kubernetes
/
apiserver
mirror of https://github.com/kubernetes/apiserver.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
5,486 Commits 30 Branches 1,482 Tags 31 MiB
Commit Graph

5486 Commits

Author SHA1 Message Date
Anish Ramasekar e442eafb33 feat: prepare KMS data encryption for migration to AES-GCM 
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
Co-authored-by: Monis Khan <mok@vmware.com>
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>

Kubernetes-commit: 90b42f91fd904b71fd52ca9ae55a5de73e6b779a
 2022-03-16 17:54:10 +00:00
David Eads 25c5c2ccf3 Handle panic during validating admission webhook admission 
Validating admission webhook evaluation can fail, if uncaught this
crashes a kube-apiserver.  Add handling to catch panic while preserving
the behavior of "must not fail".

Kubernetes-commit: d412bf92b3b02bda93707c6aaba945f28bf60c72
 2022-03-16 13:47:32 -04:00
Patrick Ohly 723d4d11c9 klog v2.60.1 
The new release supports FlushAndExit and contextual logging.

Kubernetes-commit: 09aa1071cdde5ebc2c931c994fbb1e974c2a1515
 2022-03-16 09:03:45 +01:00
Maciej Borsz f4edb394b0 Implement page size progressing for rare selectors. 
Kubernetes-commit: a2ad9f9e4aba6aae6657a3189bdced6dbc8ba4b5
 2022-03-07 15:44:59 +00:00
Ravi Gudimetla 1ee261d219 API Server Changes 
This commit includes all the changes needed for APIServer. Instead of modifying the existing signatures for the methods which either generate or return stopChannel, we generate a context from the channel and use the generated context to be passed to the controllers which are started in APIServer. This ensures we don't have to touch APIServer dependencies.

Kubernetes-commit: 8b84a793b39fed2a62af0876b2eda461a68008c9
 2022-03-07 09:20:45 -05:00
Antonio Ojea 00730c9649 apiserver cacher: don't accept requests if stopped 
The cacher blocks requests until it is ready, however, the
ready variable doesn't differentiate if the cacher was stopped.

The cacher is using a condition variable based on sync.Cond to
handle the readiness, however, this was not taking into account
if it was not ready because it was waiting to be ready or it was
stopped.

Add a new condition to the condition variable to handle the
stop condition, and returning an error to signal the goroutines
that they should stop waiting and bail out.

Kubernetes-commit: 2cb3a56e83ae33464edb174b1b6373ba50600759
 2022-03-03 12:01:59 +01:00
Tim Bannister 8b7169efd9 Update generated docs 
Kubernetes-commit: de55f39f655816ecee9ab0b2c3842930cfe332a6
 2022-03-01 23:42:36 +00:00
Abu Kashem 11ce69f338 Revert "Merge pull request #107797 from tkashem/revert-107456" 
This reverts commit 83ca74541216405323ddfb67f5f80ad5717da826, reversing
changes made to 1c216c6ec86e700170620fe4c75fa3a2a2817530.

Kubernetes-commit: b0b460921b81b260473d5c393d85beeb5a03e834
 2022-02-27 13:40:28 -05:00
Maciej Wyrzuc 253e375283 Copy request in timeout handler 
Kubernetes-commit: 44705c71401d327c6d596597adc55596973e89d0
 2022-02-24 13:42:32 +00:00
Patrick Ohly ba3b8e9322 enhance and fix log calls 
Some of these changes are cosmetic (repeatedly calling klog.V instead of
reusing the result), others address real issues:

- Logging a message only above a certain verbosity threshold without
  recording that verbosity level (if klog.V().Enabled() { klog.Info... }):
  this matters when using a logging backend which records the verbosity
  level.

- Passing a format string with parameters to a logging function that
  doesn't do string formatting.

All of these locations where found by the enhanced logcheck tool from
https://github.com/kubernetes/klog/pull/297.

In some cases it reports false positives, but those can be suppressed with
source code comments.

