Commit Graph

183 Commits

Author SHA1 Message Date
deads2k 00b83db9b8 plumb stopch to post start hook index since many of them are starting go funcs
Kubernetes-commit: be39283923650ad96539640ca988fbf194db2be4
2017-05-12 17:30:09 +00:00
Nail Islamov f72563011c Remove mentioning insecure server (which is not supported anymore)
Kubernetes-commit: 6c448319ac4b6e05db87b126db136c609eceec55
2017-05-12 17:30:09 +00:00
Ryan Hitchman 4e16eae82b Escape "<>&" in apiserver errors to avoid triggering vulnerability scanners.
Simple XSS scans might fetch /<script>alert('vulnerable')</script>, and
fail when the response body includes the script tag verbatim, despite
the headers directing the browser to interpret the response as text.

This isn't a real vulnerability, but it's easier to fix this here than
it is to fix the scanners.

Kubernetes-commit: dd4bb1213d8447632fa651195980cbfae2546fb3
2017-05-12 17:30:09 +00:00
deads2k 49f3eb05d8 refactor names for the apiserver handling chain
Kubernetes-commit: 4389f715768661731f0aae7438b2cc8414c9746a
2017-05-12 17:30:09 +00:00
Dr. Stefan Schimanski 234a9303e9 apiserver: tri-state watch cache capacity: off, default, value
Kubernetes-commit: b799e62e1aa82a1f1ff87597e762734cd702cdee
2017-05-12 17:30:09 +00:00
mbohlool 1ce699c0dd Add GroupVersionKind and Action extensions to OpenAPI operations
Kubernetes-commit: fca7003dc5bd122e2123ef260e8612663f74a65b
2017-05-12 17:30:09 +00:00
mbohlool a44fceadf3 Update go-restful dependency
Kubernetes-commit: ea042c6ca0fc7eb8017012ca56d6879b8cf10637
2017-05-12 17:30:08 +00:00
Dr. Stefan Schimanski e640e78936 apiserver: fix --tls-sni-cert-key doc string
Kubernetes-commit: 53365880086f0d0d53002de7ce816284da41f4d0
2017-05-12 17:30:08 +00:00
deads2k 4989e215f2 handle registered third parties
Kubernetes-commit: b512073457d02f326ac39d5774582a92c763c47f
2017-05-12 17:30:08 +00:00
Cao Shufeng ec0ac3b1aa update the doc of function NewPathRecorderMux
Kubernetes-commit: 8b54081939c400d904dbf02fe5143c9dc11ad0ac
2017-05-12 17:30:08 +00:00
deads2k 9250b02a30 remove bearer token from headers after we consume it
Kubernetes-commit: 641b83877a5bd01f87f3e4db53917e854b581be7
2017-05-12 17:30:08 +00:00
mbohlool 0a32c6d3e2 Fix yet another bug in OpenAPI extension generation
Kubernetes-commit: bcd0288e607ee1a1eba3d69dbb7d533f7ef2e4ba
2017-05-05 20:36:47 +00:00
deads2k 585812f439 use our own serve mux that directs how we want
Kubernetes-commit: c837c7fb1a227ef8c772ad15b08ff47593379543
2017-05-04 20:36:37 +00:00
Chao Xu e84e32eaa5 remove references to client-go/pkg/api
Kubernetes-commit: d978f22e04519f6eecfde839110c398dc28d4e8e
2017-05-03 20:36:26 +00:00
deads2k 2b31ba8b9c separate discovery from the apiserver
Kubernetes-commit: e099f5eee60ad32661d28a2eda9d615ac25ba9a4
2017-05-02 20:36:05 +00:00
Dr. Stefan Schimanski 21f84e3d21 apiserver: split endpoint tests from client-go
Kubernetes-commit: 67ca42b2d7e9efb5701618fb3d7faa62c53101c5
2017-05-02 20:36:05 +00:00
xiangpengzhao 1512c30ca6 Delete "hard-coded" default value in flags usage.
Kubernetes-commit: 420caf200cdb1ba41d6af43c5695c29de2082851
2017-04-29 20:35:54 +00:00
Mike Danese aab2f083cf replace CloneTLSConfig() with (*tls.Config).Clone()
Kubernetes-commit: 6c6dbec1e2364b994bdae42828e094b9b540f9b3
2017-04-28 20:36:30 +00:00
Chao Xu 4b7a66ff7e make it possible to move SchemeBuilder with zz_generated.deepcopy.go
Kubernetes-commit: d0b94538b9744d0c06df6ddec2604be168568f9d
2017-04-28 20:36:29 +00:00
Cao Shufeng 51bdb8b7fc Fix PathPrefix for subresources
Kubernetes-commit: dde1221839a340f14924b399012e1aa137367092
2017-04-28 20:36:29 +00:00
deads2k 63fa51033e build external watch event so simple encoders can encode
Kubernetes-commit: f53c9a7e59fe71c038cf727ac2072e5eb9efc6b9
2017-04-28 20:36:29 +00:00
Andy Goldstein 478b3779f2 Add redirect support to SpdyRoundTripper
Add support for following redirects to the SpdyRoundTripper. This is
necessary for clients using it directly (e.g. the apiserver talking
directly to the kubelet) because the CRI streaming server issues a
redirect for streaming requests.

