kubernetes
/
apiserver
mirror of https://github.com/kubernetes/apiserver.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
7,618 Commits 30 Branches 1,482 Tags 31 MiB
Commit Graph

7618 Commits

Author SHA1 Message Date
Kubernetes Publisher ec228a4021 Merge pull request #128168 from liggitt/4601-beta 
KEP-4601: AuthorizeNodeWithSelectors / AuthorizeWithSelectors to beta

Kubernetes-commit: d7bd7284035e7debd5406d375cd366b164cf358f
 2024-10-18 20:41:46 +00:00
Kubernetes Publisher 1ea7befac3 Merge pull request #128165 from liggitt/prune-self-require 
Drop self-referencing replace directives

Kubernetes-commit: a8fc7ae761c19ab436cf513c9eed877f08961cf7
 2024-10-18 04:49:01 +00:00
Kubernetes Publisher 6600cfa976 Merge pull request #126347 from vinayakankugoyal/kep2862impl 
KEP-2862: Fine-grained Kubelet API Authorization

Kubernetes-commit: f5ae0413cadb1d2d3d3d47857cdd65b4b6d194ba
 2024-10-18 04:49:00 +00:00
Kubernetes Publisher e784492b06 Merge pull request #127504 from sttts/sttts-authz-cel-compiler-once 
apiserver/authconfig: make CEL compiler shareable

Kubernetes-commit: 90ee68948d23b9a22b3b48ecf819604bd4f27217
 2024-10-18 00:49:07 +00:00
Kubernetes Publisher b907ccabbe Merge pull request #128144 from cheftako/updateANP 
Bump konnectivity-client to v0.31.0

Kubernetes-commit: bd00406951a04967577d5ac7c2fbe7989f3653da
 2024-10-18 00:49:06 +00:00
Kubernetes Publisher 08c82454ed Merge pull request #128120 from aojea/celmetrics 
use same name as the folder for the package

Kubernetes-commit: 42b388b068b23b8ebf6e54e0fb4b9b1ddb22dea0
 2024-10-18 00:49:05 +00:00
Jordan Liggitt 1e62dc23aa KEP-4601: AuthorizeNodeWithSelectors / AuthorizeWithSelectors to beta 
Kubernetes-commit: 9caca7312645b5ffba964cc8170484b4e7f7b602
 2024-10-17 19:51:07 -04:00
Jordan Liggitt d1d8d5e02d Drop self-referencing replace directives 
Kubernetes-commit: 3be1109829d4b0921972bb8b5f66a4d179ff6255
 2024-10-17 15:51:15 -04:00
Lukasz Szaszkiewicz aeae19662f Promote WatchList feature to Beta (#128053) 
* e2e/apimachinery/watchlist: always run WatchList e2e tests

* kube-controller-manager: enable WatchListClient

* kube-apiserver: promote WatchList feature to beta

Kubernetes-commit: 06a15c5cf96131faaf44f93f1be228a013ae5c0d
 2024-10-17 12:39:53 +00:00
Walter Fender 1f585b076f Bump konnectivity-client to v0.30.0 
Bump konnectivity network proxy to v0.30.0.
Lease-based server counting logic for agent and lease controller for ANP server

reran hack/update-vendor.sh

Kubernetes-commit: f72c37418725457bc8ce1e58d40264bca05b6054
 2024-10-16 22:30:10 -07:00
Kubernetes Publisher 608821ca42 Merge pull request #128136 from enj/enj/t/non_global_kms_kdf_via_name 
kmsv2: run KDF tests in parallel

Kubernetes-commit: a8fd407d2f982267d847eeedc2d8097beedccc9e
 2024-10-17 00:39:38 +00:00
Kubernetes Publisher c8517e5aa2 Merge pull request #128076 from AmarNathChary/Removed_Alpha_Beta_Ga 
Removed_alpha_beta_ga

Kubernetes-commit: b7fb82f9d8b1c31724afe46d5a79569267a09bfe
 2024-10-16 20:41:05 +00:00
Monis Khan 4f8e2cfe4c kmsv2: run KDF tests in parallel 
This change updates the KDF "feature flag" to be per KMS provider
instead of global to the API server.  This allows integration tests
that use distinct provider names to run in parallel.

