github/kubernetes
1
0
Fork 0
mirror of https://github.com/k3s-io/kubernetes.git synced 2025-08-08 11:38:15 +00:00
Code Issues Projects Releases Wiki Activity
117,895 Commits 42 Branches 7,905 Tags 1.3 GiB
eae63c8918
Commit Graph

117895 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
lengrongfu
c23cee1be3 fix OOM killer 
Signed-off-by: lengrongfu <rongfu.leng@daocloud.io>
 2023-07-30 11:16:12 +08:00
Kubernetes Prow Robot
cc2f7b3198
Merge pull request #119663 from dims/avoid-pulling-mounter-through-CDN 
Avoid pulling mounter.tar through the CDN
 2023-07-28 20:27:41 -07:00
Davanum Srinivas
b4ef4015a2
Avoid pulling mounter.tar through the CDN 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2023-07-28 22:15:55 -04:00
tinatingyu
ca338e517b Fix the flaky legacy_service_account_token_clean_up_test.Fix the flaky 
legacy_service_account_token_clean_up_test.
 2023-07-28 18:18:40 +00:00
Dr. Stefan Schimanski
cfcbce31a3
apiextensions: fix validation error for status.storedVersions 2023-07-28 12:31:19 +02:00
Lukasz Szaszkiewicz
a44ce346d7 e2e/apimachinery/watchlist: stop panicking when run against unsupported cluster/environment 2023-07-28 12:25:13 +02:00
carlory
14251738d2 NCC-E003660-PCK: Non Constant-Time Comparison of Service Account Token Secrets 2023-07-28 14:06:23 +08:00
Kubernetes Prow Robot
97c7dbcd22
Merge pull request #119603 from borg-land/machine-type-fix 
Calculate the correct machine-type
 2023-07-27 17:51:53 -07:00
Anish Ramasekar
936819c21b
docs: update release note for KMSv1 deprecation 
Tweaked release note to mention `--feature-gates=KMSv1=true` is required in future release only as the current default is `true`.
 2023-07-27 17:08:03 -07:00
Todd Neal
2a767c9916 update the busybox test image to 1.36.1 2023-07-27 15:26:06 -05:00
Davanum Srinivas
6689fd9746
DefaultHostNetworkHostPortsInWorkloads -> DefaultHostNetworkHostPortsInPodTemplates 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2023-07-27 13:47:29 -04:00
Stephen Kitt
7f53f7649e
Use intstr.Parse instead of reimplementing it 
Signed-off-by: Stephen Kitt <skitt@redhat.com>
 2023-07-27 13:12:32 +02:00
Kubernetes Prow Robot
d4fde1e92a
Merge pull request #118549 from a7i/kubelet-prober-metric-pod 
fix 'pod' in kubelet prober metrics
 2023-07-26 18:28:06 -07:00
upodroid
a65d207507 calculate the correct machine-type 2023-07-26 23:10:06 +00:00
Tim Hockin
182a4f858a
API warn non-ExternalName services w/ externalName 2023-07-26 15:57:57 -07:00
Tim Hockin
7bd0a857e3
API warn ExternalName services with externalIPs 2023-07-26 15:52:49 -07:00
Kubernetes Prow Robot
a6776f4e39
Merge pull request #119597 from akhilerm/publishing-bot-rules-for-release-1.28 
publishing-bot rules for release-1.28 branch
 2023-07-26 14:24:07 -07:00
Akhil Mohan
dd8a64d7e1
publishing-bot rules for release-1.28 branch 
Signed-off-by: Akhil Mohan <akhilerm@gmail.com>
 2023-07-26 21:52:00 +05:30
Kubernetes Prow Robot
98358b8ce1
Merge pull request #119587 from borg-land/node-env-patch 
Set node-env map parser to nil if an empty string is passed
 2023-07-26 05:26:18 -07:00
Kubernetes Release Robot
a005617111 CHANGELOG: Update directory for v1.28.0-rc.0 release 2023-07-26 09:07:45 +00:00
xin.li
1b8fb69d9e kubeadm: increase ut for cmd/kubeadm/app/phases/addons/proxy 
Signed-off-by: xin.li <xin.li@daocloud.io>
 2023-07-26 16:28:07 +08:00
upodroid
7d13c9b096 set map to nil if an empty string is passed 2023-07-26 10:32:27 +03:00
宋文杰
63cf568251 e2e_node: stop using deprecated framework.ExpectEqual 2023-07-26 10:20:30 +08:00
Kubernetes Prow Robot
dc6d8c6b58
Merge pull request #119571 from haircommander/node-log-query-on-node 
test: fix NodeLogQuery tests to query the correct node for logs
 2023-07-25 15:36:31 -07:00
Amine
eb4063f0ce
Add cases to tests AdmissionWebhook MatchConditions size limit (#119404) 2023-07-25 15:36:19 -07:00
Jiahui Feng
66aa2af097 CEL lazy map: add test for boolean short-circuiting 2023-07-25 14:46:45 -07:00
Amine
ef4907eddd
Add e2e tests for admission webhooks MatchCondition fields (#118319) 
* Add e2e tests for admission webhooks MatchCondition fields

