kubernetes
/
apiserver
mirror of https://github.com/kubernetes/apiserver.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
2,184 Commits 30 Branches 1,482 Tags 31 MiB
Commit Graph

2184 Commits

Author SHA1 Message Date
Kubernetes Publisher 1f59ae3a4c Merge pull request #69470 from immutableT/envelope-flake-test-fix 
Increase time-out of kms gRPC service concurrency tests.

Kubernetes-commit: 844d686591e93fe7f2056fc79c629b3d0d66019e
 2018-10-06 04:37:26 +00:00
Kubernetes Publisher d8dbc75a72 Merge pull request #69386 from cblecker/go-1.11 
Update to go1.11.1

Kubernetes-commit: 0f17e9ade6e089eadb7c09052a4a030f155a0eb0
 2018-10-06 04:36:34 +00:00
Kubernetes Publisher a67922030e Merge pull request #66905 from niuzhenguo/remove-useless-named-return 
Remove useless named return value

Kubernetes-commit: a4aab0e1e7fee44c712bd7031e118919389df2b3
 2018-10-06 00:37:47 +00:00
Christoph Blecker 92e87e143a Update gofmt for go1.11 
Kubernetes-commit: 97b2992dc191a357e2167eff5035ce26237a4799
 2018-10-05 12:59:38 -07:00
immutableT d0ea04d52d Increase time-out of kms-service concurrency tests. 
Kubernetes-commit: fd64c3bac6f2a611a154c86c93fd77404404aba5
 2018-10-05 16:22:00 +00:00
Kubernetes Publisher 9fb560178f Merge pull request #69080 from tanshanshan/little926 
fix  golint in staging/src/k8s.io/apiserver/pkg/admission/plugin/ include namespace/lifecycle,webhook/mutating,webhook/validating

Kubernetes-commit: 6764bc495e2ff2e80d2bbac7fe2c3c4ede27801d
 2018-10-05 12:43:44 +00:00
Kubernetes Publisher ddd83db11a Merge pull request #68063 from niuzhenguo/useless-string-concatenation 
Remove unnecessary concatenation of strings

Kubernetes-commit: 0ad0a423c094c2aae16a895c622428143457730a
 2018-10-05 12:42:48 +00:00
Kubernetes Publisher d416d37f77 Merge pull request #69430 from DirectXMan12/bug/use-client-auth 
Populate ClientCA in delegating auth setup

Kubernetes-commit: 0373b8d1698796477fed234d974bad675fc3cb2b
 2018-10-05 12:42:47 +00:00
Kubernetes Publisher 0bda7a15e3 Merge pull request #69359 from roycaihw/install-create-update-options 
Add CreateOptions and UpdateOptions to apiserver rest parameter installation

Kubernetes-commit: 0928bb4c01f6e7ed7c8b990693dd9ea27873def7
 2018-10-05 04:59:29 +00:00
Kubernetes Publisher b659fd37b4 Merge pull request #69310 from liggitt/remove-etcd2 
Remove etcd2 storage backend

Kubernetes-commit: 409871ecae6ddb5505b028e44d49a356f5101309
 2018-10-04 13:40:00 -07:00
Solly Ross 41e5031224 Populate ClientCA in delegating auth setup 
kubernetes/kubernetes#67768 accidentally removed population of the the ClientCA
in the delegating auth setup code.  This restores it.

Kubernetes-commit: 65cea86e4413cb5899c3b89bda375bb326de5093
 2018-10-04 12:48:18 -04:00
Kubernetes Publisher 45bb707b3e Merge pull request #69399 from mikedanese/consistent 
storage: propagate TransformFromStorage errors from List

Kubernetes-commit: 6e88271a612e89c10fc851223d164cca3648380c
 2018-10-03 22:43:22 -07:00
Mike Danese f8e0930b86 storage: propagate TransformFromStorage errors from List 
Like we do everywhere else we use TranformFromStorage. The current
behavior is causing all service account tokens to be regenerated,
invalidating old service account tokens and unrecoverably breaking apps
that are using InClusterConfig or exported service account tokens.

If we are going to break stuff, let's just break the Lists so that
misconfiguration of encryption config or checkpoint corruption are
obvious.

Kubernetes-commit: e7bda4431da05b55b4e8f66ed308d4ed90efd2df
 2018-10-03 13:30:29 -07:00
Clayton Coleman 4e305103fd Dynamic client watchers should be able to handle ERROR gracefully 
Watch can return type "ERROR" and a metav1.Status object. We need to
handle that during wait, and make it easy to handle the status object.