Also extract common logic for following redirects.

Kubernetes-commit: 715d5d9c91c669cf33c0bf9a9c9d352c6c4228a6
2017-04-27 20:37:01 +00:00
Lucas Käldström 1b6b98500b Update protobuf
Kubernetes-commit: f32e6d8a892504835454af4e740da5c9dd17c0a1
2017-04-26 20:36:15 +00:00
Jeremy Whitlock 02115850aa apiserver: add pkg/util/webhook tests
This commit adds tests for pkg/util/webhooks.  The purpose of this was
not only for better code coverage but also to alleviate the need for
consumers to write their own tests for core functionality.

Kubernetes-commit: d15dba7e8bff943d91ba6f58fcb0dfefa357a7f1
2017-04-26 20:36:15 +00:00
deads2k a32f3c1391 fix cluster scoped self-link
Kubernetes-commit: 5746d876e3e4ff41696569d3d8e80ef3979d5186
2017-04-25 20:36:18 +00:00
Anthony Yeh 9841cf11a1 PATCH: Fix erroneous meaningful conflict for numeric values.
The wrong json package was used, resulting in patches being unmarshaled
with numbers as float64 rather than int64.
This in turn confused HasConflicts() which expects numeric types to match.

The end result was false positives of meaningful conflicts, such as:

```
there is a meaningful conflict (firstResourceVersion: "8517",
currentResourceVersion: "8519"):
 diff1={"metadata":{"resourceVersion":"8519"},"spec":{"replicas":0},"status":{"conditions":null,"fullyLabeledReplicas":null,"replicas":0}}
, diff2={"spec":{"replicas":0}}
```

Kubernetes-commit: 1ab6a33db486adc060e1b63eecbdc06aabdde1f6
2017-04-24 20:36:05 +00:00
Monis Khan c4cc6eba8b Default ObjectNameFunc for all REST Stores
All Stores in Kubernetes follow the same logic for determining the name
of an object.  This change makes it so that CompleteWithOptions defaults
the ObjectNameFunc if it is not specified.  Thus a user does not need to
remember to use ObjectMeta.Name.  Using the wrong field as the name can
lead to an object which has a name that bypasses normal object name
validation.

Signed-off-by: Monis Khan <mkhan@redhat.com>

Kubernetes-commit: ed35deb69d6fe480adc9178c30b4b9c9e03ca1a9
2017-04-24 20:36:05 +00:00
Cao Shufeng 32da3a6527 refactor code from restful namer
Some codes are replaced because they will never run.

Kubernetes-commit: 939b962975aabcb1587f40b0eb05a30d05168cc4
2017-04-24 20:36:05 +00:00
Cao Shufeng ad7e6c7d72 Update basic audit filter's comment message
Kubernetes-commit: 267288249b0dac2e7ae60bd53bef2afe8a574c28
2017-04-24 20:36:05 +00:00
zhouhaibing089 79f762de77 componentstatus: support client cert health check
etcd has support for client-cert-auth, which can be configured via the flag `--ca-file`,
when that is enabled, all the client requests must present with a client certificate,
however, the current component status check uses a single transport for all of the checks,
this is wrong, the checks should be different for each of different component, and make
each of them use different transport(tls configurations).

