github/kubernetes
1
0
Fork 0
mirror of https://github.com/k3s-io/kubernetes.git synced 2026-02-22 07:03:28 +00:00
Code Issues Projects Releases Wiki Activity
131,681 Commits 42 Branches 9,023 Tags
b3d00a026decbf3c3d632064f32a71973fb09dfb
Commit Graph

1950 Commits

Author SHA1 Message Date
Patrick Ohly
24de875ceb DRA: graduate DynamicResourceAllocation feature to GA 
It hasn't been on-by-default before, therefore it does not get locked to the
new default on yet. This has some impact on the scheduler configuration
because the plugin is now enabled by default.

Because the feature is now GA, it doesn't need to be a label on E2E tests,
which wouldn't be possible anyway once it gets removed entirely.
 2025-07-24 08:33:56 +02:00
Kubernetes Prow Robot
01c5535387 Merge pull request #133085 from ritazh/DRAAdminAccess_beta 
DRAAdminAccess: move to beta
 2025-07-23 21:44:34 -07:00
HirazawaUi
af6c97bd14 add Feature Gate. 2025-07-23 20:28:13 +08:00
Bing Hongtao
6f3b6b91f0 KEP-3721: Support for env files (#132626) 
* Add FileKeyRef field and struct to the Pod API

* Add the implementation code in the kubelet.

* Add validation code

* Add basic functionality e2e tests

* add codes for drop disabled pod fields

* update go.mod
 2025-07-22 13:40:42 -07:00
Kubernetes Prow Robot
08362f0650 Merge pull request #132429 from torredil/kep4876-beta 
Promote sig-storage feature `MutableCSINodeAllocatableCount` to Beta
 2025-07-22 13:40:34 -07:00
Kubernetes Prow Robot
7bf8066a58 Merge pull request #133042 from rzlink/winoverlay 
[KEP-5100] WinOverlay feature gate to GA
 2025-07-22 12:32:27 -07:00
Kubernetes Prow Robot
52bc7515ca Merge pull request #132108 from rzlink/windsr 
[KEP-5100] WinDSR feature gate to GA
 2025-07-22 11:04:33 -07:00
Kubernetes Prow Robot
cc674e7470 Merge pull request #128010 from ahmedtd/pod-certificates-types 
Pod Certificates: Preliminary implementation of KEP-4317
 2025-07-21 19:26:30 -07:00
Taahir Ahmed
4624cb9bb9 Pod Certificates: Basic implementation 
* Define feature gate
* Define and serve PodCertificateRequest
* Implement Kubelet projected volume source
* kube-controller-manager GCs PodCertificateRequests
* Add agnhost subcommand that implements a toy signer for testing