Kubernetes-commit: 5a8afa073f6b8cbb8b09f997f6db747c39dffb6e
 2018-10-03 14:16:44 -04:00
Kubernetes Publisher a00bf8e764 Merge pull request #69249 from mikedanese/cpenvelope 
refactor envelope to use cryptobytes

Kubernetes-commit: 643cad518714442c2ed839f4e1d764387c6573c5
 2018-10-03 12:11:32 +00:00
Haowei Cai 56ca9f4a1c Add Create and Update Options to rest param installation 
Kubernetes-commit: e0162b9105080f9472c1cbbab82a90b6ac2baebc
 2018-10-02 17:21:07 -07:00
Joe Betz 5c1ed41d69 Update etcd client to 3.3.9 
Kubernetes-commit: 4263c752115c3796ee5715c7de4cbc2e237809d3
 2018-10-01 16:53:57 -07:00
Jordan Liggitt 3b6fc08803 Remove etcd2 storage backend 
Kubernetes-commit: 85ae79500fba7d6e51292b12daff829027b59872
 2018-10-01 16:48:14 -04:00
Kubernetes Publisher 10d9756549 Merge pull request #69018 from gorilla001/f3 
remove extraneous local variable usage in newETCD3Client

Kubernetes-commit: c526f097005387831b143dc6fb006967bdc0a1c2
 2018-09-30 11:46:51 +00:00
Mike Danese 93a015d36a refactor envelope to use cryptobytes 
Kubernetes-commit: 36ab52b428f6b87df5bdd85f253758967bf0a240
 2018-09-28 23:02:42 -07:00
Kubernetes Publisher ec2b99f302 Merge pull request #68585 from immutableT/blocking-kms-plugin-connect 
kube-apiserver should wait/block for kms-plugin to start.

Kubernetes-commit: 6b49423a8e99bb08904ac6e110e31c6a4394c024
 2018-09-28 07:42:03 +00:00
Kubernetes Publisher adf6303733 Merge pull request #68850 from mikedanese/oidc 
oidc: respect the legacy goog issuer

Kubernetes-commit: 3611c5c4982438632c3906ddced6d12e470d963f
 2018-09-27 03:41:59 +00:00
Kubernetes Publisher 7010da59f6 Merge pull request #66516 from tallclair/redirect 
Add verification to apiserver redirect following

Kubernetes-commit: 109b67c291de3b9bda35c35e471b9064de6ff859
 2018-09-26 23:38:34 +00:00
tanshanshan 8d99f185d1 fix some golint in staging/src/k8s.io/apiserver/pkg/admission/plugin/ 
Kubernetes-commit: 3de8767dc6ca8d47d29f99c2956a5fcf54df84d9
 2018-09-26 14:30:50 +08:00
Kubernetes Publisher 4eecb39179 Merge pull request #68346 from CaoShuFeng/400_500 
return 400 status when invalid json patch passed to apiserver

Kubernetes-commit: 48e93c732914b9089eac4d8ed7c3fccab426ebd7
 2018-09-25 20:01:06 +00:00
Kubernetes Publisher ae73be09a6 Merge pull request #68245 from jingyih/remove_tagName_in_goDoc 
*: Remove comment tags in GoDoc

Kubernetes-commit: a67689dfcab0ed547e1d060c414eae7c81629cc9
 2018-09-25 15:38:28 +00:00
Kubernetes Publisher 4152071037 Merge pull request #68238 from justinsb/update_reflect2_to_101 
Update reflect2 to 1.0.1 (memory utilization fix)

Kubernetes-commit: a94ea824eb59e92188f166c302d7995ba9002667
 2018-09-25 15:36:36 +00:00
Kubernetes Publisher ed2586ad01 Merge pull request #68113 from fengzixu/master 
Fixes #68026: revise some errors about golint in some packages

Kubernetes-commit: 5b864ac9716efcd0ca49366dd943d6a3eb383ff6
 2018-09-25 15:35:10 +00:00
gorilla1024 ff3eff6aa4 minor fix 
Kubernetes-commit: 07fc593dcd8b4f3583876fc415df9fdf34632a03
 2018-09-25 10:56:37 +08:00
David McCormick a948ad1df7 Remove excessive warnings with x509 certificate auth 
Suppress common name verify warning log and roll up into returned error

remove glog test dependency

Kubernetes-commit: bb3124c48a4d276ed280175e5825ea9db022d699
 2018-09-24 17:15:27 +01:00
Kubernetes Publisher f3682c1ab7 Merge pull request #67793 from fisherxu/use_ctx 
Refactor grpc dial with dialcontext

