Commit Graph

127283 Commits

Author SHA1 Message Date
Kubernetes Release Robot
a0ad8fb28a Update CHANGELOG/CHANGELOG-1.32.md for v1.32.3 2025-03-11 20:15:04 +00:00
Kubernetes Release Robot
32cc146f75 Release commit for Kubernetes v1.32.3 2025-03-11 19:52:20 +00:00
carlory
e3daed8734 fix handle terminating pvc when kubelet rebuild dsw
Signed-off-by: carlory <baofa.fan@daocloud.io>
2025-03-10 18:59:14 +08:00
carlory
ef4a6f9833 fix e2e
Signed-off-by: carlory <baofa.fan@daocloud.io>
2025-03-10 18:59:14 +08:00
carlory
ad0c8a10e4 add e2e test to reproduce unexpected unmount after kubelet is restarted
Signed-off-by: carlory <baofa.fan@daocloud.io>
2025-03-10 18:59:14 +08:00
Kubernetes Prow Robot
1b7bbcf2f5
Merge pull request #130508 from cici37/automated-cherry-pick-of-#130035-upstream-release-1.32
Automated cherry pick of #130035: [KEP-5080]Ordered Namespace Deletion
2025-03-07 22:45:45 -08:00
Cici Huang
b6fd7487fa Update status before returning err 2025-03-06 11:01:10 -08:00
Kubernetes Prow Robot
d2dbce82b9
Merge pull request #130563 from bitoku/automated-cherry-pick-of-#130097-upstream-release-1.32
Automated cherry pick of #130097: Modify how to check the status in PodRejectionStatus test
2025-03-06 04:04:03 -08:00
Kubernetes Prow Robot
b245ae997e
Merge pull request #130496 from sreeram-venkitesh/automated-cherry-pick-of-#129946-upstream-release-1.32
Automated cherry pick of #129946: fix(pod/util): fix typo in getting pod validation options
2025-03-06 04:03:56 -08:00
Kubernetes Prow Robot
d18b6d9d68
Merge pull request #130461 from kariya-mitsuru/automated-cherry-pick-of-#130405-upstream-release-1.32
Automated cherry pick of #130405: Add Watch to controller roles
2025-03-06 04:03:49 -08:00
Kubernetes Prow Robot
e6a89a28f3
Merge pull request #130313 from neolit123/automated-cherry-pick-of-#130202-origin-release-1.32
Automated cherry pick of #130202: kubeadm: fix panic when no UpgradeConfiguration was found in the config file
2025-03-05 16:35:45 -08:00
Ayato Tokubi
31c7235f4c Modify how to check the status
Signed-off-by: Ayato Tokubi <atokubi@redhat.com>
2025-03-04 16:05:35 +00:00
Cici Huang
8636d1b427 Add the feature gate OrderedNamespaceDeletion for apiserver. 2025-03-03 13:40:33 -08:00
Kubernetes Prow Robot
8516520fff
Merge pull request #130109 from varad-ahirwadkar/automated-cherry-pick-of-#129114-upstream-release-1.32
Automated cherry pick of #129114: kubelet: fix DRA registration test
2025-03-03 13:09:43 -08:00
Kubernetes Prow Robot
8207fb465f
Merge pull request #129690 from pohly/automated-cherry-pick-of-#129661-origin-release-1.32
Automated cherry pick of #129661: DRA CEL: add missing size estimator
2025-03-03 05:21:16 -08:00
Kubernetes Prow Robot
b0554e32c7
Merge pull request #130505 from aojea/automated-cherry-pick-of-#130484-upstream-release-1.32
Automated cherry pick of #130484: conntrack reconciler must check the dst port
2025-03-03 03:59:16 -08:00
Antonio Ojea
2a60692f5b conntrack reconciler must check the dst port
The conntrack reconciler maintains the consistency between the
conntrack table on each node and the desired state of Kubernetes UDP services.

A valid entry matches a service's ClusterIP, LoadBalancerIP, or ExternalIP and Service port,
or any ip matching a NodePort, and has a reverse source IP matching an active endpoint for
that service. Other entries are deleted.

Services without endpoints and traffic not handled by kube-proxy are ignored

Co-authored-by: Daman Arora <aroradaman@gmail.com>
2025-02-28 22:47:53 +00:00
Alex Petrov
642b0eae3d fix(pod/util): typos in getting pod validation options
Before, containers with the PostStart sleep lifecycle hook would cause
null pointer panics due to a typo in the field name being checked. This
commit fixes that.

