f79926bf43
Revert pr 127400
...
Kubernetes-commit: 95ec1637253c2458d0ed41f257df932907602ca4
2024-10-07 16:11:30 +00:00
3257d91a56
server/config: assing system:apiserver user to system:authenticated group
...
Kubernetes-commit: dfeb560d4a2294c7a9a6233e2acb6b27039ed37a
2024-10-07 17:39:10 +02:00
df45eb6de5
refactor peerproxy_handler and add unit test
...
Kubernetes-commit: 9c65b79ea3b81859698f0f2613c82de99154755d
2024-01-24 19:48:51 -08:00
f900b71720
Move inmemoryresponsewriter into own package
...
Kubernetes-commit: f67e15a26f5958b1ebf07a2590e98889a987677d
2024-09-30 21:11:53 +00:00
8c1054e51e
use structured logging wherever possible
...
Kubernetes-commit: 45a47d634569acad9022733ba35131088e9575e6
2024-09-27 16:54:08 -07:00
40680bab4c
Do not mark errorFetchingAddressFromLease, in case when the there's no address being fetched from the lease object
...
Kubernetes-commit: ac3fd5c634d2d9fd2e4011294f152e64f72d205b
2024-09-27 16:37:46 -07:00
36e57697d1
apiserver/handlers/watch: encode initialEventsListBlueprint with watchEncoder ( #127587 )
...
* apiserver/handlers/get: construct versionedList
* storage/cacher: document caching the serialization of bookmark events
* endpoints/handlers/response: add watchListTransformer
* endpoints/handlers/watch: wire watchListTransformer
Kubernetes-commit: fbf1a0dc181ccbeb9925ad9c284d913a25c16562
2024-10-01 11:55:50 +00:00
38adb499b0
Port the rest of unversioned features
...
Kubernetes-commit: a8390dcddda14274e5ce24dd517a19587118a198
2024-09-27 19:04:47 +00:00
4483cc97cf
apiserver: all bookkeeping must complete before apf handler returns
...
all bookkeeping must complete before the apf handler returns,
whether it panics or returns normally
Kubernetes-commit: 71d9307eaeda86d6a205548ecdeb7fbf226d7d82
2024-09-05 12:01:36 -04:00
a785076ef7
apiserver: fix apf watch test
...
the assert to verify that 'atomicReadOnlyExecuting' is zero
should be executed if the apf handler panics, all apf
bookkeeping must be completed before the handler returns
Kubernetes-commit: 0c8632de57075191e6c4e34897fb7871034c7081
2024-09-05 11:57:47 -04:00
e32a42cf11
fix: enable expected-actual rule from testifylint in module `k8s.io/apiserver`
...
Signed-off-by: Matthieu MOREL <matthieu.morel35@gmail.com>
Kubernetes-commit: fbd773ecb82aa0afef3c02274db901afe1788220
2024-09-27 07:49:07 +02:00
aaeee2a449
fix: enable error-nil and nil-compare rules from testifylint in module `k8s.io/apiserver`
...
Signed-off-by: Matthieu MOREL <matthieu.morel35@gmail.com>
Kubernetes-commit: 09274182e225fcf4df9e4a3d54fd96fc03de3bdf
2024-09-27 07:29:09 +02:00
17d29da911
fix: use `ErrorContains(t, err` instead of `Contains(t, err.Error()`
...
Signed-off-by: Matthieu MOREL <matthieu.morel35@gmail.com>
Kubernetes-commit: f777addb05aed8c2861c423fb29946e85151ecf6
2024-09-26 22:22:20 +02:00
c6ba9681f7
fix: enable contains rule from testifylint in module `k8s.io/apiserver`
...
Signed-off-by: Matthieu MOREL <matthieu.morel35@gmail.com>
Kubernetes-commit: 3b92b9f84d62550a62890d8d3f6a57d96fc70ccc
2024-09-22 11:57:24 +02:00
1bb7b2e6ab
introduce a proper trace context
...
Signed-off-by: carlory <baofa.fan@daocloud.io>
Co-authored-by: CasperLiu <qiuyuzhe521@gmail.com>
Kubernetes-commit: 5b2632f70763aeadfc334df1364946fe39fc10bb
2024-04-07 17:58:59 +08:00
f7eddd4bda
send bookmark right now after sending all items in watchCache store
...
Kubernetes-commit: 723920253349ee3c272c5b5a77e9d19548c1533c
2024-08-29 17:31:36 +08:00
6dc6d8d7fa
chore: moving apiserver featuregates to versioned
...
Signed-off-by: Omer Aplatony <omerap12@gmail.com>
Kubernetes-commit: ade730594005f93ac18e102ba54d61dbf23b616f
2024-09-24 23:36:30 +03:00
8cb411e993
adds watchListEndpointRestrictions for watchlist requests ( #126996 )
...
* endpoints/handlers/get: intro watchListEndpointRestrictions
* consistencydetector/list_data_consistency_detector: expose IsDataConsistencyDetectionForListEnabled
* e2e/watchlist: extract common function for adding unstructured secrets
* e2e/watchlist: new e2e scenarios for convering watchListEndpointRestrict
Kubernetes-commit: ae35048cb0b9b177891aab41346b6d6cc504582f
2024-09-25 12:48:33 +00:00
a84f81807f
Preserve testing of RetryGenerateName feature disablement
...
Kubernetes-commit: 0d14bac9a606cd49e6c346c1220ebdbf1b18fa09
2024-09-19 11:34:59 -04:00
91a4bf232d
Promote RetryGenerateName to GA
...
Kubernetes-commit: e3cae09e63d72edef9cf841979418291acc31b17
2024-09-10 12:34:36 -04:00
cdd40a3d24
pkg/storage/testing/watcher_tests: RunWatchSemantics checks if the storage has been primed with init data
...
Kubernetes-commit: e7e2123feb2f1957be490a21aa606cb2dc718432
2024-09-20 09:37:53 +02:00
eb3a20ad8b
storage/cacher/cache_watcher: processInterval sets RV from the snapshot
...
Kubernetes-commit: de735be512767dd2eced78530693d2e3ae997e6e
2024-09-20 08:48:31 +02:00
743b5776f9
storage/cacher/cache_watcher: add RV to watchCacheInterval
...
Kubernetes-commit: f87e4a19c88fa908eb176ee7925f211bafba9b45
2024-09-20 08:47:49 +02:00
7da1f042b3
tracing: add span for cacher.Get
...
Also updates tracing integration tests for cacher.GetList
Kubernetes-commit: dff0075e7cd687f77fd38337e9ba487bb2437ecc
2024-09-12 14:18:40 +02:00
b489c4ea4e
fix: enable error-is-as rule from testifylint in module `k8s.io/apiserver`
...
Signed-off-by: Matthieu MOREL <matthieu.morel35@gmail.com>
Kubernetes-commit: 0dfc6e2843f913b26c9382144fd2381f4b536bf0
2024-09-22 12:21:19 +02:00
b09ab6e398
Add GroupLister interface to discovery GroupManager
...
