upstream/kubernetes
1
0
Fork 0
mirror of https://github.com/kubernetes/kubernetes.git synced 2026-04-22 06:39:18 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions
125959 commits 61 branches 1222 tags 2.4 GiB
Commit graph

50978 commits

Author SHA1 Message Date
Kubernetes Prow Robot
79cca2786e
Merge pull request #128172 from liggitt/3221-ga 
KEP-3221: Promote StructuredAuthorizationConfiguration to GA
 2024-10-18 20:21:09 +01:00
Kubernetes Prow Robot
7429566b07
Merge pull request #127918 from saschagrunert/backoff-status 
Use image pull error in `message` during back-off
 2024-10-18 19:09:03 +01:00
Kubernetes Prow Robot
7adcad3138
Merge pull request #128169 from liggitt/4193-ga 
KEP-4193: Promote ServiceAccountTokenJTI, ServiceAccountTokenPodNodeInfo, ServiceAccountTokenNodeBindingValidation to stable
 2024-10-18 17:39:11 +01:00
Kubernetes Prow Robot
d7bd728403
Merge pull request #128168 from liggitt/4601-beta 
KEP-4601: AuthorizeNodeWithSelectors / AuthorizeWithSelectors to beta
 2024-10-18 17:39:03 +01:00
Kubernetes Prow Robot
0daa75b972
Merge pull request #127797 from sanposhiho/cleanup-event-list 
cleanup: remove event list
 2024-10-18 15:31:04 +01:00
Sascha Grunert
0fc4b740f8
Use image pull error in message during back-off 
The container status waiting reason toggles between `ImagePullBackOff`
and the actual pull error, resulting in a bad user experience for
consumers like kubectl. For example, the output of
`kubectl get pods` does return either:

```
NAME   READY   STATUS                      RESTARTS   AGE
pod    0/1     SignatureValidationFailed   0          10s
```

or

```
NAME   READY   STATUS             RESTARTS   AGE
pod    0/1     ImagePullBackOff   0          18s
```

depending in which state the image pull is. We now improve that behavior
by preserving the actual error in the `message` of the `waiting` state
from the pull during back-off:

```json
{
  "waiting": {
    "message": "Back-off pulling image \"quay.io/crio/unsigned:latest\": SignatureValidationFailed: image pull failed for quay.io/crio/unsigned:latest because the signature validation failed: Source
 image rejected: A signature was required, but no signature exists",
    "reason": "ImagePullBackOff"
  }
}
```

While the `SignatureValidationFailed` value inherits from the previous
known state:

```json
{
  "waiting": {
    "message": "image pull failed for quay.io/crio/unsigned:latest because the signature validation failed: Source image rejected: A signature was required, but no signature exists",
    "reason": "SignatureValidationFailed"
  }
}
```

