github/kubernetes
1
0
Fork 0
mirror of https://github.com/k3s-io/kubernetes.git synced 2025-07-24 12:15:52 +00:00
Code Issues Projects Releases Wiki Activity
102,245 Commits 42 Branches 7,905 Tags 1.3 GiB
19c8ab297c
Commit Graph

102245 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Jordan Liggitt
19c8ab297c PodSecurity: sysctls: cleanup 
Add documentation and unit tests for messages
 2021-07-08 02:19:28 -04:00
Jordan Liggitt
e178695c25 PodSecurity: seccompProfile_baseline: regenerate files 2021-07-08 02:19:28 -04:00
Jordan Liggitt
bebf612967 PodSecurity: seccompProfile_baseline: cleanup 
Make messages consistent
Add unit tests for messages
Consolidate integration test fixtures
Rename to seccompProfile_baseline
 2021-07-08 02:19:28 -04:00
Jordan Liggitt
2af08d1a5a PodSecurity: seccompProfile_restricted: regenerate files 2021-07-08 02:19:27 -04:00
Jordan Liggitt
88a1241299 PodSecurity: seccompProfile_restricted: cleanup 
Switch from field paths to container names in messages
Add unit tests for messages
Consolidate integration test fixtures
 2021-07-08 02:19:27 -04:00
Jordan Liggitt
43146d4377 PodSecurity: runAsNonRoot: regenerate files 2021-07-08 02:19:27 -04:00
Jordan Liggitt
5fc06591a2 PodSecurity: runAsNonRoot: cleanup 
Improve message and details
Add unit tests
Consolidate integration test fixtures
 2021-07-08 02:19:27 -04:00
Jordan Liggitt
edb7cdb02a PodSecurity: restrictedVolumes: regenerate files 2021-07-08 02:19:26 -04:00
Jordan Liggitt
676240a342 PodSecurity: restrictedVolumes: cleanup 
Updated forbidden reason/details
Added unit test to exercise all volume types
Consolidated fixtures
 2021-07-08 02:19:26 -04:00
Jordan Liggitt
4a69c57992 PodSecurity: procMount: cleanup 2021-07-08 02:19:26 -04:00
Jordan Liggitt
f9b8dfd0e6 PodSecurity: privileged: cleanup 2021-07-08 02:19:26 -04:00
Jordan Liggitt
7c70467400 PodSecurity: windowsHostProcess: regenerate files 2021-07-08 02:19:26 -04:00
Jordan Liggitt
9dce1d6a49 PodSecurity: windowsHostProcess: cleanup 
Rename to windowsHostProcess
Format reason/details
Add unit tests
 2021-07-08 02:19:25 -04:00
Jordan Liggitt
45485bb7ae PodSecurity: hostPorts: cleanup 
Reformat message
Add unit test to exercise message/details
 2021-07-08 02:19:25 -04:00
Jordan Liggitt
f709cf05f4 PodSecurity: hostPathVolumes: regenerate files 2021-07-08 02:19:25 -04:00
Jordan Liggitt
a39c448684 PodSecurity: hostPathVolumes: cleanup 
Rename id to hostPathVolumes
Simplify message construction
Add unit test to exercise messages
Simplify integration test fixtures
 2021-07-08 02:19:24 -04:00
Jordan Liggitt
826c57701c PodSecurity: hostNamespaces: cleanup 
Use slice instead of set to accumulate errors
Add unit test to exercise message
Update docs to clarify undefined values are permitted
 2021-07-08 02:19:24 -04:00
Jordan Liggitt
62b71175e7 PodSecurity: restricted capabilities: regenerate files 2021-07-08 02:19:24 -04:00
Jordan Liggitt
f10dfc6e30 PodSecurity: restricted capabilities: cleanup 
Fix formatting of container names,
Add unit test for containers missing drop, containers with invalid adds
Consolidate integration test fixtures
 2021-07-08 02:19:24 -04:00
Jordan Liggitt
bd4dc42a72 PodSecurity: baseline capabilities: regenerate files 2021-07-08 02:19:24 -04:00
Jordan Liggitt
809abf4f5b PodSecurity: baseline capabilities: cleanup 
Rename to capabilities_baseline
Add unit test exercising forbidden reason and details
Consolidate integration test fixtures
 2021-07-08 02:19:23 -04:00
Jordan Liggitt
b390e9e32d PodSecurity: appArmorProfile: cleanup 
Also allow  values
Add unit test exercising forbidden reason/detail
Clean up forbidden reason construction
 2021-07-08 02:19:23 -04:00
Jordan Liggitt
8291f8490b PodSecurity: allowPrivilegeEscalation: regenerate files 2021-07-08 02:19:23 -04:00
Jordan Liggitt
1e2886341a PodSecurity: allowPrivilegeEscalation: cleanup 
Make forbidden details more compact
Add unit test exercising forbidden message/details
Consolidate fixtures