Kubernetes-commit: edffc700a43e610f641907290a5152ca593bad79
 2022-02-16 12:17:47 +01:00
Abu Kashem af86802d1a apiserver: stop http server after pre shutdown hooks 
Kubernetes-commit: 8d96cc2dfbd650544660e41c5e8efc8d1e1033a3
 2022-02-09 16:40:57 -05:00
Abu Kashem 8b827c16cb track latency for http.ResponseWriter.Write 
Kubernetes-commit: 1d1a44cf129e1904217a1ed5a09f92c0a28ce11f
 2022-02-04 11:36:23 -05:00
Abu Kashem 1b651c5994 add latency tracker for storage and transform 
Kubernetes-commit: eca90856940e9251ecf3fde95c5e4d2d16f5ad68
 2022-02-01 18:13:03 -05:00
zk ad01c712d9 Update etcdRequestLatency metrics bucket size 
Kubernetes-commit: fb372d07982463984dfdab7cf24d937b91b0bb83
 2022-01-09 23:45:09 +08:00
Wojciech Tyczyński 8f7c120935 Eliminate MaintainObservations function in P&F 
Kubernetes-commit: badf436ac4451590e5e84e537f2234e3632ea3b4
 2021-11-25 12:44:50 +01:00
Monis Khan 2d35015235 webhook: use rest.Config instead of kubeconfig file as input 
This change updates the generic webhook logic to use a rest.Config
as its input instead of a kubeconfig file.  This exposes all of the
rest.Config knobs to the caller instead of the more limited set
available through the kubeconfig format.  This is useful when this
code is being used as a library outside of core Kubernetes. For
example, a downstream consumer may want to override the webhook's
internals such as its TLS configuration.

Signed-off-by: Monis Khan <mok@vmware.com>

Kubernetes-commit: fef7d0ef1e1fbff65e8d445256036704bb9dbcbd
 2021-07-23 11:15:47 -04:00
Kubernetes Publisher c237789502 Merge pull request #108644 from Jefftree/googleapis-gnostic 
googleapis/gnostic -> google/gnostic and update kube-openapi

Kubernetes-commit: b195a64d45e1880878a22d178055f1b4220dcb43
 2022-03-17 02:46:20 +00:00
Kubernetes Publisher aef041adda Merge pull request #108419 from DangerOnTheRanger/cel-maxlength-integration 
CEL MaxLength integration

Kubernetes-commit: 1d7599b56c827d396707b2d1744e7bc27fd88763
 2022-03-16 22:19:28 +00:00
Jefftree 9b81dbc7e0 googleapis/gnostic -> google/gnostic 
Kubernetes-commit: 8a1d5947ad34ba275192341baa4e5fef8e6c7f24
 2022-03-15 20:36:21 -07:00
Kubernetes Publisher de6ba2aa0a Merge pull request #108394 from ialidzhikov/cleanup/warningheaders 
Remove the WarningHeaders feature gate

Kubernetes-commit: 162f8d5bac870d41bbc63dbeb4922b4eab1b8800
 2022-03-16 02:19:21 +00:00
Kubernetes Publisher db08da52f2 Merge pull request #108448 from ialidzhikov/cleanup/deserialization-cache-size 
apiserver: Remove the deprecated `--deserialization-cache-size` flag

Kubernetes-commit: 6224458dc2440b580012434ea1ed951af98d86f3
 2022-03-15 22:17:58 +00:00
Kubernetes Publisher d4fbf7fd3a Merge pull request #108214 from stevekuznetsov/skuznets/lease-manager-fix 
storage: etcd: clarify lease manager configurations

Kubernetes-commit: faa027ca2b3605932ae319f13c1a9f150f755a47
 2022-03-14 22:18:48 +00:00
Kubernetes Publisher 93a1162c9f Merge pull request #108643 from liggitt/cobra 
Update cobra to v1.4.0

Kubernetes-commit: 9d512581b85ae8f2f315e042ed4bfc76d921bfb4
 2022-03-11 06:18:04 +00:00
Jordan Liggitt 6ebace3af1 Update cobra to v1.4.0 
Kubernetes-commit: 60b9af476f7f01f47396e4ddd491f66931159597
 2022-03-10 16:19:43 -05:00
Kubernetes Publisher 66a171df29 Merge pull request #108631 from jupblb/b223652793 
Remove apf_fd from httplog

Kubernetes-commit: e9af39914797d40766b166e18dac3a441a2bf5d4
 2022-03-10 05:49:35 -08:00
jupblb c0c615eb7a Remove apf_fd from httplog 
Since flowDistinguisher may hold data identifying a user accessing the
cluster this can be a source of a PII leak.