Signed-off-by: Mangirdas Judeikis <mangirdas@judeikis.lt>
Kubernetes-commit: ee55200440c8236248f47cbe2dd783ba1a717614
2024-09-21 18:43:56 +03:00
9996ba35fd
fix: enable compares rule from testifylint in module k8s.io/apiserver
...
Signed-off-by: Matthieu MOREL <matthieu.morel35@gmail.com>
Kubernetes-commit: 6e82050ef0e8eae2c31e43b402646d7591e5eca4
2024-09-21 22:18:56 +02:00
614f663b4a
Use emeritus_*
...
Signed-off-by: Andy Goldstein <andy.goldstein@gmail.com>
Kubernetes-commit: 0e228be96f352359847d013ff889522524e1cb98
2024-08-22 17:48:27 -04:00
1ccea00339
Move ncdc to emeritus
...
I am moving myself to emeritus as I am now firmly on the end-user side
of things.
Signed-off-by: Andy Goldstein <andy.goldstein@gmail.com>
Kubernetes-commit: 3ab816dcabf37acda33c665ab5aa85f1f6163bc1
2024-08-17 13:00:07 -04:00
17ab6c21d5
Fix Go vet errors for master golang
...
Co-authored-by: Rajalakshmi-Girish <rajalakshmi.girish1@ibm.com>
Co-authored-by: Abhishek Kr Srivastav <Abhishek.kr.srivastav@ibm.com>
Kubernetes-commit: 95860cff1c418ea6f5494e4a6168e7acd1c390ec
2024-09-12 18:15:22 +05:30
87a5cdebbc
storage/cacher/cacher_whitebox_test:deflake TestCacherDontAcceptRequestsStopped when ResilientWatchCacheInitialization is off
...
Kubernetes-commit: 5b7faca6b66dc0664f36c611867f5799377b0514
2024-09-20 06:40:47 +02:00
bafce892d3
pkg/storage/cacher/cacher_whitebox_test: deflake TestConsistentReadFallback when ResilientWatchCacheInitialization is off
...
Kubernetes-commit: 077c35ee82e40fa808fa4b45b86d843cded3cfa3
2024-09-20 06:15:22 +02:00
5db4826844
fixing inconsistency between the comment and the actual feature gate definition
...
Kubernetes-commit: 8f471803cb386c2a227fa61e922822aab168ec95
2024-09-09 18:33:00 +05:30
b93ecaaa38
remove duplicate unused feature InPlacePodVerticalScaling
...
Kubernetes-commit: 14fe8e2a91ba5f6fc53617bea32223d79e1a060c
2024-09-05 16:27:07 +00:00
07be2984cd
wire in ctx to rbac plugins
...
Kubernetes-commit: 4e4eb8c5c95652b4cbe672a02e4077a93d0bfe2d
2024-09-13 12:03:47 +03:00
fc23f87960
chore: bump DefaultKubeBinaryVersion to 1.32, make 1.32 CEL changes, fix int tests to handle 1 version off API deprecation, and fix prerelease-lifecycle-gen for # of APIs
...
Kubernetes-commit: 701e6c7ab191cb75824378b4a2aceac67be35462
2024-09-05 21:37:38 +00:00
9a5bc0a561
apiserver/admission/webhook: construct static CEL compiler only once
...
Signed-off-by: Dr. Stefan Schimanski <stefan.schimanski@gmail.com>
Kubernetes-commit: 26aeda3cc21db86b1440515f63cd09e2321d568e
2024-09-16 18:23:01 +02:00
535f09400e
drop deprecated json/yaml newSerializers, use json.NewSerializerWithOptions instead
...
Signed-off-by: liyuerich <yue.li@daocloud.io>
Kubernetes-commit: 3c9309db463679c348934429d8487d190ed5e64a
2024-05-29 19:00:00 +08:00
3abc312093
add test coverage for cohabitating resources in StroageFactory
...
Kubernetes-commit: d994895dc4580101f17661eb573fc282d4b8517d
2024-09-12 16:59:08 +08:00
a096b0dd8d
API emulation versioning honors cohabitating resources
...
Kubernetes-commit: cd5b27304f58f6b634be800ec4ec9990d28550a3
2024-09-09 17:54:35 +08:00
206e39c6f1
Test library and type names
...
Kubernetes-commit: 430b1de921b85611b409887fe94988f81ec4d39f
2024-09-10 17:07:29 -04:00
c90ac4722a
Move CEL semver library into common libs, fix cost tests to use registered types
...
Kubernetes-commit: e085f3818a3a1d04d895532cbdd233d797e0913b
2024-09-10 16:55:57 -04:00
6999423628
Add equality cost checking
...
Kubernetes-commit: 0a2dfba067d7c75fafb9844f3cf4539153b582cf
2024-08-27 14:42:58 -04:00
7896cd7b57
add a type for each CEL library, register all types
...
Kubernetes-commit: d2affe304847aa0bef3f81fa622d0b9c70a7f975
2024-07-25 16:33:18 -04:00
8a5b9105e9
add missing comment
...
Kubernetes-commit: 8619996319a07d5c5f777b6e06f54ce3884a73b4
2024-09-07 00:07:31 +05:30
f014f4a768
Fix unit tests for filtering
...
Kubernetes-commit: 6a4170607291288e9b01be8435b82537309c547d
2024-09-09 16:45:32 -04:00
8a764cf9c3
cacher: apply key for initial events only if the call is not recursive
...
Kubernetes-commit: 7cb51b1c278f9eb57c43f929fcc80bfed8438e17
2024-09-10 10:58:26 +02:00
cf15325096
delegate authn: don't default the ReqHeaders UID header
...
Kubernetes-commit: 26902de531620d2df5ce1bb572d2ea6965a7b7e9
2024-05-20 13:43:22 +02:00
60f20c32c7
client-go: add the UID to the auth-proxy roundtripper
...
Kubernetes-commit: 2cc0370169ea1fcf45429f9586e0ffd4ab32ed26
2023-02-16 14:01:53 +01:00
b9e6a66c69
requestheaders: add a "requestheader-uid-headers" flag and wire it up
...
Kubernetes-commit: 7fabd06c2be41f4134f425fa967d79ac31dc5756
2023-02-16 11:28:50 +01:00
e778ced9b7
Remove example feature gate from pkg/apiserver/kube_features.go
...
Kubernetes-commit: 79deb21ac1d0837fbafdf9e1556019062590c1d8
2024-09-04 14:50:41 +00:00
491f6248d4
KEP-4633: Graduate to BETA.
...
Signed-off-by: Vinayak Goyal <vinaygo@google.com>
Kubernetes-commit: 8a4e23ea30bb0af50aa425cea8af926998872ee4
2024-08-22 01:28:57 +00:00
af2142bfe4
Remove GAed feature gates ServerSideApply/ServerSideFieldValidation
...