Locally this change reduced the runtime of
test/integration/controlplane/transformation by 3.5 minutes.

Signed-off-by: Monis Khan <mok@microsoft.com>

Kubernetes-commit: 43740c0def10f22a0ab7f522c1569188913b35a3
 2024-10-16 15:01:35 -04:00
AmarNathChary 54c7d50dd6 removed_comments_from_kube_feature_of_alpha_beta_ga 
Kubernetes-commit: ff7c708207738c80c7a1185faa20f7f84afe5fb3
 2024-10-16 15:36:34 +05:30
Antonio Ojea 402e1cdd43 use same name as the folder for the package 
Kubernetes-commit: 62bdb27420bbc3c45b0232612acf9ecf3816c805
 2024-10-16 09:55:10 +00:00
Kubernetes Publisher 576854da2e Merge pull request #128064 from dims/update-to-last-versions-of-some-very-infrequently-updated-repos 
Update to last versions of some very infrequently updated repos

Kubernetes-commit: 07e73682b9a5259cacac978346ed4567588e4165
 2024-10-16 06:17:54 +00:00
Kubernetes Publisher d089101190 Merge pull request #128073 from seans3/tracing-config-strict-validation 
TracingConfiguration is now validated strictly

Kubernetes-commit: 3694a02bb9b5c1dd216485d2e25bd2c8f24916dd
 2024-10-15 18:16:20 +00:00
Kubernetes Publisher d52f63db87 Merge pull request #127982 from tkashem/refactor-store-decoder 
KEP-3926: refactor: extract etcd3 store decode functions into an interface

Kubernetes-commit: d32e9b0b6996a439674a998d63ccebb5b1b4cbde
 2024-10-15 10:12:42 +00:00
Kubernetes Publisher 44ff1c1665 Merge pull request #128038 from seans3/resource-quota-config-validation 
Enable strict validation for ResourceQuotaConfiguration

Kubernetes-commit: 510a7e76018189b49e8d7c1ba4ac639bdf4dba37
 2024-10-15 02:13:06 +00:00
Kubernetes Publisher 6ad2d93d2e Merge pull request #128011 from seans3/egress-selector-configuration-strict 
EgressSelectorConfiguration now uses strict validation

Kubernetes-commit: 8b7b768ff78d73267e52c0828e1e0eb3f5328f28
 2024-10-15 02:13:05 +00:00
Sean Sullivan e6b796812a TracingConfiguration is now validated strictly 
Kubernetes-commit: a9c8061b1e4c2ac38c223fa6bf9c5c1bf8b01606
 2024-10-14 18:09:16 -07:00
Davanum Srinivas 3ee34eb4ce Update to last versions of some very infrequently updated repos 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>

Kubernetes-commit: 7f8210e33f8cd626d1fb86cd7d12d077ec3047d5
 2024-10-14 17:23:16 -04:00
Sean Sullivan 15f8ad59da Enable strict validation for ResourceQuotaConfiguration 
Kubernetes-commit: a95c0c5499c54c16d561d0ad4537d4b43d500184
 2024-10-13 17:50:18 -07:00
Sean Sullivan 285603b2d8 EgressSelectorConfiguration now uses strict validation 
Kubernetes-commit: 32b2eea50d6457b4b1abf50e8e03be52e81d30c2
 2024-10-11 16:17:09 -07:00
Kubernetes Publisher ebe463fe32 Merge pull request #127998 from skitt/golang-x-oct-2024 
October 2024 golang.org/x bump

Kubernetes-commit: 8cbb11519c54c120e2dc120a4799e53abbfea4a4
 2024-10-11 14:27:04 +00:00
Kubernetes Publisher b9c35c9189 Merge pull request #127985 from dims/update-moby-runc-dependencies-oct-10 
Update moby/runc dependencies

Kubernetes-commit: 6e5e8f374e834fa8dab341bde5c522704ed55ba6
 2024-10-11 14:27:02 +00:00
Stephen Kitt 042b9763e0 October 2024 golang.org/x bump 
Nothing major here, but nothing liable to cause pain to downstreams
either.