Signed-off-by: Amine Hilaly <hilalyamine@gmail.com>

* improve naming to distinguish tests

* adding e2e for mutating webhooks and match conditions

* Use `ginkgo.It` instead of `framework.ConformaceIt` and cleanup
resrources after creation

* Enable AdmissionWebhookMatchConditions feature

* Tag only matchcondition tests

* Improve expected error message for denied requests.

* Rename `onlyAllowLeaseObjectMatchConditions` to
`excludeLeasesMatchConditions`

* remove [Alpha] tag from AdmissionWebhookMatchConditions tests

* Using `gomega.Expect` instead of `framworkfail`

* Remove [Feature:AdmissionWebhookMatchConditions] tag

Signed-off-by: Amine <hilalyamine@gmail.com>

* Improve e2e names to specify whether it's using Validating or Mutating admission webhooks

---------

Signed-off-by: Amine Hilaly <hilalyamine@gmail.com>
Signed-off-by: Amine <hilalyamine@gmail.com>
 2023-07-25 14:02:17 -07:00
Peter Hunt
a248c4de52 test: fix NodeLogQuery tests to query the correct node for logs 
Currently, the test queries the local node, which is not correct for most kubernetes environments.
Instead, ssh to the target node and call journalctl there

Signed-off-by: Peter Hunt <pehunt@redhat.com>
 2023-07-25 15:41:38 -04:00
Kubernetes Prow Robot
cacc6e751b
Merge pull request #119531 from ritazh/kmsv2-test-enablement-restart 
kmsv2 test feature enablement disablement and restart
 2023-07-25 12:03:55 -07:00
Yuan Chen
c4739313b7 Track manually created secret-based tokens 
Add audit annotation and metrics to track secret-based tokens

