github/kubernetes
1
0
Fork 0
mirror of https://github.com/k3s-io/kubernetes.git synced 2025-08-10 04:27:54 +00:00
Code Issues Projects Releases Wiki Activity
118,089 Commits 42 Branches 7,905 Tags 1.3 GiB
d765e40a98
Commit Graph

118089 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Kubernetes Prow Robot
1620473a9a
Merge pull request #119725 from MadhavJivrajani/bump-net-dep 
[CVE-2023-3978] .*: bump golang.org/x/net to v0.13.0
 2023-08-07 09:14:32 -07:00
Maciej Szulik
ef51dbfa0c
Drop [Feature: tag to make sure this tests runs on pre-submits 
In v1.27 StatefulSetStartOrdinal became beta, which makes it on by
default, but we forgot to turn these tests on along with it. This makes
these tests run always.
 2023-08-07 13:38:43 +02:00
Dr. Stefan Schimanski
a1809ffae3
client-go: log proper 'caches populated' message, with type and source and only once 
Signed-off-by: Dr. Stefan Schimanski <stefan.schimanski@gmail.com>
 2023-08-07 12:56:37 +02:00
Dr. Stefan Schimanski
37730c07dd
apiserver/httplog: pretty up impersonation output 
```
I0807 09:09:16.419239       1 httplog.go:132] "HTTP" verb="GET" URI="/apis/batch/v1?timeout=32s" latency="214.666µs" userAgent="kubernetes-provider/v0.0.0 (linux/arm64) kubernetes/$Format" audit-ID="948ef6b2-474d-45a7-ad5f-894ce93d05f7" srcIP="192.168.139.202:35542" apf_pl="exempt" apf_fs="exempt" apf_execution_time="129.5µs" resp=200 addedInfo=<

      &{kubernetes-admin  [system:masters system:authenticated] map[]} is acting as &{foo  [system:authenticated] map[]}
       >
```

to

```
I0807 09:09:16.419239       1 httplog.go:132] "HTTP" verb="GET" URI="/apis/batch/v1?timeout=32s" latency="214.666µs" userAgent="kubernetes-provider/v0.0.0 (linux/arm64) kubernetes/$Format" audit-ID="948ef6b2-474d-45a7-ad5f-894ce93d05f7" srcIP="192.168.139.202:35542" apf_pl="exempt" apf_fs="exempt" apf_execution_time="129.5µs" resp=200 addedInfo="kubernetes-admin[system:masters system:authenticated] is impersonating foo[system:authenticated]"
```

Signed-off-by: Dr. Stefan Schimanski <stefan.schimanski@gmail.com>
 2023-08-07 12:10:35 +02:00
carlory
3e908c5bde e2e_common: stop using deprecated framework.ExpectEqual 2023-08-07 01:15:33 +08:00
Maciej Szulik
d154ca9c00
Statefulset should wait for new replicas when removing .start.ordinal 2023-08-04 18:41:01 +02:00
Paco Xu
3a2c4d6f09 kubeadm: fix nil pointer when etcd member is already removed 2023-08-04 11:37:00 +08:00
charles-chenzz
ba9ce3ab08 fix flaky test on dra TestPrepareResources/should_timeout 
Co-authored-by: TommyStarK <thomasmilox@gmail.com>
 2023-08-03 22:37:54 +08:00
Tomas Smetana
24f32d9d18 Local PV Stress test: don't fail on deleting missing PV 2023-08-03 12:51:31 +02:00
Tomas Tormo
074d5b5329 Rewrite the tests to be table driven 2023-08-03 08:39:46 +00:00
Kubernetes Prow Robot
2c6c4566ef
Merge pull request #119128 from alexanderConstantinescu/azure-fix 
[Azure] Issue 4230: remove readiness check for cache exclusion
 2023-08-02 13:14:20 -07:00
Jordan Liggitt
a5fff9a5d0
Catch direct references to unwanted dependencies in kubernetes modules 2023-08-02 15:44:25 -04:00
Humble Chirammal
85c385d410 Update the container images used in cloudbuild to their latest version 
This carry below GOLLANG_VERSION which got many CVE fixes:

