discovery_prioritized_versions 
fix the version order of 'discovery.k8s.io'
 2024-05-20 09:12:20 -07:00
Roman Bednar
5ea0c7be1e graduate PersistentVolumeLastPhaseTransitionTime to GA in 1.31 2024-05-20 13:46:24 +02:00
SataQiu
4bd3baece3 kube-controller-manager: remove the deprecated horizontal-pod-autoscaler-upscale-delay and horizontal-pod-autoscaler-downscale-delay flags 2024-05-19 17:49:23 +08:00
Kubernetes Prow Robot
2a003648b0
Merge pull request #124793 from mimowo/fix-managed-by-comment 
Fix the comment for the Job managedBy field
 2024-05-16 10:50:57 -07:00
Michal Wozniak
a517b4dcdf Fix the comment for the Job managedBy field 2024-05-13 13:31:58 +02:00
Kensei Nakada
2ea7d8f523 graduate MatchLabelKeysInPodAffinity to Beta 2024-05-11 10:40:28 +00:00
Kubernetes Prow Robot
1af6bc992c
Merge pull request #123845 from HirazawaUi/promote-DisableNodeKubeProxyVersion-to-beta 
promote DisableNodeKubeProxyVersion feature gate to beta
 2024-05-08 12:23:19 -07:00
Kubernetes Prow Robot
2c7bda528f
Merge pull request #124590 from xrstf/fix-optional-comment 
Fix +optional in comment for persistentVolumeClaimRetentionPolicy
 2024-05-06 06:58:33 -07:00
Patryk Małek
8dbeaa5786
fix(api): make LocalObjectReference.Name and HostAlias.IP required (#124553) 
* fix(api): LocalObjectReference Name a "" default and make HostAlias.IP required

* chore(api): add LocalObjectReference comment

* chore(api): add omitempty to LocalObjectReference's Name

* chore(api): add kubebuilder:default annotation

* chore(api): ./hack/update-codegen.sh
 2024-05-03 15:21:14 -07:00
Christoph Mewes
e8b03d92d0 codegen 2024-04-29 09:14:59 +02:00
Iceber Gu
498bebee6d fix the version order of 'discovery.k8s.io' 
Signed-off-by: Iceber Gu <caiwei95@hotmail.com>
 2024-04-29 14:31:58 +08:00
Antonio Ojea
dbfa387922 tag service.spec.TrafficDistribution field as alpha 2024-04-27 11:19:06 +00:00
Kubernetes Prow Robot
6289589509
Merge pull request #124075 from pohly/dra-api-comments 
DRA: API cleanup + fix
 2024-04-23 15:07:50 -07:00
Patrick Ohly
acfaf8c275 DRA: sync internal API doc comments 
This had been done before for types.go, but namedresources.go still had one
small diff.

While at it, fix some typos.
 2024-04-22 14:18:45 +02:00
Kubernetes Prow Robot
dbaf5d667f
Merge pull request #124062 from alculquicondor/nodename-api-comment 
Update API comment for nodeName to match system behavior
 2024-04-18 02:11:56 -07:00
Kubernetes Prow Robot
527590ed09
Merge pull request #123902 from Jefftree/agg-discovery-fixture 
Update aggregated discovery fixture to v2
 2024-04-18 01:04:48 -07:00
HirazawaUi
98c29f0312 promote DisableNodeKubeProxyVersion feature gate to beta 2024-04-14 20:32:49 +08:00
Patrick Ohly
1a13b0aa33 DRA api: ResourceHandle.DriverName is required 
It was already required via validation, but not declared as such by the
OpenAPI.
 2024-03-27 11:22:35 +01:00