kubernetes

mirror of https://github.com/k3s-io/kubernetes.git synced 2025-07-23 11:50:44 +00:00

Author	SHA1	Message	Date
Kubernetes Prow Robot	ce3bf862ee	Merge pull request #102964 from neolit123/1.22-decouple-bootstraptoken-api kubeadm: decouple the bootstraptoken API from the kubeadm API	2021-07-02 07:58:13 -07:00
David Ashpole	8972efc65f	change tracing service from kube-apiserver to apiserver	2021-07-02 07:04:26 -07:00
Lukasz Szaszkiewicz	58b91ffca9	adds HasBeenReady signal that fires when the readyz endpoint succeeds	2021-07-02 15:46:54 +02:00
Lukasz Szaszkiewicz	ca108d109d	readyz signals when the handler succeeds for the first time. Co-authored-by: Dr. Stefan Schimanski <stefan.schimanski@gmail.com>	2021-07-02 15:46:54 +02:00
Kubernetes Prow Robot	93119f4503	Merge pull request #103432 from p0lyn0mial/lifecycle_events simply renames terminationSignals to lifecycleSignals	2021-07-02 05:44:13 -07:00
Lee Verberne	968185e1f7	Warn user for runtime support of debug targeting Add a warning message to `kubectl debug` when using the `--target` option as many runtimes don't support it yet.	2021-07-02 14:23:00 +02:00
Haleygo	6d6d200c3a	dry-run can work when using an external ca	2021-07-02 18:53:51 +08:00
Lukasz Szaszkiewicz	6c88a62cb4	remove logging from the Signal method	2021-07-02 12:50:20 +02:00
Lukasz Szaszkiewicz	dae08bc3a7	rename terminationSignals to lifecycleSignals	2021-07-02 12:40:58 +02:00
Patrick Ohly	c91496dda0	cluster: enable debug handlers on GCE master nodes This is needed for testing metrics support via the secure port of kube-scheduler and kube-controller-manager. To access that port, port-forwarding is used.	2021-07-02 10:38:49 +02:00
Kubernetes Prow Robot	defcc916ed	Merge pull request #103382 from liggitt/podsecurity-hostprocess [PodSecurity] hostProcess baseline check	2021-07-02 01:16:24 -07:00
Kubernetes Prow Robot	3e0432c3e1	Merge pull request #102168 from adisky/credential-provider-1 Improve concurrency and cache for kubelet credential provider	2021-07-02 01:16:12 -07:00
Tim Hockin	2b84b49ea9	Service REST test: Remove pointless cleanup	2021-07-01 23:24:29 -07:00
Tim Hockin	ca708fa9ac	Service REST test: Fix some names	2021-07-01 23:24:24 -07:00
Kubernetes Prow Robot	659c7e709f	Merge pull request #99494 from enj/enj/i/not_after_ttl_hint csr: add expirationSeconds field to control cert lifetime	2021-07-01 23:02:12 -07:00
Tim Hockin	54b6a416fb	Service REST test: better IP and port alloc checks	2021-07-01 23:01:36 -07:00
Monis Khan	8d49502fcd	csr: update e2e conformance test with expirationSeconds usage Signed-off-by: Monis Khan <mok@vmware.com>	2021-07-01 23:38:16 -04:00
Monis Khan	29b3fa7826	Generated Signed-off-by: Monis Khan <mok@vmware.com>	2021-07-01 23:38:16 -04:00
Monis Khan	cd91e59f7c	csr: add expirationSeconds field to control cert lifetime This change updates the CSR API to add a new, optional field called expirationSeconds. This field is a request to the signer for the maximum duration the client wishes the cert to have. The signer is free to ignore this request based on its own internal policy. The signers built-in to KCM will honor this field if it is not set to a value greater than --cluster-signing-duration. The minimum allowed value for this field is 600 seconds (ten minutes). This change will help enforce safer durations for certificates in the Kube ecosystem and will help related projects such as cert-manager with their migration to the Kube CSR API. Future enhancements may update the Kubelet to take advantage of this field when it is configured in a way that can tolerate shorter certificate lifespans with regular rotation. Signed-off-by: Monis Khan <mok@vmware.com>	2021-07-01 23:38:15 -04:00
yuzhiquan	0a38b2804d	add deprecated message for igonre-errors flag, and fix unsafety http link	2021-07-02 11:01:32 +08:00
Kubernetes Prow Robot	2627808e93	Merge pull request #103378 from n4j/feature/podSecurityApparmor_v2 [PodSecurity] baseline - apparmor	2021-07-01 19:20:24 -07:00
