kubernetes
/
apiserver
mirror of https://github.com/kubernetes/apiserver.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
8,090 Commits 29 Branches 1,436 Tags 30 MiB
Commit Graph

8090 Commits

Author SHA1 Message Date
Kubernetes Publisher 08959fe41f Merge pull request #131752 from aramase/aramase/f/kep_3331_v1_api 
Duplicate v1beta1 AuthenticationConfiguration to v1

Kubernetes-commit: 6da56bd4b782658a4060f65c24df5830ec01c6c1
 2025-05-21 07:48:50 +00:00
Kubernetes Publisher 2055ba24cd Merge pull request #131838 from dims/bump-google.golang.org/grpc-to-google-v1.72.1 
Bump google.golang.org/grpc to google v1.72.1

Kubernetes-commit: 444e2b4eb079727d7cdd81ad25041502656370b8
 2025-05-20 15:59:23 +00:00
Kubernetes Publisher df39bcd7dd Merge pull request #131704 from karlkfi/karl-watch-subtests 
test: Use sub-tests in watch tests

Kubernetes-commit: 4e80b05087cf26188208f1c80d133566be4eae18
 2025-05-19 23:49:18 +00:00
Kubernetes Publisher 73a9ddd3c3 Merge pull request #131766 from serathius/flake-TestGetCacheBypass 
Separate getList and watch errors to prevent TestGetCacheBypass flakes

Kubernetes-commit: f80233f24bcc49305aab2043b2bc6d66a606c6ab
 2025-05-19 19:50:56 +00:00
Davanum Srinivas 569dd0421b Bump google.golang.org/grpc v1.72.1 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>

Kubernetes-commit: 9b3830fba234bc4a4f09a1ad4417e4d18b74d6dc
 2025-05-18 12:52:05 -04:00
Kubernetes Publisher 062128c843 Merge pull request #128419 from liggitt/etcd-3.6 
etcd 3.6 client update

Kubernetes-commit: 09ca440a450e9103a8f835f598c09237dba6ecbb
 2025-05-16 04:00:16 +00:00
Marek Siarkowicz 6764e31cac Separate getList and watch errors to prevent TestGetCacheBypass flakes 
The TestGetCacheBypass requires watch cache to be initialized after
which it will want backend to return errors to check what requests are
cached and which are not.

The watch cache is marked as ready after a list succeeds, but before a watch request is executed.
If watch request fail it will immidietly flip back to unready.

Injecting error after watch cache was ready didn't guarantee that watch
request started, sometimes causing watch to be called after and fail.
This immidietly caused the watch cache to be again unready for the rest
of the test.

The fix is just to separate failure injection for List and Watch
responses.

Kubernetes-commit: 70e05132645d5c49cf0ac61a3ae8869dc60f0bde
 2025-05-14 15:52:06 +02:00
Anish Ramasekar 9333a5f386 Duplicate v1beta1 AuthenticationConfiguration to v1 
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>

Kubernetes-commit: aea874e5e47c1740d12f1dbea6bba8249407c9f8
 2025-05-13 15:48:04 -07:00
Karl Isenberg 80961690c3 test: Use sub-tests in watch tests 
- Use sub-tests to avoid side-effects between test cases,
  cancel the context between cases, and make it easier to
  determine the failing case in the test logs.
- Use anonymous closures in benchmarks, instead of sub-tests,
  so the times still include all cases.

Kubernetes-commit: 0e5eab042c314851ae4e653f0037fe901baf94d8
 2025-05-01 12:16:42 -07:00
Jordan Liggitt 067a2139bb Set non-experimental WatchProgressNotifyInterval config field 
Kubernetes-commit: 6b0ebedccc19f3fbf877487cffa34c3694d0c275
 2025-03-27 11:54:39 -04:00
Jordan Liggitt 057e0d26a0 bump etcd client to 3.6 
hack/pin-dependency.sh go.etcd.io/etcd/api/v3 v3.6.0
hack/pin-dependency.sh go.etcd.io/etcd/client/pkg/v3 v3.6.0
hack/pin-dependency.sh go.etcd.io/etcd/client/v3 v3.6.0
hack/pin-dependency.sh go.etcd.io/etcd/pkg/v3 v3.6.0
hack/pin-dependency.sh go.etcd.io/etcd/server/v3 v3.6.0

hack/pin-dependency.sh github.com/grpc-ecosystem/go-grpc-middleware/v2 v2.3.0

hack/update-vendor.sh

Kubernetes-commit: cf0bbf1171e918d5d7ba1d3c83b5f347fc8333b0
 2025-05-15 21:19:11 -04:00
Kubernetes Publisher e80da78881 Merge pull request #131706 from karlkfi/karl-close-watch-tests 
test: Close response body in watch tests