 2021-07-08 02:19:23 -04:00
Jordan Liggitt
648b970718 PodSecurity: add message helper 2021-07-08 02:19:22 -04:00
Kubernetes Prow Robot
818ed1afff
Merge pull request #103552 from liggitt/podsecurity-code 
PodSecurity: use code/reason/details from admission library
 2021-07-07 17:05:56 -07:00
Kubernetes Prow Robot
075ce33452
Merge pull request #103487 from novahe/fix/fixture-data-race 
client-go: fix fixture data race
 2021-07-07 17:05:48 -07:00
Kubernetes Prow Robot
7bfd0b0503
Merge pull request #103467 from thockin/svc-alloc-lb-nodeports-bug 
Fix small bug with AllocateLoadBalancerNodePorts
 2021-07-07 17:05:40 -07:00
Kubernetes Prow Robot
10ba908d74
Merge pull request #103419 from natasha41575/upgradeKust4.2 
Upgrade kustomize-in-kubectl to v4.2.0
 2021-07-07 17:05:31 -07:00
Kubernetes Prow Robot
6ed98b60f0
Merge pull request #103383 from Huang-Wei/move-up-pods 
sched: provide an option for plugin developers to move pods to activeQ
 2021-07-07 17:05:22 -07:00
Kubernetes Prow Robot
8e56a34195
Merge pull request #102966 from SergeyKanzhelev/deprecateDynamicKubeletConfig 
deprecate and disable by default DynamicKubeletConfig feature flag
 2021-07-07 17:05:15 -07:00
Kubernetes Prow Robot
785d9f028a
Merge pull request #102188 from alculquicondor/fasterselector 
Improve slice allocation in LabelSelectorAsSelector
 2021-07-07 17:05:06 -07:00
Kubernetes Prow Robot
e3234f3d6b
Merge pull request #101604 from pacoxu/tuning-grpc 
use PermitWithoutStream=true for etcd: send pings even without active stream
 2021-07-07 17:04:53 -07:00
Kubernetes Prow Robot
e67979eaf6
Merge pull request #103550 from tkashem/apf-bootstrap-log-message 
apf: fix bootstrap ensurer log message
 2021-07-07 14:20:36 -07:00
Kubernetes Prow Robot
a392ca0f25
Merge pull request #103543 from liggitt/implement-check_dropCapabilities.go 
Implement check drop capabilities.go
 2021-07-07 14:20:23 -07:00
Jordan Liggitt
1dfacd3c70 PodSecurity: use code/reason/details from admission library 2021-07-07 16:25:16 -04:00
Wei Huang
fb9cafc99b
sched: provide an option for plugin developers to move pods to activeQ 2021-07-07 12:50:12 -07:00
Kubernetes Prow Robot
d7123a6524
Merge pull request #103537 from wojtek-t/pf_chunking_refactor 
Avoid code duplication in watchcache
 2021-07-07 12:40:42 -07:00
Kubernetes Prow Robot
ac6a1b1821
Merge pull request #103414 from ravisantoshgudimetla/fix-pdb-status 
[disruptioncontroller] Don't error for unmanaged pods
 2021-07-07 12:40:35 -07:00
Kubernetes Prow Robot
ac554af79b
Merge pull request #103142 from serathius/etcd-3.5.0 
Upgrade etcd to 3.5.0
 2021-07-07 12:40:22 -07:00
Abu Kashem
d9e3fbff94
apf: fix bootstrap ensurer log message 2021-07-07 15:01:46 -04:00
Kubernetes Prow Robot
006d5b8539
Merge pull request #103524 from bergerhoffer/help-text-updates 
Minor adjustments to descriptions and example text
 2021-07-07 10:44:12 -07:00
Kubernetes Prow Robot
b93cd81609
Merge pull request #103481 from wojtek-t/pf_watch_tracker 
Add watch tracker to APF for request cost estimation
 2021-07-07 10:44:06 -07:00
Kubernetes Prow Robot
896cf744cb
Merge pull request #103420 from raisaat/pods-api-test-fix 
Fix pkg/api/pod/util tests to ensure feature gate is set
 2021-07-07 10:43:53 -07:00
Kubernetes Prow Robot
20be00980c
Merge pull request #103232 from astraw99/fix_delete_nil_pointer 
Fix delete nil pointer panic
 2021-07-07 10:43:41 -07:00
Jordan Liggitt
6408f3dffc Update generated files 2021-07-07 12:02:21 -04:00
Jordan Liggitt
250f47a45c Rename to capabilities_restricted 2021-07-07 12:02:21 -04:00
Jordan Liggitt
08608a24f1 Update dropCapabilities check/fixtures 2021-07-07 12:02:12 -04:00
Kubernetes Prow Robot
657c6fe033
Merge pull request #103407 from brianpursley/visit-order-tests 
Added unit tests for ExpandPathsToFileVisitors
 2021-07-07 08:57:08 -07:00
Kubernetes Prow Robot
f166221f10
Merge pull request #103390 from ironyman/validators 
Use system-validators v1.5.0
 2021-07-07 08:56:56 -07:00