kubernetes
/
apiserver
mirror of https://github.com/kubernetes/apiserver.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
2,368 Commits 30 Branches 1,482 Tags 31 MiB
Commit Graph

444 Commits

Author SHA1 Message Date
Andrew Lytvynov 3604e0cbb0 Extract new keyutil package from client-go/util/cert 
This package contains public/private key utilities copied directly from
client-go/util/cert. All imports were updated.

Future PRs will actually refactor the libraries.

Updates #71004

Kubernetes-commit: 18458392ca24c85c688e655aace1afd04f864cbd
 2018-12-09 16:24:38 -08:00
Steffen Butzer 729b73dd4a windows/svc: workaround-exit mechanism that works for signal-less binaries 
Kubernetes-commit: afdfe8d558c17a4e3ea4f6c7f066897b47bbf989
 2019-02-01 19:16:11 +01:00
Steffen Butzer 2335c601dd windows/service: implement graceful shutdown when run as windows service 
- Fixes https://github.com/kubernetes/kubernetes/issues/72900
The issue here originally is that os.Exit() is called which exits
the process too early (before svc.Execute updates the status to stopped).
This is picked up as service error and leads to restarting,
if restart-on-fail is configured for the windows service.
svc.Execute already guarantees that the application is exited after,
so that os.Exit call would be unnecessary.

This rework also adds graceful shutdown, which also resolves the
underlying root cause. The graceful shutdown is not guaranteed
to succeed, since the service controller can decide to kill
the service any time after exceeding a shutdown timeout.

Kubernetes-commit: f243c8877978cf3d328c536b36cdf0ef5ca08a37
 2019-01-25 00:34:42 +01:00
Mehdy Bohlool 0fbb46dc25 Remove the propagated scheme from the Admission chain 
Kubernetes-commit: cebb4ee2ac9e19fe90f78c3285978e585e67a3ac
 2019-02-16 13:28:14 -08:00
Justin SB 3883f41494 Add code comments to guard inadvertent removal of insecure-bind-address 
Though the flags are deprecated, the deprecation process revealed that
the flag is important for health checks in more secure environments.
Add a link to #43784 to help developers understand why the flags have
not yet been removed.

Issue #43784
Issue #74172
Issue #59018

Kubernetes-commit: 7dbbab0476b35b74f600f62b6751212ed3afe574
 2019-02-18 12:58:59 -05:00
David Eads 743057093a allow apiservers to override the list of decorators 
Kubernetes-commit: ad740bbba58e48d5ff8353419066b7fd30abfa45
 2019-02-18 14:24:14 -05:00
David Eads af92b436cc prevent unhandled errors on colliding poststarthook registration 
Kubernetes-commit: 8d0c56e22f73fdb1a82a12475909e7d69f4bec08
 2019-02-14 14:07:18 -05:00
Marek Counts c7299d9da0 Moved flag and globalflag 
Moved all flag code from `staging/src/k8s.io/apiserver/pkg/util/[flag|globalflag]` to `component-base/cli/[flag|globalflag]` except for the term function because of unwanted dependencies.

Kubernetes-commit: 7744f908306e5131be5a94815ac76a7cba6454f2
 2019-02-15 10:28:13 -05:00
Haowei Cai b6257312c8 add test 
Kubernetes-commit: 49af9e5ff3ad143d4dac9c90f5b91fbceaa56449
 2019-02-14 16:38:06 -08:00
Haowei Cai 103a5b29b5 expose openapi service from genericapiserver 
Kubernetes-commit: efae739d02bec5bd74bfda75f3c125dab1376196
 2019-02-14 14:33:20 -08:00
Justin SB bf98046128 Remove executable file permission from OWNERS files 
Kubernetes-commit: dd19b923b7c26420af39fcf4eedfa213b236c8d3
 2019-01-03 12:18:20 -05:00
Chao Xu fbe608d634 Loosing the request body size limit to 100MB to account for the size 
ratio between json and protobuf.

Kubernetes-commit: 27166e48b86bf19570ae4e57775906cca1f52ad0
 2019-02-07 14:43:35 -08:00
Chao Xu 4ebbf20f41 Adding a limit on the maximum bytes accepted to be decoded in a resource 
write request.

Kubernetes-commit: b971b12d3cfa8887aa87957fbba92b90e3e99dc6
 2019-02-06 16:58:24 -08:00
Chao Xu b1f08321f6 Simplify the resource_encoding_config.go, since we don't need per group override at all 
Kubernetes-commit: 4ea07084dddde5be97d5405696fae47bca4d4663
 2018-09-28 16:07:31 -07:00
Chao Xu f516170e82 Remove unnecessary group storage version defaults. The storage version 
is either decided by the schema's version priority, or by the per
resource override.