Kubernetes-commit: de7e4318d6b2ad0de4472dcaef7d97c34057d3d8
2024-09-02 13:52:48 +08:00
cfa44309dd
Revert "apiserver: fix data race in apf tests in server/filters package"
...
This reverts commit dde23bb0b103a00ac9c8e568e81826149b42472c.
Kubernetes-commit: d26772120531617e897a745b1bfd1178648fb995
2024-09-03 19:39:38 +09:00
6bd08c5dc4
Revert "apiserver: improve logging for apf tests in server/filters package"
...
This reverts commit 8fa3e61399b85d534566dca6566ddb287873839c.
Kubernetes-commit: 9fe3b8410726b0276d2d65a79ce7645660d491f9
2024-09-03 19:39:32 +09:00
13c06f3696
Set credential-id in userinfo.extra for jwt authenticators if jti claim present
...
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
Kubernetes-commit: c22a41e879e72ba4c925b06d8aa00e43160a0f86
2024-08-29 17:09:07 -07:00
9d542feed9
apiserver: improve logging for apf tests in server/filters package
...
Kubernetes-commit: 8fa3e61399b85d534566dca6566ddb287873839c
2024-08-07 07:49:54 -04:00
644a2519ca
apiserver: fix data race in apf tests in server/filters package
...
Signed-off-by: jonyhy96 <hy352144278@gmail.com>
Co-authored-by: chenwen <wen.chen@daocloud.io>
Kubernetes-commit: dde23bb0b103a00ac9c8e568e81826149b42472c
2022-01-28 15:03:11 +08:00
a8c26a18b8
Extract watch cache store to separate file and cover with tests
...
Kubernetes-commit: c93d2e8fb19da0082765cb3e5a6db952eca628ce
2024-08-28 13:31:02 +02:00
94a5e3cd04
Refactor WaitUntilFreshAndList to split out filtering to separate function
...
Kubernetes-commit: 7400d57943cf7576925d54e7daa42e397e71dfe4
2024-08-28 12:59:38 +02:00
daa75f8bec
fix memory leak from global MeterProvider
...
Kubernetes-commit: b86cab8c4c3421c6b195fc82990a63c859449072
2024-08-28 14:20:46 +00:00
e312f49d45
fix short circuit if the compaction request from apiserver is disabled
...
Kubernetes-commit: 9fef30117f89830cc8b17610c359141b663844f1
2024-08-12 10:21:49 +08:00
72a449fe98
Define credential IDs for X.509 certificates
...
This commit expands the existing credential ID concept to cover X.509
certificates. We use the certificate's signature as the credential ID,
since this safe and unique.
Kubernetes-commit: 2ad2bd8907d979f709cd924af7986be71c31ce12
2024-06-21 16:21:35 -07:00
9c8c6ccc4d
kmsv2: fixed issue with an invalid authority header being sent by the KMSv2 service
...
Kubernetes-commit: 618ca85bc9482ea11cf792331688fdf0c7b54518
2024-08-26 14:43:02 -10:00
28d9c91abf
Add basic panicOnUnknown support for kubernetes types
...
Kubernetes-commit: f6995740a6fe4b90103131516c3318f158209d21
2024-07-25 15:53:39 -04:00
65a6ca8228
support opaque kinds
...
Kubernetes-commit: 953fbaca487c45e3e1fc655d212008a2be01ac53
2024-07-25 15:04:09 -04:00
cbc488649b
Fix estimated cost for Kubernetes defined CEL types
...
Kubernetes-commit: 0a4e863373abc1b84372b0a93c8bcd32a24d07fb
2024-07-25 14:14:20 -04:00
fed8dfe736
dynamiccertificates: denoise Kubelet logs by skipping removal of non-existent file watchers
...
This commit updates the DynamicFileCAContent controller to skip the removal
of non-existent file watchers. Previously, the controller attempted to remove
a file watch even if it didn't exist, which resulted in a flood of error messages
being logged in the Kubelet logs.
Signed-off-by: Sohan Kunkerkar <sohank2602@gmail.com>
Kubernetes-commit: 17ad4b39f8b6b299d20fb94f99083ea84083b6b2
2024-07-23 10:55:16 -04:00
de0559ec7b
Benchmark storage
...
Kubernetes-commit: fa5008807add2776ff87f346a7b7d3c029d19efc
2024-07-02 22:50:57 +02:00
e9e24680dc
Remove FG inspection from VAP plugin
...
Kubernetes-commit: 72ad9c5fdf782f824281ecf9e18ec36caaa9472b
2024-08-22 17:52:21 +00:00
fac4f5d2a0
Remove feature gate ValiatingAdmissionPolicy after stable.
...
Kubernetes-commit: 0f19faf9be562f3d18880ed2ae12d6b9d059476c
2024-08-12 12:11:02 -07:00
2ed104b2e5
fix ValidatingAdmissionPolicy's Validate func to return decision with valid Evaluation
...
Kubernetes-commit: 9f7ea45ea0ffc76be7793dbcb4730a98fa03bcf5
2024-08-22 13:33:17 +09:00
132d3e46d6
Add paging tests
...
Kubernetes-commit: 99e69569808cf746262b25a9d9d515c26256c7e5
2024-07-07 16:15:47 +02:00
fcf807e7b4
add resource to the transformation metrics
...
Kubernetes-commit: 3a8df1efdd83015773be4afd409b0f4cb7eab654
2024-08-01 15:46:50 -07:00
f434fbf0c7
init a common apiserver for TestAuthorizationDecisionCaching testcases
...
Kubernetes-commit: 4acedb5132b2c3a7d61bd9e088c964af3fcfee3d
2024-07-23 22:19:02 -07:00
1d26753b4b
split Test_ValidateNamespace_NoParams into successes and failures tests, init a common apiserver for all testcases
...
Kubernetes-commit: 9df04b7c782cccc5fb068554152b4dcd9baf408b
2024-07-23 21:41:32 -07:00
43a56206a7
cleanup unused fn GetOrCreateServiceAccount in serviceaccount/util
...
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
Kubernetes-commit: 2f96a788e299ef3cea08d0cb03b13c584496891c
2024-08-18 21:04:51 -07:00
cc8ff8f965
ForbiddenStatusError: make linter happy on error construction
...
Signed-off-by: Monis Khan <mok@microsoft.com>
Kubernetes-commit: bff6ce4a38077c29cdf2e1ac2fce1a551082ebfe
2024-08-05 10:50:51 -04:00
757565c389
SSA: improve create authz error message
...
Signed-off-by: Monis Khan <mok@microsoft.com>
Kubernetes-commit: 857127f7c44a029f6f8dd44b0b40364aa00aa13d
2024-08-02 17:20:53 -04:00
fed75d52d6
Disallow k8s.io and kubernetes.io namespaced extra key in structured authn config
...
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
Kubernetes-commit: 89c619f4fe698bf5b208ce86bce5da6833ca77b6
2024-08-05 16:09:00 -07:00
cd5bba1780
Ensure transformers have access to the resource via request info
...
