github/kubernetes
1
0
Fork 0
mirror of https://github.com/k3s-io/kubernetes.git synced 2025-08-09 20:17:41 +00:00
Code Issues Projects Releases Wiki Activity
118,321 Commits 42 Branches 7,905 Tags 1.3 GiB
5d56f7cf86
Commit Graph

118321 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Kubernetes Prow Robot
201f807036
Merge pull request #119784 from sanposhiho/bug-fix 
fix: broadcast when pod is pushed back to activeQ directly in AddUnschedulableIfNotPresent
 2023-08-09 13:05:31 -07:00
Jordan Liggitt
1876ddf714
Avoid returning nil responseKind in v1beta1 aggregated discovery 2023-08-09 14:45:33 -04:00
Amine Hilaly
55ca1a6ee1 Remove leases test case from AdmissionWebhookMatchConditions suit 
Signed-off-by: Amine Hilaly <hilalyamine@gmail.com>
 2023-08-09 18:39:01 +02:00
Kubernetes Prow Robot
cb56c4c627
Merge pull request #119847 from jeremyrickard/go1207-publishing-bot-rules 
[releng] Update publishing-bot rules for release branches to Go 1.20.7
 2023-08-09 08:25:51 -07:00
SataQiu
5fb543a411 kubeadm: remove 'system:masters' organization from etcd/healthcheck-client certificate 2023-08-09 19:23:06 +08:00
Kensei Nakada
050c0437e6 fix: broadcast when pod is pushed back to activeQ directly in AddUnschedulableIfNotPresent 2023-08-09 03:32:14 +00:00
Jeremy Rickard
9bc857d6d9
[releng] Update publishing-bot rules for release branches to Go 1.20.7 
Signed-off-by: Jeremy Rickard <jeremyrrickard@gmail.com>
 2023-08-08 18:03:49 -06:00
Monis Khan
62b063b74b
wsstream: use a single approach to detect connection upgrade 
Signed-off-by: Monis Khan <mok@microsoft.com>
 2023-08-08 17:43:39 -04:00
Stephen Heywood
74053e2151 Create e2e test for PV/PVC endpoints 
e2e test validates the following 15 endpoints
- createCoreV1NamespacedPersistentVolumeClaim
- createCoreV1PersistentVolume
- deleteCoreV1CollectionNamespacedPersistentVolumeClaim
- deleteCoreV1CollectionPersistentVolume
- deleteCoreV1NamespacedPersistentVolumeClaim
- deleteCoreV1PersistentVolume
- listCoreV1NamespacedPersistentVolumeClaim
- listCoreV1PersistentVolume
- listCoreV1PersistentVolumeClaimForAllNamespaces
- patchCoreV1NamespacedPersistentVolumeClaim
- patchCoreV1PersistentVolume
- readCoreV1NamespacedPersistentVolumeClaim
- readCoreV1PersistentVolume
- replaceCoreV1NamespacedPersistentVolumeClaim
- replaceCoreV1PersistentVolume
 2023-08-09 09:12:42 +12:00
Kubernetes Prow Robot
f0dcf06140
Merge pull request #119818 from jeremyrickard/go1207-iptables 
Bump distroless-iptables to 0.2.7
 2023-08-08 08:10:16 -07:00
Jefftree
49e00e8bde Move adding GroupVersion log until after an update is confirmed 2023-08-08 14:28:54 +00:00
Antonio Ojea
77b3bb0f69 fix race on etcd client constructor for healthchecks 
Change-Id: Id29b5b377989dcb5377316cfcdea367071a47365
 2023-08-08 13:55:14 +00:00
Jeremy Rickard
38a81ca04f
Bump distroless-iptables to 0.2.7 
Signed-off-by: Jeremy Rickard <jeremyrrickard@gmail.com>
 2023-08-08 07:14:14 -06:00
Sai Ramesh Vanka
a6329ac453 Fix to honor PDB with an empty selector {} 
PDB with an empty selector `{}` is selecting all the pods in a namespace.
But, during the `drain`, all the pods are getting evicted which is not expected.
This change should fix the issue and honor the pdb before evicting the pods.

Signed-off-by: Sai Ramesh Vanka <svanka@redhat.com>
 2023-08-08 17:28:48 +05:30
Kubernetes Prow Robot
68d79b0d69
Merge pull request #119798 from aojea/endpoints_and_slices 
Fix flaky test depending on EndpointSlices to be ready
 2023-08-08 04:52:14 -07:00
Patrick Ohly
0e23840929 dra test: enhance performance of test driver controller 
Analyzing the CPU profile of

    go test -timeout=0 -count=5 -cpuprofile profile.out -bench=BenchmarkPerfScheduling/.*Claim.* -benchtime=1ns -run=xxx ./test/integration/scheduler_perf

showed that a significant amount of time was spent iterating over allocated
claims to determine how many were allocated per node. That "naive" approach was
taken to avoid maintaining a redundant data structure, but now that performance
measurements show that this comes at a cost, it's not "premature optimization"
anymore to introduce such a second field.