Signed-off-by: Sascha Grunert <sgrunert@redhat.com>
 2024-10-18 08:47:37 +02:00
Kubernetes Prow Robot
f5ae0413ca
Merge pull request #126347 from vinayakankugoyal/kep2862impl 
KEP-2862: Fine-grained Kubelet API Authorization
 2024-10-18 03:53:04 +01:00
Jordan Liggitt
ad808e609a
KEP-3221: Promote StructuredAuthorizationConfiguration to GA 2024-10-17 21:53:45 -04:00
Kubernetes Prow Robot
ded7ad554e
Merge pull request #125513 from mauri870/hotfix/grpc-handle-err 
kubelet/cm/devicemanager: log grpc Serve error
 2024-10-18 02:49:03 +01:00
Jordan Liggitt
0771f601e1
KEP-4193: Promote ServiceAccountTokenJTI, ServiceAccountTokenPodNodeInfo, ServiceAccountTokenNodeBindingValidation to stable 2024-10-17 21:25:09 -04:00
Kensei Nakada
83f9e4b6df cleanup: remove event list 2024-10-18 11:10:10 +10:00
Jordan Liggitt
9caca73126
KEP-4601: AuthorizeNodeWithSelectors / AuthorizeWithSelectors to beta 2024-10-17 21:02:55 -04:00
Kubernetes Prow Robot
b1b4e5d397
Merge pull request #128003 from pohly/dra-classic-dra-removal 
DRA: remove "classic DRA"
 2024-10-18 00:55:17 +01:00
Kubernetes Prow Robot
90ee68948d
Merge pull request #127504 from sttts/sttts-authz-cel-compiler-once 
apiserver/authconfig: make CEL compiler shareable
 2024-10-18 00:55:10 +01:00
Kubernetes Prow Robot
48f36acc7a
Merge pull request #125337 from aojea/document_node_addresses 
kubelet --node-ip flag using  unspecified IPs and external cloud provider node addresses behavior
 2024-10-18 00:55:03 +01:00
Dr. Stefan Schimanski
c44fc28087
apiserver/validation: fix some sets.NewString deprecations 
Signed-off-by: Dr. Stefan Schimanski <stefan.schimanski@gmail.com>
 2024-10-17 22:56:20 +02:00
Dr. Stefan Schimanski
4024390d8c
apiserver/authconfig: wire CEL compiler through lower layers to allow sharing 
Signed-off-by: Dr. Stefan Schimanski <stefan.schimanski@gmail.com>
 2024-10-17 22:56:20 +02:00
Vinayak Goyal
b1f290d444 KEP-2862: Fine-grained Kubelet API Authorization 
Signed-off-by: Vinayak Goyal <vinaygo@google.com>
 2024-10-17 20:53:27 +00:00
Kubernetes Prow Robot
b7d1766c18
Merge pull request #128158 from pohly/dra-controller-logging 
DRA resource claim controller: improve log messages
 2024-10-17 20:31:11 +01:00
Kubernetes Prow Robot
141951cd6b
Merge pull request #126420 from hoskeri/fix-container-succeeded-check-status 
kuberuntime_manager: fix container success check.
 2024-10-17 20:31:04 +01:00
Kubernetes Prow Robot
51f76febd7
Merge pull request #127402 from mimowo/managed-by-beta-update 
Graduate JobManagedBy to Beta in 1.32
 2024-10-17 19:27:14 +01:00
Kubernetes Prow Robot
c5a85abecb
Merge pull request #122867 from oilbeater/patch-1 
fix broken links
 2024-10-17 19:27:06 +01:00
Robbie Cronin
cdbfbde4aa
Add ut coverage for capabilities.Setup (#125395) 
* Add ut coverage for capabilities.Setup

* Update pkg/capabilities/capabilities_test.go

Co-authored-by: Ed Bartosh <eduard.bartosh@intel.com>

* Add ut coverage for capabilities.Setup

Signed-off-by: robert-cronin <robert.owen.cronin@gmail.com>

---------

Signed-off-by: robert-cronin <robert.owen.cronin@gmail.com>
Co-authored-by: Ed Bartosh <eduard.bartosh@intel.com>
 2024-10-17 18:23:03 +01:00
Patrick Ohly
d572df2493 DRA resource claim controller: improve log messages 
Some code paths didn't log anything. One log message about "claim got deleted"
was incorrect.
 2024-10-17 18:28:55 +02:00
Kubernetes Prow Robot
c6ad6fa951
Merge pull request #125477 from my-git9/namespaceformat 
Modify some error words
 2024-10-17 17:17:17 +01:00
Kubernetes Prow Robot
e6099268e3
Merge pull request #125080 from TommyStarK/unit-tests/kubelet-apis-config-validation 
kubelet/apis/config/validation: improve unit test coverage
 2024-10-17 17:17:10 +01:00
Kubernetes Prow Robot
f5b92902a3
Merge pull request #124434 from tu1h/fix-compute-resources-link 
API docs: point outdate link to current link
 2024-10-17 17:17:03 +01:00
Kubernetes Prow Robot
4d32d7e5ad
Merge pull request #127930 from aroradaman/kube-proxy-refactor-healthz-metrics-address 
re: kube-proxy: internal config: refactor HealthzAddress and MetricsAddress
 2024-10-17 16:03:11 +01:00
Kubernetes Prow Robot
1f9038a468
Merge pull request #127919 from carlory/fix-127852 
Fix data race in kubelet/volumemanager
 2024-10-17 14:57:03 +01:00
Lukasz Szaszkiewicz
06a15c5cf9
Promote WatchList feature to Beta (#128053) 
* e2e/apimachinery/watchlist: always run WatchList e2e tests