This guarantees that logs and metrics that rely on this information
work as expected.
Signed-off-by: Monis Khan <mok@microsoft.com>
Kubernetes-commit: 49d7b4c97e4f7ee5c664b068c207a39b8c3f759e
2024-08-14 10:33:36 -04:00
272e9eba82
Remove KMSv2 and KMSv2KDF feature gates
...
These have been GA since v1.29 and can be safely removed.
Signed-off-by: Monis Khan <mok@microsoft.com>
Kubernetes-commit: 6398b8a19fe0e113cf250c13b0639dea258a174f
2024-08-14 15:59:01 -04:00
27c3ca736b
apiserver: declare kubeClient and dynamicClient as interface types to avoid panic
...
Kubernetes-commit: 81824b7c2e673f64f70a6e99180bb6bfc6b738d9
2024-08-13 11:25:11 +08:00
77331233f8
Restore honoring --version build ID overrides
...
Kubernetes-commit: c181912dc5d8559834857e69ea34ee1729c43c6b
2024-08-13 18:48:56 -04:00
41e1af4df2
remove duplicate call for ServeMux
...
Kubernetes-commit: 838d7c9049439b5997f0947258e183d677788475
2024-08-07 02:56:49 +05:30
552e7d7170
Using NewExpressions for cel lazy test.
...
Signed-off-by: Lan Liang <gcslyp@gmail.com>
Kubernetes-commit: 9a8d6b72e4f1e33e6a30fd281fd0972fdce93f78
2024-07-25 10:08:15 +00:00
febd487238
Validate structured authn feature is enabled for discovery url/multiple
...
audiences
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
Kubernetes-commit: f80c73248f872769d72b620e567747a1018f8a2b
2024-07-23 15:04:02 -07:00
3adae5fd46
Make object transformation concurrent to remove watch cache scalability issue for conversion webhook
...
Test by enabling consistent list from cache in storage version migrator stress test that uses
conversion webhook that bottlenects events comming to watch cache.
Set concurrency to 10, based on maximum/average transform latency when
running stress test. In my testing max was about 60-100ms, while average
was 6-10ms.
Kubernetes-commit: bb686f203308481bcd7808f767171cdef27e12a0
2024-07-22 11:24:37 +02:00
9aa7a6ac61
Introduce ConcurrentWatchObjectDecode feature gate disabled by default
...
Kubernetes-commit: 93a10a75698075e86344ee4fdb56701309468b95
2024-07-30 16:28:48 +02:00
c470f38c60
Move ConsistentListFromCache to Beta default again
...
This reverts commit aeb51a16e369d5b823a8ae6488d1d5e12c683516.
Kubernetes-commit: 2ca56aab87d0927e568f1d896d49692433d5d93a
2024-07-30 22:49:47 +02:00
788e7ee758
Move APIServingWithRoutine to alpha and disabled by default.
...
Kubernetes-commit: c8380040848fcbd0a0cc06600b9d4531b65098d2
2024-07-30 16:33:31 -04:00
6c5ee08ccf
Implement fallback for consistent reads from cache
...
Kubernetes-commit: 35962561e44425fe5e23f19aeccba9269fab3a56
2024-07-30 18:57:22 +02:00
e749b346fa
CLE feature gate
...
Kubernetes-commit: 9b16b0dc97c3f353f60eb935a8a532ec82b5e18e
2024-07-21 20:04:36 +00:00
92ee9330ce
Allowing direct CEL reserved keyword usage in CRD ( #126188 )
...
* automatically escape reserved keywords for direct usage
* Add reserved keyword support in a ratcheting way, add tests.
---------
Co-authored-by: Wenxue Zhao <ballista01@outlook.com>
Kubernetes-commit: a48a92c72ec7d4e2a8da396309abff9360faae75
2024-07-24 01:23:51 +00:00
130a469e09
Validate CABundle when writing CRD
...
Kubernetes-commit: a5791b344c04ded4f443c7e134242a29bd0e2bac
2024-03-26 15:59:16 +00:00
f438154cef
Adds metrics to PortForward Websockets
...
Kubernetes-commit: 90d70ed73dd7fcc9465baf452d178eb72f2aaf90
2024-07-17 21:29:31 -07:00
c1c9700b75
CEL: add QuantityDeclType
...
Most functions in k8s.io/apiserver/pkg/cel work with DeclType for type
definitions, which made the existing QuantityType unusable with them. The new
QuantityDeclType fills that gap.
Kubernetes-commit: bcececadfb5b7deb3f6ecb253a73ea98a2fdd80c
2024-07-17 19:36:36 +02:00
3d5977276b
Promote metrics for VAP and CRD validation rules to beta.
...
Kubernetes-commit: 95dbfa1c3d2f62e5d0f52788a2dd19fc61ca0a36
2024-07-19 20:46:33 +00:00
5678a8c44d
Remove feature gate CustomResourceValidationExpressions.
...
Kubernetes-commit: 67a171a1422cc5861491aadd69e51ce718196434
2024-07-16 10:39:00 -07:00
6c5ca3dcf3
Fixup lint warning
...
Kubernetes-commit: 9f8f36708a0eb1ad78e48beeaf15f2c6ae3e1552
2024-06-27 00:42:01 -04:00
eabf12957a
Add structured labelSelector / fieldSelector to authorization webhook match conditions
...
Kubernetes-commit: a1398a8ccaeb7f881acb65d1276392f4cac259e8
2024-06-26 17:17:43 -04:00
f14fc0f445
Adjust CEL cost calculation and versioning for authorization library
...
Kubernetes-commit: 83bd512861aa11ec00a90e4ac382daa788dccf87
2024-06-26 21:38:24 -04:00
efe135c937
Add CEL fieldSelector / labelSelector support to authorizer library
...
Kubernetes-commit: be2e32fa3ed0a06ac9cc59d9966be0b40617c2b2
2024-06-14 14:39:54 -04:00
b338834e91
Move CEL env initialization out of package init()
...
This ensures compatibility version and feature gates can be initialized
before cached CEL environments are created.
Kubernetes-commit: 03d48b76831a3a02d503c3075d818a76afd83cd8
2024-06-29 21:45:55 -04:00
9db3f571d5
Improve CEL cost tests to catch unhandled estimates or types
...
Kubernetes-commit: 1d2ad282cff163e51e5c24569a0ac762ed814e74
2024-06-26 21:38:48 -04:00
f26d4ed894
add field and label selectors to authorization attributes
...
Co-authored-by: Jordan Liggitt <liggitt@google.com>
Kubernetes-commit: 92e3445e9d7a587ddb56b3ff4b1445244fbf9abd
2024-05-23 15:12:26 -04:00
cd492e8b91
Fix the error type, Add into observation, Fix tests.
...
Kubernetes-commit: b7821078b36f1cb25d903774ddf37a97966c2eac
2024-07-16 08:27:36 -07:00
8b22c5cc3d
make use of new error reporting in the dispatcher.