This fixes a bug where the "batch" group is encoded in v1beta1, which
was hidden when --storage-versions is a valid flag.

Kubernetes-commit: 98a1003f57988ccc361af7aee5d0ae49de66dbb4
 2018-08-21 17:45:14 -07:00
Dr. Stefan Schimanski 9c9f2c012a apiserver: fix openapi extension types to be JSON 
Kubernetes-commit: e67d5f2d8dbbc45d28d0fd5566747ef0df93eb6d
 2019-02-07 15:34:42 +01:00
PingWang b8e8ca734e Fix function comment 
Signed-off-by: PingWang <wang.ping5@zte.com.cn>

Kubernetes-commit: 7750422a9d5038a2b9da5b79990ceff406434f77
 2018-11-10 15:38:56 +08:00
Roy Lenferink 4c9524b9fb Updated OWNERS files to include link to docs 
Kubernetes-commit: b43c04452f3b563473b5c2a765d4ac18cc0ff58f
 2019-01-30 20:05:00 +01:00
Chao Xu f60d1ce95c Set the maximum size increase the copy operations in a json patch can cause 
Kubernetes-commit: f001f9e1dbce644a1b7d22b370ab37fc7d770c7e
 2019-02-04 11:15:16 -08:00
Antoine Pelisse 337fc9ccde API Machinery, Kubectl and tests 
Kubernetes-commit: 0e1d50e70fdc9ed838d75a7a1abbe5fa607d22a1
 2019-01-16 21:14:42 -08:00
vsamidurai 77c59f4906 update docs.go files under staging/src/k8s.io/apiserver/pkg/server 
Kubernetes-commit: 03d892a44df6dbcac7ad28f1519d7d606f42e1ee
 2019-02-03 20:43:13 +00:00
Michal Fojtik 15d93876c8 Wait for post-hooks to run before checking the healthz output 
Kubernetes-commit: 8a2f709b35e750a40b12ccf287e279b1da0f07ec
 2019-01-30 09:34:43 +01:00
Kubernetes Prow Robot cb1e16cec7 sync: squashed up to merge 1f7e9fd9a2b31ee21babef2cbdd18caeb8c14cdc in e72b32558c8e9ed16690ef5a8e909c12fcc47f87 2019-02-01 14:44:40 +00:00
Jordan Liggitt 123cf8011f Remove alpha InitializerConfiguration types, Initializers admission plugin 
Kubernetes-commit: dc1fa870bff65c20f48a83ea3af54adb3f526e28
 2019-01-16 10:19:44 -05:00
Jordan Liggitt 35fe690052 remove deprecated openapi paths in favor of /openapi/v2 
Kubernetes-commit: 52519ecb1cfd1b55995684520196dd71e1886754
 2019-01-21 16:33:41 -05:00
Dr. Stefan Schimanski db5a1882b5 apiserver: sync with https server shutdown to flush existing connections 
Kubernetes-commit: 5b47f99164d76b6b043d7de2d3834abeda6685b0
 2019-01-16 15:58:53 +01:00
danielqsj e0406b8675 Change endpoints metrics to conform guideline 
Kubernetes-commit: 88c4b644005c5f674e9d03abae7e1cccda4fd23e
 2018-12-26 22:29:13 +08:00
Patrick Barker 3039935d60 adds dynamic audit integration test 
Kubernetes-commit: d995047366153d86f0061b829ee4e7657f17996b
 2018-10-16 16:17:33 -06:00
Marek Counts 0550db794e move logs into component-base 
all the code changes to move move /apiserver/pkg/util/logs into /component-base/logs

Kubernetes-commit: ba81a5409affb6b861d5994c1e2f7c74a05826e5
 2019-01-17 09:06:12 -05:00
qingsenLi 1e20513561 fix typo and instead of amd 
Kubernetes-commit: 3e83f0f08abab4c10dfab7053529709883c9b834
 2018-10-30 01:27:50 +08:00
Jordan Liggitt 2109711572 Remove build/verify scripts for swagger 1.2 API docs, API server swagger ui / swagger 1.2 config 
Kubernetes-commit: 9229399bd6049bc7766829b436d5cb5fe0dfe2f1
 2019-01-15 10:44:36 -05:00
Davanum Srinivas 0202761ce2 Ensure we set a content-type for healthz 
Change-Id: I453b1433c69bf26c28da873dbdd1ac25006b8d60

Co-Authored-By: Tim Allclair (St. Clair) <tallclair@google.com>

Kubernetes-commit: eedb70355ad59f9d7054dba198a8352554274e0a
 2019-01-03 10:05:58 -05:00
immutableT 9c474d9c53 require timeout to be greater than zero. 
add unit test to cover timeout behaviour.

