github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
107,039 Commits 1 Branch 31 Tags
fef7d0ef1e1fbff65e8d445256036704bb9dbcbd
Commit Graph

15384 Commits

Author SHA1 Message Date
Monis Khan
fef7d0ef1e webhook: use rest.Config instead of kubeconfig file as input 
This change updates the generic webhook logic to use a rest.Config
as its input instead of a kubeconfig file.  This exposes all of the
rest.Config knobs to the caller instead of the more limited set
available through the kubeconfig format.  This is useful when this
code is being used as a library outside of core Kubernetes. For
example, a downstream consumer may want to override the webhook's
internals such as its TLS configuration.

Signed-off-by: Monis Khan <mok@vmware.com>
 2022-03-17 20:47:42 -04:00
Kubernetes Prow Robot
a504daa048 Merge pull request #108441 from pacoxu/pod-overload-ga 
mark PodOverhead to GA in v1.24; remove in v1.26
 2022-03-17 06:33:22 -07:00
Kubernetes Prow Robot
dd2596e40d Merge pull request #108611 from divyenpatel/add-csi-topology-translation-for-in-tree-vSphere-volumes 
topology translation of in-tree vSphere volume to vSphere CSI
 2022-03-17 02:29:19 -07:00
Kubernetes Prow Robot
41b29e6542 Merge pull request #99287 from anfernee/clientip 
Add HNS Load Balancer Healthchecks for ExternalTrafficPolicy: Local
 2022-03-16 22:57:18 -07:00
Kubernetes Prow Robot
b4d53c2614 Merge pull request #108646 from cici37/context 
Wire in request context
 2022-03-16 20:21:22 -07:00
Paco Xu
acd696266e mark PodOverhead to GA in v1.24; remove in v1.26 2022-03-17 09:30:14 +08:00
Kubernetes Prow Robot
b195a64d45 Merge pull request #108644 from Jefftree/googleapis-gnostic 
googleapis/gnostic -> google/gnostic and update kube-openapi
 2022-03-16 15:14:10 -07:00
cici37
b3851d4115 Wire in request context 2022-03-16 14:14:53 -07:00
Kubernetes Prow Robot
1d7599b56c Merge pull request #108419 from DangerOnTheRanger/cel-maxlength-integration 
CEL MaxLength integration
 2022-03-16 13:50:11 -07:00
Kubernetes Prow Robot
17dcac276a Merge pull request #108695 from cici37/errMessage 
short circuit remaining validation rules if one exceeds its per-cost limit
 2022-03-16 12:36:22 -07:00
Kubernetes Prow Robot
9cb9a29f34 Merge pull request #108731 from mborsz/revert-105585-improvement-volume-health 
Revert "add volume kubelet_volume_stats_health_abnormal to kubelet"
 2022-03-16 09:15:16 -07:00
Kubernetes Prow Robot
3a4064c5c8 Merge pull request #108359 from ArangoGutierrez/devel/108355 
Fix logging statement with missing parameter
 2022-03-16 06:31:49 -07:00
Maciej Borsz
aa95513982 Revert "add volume kubelet_volume_stats_health_abnormal to kubelet" 2022-03-16 13:44:09 +01:00
Jefftree
8a1d5947ad googleapis/gnostic -> google/gnostic 2022-03-15 20:44:03 -07:00
Kubernetes Prow Robot
5ea2615609 Merge pull request #108639 from jiahuif-forks/feature/openapi/node-condition-type-non-enum 
remove enum markers on types without validation
 2022-03-15 19:49:48 -07:00
cici37
ed03e0955c Fix err handling due to cel update 2022-03-15 19:49:31 -07:00
Kubernetes Prow Robot
162f8d5bac Merge pull request #108394 from ialidzhikov/cleanup/warningheaders 
Remove the WarningHeaders feature gate
 2022-03-15 16:09:48 -07:00
Kermit Alexander
83e4d192b1 Add maxLength/maxItems/maxProperties support to cel.Compile. 2022-03-15 21:39:36 +00:00
Kubernetes Prow Robot
096cd9df63 Merge pull request #108699 from xing-yang/update_owners 
Update sig-storage owners files
 2022-03-15 14:28:00 -07:00
Kubernetes Prow Robot
6224458dc2 Merge pull request #108448 from ialidzhikov/cleanup/deserialization-cache-size 
apiserver: Remove the deprecated `--deserialization-cache-size` flag
 2022-03-15 14:27:48 -07:00
Kubernetes Prow Robot
1a5abe5d1f Merge pull request #105585 from fengzixu/improvement-volume-health 
add volume kubelet_volume_stats_health_abnormal to kubelet
 2022-03-15 05:58:11 -07:00
Kubernetes Prow Robot
4bca479dfb Merge pull request #108595 from cici37/updateLimit 
Update CEL runtime cost limit
 2022-03-15 04:00:11 -07:00
Kubernetes Prow Robot
226a76235a Merge pull request #108620 from kevindelgado/query-param-verifier 
Generalize Query Param Verifier
 2022-03-14 18:50:09 -07:00
cici37
31677520f3 Update cost budget 2022-03-14 15:11:12 -07:00
Kubernetes Prow Robot
866e42310d Merge pull request #108482 from cici37/vendorCEL 
Add CEL runtime cost into CR validation
 2022-03-14 14:23:12 -07:00
Jiahui Feng
40e1b6b411 polish comments of non-enum values. 
types: PodConditionType, NodeConditionType
 2022-03-14 13:45:11 -07:00
Kubernetes Prow Robot
64d137ae0a Merge pull request #108685 from cpanato/update-publish 
Update publishing-bot rules for Go 1.17.8 / 1.16.15
 2022-03-14 13:03:34 -07:00
Kubernetes Prow Robot
7f1907c4c6 Merge pull request #108561 from RomanBednar/btrfs-resize 
mount-utils: Add support for btrfs resize
 2022-03-14 13:03:22 -07:00
xing-yang
aae1f2c476 Update sig-storage owners file 2022-03-14 18:57:52 +00:00
cici37
6b2907be8c Wire runtime cost into validation. 2022-03-14 11:54:52 -07:00
Kubernetes Prow Robot
faa027ca2b Merge pull request #108214 from stevekuznetsov/skuznets/lease-manager-fix 
storage: etcd: clarify lease manager configurations
 2022-03-14 11:35:14 -07:00
Kubernetes Prow Robot
5b52c4d127 Merge pull request #107674 from sanposhiho/api-min-domains 
Add MinDomains API to TopologySpreadConstraints field
 2022-03-14 09:33:57 -07:00
cpanato
1ef8e9a0b4 Update publishing-bot rules for Go 1.17.8 / 1.16.15 
Signed-off-by: cpanato <ctadeu@gmail.com>
 2022-03-14 10:17:26 +01:00
Yongkun Gui
78a507b256 Fix health check from Google's Load Balancer 
This change adds 2 options for windows:
--forward-healthcheck-vip: If true forward service VIP for health check
port
--root-hnsendpoint-name: The name of the hns endpoint name for root
namespace attached to l2bridge, default is cbr0