...
Kubernetes-commit: d61edc51b84774c158b3866ab9a0678d4ddaba96
2024-04-26 11:49:44 -07:00
8f577b916d
remove unused policy_definition_total metric and state label
...
Kubernetes-commit: 8e9232ef46d5b08ab4f95ad6c1e93671ef1bd5ba
2024-04-25 18:30:26 -07:00
2ae742ecb6
make Err wrap one or zero error.
...
Kubernetes-commit: ce45a82346623d19168b0b85cbba5ba4ff164417
2024-04-25 17:59:32 -07:00
8be90f624a
errors improvement.
...
Kubernetes-commit: b846c39047289e69d932ea9d5d4dadc6856ad0c7
2024-04-23 16:54:47 -07:00
eb8f232a36
Add unit test of borrowing by exempt, fix bug
...
Signed-off-by: Mike Spreitzer <mspreitz@us.ibm.com>
Kubernetes-commit: 9aa9d3d4b7c637a0796e5a25c312a999ac628bd9
2024-06-12 03:38:15 -04:00
010634c01b
More assertive borrowing by exempt
...
Happy middle ground with what the KEP says?
Signed-off-by: Mike Spreitzer <mspreitz@us.ibm.com>
Kubernetes-commit: 56fc11f3bef9f6af16aa30731050168e732754a2
2024-05-08 02:30:27 -04:00
708f0cf46b
Revert "kube-apiserver: promote WatchList feature to beta"
...
This reverts commit 0b15903b35d83ca32833e81997b6257ee4d4f369.
Kubernetes-commit: 88f47b4b4df2f099cc20381fdc0fbcfe0afcee8e
2024-07-18 09:29:24 +02:00
17ba1a9a64
Revert "Move ConsistentListFromCache to Beta default"
...
This reverts commit 0c0e19b343d48d4bea0e7fa735e3781c70298a34.
During stress test for SVM controller, the controller is unable to
make a list call due to following error:
resourceversion.go:155: I0716 21:49:26.973127] storage-version-migrator-controller: Error syncing SVM resource, retrying svm="crdsvm" err="error getting latest resourceVersion for stable.example.com/v1, Resource=testcrds: Timeout: Too large resource version: 28976, current: 20349"
With the feature disabled, the stress test passes.
Signed-off-by: Monis Khan <mok@microsoft.com>
Kubernetes-commit: aeb51a16e369d5b823a8ae6488d1d5e12c683516
2024-07-16 23:12:16 -04:00
7f5df11548
add emulated-version flag to kube-scheduler to control the feature gate.
...
Signed-off-by: Siyuan Zhang <sizhang@google.com>
Kubernetes-commit: 40cddbe21516122a528e2afb2b1fbcaed1acbe8a
2024-06-27 11:56:49 -07:00
8705baa8b2
fix: enable empty and len rules from testifylint on pkg package
...
Signed-off-by: Matthieu MOREL <matthieu.morel35@gmail.com>
Co-authored-by: Patrick Ohly <patrick.ohly@intel.com>
Kubernetes-commit: f014b754fb5925dfbca6e27a44d0c3968b157e14
2024-06-28 21:20:13 +02:00
fd1f3aafaf
Fix typo in error message for anonymous field in AuthenticationConfiguration.
...
Kubernetes-commit: 27e8923c70c8bf95e0db02aeb7a0d45908ae9d62
2024-07-09 21:04:28 +00:00
5f6927c810
add test to document request timeout behavior
...
- using the default handler chain of the kube-apiserver
Kubernetes-commit: c6210ff8ab4a94d1dd31a56acc16dc9fdc2333f4
2024-05-07 13:52:18 -04:00
6f7147fc9d
fix lock bug for componentGlobalsRegistry
...
Signed-off-by: Siyuan Zhang <sizhang@google.com>
Kubernetes-commit: d31aebe57224b678a0c17df7766d8e7f850209e8
2024-07-05 15:50:10 +00:00
1292729d42
Fix for typecheck doesn't notice compile errors in test files
...
- ensure we add all the staging modules so the _test files in there are "loaded"
- use build tags to skip tests that fail to build in specific os/arch pairs
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
Co-Authored-By: Tim Hockin <thockin@google.com>
Kubernetes-commit: c230a45383c372e3861de3d4854cdfe28f4c482f
2024-07-02 16:26:41 -04:00
b754d6e7f2
Remove special case logic in apiserver to serve all APIs when binary version is set artifically to 0.0
...
Kubernetes-commit: 1864e7131eca32fc9bebf20641becb467f240eca
2024-07-03 14:16:15 -04:00
f553925235
apiserver: remove feature gate APIPriorityAndFairness
...
Kubernetes-commit: ae647032a74bf8f671fa8db0602dee301cf865bf
2024-07-02 12:55:43 -04:00
5d14d72b5c
Fix httplog not logging watch duration in separate goroutines
...
Signed-off-by: Eric Lin <exlin@google.com>
Kubernetes-commit: 06c7058115e623126884d05c54a30db511a9cb71
2024-06-21 10:03:31 +00:00
a643e14347
Implement resilient watchcache initialization post-start-hook
...
Kubernetes-commit: a5772bd42593f6492f5169eef49bc9884f95abba
2024-06-13 11:02:18 +02:00
8321755755
kube-apiserver: promote WatchList feature to beta
...
Kubernetes-commit: 0b15903b35d83ca32833e81997b6257ee4d4f369
2024-06-19 11:48:20 +02:00
77f498853b
KEP-4633: Allow health-only anonymous auth mode.
...
Signed-off-by: Vinayak Goyal <vinaygo@google.com>
Kubernetes-commit: 5e6a4937f5a3e20dd77238946220461332ecddff
2024-05-16 21:18:34 +00:00
5e71b4e71d
apiserver/storage/watchcache: WaitUntilFreshAndList supports path prefix
...
Kubernetes-commit: 2f9660db6b0ba37ff383559b1b0324c635f1eb66
2024-06-26 14:34:32 +02:00
bc659f87fc
flowcontrol/request/list_work_estimator: sync shouldDelegateList
...
Kubernetes-commit: c259fe2342162a0c883845bfbdf8a838697fe085
2024-06-17 16:14:39 +02:00
54645c663b
apiserver/storage/cacher: cache supports pagination
...
Kubernetes-commit: 09e85983d84b5f6c3fed6c09dd0adcbdde7e9d5f
2024-06-10 10:14:38 +02:00
f0e44d48b8
apiserver/storage: storagetesting.RunTestList validates RemainingItemCount
...
Kubernetes-commit: f9b15700fb5a99ab74d51c7779ea2aae0f51168c
2024-06-27 11:01:37 +02:00
9afcce8b2b
storage/cacher/cacher_whitebox_test.go: deflake TestWaitUntilFreshAndListFromCache
...
Kubernetes-commit: 662672a6cacd71ad0cfc168a793d6a75a7e0ffff
2024-06-26 15:04:15 +02:00
58b911dc71
Fix test flakes for TestWatchSemantics
...
