kubernetes
/
apiserver
mirror of https://github.com/kubernetes/apiserver.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
7,150 Commits 30 Branches 1,482 Tags 31 MiB
Commit Graph

1742 Commits

Author SHA1 Message Date
Kubernetes Publisher 4b2cb3c960 Merge pull request #123972 from deads2k/remove-insecure-serving 
Remove k8s.io/apiserver ability to bind insecure ports

Kubernetes-commit: daa3356e72a4586a2676b90ec3b664687b6bc2a0
 2024-04-18 09:50:02 +00:00
Kubernetes Publisher b0dd9fef17 Merge pull request #123937 from p0lyn0mial/upstream-use-initial-events-annotation-key-const 
use metav1.InitialEventsAnnotationKey const

Kubernetes-commit: c016b0b9a8ca63dbec1fade0910c2a06017cc4ab
 2024-04-18 09:50:01 +00:00
Kubernetes Publisher 32d42093a4 Merge pull request #123584 from fatsheep9146/rename-apiserver-spanname 
Rename APIServer trace span name to conform to http server guidelines

Kubernetes-commit: 2d4fecfe333660d6908e795aaa9964d0f00ac781
 2024-04-18 09:49:58 +00:00
Kubernetes Publisher e22545def5 Merge pull request #121970 from pohly/log-apimachinery-runtime 
apimachinery runtime: support contextual logging

Kubernetes-commit: d35ba3635b0fe9cee75e2376e6445113d50437b7
 2024-04-18 09:49:56 +00:00
Kubernetes Publisher ba6e7aabe5 Merge pull request #116781 from muff1nman/protobuf-fully-qualified-types 
generate fully qualified type references

Kubernetes-commit: 0dc45103d879c3b280671f009d3f830650903894
 2024-04-18 01:44:36 +00:00
Kubernetes Publisher 8bbbe76e96 Merge pull request #124174 from dims/update-x/net-for-CVE-2023-45288 
Update x/net for CVE-2023-45288

Kubernetes-commit: d9c54f69d4bb7ae1bb655e1a2a50297d615025b5
 2024-04-04 04:07:30 +00:00
Davanum Srinivas 2a3f6c8b16 Update x/net for CVE-2023-45288 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>

Kubernetes-commit: 99fac38d2864e6bc9bb7cd1743d658caa1360c0c
 2024-04-03 16:37:18 -04:00
Kubernetes Publisher 7661bd2fe3 sync: update go.mod 2024-03-18 12:15:34 +00:00
Kubernetes Publisher 05c844e2a2 Merge pull request #123676 from serathius/rv0 
Fix enabling consistent list from watch cache also works for resourceVersion=0

Kubernetes-commit: 89b1db79d75e367f567ea06c0528ef4b8f3fecb4
 2024-03-15 21:39:11 +00:00
Kubernetes Publisher d5a8607203 Merge pull request #123926 from p0lyn0mial/upstream-deflake-test-get-list-non-recursive-with-consistent-list 
apiserver/storage/cacher: deflake TestGetListNonRecursiveWithConsistentListFromCache

Kubernetes-commit: 89f03e3988a4e7fed90ffce22f355ff248520ad2
 2024-03-14 21:14:25 +00:00
Kubernetes Publisher 07ca000ce9 Merge pull request #123732 from serathius/parallel-featureflags 
Fix SetFeatureGateDuringTest handling of Parallel tests

Kubernetes-commit: e062f925aec9137ca3f06704c6adb2883812e657
 2024-03-12 00:14:01 +00:00
Kubernetes Publisher 81df735550 Merge pull request #123525 from enj/enj/f/authn_config_reload 
Add dynamic reload support for authentication configuration

Kubernetes-commit: 77ecfb7800a5ce6f139818828c8eb49af9c44077
 2024-03-10 00:12:37 +00:00
Kubernetes Publisher 86ddcb4842 Merge pull request #123737 from enj/enj/i/cel_email_verified 
Require email_verified to be used when email is set as username via CEL

