github-personal/kubernetes
1
0
Fork 0
mirror of https://github.com/outbackdingo/kubernetes.git synced 2026-01-27 18:19:28 +00:00
Code Issues Packages Projects Releases Wiki Activity
131,921 Commits 1 Branch 0 Tags
master
Commit Graph

240 Commits

Author SHA1 Message Date
Eddie
727a6e6db5 Reject pod when attachment limit is exceeded (#132933) 
* Reject pod when attachment limit is exceeded

Signed-off-by: Eddie Torres <torredil@amazon.com>

* Record admission rejection

Signed-off-by: Eddie Torres <torredil@amazon.com>

* Fix pull-kubernetes-linter-hints

Signed-off-by: Eddie Torres <torredil@amazon.com>

* Fix AD Controller unit test failure

Signed-off-by: Eddie Torres <torredil@amazon.com>

* Consolidate error handling logic in WaitForAttachAndMount

Signed-off-by: Eddie Torres <torredil@amazon.com>

* Improve error context

Signed-off-by: Eddie Torres <torredil@amazon.com>

* Update admissionRejectionReasons to include VolumeAttachmentLimitExceededReason

Signed-off-by: Eddie Torres <torredil@amazon.com>

* Update status message

Signed-off-by: Eddie Torres <torredil@amazon.com>

* Add TestWaitForAttachAndMountVolumeAttachLimitExceededError unit test

Signed-off-by: Eddie Torres <torredil@amazon.com>

* Add e2e test

Signed-off-by: Eddie Torres <torredil@amazon.com>

* Fix pull-kubernetes-linter-hints

Signed-off-by: Eddie Torres <torredil@amazon.com>

---------

Signed-off-by: Eddie Torres <torredil@amazon.com>
 2025-07-24 17:58:54 -07:00
Taahir Ahmed
4624cb9bb9 Pod Certificates: Basic implementation 
* Define feature gate
* Define and serve PodCertificateRequest
* Implement Kubelet projected volume source
* kube-controller-manager GCs PodCertificateRequests
* Add agnhost subcommand that implements a toy signer for testing

Change-Id: Id7ed030d449806410a4fa28aab0f2ce4e01d3b10
 2025-07-21 21:49:57 +00:00
Kubernetes Prow Robot
566d6acb70 Merge pull request #131759 from carlory/clean-volumehost 
Remove unused GetHostIP method
 2025-07-12 05:35:28 -07:00
carlory
85bc3cb096 Remove GetExec method from VolumeHost 
Signed-off-by: carlory <baofa.fan@daocloud.io>
 2025-06-13 10:58:37 +08:00
carlory
f0dde38234 Remove pluginName param from GetMounter and GetExec 
Signed-off-by: carlory <baofa.fan@daocloud.io>
 2025-06-12 17:29:17 +08:00
carlory
fe1b1fff7c Remove unused GetHostIP method 2025-05-14 14:50:59 +08:00
carlory
0a4ab93676 fix incorrect comments 2025-04-30 17:07:43 +08:00
Eddie Torres
c766a52356 Implement KEP 4876 Mutable CSINode (#130007) 
* Implement KEP-4876 Mutable CSINode Allocatable Count

