ff5a72e86f
Update gorilla/websockets library from 1.5.0 to latest 1.5.3
...
Kubernetes-commit: 3100bbab2f7f013b08910f28d8a3debc28a57ea9
2025-02-19 00:26:21 +00:00
52dde339a1
Merge pull request #130126 from fuweid/fix-128314
...
proxy: should add PingPeriod for websocket translator
Kubernetes-commit: fc876787b81a54f144bf4750136fad229056cccc
2025-02-18 20:03:21 +00:00
35a4ee03bf
Merge pull request #129852 from p0lyn0mial/upstream-clock-test-cache
...
cacher: decrease the running time of TestConsistentReadFallback
Kubernetes-commit: e279ae43358b4a95773647ff7644e9585201208d
2025-02-17 12:01:22 +00:00
11288ef6c1
Add a test to validate deferredResponseWriteron multiple write calls
...
Signed-off-by: nkeert <197718357+nkeert@users.noreply.github.com>
Kubernetes-commit: 45e2f3e438e18b74f3b7a6645ff2073862ef0e38
2025-02-15 10:23:21 +05:30
2a04234bdc
proxy: should add PingPeriod for websocket translator
...
IIUC, before using the translator handler, the ping data can be delivered from
the client to the runtime side since kube-apiserver does not parse any client
data. However, with WebSocket, the server responds with a pong to the client
without forwarding the data to the runtime side. If a proxy is present, it may
close the connection due to inactivity. SPDY's PingPeriod can help address this
issue.
Signed-off-by: Wei Fu <fuweid89@gmail.com>
Co-authored-by: Antonio Ojea <aojea@google.com>
Kubernetes-commit: dc59c0246fb407dcf035afc224f63fcf0da8244e
2025-02-12 21:39:59 -05:00
08a05f9af7
Merge pull request #130113 from AwesomePatrol/129931-fix-3
...
Make ResourceQuota LIST requests only when Informer is not synced
Kubernetes-commit: 75909b89201386c8a555eadc79d14fb11f91747c
2025-02-12 16:03:12 +00:00
87cccf7779
Limit ResourceQuota LIST requests to times when informer is not synced
...
This should reduce the number of slow (100ms) LIST requests when there
are no ResourceQuota objects present in the namespace. The behavior
stays virtually the same.
Kubernetes-commit: b346ac0f8e013cedb8d91b4065d385f84e81c43e
2025-02-12 13:34:09 +01:00
c4717788c4
Merge pull request #129934 from serathius/graduate-btree
...
Graduate BtreeWatchCache feature gate to GA
Kubernetes-commit: e2b0cfa3a1fb2c425a975b8c6ba0e9509bd35452
2025-02-10 21:02:27 +00:00
c533eff8e7
adjusting loopback certificate validity in kube-apiserver
...
Kubernetes-commit: 553e9bf84d199be3d6a3da6675671859723219f4
2025-02-08 19:43:48 +08:00
4628bb89a6
Merge pull request #129416 from siyuanfoundation/refactor
...
KEP-4330: Refactor compatibility version code
Kubernetes-commit: e6be5f96022ea6d4a2e370a56a3d28859e1db72d
2025-02-06 21:02:03 +00:00
9bb5fd51d1
Merge pull request #129929 from serathius/deprecate-separate-rpc
...
Flip SeparateCacheWatchRPC feature gate to false and deprecate it
Kubernetes-commit: 9a03243789677637762eb0f907e1b4e45a0136c1
2025-02-06 05:02:19 +00:00
7b8dc61f0b
Merge pull request #129930 from serathius/deprecate-watch-from-storage
...
Deprecate WatchFromStorageWithoutResourceVersion
Kubernetes-commit: 925cf7db71c5e36072f99e8b7129523f659ee3a1
2025-02-05 21:02:52 +00:00
0198fdbe95
Merge pull request #129921 from srivastav-abhishek/fix-etcd-test
...