The check also needs to be done on the oldPodSpec, rather than the
podSpec, so that existing workloads which use the zero value continue
functioning in the same way.
2025-02-28 22:19:00 +05:30
Mitsuru Kariya
dbf78217a1
Add Additional Tests
Added tests to check that if NodeRules, ClusterRoles, and NamespaceRoles
include `List`, it also include `Watch`.

Signed-off-by: Mitsuru Kariya <mitsuru.kariya@nttdata.com>
2025-02-27 10:53:15 +09:00
Mitsuru Kariya
1d3fafa1c7
Fix typo
Co-authored-by: Jordan Liggitt <jordan@liggitt.net>
2025-02-27 10:53:14 +09:00
Mitsuru Kariya
7826934ada
Add ControllerRoles Test
Added a test to check that if a controller role includes `List`, it also includes `Watch`.

Signed-off-by: Mitsuru Kariya <mitsuru.kariya@nttdata.com>
2025-02-27 10:53:14 +09:00
Mitsuru Kariya
019c9b4d2d
Fix Fixture Data
I apologize, the Fixture Data modifications were missed.

Signed-off-by: Mitsuru Kariya <mitsuru.kariya@nttdata.com>
2025-02-27 10:53:14 +09:00
Mitsuru Kariya
549220b61e
Add Watch to controller roles
Starting from version 1.32, the client feature `WatchListClient` has been
set to `true` in `kube-controller-manager`.
(commit 06a15c5cf9)

As a result, when the `kube-controller-manager` executes the `List` method,
it utilizes `Watch`. However, there are some existing controller roles that
include `List` but do not include `Watch`. Therefore, when processes using
these controller roles execute the `List` method, `Watch` is executed first,
but due to permission errors, it falls back to `List`.

This PR adds `Watch` to the controller roles that include `List` but do not
include `Watch`.

The affected roles are as follows (prefixed with `system:controller:`):

- `cronjob-controller`
- `endpoint-controller`
- `endpointslice-controller`
- `endpointslicemirroring-controller`
- `horizontal-pod-autoscaler`
- `node-controller`
- `pod-garbage-collector`
- `storage-version-migrator-controller`

Signed-off-by: Mitsuru Kariya <mitsuru.kariya@nttdata.com>
2025-02-27 10:53:13 +09:00
Kubernetes Prow Robot
0821aa2308
Merge pull request #130165 from mimowo/automated-cherry-pick-of-#130164-upstream-release-1.32
Automated cherry pick of #130164: Deflake the PodReplacementPolicyFeatureToggling Job integration test
2025-02-25 12:08:37 -08:00
Kubernetes Prow Robot
403f0ce511
Merge pull request #130070 from mimowo/automated-cherry-pick-of-#130068-upstream-release-1.32
Automated cherry pick of #130068: Fix the flaky Job test: TestSuccessPolicy_ReEnabling
2025-02-25 12:08:30 -08:00
Kubernetes Prow Robot
85ff7928f4
Merge pull request #130356 from aojea/automated-cherry-pick-of-#130348-upstream-release-1.32
Automated cherry pick of #130348: Revert "Add random interval to nodeStatusReport interval every time after an actual node status change"
2025-02-24 16:50:28 -08:00
Kubernetes Prow Robot
53a53b7f62
Merge pull request #130392 from mrIncompetent/automated-cherry-pick-of-#129307-upstream-release-1.32
Automated cherry pick of #129307: Add missing imports in register-gen
2025-02-24 11:34:29 -08:00
Kubernetes Prow Robot
f0100b2b68
Merge pull request #130136 from AwesomePatrol/automated-cherry-pick-of-#130113-upstream-release-1.32
Automated cherry pick of #130113: Make ResourceQuota LIST requests only when Informer is not synced
2025-02-24 07:58:28 -08:00
Kubernetes Prow Robot
ea73dad549
Merge pull request #130332 from richabanker/automated-cherry-pick-of-#129996-upstream-release-1.32
Automated cherry pick of #129996: fix: apiserver flagz to response actual parsed flags
2025-02-24 06:44:28 -08:00
Lionel Jouin
1c07a39847
fix copyright year
Signed-off-by: Lionel Jouin <lionel.jouin@est.tech>
2025-02-24 11:43:29 +01:00
Henrik Schmidt
849aa0858f
Generate register files for all examples
(cherry picked from commit b365634a0d0b2456e918729a9e4b1a4950902dc9)
2025-02-24 11:41:32 +01:00
Lionel Jouin
6ad9199528
add simpletype pkg in v1 for register-gen test
Signed-off-by: Lionel Jouin <lionel.jouin@est.tech>
2025-02-24 11:41:32 +01:00
Lionel Jouin
5fa72a8c1d
Add codegen::register to hack/update-codegen.sh
Co-authored-by: Joe Betz <jpbetz@google.com>
Signed-off-by: Lionel Jouin <lionel.jouin@est.tech>
2025-02-24 11:40:42 +01:00
Lionel Jouin
c05e46c163
Add missing imports in register-gen
Due to a recent change in k8s.io/gengo/v2, the register-gen is
missing 2 imports.The imports were previously auto inserted during
the code generation by k8s.io/gengo/v2.
Now, instead, they are directly imported by the register-gen.