Signed-off-by: torredil <torredil@amazon.com>

* Update TestGetNodeAllocatableUpdatePeriod

Signed-off-by: torredil <torredil@amazon.com>

* Implement CSINodeUpdater

Signed-off-by: torredil <torredil@amazon.com>

* Use sync.Once in csiNodeUpdater

Signed-off-by: torredil <torredil@amazon.com>

* ImVerify driver is installed before running periodic updates

Signed-off-by: torredil <torredil@amazon.com>

* Update NodeAllocatableUpdatePeriodSeconds type comment

Signed-off-by: torredil <torredil@amazon.com>

* Leverage apivalidation.ValidateImmutableField in ValidateCSINodeUpdate

Signed-off-by: torredil <torredil@amazon.com>

* Update strategy functions

Signed-off-by: torredil <torredil@amazon.com>

* Run hack/update-openapi-spec.sh

Signed-off-by: torredil <torredil@amazon.com>

* Update VolumeError.ErrorCode field

Signed-off-by: torredil <torredil@amazon.com>

* CSINodeUpdater improvements

Signed-off-by: torredil <torredil@amazon.com>

* Iron out concurrency in syncDriverUpdater

Signed-off-by: torredil <torredil@amazon.com>

* Run hack/update-openapi-spec.sh

Signed-off-by: torredil <torredil@amazon.com>

* Revise logging

Signed-off-by: torredil <torredil@amazon.com>

* Revise log in VerifyExhaustedResource

Signed-off-by: torredil <torredil@amazon.com>

* Update API validation

Signed-off-by: torredil <torredil@amazon.com>

* Add more code coverage

Signed-off-by: torredil <torredil@amazon.com>

* Fix pull-kubernetes-linter-hints

Signed-off-by: torredil <torredil@amazon.com>

* Update API types documentation

Signed-off-by: torredil <torredil@amazon.com>

* Update strategy and validation for new errorCode field

Signed-off-by: torredil <torredil@amazon.com>

* Update validation tests after strategy changes

Signed-off-by: torredil <torredil@amazon.com>

* Update VA status strategy

Signed-off-by: torredil <torredil@amazon.com>

---------

Signed-off-by: torredil <torredil@amazon.com>
 2025-03-18 12:45:49 -07:00
niranjandarshann
7f766762d9 Updated Concurrentmap iter 2025-01-24 21:43:18 +05:30
niranjandarshann
84b8f181e4 Concurrentmap Iteration 2025-01-22 16:10:12 +05:30
Penghao
9e99be7c2b Fix: typos for volume package 2024-11-29 17:11:00 +08:00
Kubernetes Prow Robot
c93ba4e96f Merge pull request #124817 from carlory/cleanup-VolumePluginMgr 
remove loggedDeprecationWarnings from VolumePluginMgr
 2024-11-07 16:10:28 +00:00
Kubernetes Prow Robot
e30492f77a Merge pull request #128495 from olyazavr/refresh-probed-plugins 
refresh probed plugins on init to avoid probe race/erroneous unmounts
 2024-11-07 14:57:37 +00:00
Jan Safranek
aa8872d7a3 Add SELinux warning controller 2024-11-06 11:16:02 +01:00
Olga Shestopalova
0904d32759 refresh probed plugins on init to avoid probe race/erroneous unmounts 
Signed-off-by: Olga Shestopalova <oshestopalova1@gmail.com>
 2024-11-02 14:44:48 -04:00
Jordan Liggitt
43fa7c638b Revert "Merge pull request #127669 from olyazavr/fix-probe-race" 
This reverts commit 3d00d6e421, reversing
changes made to a7fcc89ac0.
 2024-10-30 11:16:47 -04:00
Olga Shestopalova
0746672679 fix plugin probe init race causing erroneous volume unmounts 
Signed-off-by: Olga Shestopalova <oshestopalova1@gmail.com>
 2024-10-01 11:03:12 -04:00
Kubernetes Prow Robot
24a447e38f Merge pull request #124317 from hoyho/bugfix/expand_vol_warning 
fix warning when using CSI driver to expand volume
 2024-09-18 16:02:44 +01:00
cpanato
e09c28ec69 update debian-base and setcap to bookworm-v1.0.4 
Signed-off-by: cpanato <ctadeu@gmail.com>
 2024-09-05 14:09:04 -06:00
carlory
c4851c64a0 remove volumeoptions from VolumePlugin and BlockVolumePlugin 2024-07-24 14:07:02 +08:00
Kubernetes Prow Robot
af71138323 Merge pull request #124837 from carlory/rm-FindCreatablePluginBySpec 
remove unused FindCreatablePluginBySpec
 2024-07-22 08:01:54 -07:00
hoyho
02197a9924 fix warning when using CSI driver to expand volume 
Signed-off-by: hoyho <luohaihao@gmail.com>
 2024-06-12 22:55:57 +10:00
cpanato
a3b193c6e9 [go] Bump images, dependencies and versions to go 1.22.4 and distroless iptables/setcap/debian-base 
Signed-off-by: cpanato <ctadeu@gmail.com>
 2024-06-06 18:13:15 +02:00
carlory
d901df7b49 remove loggedDeprecationWarnings from VolumePluginMgr 2024-06-04 10:45:23 +08:00
Kubernetes Prow Robot
4cc989a7a9 Merge pull request #124740 from bells17/use-sets-set-string 
[pkg/volume] Changed to use sets.Set[string] instead of sets.String
 2024-05-31 05:32:15 -07:00
Kubernetes Prow Robot
60ca8489be Merge pull request #124790 from carlory/cleanup-volume-cluster 
Remove clusterName from VolumeOptions
 2024-05-15 17:23:12 -07:00
carlory
21baa25e1a remove BulkVolumeVerifier interface from volume 2024-05-14 14:17:25 +08:00
carlory
568e580442 remove unused FindCreatablePluginBySpec 2024-05-13 11:04:17 +08:00
bells17
8cf18d1b5c [pkg/volume] Changed to use sets.Set[string] instead of sets.String 2024-05-11 18:02:45 +09:00
carlory
9c92b37d4e remove clusterName from VolumeOptions 2024-05-10 16:42:31 +08:00
Kubernetes Prow Robot
38c2a963b4 Merge pull request #123984 from carlory/volume-remove-cloud-provider 
Remove cloud provider dependency from volume host and volume controllers
 2024-04-28 02:54:14 -07:00
Kubernetes Prow Robot
3d58fe5a7b Merge pull request #123970 from carlory/rm-volumelimit-interface 
remove VolumePluginWithAttachLimits interface
 2024-04-19 10:36:11 -07:00
carlory
9ec6ee539a Remove cloud provider dependency from volume host and volume controllers 2024-04-18 19:00:37 +08:00
cpanato
fc428df491 update setcap/debian-base to bookworm-v1.0.2 
Signed-off-by: cpanato <ctadeu@gmail.com>
 2024-03-28 14:57:22 +01:00
carlory
0c5a7103be remove VolumePluginWithAttachLimits interface 2024-03-18 18:08:36 +08:00
cpanato
ac9482d15f update distroless-iptables to v0.5.0 debian-base to bookworm-v1.0.1 and setcap to bookworm-v1.0.1 
Signed-off-by: cpanato <ctadeu@gmail.com>
 2024-02-07 11:46:19 +01:00
Taahir Ahmed
1ebe5774d0 kubelet: Support ClusterTrustBundlePEM projections 2023-11-03 11:40:48 -07:00
Sascha Grunert
a35608cc61 Update debian-base for test images and others 
Bump all users of debian-base to the latest bookworm image.