When --forward-healthcheck-vip is set as true and winkernel is used,
kube-proxy will add an hns load balancer to forward health check request
that was sent to lb_vip:healthcheck_port to the node_ip:healthcheck_port.
Without this forwarding, the health check from google load balancer will
fail, and it will stop forwarding traffic to the windows node.

This change fixes the following 2 cases for service:
- `externalTrafficPolicy: Cluster` (default option): healthcheck_port is
10256 for all services. Without this fix, all traffic won't be directly
forwarded to windows node. It will always go through a linux node and
get forwarded to windows from there.
- `externalTrafficPolicy: Local`: different healthcheck_port for each
service that is configured as local. Without this fix, this feature
won't work on windows node at all. This feature preserves client ip
that tries to connect to their application running in windows pod.

Change-Id: If4513e72900101ef70d86b91155e56a1f8c79719
 2022-03-11 22:34:59 -08:00
Divyen Patel
bd7f083000 topology translation for vSphere CSI 2022-03-11 10:30:11 -08:00
Jiahui Feng
f0d73cf650 unmark non-validated types as enums. 2022-03-11 10:00:00 -08:00
Kubernetes Prow Robot
9d512581b8 Merge pull request #108643 from liggitt/cobra 
Update cobra to v1.4.0
 2022-03-10 19:23:08 -08:00
cici37
7572b26fba Bump cel-go to v0.10.1 2022-03-10 14:50:35 -08:00
Jordan Liggitt
60b9af476f Update cobra to v1.4.0 2022-03-10 16:19:43 -05:00
jupblb
94c92f78e5 Remove apf_fd from httplog 
Since flowDistinguisher may hold data identifying a user accessing the
cluster this can be a source of a PII leak.
 2022-03-10 12:59:00 +01:00
Kubernetes Prow Robot
b90bddfd9f Merge pull request #108204 from kevindelgado/field-validation-crd-unit-tests 
Field validation CRD benchmarks and decoder unit tests
 2022-03-09 20:01:35 -08:00
Lee Verberne
90956e6d3e Print kubectl debug messages received when starting a container (#108591) 
* kubectl debug: print container messages

This provides feedback to the user, for example that the server is
unable to pull the debug container image.

* Label debug container updates as warnings

Co-authored-by: Eddie Zaneski <eddiezane@gmail.com>

Co-authored-by: Eddie Zaneski <eddiezane@gmail.com>
 2022-03-09 17:51:35 -08:00
Kevin Delgado
bc68466b34 add tests for field validation verifier 2022-03-10 01:25:36 +00:00
Kevin Delgado
d6c83281bc Generalize dry run verify to arbitrary query param 2022-03-10 01:25:36 +00:00
sanposhiho
3b13e9445a Add MinDomains API to TopologySpreadConstraints field 2022-03-09 20:57:12 +09:00
Kubernetes Prow Robot
9946b5364e Merge pull request #108252 from wojtek-t/avoid_object_deep_copies 
Avoid deep-copying object when possible on kube-apiserver watch path
 2022-03-09 00:26:12 -08:00
Kubernetes Prow Robot
bbc2dbb980 Merge pull request #108000 from RomanBednar/af-namespace-fix 
AzureFile: Volume without secretNamespace fails to mount after translating to CSI
 2022-03-08 22:00:21 -08:00
Kubernetes Prow Robot
19935de5a9 Merge pull request #107410 from margocrawf/master 
Ensure static certs in kubeconfig override exec plugin
 2022-03-08 11:34:21 -08:00
Kubernetes Prow Robot
c964ef8d8a Merge pull request #108576 from jpbetz/cel-0_10_0 
Bump to CEL v0.10.0 and update tests and usage
 2022-03-08 07:06:33 -08:00
carlory
fcc282f9f2 remove audit.k8s.io/v1[alpha|beta]1 versions 2022-03-08 14:37:26 +08:00