Kubernetes-commit: 9a160fa7808755fddd5fe8573040bef4d2ba7a0c
 2024-03-08 20:12:31 +00:00
Kubernetes Publisher 4beab40010 Merge pull request #123435 from tallclair/apparmor-ga 
AppArmor fields API

Kubernetes-commit: bd25605619cbfb46b075002a6db58b4e489fc8cb
 2024-03-07 05:34:52 +00:00
Kubernetes Publisher 17663913a4 Merge pull request #123758 from liggitt/protobump 
[CVE-2024-24786] Bump github.com/golang/protobuf v1.5.4, google.golang.org/protobuf v1.33.0

Kubernetes-commit: a5f5f44157c49fdfb6384862c7cb34c2ddbd4cce
 2024-03-06 17:29:40 +00:00
Jordan Liggitt 0a86214bd0 Bump github.com/golang/protobuf v1.5.4, google.golang.org/protobuf v1.33.0 
Kubernetes-commit: c6673d2346c814ddb4629c569bdc659ffa0c583f
 2024-03-06 09:47:28 -05:00
Kubernetes Publisher 04449c9b06 Merge pull request #123405 from cici37/vapGA 
[KEP-3488]Promote ValidatingAdmissionPolicy to GA

Kubernetes-commit: 2b521e5f8e6b99e84d464d8fa35658aed35bd13c
 2024-03-06 05:23:36 +00:00
Kubernetes Publisher 69478b14d0 Merge pull request #123721 from enj/enj/i/authn_config_doc_nesting 
Fix AuthenticationConfiguration docs around nested claims via CEL

Kubernetes-commit: 7a20def5ba9f8e399f21467a194e85f21cbd6a47
 2024-03-05 21:36:06 +00:00
Kubernetes Publisher 8b057c4a4f Merge pull request #123561 from enj/enj/i/validate_jwt_sa_iss 
Prevent conflicts between service account and jwt issuers

Kubernetes-commit: 26600b17abcbeadf7f759a66b9b5ea5d8cc7a62a
 2024-03-05 05:11:51 +00:00
Kubernetes Publisher 6a1a5d2f87 Merge pull request #123532 from serathius/separate-rpc 
Move cacher watch to separate rpc preventing starvation

Kubernetes-commit: 5b6d8a42931fd0eb7ba762cd46ad1655e46018a5
 2024-03-05 05:11:39 +00:00
Kubernetes Publisher 70e2d9115d Merge pull request #123413 from seans3/tunneling-spdy-websockets 
PortForward: Tunnel SPDY through WebSockets

Kubernetes-commit: f745503112e06d6ff199e929d536c6a29825c01a
 2024-03-05 05:11:34 +00:00
Kubernetes Publisher 7092a3d47e Merge pull request #123660 from xigang/cacher/watch 
cleanup: if triggerValue has a value fast break

Kubernetes-commit: a4eaf6e1200fa6f2050c71ef7a7e8ab27a8e4947
 2024-03-04 13:20:46 +00:00
Sean Sullivan f4bc37078e portforward: tunnel spdy through websockets 
Kubernetes-commit: 8b447d8c97e8823b4308eb91cf7d75693e867c61
 2024-02-21 08:56:07 +00:00
Kubernetes Publisher e92429c2ad Merge pull request #123225 from aramase/aramase/f/kep_3331_latency_metrics 
Add `apiserver_authentication_jwt_authenticator_latency_seconds` metric

Kubernetes-commit: 6d2ee131ebd13ce2ec2448300bb99f4ea942f1a9
 2024-03-04 01:15:11 +00:00
Kubernetes Publisher 6f43b57386 Merge pull request #123640 from liggitt/authz-beta-config 
Duplicate v1alpha1 AuthorizationConfiguration to v1beta1