Signed-off-by: Sascha Grunert <sgrunert@redhat.com>
 2023-07-18 16:39:03 +02:00
carlory
5e048041e4 remove helper function for unused storage feature in pkg/proxy/util 2023-06-13 09:22:59 +08:00
Kubernetes Prow Robot
cb8d9f6867 Merge pull request #117283 from defo89/pv-recycler-change-cmd 
change pv recycler scrub cmd to find -delete
 2023-05-26 10:50:52 -07:00
carlory
666be79d67 legacy names of volume plugins have been gone a LONG time 2023-05-17 17:02:44 +08:00
Dmitri Fedotov
625c302505 change pv recycler scrub cmd to find -delete 
PVs with large amount of files cannot be recycted with "rm" command and
are left in "Failed" state.
Hence we are switching to "find -delete" command.
 2023-04-13 12:19:01 +03:00
Kubernetes Prow Robot
6a111bebe2 Merge pull request #116377 from kinvolk/rata/userns 
KEP-127: user namespace support for stateless pods
 2023-03-14 10:40:43 -07:00
杨军10092085
361e4ff0fa volume: use contextual logging 2023-03-14 08:37:30 +08:00
Rodrigo Campos
8af3cce7fe kubelet: remove GetHostIDsForPod() 
Now KEP-127 relies on idmap mounts to do the ID translation and we won't
do any chowns in the kubelet.

This patch just removes the usage of GetHostIDsForPod() in
operationexecutor to do the chown, and also removes the
GetHostIDsForPod() method from the kubelet volume interface.

Signed-off-by: Rodrigo Campos <rodrigoca@microsoft.com>
 2023-03-13 22:28:03 +01:00
Jan Safranek
e575e60ea4 Reconstruct SELinux mount option 
When reconstructing volumes from disk after kubelet restart, reconstruct
also context=XYZ mount option and add it to the ActualStateOfWorld.
 2022-11-08 11:17:38 +01:00
Jan Safranek
fc245b339b Refactor ConstructVolumeSpec 
Return a struct from ConstructVolumeSpec to be able to add more fields to
it later.
 2022-11-03 16:55:13 +01:00
Davanum Srinivas
f5339fc1ec Remove references to already deleted volume plugins 
Signed-off-by: Davanum Srinivas <davanum@gmail.com>
 2022-09-25 15:26:22 -04:00
Jan Safranek
cdb3ead5a9 Add SupportsSELinuxContextMount 
Add a new call to VolumePlugin interface and change all its
implementations.

Kubelet's VolumeManager will be interested whether a volume supports
mounting with -o conext=XYZ or not to hanle SetUp() / MountDevice()
accordingly.
 2022-08-04 10:51:28 +02:00
Rodrigo Campos
d07c2688fe kubelet: add GetHostIDsForPod() 
In future commits we will need this to set the user/group of supported
volumes of KEP 127 - Phase 1.

Signed-off-by: Rodrigo Campos <rodrigoca@microsoft.com>
 2022-08-03 19:53:22 +02:00