github/kubernetes
1
0
Fork 0
mirror of https://github.com/k3s-io/kubernetes.git synced 2025-07-24 12:15:52 +00:00
Code Issues Projects Releases Wiki Activity
92,819 Commits 42 Branches 7,905 Tags 1.3 GiB
79be8be10e
Commit Graph

92819 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Kubernetes Prow Robot
26da0ea91e
Merge pull request #92794 from klueska/upstream-more-tests-get-preferred-allocation 
Add more tests for device plugin's GetPreferredAllocation() API
 2020-07-10 15:42:21 -07:00
Kubernetes Prow Robot
429f968988
Merge pull request #92791 from p0lyn0mial/aggregator-dynamic-cert-reload 
adds dynamic certificate reloading for kube aggregator
 2020-07-10 15:42:10 -07:00
Kubernetes Prow Robot
7ceac2baf0
Merge pull request #92788 from yuzhiquan/fix-json-verbose 
Fix JSON logger verbose
 2020-07-10 15:42:00 -07:00
Kubernetes Prow Robot
0cb7e320a5
Merge pull request #92784 from pohly/generic-ephemeral-inline-volumes 
generic ephemeral inline volumes
 2020-07-10 15:41:46 -07:00
Kubernetes Prow Robot
a6378d8b12
Merge pull request #92779 from fisherxu/patch-2 
Return err when create ContainerLogsDir failed
 2020-07-10 15:41:37 -07:00
Kubernetes Prow Robot
0cc9685947
Merge pull request #92768 from deads2k/security-contacts 
update security contacts for apimachinery repos
 2020-07-10 15:41:20 -07:00
Kubernetes Prow Robot
49dced762d
Merge pull request #92661 from jpbetz/smd-bump-field-unsetting 
Bump to SMD PR#166 to pick up unsetting field changes and add integration tests
 2020-07-10 15:41:05 -07:00
Kubernetes Prow Robot
3727879ea5
Merge pull request #92651 from rajansandeep/kubeadm-coredns1.7.0 
[Kubeadm]:Bump CoreDNS to v1.7.0
 2020-07-10 15:40:51 -07:00
Kubernetes Prow Robot
4efed03276
Merge pull request #91637 from robscott/endpointslice-mirroring 
Adding new EndpointSlice Mirroring Controller
 2020-07-10 10:19:48 -07:00
Sascha Grunert
96fb83c4c1
Implement PodSecurityPolicy enforcement for seccomp GA 
This implements the necessary pieced for the PodSecurityPolicy
enforcement like described in the appropriate KEP section:

https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/20190717-seccomp-ga.md#podsecuritypolicy-enforcement

Signed-off-by: Sascha Grunert <sgrunert@suse.com>
 2020-07-10 15:55:21 +02:00
Kubernetes Prow Robot
26f0227019
Merge pull request #91408 from saschagrunert/seccomp-api-migration 
Add seccomp GA version skew for pods
 2020-07-10 04:29:48 -07:00
Sascha Grunert
0fd9d34234
Add saschagrunert and alejandrox1 to sig-release-approvers 
To fulfill the role as new technical lead we need to be part of the SIG
release approvers role.

Signed-off-by: Sascha Grunert <sgrunert@suse.com>
 2020-07-10 11:29:39 +02:00
Kubernetes Prow Robot
2d327ac455
Merge pull request #91539 from andrewsykim/fix-cloud-provider-deprecation 
only log cloud provider deprecation warning for in-tree components
 2020-07-10 00:59:48 -07:00
Mateusz Matejczyk
e07f2a6b1d Bump addon-resizer for metrics-server to 1.8.11 
The current version, 1.8.10, is vulnerable to https://github.com/kubernetes/autoscaler/issues/3294
 2020-07-10 08:34:55 +02:00
andyzhangx
a552c7640f fix: license issue in blob disk feature 2020-07-10 01:10:10 +00:00
Kubernetes Prow Robot
dd649bb7ef
Merge pull request #91342 from mgugino-upstream-stage/evict-deleted-ok 
Eviction: ignore PDBs if pods with DeletionTimestamp
 2020-07-09 15:30:33 -07:00
Patrick Ohly
c1178bd925 GenericEphemeralVolume: kubectl describe 
This reuses the code for describing a PVC, except that the output gets
indented more and some fields are skipped.
 2020-07-09 23:29:24 +02:00
Patrick Ohly
2468a24b7a GenericEphemeralVolume: E2E test 
This extends the existing "ephemeral volume" tests to also cover
generic ephemeral inline volumes. They get instantiated for all
drivers (CSI and others) which support persistent volume provisioning,
for several different filesystems.

