upstream/kubernetes
1
0
Fork 0
mirror of https://github.com/kubernetes/kubernetes.git synced 2026-03-18 00:22:29 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions
kubernetes/pkg/util
History
Dan Winship 3948f16ff4 Add iptables.Monitor, use it from kubelet and kube-proxy 
Kubelet and kube-proxy both had loops to ensure that their iptables
rules didn't get deleted, by repeatedly recreating them. But on
systems with lots of iptables rules (ie, thousands of services), this
can be very slow (and thus might end up holding the iptables lock for
several seconds, blocking other operations, etc).

The specific threat that they need to worry about is
firewall-management commands that flush *all* dynamic iptables rules.
So add a new iptables.Monitor() function that handles this by creating
iptables-flush canaries and only triggering a full rule reload after
noticing that someone has deleted those chains.
2019-09-17 10:19:26 -04:00
..
async bugfix: panic log params in the construct method when maxInterval is less than minInterval 2019-07-24 09:42:13 +08:00
bandwidth Merge pull request #76442 from viegasdom/fix-golint-utils-bandwith 2019-05-15 22:56:08 -07:00
config Run hack/update-bazel.sh 2018-06-22 16:22:57 -07:00
configz Add godoc to pkg/util/configz. 2018-12-19 17:38:30 -08:00
conntrack Refactor to use k8s.io/utils/net/ package instead of kubernetes/pkg/util/net/sets 2019-02-04 10:34:53 +05:30
coverage [pkg/util/coverage]: group imports for readability 2019-05-23 21:38:12 +08:00
ebtables Add OWNERS file for sig-network utils 2019-04-11 13:49:03 -07:00
env Autogenerated: hack/update-bazel.sh 2018-02-16 13:43:01 -08:00
filesystem unpack dynamic kubelet config payloads to files 2018-04-19 09:18:53 -07:00
flag Move from glog to klog 2018-11-10 07:50:31 -05:00
flock Use O_CLOEXEC in util packages 2019-07-09 10:04:00 -07:00
goroutinemap Updated OWNERS files to include link to docs 2019-02-04 22:33:12 +01:00
hash Autogenerated: hack/update-bazel.sh 2018-02-16 13:43:01 -08:00
interrupt update BUILD files 2017-10-15 18:18:13 -07:00
ipconfig Move from glog to klog 2018-11-10 07:50:31 -05:00
ipset Merge pull request #72185 from dcbw/owners-label-sig-network 2019-02-08 10:36:16 -08:00
iptables Add iptables.Monitor, use it from kubelet and kube-proxy 2019-09-17 10:19:26 -04:00
ipvs Add GetKernelVersion to ipvs.KernelHandler interface 2019-07-31 22:10:44 +03:00
labels Run hack/update-bazel.sh 2018-06-22 16:22:57 -07:00
maps update BUILD files 2017-10-15 18:18:13 -07:00
metrics Merge pull request #82032 from logicalhan/owners 2019-09-11 14:04:33 -07:00
mount Move HostUtil to pkg/volume/util/hostutil 2019-08-30 10:14:42 -06:00
netsh Fix golint failure in pkg/util/netsh/testing/ 2019-07-19 16:03:44 +08:00
node Merge pull request #77167 from paulsubrata55/spaul-kube-proxy-fix 2019-08-09 19:47:14 -07:00
oom Update dependency opencontainer/runc 2019-06-28 21:23:05 +02:00
parsers fix golint failures of pkg/util/parsers pkg/util/sysctl pkg/util/system 2019-05-15 23:19:47 +08:00
pod Fix sync pod log format and a func typo. 2019-08-29 14:39:43 +08:00
procfs Move from glog to klog 2018-11-10 07:50:31 -05:00
removeall Run hack/update-bazel.sh 2018-06-22 16:22:57 -07:00
resizefs Move from glog to klog 2018-11-10 07:50:31 -05:00
rlimit Update to gazelle 0.12.0 and run hack/update-bazel.sh 2018-06-22 16:22:18 -07:00
selinux Add correct selinux label at plugin socket directory 2019-05-18 12:35:17 +05:30
slice move ShuffleStrings to pkg/proxy 2019-08-21 20:03:53 +01:00
sysctl fix golint failures of pkg/util/parsers pkg/util/sysctl pkg/util/system 2019-05-15 23:19:47 +08:00
tail Merge pull request #59713 from hanxiaoshuai/fix0211 2018-02-22 23:17:38 -08:00
taints Update v1.Taint parser to accept key:effect, key=:effect-, key, and key- forms 2019-03-11 14:20:59 -07:00
tolerations Remove conflict logic from PodTolerationRestriction 2019-08-26 15:31:15 -07:00
BUILD Drop iptables firewalld monitoring support 2019-09-15 15:35:40 -04:00
verify-util-pkg.sh fix shellcheck in pkg/util/verify-util-pkg.sh 2019-02-22 15:10:16 +08:00