Kubernetes-commit: 5081ba45f9ed84784a250338ee6d96b485ff4e4a
2024-06-26 17:49:54 +02:00
5a2cafd6ec
drop deprecated PollWithContext and adopt PollUntilContextTimeout instead
...
Signed-off-by: yintong.huang <yintong.huang@daocloud.io>
Kubernetes-commit: 2db1b321e0edf9e3c4e434353d505cec96bfb319
2024-06-21 19:23:31 +08:00
4500696478
apiserver/storage: decrease running time of RunWatchSemantics
...
Kubernetes-commit: c6ef512b5bb15aa3c2430ae03dad91e16a342bce
2024-06-26 10:49:20 +02:00
6c1033e89d
Remove 5 seconds from TestWatchStreamSeparation execution by reusing etcdserver
...
Kubernetes-commit: 1c111c603e1962b4bfd5aae40d8a5ecc0e3ad9d5
2024-06-26 11:32:57 +02:00
1c9c46740e
Revert "apiserver/storage/cacher: consistent read from cache supports limit"
...
Kubernetes-commit: df17ea2e37d1b36dcda10fe20de5484c41c615b5
2024-06-26 11:51:12 +08:00
b26fefe178
add DefaultComponentGlobalsRegistry flags in ServerRunOptions
...
Signed-off-by: Siyuan Zhang <sizhang@google.com>
Kubernetes-commit: 379676c4bef48e5d2add28851302b55b41fcabcf
2024-06-10 17:50:22 +00:00
00857ca9ec
Add version mapping in ComponentGlobalsRegistry.
...
Signed-off-by: Siyuan Zhang <sizhang@google.com>
Kubernetes-commit: 4352c4ad2762ce49ce30e62381f8ceb24723fbcc
2024-05-31 20:29:48 -07:00
c80af88d21
Add composition flags for emulation version and feature gate.
...
Signed-off-by: Siyuan Zhang <sizhang@google.com>
Kubernetes-commit: 701e5fc3744c2b21ba5b1ca3399b71c9becf06d0
2024-05-30 12:08:52 -07:00
22612a3528
apiserver: Add API emulation versioning.
...
Co-authored-by: Siyuan Zhang <sizhang@google.com>
Co-authored-by: Joe Betz <jpbetz@google.com>
Co-authored-by: Alex Zielenski <zielenski@google.com>
Signed-off-by: Siyuan Zhang <sizhang@google.com>
Kubernetes-commit: 403301bfdf2c7312591077827abd2e72f445a53a
2024-01-19 16:07:00 -08:00
11d0eb6174
drop OWNERS in kubeadm
...
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
Kubernetes-commit: 16e24513b76f66bfa47a93291ec52a2fcd1e11c0
2024-06-25 06:36:05 -04:00
cca712b8b8
Add sig/etcd labels for related directories
...
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
Kubernetes-commit: 1390ac0e250da4697b706c68cbb955268e27037d
2024-06-24 17:03:34 -04:00
2aadb1cb38
cacher: returns an error when watch list was requested and storage.RequestWatchProgress is disabled
...
Kubernetes-commit: cb8cbc60a15dd340ea834974355bd2f03453727c
2024-06-17 15:29:59 +02:00
b5d1135b94
Apply feedback
...
Kubernetes-commit: 13f809478f9322341a04715cda1b3912a9e470d5
2024-06-03 14:59:31 -04:00
dfdf159360
Handle unstructured objects correctly in IgnoreManagedFieldsTimestampsTransformer
...
Kubernetes-commit: c942ab6900ddb7b6e3e7c550c521409693180968
2024-05-31 21:25:25 -04:00
1e440f380b
flowcontrol/request/list_work_estimator: sync shouldDelegateList
...
Kubernetes-commit: a7b1a9bb267cd721e673ae8352f068b4bc0b2f05
2024-06-17 16:14:39 +02:00
062ed2e6c0
apiserver/storage/cacher: cache supports pagination
...
Kubernetes-commit: 87536f367dd67b4fd9b1c7ee31189896921f2f9e
2024-06-10 10:14:38 +02:00
30fd718497
Fix apply equality check to allow empty map to be equal to nil for builtin types
...
Kubernetes-commit: f8a33e3679488e5ee3700d37dd45cee8b346e89e
2024-06-04 12:11:00 -04:00
ddbe9fe28a
Move ConsistentListFromCache to Beta default
...
Kubernetes-commit: 0c0e19b343d48d4bea0e7fa735e3781c70298a34
2024-02-26 14:34:53 +01:00
22c2235078
Explicitly disable ConsistentListFromCache in TestGetListNonRecursiveCacheBypass
...
Kubernetes-commit: 4e51e9cff8f48a38bb5ce45e8602842486c3a59e
2024-02-26 16:43:24 +01:00
2ac45c2a57
storage/cacher/cacher_whitebox_test.go: deflake tests that require storage.RequestWatchProgress
...
Kubernetes-commit: 47a61f03d4fad96fb40f4c1c6857061ee68b7ca5
2024-06-17 16:54:44 +02:00
2abbfffe9a
Fix TestGetListRecursivePrefix for all types of LIST
...
Kubernetes-commit: c207f967ac3122d3a2a5ae4befdc5ada22347323
2024-06-19 10:31:37 +02:00
e5e53b7acc
apiserver: fix watch namespace
...
For request like '/api/v1/watch/namespaces/*', don't set scope.namespace.
Because the func `addWatcher` add a watcher to allWatchers with the value `scope.namespace` not empty.
But the function `dispatchEvent` dispatch event with an empty namespace.
Signed-off-by: xyz-li <hui0787411@163.com>
Kubernetes-commit: 818fabe37b3fd7cebe36a43244120388977373cd
2024-05-27 17:48:49 +08:00
253c97b2e8
apiserver/storage: factor PrepareContinueToken to a new function ( #125548 )
...
* apiserver/storage/continue: intro PrepareContinueToken
PrepareContinueToken prepares optional
parameters for retrieving additional results for a paginated request.
This function sets up parameters that a client can use to fetch the remaining results
from the server if they are available.
* apiserver/storage/etcd3: refactor to use PrepareContinueToken
Kubernetes-commit: efef32652af0af08a0b9c9bc547a4dce4a95f9f5
2024-06-17 18:23:23 +00:00
48995fc82a
Fix flaking TestStoreListResourceVersion
...
Kubernetes-commit: e59988d769a87ec3efb12af0f9909f7549eecf05
2024-06-11 23:12:23 -03:00
2c2eb3836c
kube-apiserver: remove deprecated otel NewNoopTracerProvider
...
Signed-off-by: TommyStarK <thomasmilox@gmail.com>
Kubernetes-commit: cce8551272de44882a3cd4fc7c06805247941086
2024-06-07 19:57:37 +02:00
147e65f573
Reduce lock contention by using reader lock in watchcache interval
...