Additional timeout to receive all watchEvents
Kubernetes-commit: 1527a145b110f9907e3efde483d784fe362901f4
2025-02-05 21:02:51 +00:00
a9904eef9e
bump RemoteRequestHeaderUID featuregate to Beta, on by default
...
Kubernetes-commit: b3890d9fa0d054b9b97b3496423664c0baf1c567
2025-02-05 15:32:57 +01:00
5a72bc815b
Add emulation forward compatibility into api enablement and RemoveDeletedKinds.
...
Signed-off-by: Siyuan Zhang <sizhang@google.com>
Kubernetes-commit: 819cb8fe22fe37bf691f460bc32d0f03f53cce09
2025-02-04 10:11:56 -08:00
2ce508cc43
Merge pull request #129844 from cici37/bumCEL
...
Bump cel-go to v0.23.2
Kubernetes-commit: 28ba942659a6fb8c8b9a22234176250fe004af06
2025-02-04 04:48:31 +00:00
69f7857a7a
Update the env option.
...
Kubernetes-commit: 8a3d0d68a20958d82f119c56036750f18bc52963
2025-02-03 18:07:23 +00:00
c1a2d5992c
Graduate BtreeWatchCache feature gate to GA
...
Kubernetes-commit: e0f548183c46b1a488afa788666638b99499fb3a
2025-01-31 15:33:07 +01:00
0167eb5d20
Deprecate WatchFromStorageWithoutResourceVersion
...
Around the 1.31 release, we discovered that a change introduced in 1.27 allowead
clients to open WATCH requests directly to etcd. This had detrimental consequences,
enabling abusive clients to bypass caching and overwhelm etcd.
Unlike the API server, etcd lacks protection against such behavior.
To mitigate this, we redirected all WATCH requests to be served from the cache.
The WatchFromStorageWithoutResourceVersion feature gate was retained as an escape hatch.
However, since we have no plans to allow direct WATCH requests to etcd again,
this flag is now obsolete.
Direct WATCH requests to etcd offer no advantage, as they don't provide stronger
consistency guarantees. WATCH operations are inherently inconsistent; unlike LIST
operations, they do not confirm the resource version with a quorum. While Kubernetes
uses the WithRequireLeader option on WATCH requests to prevent maintaining connections
to isolated etcd members, the API server provides the same level of guarantee through
its health checks, which fail if it cannot connect to etcd member. Therefore,
the WatchFromStorageWithoutResourceVersion feature gate can be deprecated and removed.
Kubernetes-commit: 065bf2004d27e5e3f1be3c0f128347d4060d8954
2025-01-31 11:49:28 +01:00
66f788143e
Flip SeparateCacheWatchRPC feature gate to false and deprecate it.
...
Watch requests to etcd are mapped to a single stream that has a limited throughput.
By opening a lot of concurrent watch requests to single resource, users
could starve other watches from getting any events.
Separating the RPC was meant to protect the watch opened by cache.
However, as we are no longer planning to allow users to open watch directly to etcd,
the flag is not needed.
Kubernetes-commit: 4a5bbc4c159ec7d185d5fc39b95c48dbf3fab7d9
2025-01-31 11:38:58 +01:00
55da1afddb
Additional timeout to receive all watchEvents
...
Kubernetes-commit: f6b527cb54e37513bbe60edb52890f3de481d000
2025-01-31 10:19:19 +05:30
39a73cd3bd
Merge pull request #129813 from yongruilin/golangci-featuregate-add
...
feat: add a lint rule to prevent Add unversioned featuregate
Kubernetes-commit: 547654a8a1da26aaf75e9506a57c210711dcaec9
2025-01-30 04:37:41 +00:00
23e8a6cc2f
cacher: decrease the running time of TestConsistentReadFallback
...
Kubernetes-commit: 601c0e359dc959bbfaf42c5d8a8a0a9a2175db74
2025-01-28 13:31:43 +01:00
52f2fda3f7
Merge pull request #129596 from cici37/cvTest
...