Kubernetes-commit: 94c92f78e5b02c27502f3b9d59b4e194e476a6f4
 2022-03-10 12:59:00 +01:00
Kubernetes Publisher 433db7935a Merge pull request #108252 from wojtek-t/avoid_object_deep_copies 
Avoid deep-copying object when possible on kube-apiserver watch path

Kubernetes-commit: 9946b5364e8199ac832161e17155bd005c391fc5
 2022-03-09 10:17:30 +00:00
Kubernetes Publisher 687956beed Merge pull request #108092 from carlory/fix-98035 
remove audit.k8s.io/v1[alpha|beta]1 versions

Kubernetes-commit: 19762408612e49401aa46d8396c7032462fe5ab0
 2022-03-08 10:17:53 +00:00
ialidzhikov 38f395ca57 apiserver: Remove the deprecated `--deserialization-cache-size` flag 
Signed-off-by: ialidzhikov <i.alidjikov@gmail.com>

Kubernetes-commit: ee2530ffd4db0cdc8384f7d4acb014e79bb224e9
 2022-03-02 15:33:21 +02:00
ialidzhikov ab1e9afa59 Remove the WarningHeaders feature gate 
Signed-off-by: ialidzhikov <i.alidjikov@gmail.com>

Kubernetes-commit: 55ee738f5755a27513e83405b5934f1710d96c8e
 2022-02-28 19:07:23 +02:00
Wojciech Tyczyński 58b4aa562f Fix potential race in dispatching watch event 
Kubernetes-commit: 779f157ecfb24d0ee944f18e481bfa8cc8c94f6f
 2022-02-22 17:14:15 +01:00
Wojciech Tyczyński 0b8c9f5ebf Avoid perfoming deep copies in watchcache if not needed 
Kubernetes-commit: 0cb3a02bbede2f547ddd20e23e2bbc782ac3956c
 2022-02-21 15:18:25 +01:00
Wojciech Tyczyński 35d7dfb633 Prepare apiserver for operating on cached objects by not modifying them 
Kubernetes-commit: 7e434682e450e28d36f0ee4787e7b4672e8eb255
 2022-02-21 15:05:35 +01:00
Steve Kuznetsov 3d5978d57e storage: etcd: clarify lease manager configurations 
When the original commit created the lease manager, this comment was
added to set the default test reuse time to 1s. Even at that time, the
comment claimed it was setting 10s. Instead of using this value, though,
new tests that did not call `testSetup()` started to use the default
configuration for production. This commit clarifies the intent of this
comment, moves it next to the code block that it actually applies to,
and makes use of this test-specific logic everywhere.

x-ref: f230b000db

Signed-off-by: Steve Kuznetsov <skuznets@redhat.com>

Kubernetes-commit: 6aa37eb06247fb95a6a4ef61cbd50885e52055a0
 2022-02-18 08:10:57 -08:00
Kermit Alexander c679395394 Add maxLength/maxItems/maxProperties support to cel.Compile. 
Kubernetes-commit: 83e4d192b136ac3a28ea26a9d09dc9fee7c6b665
 2022-02-15 08:49:37 +00:00
carlory 871a4b7200 remove audit.k8s.io/v1[alpha|beta]1 versions 
Kubernetes-commit: fcc282f9f2050aaa4007d6f0444b0f4972925fea
 2022-02-13 13:23:49 +08:00
Kubernetes Publisher 38bd432017 Merge pull request #108457 from ialidzhikov/cleanup/target-ram-mb 
apiserver: Remove the deprecated `--target-ram-mb` flag

Kubernetes-commit: ad46b4f9215ce34fe316e4473767531456a81188
 2022-03-07 14:35:54 +00:00
Kubernetes Publisher d694536ed8 Merge pull request #108437 from andrewsykim/bump-konnectivity-v0.0.29 
bump konnectivity-client@v0.0.30