Kubernetes-commit: 6f0a400a1a7bb7d77d13181a91654f77f612c856
2024-06-11 12:20:57 +02:00
a8b9f862fb
Add tests for how recursive parameter works with object prefixes
...
Kubernetes-commit: faa6193f34f7dac775328fbacb2f957370482024
2024-06-11 14:29:51 +02:00
794b1d5ff6
Expose resource version metrics from watchcache
...
Kubernetes-commit: dbed4f12107c549d8bb9efab105162d32316ce01
2024-06-07 09:39:23 +02:00
5a0e942d09
Implement ResilientWatchCacheInitialization
...
Kubernetes-commit: a8ef6e9f0104a44023162bb8229fb677ec80beb1
2024-04-29 14:19:46 +02:00
9cab6e4eee
cacher: apply key for initial events
...
For case of SendInitialEvents, a buffer of objects is created. That
process takes a significant amount of memory and CPU when the resource
is of a large volume. Many objects may be not relevant when key is provided.
This commit applies key when composing the buffer for SendInitialEvents.
Signed-off-by: Eric Lin <exlin@google.com>
Kubernetes-commit: d9c6c8aa5047d724e0ebc8907f5fee4b10012ae3
2024-05-04 10:46:02 +00:00
175dd7c904
cacher: dispatchEvents is synced to watchCache.listResourceVersion
...
The internal informer populates the RV as soon as it conducts
The first successful sync with the underlying store.
The cache must wait until this first sync is completed to be deemed ready.
Since we cannot send a bookmark when the lastProcessedResourceVersion is 0,
we poll aggressively for the first list RV before entering the dispatch loop.
Kubernetes-commit: a20abdb1f425b215ce969ef7114281741fce249d
2024-06-03 10:26:50 +02:00
eecd18b483
Annotate APF Wait Queue Latnecyto understand at the request level
...
Kubernetes-commit: 9a0d922a296e837b344d5538c0829d9e222c2ef6
2024-03-13 21:54:59 +00:00
f59dd2d95e
Add /readyz for kube-scheduler
...
/readyz contains `sched-handler-sync`, `leaderElection` (when election is
enabled) and `shutdown` checks
Kubernetes-commit: 44c08fdbd592b7c167ad0c3b0b4a3b52b99c116f
2023-05-20 16:38:21 +00:00
942c16fb6a
Use canonical json-patch v4 import
...
The canonical import for json-patch v4 is
gopkg.in/evanphx/json-patch.v4 (see
https://github.com/evanphx/json-patch/blob/master/README.md#get-it for
reference).
Using the v4-specific path should also reduce the risk of unwanted v5
upgrade attempts, because they won't be offered as automated upgrades
by dependency upgrade management tools, and they won't happen through
indirect dependencies (see
https://github.com/kubernetes/kubernetes/pull/120327 for context).
Signed-off-by: Stephen Kitt <skitt@redhat.com>
Kubernetes-commit: 5300466a5c8988b479a151ceb77f49dd00065c83
2024-02-16 13:57:24 +01:00
2c4a9730b5
Reset timer to zero when no progress notify was sent
...
Kubernetes-commit: 98e384fcd093d3cff4767ee009f8164b83bd4753
2024-05-24 11:07:01 +02:00
6fb09e7027
Use normal Mutex instead of RWMutex
...
There is no benefit of having RWMutex as we have one reader and multiple
writers. In such cases RWMutex has worse performance than Mutex.
Kubernetes-commit: 544ea424826ef60d703c5f4fb91b2c6a95f303aa
2024-05-24 10:16:48 +02:00
9af63b1bc9
Don't signal when lowering number of waiting routines
...
Signal is not needed as we never need to wake up when the waiting
is lowered, only when increased.
Kubernetes-commit: e6b54149bb42d58301e34872ebbcf2ea4bcfb474
2024-05-24 10:13:52 +02:00
be4e4c6bdd
Use timer instead of ticker in progress requestor
...
Ticker behaves differently from what we want, we need a stable period
interval, but ticker doesn't provide that. From NewTicker docstring:
```
The ticker will adjust the time interval or drop ticks to make up for slow receivers.
```
Unfortunatelly there is no way to test it as the FakeClock doesn't
follow the real ticker behavior.
Kubernetes-commit: 7c0e9cda461e176959866b9c2d03b00e817e9b76
2024-05-24 10:10:27 +02:00
feabdb6d52
make test parallel in for loop
...
Kubernetes-commit: 40a25463fa48ee49a713b80b2157c362438960e2
2024-03-25 09:39:01 +08:00
73c903e9cd
Update cel env to 1.30
...
Kubernetes-commit: 6980cda87d548824a7cf33260096357ab3764bbe
2024-05-09 15:39:30 -07:00
34333a8e98
Reduce critical section for watchcache.lock
...
Kubernetes-commit: 202b4ffdf0cff90b5954d3442a1cdf7f2517cb2d
2024-05-21 13:58:35 +02:00
b0c3a41fa5
encryptionconfig: detect typos
...
Signed-off-by: Monis Khan <mok@microsoft.com>
Kubernetes-commit: 2503fa55ff13e3211e9f17fa97f70f9a67f3f6fc
2024-05-16 12:38:42 -04:00
438190132c
storage/cacher: waitUntilWatchCacheFreshAndForceAllEvents checks if storage.RequestWatchProgress is supported
...
Kubernetes-commit: 2db69ae1cd0073da97a0efdacf5df0ad42abce4c
2024-05-14 12:53:43 +02:00
0750099ebf
storage/cacher: dispatchEvents use progressRequester
...
Kubernetes-commit: 33f81ee23fc3f48d2f3aee85661944792c117694
2024-05-08 15:43:23 +02:00
65ef30865d
move to generics for sets in kubeapiserver
...
Kubernetes-commit: b14936f6795028b1d8dd9f6a4cb0361b4c7bb9bc
2024-05-12 11:49:42 +03:00
d44012e895
Adding the feature gates to fix cost for VAP and webhook matchConditions.
...
Kubernetes-commit: d6e4115ead6b93d2accf688876471231b365ceae
2024-05-01 16:26:41 -07:00
8137baec35
Feat: warn user if etcd version is not supported for RequestWatchProgress
...
Kubernetes-commit: 9f8273a5c5d6d087c0839145616c828ab9a62f60
2024-04-29 15:56:35 +03:30
c05e83dd40
Expose DisableHTTP2 flag in SecureServingOptions
...
This is to mitigate CVE-2023-44487
until the Go standard library and golang.org/x/net
are fully fixed.
Signed-off-by: Jayapriya Pai <janantha@redhat.com>
Kubernetes-commit: e2503e50381cc9cc2e4a4c90f0738e54992558f8
2023-12-05 11:41:58 +05:30
da88853b95
Use the generic/typed workqueue throughout
...
This change makes us use the generic workqueue throughout the project in
order to improve type safety and readability of the code.