Add tests for CEL library with compatible version
Kubernetes-commit: 964e5e0f192724de4c2a8e28ad8b511fd71a78b8
2025-01-27 20:41:34 +00:00
8a149c9296
cacher/cacher_whitebox_test: newTestCacherWithoutSyncing allow passing a clock
...
Kubernetes-commit: cfd6d9a2b4476d4256959dc2ebdd517f20191ea3
2025-01-27 19:51:35 +01:00
7e0cbb5924
Bump cel-go to v0.23.2.
...
Kubernetes-commit: c1e0443232f9c6da9119ae71e8bd7d7ef8271088
2025-01-27 18:43:12 +00:00
6c0d90b944
Merge pull request #129751 from pacoxu/EfficientWatchResumption
...
remove GAed EfficientWatchResumption
Kubernetes-commit: 3f26d005571dc5903e7cebae33ada67986bc40f3
2025-01-27 16:36:00 +00:00
2911f5b534
Merge pull request #129815 from dims/linter-to-ensure-go-cmp/cmp-is-used-only-in-tests
...
Linter to ensure go-cmp/cmp is used ONLY in tests
Kubernetes-commit: d36322f8d76c8e2a456e381bcc6bb43e4bbe602c
2025-01-26 00:42:24 +00:00
0a703e3517
Linter to ensure go-cmp/cmp is used ONLY in tests
...
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
Kubernetes-commit: 4e05bc20db99ff89b2d2205218d24b9935a7fdd7
2025-01-24 17:03:29 -05:00
ee59411d80
feat: add a lint rule to prevent Add unversioned featuregate
...
Kubernetes-commit: 8a0937c03467d04a25e10473e9570d2c8286cf4b
2025-01-24 11:02:16 -08:00
f6d3d889a6
Merge pull request #129786 from JoelSpeed/drop-netip-variables
...
Drop declaration of IP/CDIR type CEL variables
Kubernetes-commit: 6b7b8e89caafa8291e9992912583977e2f0c1d4c
2025-01-23 10:14:59 -08:00
a3f27ceda4
Drop declaration of IP/CDIR type CEL variables
...
Kubernetes-commit: 2b24c518b04b67070c2e6bdbeb9f8ee74eb429c8
2025-01-23 15:15:42 +00:00
e35b5a7595
Merge pull request #129732 from dims/switch-to-v2.6.3-of-gopkg.in/go-jose/go-jose.v2
...
Switch to gopkg.in/go-jose/go-jose.v2 @ v2.6.3 and github.com/coreos/go-oidc @ v2.3.0
Kubernetes-commit: a444a5bfedb2807632447bfb8350bd41fd1a3d77
2025-01-23 00:36:41 +00:00
cf7237e44d
Merge pull request #127709 from pohly/log-client-go-rest
...
client-go/rest: finish context support
Kubernetes-commit: 427cd18f726be3e3c4f657258dc17a97beca92d5
2025-01-22 20:59:02 +00:00
736476d22b
update github.com/coreos/go-oidc to v2.3.0
...
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
Kubernetes-commit: faf30b30679e51f45ed70c714a0e9937d226329a
2025-01-22 13:41:04 -05:00
a2ab8dc0e3
remove GAed EfficientWatchResumption since v1.24
...
Kubernetes-commit: 69964319d1466d39a190a634a78440247ef83316
2025-01-22 16:50:26 +08:00
6e7ca2c0dc
Switch to gopkg.in/go-jose/go-jose.v2 @ v2.6.3
...
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
Kubernetes-commit: c9e81cd84ca12d0a60c8e11eb318c13f657217c1
2025-01-21 09:21:27 -05:00
6885e995e1
Merge pull request #129538 from hzxuzhonghu/http2-clean
...
