github/kubernetes
1
0
Fork 0
mirror of https://github.com/k3s-io/kubernetes.git synced 2025-07-24 12:15:52 +00:00
Code Issues Projects Releases Wiki Activity
72,239 Commits 42 Branches 7,905 Tags 1.3 GiB
0af19875ad
Commit Graph

72239 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Clayton Coleman
0af19875ad
Make bootstrap client cert loading part of rotation 
Ensure that bootstrap+clientcert-rotation in the Kubelet can:

1. happen in the background so that static pods aren't blocked by bootstrap
2. collapse down to a single call path for requesting a CSR
3. reorganize the code to allow future flexibility in retrieving bootstrap creds

Fetching the first certificate and later certificates when the kubelet
is using client rotation and bootstrapping should share the same code
path. We also want to start the Kubelet static pod loop before
bootstrapping completes. Finally, we want to take an incremental step
towards improving how the bootstrap credentials are loaded from disk
(potentially allowing for a CLI call to get credentials, or a remote
plugin that better integrates with cloud providers or KSMs).

Reorganize how the kubelet client config is determined. If rotation is
off, simplify the code path. If rotation is on, load the config
from disk, and then pass that into the cert manager. The cert manager
creates a client each time it tries to request a new cert.

Preserve existing behavior where:

1. bootstrap kubeconfig is used if the current kubeconfig is invalid/expired
2. we create the kubeconfig file based on the bootstrap kubeconfig, pointing to
   the location that new client certs will be placed
3. the newest client cert is used once it has been loaded
 2018-11-16 21:50:26 -05:00
k8s-ci-robot
39c8219999
Merge pull request #71158 from liggitt/revert-openapi-publish 
Revert openapi publish
 2018-11-16 18:22:43 -08:00
k8s-ci-robot
bf0e6d14ca
Merge pull request #71152 from liztio/no-csr-ca 
Don't allow --csr-only for CA certs or all
 2018-11-16 18:22:33 -08:00
k8s-ci-robot
4821291398
Merge pull request #71095 from msau42/csi-devicepath 
Remove devicePath dependency for CSI volumes
 2018-11-16 18:22:24 -08:00
k8s-ci-robot
f877b2257a
Merge pull request #71074 from jsafrane/volume-manager-races 
Fix race between MountVolume and UnmountDevice
 2018-11-16 18:22:14 -08:00
k8s-ci-robot
b6bbb01f04
Merge pull request #71058 from verult/nodeinfomanager-retry 
Augmenting API call retry in nodeinfomanager; Revert #70891
 2018-11-16 16:31:40 -08:00
k8s-ci-robot
1e22f080ec
Merge pull request #67383 from stlaz/enc_config_promotion 
Introduce apiserver.config.k8s.io/v1 and use standard method for parsing encryption config file
 2018-11-16 16:31:30 -08:00
Michelle Au
974d47ecf8 Remove devicePath dependency for CSI volumes 2018-11-16 15:40:35 -08:00
liz
440a5ad7cb
Don't allow --csr-only for CA certs or all 2018-11-16 15:22:37 -08:00
k8s-ci-robot
859ab7450d
Merge pull request #71146 from davidz627/fix/csiPath 
Simplify GCE PD CSI Socket path
 2018-11-16 15:17:12 -08:00
k8s-ci-robot
f4fd7b0b2b
Merge pull request #71069 from fabriziopandini/kubeadm-phases-add-all-subcommands 
Kubeadm - add all subcommands to phases
 2018-11-16 15:17:03 -08:00
k8s-ci-robot
5ec9349276
Merge pull request #70917 from dims/add-log-file-option-to-kubelet-flags 
add log_file option to kubelet flags
 2018-11-16 15:16:53 -08:00
Jordan Liggitt
8799eb4e2e Revert "Merge pull request #67205 from roycaihw/crd-openapi-spec" 
This reverts commit 54ee58b2d6, reversing
changes made to 9e2820e4c9.
 2018-11-16 16:36:24 -05:00
Jordan Liggitt
ad2b916d7c Revert "Merge pull request #71137 from sttts/sttts-crd-openapi-spec-recursive-v2-prune" 
This reverts commit 3ea3cfc3be, reversing
changes made to fab7009997.
 2018-11-16 16:36:04 -05:00
k8s-ci-robot
3ea3cfc3be
Merge pull request #71137 from sttts/sttts-crd-openapi-spec-recursive-v2-prune 
apiextensions: prune {any,one}Of + Not recursively on OpenAPI v2 conversion
 2018-11-16 13:20:25 -08:00
k8s-ci-robot
fab7009997
Merge pull request #71135 from luxas/kubeadm_repo_flag 
kubeadm: Allow customizing the image repository via flags
 2018-11-16 13:20:16 -08:00
k8s-ci-robot
c418e2a04f
Merge pull request #71120 from WanLinghao/audit_log_fix 
fix a description error in DynamicAuditing feature
 2018-11-16 13:20:07 -08:00
k8s-ci-robot
9878253c3c
Merge pull request #70998 from deads2k/client-07-listwatchtimeout 
update the client generator to set a client-side timeout