Update pkg/serviceaccount/metrics.go

Co-authored-by: Jordan Liggitt <jordan@liggitt.net>

Update pkg/serviceaccount/legacy.go

Co-authored-by: Jordan Liggitt <jordan@liggitt.net>

Update pkg/serviceaccount/legacy.go

Co-authored-by: Jordan Liggitt <jordan@liggitt.net>

Update pkg/serviceaccount/metrics.go

Co-authored-by: Jordan Liggitt <jordan@liggitt.net>

Update pkg/serviceaccount/metrics.go

Co-authored-by: Jordan Liggitt <jordan@liggitt.net>

Update pkg/serviceaccount/metrics.go

Co-authored-by: Jordan Liggitt <jordan@liggitt.net>

Fix a bug
 2023-07-25 10:07:39 -07:00
Kubernetes Prow Robot
86b44a3222
Merge pull request #119564 from logicalhan/update-docs 
update documentation with descriptions
 2023-07-25 10:00:07 -07:00
Rita Zhang
67769438e1
kmsv2 test feature enablement disablement and restart 
Signed-off-by: Rita Zhang <rita.z.zhang@gmail.com>
 2023-07-25 09:50:59 -07:00
Han Kang
18a7025383 update documentation with descriptions 2023-07-25 08:57:54 -07:00
Dave McCormick
2b12df56b0 Fix a race where a call to Shutdown was happening after ShutDownWithDrain() had performed the check q.isProcessing() && q.shouldDrain() and before waitForProcessing() has reached its Wait(). This is because waitForProcessing() is only checking the length part of the condition instead of both the length and whether we still need to drain. 
It turned out that there were lots of unnecessary accessor functions being called locking and unlocking the cond which are not needed because Wait() automatically unlocks and locks the cond for us and best practice says we should run it in a for checking for the condition (so this is what I have done).
 2023-07-25 09:59:51 +01:00
carlory
57226fbd27 e2e_dra: stop using deprecated framework.ExpectEqual 
Co-authored-by: Thomas Milox <thomasmilox@gmail.com>
 2023-07-25 10:03:56 +08:00
Cici Huang
7e0a9a7f4e
Use statusReason for reason under x-kubernetes-validations (#119544) 
* Change reason field format

* Auto update

* Address comments

* Auto update

* Update the test
 2023-07-24 17:56:03 -07:00
Kubernetes Prow Robot
b53830590f
Merge pull request #119409 from alexzielenski/apiserver/policy/vap-tests 
Add test cases for ValidatingAdmissionPolicy
 2023-07-24 15:12:13 -07:00
Kubernetes Prow Robot
33b63f5715
Merge pull request #119543 from jpbetz/fix-xvalidations-flake 
Treat empty string as nil in fuzzer for CEL Reason field
 2023-07-24 14:10:12 -07:00
Andrew Sy Kim
fb9646fd60 apiserver: add flow control metric current_inqueue_seats 
Signed-off-by: Andrew Sy Kim <andrewsy@google.com>
 2023-07-24 19:40:05 +00:00
Kubernetes Prow Robot
6e879bbaa8
Merge pull request #119542 from liggitt/test-import 
Fix non-test code relying on test-code
 2023-07-24 11:04:13 -07:00
Alexander Zielenski
3b9af47118 add admission policy integration test all resources 
duplicates a lot of existing webhook integration test code
 2023-07-24 10:54:54 -07:00
Joe Betz
22bf29ad22 Treat empty string as nil in fuzzer for CEL Reason field 2023-07-24 12:44:25 -04:00
Jordan Liggitt
a164005cc0
Fix non-test code relying on test-code 2023-07-24 11:37:57 -04:00
Alexander Zielenski
e1b0bc3d0a bugfix: use matched resource for AdmissionRequest.resource, not the resource it was converted from 
use existing admission request for audit annotation eval

populate matchResource in empty rules case
 2023-07-24 07:46:11 -07:00
Kubernetes Prow Robot
d25c0a1bdb
Merge pull request #119486 from pacoxu/swap-fix 
do not touch swap for cgroup v1 if not available
 2023-07-23 19:54:10 -07:00
Andreas Karis
4188998430 Improve conditionFuncFor expression parsing for wait --for jsonpath 
Make it possible to parse jsonpath filter expressions: Split
jsonpath expressions on single '=' only and leave '==' as part of the
string.

Reported-at: https://github.com/kubernetes/kubernetes/issues/119206
Signed-off-by: Andreas Karis <ak.karis@gmail.com>
 2023-07-23 15:54:28 +02:00
haojue
6d244728b9 adjust order and fix typo for kube upgrade 2023-07-22 00:03:41 -04:00
Alexander Zielenski
5e2e8c8064 bump validatingadmissionpolicy alpha->beta 2023-07-21 18:14:50 -07:00
Kubernetes Prow Robot
d0814fa476
Merge pull request #119513 from borg-land/add-node-env 
Add node-env and instance-type flags to node-e2e tests
 2023-07-21 17:44:19 -07:00
Kubernetes Prow Robot
18f8cb8398
Merge pull request #118644 from alexzielenski/apiserver/policy/namespaceParamRef 
KEP-3488: Promote ValidatingAdmissionPolicy to Beta
 2023-07-21 17:44:08 -07:00