kubernetes
/
apiserver
mirror of https://github.com/kubernetes/apiserver.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
4,026 Commits 30 Branches 1,482 Tags 31 MiB
Commit Graph

4026 Commits

Author SHA1 Message Date
Kubernetes Publisher a5a44dbcd1 Merge pull request #92644 from wojtek-t/informers_readyz 
Wait for all informers to sync in /readyz.

Kubernetes-commit: 4c853bb28f57f87fbb2c1c6f2845c701d90c2350
 2020-07-01 13:11:25 +00:00
Kubernetes Publisher 62ce3afea6 Merge pull request #92537 from wojtek-t/fix_reflector_not_making_progress 
Fix bug in reflector not recovering from "Too large resource version"…

Kubernetes-commit: ed06981eab5e037b7d5b090b257054abb4d42ea0
 2020-07-01 09:16:06 +00:00
Kubernetes Publisher 0b2eb84e48 Merge pull request #92197 from deads2k/verbose-fix 
make log output of failed healthchecks more focused

Kubernetes-commit: 5d7ccd1e401ca5772f05c6666f3146ca73b8f395
 2020-07-01 09:16:02 +00:00
yue9944882 be18e41882 fixes suggested default rules 
Kubernetes-commit: a98f68e5b9cad08f4fc03665ca3a52cad69ed6f0
 2020-07-01 15:26:02 +08:00
Benjamin Elder b237a2fd9f remove david-mcmahon from reviewers 
Kubernetes-commit: d8f2b131b52b5f296818da50e66bba51a1e05c01
 2020-06-30 14:06:58 -07:00
Jordan Liggitt 44888212c2 Generated code 
Change-Id: I974a2cddc090fcb645b982959e06415a951b8f15

Kubernetes-commit: 03d322035d2f199f2163658d94a153ed2b9de667
 2020-06-30 16:31:28 -04:00
Jordan Liggitt ff5372c83d Add warnings capability for admission webhooks 
Kubernetes-commit: 5eef60a00aeb18eda4238dbd8f6dc96930a6a05a
 2020-06-30 16:27:56 -04:00
Benjamin Elder d679efcdd9 eparis to emeritus 
Kubernetes-commit: 2abc8afececeadad26c6bb90d3b096f2b8008131
 2020-06-30 09:50:44 -07:00
Jordan Liggitt 8678cf0cae Generated files 
Kubernetes-commit: ddfe1372549c57c36bb5c3077584d448f117e706
 2020-06-29 12:46:44 -04:00
Kubernetes Publisher 1723c05a3e Merge pull request #91505 from jpbetz/rv-semantics 
Consistent Resource Version Semantics for List

Kubernetes-commit: 27aca3f7c2f06925dd1890cd8b0522b775b0e323
 2020-06-27 13:20:56 +00:00
Joe Betz 5bb316ec73 Bump to sigs.k8s.io/structured-merge-diff 43c19b to pick up unsetting fields changes PR#166 
Kubernetes-commit: 11c38a9c703b825c61d6490e8da85202b760f3b1
 2020-06-26 20:05:34 -07:00
Marek Siarkowicz 7cceaeb742 Update k8s.io/klog to v2.2.0 
Kubernetes-commit: e72521e1d7e2eef32e78828ab111670fe2f591ae
 2020-06-26 19:09:04 +02:00
Kubernetes Publisher a54a193e04 Merge pull request #91366 from giuseppe/cgroupfs-cgroupv2 
vendor: update google/cadvisor and opencontainers/runc

Kubernetes-commit: a03db636daef0417218ef8c108c0a6530d2ef368
 2020-06-26 13:16:41 +00:00
wojtekt cd5511f16a Fix bug in reflector not recovering from "Too large resource version" errors 
Kubernetes-commit: 3704174f95c7311e025284ef30bb56945fa6e7cc
 2020-06-26 09:45:29 +02:00
Kubernetes Publisher b0635c3023 Merge pull request #92503 from wojtek-t/enable_index_for_pods 
Bump SelectorIndex to beta