Configuring the number of inline volumes via a flag with a computed
name had been identified as problematic before and now gets removed
because re-using the tests as a stress test with a higher number of
volumes should be added and configured separately.
 2020-07-09 23:29:24 +02:00
Patrick Ohly
ff3e5e06a7 GenericEphemeralVolume: initial implementation 
The implementation consists of
- identifying all places where VolumeSource.PersistentVolumeClaim has
  a special meaning and then ensuring that the same code path is taken
  for an ephemeral volume, with the ownership check
- adding a controller that produces the PVCs for each embedded
  VolumeSource.EphemeralVolume
- relaxing the PVC protection controller such that it removes
  the finalizer already before the pod is deleted (only
  if the GenericEphemeralVolume feature is enabled): this is
  needed to break a cycle where foreground deletion of the pod
  blocks on removing the PVC, which waits for deletion of the pod

The controller was derived from the endpointslices controller.
 2020-07-09 23:29:24 +02:00
Tim Allclair
1f991f8a2f Don't return proxied redirects to the client 2020-07-09 11:43:17 -07:00
David Ashpole
1f70708f6c update cAdvisor to v0.37.0 2020-07-09 10:23:10 -07:00
Andi Li
b64f05b70a Change expected content to string constant. Cleanup DeleteAndWaitSnapshot 
Use the correct format specifier
 2020-07-09 16:30:16 +00:00
Kubernetes Prow Robot
82baa26905
Merge pull request #92753 from QianChenglong/fix/kubeadm-altnames 
kubeadm: remove duplicate DNS names and IP addresses from generated certificates
 2020-07-09 09:10:20 -07:00
Kubernetes Prow Robot
3a5e7ea986
Merge pull request #92752 from chendave/skip_preemption 
Cut off the cost to run filter plugins when no victim pods are found
 2020-07-09 09:10:10 -07:00
Kubernetes Prow Robot
1b4e904183
Merge pull request #92745 from hakman/disruption-image-busybox 
Use Pause image for DisruptionController tests
 2020-07-09 09:10:00 -07:00
Kubernetes Prow Robot
10aeb93e07
Merge pull request #92736 from robscott/endpointslice-proxying-beta 
Graduating EndpointSliceProxying to beta for Linux
 2020-07-09 09:09:48 -07:00
Kubernetes Prow Robot
a9ce8c4fed
Merge pull request #92717 from deads2k/condition-helpers-00 
add helpers for managing conditions
 2020-07-09 09:09:38 -07:00
Kubernetes Prow Robot
026cd0e2d7
Merge pull request #92709 from knabben/e2e-kubelet-config 
Fetching Kubelet address from Kubelet configuration for e2e test
 2020-07-09 09:09:28 -07:00
Kubernetes Prow Robot
cf87ecff9b
Merge pull request #92687 from yue9944882/bugfix/suggested-global-default-rule 
Fixes suggested global-default flow-schema rules
 2020-07-09 09:09:18 -07:00
Kubernetes Prow Robot
1e360540f8
Merge pull request #92681 from ArchangelSDY/fix-vmss-cache 
Fix a condition when expiring nil VM entry in VMSS cache
 2020-07-09 09:08:06 -07:00
Kubernetes Prow Robot
cada2eb74d
Merge pull request #92660 from damemi/condition-validation 
Add kubebuilder tags to Condition type
 2020-07-09 09:07:55 -07:00
Kubernetes Prow Robot
883e4eb487
Merge pull request #92627 from oomichi/remove-Deprecated 
Add nodeHasControlPlanePods()
 2020-07-09 09:07:45 -07:00
Kubernetes Prow Robot
1f89f42602
Merge pull request #92621 from spiffxp/simplify-configmap-lifecycle-test 
Simplify ConfigMap lifecycle e2e test
 2020-07-09 09:07:31 -07:00
Kubernetes Prow Robot
9a343edd1f
Merge pull request #92519 from deads2k/condition-validation 
add validation functions for metav1.Conditions
 2020-07-09 09:07:15 -07:00
Kubernetes Prow Robot
fe43b104ba
Merge pull request #91745 from Bisnode/gh-87369 
Presence of bearer token should cancel exec action
 2020-07-09 09:07:00 -07:00
Kubernetes Prow Robot
6dd8d7131f
Merge pull request #91529 from bart0sh/PR0090-remove-benchmark.yaml 
Remove unused e2e test image config
 2020-07-09 09:06:46 -07:00
Kubernetes Prow Robot
d9b084a9d1
Merge pull request #89629 from fatedier/subpath 
Modified subpath configmap mount fails when container restarts
 2020-07-09 09:06:32 -07:00
Sandeep Rajan
2d574a647e update the corefile-migration library to v1.0.10 which includes support for coredns up to v1.7.0 2020-07-09 11:09:13 -04:00
Sandeep Rajan
04038fc791 update coredns version to 1.7.0 2020-07-09 11:01:45 -04:00
Joe Betz
3c2842fbc6 Add ownership transfer test 2020-07-09 06:18:59 -07:00
Joe Betz
ec136db9ce Add server side apply unsetting field tests 2020-07-09 06:18:58 -07:00
Joe Betz
11c38a9c70 Bump to sigs.k8s.io/structured-merge-diff 43c19b to pick up unsetting fields changes PR#166 2020-07-09 06:18:00 -07:00
Kubernetes Prow Robot
70e09f2c24
Merge pull request #88842 from angao/fit-arg 
add args for NodeResourcesFit plugin
 2020-07-09 05:04:10 -07:00
Lee Verberne
7e63cc8b9d kubectl debug: add support for debugging nodes 
When called with a node target, `kubectl debug` will create a run-once
pod in the target node's namespaces.
 2020-07-09 11:27:53 +02:00
Patrick Ohly
af91e76df8 e2epod: use foreground deletion 
This is useful in case that the pod owns some resources, because then
waiting for the pod ensures that those resources also were removed.