* kube-controller-manager: enable WatchListClient

* kube-apiserver: promote WatchList feature to beta
 2024-10-17 11:07:04 +01:00
Michal Wozniak
70a8ceb6f0 Graduate JobManagedBy to Beta in 1.32 
# Conflicts:
#	pkg/features/kube_features.go
 2024-10-17 09:01:54 +02:00
Kubernetes Prow Robot
a4c262bc8c
Merge pull request #127293 from hshiina/typecheck 
kubelet/cm: Unite return value types of helper functions
 2024-10-17 07:45:04 +01:00
Kubernetes Prow Robot
d67e6545b1
Merge pull request #124227 from iholder101/in-pod-vertical-scaling/extended-resources 
[FG:InPlacePodVerticalScaling] Add extended resources to ContainerStatuses[i].Resources
 2024-10-17 01:39:03 +01:00
Patrick Ohly
f84eb5ecf8 DRA: remove "classic DRA" 
This removes the DRAControlPlaneController feature gate, the fields controlled
by it (claim.spec.controller, claim.status.deallocationRequested,
claim.status.allocation.controller, class.spec.suitableNodes), the
PodSchedulingContext type, and all code related to the feature.

The feature gets removed because there is no path towards beta and GA and DRA
with "structured parameters" should be able to replace it.
 2024-10-16 23:09:50 +02:00
Kubernetes Prow Robot
b7fb82f9d8
Merge pull request #128076 from AmarNathChary/Removed_Alpha_Beta_Ga 
Removed_alpha_beta_ga
 2024-10-16 20:35:15 +01:00
AmarNathChary
ff7c708207 removed_comments_from_kube_feature_of_alpha_beta_ga 2024-10-16 15:36:34 +05:30
Dr. Stefan Schimanski
33749d0436
volume: fix unit test flake 
Signed-off-by: Dr. Stefan Schimanski <stefan.schimanski@gmail.com>
 2024-10-15 11:57:57 +02:00
AmarNathChary
f34d14c314 Removed_alp_beta_ga 2024-10-15 10:39:59 +05:30
Kubernetes Prow Robot
55b83c92b3
Merge pull request #128062 from aramase/aramase/i/cred_provider_config_typos 
credential provider config: detect typos
 2024-10-15 02:04:35 +01:00
Kubernetes Prow Robot
d1e03f3a77
Merge pull request #127195 from yaojunyu/fix-pod-alway-restart-open-envetedpleg 
EventedPLEG: Set Timestamp in PodStatus for Generic PLEG more accurate
 2024-10-14 23:36:20 +01:00
Kubernetes Prow Robot
429edc5f25
Merge pull request #128060 from antoninbas/fix-typos-in-pkg/proxy/ipvs/ipset/ipset_test.go 
Fix typos in pkg/proxy/ipvs/ipset/ipset_test.go
 2024-10-14 22:02:21 +01:00
Anish Ramasekar
1882a4a9f0
credential provider config: detect typos 
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
 2024-10-14 12:23:43 -07:00
Antonin Bas
0350e5ae69 Fix typos in pkg/proxy/ipvs/ipset/ipset_test.go 
There were a couple of typos in test error logs

Signed-off-by: Antonin Bas <antonin.bas@broadcom.com>
 2024-10-14 11:06:36 -07:00
Prince Pereira
3448455083 Replacing hcsshim library with new hnslib library. 2024-10-14 10:44:30 -07:00
Daman Arora
e63260082a kube-proxy: internal config: refactor Healthz and Metrics Address 
Refactor Healthz with Metrics Address for internal configuration of
kube-proxy adhering to the v1alpha2 version specifications as detailed
in https://kep.k8s.io/784.

Signed-off-by: Daman Arora <aroradaman@gmail.com>
 2024-10-14 22:56:23 +05:30
Daman Arora
48f1356b2f pkg/proxy: refactor NodePortAddresses to NodeAddressHandler 
Signed-off-by: Daman Arora <aroradaman@gmail.com>
 2024-10-14 21:49:29 +05:30
Daman Arora
4f732a233d pkg/proxy/utils: file rename 
Signed-off-by: Daman Arora <aroradaman@gmail.com>
 2024-10-14 21:31:39 +05:30
Kubernetes Prow Robot
426aa3d6ce
Merge pull request #127489 from pacoxu/feature/125234 
feat: Added net.ipv4.tcp_rmem and net.ipv4.tcp_wmem into safe sysctl list
 2024-10-12 08:46:20 +01:00
Kubernetes Prow Robot
4812ea8aa5
Merge pull request #125570 from sanchezl/test-additional-types 
KEP-4222: Cover aggregator and apiextension types in unstructured roundtrip test.
 2024-10-12 03:18:20 +01:00
Kubernetes Prow Robot
762a85e25d
Merge pull request #125923 from haircommander/cpuset-fix-restart 
kubelet/cm: fix bug where kubelet restarts from missing cpuset cgroup
 2024-10-12 00:12:20 +01:00