kubernetes
/
apiserver
mirror of https://github.com/kubernetes/apiserver.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
4,273 Commits 30 Branches 1,482 Tags 31 MiB
Commit Graph

4273 Commits

Author SHA1 Message Date
Nabarun Pal e1246225c0 update gogo/protobuf to v1.3.2 
gogo/protobuf@v1.3.2 fixes https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3121

Ref: https://github.com/kubernetes/client-go/issues/927

Signed-off-by: Nabarun Pal <pal.nabarun95@gmail.com>

Kubernetes-commit: 9cada2ec3ba793597606a1df1375ff8e8311ccf3
 2021-01-27 18:01:27 +05:30
Mike Spreitzer b2c3c4f86c Tweak up TestSampler in response to review 
Kubernetes-commit: 736a87a4ee516a3feca0a79a4c48806ad4916aa3
 2021-01-24 23:38:48 -05:00
David Eads 4925be5c06 Update delegated authorization options default to eliminate unnecessary 
SARs

healthz, readyz, and livez are canonical names for checks that the kubelet does.  By default, allow access to them in the options. Callers can adjust the defaults if they have a reason to require checks.

system:masters has full power, so the authorization check is unnecessary and just uses an extra call for in-cluster access.  Callers can adjust the defaults if they have a reason to require checks.

Kubernetes-commit: cebce291ddcb8490a705c79623c0b4f13faef6e7
 2021-01-22 16:16:14 -05:00
Mike Spreitzer 39f5df86ff Added comment explaining the new unit test 
Kubernetes-commit: 42f8d4e28fc05f3532f5cf7d2294049e3314896a
 2021-01-18 00:57:09 -05:00
Kevin Wiesmueller 08a5711ffb update bazel 
Kubernetes-commit: a06f981fb1388976cd6427d7a4284d36dd2f2448
 2021-01-14 20:33:50 +01:00
Kevin Wiesmueller a29734176f use managedFields admission controller in create/patch/update 
Kubernetes-commit: 3d306e222de3b13a55030a53fef93622bb300646
 2021-01-14 20:15:11 +01:00
Kevin Wiesmueller 4a5fdad93b implement managedFields admission controller 
Kubernetes-commit: d5ae113e8dfba62709b1fccb8dbc26c6dde9b3e5
 2021-01-14 20:14:38 +01:00
pacoxu 2343af38bb fix all keps links 404 for kep folder migration 
Signed-off-by: pacoxu <paco.xu@daocloud.io>

Kubernetes-commit: a10bdfed09e96f3c2703454caafa2c884914e064
 2021-01-14 14:03:21 +08:00
Mike Spreitzer 60021e2fed Explain warnings in new test 
Add info message that explains what warnings are deliberate and expected.

Kubernetes-commit: 194c22fed54ba89d985085412795a9850bedeaf3
 2021-01-06 12:56:16 -05:00
Mike Spreitzer 71c9d22768 Add unit test for sample-and-watermark histograms 
Kubernetes-commit: 5fe48be506fe2b946d4db9cd7976ad0c4d4e7e1a
 2021-01-05 23:31:06 -05:00
Abu Kashem c4f555497d add unit test to simulate an enqued request that times out 
Kubernetes-commit: 1d691ddb44e8dfa54008977469201a811410f7e9
 2020-12-21 12:08:58 -05:00
yoyinzyc 1a8abfc56f add context to metrics in util/flowcontrol. 
Kubernetes-commit: 57d0bc301a017c41d890baee0a3a287f448c664d
 2020-12-16 17:08:43 -08:00
yoyinzyc 74c8267082 add context to metrics in apiserver/endpoint 
Kubernetes-commit: 266d67bd5124725befe775d580289b67a59f496c
 2021-01-20 13:13:00 -08:00
tanjing2020 4785d0d3e4 fix staticcheck failures on vendor/k8s.io/apiserver/pkg/endpoints 
Kubernetes-commit: c38a06bca6bb360caf9bc679ba19a5a4be662bd1
 2020-12-11 14:23:30 +08:00
yoyinzyc 387f5c3a09 add context to metrics in apiserver/authentication 
Kubernetes-commit: 5311d711ecef241ab99266273180be81b373e43a
 2020-12-10 12:11:21 -08:00
yoyinzyc 6f3753addf add context to metric in apiserver/audit 
Kubernetes-commit: 4ba3f1a982227a30b083f6359e76a616e9eabfd1
 2021-01-20 12:04:41 -08:00
Ling Samuel 59be6d306d api-server add --lease-max-object-count 
Signed-off-by: Ling Samuel <lingsamuelgrace@gmail.com>

Kubernetes-commit: c8db72c38c34a965800bd9d570c495c45f142186
 2020-12-07 10:45:44 +08:00
Abu Kashem 026eb846a4 apiserver: plumb context with request deadline 
- as soon as a request is received by the apiserver, determine the
  timeout of the request and set a new request context with the deadline.
- the timeout filter that times out non-long-running requests should
  use the request context as opposed to a fixed 60s wait today.
- admission and storage layer uses the same request context with the
  deadline specified.

we use the default timeout enforced by the apiserver:
- if the user has specified a timeout of 0s, this implies no timeout on the user's part.
- if the user has specified a timeout that exceeds the maximum deadline allowed by the apiserver.