Kubernetes Prow Robot	df95052de3	Merge pull request #103218 from dashpole/otel_clientgo Add tracing to apiserver client-go requests	2021-07-01 19:20:12 -07:00
Tim Hockin	43b13840db	Service REST test: remove obscure const	2021-07-01 18:26:46 -07:00
Tim Hockin	44eb475b10	Service REST test: remove unused return value	2021-07-01 18:26:45 -07:00
Tim Hockin	d6208606f3	Service REST test: remove pointless scaffolding	2021-07-01 18:26:45 -07:00
Tim Hockin	48e591eba2	Service REST test: remove obsolete setup param	2021-07-01 18:26:45 -07:00
Tim Hockin	a3b05033f6	Move endpoints test-helper funcs to a package	2021-07-01 18:26:45 -07:00
Tim Hockin	012bfaf98d	Service REST test: remove last use of "inner" This required making a more hi-fidelity fake. That, in turn, required fixing some tests which were just not correct.	2021-07-01 18:26:45 -07:00
Tim Hockin	22ed090e73	Service REST test: mostly remove tests of "inner" This test was sometimes using the "inner" REST and sometimes using the "outer" REST. This commit changes all but one test to use the outer. The remaining test needs rework.	2021-07-01 18:26:45 -07:00
Tim Hockin	7e8882d189	Service REST test: Remove pointless scaffolding These fields don't add much value in actually proving it all works, and they make the upcoming de-layering hard.	2021-07-01 18:26:45 -07:00
Tim Hockin	175f4f3387	Move service test-helper funcs to a package	2021-07-01 18:26:45 -07:00
Tim Hockin	b1fcbab801	Service REST test: helper funcs for ports, too	2021-07-01 18:26:45 -07:00
Tim Hockin	5f65ba7d76	Service REST test: Use helper funcs to streamline This makes subsequent changes easier to see.	2021-07-01 18:26:44 -07:00
Tim Hockin	d64bb1b29e	Service REST test: always check errors This will be needed in upcoming changes.	2021-07-01 18:26:44 -07:00
Tim Hockin	d3a0332b6c	Service REST test: remove unused fields These fields are never set, so we can remove them with no change in behavior.	2021-07-01 18:26:44 -07:00
Tim Hockin	292b1444eb	Remove bad test for AllocateLoadBalancerNodePorts If the gate is open, we should never find nil.	2021-07-01 18:26:44 -07:00
Tim Hockin	0bb280044e	Fix typo in IP allocator error	2021-07-01 18:26:44 -07:00
Tim Hockin	5970c4671c	Add an IPFamily() method to ipallocator	2021-07-01 18:26:44 -07:00
Tim Hockin	89b633d353	Fix doc comment	2021-07-01 18:26:44 -07:00
Kubernetes Prow Robot	62503f254e	Merge pull request #103413 from mgutierrez98/refactor-whitelist-blacklist Refactored files containing whitelist/blacklist to allowlist/denylist…	2021-07-01 18:12:25 -07:00
Kubernetes Prow Robot	8fb67473ce	Merge pull request #103323 from sejr/podsecurity-restricted-volumes [Pod Security] Restricted volume type check	2021-07-01 18:12:11 -07:00
Natasha Sarkar	6d4096cc69	Upgrade kustomize-in-kubectl to v4.2.0	2021-07-01 18:01:44 -07:00
Natasha Sarkar	a46b42a92b	Manually update kustomize attachment points.	2021-07-01 17:10:28 -07:00
Kubernetes Prow Robot	2d4753b898	Merge pull request #103360 from m14815/commit-21.6.3 Error should be checked first, then go to other steps.	2021-07-01 15:36:03 -07:00
Kubernetes Prow Robot	25bbe2ebc5	Merge pull request #99594 from cofyc/kep1845-api Prioritizing nodes based on volume capacity: API changes	2021-07-01 15:35:51 -07:00
Samuel Roth	13a1804a5f	podsecurity: add restricted volume type check podsecurity: restricted volumes check	2021-07-01 17:51:56 -04:00
Kubernetes Prow Robot	43ebff8fa4	Merge pull request #103306 from swetharepakula/convert-proxy Kubeproxy uses V1 EndpointSlice	2021-07-01 14:28:11 -07:00
Kubernetes Prow Robot	9ca75c1f49	Merge pull request #103243 from ii/promote-statefulset-status-test Promote to Conformance StatefulSet Patch, Read and Replace Status test +3	2021-07-01 14:28:02 -07:00
Kubernetes Prow Robot	062bc359ca	Merge pull request #102444 from sanwishe/resourceStartTime Expose container start time in kubelet /metrics/resource endpoint	2021-07-01 14:27:51 -07:00
Lubomir I. Ivanov	622f69bf8d	kubeadm: update v1beta3's godoc changelog	2021-07-02 00:12:25 +03:00

... 3 4 5 6 7 ...

102260 Commits