Kubernetes-commit: 8674282a054d3ae32e2e009dab6f8a0da3689828
 2024-03-02 21:03:19 +00:00
Kubernetes Publisher cc00aa34b6 Merge pull request #123611 from ritazh/authz-mcmetrics 
Add authz webhook matchcondition metrics

Kubernetes-commit: 3e1da218014b5a4e5c95ee79404093302104438b
 2024-03-02 05:50:07 +00:00
Kubernetes Publisher 00ac59edfa Merge pull request #122975 from aramase/aramase/c/cleanup_authn_validation 
cleanup structured authn/authz error logic

Kubernetes-commit: 4e8674f4e582c7d33143c42990d9409990d979a3
 2024-03-02 05:50:03 +00:00
Kubernetes Publisher 0d2b79b3b6 Merge pull request #122882 from Jefftree/agg-discovery-v2-usage 
Use Aggregated Discovery v2 types and promote to GA

Kubernetes-commit: 3f25211d69b4412e3e926835067918f86f629f3e
 2024-03-02 01:40:36 +00:00
Kubernetes Publisher 4fa5c0c492 Merge pull request #123529 from thockin/go-workspaces 
Go workspaces for k/k and k/staging/*

Kubernetes-commit: df366107d16aa2e2cdd620be41e592184f379da4
 2024-03-01 21:19:35 +00:00
Kubernetes Publisher 57928aa72c Merge pull request #123560 from ivelichkovich/master 
kep-3716 GA, remove feature gate

Kubernetes-commit: 6cc77a577e56c68e4fde81865e022e05e8e02538
 2024-03-01 08:22:12 +00:00
Kubernetes Publisher e3922247fe Merge pull request #123458 from aramase/aramase/i/min_jwt_payload 
add min valid jwt payload to API docs for structured authn config

Kubernetes-commit: 5cf4fbe524ca1479607a4880949a032064556f76
 2024-03-01 00:40:31 +00:00
Tim Hockin 0f77d82857 Fix up go.mod files after reviews 
Because of how the previous 100+ commits were done, so changes snuck
thru that properly belong in earlier commits but it's not really
possible to do that without a lot of effort.

We agreed it was OK to "spackle" these cracks with a final commit.

Kubernetes-commit: 21715e6bbd19c932576ff268843d8ead3edb05e4
 2024-02-28 16:50:55 -08:00
Kubernetes Publisher 0a2e73e991 Merge pull request #123562 from jpbetz/bump-cel-go-0_17_8 
Bump cel-go to v0.17.8 to pick up CEL estimated cost fix

Kubernetes-commit: fe8a12d264c88ac3cd0fb97d73c936de3fdd9788
 2024-02-28 23:18:35 +00:00
Joe Betz 5957e27e51 Bump cel-go to v0.17.8 to pick up CEL estimated cost fix 
Kubernetes-commit: d49949b64205ca68222d001806d127fc6d7489f9
 2024-02-28 10:52:36 -05:00
Tim Hockin 27e765eeff Remove old gengo detritus 
Kubernetes-commit: 812d5fff4011df4693dcdace516feec30ebff8ba
 2024-02-26 23:31:41 -08:00
Tim Hockin 510f374e58 Re-vendor latest kube-openapi and gengo/v2 
./hack/pin-dependency.sh k8s.io/kube-openapi latest
./hack/pin-dependency.sh k8s.io/gengo/v2 latest
./hack/update-vendor.sh

Kubernetes-commit: 6f2f3735e04df5e4822176a2784069634c3c74a3
 2024-02-26 17:02:22 -08:00
Kubernetes Publisher 3e22226ac6 Merge pull request #123281 from seans3/remote-command-websocket-beta 
RemoteCommand over WebSockets to Beta

Kubernetes-commit: f7ca532472f035db2aedc8a1f86639dfd1dc596f
 2024-02-28 12:29:10 +00:00
Kubernetes Publisher f663919323 Merge pull request #123538 from jiahuif-forks/fix/cel/mutation-library-map-support 
CEL mutation library: add support for map