This should not matter at the moment because pods typically are not
owners of any other object, but that will change with the introduction
of generic ephemeral inline
volumes (https://github.com/kubernetes/enhancements/tree/master/keps/sig-storage/1698-generic-ephemeral-volumes).
 2020-07-09 11:03:03 +02:00
Patrick Ohly
32fdf688b3 GenericEphemeralVolume: 'make update' for API 2020-07-09 11:03:03 +02:00
Patrick Ohly
c05c8e915b GenericEphemeralVolume: feature gate, API, documentation 
As explained in
https://github.com/kubernetes/enhancements/tree/master/keps/sig-storage/1698-generic-ephemeral-volumes,
CSI inline volumes are not suitable for more "normal" kinds of storage
systems. For those a new approach is needed: "generic ephemeral inline
volumes".
 2020-07-09 11:02:59 +02:00
Maciej Szulik
6c6cd2deeb
Setup cache dirs properly based on --cache-dir value 2020-07-09 10:41:51 +02:00
Giuseppe Scrivano
0d2a493a8f
kubelet: skip setting the devices cgroup 
use the new libcontainer feature of skipping setting the devices
cgroup.  This is necessary on cgroup v2 to avoid leaking a eBPF
program every time the cgroup is re-configured.

Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
 2020-07-09 09:37:46 +02:00
Giuseppe Scrivano
c655a5b636
vendor: update github.com/opencontainers/runc 
when the systemd cgroup manager is used, controllers not handled by
systemd are created manually afterwards.
libcontainer didn't correctly cleanup these cgroups that were leaked
on cgroup v1.

Closes: https://github.com/kubernetes/kubernetes/issues/92766

Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>
 2020-07-09 09:37:45 +02:00