github/kubernetes
1
0
Fork 0
mirror of https://github.com/k3s-io/kubernetes.git synced 2025-07-31 15:25:57 +00:00
Code Issues Projects Releases Wiki Activity
121,061 Commits 42 Branches 7,905 Tags 1.3 GiB
fe8e896df8
Commit Graph

121061 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Kubernetes Prow Robot
8e11104f0b
Merge pull request #121461 from alexzielenski/apiserver/apiextensions/ratcheting-beta 
KEP-4008: CRDValidationRatcheting Bump Feature Gate To Beta
 2024-02-14 15:56:47 -08:00
Kubernetes Prow Robot
5b2c919583
Merge pull request #114301 from harshanarayana/kubelet/log-rotate-improvements 
kubelet: enable configurable rotation duration and parallel rotate
 2024-02-14 15:56:38 -08:00
Jordan Liggitt
5dc92ada06
Implement authz config file reloading 2024-02-14 18:09:15 -05:00
Jordan Liggitt
3a98e60a71
Move authz construction to reloader 2024-02-14 18:03:21 -05:00
Kubernetes Prow Robot
145ccf1f13
Merge pull request #123260 from pohly/e2e-tag-docs 
e2e: tag documentation + sorting
 2024-02-14 14:52:33 -08:00
Kubernetes Prow Robot
684a9975fe
Merge pull request #122919 from alexzielenski/apiserver/policy/mutating-initial 
Refactor AdmissionPolicy for code sharing with mutating
 2024-02-14 14:52:26 -08:00
Jordan Liggitt
2b00035b5f
Split construction of authorizer / ruleResolver 2024-02-14 17:06:18 -05:00
Jordan Liggitt
1fddc948ed
Split node/rbac/abac construction 2024-02-14 17:03:10 -05:00
Jordan Liggitt
49124293c3
Store constructed node/rbac/abac authorizers 2024-02-14 17:03:07 -05:00
Antonin Bas
75a3069294 Remove unused lookupIP field in NodeIPAM Controller struct 
I am not sure why this was originally required, but it doesn't seem to
have been used for years.

Signed-off-by: Antonin Bas <antonin.bas@broadcom.com>
 2024-02-14 13:28:35 -08:00
Jordan Liggitt
41435d045d
Guard empty status.acceptedNames 2024-02-14 16:26:56 -05:00
Anish Ramasekar
18c563546a
support multiple audiences with jwt authenticator 
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
 2024-02-14 10:47:07 -08:00
Kubernetes Release Robot
3cc3b002ba CHANGELOG: Update directory for v1.29.2 release 2024-02-14 18:01:51 +00:00
Kubernetes Release Robot
b202d053fa CHANGELOG: Update directory for v1.26.14 release 2024-02-14 16:07:48 +00:00
Kubernetes Release Robot
cf99360c1f CHANGELOG: Update directory for v1.27.11 release 2024-02-14 15:51:51 +00:00
Kubernetes Release Robot
14045bf340 CHANGELOG: Update directory for v1.28.7 release 2024-02-14 15:49:35 +00:00
Ben Luddy
aac43dc96f
Bump github.com/fxamacker/cbor/v2 to v2.6.0. 2024-02-14 10:09:15 -05:00
Jordan Liggitt
5f4cb8b09a
Move kube-apiserver authz validation functions 2024-02-14 10:00:11 -05:00
Kubernetes Prow Robot
eeefc299e5
Merge pull request #123290 from AxeZhan/122435 
Revert "Scheduler first fit"
 2024-02-14 06:51:14 -08:00
Monis Khan
b5e0068325
Support all key algs with structured authn config 
Signed-off-by: Monis Khan <mok@microsoft.com>
 2024-02-14 09:40:25 -05:00
AxeZhan
630ff96f9d Revert "Scheduler first fit" 2024-02-14 20:43:59 +08:00
Kubernetes Prow Robot
ed84e7f6d3
Merge pull request #123222 from pohly/dra-resurceclaim-lookup-race 
DRA: fix data race in resourceclaim.Lookup
 2024-02-14 03:24:57 -08:00
Akihiro Suda
e8b08cd056
e2e_node: replace registry.k8s.io/stress:v1 with agnhost 
agnhost now contains the stress functionality (PR 123258).

Fix issue 123146

Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
 2024-02-14 19:37:13 +09:00
Akihiro Suda
5d861b6f12
promote agnhost to v2.47 
Since v2.45, the `stress` subcommand was added and the CI issue was fixed:
- kubernetes/kubernetes PR 123258
- kubernetes/kubernetes PR 123284
- kubernetes/k8s.io     PR 6422

Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
 2024-02-14 19:33:46 +09:00
Kubernetes Prow Robot
fe9414d86e
Merge pull request #123284 from AkihiroSuda/agnhost 
agnhost: v2.47
 2024-02-14 01:07:11 -08:00
Patrick Ohly
aa772d77fb e2e pod: dump pod in unexpected phase 
When stopping polling, the provided messages becomes the complete failure
message. This means that the code which calls gomega.StopTrying must include
the pod in the message instead of just summarizing the phase. This makes the
failure more useful.
 2024-02-14 09:01:32 +01:00
Kubernetes Prow Robot
0a162a9cd2
Merge pull request #123263 from pohly/lint-error-wrapping 
golangci-lint: add hints for error wrapping
 2024-02-13 23:40:42 -08:00
Patrick Ohly
008b075b46 DRA: fix data race in resourceclaim.Lookup 
This gets uses concurrently as seen by a data race reported when running
integration tests with race detection enabled. All writes would have written
the same value, but it is a race nonetheless.
 2024-02-14 08:14:47 +01:00
Akihiro Suda
9c726b015c
agnhost: v2.47 
agnhost was updated to v2.46 in PR 123258, but the image was not
published due to the failue of `post-kubernetes-push-e2e-agnhost-test-images`
(issue 123266).

Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
 2024-02-14 15:11:31 +09:00
Kubernetes Release Robot
2383fbe53a CHANGELOG: Update directory for v1.30.0-alpha.2 release 2024-02-14 05:11:17 +00:00
Kubernetes Prow Robot
14f8f5519d
Merge pull request #121719 from ruiwen-zhao/metric-size 
Add image pull duration metric with bucketed image size
 2024-02-13 16:23:50 -08:00
Monis Khan
b8a59346fe
test/oidc: extract key type to allow testing different algs 
Signed-off-by: Monis Khan <mok@microsoft.com>
 2024-02-13 17:05:33 -05:00
Alexander Zielenski
b7e70f0e00 update-vendor after package rename 2024-02-13 13:06:39 -08:00
Alexander Zielenski
3094395fa7 bugfix: avoid NPE possibility by making composition environment global 2024-02-13 13:06:39 -08:00
Alexander Zielenski
18fbc48b01 refactor: implement VAP off of policy plugin fw 2024-02-13 13:06:39 -08:00
Alexander Zielenski
a6366573d5 refactor: create generic policy plugin type similar to webhook 2024-02-13 13:06:39 -08:00
Kubernetes Prow Robot
7ec1a89a50
Merge pull request #123270 from AkihiroSuda/fix-123266 
image-util.sh: fix `gcr.io/.../agnhost:2.46-linux-amd64 is a manifest list`
 2024-02-13 10:41:45 -08:00
Anish Ramasekar
19da90d639
Add AudienceMatchPolicy to AuthenticationConfiguration 
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
 2024-02-13 09:50:00 -08:00
Kubernetes Prow Robot
5031ae1159
Merge pull request #123249 from humblec/sidecar-snapshotter 
make use of latest snapshot controller version v6.3.3 in the deployment
 2024-02-13 09:33:26 -08:00
Kubernetes Prow Robot
79e11fe563
Merge pull request #122703 from TommyStarK/fix/dra-manager-should-timeout 
dra: increase timeout in setupFakeDRADriverGRPCServer to prevent tests to flake
 2024-02-13 09:33:17 -08:00
Kubernetes Prow Robot
bd0e1e2d9e
Merge pull request #121554 from kaisoz/fix-job-controller-panics 
Check if time is nil before logging
 2024-02-13 09:33:04 -08:00
Akihiro Suda
6ff675310c
image-util.sh: fix gcr.io/.../agnhost:2.46-linux-amd64 is a manifest list 
Fix issue 123266

> CI: `post-kubernetes-push-e2e-agnhost-test-images` is failing
> (`gcr.io/k8s-staging-e2e-test-images/agnhost:2.46-linux-amd64 is a manifest list`)

To avoid creating a manifest list with the recent version of buildx,
`--provenance=false --sbom=false` has to be specified.

Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
 2024-02-14 01:37:05 +09:00
Patrick Ohly
39606af8c3 golangci-lint: optionally skip it during "make verify" 
The pull-kubernetes-verify job is going to use this to run the base
verify-golangci.sh only in the pull-kubernetes-verify-lint job.
 2024-02-13 17:35:15 +01:00
Kubernetes Prow Robot
498f02d18c
Merge pull request #123202 from kannon92/kevin-sig-node-reviewer 
self nominate to be a sig-node reviewer
 2024-02-13 08:28:56 -08:00
Kubernetes Prow Robot
7abb063b42
Merge pull request #123179 from aramase/aramase/f/encryption_config_reload_metric 
Add `apiserver_encryption_config_controller_automatic_reloads_total` metric and deprecate success/failure counter
 2024-02-13 08:28:47 -08:00
Kubernetes Prow Robot
c3b2295c3a
Merge pull request #123258 from AkihiroSuda/agnhost-stress 
agnhost: merge registry.k8s.io/stress:v1 (github.com/vishh/stress)
 2024-02-13 07:24:35 -08:00
Akihiro Suda
7ee89440c3
agnhost: v2.46 
Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
 2024-02-13 23:21:52 +09:00
Akihiro Suda
07c701fecb
agnhost: merge registry.k8s.io/stress:v1 (github.com/vishh/stress) 
Merge vishh/stress@eab4e3384b into
agnhost.

Old usage: `stress -mem-alloc-size 12Mi -mem-alloc-sleep 10s -mem-total 4Gi`
New usage: `agnhost stress --mem-alloc-size 12Mi --mem-alloc-sleep 10s --mem-total 4Gi`

This is a part of the steps to migrate from legacy Schema 1 images
(issue 123146)

Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
 2024-02-13 23:21:05 +09:00
Kubernetes Prow Robot
5bf23121cc
Merge pull request #123262 from cpanato/update-images 
update images to have the full semver in the tag
 2024-02-13 06:05:50 -08:00
Patrick Ohly
8876b68a60 golangci-lint: add hints for error wrapping 
Wrapping errors may or may not be the right thing to do (see
https://go.dev/blog/go1.13-errors#whether-to-wrap and the discussion in
https://github.com/kubernetes/kubernetes/issues/123234). But developers should
at least think about it, so let's emit linter hints for it: the golangci-lint
config by default enables it for go-errorlint, just not the linter itself, so
we just need to add it for the "hints" config.

Direct error comparisons and assertions also get checked. Those are typically
something that should be replaced by errors.Is and errors.As, but as the
existing code often doesn't do that, let's also treat those as just hints.
 2024-02-13 14:12:04 +01:00