Change-Id: Id7ed030d449806410a4fa28aab0f2ce4e01d3b10
 2025-07-21 21:49:57 +00:00
Kubernetes Prow Robot
cdef93cedb Merge pull request #133017 from aramase/aramase/f/kep_4412_beta 
Mark KubeletServiceAccountTokenForCredentialProviders feature gate as beta
 2025-07-21 14:14:47 -07:00
Kubernetes Prow Robot
e0f20a38ed Merge pull request #132912 from natasha41575/obsgen-beta 
Graduate PodObservedGenerationTracking to beta
 2025-07-21 14:14:40 -07:00
Kubernetes Prow Robot
9827205bfe Merge pull request #132340 from dashpole/graduate_tracing 
Graduate API Server Tracing to GA
 2025-07-21 14:14:33 -07:00
Kubernetes Prow Robot
558e903fb1 Merge pull request #132462 from munnerz/update-pod-topology-domain 
podtopologylabels: update topology.k8s.io->topology.kubernetes.io
 2025-07-21 13:06:35 -07:00
Kubernetes Prow Robot
7d758620bc Merge pull request #132083 from carlory/cleanup-GAed-fg-DevicePluginCDIDevices 
remove general avaliable feature-gate DevicePluginCDIDevices
 2025-07-21 13:06:27 -07:00
Kubernetes Prow Robot
ae21e81ae7 Merge pull request #132704 from p0lyn0mial/upstream-enable-watchlist 
Promote WatchList feature to Beta
 2025-07-21 11:58:27 -07:00
Rita Zhang
5486e6f44e DRAAdminAccess: move to beta 
Signed-off-by: Rita Zhang <rita.z.zhang@gmail.com>
 2025-07-21 07:55:32 -07:00
Anish Ramasekar
5d4010d2d2 Mark KubeletServiceAccountTokenForCredentialProviders feature gate as beta 
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
 2025-07-21 09:08:43 -05:00
Kubernetes Prow Robot
93844abbe2 Merge pull request #132473 from pravk03/ippr-static-mem-featuregate 
[FG:InPlacePodVerticalScaling] Add a feature gate for in-place resize with static memory manager policy support
 2025-07-19 15:50:25 -07:00
Kubernetes Prow Robot
ade9b7746a Merge pull request #132595 from AxeZhan/ga3960 
Graduate PodLifecycleSleepAction to GA
 2025-07-19 13:22:39 -07:00
Kubernetes Prow Robot
174c0fcc7b Merge pull request #131463 from gjkim42/remove-legacysidecarcontainers-fg 
Remove deprecated LegacySidecarContainers feature gate
 2025-07-19 13:22:32 -07:00
Praveen Krishna
f71080c930 Create separate feature gates for static CPU Manager and static Memory Manager support 2025-07-19 03:22:56 +00:00
Natasha Sarkar
a48420e3ce promote PodObservedGenerationTracking to beta 2025-07-18 16:57:41 +00:00
Kubernetes Prow Robot
f583305e31 Merge pull request #132651 from iholder101/swap/ga 
GA the NodeSwap feature gate
 2025-07-18 09:48:26 -07:00
sreeram-venkitesh
00bf3b37a7 Graduate PodLifecycleSleepActionAllowZero to GA 2025-07-18 21:35:58 +05:30
Kubernetes Prow Robot
99f55ae4ef Merge pull request #132662 from gnufied/bump-recovery-feature-ga 
Bump recovery feature ga
 2025-07-17 17:10:25 -07:00
Kubernetes Prow Robot
27ef1d4eed Merge pull request #132033 from pohly/dra-scheduler-filter-timeout 
DRA scheduler: implement filter timeout
 2025-07-17 15:58:24 -07:00
Kubernetes Prow Robot
3dd0e86190 Merge pull request #132821 from cici37/mapBeta 
[KEP-3962]Promote MutatingAdmissionPolicy to Beta
 2025-07-17 14:18:24 -07:00
Dawei Wei
11921f7585 [KEP-5100] WinOverlay feature gate to GA 2025-07-17 14:14:57 -07:00
Patrick Ohly
ee38a00131 DRA scheduler: add DRASchedulerFilterTimeout feature gate 
Initializing the scheduler Features struct will be needed in different places,
therefore NewSchedulerFeaturesFromGates gets introduced. Besides, having it
next to the struct makes it easier to add new features.

The DRASchedulerFilterTimeout feature gate simplifies disabling the timeout
because setting a feature gate is often easier than modifying the scheduler
configuration with a zero timeout value.