 2018-11-16 13:19:57 -08:00
Cheng Xing
b275ebb5a8 Revert "Make csi alpha failing test skip" 
This reverts commit f98b87cac1.
 2018-11-16 13:00:58 -08:00
Cheng Xing
ca18690ceb Augmenting API call retry in nodeinfomanager 2018-11-16 13:00:22 -08:00
k8s-ci-robot
7ff49c99d3
Merge pull request #71126 from rosti/warn-api-bind-override 
kubeadm: Warn on API server bind address override
 2018-11-16 12:04:10 -08:00
k8s-ci-robot
4e9c2a7a9b
Merge pull request #71114 from Lion-Wei/ipvs-reuse 
fix IPVS low throughput issue
 2018-11-16 12:04:00 -08:00
k8s-ci-robot
e26b730143
Merge pull request #71103 from Pingan2017/autoscale-sts-kubectl 
support statefulset in kubectl autoscale command
 2018-11-16 12:03:51 -08:00
k8s-ci-robot
1b059e577c
Merge pull request #71101 from seans3/qos-resource-fix 
kubectl: small internal to external type fix
 2018-11-16 12:03:41 -08:00
David Zhu
5c0948c9f1 Simplify GCE PD CSI Socket path 2018-11-16 12:00:27 -08:00
k8s-ci-robot
d0c3cd182c
Merge pull request #71100 from liggitt/feature-gate-testing 
ensure feature gate changes don't escape unit tests
 2018-11-16 10:31:21 -08:00
fabriziopandini
225c75289b autogenerated 2018-11-16 18:55:19 +01:00
WanLinghao
84aa00c03d fix a description error in DynamicAuditing feature 2018-11-17 01:49:02 +08:00
Dr. Stefan Schimanski
0d9a022533 apiextensions: prune {any,one}Of + Not recursively on OpenAPI v2 conversion 2018-11-16 18:42:01 +01:00
David Eads
8f7edec615 generated 2018-11-16 12:41:17 -05:00
David Eads
9b31985b08 fix client-side specification of timeout now that it is honored 2018-11-16 11:43:37 -05:00
David Eads
493bc79c04 update client generator for local timeout 2018-11-16 11:43:37 -05:00
Lucas Käldström
a666003b36
kubeadm: Allow customizing the image repository via flags 2018-11-16 23:52:56 +08:00
Jordan Liggitt
733dd9dfd7 Add tests to ensure feature gate changes don't escape kubelet/scheduler packages 2018-11-16 10:52:53 -05:00
Jordan Liggitt
de8bf9b63d fix scheduler and kubelet unit tests leaking feature flag changes 2018-11-16 10:52:53 -05:00
Jordan Liggitt
248d661327 Add tests to ensure storage feature gate changes don't escape packages 2018-11-16 10:52:53 -05:00
Jordan Liggitt
358c092abe fix storage unit tests leaking feature flag changes 2018-11-16 10:52:52 -05:00
Michelle Au
fd64c08240 Fix storage feature gate test setting 2018-11-16 10:49:40 -05:00
fabriziopandini
1308c7d2f5 kubeadm phases add all subcommands 2018-11-16 16:39:04 +01:00
k8s-ci-robot
7c4d097faf
Merge pull request #71104 from yue9944882/chore/follow-up-cli-describer-externalization 
Follow-up of #70950: Duplicated versioned client in describer
 2018-11-16 07:34:39 -08:00
k8s-ci-robot
e94a9f9321
Merge pull request #71085 from bsalamat/leader-election-fix 
Report kube-scheduler unhealthy if leader election is wedged
 2018-11-16 05:13:28 -08:00
k8s-ci-robot
92fe9d9491
Merge pull request #71081 from vladimirvivien/kubelet-plugin-watcher-ga-fix 
Kubelet Plugin Registration GA migration fix
 2018-11-16 05:13:18 -08:00
k8s-ci-robot
f1e4ec8e48
Merge pull request #71076 from liggitt/preserve-stack 
Propagate panics up handler chain
 2018-11-16 05:13:09 -08:00
k8s-ci-robot
c9a31e490f
Merge pull request #71048 from m1kola/e2e_portforward_log_polling 
Fixes flaky tests for kubectl port-forward
 2018-11-16 05:13:00 -08:00
k8s-ci-robot
54ee58b2d6
Merge pull request #67205 from roycaihw/crd-openapi-spec 
Serve OpenAPI spec for registered CRDs
 2018-11-16 05:12:41 -08:00
Jan Safranek
5283537401 Fixed clearing of devicePath after UnmountDevice 
UnmountDevice must not clear devicepath, because such devicePath
may come from node.status (e.g. on AWS) and subsequent MountDevice
operation (that may be already enqueued) needs it.
 2018-11-16 13:24:42 +01:00
k8s-ci-robot
9e2820e4c9
Merge pull request #71067 from sttts/sttts-handler-panic 
apiserver: preserve stack trace in handler panic beyond timeout handler
 2018-11-16 03:57:11 -08:00
k8s-ci-robot
a5f06fdd16
Merge pull request #71066 from fabriziopandini/kubeadm-fix-validateMixedArgs 
Kubeadm - Fix validateMixedArgs for phases
 2018-11-16 03:57:01 -08:00
k8s-ci-robot
0908af5e09
Merge pull request #71061 from yagonobre/init-todo 
Remove todo from init phase
 2018-11-16 03:56:52 -08:00
k8s-ci-robot
14f55b4e2c
Merge pull request #71054 from logicalhan/liveness-delay 
increase the liveness probe delay for GCE e2e tests to avoid premature teardown
 2018-11-16 03:56:43 -08:00