Kubernetes-commit: 5f1a5174c508f6fad9d6c06dc8b5675ef04b9a03
 2025-05-15 20:23:50 +00:00
Kubernetes Publisher 9e1714f200 Merge pull request #131725 from dims/avoid-encoding-in-log-response-object-when-we-dont-need-it 
Avoid encoding in LogResponseObject when we are not going to use it

Kubernetes-commit: 832be9538ec49cb2b496612eff7c1dff68d8b6ba
 2025-05-12 12:15:15 -07:00
Davanum Srinivas bc489d7b1b Update staging/src/k8s.io/apiserver/pkg/audit/request_log_test.go 
Co-authored-by: Tim Allclair <timallclair@gmail.com>
Signed-off-by: Davanum Srinivas <davanum@gmail.com>

Kubernetes-commit: 721947a5703f2ffaafdc9bef983a6b60c6253ca8
 2025-05-12 13:29:57 -04:00
Davanum Srinivas b45c4547ed review from tallclair 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>

Kubernetes-commit: 153233c677d62c0254d54c1e7013645a081ac03d
 2025-05-12 12:50:38 -04:00
Davanum Srinivas bda7e28bbb Avoid encoding in LogResponseObject when we are not going to use it 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>

Kubernetes-commit: e418ee3a92ca6c670d26f775b0f669e8a5fe233c
 2025-05-12 09:29:22 -04:00
Kubernetes Publisher 9b509bf53b Merge pull request #131694 from dims/eliminate-audit-context-set-event-level 
Eliminate AuditContext`s SetEventLevel

Kubernetes-commit: e94babb2aa0e54950c5b1adbadccf59d24436e56
 2025-05-10 03:39:42 +00:00
Kubernetes Publisher 2ffdf9039f Merge pull request #131680 from karlkfi/karl-test-http-context 
test: Pass test context to http requests

Kubernetes-commit: 43be8301ed4041e7b6d6d517badf95473696d03a
 2025-05-09 15:32:55 +00:00
Kubernetes Publisher f2b80d742a Merge pull request #131676 from karlkfi/karl-ioutil 
refactor: Stop using ioutil in apiserver

Kubernetes-commit: 7ce0e1ca2b176bc11855944f721a9f6cf73cae54
 2025-05-09 11:32:01 +00:00
Davanum Srinivas 1ffdd2403f Eliminate AuditContext`s SetEventLevel 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
Co-Authored-By: Jordan Liggitt <liggitt@google.com>

Set event level during context init

Signed-off-by: Davanum Srinivas <davanum@gmail.com>

Kubernetes-commit: 960a4939f2502f2a8f2b923203e9075354e4bdc0
 2025-05-09 06:57:31 -04:00
Kubernetes Publisher 2bc51918fe Merge pull request #129472 from dims/api-server-crashes-on-concurrent-map-iteration-and-write 
Fix API server crash on concurrent map iteration and write

Kubernetes-commit: f603a0ada810d2671c6440b109c7fe29f67c81ff
 2025-05-09 03:39:44 +00:00
Karl Isenberg 46dd96ca03 refactor: Stop using ioutil in apiserver 
- The ioutl package is deprecated. Migrate to os package functions.

Kubernetes-commit: f93e4645c18c6f56bfddc158ef7b3f674b3c41dd
 2025-05-08 11:28:52 -07:00
Kubernetes Publisher 1527793495 Merge pull request #131656 from karlkfi/karl-request-methods 
refactor: Add request method constants

Kubernetes-commit: 0f9987650cca2f24787e4cd38d257b77aabf68db
 2025-05-08 11:38:15 +00:00
Kubernetes Publisher 93c8ec73c8 Merge pull request #131616 from jpbetz/typeconverter-cleanup 
Reorganize scheme type converter into apimachinery utils

Kubernetes-commit: 7cb2bd78b22c4ac8d9a401920fbcf7e2b240522d
 2025-05-08 03:47:17 +00:00
Joe Betz 5f14a1e225 Reorganize scheme type converter into apimachinery utils 
This removes a dependency from generated applyconfigurations to a testing
package. To do this, the type converter in the testing package has been
moved out to the apimachinery package and the utilities the converter
depend on have been reorganized.