An output_tests has been added to register-gen. This generates an
example, which would have been invalid with these changes.

Signed-off-by: Lionel Jouin <lionel.jouin@est.tech>
2025-02-24 11:40:42 +01:00
Antonio Ojea
4c2a0b85f8 Revert "Add random interval to nodeStatusReport interval every time after an actual node status change" 2025-02-21 23:45:41 +00:00
Richa Banker
99eedea5cc Remove the feature-gate check before populating serverRunOptions.Flagz 2025-02-20 19:33:34 -08:00
yongruilin
a0eb3acf30 test: Add emulated-version flag verification in flagz test 2025-02-20 18:54:51 -08:00
yongruilin
8b3a93b843 fix: flagz endpoint to return parsed flags value 2025-02-20 18:54:04 -08:00
SataQiu
412c353d05 kubeadm: fix panic when no UpgradeConfiguration was found in the config file 2025-02-20 15:22:01 +02:00
Kubernetes Prow Robot
dce86010a0
Merge pull request #130034 from aroradaman/automated-cherry-pick-of-#130032-upstream-release-1.32
Automated cherry pick of #130032: Conntrack memory leak fix
2025-02-19 08:38:27 -08:00
Kubernetes Prow Robot
fdf6d464bf
Merge pull request #130253 from fuweid/1.32-backport-130126
[release-1.32] proxy: should add PingPeriod for websocket translator
2025-02-19 07:16:27 -08:00
Wei Fu
f5fc57e1ee proxy: should add PingPeriod for websocket translator
IIUC, before using the translator handler, the ping data can be delivered from
the client to the runtime side since kube-apiserver does not parse any client
data. However, with WebSocket, the server responds with a pong to the client
without forwarding the data to the runtime side. If a proxy is present, it may
close the connection due to inactivity. SPDY's PingPeriod can help address this
issue.

Signed-off-by: Wei Fu <fuweid89@gmail.com>
Co-authored-by: Antonio Ojea <aojea@google.com>
(cherry picked from commit dc59c0246f)
Signed-off-by: Wei Fu <fuweid89@gmail.com>
2025-02-18 21:21:21 -05:00
Kubernetes Prow Robot
0126bb57a8
Merge pull request #130175 from liggitt/go-tools-132
[release-1.32][go1.23] Honor KUBE_HACK_TOOLS_GOTOOLCHAIN
2025-02-14 17:24:21 -08:00
Jordan Liggitt
1f27b75275
Honor KUBE_HACK_TOOLS_GOTOOLCHAIN 2025-02-14 13:00:04 -05:00
Michal Wozniak
00f135bb64 Deflake the PodReplacementPolicyFeatureToggling Job integration test 2025-02-14 14:14:22 +01:00
Aleksander Mistewicz
1ac9e213a8 Limit ResourceQuota LIST requests to times when informer is not synced
This should reduce the number of slow (100ms) LIST requests when there
are no ResourceQuota objects present in the namespace. The behavior
stays virtually the same.
2025-02-13 12:46:53 +01:00
Kubernetes Release Robot
ac28939fdd Update CHANGELOG/CHANGELOG-1.32.md for v1.32.2 2025-02-12 21:40:30 +00:00
Kubernetes Release Robot
67a30c0adc Release commit for Kubernetes v1.32.2 2025-02-12 21:19:46 +00:00
Ed Bartosh
d428c6b8fe kubelet: fix DRA registration test
Set expected slice fields in the reactor function instead of
test cleanup instead of doing it in the test cleanup.

This should fix the test failure caused by kubelet calling reactor function
before the test cleanup sets the deleteCollectionForDriver variable.
2025-02-12 14:22:12 +05:30
Kubernetes Prow Robot
5841717525
Merge pull request #130078 from cpanato/update-go-132
[release-1.32][go] Bump images, dependencies and versions to go 1.23.6 and distroless iptables
2025-02-11 15:47:58 -08:00