Kubernetes-commit: fb50b3cb32dccce5d242f40db1d020da07fd7078
 2018-09-24 07:46:44 +00:00
Mike Danese 62cccfa4e8 oidc: respect the legacy goog issuer 
Kubernetes-commit: 1873ad48d0ce626c9b8be21143cfcc8a608db21b
 2018-09-19 12:16:43 -07:00
Kubernetes Publisher 67c8928411 Merge pull request #68584 from jennybuckley/dry-run-errors 
Fix typo in dry-run feature disabled error

Kubernetes-commit: fe72bd20b5b9ccc1f5b2ca5a951b78715164122c
 2018-09-14 00:15:16 +00:00
David Eads 3aa496e8ef allow audit policy to be loaded from any byte source 
Kubernetes-commit: 5d46ff41d85a825d508d8c9ec32b90a27de18350
 2018-09-13 14:25:16 -04:00
Kubernetes Publisher 3bfd32753e Merge pull request #68442 from CaoShuFeng/json-patch 
vendor: bump github.com/evanphx/json-patch

Kubernetes-commit: 9cf822183f9522028fbb23561b8d51496b8a98fe
 2018-09-12 23:50:08 +00:00
immutablet e9bce895cf Lazily dial kms-plugin. 
Kubernetes-commit: 07cbf2545f705d0448631f479a18d0b86b7055dc
 2018-09-12 14:56:44 -07:00
jennybuckley 008018b080 fix typo in dry run disabled error 
Kubernetes-commit: 5253c7f414a686e8bcf721655b7ffe26e81765b4
 2018-09-12 14:43:18 -07:00
Dr. Stefan Schimanski b63cac0574 apiserver: start only one compactor per unique storage transport config 
Kubernetes-commit: 00a717b572f3582d0d20633644e827dd60991dce
 2018-09-12 11:54:14 +02:00
Dr. Stefan Schimanski 7d47897b55 apiserver: separate transport setting from storagebackend.Config 
Kubernetes-commit: 7b242533a217bd809e2c846c3e3fadf7bf6edee8
 2018-09-12 10:59:01 +02:00
Stanislav Laznicka fb4c655720 autogen files 
Kubernetes-commit: 628d1fef37d565444a4fd7c97d8677621159dc57
 2018-09-11 12:33:10 +02:00
Cao Shufeng be442e0127 return 400 status when invalid json patch passed to apiserver 
Kubernetes-commit: 1248f569917511c37501b6ef6bbb215ce87353dc
 2018-09-11 14:11:39 +08:00
Cao Shufeng 0a5b0f2cd2 vendor: bump github.com/evanphx/json-patch 
Grab important bug fix that can cause a `panic()` from this package on
certain inputs. See https://github.com/evanphx/json-patch/pull/64

Kubernetes-commit: 2e974f30ab728f2f105af30d4de9db01d02e9514
 2018-09-09 13:06:39 +08:00
Kubernetes Publisher e73ba2ce12 Merge pull request #68428 from philips/bump-json-patch 
Automatic merge from submit-queue. If you want to cherry-pick this change to another branch, please follow the instructions here: https://github.com/kubernetes/community/blob/master/contributors/devel/cherry-picks.md.

vendor: bump github.com/evanphx/json-patch

Grab important bug fix that can cause a `panic()` from this package on
certain inputs. See 73af7f547e

```release-note
NONE
```

Kubernetes-commit: 5af5f1e66353a50a848a4017c1fba6a39f12584c
 2018-09-08 14:20:22 +00:00
Kubernetes Publisher 75a03c2d43 Merge pull request #68195 from luxas/consolidate_componentconfig_code_standards 
Automatic merge from submit-queue (batch tested with PRs 67950, 68195). If you want to cherry-pick this change to another branch, please follow the instructions here: https://github.com/kubernetes/community/blob/master/contributors/devel/cherry-picks.md.