/workspace # echo $GOLANG_VERSION
1.20.5
/workspace #

CVE-2023-29403 and Go issue https://go.dev/issue/60272.
CVE-2023-29404 and CVE-2023-29405:
  Go issues https://go.dev/issue/60305 and https://go.dev/issue/60306
CVE-2023-29402 and Go issue https://go.dev/issue/60167

Signed-off-by: Humble Chirammal <humble.devassy@gmail.com>
 2023-08-03 00:09:53 +05:30
Kubernetes Prow Robot
dfe6685f0f
Merge pull request #119729 from pohly/scheduler-binding-data-race 
scheduler: fix data race after binding failure
 2023-08-02 08:32:44 -07:00
Patrick Ohly
2f30fae0e8 scheduler: fix data race after binding failure 
When binding has failed, `Done` gets called by
`handleBindingCycleError`. Calling it again is at best redundant and worse,
suffers from a data race:
- the `assumedPodInfo` is placed in the backoff queue
- an event causes the `Pod` pointer to get updated in it
- reading `assumedPodInfo.Pod.UID` races with that write

This race was found with`go test -race`.
 2023-08-02 11:04:10 +02:00
Patrick Ohly
4bc9434f99 SSA: prevent usage of Extract calls via forbidigo 
Client-side extract calls depend on `managedFields`, which might not be
available. Therefore they should not be used in production code.