Kubernetes-commit: b1040171b68217dccb617de85defa4a5063c638b
2017-04-22 20:36:06 +00:00
p0lyn0mial fdb6bac0df bazel update
Kubernetes-commit: 4a3dcff3bfb49317cee8fb209f6b915fc9e82f1a
2017-04-21 20:35:37 +00:00
p0lyn0mial 3422dafac7 Split out AdmissionOptions
In the long term AdmissionOptions will accepts various dependencies
and spit out AdmissionControl

Kubernetes-commit: de9706bc15ffc3a6a4ef30a00d5c7ea9a8881396
2017-04-21 20:35:37 +00:00
Jordan Liggitt 28f3b58b8b Include system:authenticated group when impersonating
Kubernetes-commit: 86623ed2414d98d6ddc7f28028b88d17d8d8f6ec
2017-04-21 20:35:37 +00:00
Maru Newby 6c1b74403d apiserver: Update genericapiserver to panic on listener error
Previously runServer would try to listen again if a listener error
occurred.  This commit changes the response to a panic to allow a
process manager (systemd/kubelet/etc) to react to the failure.

Kubernetes-commit: 30fb3be4d29179cf551e3030ade37d94d9acc8c9
2017-04-20 20:35:32 +00:00
gmarek 94dd05e8db Fix traces for get requests
Kubernetes-commit: 2a49281b55278bb6932e8862304cff0becaaabf3
2017-04-19 20:35:36 +00:00
xilabao fa06d09988 remove useless check in audit.go
Kubernetes-commit: 4b8abd811dbea5b92c807b64b427eab296567b1d
2017-04-18 20:35:41 +00:00
Christoph Blecker 6d6242ff50 Fix gofmt errors
Kubernetes-commit: 6681835b0c00122a408bd4addd47b02840b6208c
2017-04-18 20:35:41 +00:00
Matt Liggett 3b01985067 Use regexp instead of substring to do search and replace.
enisoc pointed out how ToLower can change (lengthen even!) the length of
a string given arbitrary input.

Kubernetes-commit: fe202fcfc47c7e0fa7d75dc933c9988bb5a53e5e
2017-04-17 20:35:48 +00:00
Mike Danese fda6fe0d70 add testdata for tests in //vendor/k8s.io/...
Kubernetes-commit: 981dd8dc6615f397a9b85c5b965998dc8a0b1338
2017-04-15 20:35:23 +00:00
Mike Danese 2aab760a2a autogenerated
Kubernetes-commit: a05c3c0efdc5822049e34b1a5a1ee259c5fb1906
2017-04-15 20:35:23 +00:00
Matt Liggett 6c87ad1f20 Drop leading path of KUBECTL.EXE if it shows up in User-Agent.
Kubernetes-commit: 4cff7c3d30f4f6b4377d52ec29ec4866f1d28bb9
2017-04-14 20:35:35 +00:00
Jordan Liggitt 662942f8b8 Remove vestiges of defaulting from conversion path, switch to top-level default registration only
Kubernetes-commit: ad116026d9fefe70bbc37f30b9d299ca3af6e43c
2017-04-14 20:35:34 +00:00
deads2k 631ed9acef add deregistration for paths
Kubernetes-commit: cd950364e5259659a771caf5b564de7a8319969b
2017-04-13 20:35:21 +00:00
Dr. Stefan Schimanski 320e34b1d9 pkg/admission: make plugin registry non-global
Kubernetes-commit: 63f547e1b15ed94ef91c69a7e294b3506bd8c918
2017-04-12 20:35:22 +00:00
mbohlool f8217a24e4 Bugfix: OpenAPI generator should pass generate type extensions
Kubernetes-commit: ab5bcf6d2da5fc9cd2374e966f87e20a95d59ed6
2017-04-12 20:35:22 +00:00
Sahdev P. Zala c44e920355 Conversion generated code changes for golint fix
The exported or public functions requires a doc comment to pass golint.
This commit has changes of conversion generated code. The actual doc
changes are added into a separate commit for a clean review.

Kubernetes-commit: 08639023d027e0b69e3b3e5535b04148e084b1bd
2017-04-12 20:35:21 +00:00
Timothy St. Clair 3c7e90361c Update generated due to proto-shift
Kubernetes-commit: 818dd4443dc4760c90edd3aa608265d2573c7cc9
2017-04-12 20:35:21 +00:00
deads2k 540c5cf18e remove dependency on gorestful for rest handling
Kubernetes-commit: c5e2f7c229d8194386de97df7ff6c1b0f71be4c7
2017-04-11 20:35:21 +00:00
deads2k 5e858945af remove objectmetafor
Kubernetes-commit: 04460c8750b9a47672aa708251de0e703cfb7266
2017-04-11 20:35:21 +00:00
deads2k d3546820d7 remove go-restful from namer for rest handling
Kubernetes-commit: da27957390b99c3053922e75f220a8b09c20d7f6
2017-04-10 20:35:11 +00:00