github/kubernetes
1
0
Fork 0
mirror of https://github.com/k3s-io/kubernetes.git synced 2025-07-22 03:11:40 +00:00
Code Issues Projects Releases Wiki Activity
109,884 Commits 42 Branches 7,905 Tags 1.3 GiB
b27ceebc93
Commit Graph

109884 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
kerthcet
b27ceebc93 Remove out-of-date comments 
Signed-off-by: kerthcet <kerthcet@gmail.com>
 2022-08-16 14:05:11 +08:00
Kubernetes Prow Robot
bd9444c1cf
Merge pull request #111702 from flawedmatrix/fix-e2e-network-test-flake 
Fix e2e network dns_configmap test
 2022-08-04 17:25:46 -07:00
Kubernetes Release Robot
5e9b42ecba CHANGELOG: Update directory for v1.25.0-beta.0 release 2022-08-04 22:46:34 +00:00
Edwin Xie
f167b9f4ab Fix e2e network dns_configmap test 
Updates predicate to check for a length >=2 to avoid
the index out of bounds panic.

Signed-off-by: Edwin Xie <exie@vmware.com>
Co-authored-by: Tyler Schultz <tschultz@vmware.com>
 2022-08-04 21:04:02 +00:00
Kubernetes Prow Robot
eefcf6aa80
Merge pull request #111113 from mimowo/retriable-pod-failures-job-controller 
Support handling of pod failures with respect to the configured rules
 2022-08-04 13:35:46 -07:00
Kubernetes Prow Robot
d0c92aedba
Merge pull request #111691 from alexanderConstantinescu/remove-sched-pred-from-ccm 
[CCM - service controller] Remove schedulability predicate for LB set
 2022-08-04 12:03:46 -07:00
Kubernetes Prow Robot
897cdea783
Merge pull request #111696 from liggitt/go119mod 
Update go.mod to go1.19
 2022-08-04 10:25:58 -07:00
Kubernetes Prow Robot
b6d0f6ab61
Merge pull request #108692 from jsafrane/selinux 
Speed up SELinux volume relabeling using mounts MVP
 2022-08-04 10:25:45 -07:00
Michal Wozniak
bf9ce70de3 Support handling of pod failures with respect to the specified rules 2022-08-04 18:39:08 +02:00
Kubernetes Prow Robot
c8edeab234
Merge pull request #111678 from dims/fix-things-commented-out-in-1.19-rc2 
[golang] Fix things commented out in 1.19rc2
 2022-08-04 09:01:47 -07:00
Davanum Srinivas
8bec318b5d
Switch klog call to use structured logging 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2022-08-04 10:54:37 -04:00
Kubernetes Prow Robot
15d290f280
Merge pull request #111521 from wongma7/ephemeralcopy 
Clear ephemeral container resources field when creating one in volume test
 2022-08-04 07:51:50 -07:00
Davanum Srinivas
a2408f39c7
[golang] Fix things commented out in 1.19rc2 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2022-08-04 10:27:09 -04:00
Jordan Liggitt
00db9f0229 Update go.mod to go1.19 2022-08-04 10:03:05 -04:00
Kubernetes Prow Robot
305ad47627
Merge pull request #111679 from puerco/kubecross-1.19 
[go] Bump images, dependencies and versions to go 1.19
 2022-08-04 04:58:04 -07:00
Kubernetes Prow Robot
8923661eea
Merge pull request #111675 from ii/revert-apiservice-lifecycle-test 
Revert "e2e: should manage the lifecycle of an APIService"
 2022-08-04 04:57:57 -07:00
Kubernetes Prow Robot
e539bb5a50
Merge pull request #111596 from muyangren2/addtest_virtualIP 
add test for GetAPIServerVirtualIP
 2022-08-04 04:57:46 -07:00
Alexander Constantinescu
59e90f4ee0 [CCM - service controller] Remove schedulability predicate for LB set 2022-08-04 13:37:18 +02:00
Kubernetes Prow Robot
785f2fb227
Merge pull request #111685 from cpanato/prombot 
Update publishing-bot rules for go1.17.13 and go1.18.5
 2022-08-04 03:47:47 -07:00
Jan Safranek
f9c7ce5b9c Add unit tests for DesiredStateOfWorldPopulator 2022-08-04 10:51:59 +02:00
Jan Safranek
39f0d78714 Add unit tests for GetPodVolumeNames 2022-08-04 10:51:57 +02:00
Jan Safranek
260912490e Add a coment about handling same volumes with different contexts 2022-08-04 10:51:56 +02:00
Jan Safranek
a01e720a1a Rename IsRWOP 
To be able to update content of the function to other access modes when we
implement SELinux mount for more of them.
 2022-08-04 10:51:54 +02:00
Jan Safranek
1490d51028 Remove noisy log 
The error would be logged every reconciler sync (100 ms).
 2022-08-04 10:51:53 +02:00
Jan Safranek
0793ecee3a Add unit tests for ASW.AddPodToVolume 2022-08-04 10:51:52 +02:00
Jan Safranek
17d850ee0e Add interface for SELinuxOptionsToFileLabel 
github.com/opencontainers/selinux/go-selinux needs OS that supports SELinux
and SELinux enabled in it to return useful data, therefore add an interface
in front of it, so we can mock its behavior in unit tests.
 2022-08-04 10:51:51 +02:00
Jan Safranek
d9f792633d Add AddPodToVolume unit tests with SELinux 2022-08-04 10:51:50 +02:00
Jan Safranek
8d6b721ddd Extract SELinux context error handling into a common func 
Add handlerSELinuxMetricError() which bumps the right metric + either
consumes a SELinux error or lets it propagate up the stack.
 2022-08-04 10:51:48 +02:00
Jan Safranek
4df3f58737 Add SELinux feature check for iSCSI volume plugin 
In theory the check is not necessary, but for sake of robustness and
completenes, let's check SELinuxMountReadWriteOncePod feature gate before
assuming anything about SELinux labels.
 2022-08-04 10:51:47 +02:00
Jan Safranek
49148ddfd0 Extract getSELinuxLabel from AddPodToVolume 
To keep the function smaller.
 2022-08-04 10:51:46 +02:00
Jan Safranek
5c90474f38 Add SELinux mount support to CSI driver 
With some minor refactoring to use common getCSIDriver function.
 2022-08-04 10:51:45 +02:00
Jan Safranek
de7f5b66ed Fix existing unit tests 2022-08-04 10:51:44 +02:00
Jan Safranek
b2e18c0b20 Add metrics for SELinux context mount 
Add separate _errors and _warnings to capture volumes that were rejected
from those will be rejected when the feature is expanded to all access
mode.
 2022-08-04 10:51:43 +02:00
Jan Safranek
48b0751269 Add SELinux context tracking to volume manager 
Both ActualStateOfWorld and DesiredStateOfWorld must track SELinux context
of volume mounts.
 2022-08-04 10:51:41 +02:00
Jan Safranek
4cfb277e8b Implement mounting with -o context= in iSCSI volume plugin 2022-08-04 10:51:31 +02:00
Jan Safranek
cdb3ead5a9 Add SupportsSELinuxContextMount 
Add a new call to VolumePlugin interface and change all its
implementations.