* https://github.com/golang/crypto/compare/v0.26.0...v0.28.0 (there’s
  a SHA3 fix there but it’s only relevant for 32-bit platforms)
* https://github.com/golang/net/compare/v0.28.0...v0.30.0 (mostly
  http2; route address parsing fix on Darwin)
* https://github.com/golang/oauth2/compare/v0.21.0...v0.23.0 (Google
  license fix)
* https://github.com/golang/sys/compare/v0.23.0...v0.26.0 (faster
  getrandom() on Linux through the vDSO; improved RISC-V support)
* https://github.com/golang/term/compare/v0.23.0...v0.25.0
* https://github.com/golang/time/compare/v0.3.0...v0.7.0 (0-limit
  handling fix in x/time/rate; Google license fix)
* https://github.com/golang/tools/compare/v0.24.0...v0.26.0

This doesn’t include golang.org/x/exp; that doesn’t have any relevant
changes. There’s an apidiff fix but we always pull in the latest
apidiff anyway.

Signed-off-by: Stephen Kitt <skitt@redhat.com>

Kubernetes-commit: 6c5a528727c30803d4426b29c06ae5d350619877
 2024-10-11 10:22:13 +02:00
Davanum Srinivas 33a5883440 Update moby/runc dependencies 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>

Kubernetes-commit: 521f2d106b9c5744ce57a8ec03124bcdadbca986
 2024-10-10 11:58:22 -04:00
Kubernetes Publisher 23e33fe7dc Merge pull request #127984 from tkashem/refactor-storage-internal-error 
KEP-4795: storage.InternalError should retain the inner error

Kubernetes-commit: 1c45ca8059a29f86802a995ebcdb2635fba9c129
 2024-10-11 02:11:52 +00:00
Kubernetes Publisher 26cc27763e Merge pull request #127942 from liggitt/json123 
sigs.k8s.io/json go 1.23 bump

Kubernetes-commit: fc318e3ba4cb1db822d7f802993059846f64179d
 2024-10-10 22:15:15 +00:00
Kubernetes Publisher f14df2d4fd Merge pull request #127777 from tkashem/refactor-delete-option 
KEP-4795: refactor: add delete options for Delete method in storage interface

Kubernetes-commit: d88b4e3b6e34a85f58778b7ef96e64edffff6823
 2024-10-10 18:08:27 +00:00
Jordan Liggitt 810761bf3d Update sigs.k8s.io/json to go1.23 
Kubernetes-commit: 8eff759b6ac7c3bb0c6a8823c751f5a578d6f721
 2024-10-10 11:00:11 -04:00
Kubernetes Publisher 664cde1f32 Merge pull request #127778 from tkashem/refactor-conditional-delete 
KEP-4795: refactor: etcd store conditional delete

Kubernetes-commit: daf76e6ead71524c86d4b35cee935206078acf32
 2024-10-10 14:46:22 +01:00
Vinayak Goyal 9da53c5ba3 KEP-2862: Fine-grained Kubelet API Authorization 
Signed-off-by: Vinayak Goyal <vinaygo@google.com>

Kubernetes-commit: b1f290d444f75b351f77f4d3292bbf557ae1cc45
 2024-09-29 04:02:55 +00:00
Abu Kashem 33cfd964ef refactor: storage.InternalError should retain the inner error 
This is so we can do proper error handling, at the same time
we want to maintain backward compatibility

Kubernetes-commit: f24ec7e00dfd133780b3e6519a19f646c0dbde63
 2024-09-26 09:44:09 -04:00
Dr. Stefan Schimanski bf20cce32f apiserver/validation: fix some sets.NewString deprecations 
Signed-off-by: Dr. Stefan Schimanski <stefan.schimanski@gmail.com>