The average scheduling throughput in
SchedulingWithResourceClaimTemplate/2000pods_100nodes increases from 16.4
pods/s to 19.2 pods/s.
 2023-08-08 13:36:35 +02:00
Kubernetes Prow Robot
815b18a461
Merge pull request #119804 from jeremyrickard/go1207 
[go] Bump images, versions and deps to use Go 1.20.7
 2023-08-07 17:44:12 -07:00
Jeremy Rickard
ae86051ec5
Bump protoc 
Signed-off-by: Jeremy Rickard <jeremyrrickard@gmail.com>
 2023-08-07 17:26:05 -06:00
Antonio Ojea
f355b22f5f implement Stringer for podActions 
klog prints an internal error when trying to log the podActions struct.

> I0505 14:12:12.827065  190662 kuberuntime_manager.go:1014] "computePodActions got for pod" podActions="<internal error: json: unsupported type: map[container.ContainerID]kuberuntime.containerToKillInfo>" pod="kube-system/coredns-8f5847b64-mzw46"

Implement the stringer interface on the struct to avoid the json error.

Change-Id: I22444524a78a0ecec9490b9240def371a4129434
 2023-08-07 22:48:28 +00:00
Joe Betz
e4d16f34c1 Add test coverage of result size of string operations 2023-08-07 18:12:17 -04:00
Monis Khan
10fe3da87d
Delete PSP API types and generated clients 
Signed-off-by: Monis Khan <mok@microsoft.com>
 2023-08-07 16:44:13 -04:00
Joe Betz
69a5a52896 Bump cel-go to v0.16.1 2023-08-07 15:51:36 -04:00
Jeremy Rickard
72c8cf9fce
[go] Bump images, versions and deps to use Go 1.20.7 
Signed-off-by: Jeremy Rickard <jeremyrrickard@gmail.com>
 2023-08-07 13:25:59 -06:00
Antonio Ojea
2ceca1c78d e2e WaitForServiceEndpointsNum should watch EndpointSlices 
EndpointSlices is the evolution of the Endpoint object and most of the
components are using it for implementing Services, this menas that
despite the Endpoint object is up to date, the EndpointSlices may
lag behind, so test must ensure that both objects are in sync to
avoid race conditions.

Change-Id: I5d9bc7774c68f321537379d1f20b2a1fe0b39e6e
 2023-08-07 18:34:06 +00:00
Kubernetes Prow Robot
1620473a9a
Merge pull request #119725 from MadhavJivrajani/bump-net-dep 
[CVE-2023-3978] .*: bump golang.org/x/net to v0.13.0
 2023-08-07 09:14:32 -07:00
Maciej Szulik
ef51dbfa0c
Drop [Feature: tag to make sure this tests runs on pre-submits 
In v1.27 StatefulSetStartOrdinal became beta, which makes it on by
default, but we forgot to turn these tests on along with it. This makes
these tests run always.
 2023-08-07 13:38:43 +02:00
Dr. Stefan Schimanski
a1809ffae3
client-go: log proper 'caches populated' message, with type and source and only once 
Signed-off-by: Dr. Stefan Schimanski <stefan.schimanski@gmail.com>
 2023-08-07 12:56:37 +02:00
Dr. Stefan Schimanski
37730c07dd
apiserver/httplog: pretty up impersonation output 
```
I0807 09:09:16.419239       1 httplog.go:132] "HTTP" verb="GET" URI="/apis/batch/v1?timeout=32s" latency="214.666µs" userAgent="kubernetes-provider/v0.0.0 (linux/arm64) kubernetes/$Format" audit-ID="948ef6b2-474d-45a7-ad5f-894ce93d05f7" srcIP="192.168.139.202:35542" apf_pl="exempt" apf_fs="exempt" apf_execution_time="129.5µs" resp=200 addedInfo=<

      &{kubernetes-admin  [system:masters system:authenticated] map[]} is acting as &{foo  [system:authenticated] map[]}
       >
```

to

```
I0807 09:09:16.419239       1 httplog.go:132] "HTTP" verb="GET" URI="/apis/batch/v1?timeout=32s" latency="214.666µs" userAgent="kubernetes-provider/v0.0.0 (linux/arm64) kubernetes/$Format" audit-ID="948ef6b2-474d-45a7-ad5f-894ce93d05f7" srcIP="192.168.139.202:35542" apf_pl="exempt" apf_fs="exempt" apf_execution_time="129.5µs" resp=200 addedInfo="kubernetes-admin[system:masters system:authenticated] is impersonating foo[system:authenticated]"
```