Cleanup: only initiate http2 server options when http2 is not disabled
Kubernetes-commit: 2c9153576ec0eef9dfb4acac591874a71ff72cbb
2025-01-20 08:35:51 +00:00
0e1bb963f7
Merge pull request #129679 from pacoxu/remove-APIListChunking
...
remove APIListChunking which was GAed since v1.29
Kubernetes-commit: bd55d18c75f4648b934ad0b548c017c523dd705b
2025-01-17 12:35:40 +00:00
b66aedfe5c
remove APIListChunking which was GAed since v1.29
...
Kubernetes-commit: 8d7aed698b772d38087103f385569ab769647923
2025-01-17 15:56:19 +08:00
626adbf67c
Merge pull request #129303 from sttts/sttts-vap-jsonpatch-typeresolver-tests
...
apiserver/admission/cel: add unit tests for JSONPatch expressions
Kubernetes-commit: a935bb769eef444f7fe087b62ee04d5a7ef44f6a
2025-01-16 20:42:22 +00:00
ae92d91104
Merge pull request #129628 from 249043822/br004
...
remove duplicate getAttrsFunc calls to reduce temporary memory allocations
Kubernetes-commit: 63cb5837ddf5a9fdc542f6f26e84a35d19caa0ec
2025-01-16 08:35:25 +00:00
2387b5d4a9
Merge pull request #129633 from skitt/revert-go-difflib-go-spew
...
Revert to go-difflib and go-spew releases
Kubernetes-commit: 6d570c923f66a1f214d0c3ba3eddd9a0cd0fae68
2025-01-15 20:42:29 +00:00
2c1a1fa4ee
Merge pull request #129547 from serathius/watchcache-bypass-test-valid
...
Only test requests that pass validation
Kubernetes-commit: ec2e0de35a298363872897e5904501b029817af3
2025-01-15 16:34:31 +00:00
695a3a4c4e
Revert to go-difflib and go-spew releases
...
The last dependency pulling in the tips of go-difflib and go-spew has
reverted to the last release of both projects, so k/k can revert to
the releases too. As can be seen from the contents of vendor, this
doesn't result in any actual change in the code.
Signed-off-by: Stephen Kitt <skitt@redhat.com>
Kubernetes-commit: 3986472b3c7202716f92e586ccfaa4b4fe573dc5
2025-01-15 09:07:27 +01:00
e802cf6daf
remove duplicate getAttrsFunc calls to reduce temporary memory allocations
...
Kubernetes-commit: 479ff5a02b026caec40e8262785e8ffffb42085a
2025-01-15 10:15:02 +08:00
cd99eadfc3
Merge pull request #129622 from dims/update-to-latest-kustomize-v5.6.0
...
Update to latest kustomize v5.6.0 to drop `github.com/asaskevich/govalidator`
Kubernetes-commit: 42811635adc4840a6769d7a9f7fd47be8df99c43
2025-01-15 00:35:45 +00:00
37d4665f53
Merge pull request #127375 from omerap12/issue_126311
...
Add test for CEL reserved symbols without double underscore
Kubernetes-commit: 165da9ad0fc7e895a9b72a463062cbf754f89f2b
2025-01-14 21:26:46 +00:00
5f060d93ca
Drop github.com/asaskevich/govalidator
...
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
Kubernetes-commit: 43d86c2a3ef056789c67b0f80bd1ebfcd375a0d4
2025-01-14 13:33:54 -05:00
7ca4de7334
lint: removed empty line
...
Signed-off-by: Omer Aplatony <omerap12@gmail.com>
Kubernetes-commit: c0b49120e5318202b79a28212db150079acdfb01
2025-01-14 11:42:50 +02:00
Sean Sullivan
Kubernetes Publisher
nkeert
Wei Fu
Aleksander Mistewicz
HirazawaUi
Stanislav Láznička
Siyuan Zhang
Cici Huang
Marek Siarkowicz
Abhishek Kr Srivastav
Lukasz Szaszkiewicz
Davanum Srinivas
yongruilin
Joel Speed
Paco Xu
Stephen Kitt
张可10140699
Omer Aplatony