Kubernetes-commit: cb37c0884664fd2f4a2800661cf92d7c32ee9143
 2020-06-25 21:26:56 +00:00
wojtekt f2a7cd49e0 Bump SelectorIndex to beta 
Kubernetes-commit: 5aafaefa4a742220706ea6fe06d70bab3260476f
 2020-06-25 11:58:32 +02:00
Kubernetes Publisher ee676f25d5 Merge pull request #92424 from serathius/optimize 
Improve performance of http access logs

Kubernetes-commit: da37fcd02d802cd348e68a84e16e254e7d9f3f12
 2020-06-24 12:55:09 +00:00
Kubernetes Publisher cb1957e009 Merge pull request #92438 from liggitt/1.14 
go1.14 fixup

Kubernetes-commit: 4de511a4cfdb8e49e804be18245911bf3270fb2f
 2020-06-24 09:24:55 +00:00
Giuseppe Scrivano 3c101d9e06 vendor: update google/cadvisor and opencontainers/runc 
Signed-off-by: Giuseppe Scrivano <gscrivan@redhat.com>

Kubernetes-commit: a6a3bf2eb4a0b7e9f86f991ffc24b72beafce2f4
 2020-06-24 10:56:34 +02:00
Jordan Liggitt 6f39d15e1d go1.14: run hack/update-vendor.sh 
Kubernetes-commit: d9bb0b8ee18fe68654ef1a68611f905859b3b7bc
 2020-06-23 17:01:33 -04:00
Marek Siarkowicz 5587d5c607 Improve performance of http access logs 
Fixes:
* Don't call LogArgs if log will not be written due low verbosity
* Create separate slice for hijacked to avoid append on main path
* Shorten log message as this log is to common to be verbose

name           old time/op    new time/op    delta
WithLogging-4    4.95µs ± 3%    3.52µs ± 1%  -28.80%  (p=0.000 n=10+8)

name           old alloc/op   new alloc/op   delta
WithLogging-4    2.93kB ± 0%    1.22kB ± 0%  -58.45%  (p=0.000 n=10+9)

name           old allocs/op  new allocs/op  delta
WithLogging-4      32.0 ± 0%      20.0 ± 0%  -37.50%  (p=0.000 n=10+10)

Kubernetes-commit: 303e1c19225149868d735b5c876d8ca9d3e1b5c9
 2020-06-23 13:56:01 +02:00
Kubernetes Publisher 42312e1d68 Merge pull request #91634 from jpbetz/latest-utils 
Bump k8s.io/utils to 6e3d28 to pick up nested trace

Kubernetes-commit: a7e4973cb9d163fa9df2ecc0955d156d507a9a71
 2020-06-23 05:28:53 +00:00
Kubernetes Publisher 98295fa16f Merge pull request #88638 from justaugustus/go1140 
Update Golang to v1.14.4

Kubernetes-commit: f2534f2c20d722f539e1e51c0f10c3caa8121b43
 2020-06-22 17:59:40 -07:00
Joe Betz dbe6fbc426 Bump k8s.io/utils to 6e3d28 to pick up nested trace 
Kubernetes-commit: 52838be7b22c53050d4e397c221f0b3c3842122c
 2020-06-19 10:17:13 -07:00
Maciej Borsz ea82586fc5 Wait for all informers to sync in /readyz. 
Kubernetes-commit: 3f680002038c81b02541e4cc4bd7c019b7e7d6e6
 2020-06-18 15:21:12 +02:00
David Eads 75c70e8856 make log output of failed healthchecks more focused 
Kubernetes-commit: e87f62dcd57fb455135e8cd6fb7e604afbc2e1c4
 2020-06-16 15:35:26 -04:00
Joe Betz ee219411ed Add ResourceVersionMatch parameter to make Resource Version semantics consistent for list 
Kubernetes-commit: e214f2408b59c745c199645547948a8ad2a87ac2
 2020-05-29 10:44:26 -07:00
cici37 4ab24fc5f7 Move client_builder to k8s.io/controller-manager 
Kubernetes-commit: 95acec5a3b4c07afba17b526e5cb031f8bb88630
 2020-05-26 17:01:36 -07:00
Li Bo 7f8013437d log tls handshake error at trace level to avoid error flooding, and add 
metric to count such errors

Kubernetes-commit: eabb362aa37f7acc85bc64f2035dadc5511d3716
 2020-05-20 11:29:44 +08:00
Mike Spreitzer e28ab56bd4 Introduce more metrics on concurrency 
Introduce min, average, and standard deviation for the number of
executing mutating and readOnly requests.

