kubernetes
/
apiserver
mirror of https://github.com/kubernetes/apiserver.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
3,112 Commits 30 Branches 1,482 Tags 31 MiB
Commit Graph

3112 Commits

Author SHA1 Message Date
Jack Kleeman 51b8ce994d Dynamic serving certificate 
Reload certificate cert and key file from disk every minute and notify
the dynamic certificate controller when they change, allowing serving
tls config to be updated.

Kubernetes-commit: 3f5fbfbfac281f40c11de2f57d58cc332affc37b
 2019-10-22 19:10:40 +01:00
Kubernetes Publisher 9fbfc4e2ab Merge pull request #83797 from lavalamp/old_cache 
Benchmark for authn cache

Kubernetes-commit: 5b75e8409c64d9cf35fb6100a4b19f23b16ae324
 2019-10-24 03:03:24 +00:00
Kubernetes Publisher fea522acfc Merge pull request #83579 from deads2k/dynamic-cert-file-ca-bundle 
Dynamic cert file ca bundle

Kubernetes-commit: 0f1a8054f986d205a0202bf9b378c71e7ecc1710
 2019-10-23 23:03:47 +00:00
Kubernetes Publisher 07cd4dd74d Merge pull request #83665 from mars1024/feat/shuffle-sharding 
shuffle sharding package for priority and fairness

Kubernetes-commit: cd274ff270dadab3eb73eda85c8dd178668a0563
 2019-10-23 19:03:38 +00:00
Kubernetes Publisher 45ecb17a75 Merge pull request #83627 from jackkleeman/sni-cert-reload 
Plumb dynamic SNI certificates

Kubernetes-commit: 43c9c0740180090bb9a0d37dfaf91eb863a2cbde
 2019-10-23 07:07:30 +00:00
Kubernetes Publisher 0efdb495b4 Merge pull request #84167 from yutedz/health-path-prefix 
etcd health check key should have proper prefix

Kubernetes-commit: ea4570a412a918e24a89992c0daa80efda4a7ae5
 2019-10-22 11:02:02 +00:00
Kubernetes Publisher 7b8c488e22 Merge pull request #83427 from logicalhan/metrics-timeout 
Fix double counting issue for request metrics on timeout.

Kubernetes-commit: aa25739da416b68e966bef3c15e4f5281ebd1e85
 2019-10-22 07:02:08 +00:00
Ted Yu 0026dd975b etcd health check key should have proper prefix 
Kubernetes-commit: f4941e265e1a41a1b8846eae61a4049785cabb7e
 2019-10-21 17:03:24 -07:00
Han Kang 00d376192a rename metric for apiserver request terminations and reword corresponding documentation 
Change-Id: I47a9c7b10614afe85bb652fa61984f91848d6d65

Kubernetes-commit: f8f1def5f1d92a588f48ebc01293e142f8dd63fd
 2019-10-21 13:26:31 -07:00
Kubernetes Publisher 550b75f0da Merge pull request #84043 from wojtek-t/tweak_serialize_object_once 
Don't use CachingObject if the number of watchers is small

Kubernetes-commit: f9acca889cc4248e69d5ee9295a0628f6c2d2b3a
 2019-10-18 03:01:44 +00:00
Kubernetes Publisher ced80a6097 Merge pull request #83811 from immutableT/single-kms-mock 
Use single kms-plugin mock in unit and integration tests.

Kubernetes-commit: 1f8b3bfd98c8099c5830b2c329867fa29c2b2575
 2019-10-18 03:01:43 +00:00
Kubernetes Publisher 9cf86cb032 Merge pull request #83580 from jackkleeman/apiserver-cert-file-reload5 
Plumbing for dynamic apiserver serving certificates

Kubernetes-commit: a78a403f63165b470ea234002f8c293e50944c6c
 2019-10-17 23:01:35 +00:00
Kubernetes Publisher 26d3e9acc5 Merge pull request #83195 from wojtek-t/watch_bookmarks_ga 
Promote WatchBookmarks feature to GA

Kubernetes-commit: 006378fcc1c8db4f7063812b67a59969fc0d09f0
 2019-10-17 19:01:26 +00:00
Kubernetes Publisher 620d24168b Merge pull request #83555 from deads2k/dynamic-cert-kube-apiserver-wiring 
Dynamic cert kube apiserver wiring

Kubernetes-commit: 7d243bc2a6f20f98763fba4dc7cd69fdb6588a48
 2019-10-17 11:05:20 +00:00
Kubernetes Publisher 024f83ef63 Merge pull request #83238 from shturec/fixauditretry 
Sending non-blocking audit events to a webhook is retried on any error

Kubernetes-commit: 93586808aa8a50fa5521e4bc89db3980e526e6e9
 2019-10-17 11:05:18 +00:00
Kubernetes Publisher f1057d62fb Merge pull request #78541 from deads2k/timeout 
choose a more unique request timeout default

Kubernetes-commit: eb2deb66e5220323eac8030cfa923666939ffc61
 2019-10-17 07:01:20 +00:00
Kubernetes Publisher b4be7f41c9 Merge pull request #83970 from jpbetz/bbolt-v1.3.3 
Bump bbolt to v1.3.3