Kubernetes-commit: 6d0ac8c561a7ac66c21e4ee7bd1976c2ecedbf32
2024-04-28 18:26:18 +02:00
e721afc903
Promote RetryGenerateName to beta
...
Kubernetes-commit: 1b59f3678fa95cb6bf647e349dd8ba023914eff0
2024-05-01 20:34:21 -04:00
f01be2e04b
Updated & added visibility to apiserver x509 test certificates expiring this year
...
Kubernetes-commit: 12795107a1685d3701425db9119546b3b77b6e19
2024-05-02 23:22:55 +00:00
2f368abc9f
Remove unused NewSecure function in requestheader.go
...
Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
Kubernetes-commit: 699d1f1b7a14fea4d97c41854b6428e0b6313c2c
2024-04-29 11:19:54 -07:00
7d59581b90
apiserver/options: avoid segfault by handling unset core k8s client
...
Fixes: https://github.com/kubernetes/apiserver/issues/108
Signed-off-by: Andrew DeMaria <ademaria@cloudflare.com>
Kubernetes-commit: b2d1aef1e3800c73e266131e585069eb3b177591
2024-04-22 12:50:23 -06:00
eca9e91401
Fix data race in apiserver mux handler
...
Signed-off-by: cyclinder <kuocyclinder@gmail.com>
Kubernetes-commit: 6a194182a141665cfcb9b03815d77cd1e468d34e
2024-02-20 14:34:22 +08:00
fd60fafe9c
Deflake watchcache tests
...
Kubernetes-commit: 6d9edcc694415d4c1a897c4312ecd872a7f0fbf3
2024-04-29 14:26:25 +02:00
5ea67c789a
apiserver + controllers: enhance context support
...
27a68aee3a4834 introduced context support for events. Creating an event
broadcaster with context makes tests more resilient against leaking goroutines
when that context gets canceled at the end of a test and enables per-test
output via ktesting.
The context could get passed to the constructor. A cleaner solution is to
enhance context support for the apiserver and then pass the context into the
controller's run method. This ripples up the call stack to all places which
start an apiserver.
Kubernetes-commit: b92273a760503cc57aba37c4d3a28554f7fec7f8
2023-12-01 09:00:59 +01:00
d8646c593d
drop deprecated workqueue NewNamed package
...
Signed-off-by: liyuerich <yue.li@daocloud.io>
Kubernetes-commit: 98dfaed4bec33b4995572685eb084d8202ac235b
2023-10-16 18:11:17 +08:00
2b7a0cfef8
Add FeatureSupportChecker for etcd storage
...
Kubernetes-commit: 70e65eee46cbf72efabe8440a92117d1fedf6497
2024-04-23 16:58:01 +03:30
74fb076497
Cleanup defer from SetFeatureGateDuringTest function call
...
Kubernetes-commit: 3ee81787685e47a7a5da22423c8ca4455577ecb3
2024-04-23 10:39:47 +02:00
5571570302
Remove workarounds for https://github.com/etcd-io/etcd/issues/17507
...
Kubernetes-commit: a08d1b5f3286c6f3698abf59022055dc0b4b922f
2024-04-23 12:27:03 +02:00
0e8e550153
Upgrade etcd libraries to v3.5.13
...
Add otelgrpc.WithMessageEvents(otelgrpc.ReceivedEvents, otelgrpc.SentEvents) to tracing options due to https://github.com/open-telemetry/opentelemetry-go-contrib/pull/3964
Kubernetes-commit: 3e5b03eb433ee359782f5aa6e9368ab2a0d0370c
2024-04-23 11:10:37 +02:00
1412222ded
feature: add name formats library to CEL
...
Kubernetes-commit: 0ed65fca7a2e5fc643102952b5361fdeeedde4b5
2024-02-28 18:04:33 -08:00
26d34beacd
test: typecheck cel test cases
...
Kubernetes-commit: 11a6edfc887f3bc983165d19b05fca566ed82ba7
2024-04-19 13:52:22 -07:00
63c6cc2b91
add trivial FindStructFieldNames to TypeProvider.
...
Kubernetes-commit: 73d67d86132702795685bf43f47ad167c0108b5a
2024-04-15 14:02:36 -07:00
6f6178ef97
refit cost estimator with ast.Expr
...
Kubernetes-commit: ac5391fa21fc80559f70b72c42e64d3fa7569a42
2024-04-15 13:50:04 -07:00
dcdc23d1b3
apiserver/storage/cacher: decrease running time of TestCacheWatcherDrainingNoBookmarkAfterResourceVersionReceived
...
before:
go test -v -race -count 1 -run ^TestCacheWatcherDrainingNoBookmarkAfterResourceVersionReceived$
ok k8s.io/apiserver/pkg/storage/cacher 3.792s
after:
go test -v -race -count 1 -run ^TestCacheWatcherDrainingNoBookmarkAfterResourceVersionReceived$
ok k8s.io/apiserver/pkg/storage/cacher 1.783s
Kubernetes-commit: d21b86d53a3c4c42e41f8374e537c721251a00d2
2024-03-14 10:44:51 +01:00
f687e45ec2
prioritize user EtcdOptions.StorageConfig.StorageObjectCountTracker
...
Kubernetes-commit: 587ce02d90f3c1e1bb7418753009baf63f6039b7
2024-04-18 23:02:16 +08:00
70fb342c48
Fix: StorageObjectCountTracker is nil, apf estimator got ObjectCountNotFoundErr
...
Kubernetes-commit: 4abc2b387b188d694e369e05c08effce9d23e7e7
2024-04-08 11:09:27 +08:00
Cici Huang
Lukasz Szaszkiewicz
Richa Banker
Jefftree
Abu Kashem
Matthieu MOREL
CasperLiu
Chaunceyctx
Omer Aplatony
Joe Betz
Vadim Rutkovsky
Mangirdas Judeikis
Andy Goldstein
Abhishek Kr Srivastav
Adarsh-verma-14
Aaron Prindle
Dr. Stefan Schimanski
liyuerich
xuzhenglun
Jordan Liggitt
Stanislav Láznička
Vinayak Goyal
carlory
Kensei Nakada
Anish Ramasekar
jonyhy96
Marek Siarkowicz
David Ashpole
古九
Taahir Ahmed
Marcus Ruddick
Sohan Kunkerkar
Marek Siarkowicz
piny940
Keerthan Reddy Mala
Monis Khan
0x5457
Lan Liang
Ben Luddy
Cici Huang
Sean Sullivan
Patrick Ohly
David Eads
Jiahui Feng
Mike Spreitzer
Siyuan Zhang
Davanum Srinivas
Eric Lin
Wojciech Tyczyński
yintong.huang
Paco Xu
xyz-li
Mauri de Souza Meneguzzo
TommyStarK
Harish Kuna
Stephen Kitt
Jeremy Shih
ah8ad3
Jayapriya Pai
Alvaro Aleman
Taehoon Yoon
Andrew DeMaria
cyclinder
Alexander Zielenski
chenk008