Kubernetes-commit: e416c9e574c49fd0190c8cdac58322aa33a935cf
 2020-11-26 23:53:20 -05:00
Kubernetes Publisher d4c9a19592 Merge pull request #98456 from SataQiu/fix-apiserver-log-20210127 
Fix the bug that network proxy logging http-connect mode in all cases

Kubernetes-commit: b3dd01da497f4f9f81ffb2ebf275ff08cbfebaa2
 2021-01-28 08:17:30 +00:00
Kubernetes Publisher c80f95d0b2 Merge pull request #98138 from lala123912/log_format_admission 
staging/src/k8s.io/apiserver/pkg/admission: migrate to structured logs

Kubernetes-commit: e0bba105cca88c897c60ad80d4aa0a54c984dbb5
 2021-01-27 12:17:06 +00:00
SataQiu ae6d1f2a91 fix the bug that network proxy logging http-connect mode in all cases 
Signed-off-by: SataQiu <1527062125@qq.com>

Kubernetes-commit: 1690d6d011dd00360f2bbd1ae85897a726b60c85
 2021-01-27 12:09:11 +08:00
Kubernetes Publisher a142cfc6bd Merge pull request #98355 from MikeSpreitzer/smaller-sharding-test 
Less demanding test cases in TestUniformDistribution

Kubernetes-commit: f4250198eac34e1adae7c627b9cb0cb4252bdb1e
 2021-01-26 16:28:48 +00:00
Kubernetes Publisher bbf6fde382 Merge pull request #97882 from ialidzhikov/staticcheck/x509 
Fix staticcheck in staging/src/k8s.io/apiserver/pkg/authentication/request/x509

Kubernetes-commit: f5bb2c19b9b6a4138e67c6da82e477e50a1ce5ae
 2021-01-25 19:20:33 +00:00
Kubernetes Publisher aa1a78426c Merge pull request #98312 from deads2k/finish-export-option-removal 
finish removal of exportoptions

Kubernetes-commit: b7fc3f91ea64eff4be673449e08df581eeddf42c
 2021-01-25 19:20:32 +00:00
Mike Spreitzer 5d4804815d Less demanding test cases in TestUniformDistribution 
Also a bug fix in the evaluation.

Kubernetes-commit: 1f1e8e21d81c4ff75078adc163bf2872d1b4650e
 2021-01-25 01:44:08 -05:00
Kubernetes Publisher 502c59e0f0 Merge pull request #98273 from wenjiaswe/patch-2 
Remove unused expectedRV in store_test TestGet

Kubernetes-commit: 308aa1a87ac24355858746877726824de64290c8
 2021-01-23 15:20:19 +00:00
David Eads 67507290ad finish removal of exportoptions 
Kubernetes-commit: 37cc89ed8d5194f288bc9f9633e6142647631a07
 2021-01-22 09:21:56 -05:00
Kubernetes Publisher 864a7c9c18 Merge pull request #97814 from deads2k/podlogs-metrics 
add metrics for insecure backend proxy

Kubernetes-commit: 661eae7c7c8226a3f7bed3a24acf1c22861477b7
 2021-01-21 23:19:50 +00:00
Wenjia 15c145e78b Remove unused expectedRV in store_test TestGet 
expectedRV is defined in tests struct  but not set in test cases, removing the unnecessary checking

Kubernetes-commit: f8f36c672776bb00b2d53c5d49e92b1bfb608516
 2021-01-21 11:27:57 -08:00
Kubernetes Publisher 99942e1cc3 Merge pull request #98252 from lala123912/log_format_audit 
staging/src/k8s.io/apiserver/pkg/audit/policy/reader.go: migrate logs to structured logging

Kubernetes-commit: 5856883274a52c0d7db0a7f4fa81d55778b2c844
 2021-01-21 11:20:30 +00:00
lala123912 cebcef9fb1 staging/src/k8s.io/apiserver/pkg/audit/policy/reader.go migrate logs to structured logging 
Kubernetes-commit: eb8f8368bc33a46c0ec595e3f015979420b49a5c
 2021-01-21 11:43:30 +08:00
Kubernetes Publisher 5c8a24e0c5 Merge pull request #97953 from mborsz/deflog 
Add trace to SerializeObject

Kubernetes-commit: 60146fd08cae97d3eff3aed594b493f65b1730f8
 2021-01-20 23:31:00 +00:00
Kubernetes Publisher d9c484cb1c Merge pull request #98093 from lala123912/log_format 
staging\src\k8s.io\apiserver\pkg\endpoints: migrate to structured logs