Kubernetes-commit: 5f43502060552d66a46fedf0997d699026d3593c
 2019-10-16 23:09:42 +00:00
wojtekt a76d249b96 Tweak use of caching objects 
Kubernetes-commit: c5170dfb66749b60a4a1611dc7b4a39e64b33e2e
 2019-10-16 09:05:13 +02:00
Kubernetes Publisher e7b9276b8c Merge pull request #83796 from enj/enj/i/token_cache_memory_limit 
Hash keys used in cached token authenticator

Kubernetes-commit: ccf5f7ba36c6ad296c4b0f59f1ed8ed73696fc97
 2019-10-15 23:05:59 -07:00
Joe Betz 25accf5baf Bump bbolt to v1.3.3 
Kubernetes-commit: 1db282bb3e2a92a704b5a2266b9515b5e73e9c6a
 2019-10-15 13:38:16 -07:00
immutablet 3079381054 Use single kms-plugin mock in unit and integration tests. 
Kubernetes-commit: 4d24b41410f2253c7b2f9e2b6d56910894016c61
 2019-10-11 15:25:05 -07:00
Monis Khan c2289feb1e Hash keys used in cached token authenticator 
It is possible to configure the token cache to cache failures.  We
allow 1 MB of headers per request, meaning a malicious actor could
cause the cache to use a large amount of memory by filling it with
large invalid tokens.  This change hashes the token before using it
as a key.  Measures have been taken to prevent precomputation
attacks.  SHA 256 is used as the hash to prevent collisions.

Signed-off-by: Monis Khan <mkhan@redhat.com>

Kubernetes-commit: 9a547bca8e6e15273bfafd3496aa6524fd7d35bd
 2019-10-11 15:21:34 -04:00
Kubernetes Publisher 0d1aa698ce Merge pull request #83858 from mrbobbytables/update-apiserver-owners 
Prune inactive reviewers from staging/src/k8s.io/apiserver/* OWNERS files.

Kubernetes-commit: 34db57b0071aa62f546020ad4d7cb603196dd0d7
 2019-10-14 19:00:47 +00:00
Kubernetes Publisher 28bb4eaefb Merge pull request #83678 from RainbowMango/pr_remove_prometheus_reference_from_storage 
Remove prometheus reference from storage

Kubernetes-commit: f7992c7a214cc9ffbf43a4d340c1c3e913f667e3
 2019-10-14 15:00:45 +00:00
Bob Killen 01b17215e9 Prune inactive owners from staging/src/k8s.io/apiserver/* OWNERS files. 
Kubernetes-commit: 20285dd4608d4dbe7c86a4997c8975bfbf6d1b1c
 2019-10-12 19:35:18 -04:00
Bruce Ma 87c35dc179 address some comments 
Clean up useless functions, only keep the basic function Deal
and the function DealIntoHand which will be used by Priority
and Fairness.

Improve some comments for constants and functions.

Introduce Dealer to combine parameters and methods into a whole.

Use fixed-size slice to improve performance.

Use math.Ceil and math.Log2 to calculate required entropy bits.

Make the given hand adaptive to handSize in DealIntoHand.

Signed-off-by: Bruce Ma <brucema19901024@gmail.com>

Kubernetes-commit: 7a3ca070cdd9804a22bf5db8a99576b09fc52484
 2019-10-11 20:06:31 +08:00
RainbowMango 92ea37b476 Deal with auto-generated files. 
- Update bazel by hack/update-bazel.sh
- Update vendor by hack/update-vendor.sh

Kubernetes-commit: 6764bf394856a0d0979131bf985ce73cec4da72a
 2019-10-09 22:01:46 +08:00
RainbowMango dfdab3a0c8 Remove direct reference to prometheus from apiserver/pkg/storage/value. 
Kubernetes-commit: 78d0f1827acfb8400d6e1622d55bdfed64b047ed
 2019-10-09 21:58:51 +08:00
Kubernetes Publisher 357923dfd1 Merge pull request #83801 from jpbetz/etcd-3_3_17_client 
Upgrade to etcd client 3.3.17

Kubernetes-commit: 5e2650883af75cfb09eb4a65b4fb0e7d867a104f
 2019-10-14 07:20:02 +00:00
Kubernetes Publisher ec095274d0 Merge pull request #83459 from deads2k/cert-reload-subject 
dynamic delegated authn header reload

Kubernetes-commit: 527f6e1b4e99efbc9774ffb33487ecd3b8cb666a
 2019-10-14 07:20:00 +00:00
Kubernetes Publisher 934c73955b Merge pull request #83785 from yastij/bump-utils-rangesize 
bump k8s.io/utils to pickup bug fix for rangesize func

Kubernetes-commit: 677903edc6cfe1fb045a55b0734ee05ce8c3d03c
 2019-10-14 07:19:59 +00:00
Kubernetes Publisher 87e106d504 Merge pull request #83610 from SataQiu/metrics-apiserver-20191008 
Eliminate direct references to prometheus from apiserver admission