Kubernetes-commit: 4821604f83a6f4764497879b666087ba7cb05060
 2025-05-07 10:07:55 -04:00
Kubernetes Publisher 007464aa0f Merge pull request #131575 from ali-a-a/deflake-watch-not-hanging-on-startup-failure 
pkg/storage/cacher/cacher_whitebox_test: deflake TestWatchNotHangingOnStartupFailure when ResilientWatchCacheInitialization is on

Kubernetes-commit: 417662ca933ca58437d3d2d902f2cfdc4294ac45
 2025-05-06 23:39:17 +00:00
Kubernetes Publisher 97250949cd Merge pull request #131596 from jpbetz/cel-reflect-extra-tests 
Expand CEL UnstructuredToVal and TypedToVal has() tests

Kubernetes-commit: 0da4ada321999ff1d782d77a3101157629b493cb
 2025-05-06 19:48:48 +00:00
Kubernetes Publisher 724cb010da Merge pull request #131560 from jpbetz/validation-gen-subresource-simplification 
Declarative validation: Simplify handling of subresources

Kubernetes-commit: c6739dd54d56549a8460737f66b1c6aa0fa697bf
 2025-05-06 19:48:43 +00:00
Kubernetes Publisher 11e35f7e67 Merge pull request #131627 from dims/mutating-webhook-error 
[Attempt #2] apiserver: Treat error decoding a mutating webhook patch as error calling the webhook

Kubernetes-commit: 3aa66a2ba01529a3c5754cab222693d80241d5ac
 2025-05-06 07:45:13 -07:00
Davanum Srinivas 71463feb30 Adding test case for the webhook behavior change 
Authored-by: Jordan Liggitt <liggitt@google.com>
Signed-off-by: Davanum Srinivas <davanum@gmail.com>

Kubernetes-commit: 3be3051fb77be1a1ad250c04a68efe8c6bf61940
 2025-05-06 09:23:46 -04:00
Joe Betz 62514be921 Apply feedback 
Kubernetes-commit: 10c5bdd6a1a98222940c72e9c13ed0ccbb65322e
 2025-05-05 15:03:11 -04:00
Joe Betz 7e75755a5a Expand has() tests for omitempty and omitzero 
Kubernetes-commit: 47fddb08f75939ce6e40d0217ea1f4d5072b1ed0
 2025-05-02 20:52:08 -04:00
Ali Abbasi Alaei b6cfd80a0d pkg/storage/cacher/cacher_whitebox_test: deflake TestWatchNotHangingOnStartupFailure when ResilientWatchCacheInitialization is on 
Kubernetes-commit: 2073ba2372b2cd1c53b327a50656a2cdd13decba
 2025-05-01 16:55:49 -04:00
Karl Isenberg 32e916b79d test: Close response body in watch tests 
- Close response body after http calls in the watch tests
- Add apitesting utility methods for closing and testing errors
  from response body and websocket.
- Validate read after close errors.

Kubernetes-commit: 9d963298a3b7b828f01a9b02af57863a7480eb0b
 2025-04-29 17:32:48 -07:00
Karl Isenberg 1552f6cea3 test: pass the test context to http requests 
This handles canceling the request after the test completes, cleaning
up resources on the client and server.

Kubernetes-commit: 080d6f9ead740ec1358e320e388f79cc4de97697
 2025-04-29 17:05:13 -07:00
Karl Isenberg 61451f57b1 refactor: Add request method constants 
This avoids linter errors from using inline strings as http request
methods.