They are okay in test files (because the API has to be tested), in the
generated code (because the various type specific APIs still need to be
provided) and in unstructured.go (same reason).
 2023-08-02 10:57:51 +02:00
Madhav Jivrajani
1b90dff527 .*: bump golang.org/x/net to v0.13.0 
Signed-off-by: Madhav Jivrajani <madhav.jiv@gmail.com>
 2023-08-02 11:11:22 +05:30
Jordan Liggitt
b6ae858e01
Drop AvailableResources from controller context 2023-08-01 14:52:45 -04:00
Han Kang
d5d90b7b22 add support for ExponentialBucketsRange 2023-08-01 11:38:20 -07:00
Kubernetes Prow Robot
99190634ab
Merge pull request #119693 from enj/patch-7 
Update CHANGELOG-1.28.md for KMSv2KDF
 2023-08-01 01:22:38 -07:00
tao.yang
a215b29d7c remove makefile:generated_files in v1.29. 
Signed-off-by: tao.yang <tao.yang@daocloud.io>
 2023-08-01 16:14:18 +08:00
Kubernetes Prow Robot
2f9c143145
Merge pull request #119696 from sanchita-07/patch-1 
Update CHANGELOG OWNERS to reflect 1.28 Release Notes team
 2023-07-31 22:28:37 -07:00
Kubernetes Prow Robot
d3b7391dc2
Merge pull request #119310 from thockin/warn_externalname_externalips 
API warnings for services with bad combos of ExternalIPs and ExternalName
 2023-07-31 12:36:38 -07:00
SANCHITA MISHRA
73107c1b75
Update OWNERS 2023-07-31 22:30:56 +05:30
Kubernetes Prow Robot
513da69f76
Merge pull request #119634 from aramase/patch-1 
docs: update release note for KMSv1 deprecation
 2023-07-31 09:44:39 -07:00
SANCHITA MISHRA
53c8872cc1
Update OWNERS 2023-07-31 22:11:07 +05:30
Mo Khan
2a82aac524
Update CHANGELOG-1.28.md for KMSv2KDF 2023-07-31 11:06:53 -04:00
Kubernetes Prow Robot
700e1ed1f4
Merge pull request #119653 from sttts/sttts-crd-stored-version-errors 
apiextensions: fix validation error for status.storedVersions
 2023-07-31 07:12:40 -07:00
Paco Xu
f0b38766a0 use LoadBalancer type service for e2e service test to patch ingress status 2023-07-31 17:13:12 +08:00
Kubernetes Prow Robot
41da26dbe1
Merge pull request #119624 from dims/fix-wrong-feature-gate-in-changelog-DefaultHostNetworkHostPortsInPodTemplates 
[release-notes] DefaultHostNetworkHostPortsInWorkloads -> DefaultHostNetworkHostPortsInPodTemplates
 2023-07-30 23:28:01 -07:00
Kubernetes Prow Robot
e68629e7b3
Merge pull request #119671 from xmudrii/dl-npd 
Avoid pulling node-problem-detector through CDN
 2023-07-30 05:48:01 -07:00
Marko Mudrinić
294c7df328
Avoid pulling node-problem-detector through CDN 
Signed-off-by: Marko Mudrinić <mudrinic.mare@gmail.com>
 2023-07-30 13:02:17 +02:00
lengrongfu
c23cee1be3 fix OOM killer 
Signed-off-by: lengrongfu <rongfu.leng@daocloud.io>
 2023-07-30 11:16:12 +08:00
Carter McKinnon
4b6abf10c6 Handle errors when preparing lease for update 2023-07-29 21:29:14 +00:00
Kubernetes Prow Robot
cc2f7b3198
Merge pull request #119663 from dims/avoid-pulling-mounter-through-CDN 
Avoid pulling mounter.tar through the CDN
 2023-07-28 20:27:41 -07:00
Davanum Srinivas
b4ef4015a2
Avoid pulling mounter.tar through the CDN 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2023-07-28 22:15:55 -04:00
tinatingyu
ca338e517b Fix the flaky legacy_service_account_token_clean_up_test.Fix the flaky 
legacy_service_account_token_clean_up_test.
 2023-07-28 18:18:40 +00:00
Dr. Stefan Schimanski
cfcbce31a3
apiextensions: fix validation error for status.storedVersions 2023-07-28 12:31:19 +02:00
Lukasz Szaszkiewicz
a44ce346d7 e2e/apimachinery/watchlist: stop panicking when run against unsupported cluster/environment 2023-07-28 12:25:13 +02:00
carlory
14251738d2 NCC-E003660-PCK: Non Constant-Time Comparison of Service Account Token Secrets 2023-07-28 14:06:23 +08:00
Rayan Das
109cf6820d Update base image and add utilities to kubectl image 
Signed-off-by: Rayan Das <rayandas91@gmail.com>
 2023-07-28 10:57:04 +05:30
Kubernetes Prow Robot
97c7dbcd22
Merge pull request #119603 from borg-land/machine-type-fix 
Calculate the correct machine-type
 2023-07-27 17:51:53 -07:00
Anish Ramasekar
936819c21b
docs: update release note for KMSv1 deprecation 
Tweaked release note to mention `--feature-gates=KMSv1=true` is required in future release only as the current default is `true`.
 2023-07-27 17:08:03 -07:00
Todd Neal
2a767c9916 update the busybox test image to 1.36.1 2023-07-27 15:26:06 -05:00
Davanum Srinivas
6689fd9746
DefaultHostNetworkHostPortsInWorkloads -> DefaultHostNetworkHostPortsInPodTemplates 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2023-07-27 13:47:29 -04:00
Stephen Kitt
7f53f7649e
Use intstr.Parse instead of reimplementing it 
Signed-off-by: Stephen Kitt <skitt@redhat.com>
 2023-07-27 13:12:32 +02:00
Kubernetes Prow Robot
d4fde1e92a
Merge pull request #118549 from a7i/kubelet-prober-metric-pod 
fix 'pod' in kubelet prober metrics
 2023-07-26 18:28:06 -07:00
upodroid
a65d207507 calculate the correct machine-type 2023-07-26 23:10:06 +00:00
Tim Hockin
182a4f858a
API warn non-ExternalName services w/ externalName 2023-07-26 15:57:57 -07:00
Tim Hockin
7bd0a857e3
API warn ExternalName services with externalIPs 2023-07-26 15:52:49 -07:00