Kubernetes-commit: 30603a8b58e1d14a7a1c1a62ca10f984d15bc083
 2019-10-14 07:19:57 +00:00
Kubernetes Publisher 1613cc8dee Merge pull request #83763 from jpbetz/revert-3316 
Revert #83735: Update etcd client to 3.3.16

Kubernetes-commit: faad5d52bcefa903a0adf4b1dea9a9413944ca33
 2019-10-14 07:19:56 +00:00
Joe Betz 5ebe913d25 Upgrade to etcd 3.3.17 
Kubernetes-commit: 41e03d26d56e2d5070b532fd28e68d10b88e15bb
 2019-10-11 13:28:41 -07:00
Yassine TIJANI 43f5144852 bump k8s.io/utils to pickup bug fix for rangesize 
Signed-off-by: Yassine TIJANI <ytijani@vmware.com>

Kubernetes-commit: 5d49cbd3cae68d7aafdeac7f2ca08208118f09ad
 2019-10-11 16:45:21 +02:00
Joe Betz 3839aee69d Revert #83735: Update etcd client to 3.3.16 
Kubernetes-commit: 2a4217340ec2ee72ef2e8ea1ee87826609ca94f4
 2019-10-11 00:17:00 -07:00
Kubernetes Publisher 93d2a18bde Merge pull request #83237 from jfbai/feat-add-agent-and-remote 
feat(apiserver): add user-agent and remote info into trace log for endpoints handlers.

Kubernetes-commit: 103a5f92d6e40630c9c7bf043f3df1a0b7958dc0
 2019-10-14 07:19:54 +00:00
Kubernetes Publisher b779900277 Merge pull request #83735 from jpbetz/etcd3316-client 
Update etcd client to 3.3.16

Kubernetes-commit: 8f968c41d29c9fb2a322825b0e2c19ed7e589966
 2019-10-14 07:19:52 +00:00
Kubernetes Publisher b803d9d0d3 Merge pull request #83583 from wojtek-t/improve_negotiate_media_type 
Improve negotiate media type

Kubernetes-commit: 09b4787126240489081502e553c466e85a3bd51f
 2019-10-10 20:09:05 +00:00
Joe Betz 6354df54c0 Update etcd client to 3.3.16 
Kubernetes-commit: ad6aeecf30354ce9cd14de63afd444e1a845f418
 2019-10-10 07:49:36 -07:00
Jianfei Bai a5b9ca7482 feat(apiserver): add user-agent and remote info into trace log for endpoints handlers. 
Kubernetes-commit: 91bddd13485082892be8e8e471e358be317c4e9b
 2019-10-10 21:30:05 +08:00
Kubernetes Publisher a9bd356af6 Merge pull request #80883 from liggitt/admission-v1 
Switch admission webhook config manager to v1

Kubernetes-commit: 3edbc6afff17ea8dfe5c10b2677dcdc8767f67e2
 2019-10-10 12:01:41 +00:00
Wojciech Tyczynski 5f538bd5e3 Optimize NegotiateMediaTypeOptions 
Kubernetes-commit: 1baf4778ae130dc9c305736216b5f5024a962595
 2019-10-10 11:49:31 +02:00
Wojciech Tyczynski fba1140b91 Update munnerz/goautoneg dependency 
Kubernetes-commit: 053721d9d5bd7209a8c9d63eca9eea763ec7f391
 2019-10-10 10:50:41 +02:00
Kubernetes Publisher 07fc332df3 Merge pull request #83595 from immutableT/remove-deprecated 
Replace deprecated methods in the logic involved in the construction of gRPC connection to kms-plugin.

Kubernetes-commit: 088322687fa7b28188e89cb54350445c54de484e
 2019-10-10 04:02:02 +00:00
SataQiu 630eda2c9b eliminate direct references to prometheus 
Kubernetes-commit: f99b4339681329779e44cd9f0c8ffdbabfeb6fcf
 2019-10-10 11:18:52 +08:00
Kubernetes Publisher 2647efb971 Merge pull request #83643 from lavalamp/bigger-auth-cache 
increase auth cache size

Kubernetes-commit: 6992d1386c481437acbfc2a7edcf4ae3575cc85c
 2019-10-09 12:09:23 +00:00
Kubernetes Publisher d01b9c8b1a Merge pull request #82630 from RainbowMango/pr_migrate_prom_bucket_for_apiserver 
Migrate prometheus bucket functionality to metrics stability framework for apiserver

Kubernetes-commit: 3b17884ca2d90e637989f34d81c84ff04499d578
 2019-10-09 12:09:21 +00:00
Han Kang a5356f425d pluralize error metric name 
Change-Id: I12eb94f41ded20ed5a16332ada13a7b34f75de18

Kubernetes-commit: 5e652fe12605027509870d5d7f821390f20b1cee
 2019-10-08 15:49:12 -07:00
Daniel Smith 344ca1b3a8 increase auth cache size 
Kubernetes-commit: 236112c6af9b22b02e35914fe8fbbdbfe856f975
 2019-10-08 14:27:28 -07:00