github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
112,844 Commits 1 Branch 31 Tags 1,019 MiB
d79535b7d3
Commit Graph

46123 Commits

Author SHA1 Message Date
Kubernetes Prow Robot
492637878f
Merge pull request #111660 from pacoxu/key-encipherment-v1.26 
Key encipherment usage  v1.27
 2023-01-04 15:51:57 -08:00
Kubernetes Prow Robot
ac889a0251
Merge pull request #113581 from aimuz/verify-tls-secret 
Verify that the key matches the cert
 2023-01-04 14:29:58 -08:00
Kubernetes Prow Robot
c1ca3191d5
Merge pull request #114803 from TommyStarK/registry/replace-deprecated-pointer-function 
pkg/registry: Replace deprecated pointer function
 2023-01-04 04:48:00 -08:00
weizhi
575616cc72
fix: kubelet event about unattached volumes is incorrect (#112719) 
* fix kubelet event

* add ut

* fix ut
 2023-01-04 01:51:59 -08:00
TommyStarK
e2d8fc3f62 pkg/registry: Replace deprecated pointer function 
Signed-off-by: TommyStarK <thomasmilox@gmail.com>
 2023-01-04 10:38:09 +01:00
Kubernetes Prow Robot
3f752b5edf
Merge pull request #114629 from kerthcet/feat/change-return-type-of-Filter 
Modify the return type of RunFilterPlugins to *Status
 2023-01-03 15:31:31 -08:00
Kubernetes Prow Robot
5914f30fd7
Merge pull request #114757 from danwinship/drop-endpointstracker 
Drop unused Endpoints-tracking code from pkg/proxy/
 2023-01-03 10:35:35 -08:00
Kubernetes Prow Robot
12c71fdf1c
Merge pull request #113542 from ardaguclu/fix-shortname-disperancy 
Set singular names for core types to pass to discovery
 2023-01-03 09:29:43 -08:00
Kubernetes Prow Robot
b532f2b3e7
Merge pull request #112136 from pacoxu/migrate-runtime-endpoint-flags 
kubelet: migrate container runtime endpoint flag to config
 2023-01-03 09:29:31 -08:00
Michal Wozniak
c3d0e8ff05 Fix clearing rate limiter in disruption controller 2023-01-03 15:06:06 +01:00
Dan Winship
fe2b658ef5 Drop unused Endpoints-only tracking code in kube-proxy 
This leaves the code in a somewhat messy state but it can be improved
further later.
 2023-01-03 09:03:49 -05:00
Dan Winship
c78b057d85 Port TestUpdateEndpointsMap from Endpoints tracker to EndpointSlice 
This is an ugly-but-simple rewrite (particularly involving having to
rewrite "single Endpoints with multiple Subsets" as "multiple
EndpointSlices"). Can be cleaned up more later...

The slice code sorts the results slightly differently from the old
code in two cases, and it was simpler to just reorder the expectations
rather than fixing the comparison code. But other than that, the
expected results are exactly the same as before.
 2023-01-03 09:03:46 -05:00
Dan Winship
cc1847e6ee Port TestLastChangeTriggerTime from Endpoints tracker to EndpointSlice 
This exposed a bug in the EndpointSlice tracking code, which is that
we didn't properly reset the "last change time" when a slice was
deleted. (This means kube-proxy would report an erroneous value in the
"endpoint programming time" metric if a service was added/updated,
then deleted before kube-proxy processed the add/update, then later
added again.)
 2023-01-03 09:03:34 -05:00
Kante Yin
49e7e80999 Modify the return type of RunFilterPlugins to *Status 
Before, the return type of RunFilterPlugins is a Map, but considering we'll return immediately
once we met unsuccessful status, this is not necessary.