Kubernetes-commit: 82755e3cb2fa8742ac05749058c6f6d991ed2061
 2022-03-05 02:18:03 +00:00
Kubernetes Publisher 70e1dccdc6 Merge pull request #108423 from ialidzhikov/cleanup/experimental-encryption-provider-config 
apiserver: Remove the deprecated `--experimental-encryption-provider-config` flag

Kubernetes-commit: 1160923ae630fdcc2624c37c4e4f784bc61a5dd1
 2022-03-05 02:18:01 +00:00
Kubernetes Publisher d2c6cea521 Merge pull request #106830 from pacoxu/StreamingProxyRedirects-remove 
remove ValidateProxyRedirects and StreamingProxyRedirects

Kubernetes-commit: c2d2e665355334d2cfa282b6e5adff6bb0f80839
 2022-03-05 02:17:59 +00:00
ialidzhikov bce3488a65 apiserver: Remove the deprecated `--target-ram-mb` flag 
Signed-off-by: ialidzhikov <i.alidjikov@gmail.com>

Kubernetes-commit: bdbc7501293eac721ea6f77b55918652f2cd6aab
 2022-03-02 18:52:46 +02:00
Andrew Sy Kim 2f2755c126 bump sigs.k8s.io/apiserver-network-proxy/konnectivity-client@v0.0.30 
Signed-off-by: Andrew Sy Kim <andrewsy@google.com>

Kubernetes-commit: 00e222579c415cf700cb617733d0e70934ca3252
 2022-03-02 01:30:08 +00:00
ialidzhikov aa165d392e apiserver: Remove the deprecated `--experimental-encryption-provider-config` flag 
Signed-off-by: ialidzhikov <i.alidjikov@gmail.com>

Kubernetes-commit: 244bf1bd69c962041ba5cabc3c9e92f3f94a3ba4
 2022-03-01 19:21:18 +02:00
Kubernetes Publisher 96c13c2227 Merge pull request #108187 from stevekuznetsov/skuznets/storage-tests-diff 
storage: etcd: use cmp.Diff for comparisons

Kubernetes-commit: cc4c95181e214e27de1d8a1f31af322a5ee966a8
 2022-02-28 22:12:14 +00:00
Kubernetes Publisher 45c09eca61 Merge pull request #108365 from liggitt/fix-proto-gen 
Fix proto gen

Kubernetes-commit: 05a71be79d8873a7e728312d8704dc1a91da6312
 2022-02-26 22:11:55 +00:00
Jordan Liggitt 4d0c0a45de Regenerate protobuf 
Change-Id: I2a563514955d7fc7559ceb7afb73df08ace8fd8b

Kubernetes-commit: 48a1c729a0c934ea7f6b893b823c9f6279aa763f
 2022-02-26 18:02:52 +00:00
Kubernetes Publisher 32986d31ea Merge pull request #108339 from cheftako/anp-release 
Bump konnectivity-client to v0.0.28

Kubernetes-commit: 109cb7cbe7c355ca8b035a1db902d526335808d6
 2022-02-26 02:11:45 +00:00
Walter Fender c0b912ca94 Bump konnectivity-client to v0.0.28 
Bump konnectivity network proxy to v0.0.28.
Includes a fix to ensure the KAS calls Close() on the egress connection.

Kubernetes-commit: e5b0392f12ed343fbd02266ec785cb31f7071fd3
 2022-02-24 12:35:54 -08:00
Kubernetes Publisher 17ac9279fe Merge pull request #108328 from dgrisonnet/fix-go-collector 
bump client_golang to v1.12.1

Kubernetes-commit: b181e174f25df752eb176c2393b95569646230d3
 2022-02-24 18:11:57 +00:00
Damien Grisonnet 9a1a96e3ff bump client_golang to v1.12.1 
Bump client_golang to v1.12.1 to fix a concurrency issue in the Go
Collector that was introduced by the library in v1.12.0.

Signed-off-by: Damien Grisonnet <dgrisonn@redhat.com>

Kubernetes-commit: 7f3f8d25c856e3075d8526dc918ca0965bd4ffae
 2022-02-24 10:25:12 +01:00