Consolidate componentconfig code standards

**What this PR does / why we need it**:

This PR fixes a bunch of very small misalignments in ComponentConfig packages:
 - Add sane comments to all functions/variables in componentconfig `register.go` files
 - Make the `register.go` files of componentconfig pkgs follow the same pattern and not differ from each other like they do today.
 - Register the `openapi-gen` tag in all `doc.go` files where the pkg contains _external_ types.
 - Add the `groupName` tag where missing
 - Fix cases where `addKnownTypes` was registered twice in the `SchemeBuilder`
 - Add `Readme` and `OWNERS` files to `Godeps` directories if missing.

**Which issue(s) this PR fixes** *(optional, in `fixes #<issue number>(, fixes #<issue_number>, ...)` format, will close the issue(s) when PR gets merged)*:

**Special notes for your reviewer**:

**Release note**:

```release-note
NONE
```

/assign @sttts @thockin

Kubernetes-commit: a6eb49f0dc9a6d9fecf7ff4a8edeaa382b55ac50
 2018-09-08 14:18:23 +00:00
Brandon Philips f9f24f0fac vendor: bump github.com/evanphx/json-patch 
Grab important bug fix that can cause a `panic()` from this package on
certain inputs. See 73af7f547e

Signed-off-by: Brandon Philips <brandon@ifup.org>

Kubernetes-commit: 2fbd47da561cb80e7f01f38da6a556b63b2579bd
 2018-09-07 15:14:50 -07:00
Kubernetes Publisher f271f15f0c Merge pull request #68147 from timothysc/etcd-3.2-latest 
Automatic merge from submit-queue (batch tested with PRs 67691, 68147). If you want to cherry-pick this change to another branch, please follow the instructions here: https://github.com/kubernetes/community/blob/master/contributors/devel/cherry-picks.md.

Update etcd client to 3.2.24 for latest release

**What this PR does / why we need it**:
Updates etcd client to 3.2.24 which is the latest in the 3.2 series.  See https://github.com/etcd-io/etcd/blob/master/CHANGELOG-3.2.md for details.

**Special notes for your reviewer**:
This is only the client, in order to update the server components it requires a googler to push the 3.2.24 image.

**Release note**:

```
Update etcd client interface to 3.2.24
```

/assign @jpbetz @wojtek-t
/cc @liggitt @kubernetes/sig-cluster-lifecycle @kubernetes/sig-scalability-pr-reviews

Kubernetes-commit: 2811228dcf9934dc6bf4fb3f2e8397eedec29840
 2018-09-06 18:26:57 +00:00
Lucas Käldström 7bc82613f8 Standardize componentconfig code/comment patterns 
Kubernetes-commit: 83d53ea1c2aeda3619c3aafeb9cf7e50c124058e
 2018-09-06 13:42:02 +03:00
Kubernetes Publisher 57ba49758a Merge pull request #68273 from sttts/sttts-non-fatal-in-cluster-config 
Automatic merge from submit-queue (batch tested with PRs 68265, 68273). If you want to cherry-pick this change to another branch, please follow the instructions here: https://github.com/kubernetes/community/blob/master/contributors/devel/cherry-picks.md.

apiserver: make InClusterConfig errs for delegated authn/z non-fatal

Fixes https://github.com/kubernetes/kubernetes/issues/68246:

Background:

In gci e2e tests the kube-controller-manager is started as static pod. When it first starts, there is no kubernetes service and the KUBERNETES_SERVICE_HOST and KUBERNETES_SERVICE_PORT env vars are not set inside the container.

When the kube-controller-manager is restarted, the KUBERNETES_SERVICE_HOST and KUBERNETES_SERVICE_PORT env vars are set, but the static pod has no service account, i.e. /var/run/secrets/kubernetes.io/serviceaccount/token does not exist. We made the later fatal in rest.InClusterConfig and its use to setup delegated authn/z.

Kubernetes-commit: 2c933695fa61d57d1c6fa5defb89caed7d49f773
 2018-09-05 11:23:16 +00:00
tanshanshan 631dda550e kube-scheduler: enable secure ports 10259 
Kubernetes-commit: cb95edafe8bf4f294beb53d0a7bc04d62584577c
 2018-09-05 16:42:16 +08:00
Dr. Stefan Schimanski 1a58e1c6ad apiserver: make InClusterConfig errs for delegated authn/z non-fatal 
Kubernetes-commit: 04e793e65ad70df5c4ab280c42740864e54163cd
 2018-09-05 09:12:19 +02:00