Signed-off-by: Kante Yin <kerthcet@gmail.com>
 2023-01-03 14:33:58 +08:00
Kubernetes Prow Robot
6dc493bb83
Merge pull request #114750 from aojea/cleanup_allocator 
refactor current ipallocator
 2023-01-02 14:57:31 -08:00
Kubernetes Prow Robot
7759fdb940
Merge pull request #114528 from mpatlasov/fix-specModified-check 
Fix installDriverToCSINode(): do not skip CSINode update if Allocatable.Count changed
 2023-01-02 10:25:30 -08:00
Dan Winship
886c4b0cf2 Drop Endpoints-tracking-specific TestEndpointsToEndpointsMap 
TestEndpointsToEndpointsMap tested code that only ran when using
Endpoints tracking rather than EndpointSlice tracking--which is to
say, never, any more. (TestEndpointsMapFromESC in
endpointslicecache_test.go is an equivalent EndpointSlice test.)
 2022-12-31 12:03:23 -05:00
Antonio Ojea
29ea5076ea refactor current ipallocator 
- rename files to match the allocator backend
- use t.Run for tests and cover large ranges
- add benchmarks
- check that thebitmap ip allocator satisfies the interface

goos: linux
goarch: amd64

pkg: k8s.io/kubernetes/pkg/registry/core/service/ipallocator
cpu: Intel(R) Xeon(R) CPU E5-2678 v3 @ 2.50GHz
BenchmarkAllocateNextIPv4Size1048574
BenchmarkAllocateNextIPv4Size1048574-24    	 1517683
7373 ns/op	     135 B/op	       8 allocs/op
BenchmarkAllocateNextIPv6Size65535
BenchmarkAllocateNextIPv6Size65535-24      	 5607438
193.9 ns/op	      18 B/op	       2 allocs/op
PASS
 2022-12-31 12:48:50 +00:00
Kushagra
80384bbb55 spelling mistake rectified 2022-12-29 17:55:17 +00:00
Kushagra
f380ef8b61 Misleading message when there are no metrics. 2022-12-29 10:57:43 +00:00
Paco Xu
160f015ef4 kubelet: add key encipherment usage only if it is rsa key 
remove allowOmittingUsageKeyEncipherment as it is always true

Signed-off-by: Paco Xu <paco.xu@daocloud.io>
 2022-12-27 16:04:25 +08:00
Kubernetes Prow Robot
68b96575a2
Merge pull request #114669 from Nordix/ipvs-remove-module-check 
Ipvs: remove module check
 2022-12-26 10:09:27 -08:00
Paco Xu
3ace3eb74b certificates default to tolerate no key encipherment 2022-12-26 23:15:21 +08:00
Kubernetes Prow Robot
685d639cb5
Merge pull request #114464 from Nordix/issue-114461 
Set permissions for timestamp directory before publishing update to avoid permission denied
 2022-12-24 16:11:26 -08:00
Lars Ekman
5ff705fd77 proxy/ipvs: Describe and handle a bug in moby/ipvs 
Handle https://github.com/moby/ipvs/issues/27
A work-around was already in place, but a segv would occur
when the bug is fixed. That will not happen now.
 2022-12-24 10:21:27 +01:00
Tero Saarni
96306f144a Set permissions on volume before publishing update 
This change fixes a race condition that was caused by setting the file owner,
group and mode non-atomically, after the updated files had been published.