The timeout and feature gate are new. The gate starts as beta and enabled by
default, which is consistent with the "smaller changes with low enough risk
that still may need to be disabled..." guideline.
 2025-07-17 16:47:47 +02:00
Itamar Holder
3f847d97c3 GA the NodeSwap feature gate 
Signed-off-by: Itamar Holder <iholder@redhat.com>
 2025-07-17 16:44:40 +03:00
Gunju Kim
1a7630c097 Remove deprecated LegacySidecarContainers feature gate 2025-07-17 22:41:58 +09:00
Eddie Torres
e7aeb4ff5c Promote MutableCSINodeAllocatableCount to Beta 
Signed-off-by: Eddie Torres <torredil@amazon.com>
 2025-07-16 21:23:13 +00:00
Kubernetes Prow Robot
f130a825c2 Merge pull request #132994 from utam0k/kep-5278-feature-gate 
Add NominatedNodeNameForExpectation feature flag
 2025-07-16 12:12:45 -07:00
Lukasz Szaszkiewicz
9cf00ec6d1 kube-apiserver: promote WatchList feature to beta 2025-07-16 14:56:50 +02:00
utam0k
52fab5969c Add NominatedNodeNameForExpectation feature flag 
Signed-off-by: utam0k <k0ma@utam0k.jp>
 2025-07-16 21:33:33 +09:00
Marek Siarkowicz
fd23fa3d42 Graduate ListFromCacheSnapshot to Beta 2025-07-16 12:52:01 +02:00
Kubernetes Prow Robot
e55e75f6d9 Merge pull request #132768 from enj/enj/f/authn_egress 
Add egress selector support to JWT authenticator
 2025-07-15 17:48:29 -07:00
Monis Khan
b69fd9d42c Add egress selector support to JWT authenticator 
This change adds the StructuredAuthenticationConfigurationEgressSelector
beta feature (default on).  When enabled, each JWT authenticator
specified via the AuthenticationConfiguration.jwt array can
optionally specify either the controlplane or cluster egress
selector by setting the issuer.egressSelectorType field.  When
unset, the prior behavior of using no egress selector is retained.

Egress selection is valuable when the persona configuring the JWT
authenticator and the persona managing the control plane are
different individuals.  This change allows the latter to protect
control plane network services from unexpected connections.

Signed-off-by: Monis Khan <mok@microsoft.com>
 2025-07-15 16:03:07 -04:00
carlory
bd30b0adef remove general avaliable feature-gate DevicePluginCDIDevices 
Signed-off-by: carlory <baofa.fan@daocloud.io>
 2025-07-15 16:55:12 +08:00
Cici Huang
4f3334b7ce Promote feature gate 2025-07-15 01:44:13 +00:00
Kubernetes Prow Robot
3430e34d88 Merge pull request #132656 from liggitt/selector-authz 
KEP-4601: Graduate selector authorization to stable
 2025-07-14 16:42:38 -07:00
Kubernetes Prow Robot
8790d5b819 Merge pull request #132341 from dashpole/graduate_kubelet_tracing 
Promote KubeletTracing featuregate to GA
 2025-07-14 15:34:23 -07:00
Jordan Liggitt
a04e7cf5eb KEP-4601: Graduate selector authorization to stable 2025-07-14 16:19:52 -04:00
Kubernetes Prow Robot
bf0be9fb56 Merge pull request #132028 from ffromani/podresources-list-active-pods 
podresources: list: use active pods
 2025-07-14 12:06:24 -07:00
Kubernetes Prow Robot
bd6e6e80cb Merge pull request #132884 from serathius/watchcache-detect-inconsistency 
Enable running cache inconsistency detection by default
 2025-07-14 09:12:31 -07:00
Kubernetes Prow Robot
cb0b66a89f Merge pull request #132645 from serathius/kep-2340-ga 
Graduate ConsistentListFromCache to GA
 2025-07-14 09:12:24 -07:00
Marek Siarkowicz
e6cf7dbf06 Enable running cache inconsistency detection by default 2025-07-11 22:19:55 +02:00
Kubernetes Prow Robot
2bdcad7419 Merge pull request #132803 from aramase/aramase/f/token_request_uid_check 
Make kubelet token cache UID-aware to prevent stale tokens after service account recreation
 2025-07-10 22:25:27 -07:00
Anish Ramasekar
45dfb46448 Add TokenRequestServiceAccountUIDValidation feature gate with UID validation 
This change introduces the TokenRequestServiceAccountUIDValidation feature
gate and implements feature-gated service account UID validation for the
TokenRequest API. When enabled, the API validates that the service account
UID in token requests matches the actual service account UID, preventing
token requests for recreated service accounts with the same name but
different UIDs.

Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
 2025-07-10 23:20:23 -05:00
Hemant Kumar
c126870ebc Bump RecoverVolumeExpansionFailure to GA 2025-07-10 12:19:31 -04:00