Signed-off-by: Dr. Stefan Schimanski <stefan.schimanski@gmail.com>
 2023-08-07 12:10:35 +02:00
carlory
3e908c5bde e2e_common: stop using deprecated framework.ExpectEqual 2023-08-07 01:15:33 +08:00
Maciej Szulik
d154ca9c00
Statefulset should wait for new replicas when removing .start.ordinal 2023-08-04 18:41:01 +02:00
Paco Xu
3a2c4d6f09 kubeadm: fix nil pointer when etcd member is already removed 2023-08-04 11:37:00 +08:00
charles-chenzz
ba9ce3ab08 fix flaky test on dra TestPrepareResources/should_timeout 
Co-authored-by: TommyStarK <thomasmilox@gmail.com>
 2023-08-03 22:37:54 +08:00
Tomas Smetana
24f32d9d18 Local PV Stress test: don't fail on deleting missing PV 2023-08-03 12:51:31 +02:00
Tomas Tormo
074d5b5329 Rewrite the tests to be table driven 2023-08-03 08:39:46 +00:00
Kubernetes Prow Robot
2c6c4566ef
Merge pull request #119128 from alexanderConstantinescu/azure-fix 
[Azure] Issue 4230: remove readiness check for cache exclusion
 2023-08-02 13:14:20 -07:00
Jordan Liggitt
a5fff9a5d0
Catch direct references to unwanted dependencies in kubernetes modules 2023-08-02 15:44:25 -04:00
Humble Chirammal
85c385d410 Update the container images used in cloudbuild to their latest version 
This carry below GOLLANG_VERSION which got many CVE fixes:

/workspace # echo $GOLANG_VERSION
1.20.5
/workspace #

CVE-2023-29403 and Go issue https://go.dev/issue/60272.
CVE-2023-29404 and CVE-2023-29405:
  Go issues https://go.dev/issue/60305 and https://go.dev/issue/60306
CVE-2023-29402 and Go issue https://go.dev/issue/60167

Signed-off-by: Humble Chirammal <humble.devassy@gmail.com>
 2023-08-03 00:09:53 +05:30
Kubernetes Prow Robot
dfe6685f0f
Merge pull request #119729 from pohly/scheduler-binding-data-race 
scheduler: fix data race after binding failure
 2023-08-02 08:32:44 -07:00
Daman Arora
c4f4e3bc43 pkg/proxy: unit test refactoring 
Signed-off-by: Daman Arora <aroradaman@gmail.com>
 2023-08-02 18:47:42 +05:30
Patrick Ohly
2f30fae0e8 scheduler: fix data race after binding failure 
When binding has failed, `Done` gets called by
`handleBindingCycleError`. Calling it again is at best redundant and worse,
suffers from a data race:
- the `assumedPodInfo` is placed in the backoff queue
- an event causes the `Pod` pointer to get updated in it
- reading `assumedPodInfo.Pod.UID` races with that write

This race was found with`go test -race`.
 2023-08-02 11:04:10 +02:00
Patrick Ohly
4bc9434f99 SSA: prevent usage of Extract calls via forbidigo 
Client-side extract calls depend on `managedFields`, which might not be
available. Therefore they should not be used in production code.

They are okay in test files (because the API has to be tested), in the
generated code (because the various type specific APIs still need to be
provided) and in unstructured.go (same reason).
 2023-08-02 10:57:51 +02:00
Madhav Jivrajani
1b90dff527 .*: bump golang.org/x/net to v0.13.0 
Signed-off-by: Madhav Jivrajani <madhav.jiv@gmail.com>
 2023-08-02 11:11:22 +05:30
Jordan Liggitt
b6ae858e01
Drop AvailableResources from controller context 2023-08-01 14:52:45 -04:00
Han Kang
d5d90b7b22 add support for ExponentialBucketsRange 2023-08-01 11:38:20 -07:00
Kubernetes Prow Robot
99190634ab
Merge pull request #119693 from enj/patch-7 
Update CHANGELOG-1.28.md for KMSv2KDF
 2023-08-01 01:22:38 -07:00
tao.yang
a215b29d7c remove makefile:generated_files in v1.29. 
Signed-off-by: tao.yang <tao.yang@daocloud.io>
 2023-08-01 16:14:18 +08:00
Kubernetes Prow Robot
2f9c143145
Merge pull request #119696 from sanchita-07/patch-1 
Update CHANGELOG OWNERS to reflect 1.28 Release Notes team
 2023-07-31 22:28:37 -07:00
Kubernetes Prow Robot
d3b7391dc2
Merge pull request #119310 from thockin/warn_externalname_externalips 
API warnings for services with bad combos of ExternalIPs and ExternalName
 2023-07-31 12:36:38 -07:00
SANCHITA MISHRA
73107c1b75
Update OWNERS 2023-07-31 22:30:56 +05:30
Kubernetes Prow Robot
513da69f76
Merge pull request #119634 from aramase/patch-1 
docs: update release note for KMSv1 deprecation
 2023-07-31 09:44:39 -07:00