Introduce min, max, average, and standard deviation for the number
waiting and number waiting per priority level.

Later:

Revised to use a series of windows

Use three individuals instead of array of powers

Later:

Add coarse queue count metrics, removed windowed avg and stddev

Add metrics for number of queued mutating and readOnly requests,
to complement metrics for number executing.

Later:

Removed windowed average and standard deviation because consumers can
derive such from integrals of consumer's chosen window.

Also replaced "requestKind" Prometheus label with "request_kind".

Later:

Revised to focus on sampling

Make the clock intrinsic to a TimedObserver

... so that the clock can be read while holding the observer's lock;
otherwise, forward progress is not guaranteed (and violations were
observed in testing).

Bug fixes and histogram buckets revision

SetX1 to 1 when queue length limit is zero, beause dividing by zero is nasty.

Remove obsolete argument in gen_test.go.

Add a bucket boundary at 0 for sample-and-water-mark histograms, to
distinguish zeroes from non-zeros.

This includes adding Integrator test.

Simplified test code.

More pervasively used "ctlr" instead of "ctl" as abbreviation for
"controller".

Kubernetes-commit: 57ecea22296797a93b0157169db0ff2e477f58d0
 2020-05-17 01:02:25 -04:00
Monis Khan 952492c00c exec credential provider: wire in cluster info 
Signed-off-by: Monis Khan <mok@vmware.com>

Kubernetes-commit: f97422c8bd57692f5a1a3aa6dc6abc31051ebc82
 2020-05-06 01:01:09 -04:00
Stephen Augustus 58544edbdf apiserver/pkg/apis/config/validation: Add invalidURLErrFmt 
In go1.14, the following change to 'net/url' was made:
"When parsing of a URL fails (for example by Parse or ParseRequestURI),
the resulting Error message will now quote the unparsable URL. This
provides clearer structure and consistency with other parsing errors."

Here we add a new const, 'invalidURLErrFmt' to properly handle the now
quoted string in validation_test.go.

ref: https://golang.org/doc/go1.14#net/url

Signed-off-by: Stephen Augustus <saugustus@vmware.com>

Kubernetes-commit: b0f17c2918fe0d099fc59f17788ca60202a5ae1a
 2020-04-18 04:37:22 -04:00
Kubernetes Publisher a0553e7e83 Merge pull request #92350 from justaugustus/bbolt 
Update go.etcd.io/bbolt to v1.3.5

Kubernetes-commit: f6eeab819c3f9ebbba973eb1ccffc69401d8930e
 2020-06-23 01:26:18 +00:00
Kubernetes Publisher ddcd1c62bf Merge pull request #91833 from AkashSarda/structured_logging 
Structured logging for Apiserver [Issue #1602 Structured logging]

Kubernetes-commit: db194acd69471a0e94837858914da4ff49a23314
 2020-06-23 01:26:16 +00:00
Stephen Augustus 084b0eccad Update go.etcd.io/bbolt to v1.3.5 
Signed-off-by: Stephen Augustus <saugustus@vmware.com>

Kubernetes-commit: 2ec37d94fa8e748b7a813f92e06487e9bfbe9e1b
 2020-06-20 21:09:52 -04:00
Kubernetes Publisher f268991b9d Merge pull request #92265 from wojtek-t/cacher_logs 
Add initialization logs to watchcache

Kubernetes-commit: 403716626d126c850c233a85977de0e6ce60d8ec
 2020-06-19 21:32:16 +00:00
Kubernetes Publisher d181f6f83f Merge pull request #92219 from voor/update-golang-text 
[security] Vulnerability in golang.org/x/text/encoding/unicode v0.3.2

Kubernetes-commit: 08ab50d1a870d12044081f58c6f9fa18b989597f
 2020-06-19 21:32:13 +00:00
Kubernetes Publisher a90a50d0c3 Merge pull request #91873 from kwiesmueller/fix-crd-update-bug 
Fix FieldManager Conversion Error for CRD Updates