Kubernetes-commit: 39aca564749cd92ed1cfec7129eb3f6593549137
 2019-01-04 17:06:07 -08:00
immutableT d9414ee2ab Expose kms timeout value via encryption config. 
Kubernetes-commit: a4dc53cfeb91ee07cedcc6959e88e30cb0c3cca8
 2019-01-03 14:26:57 -08:00
Dr. Stefan Schimanski efb664a483 kube-apiserver: add e2e graceful shutdown integration test 
Kubernetes-commit: a2e19f1228b365f17401b1e958a6bb684e65fd65
 2018-12-19 12:42:22 +01:00
Dr. Stefan Schimanski 12d1c63697 apiserver: check that request fail after shutdown 
Kubernetes-commit: c0d8ad1578efe52df3ca6bc57a90a623d1d2e482
 2018-12-19 12:41:58 +01:00
Davanum Srinivas b87560e3bd Log Health Check failure at Verbosity Level - 4 
Our default recommendation as well as our CI default is 4, so we should
be able to see the health check errors at the same level 4 itself.

Change-Id: I388f945d3522d1f63f0a85f35e765c2d4f2c548a

Kubernetes-commit: 3d6b3857b29b9c738f258344781ce4a9b40b9a0b
 2019-01-06 21:32:57 -05:00
Davanum Srinivas e2884e1186 Revert "Generate Stack Traces for http response with status code zero" 
Does not help with the bug investigation. the http server is designed to
panic when the http status code is `0`.

This reverts commit 72792d59f46f822cf360e797d886e582a6a2dc60.

Kubernetes-commit: 85ae15621af1d71caf5d0bac2299d17ec1020664
 2019-01-04 15:26:07 -05:00
Jordan Liggitt fe4a2dbfb0 preserve behavior of ignoring invalid --runtime-config keys and api/all=false 
Kubernetes-commit: fc3fca2857a18464cfff8aff5f9e4b062f293ac5
 2019-01-04 13:50:21 -05:00
David Eads 1702e95788 fix typo in warning advice for permissions 
Kubernetes-commit: 1105e4e0d1c0e78e2a203a136e9f8bcaff5c36ab
 2019-01-04 09:58:06 -05:00
Han Kang e16a86073e add a content-type filter to apiserver filters to autoset nosniff 
Kubernetes-commit: d0532bdb9ab40e06ee0702481f623d5054c8831a
 2019-01-04 14:06:46 -08:00
Davanum Srinivas 2b1eeee742 Generate Stack Traces for http response with status code zero 
When we spit out a http reponse with a `0` http status code we
should log a trace back so we can easily find where things went wrong.

Change-Id: Ic2aadec3a3de85fbdf64da66d6d12e3c631f409d

Kubernetes-commit: 72792d59f46f822cf360e797d886e582a6a2dc60
 2019-01-03 16:52:36 -05:00
Dr. Stefan Schimanski 7d47897b55 apiserver: separate transport setting from storagebackend.Config 
Kubernetes-commit: 7b242533a217bd809e2c846c3e3fadf7bf6edee8
 2018-09-12 10:59:01 +02:00
Jordan Liggitt 837d33c6f5 Allow enabling/disabling specific extensions/v1beta1 resources 
Kubernetes-commit: e016e132f519dbfb63ce09f6084d6dd64617f615
 2018-12-20 13:08:14 -05:00
Jordan Liggitt 7b0f961e27 Remove uses of extensions/v1beta1 clients 
Kubernetes-commit: fd9e9b01b1c79c47c7edb4980468f2675daebf27
 2018-12-19 11:18:53 -05:00
Jordan Liggitt a3f2a871b3 Surface help for insecure ports to explain how to disable 
Kubernetes-commit: 819b502768034b8104904cd7031db8c4838f900a
 2018-11-30 10:52:37 -05:00
Jordan Liggitt 232ebfaeaf Allow kube-scheduler to tolerate cluster auth config lookup failure 
Kubernetes-commit: 416e11421590838f0022242bff1db10da595b074
 2018-12-05 13:51:06 -05:00
Dr. Stefan Schimanski b4ca200ede apiserver: add component label to request metrics 
Kubernetes-commit: 7190b17e5a52a7c0673c2e8a30cbe95f2847a6df
 2018-11-29 16:30:15 +01:00
Jintao Zhang cc459864cf remove duplicate word 
Signed-off-by: Jintao Zhang <zhangjintao9020@gmail.com>

Kubernetes-commit: b32bd6e812138faa218a0ab906989fdca27843a2
 2018-12-03 19:24:45 +08:00
Jordan Liggitt d294e6b5b4 Update non-test code to use DefaultMutableFeatureGate 
Kubernetes-commit: d440ecdd3b41a4fc4a207195e1bb976422d6d35e
 2018-11-20 23:59:52 -05:00