Kubernetes-commit: 286cdad32d7967a5f3b84a8924448ea914d44c00
 2024-02-28 12:29:05 +00:00
Kubernetes Publisher e79edc2673 Merge pull request #123540 from enj/enj/i/jwt_iss 
jwt: strictly support compact serialization only

Kubernetes-commit: 236f1b0f6b4cbb7e372a72d181c6285bdaf74873
 2024-02-28 00:35:48 +00:00
Kubernetes Publisher fe1489716d Merge pull request #123348 from hoskeri/update-go-x-crypto-19 
Update x/crypto to 0.19.

Kubernetes-commit: 9a9028983806af26e7b48223f3a92922e94725df
 2024-02-21 20:38:58 +00:00
Kubernetes Publisher 290f0e4aff Merge pull request #123392 from thockin/depreciate 
Cleanup: s/depreciated/deprecated/g

Kubernetes-commit: 11785bb815d58eb553be3a1fa305464c35d860cc
 2024-02-21 12:41:17 +00:00
Kubernetes Publisher d23525a070 Merge pull request #123342 from logicalhan/storage-metric 
bump the stability level of apiserver_storage_size_bytes to STABLE

Kubernetes-commit: e613eb33885171a0584aa58cfad9e7c157d23326
 2024-02-21 12:41:14 +00:00
Abhijit Hoskeri 759c2142c7 Update x/crypto to 0.19. 
Main reason is to pick up updated CA roots.

Full diff: https://github.com/golang/crypto/compare/v0.16.0...v0.19.0

Kubernetes-commit: d3a0e296defbb0b55e591e273004e79e7ebfb1fd
 2024-02-16 20:18:14 +00:00
Kubernetes Publisher f68fe095ce Merge pull request #120902 from linxiulei/watch_stack 
Add handler to run execution in separate goroutine

Kubernetes-commit: 6c046796175de51e33290804a7665db5fa752a80
 2024-02-16 12:34:38 +00:00
Kubernetes Publisher 2c41261361 Merge pull request #123306 from alexzielenski/apiserver/policy/move-owners 
move OWNERS from validating to all new parent policy folder

Kubernetes-commit: 8a57e3cc2b57ff6889643a0900324996c52eaac0
 2024-02-15 20:34:51 +00:00
Kubernetes Publisher 53b26606c5 Merge pull request #123305 from aramase/aramase/f/kep_3331_audience_match_policy_follow_up 
Add integration test for multiple audience in structured authn

Kubernetes-commit: 50bf3a2060ea798600af1a4c125e0b62d08e9680
 2024-02-15 16:34:53 +00:00
Kubernetes Publisher f980dbe8f0 Merge pull request #123250 from benluddy/dep-bump-cbor-v2.6.0 
Bump github.com/fxamacker/cbor/v2 to v2.6.0.

Kubernetes-commit: e305e773bbfe8c5bdf9c57881a875e168b004b8c
 2024-02-15 01:39:12 +00:00
Kubernetes Publisher 503dabd7e9 Merge pull request #123179 from aramase/aramase/f/encryption_config_reload_metric 
Add `apiserver_encryption_config_controller_automatic_reloads_total` metric and deprecate success/failure counter

Kubernetes-commit: 7abb063b42c7770628ee2b69e25370cf6334882a
 2024-02-13 17:30:58 +00:00
Ben Luddy 137045a592 Bump github.com/fxamacker/cbor/v2 to v2.6.0. 
Kubernetes-commit: aac43dc96f2b679f0ab030fd3512c7e03b0f2df4
 2024-02-12 15:46:17 -05:00
Kubernetes Publisher 9d6ad00bf4 Merge pull request #121486 from benluddy/cbor-stub 
KEP-4222: Add stub CBOR serializer.

Kubernetes-commit: 48228bf9dbac308f43abd59a53fdc069fbddee0f
 2024-02-10 01:48:31 +00:00