Kubernetes-commit: 7a68eac8f7ffe80399076433e1c24260d0ae9a1c
 2020-06-19 05:27:04 +00:00
Kubernetes Publisher 6fbbcc36ee Merge pull request #91822 from gongguan/rm-capacity 
remove deprecated cacher CacheCapacity config

Kubernetes-commit: 74c7b9836b813489b90de606f0943f54bebf2997
 2020-06-19 05:27:02 +00:00
Kubernetes Publisher 92e1adf1cd Merge pull request #90967 from yue9944882/feat/apf-debug 
Introducing APF debugging endpoint w/ three levels of granularity

Kubernetes-commit: eab28c7ab403190a9ac86b0544c81462cdc0fc2e
 2020-06-19 05:27:00 +00:00
Kubernetes Publisher 3b3b51070b Merge pull request #90140 from enj/enj/i/token_cache_annotations 
Force token cache to support audit annotations

Kubernetes-commit: 4aa98f42786c7bd2a8a5f98d7bd4a5a38b38f820
 2020-06-19 05:26:59 +00:00
Kubernetes Publisher 51732c2088 Merge pull request #92182 from sttts/sttts-non-tcp-listener 
apiserver: fix secure serving cast for non-tcp listeners

Kubernetes-commit: 6dced80b5a7de41d4caf7b287e78c84a4d8761e0
 2020-06-18 13:31:50 +00:00
wojtekt 8a4e4b61c9 Add initialization logs to watchcache 
Kubernetes-commit: 34b2cf7d2e1c09e10d97ec83e413c41ea7364d80
 2020-06-18 13:55:23 +02:00
Kubernetes Publisher f99af50eee Merge pull request #90523 from sttts/sttts-security-contacts 
Add myself to staging repo SECURITY_CONTACTS

Kubernetes-commit: d8febccacfc9d51a017be9531247689e0e36df04
 2020-06-18 09:30:15 +00:00
AkashSarda e0d29c69be Migrate API server logs to Structured logging framewrok 
Kubernetes-commit: af60e7b34d59d635740880a03e7e2587ec9ba041
 2020-06-17 21:06:35 +00:00
Robert Van Voorhees 5d0c50da7e [security] Vulnerability in golang.org/x/text/encoding/unicode v0.3.2 
Hello gophers,

Version v0.3.3 of golang.org/x/text fixes a vulnerability in the golang.org/x/text/encoding/unicode package which could lead to the UTF-16 decoder entering an infinite loop, causing the program to crash or run out of memory.

An attacker could provide a single byte to a UTF16 decoder instantiated with UseBOM or ExpectBOM to trigger an infinite loop if the String function on the Decoder is called, or the Decoder is passed to golang.org/x/text/transform.String.

transform.String has also been hardened not to enter an infinite loop if a Transformer keeps returning ErrShortSrc even if atEOF is true.

This issue was first filed as Issue 39491 by GitHub user abacabadabacaba and reported to the security team by Anton Gyllenberg. It is tracked as CVE-2020-14040.

Cheers,

Katie for the Go team

Kubernetes-commit: 3cef97e8b5f67b4a350ee7a51e68604732e46f58
 2020-06-17 07:57:05 -04:00
Kubernetes Publisher 65afa901f7 Merge pull request #92174 from gongguan/event-gone 
restore cacher event Gone tests

Kubernetes-commit: 1df459c2d0325fd0ed155bdd68b6605704d0575f
 2020-06-17 05:15:05 +00:00
Kubernetes Publisher 145408d2e5 Merge pull request #92069 from tapih/update-json-patch 
Update github.com/evanphx/json-patch to e83c0a1c26c884f8ec4fb743f6db9…

Kubernetes-commit: 81f84d3a1764e883441ff155a3c0fdc724a1b304
 2020-06-17 05:15:04 +00:00
Kubernetes Publisher ea6c651636 Merge pull request #91922 from Jefftree/netproxy-009 
Upgrade apiserver-network-proxy to v0.0.9

Kubernetes-commit: 51aac92f69a2c2e30e7b0cfea067a8fdfd13585d
 2020-06-17 05:15:02 +00:00
Dr. Stefan Schimanski 4b2cf85d1b apiserver: fix secure serving cast for non-tcp listeners 
Kubernetes-commit: 2c3687c255c014f7049eed159de30a82082656b6
 2020-06-16 13:31:32 +02:00