Kubernetes-commit: b99fc0bb3afbb431b0bf3cf93b6fa23f074f4c48
 2021-01-20 15:20:10 +00:00
Kubernetes Publisher eb676eb91b Merge pull request #98208 from mborsz/patch-14 
Print queue lengths on watch termination

Kubernetes-commit: 28f713a19d5b20de0444fcdc6754644a3255ef28
 2021-01-20 15:20:08 +00:00
Kubernetes Publisher c469c23398 Merge pull request #98196 from YoyinZyc/add_context_to_apiserver 
Apply WithContext to metrics in apiserver admission webhook

Kubernetes-commit: 17f040034a0c4ca18fa6140be3d8ccb03369918f
 2021-01-20 04:25:59 -08:00
Maciej Borsz 5d1582cdd6 Print queue lengths on watch termination 
Kubernetes-commit: 8f8beeabb7deb04624c70444012ebc8ba59d990f
 2021-01-20 09:32:00 +01:00
lala123912 887895128f staging/src/k8s.io/apiserver/pkg/admission: migrate to structured logs 
Kubernetes-commit: 2dc8cadd00962512fa90c460b9fa86a175ca73fc
 2021-01-18 17:19:32 +08:00
lala123912 5d990a9e20 staging\src\k8s.io\apiserver\pkg\endpoints:migrate to structured logs 
Kubernetes-commit: 12076ff3e587be00f1ef52e546fa3a3a85d41e7b
 2021-01-15 15:23:55 +08:00
Maciej Borsz 78e27f49d3 Add trace to SerializeObject 
Kubernetes-commit: e93836d9b35f5ec231da91807f00dab3d1a28fd9
 2021-01-12 09:45:43 +01:00
ialidzhikov 1b82145bb1 Fix staticcheck in staging/src/k8s.io/apiserver/pkg/authentication/request/x509 
Signed-off-by: ialidzhikov <i.alidjikov@gmail.com>

Kubernetes-commit: 5771ea733ffbcff823517a4c51ebcadf11122578
 2021-01-10 00:32:42 +02:00
David Eads 2ea61962bd add metrics for insecure backend proxy 
Kubernetes-commit: 782a7a54269cba12bd16f90347127c9efd41fa36
 2021-01-07 11:25:43 -05:00
yoyinzyc 4c292300d7 add context to metrics in apiserver admission webhook 
Kubernetes-commit: b3aeaa4ed7bf8d419a96b4456a97bdf4c29e4330
 2020-12-09 16:46:15 -08:00
Kubernetes Publisher cbff8a83d7 Merge pull request #96552 from pandaamanda/klog_fmt 
use klog.Info and klog.Warning when had no format

Kubernetes-commit: 8bf42039e62d001f5d0331753bd99790b70d51eb
 2021-01-16 05:09:18 +00:00
Kubernetes Publisher a588cec107 Merge pull request #98023 from tkashem/fix-test 
fix apf controller unit test

Kubernetes-commit: e059af640627c7be36b00c1d10a4d511e283d9b4
 2021-01-14 01:09:14 +00:00
Kubernetes Publisher a01efc7338 Merge pull request #97957 from yue9944882/aa-server-apf-optionality 
Disables APF if the aggregated apiserver cannot locate the core kube-apiserver

Kubernetes-commit: 5c58b222516c0c8547d2f699b7582db9df09df8d
 2021-01-13 17:06:38 +00:00
Kubernetes Publisher f297286279 Merge pull request #96502 from 249043822/br-hsts 
Fix HSTS Missing From HTTPS Server(Nessus Scanner)

Kubernetes-commit: 33518271f3f97733a52369713769746f78cc4f1a
 2021-01-13 17:06:34 +00:00
Abu Kashem 84ce907827 fix apf controller unit test 
- don't expose the internal states of the apf controller to the caller
- return a boolean, instead of the priority level states

Kubernetes-commit: f20c6cb2d9060920cae9ff5cade1739c7e0b7f7a
 2021-01-13 11:06:17 -05:00
Kubernetes Publisher fbd608a836 Merge pull request #97786 from pacoxu/staticcheck/apiserver-storage 
fix static check for vendor/k8s.io/apiserver/pkg/storage/etcd3/

Kubernetes-commit: ef3337a443b402756c9f0bfb1f844b1b45ce289d
 2021-01-12 17:05:38 +00:00
Kubernetes Publisher 2100cfae2d Merge pull request #97954 from yue9944882/fixes-nil-panic-for-delegated-auth-options 
Fixes nil panic for nil delegated auth options

Kubernetes-commit: 564b0e55c7007745500d579356897848aaacb9dd
 2021-01-12 17:05:36 +00:00
yue9944882 9db9b5f556 disables APF if the aggregated apiserver cannot locate the core kube-apiserver 
Kubernetes-commit: 02df343437ca9331ab6b0a0de65858c68ba47a54
 2021-01-12 18:08:46 +08:00