Kubernetes-commit: c44fc280871f1c4de177ed70367afcc9a9b06175
 2024-09-25 11:39:53 +02:00
Abu Kashem 14881364b3 refactor: extract decode functions into an interface for etcd3 store 
Kubernetes-commit: 1d1a656d8de1cdb99deaa6ec771aa354616eaa16
 2024-09-24 07:19:19 -04:00
Dr. Stefan Schimanski 4b46916a7b apiserver/authconfig: wire CEL compiler through lower layers to allow sharing 
Signed-off-by: Dr. Stefan Schimanski <stefan.schimanski@gmail.com>

Kubernetes-commit: 4024390d8c8a19056ab7ced95eef5cce43c8096d
 2024-09-20 12:34:08 +02:00
Abu Kashem f28acc6161 refactor etcd store conditional delete 
Kubernetes-commit: fecab0713b96bb0d528aea58900942ae0cb52260
 2024-09-19 13:14:52 -04:00
Kubernetes Publisher bd937b2b8b Merge pull request #122923 from tkashem/timeout-documenting-test 
document behavior of per handler read/write timeout with test(s)

Kubernetes-commit: a6ea7b8218d01b504fda2ef4988627fe4194fcaa
 2024-10-10 10:08:03 +00:00
Kubernetes Publisher f45e42a091 Merge pull request #127302 from cici37/costFG 
Promote cost related feature gate to default true

Kubernetes-commit: 78d64904128add672b9f5d48d676c0bdc6a1c2de
 2024-10-10 02:09:07 +00:00
Kubernetes Publisher 8602a60374 Merge pull request #127909 from richabanker/mvp-cleanup 
Reduce IdentityLeaseRenewIntervalPeriod in peer_proxy test

Kubernetes-commit: d9c46d8ecb1ede9be30545c9803e17682fcc4b50
 2024-10-09 14:53:00 +00:00
Richa Banker 50dafb8926 reset err in resolveServingLocation() when the req can be served by local apiserver 
Kubernetes-commit: 6e66a359822a988f9acd7062c3731559535abcd5
 2024-09-27 16:54:08 -07:00
Kubernetes Publisher c2070002ce Merge pull request #127905 from cici37/revert-127400 
Revert pr 127400 due to regression

Kubernetes-commit: ea13c5e6a28c6c233f8158c0739e03bc35fb9eee
 2024-10-07 22:31:17 +00:00
Kubernetes Publisher 7202dc017c Merge pull request #127902 from p0lyn0mial/upstream-system-authenticated-for-system-apiserver 
server/config: assing system:apiserver user to system:authenticated group

Kubernetes-commit: 815532749c551413f8b9d9be0ae1f24cb3a1e871
 2024-10-07 18:31:28 +00:00
Cici Huang f79926bf43 Revert pr 127400 
Kubernetes-commit: 95ec1637253c2458d0ed41f257df932907602ca4
 2024-10-07 16:11:30 +00:00
Lukasz Szaszkiewicz 3257d91a56 server/config: assing system:apiserver user to system:authenticated group 
Kubernetes-commit: dfeb560d4a2294c7a9a6233e2acb6b27039ed37a
 2024-10-07 17:39:10 +02:00
Kubernetes Publisher 5bdd80ce60 Merge pull request #127816 from cici37/updateCEL 
Bump dependency: cel-go to v0.21.0

Kubernetes-commit: 9ffefe3da28a09e250b6517b0f2d5f3437b18265
 2024-10-04 02:25:42 +00:00
Kubernetes Publisher d30adf3e28 Merge pull request #122957 from richabanker/uvip-bugfix 
MVP cleanup #2

Kubernetes-commit: 3660a34d21492a2bdbb992c435554af0fa457e2d
 2024-10-03 02:10:25 +00:00
Cici Huang be240164d1 Update cel-go to v0.21.0 
Kubernetes-commit: 80c0c2c32eae71c1bf948266da413c4eb24f12c5
 2024-10-02 17:15:58 +00:00