Kubelet's VolumeManager will be interested whether a volume supports
mounting with -o conext=XYZ or not to hanle SetUp() / MountDevice()
accordingly.
 2022-08-04 10:51:28 +02:00
Jan Safranek
f99cf5180e Add SELinux mount option to NewMounter() and MountDevice() 
Let volume plugins decide if they want to mount volumes with "-o
context=XYZ" or let the container runtime relabel the volume on container
startup.

Using NewMounter, as it's the call where a volume plugin gets the other MountOptions.
 2022-08-04 10:51:11 +02:00
Jan Safranek
f2fd9c1c16 Regenerate files 2022-08-04 10:51:01 +02:00
Jan Safranek
189f19a698 Update generation when SELinuxMount is changed 2022-08-04 10:51:00 +02:00
Jan Safranek
3efeeef346 Add CSIDriverSpec.SELinuxMount 
The new field tells Kubernetes if the CSI driver supports mounting of
volumes with -o context=XYZ or not.
 2022-08-04 10:51:00 +02:00
Jan Safranek
34dc6b2587 Add SELinuxMountReadWriteOncePod feature gate 2022-08-04 10:51:00 +02:00
cpanato
90291eea5f
Update publishing-bot rules for go1.17.13 and go1.18.5 
Signed-off-by: cpanato <ctadeu@gmail.com>
 2022-08-04 09:16:13 +02:00
Kubernetes Prow Robot
ef7fc10460
Merge pull request #111677 from dims/stop-panic-in-govet-levee 
Stop panic in govet levee under golang 1.19
 2022-08-03 22:31:46 -07:00
Kubernetes Prow Robot
feec95583a
Merge pull request #111669 from pohly/trim_report_framework 
e2e: trim junit report for Spyglass
 2022-08-03 20:49:58 -07:00
Kubernetes Prow Robot
b661944b65
Merge pull request #110939 from Abirdcfly/deleteutil 
don't quota events.k8s.io events by default
 2022-08-03 20:49:46 -07:00
Adolfo García Veytia (Puerco)
f17efe9278 Update default go version in common.sh to 1.19 
Signed-off-by: Adolfo García Veytia (Puerco) <puerco@chainguard.dev>
 2022-08-03 22:23:21 -05:00
Adolfo García Veytia (Puerco)
7324b781fe Update versions and images to go 1.19 versions 
Signed-off-by: Adolfo García Veytia (Puerco) <puerco@chainguard.dev>
 2022-08-03 22:23:15 -05:00
Adolfo García Veytia (Puerco)
2be8ac828e Update default go to 1.19 in pubbot rules 
Signed-off-by: Adolfo García Veytia (Puerco) <puerco@chainguard.dev>
 2022-08-03 22:05:27 -05:00
Adolfo García Veytia (Puerco)
5d2de18956 Bump test Makefile to final 1.19 
Signed-off-by: Adolfo García Veytia (Puerco) <puerco@chainguard.dev>
 2022-08-03 22:05:03 -05:00
Adolfo García Veytia (Puerco)
79df9e66f3 Update kubecross version to v1.25.0-go1.19-bullseye.0 
Signed-off-by: Adolfo García Veytia (Puerco) <puerco@chainguard.dev>
 2022-08-03 22:04:21 -05:00