Users who were running non-root containers, without GID 0 permissions, and
had removed read permissions from other users by setting defaultMode: 0440 or
similar, were getting intermittent permission denied errors when accessing
files on secret or configmap volumes or service account tokens on projected
volumes during update.
 2022-12-24 07:59:41 +02:00
Kubernetes Prow Robot
05ecc3d602
Merge pull request #114683 from thockin/remove_old_comment_proxy_valid_pod_addr 
Remove TODO about API proxy checking for svc
 2022-12-23 15:37:37 -08:00
Kubernetes Prow Robot
e96337606d
Merge pull request #114681 from thockin/nix_comments_about_ipv6_not_ready 
Remove old comments about IPv6 not being ready
 2022-12-23 15:37:26 -08:00
Kubernetes Prow Robot
0b05897c30
Merge pull request #112021 from mrunalp/test_host_path_pv_selinux_fix 
Set correct SELinux label for host paths volumes created by host path provisioner
 2022-12-23 12:35:27 -08:00
Tim Hockin
ed3ebbaaa7
Remove TODO about API proxy checking for svc 2022-12-23 12:32:17 -08:00
Tim Hockin
57b9656e2b
Remove old comments about IPv6 not being ready 2022-12-23 11:06:44 -08:00
Lars Ekman
68d78c89ec use netutils.ParseIPSloppy 2022-12-23 14:19:28 +01:00
Lars Ekman
dc86bdc3aa Handle an empty scheduler ("") 2022-12-23 13:23:02 +01:00
Lars Ekman
90c03dcf9a gofmt 2022-12-23 12:34:31 +01:00
Lars Ekman
4ef7726c4e Remove obsolete test case 2022-12-23 11:46:45 +01:00
Lars Ekman
4adc687275 Fixed typo 2022-12-23 11:13:55 +01:00
Lars Ekman
cf214d0738 Clean-up un-used code 2022-12-23 10:54:51 +01:00
Lars Ekman
3bd3759424 gofmt 2022-12-23 10:14:47 +01:00
Lars Ekman
b169f22eb8 Updates after rewiew 
To update the scheduler without node reboot now works.
The address for the probe VS is now 198.51.100.0 which is
reseved for documentation, please see rfc5737. The comment
about this is extended.
 2022-12-23 10:11:15 +01:00
Kubernetes Prow Robot
45f14a93f1
Merge pull request #113787 from gjkim42/update-daemonset-status-despite-error 
Update daemonSet status even if syncDaemonSet fails
 2022-12-22 15:49:25 -08:00
Kubernetes Prow Robot
07801383af
Merge pull request #114503 from TommyStarK/unit-tests/pkg-kubeapiserver-admission 
kubeapiserver/admission: Improving test coverage
 2022-12-22 14:05:26 -08:00
Lars Ekman
cd15ca0548 proxy/ipvs: Check that a dummy virtual server can be added 
This tests both ipvs and the configured scheduler
 2022-12-22 20:36:53 +01:00
Kubernetes Prow Robot
3a5829044c
Merge pull request #114098 from kidddddddddddddddddddddd/feat/pv_list 
Optimize volumebinding by moving PV list calls to PreFilter
 2022-12-22 10:11:37 -08:00
Kubernetes Prow Robot
d1c715a982
Merge pull request #113834 from atiratree/sts-handle-delete-pod-error 
statefulset: handle API error on pod deletion
 2022-12-22 08:17:26 -08:00
Lars Ekman
4f02671b23 proxy/ipvs: Remove kernel module tests 
To check kernel modules is a bad way to check functionality.
This commit just removes the checks and makes it possible to
use a statically linked kernel.

Minimal updates to unit-tests are made.
 2022-12-22 17:13:41 +01:00
Kubernetes Prow Robot
419e0ec3d2
Merge pull request #114390 from tangwz/improve_NodeResourcesFit_replace_small_maps_with_slices 
Improve performance of NodeResourcesFit scoring
 2022-12-22 06:57:26 -08:00
kidddddddddddddddddddddd
27c5c0a16d pv_list to prefilter 2022-12-22 14:59:41 +08:00
Kubernetes Prow Robot
70c28f3e12
Merge pull request #114486 from kerthcet/cleanup/make-preemption-more-readable 
Make handling scheduleResult more readable
 2022-12-21 15:01:25 -08:00
Kante Yin
c8908716ee Make handling scheduleResult more readable 
Signed-off-by: Kante Yin <kerthcet@gmail.com>
 2022-12-22 01:22:34 +08:00
tangwz
a4ab559ba4 Improve performance of NodeResourcesFit scoring 
Signed-off-by: tangwz <tangwz.com@gmail.com>
 2022-12-21 23:23:47 +08:00