Kubernetes-commit: e81887276c65acccc5486f2ff69d8bc54ac3c6ca
 2025-04-29 16:45:30 -07:00
Joe Betz 0de899d1ed Add subresource to operation, do not special case subresources in validation-gen 
Kubernetes-commit: 2119555e02b357db58e460cd8f38bf187b5f837b
 2025-03-26 21:26:14 -04:00
Davanum Srinivas 0f91510ab0 Treat error decoding a mutating webhook patch as error calling the webhook 
Co-Authored-By: Matthew Wong <mattwon@amazon.com>
Signed-off-by: Davanum Srinivas <davanum@gmail.com>

Kubernetes-commit: cf82fd7e9ceac60b7a336c90958835865c4f2f0a
 2024-10-23 15:52:41 -07:00
Kubernetes Publisher 23913f0bf4 Merge pull request #131559 from jpbetz/fix-unstructured-to-val-equality 
Fix UnstructuredToVal map equality to respect nil fields

Kubernetes-commit: 3f808638076e9e2be5f53a4aec9d2d5d00b997e1
 2025-05-06 03:34:58 +00:00
Kubernetes Publisher eeced267ad Merge pull request #131595 from aojea/utils_fake_clock 
update k8s.io/utils to bring fakeClock.Waiters()

Kubernetes-commit: e3e1f80c0110c847acf4381b1790c1c667395010
 2025-05-03 03:42:20 +00:00
Kubernetes Publisher d8f5cf79ad Merge pull request #131574 from enj/enj/t/oidc_cel_unescape 
jwt: support CEL expressions with escaped names

Kubernetes-commit: 43a5c18ebacf57b23f8431f270bef6c361631f20
 2025-05-03 03:42:17 +00:00
Kubernetes Publisher 3dae57efb5 Merge pull request #130989 from liggitt/creationTimestamp-omitzero 
Omit null creationTimestamp

Kubernetes-commit: 01899a7c86337b05a16a4155c9351cf947beaee9
 2025-05-02 23:43:09 +00:00
Antonio Ojea 73b2a2235b update k8s.io/utils to bring fakeClock.Waiters() 
Change-Id: I7e25338df225c2c27457403fbc2f158d08638f87

Kubernetes-commit: c2c003a71fc52fa79c2fff0109afad58573d0216
 2025-05-02 11:21:11 +00:00
Monis Khan f2b320dc52 jwt: support CEL expressions with escaped names 
This is purely for consistency with other uses of CEL in the
project.  Using `[` for accessing claims or user data is preferred
when names contain characters that would need to be escaped.  CEL
optionals via `?` can be used in places where `has` cannot be used,
i.e. `claims[?"kubernetes.io"]` or `user.extra[?"domain.io/foo"]`.

Signed-off-by: Monis Khan <mok@microsoft.com>

Kubernetes-commit: 7b50c8a510f2645219ee05da5195042c02552932
 2025-05-01 13:22:52 -04:00
Joe Betz c199f9d392 Fix CEL equality bug for structs will nil field not marked as omitempty 
Kubernetes-commit: 66b8a8427cf0be6f6a87ea3384e7213696bdfd4c
 2025-04-30 09:16:44 -04:00
Jordan Liggitt 0d11839195 Drop null creationTimestamp from test fixtures 
Kubernetes-commit: 6bb6c9934294d8265197c9dfc4c9dd3adaca147a
 2025-03-24 09:37:26 -04:00
Jordan Liggitt b5e431bd82 bump cbor to add omitzero support 
Kubernetes-commit: bc6051717137cef288b82305588e675de4a32c0d
 2025-03-25 12:27:43 -04:00
Jordan Liggitt d22318d3d2 bump structured-merge-diff to add omitzero support 
Kubernetes-commit: 06b0784062f68566daa8eed83c475b738dcf620c
 2025-03-24 16:34:01 -04:00
Kubernetes Publisher 8776678b52 Merge pull request #131573 from enj/enj/t/oidc_nested_cel 
jwt: add unit tests for using CEL with deeply nested claims

Kubernetes-commit: 03a3c0c89161935bc2338f5754ebb1104f779af1
 2025-05-01 12:41:56 -07:00
Monis Khan cb5a7a865d jwt: add unit tests for using CEL with deeply nested claims 
Signed-off-by: Monis Khan <mok@microsoft.com>

Kubernetes-commit: 5441f5fdef781298cd7d924eecd00e20e08831ce
 2025-04-30 00:03:25 -04:00