upstream/kubernetes
1
0
Fork 0
mirror of https://github.com/kubernetes/kubernetes.git synced 2026-02-13 15:59:57 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions
133071 commits 60 branches 1207 tags 2.8 GiB
Commit graph

4220 commits

Author SHA1 Message Date
Kubernetes Prow Robot
db63a581ca
Merge pull request #134366 from tallclair/feature-gates-test 
Set multiple feature gates simultaneously in test
 2025-10-13 13:11:33 -07:00
yongruilin
6965075ebd Address feedback: simpliy errormatcher instantiation 2025-10-06 17:54:03 +00:00
yongruilin
ae8ea8994e feat(validation): Enhance validation tests with normalization rules support 2025-10-04 03:28:52 +00:00
Tim Allclair
4986abe0b8 Automated refactoring to use SetFeatureGatesDuringTest 2025-10-01 21:10:53 -07:00
yongruilin
96349a4608 chore: Move declarative validation featuregates to staging apiserver 2025-09-26 22:30:16 +00:00
Lalit Chauhan
3015e58e40 Improve tests devex for DV tests. 2025-09-25 17:29:30 +00:00
Jordan Liggitt
840aa4722e
Drop unnecessary gogo dependencies 2025-09-23 13:44:20 -04:00
Kubernetes Prow Robot
ec4e321f00
Merge pull request #134072 from yongruilin/master_vg_enable-resourceclaim 
Enable Declarative Validation for resource.k8s.io v1/v1beta1/v1beta2
 2025-09-17 12:50:14 -07:00
Kubernetes Prow Robot
7bbea380f4
Merge pull request #134085 from jpbetz/patch-9 
Add reviewers and approvers to api/testing
 2025-09-16 16:26:24 -07:00
Kubernetes Prow Robot
ceebd156c4
Merge pull request #134054 from Peac36/fix/134040 
fix incorrect warning whenever headless service is created/updated
 2025-09-16 16:26:16 -07:00
yongruilin
380c4c222e feat(validation-gen): Add declarative validation support for ResourceClaim/(v1,v1beta1,v1beta2) 2025-09-16 21:36:18 +00:00
Joe Betz
fb184a9ff4
Update pkg/api/testing/OWNERS 
Co-authored-by: Yongrui Lin <yongrlin@google.com>
 2025-09-16 16:05:21 -04:00
Lalit Chauhan
f5cd1a1664 Address tests grouping comment 2025-09-16 17:20:17 +00:00
Nikola
50ea1f870e fix incorrect warning whenever headless service is created/updated 
Signed-off-by: Nikola <peac36@abv.bg>
 2025-09-16 20:02:42 +03:00
Lalit Chauhan
92dcd02459 Add helpers for declarative validation tests 
Introduces new testing helpers to simplify testing of declarative validation rules. The new `VerifyValidationEquivalence` and `VerifyUpdateValidationEquivalence` functions reduce boilerplate by encapsulating the logic for:

- Toggling the `DeclarativeValidation` and `DeclarativeValidationTakeover` feature gates.
- Comparing the validation output from the imperative and declarative paths.

The declarative validation tests for CertificateSigningRequest and ReplicationController are updated to use these new, simpler helpers.
 2025-09-16 16:57:21 +00:00
Joe Betz
3799b8bf6a
Add reviewers and approvers to api/testing 2025-09-16 10:25:56 -04:00
yliao
34a64db2c7 extended resource backed by DRA: implementation 2025-07-29 18:55:21 +00:00
Rodrigo Campos
5f7e611f73 validation: Return error if hostUsers=false && volumeDevices 
Now if a pod tries to use user namespaces (hostUsers: false) and a
volume device, it will see this error:
	$ kubectl apply -f pod.yaml
	...
	* spec.ephemeralContainers[0].volumeDevices: Forbidden: when `pod.Spec.HostUsers` is false
	* spec.initContainers[0].volumeDevices: Forbidden: when `pod.Spec.HostUsers` is false
	* spec.containers[0].volumeDevices: Forbidden: when `pod.Spec.HostUsers` is false

Note that if a pod is already created with volumeDevices and userns,
then we allow modifications to that object.

Signed-off-by: Rodrigo Campos <rodrigoca@microsoft.com>
 2025-07-28 16:54:08 +02:00
Kubernetes Prow Robot
3fd1251165
Merge pull request #131089 from KevinTMtz/pod-level-hugepage-cgroups 
[PodLevelResources] Propagate Pod level hugepage cgroup to containers
 2025-07-24 19:08:26 -07:00
Kubernetes Prow Robot
26045b2fab
Merge pull request #132642 from yuanwang04/restart-rules 
Implement container restart policy rules
 2025-07-24 16:44:51 -07:00
Kubernetes Prow Robot
63011fe547
Merge pull request #132277 from KevinTMtz/pod-level-resources-eviction-manager 
[PodLevelResources] Pod Level Resources Eviction Manager
 2025-07-24 16:44:34 -07:00
Kevin Torres
9f5b09eb7b Unit test pod level hugepage Default and Validation logic 2025-07-24 21:29:04 +00:00
Kevin Torres
13b122b6ff Unit tests for pod level resources eviction manager 2025-07-24 17:07:09 +00:00
Kevin Torres
9a3ca05f6b Use pod level resources for eviction manager 2025-07-24 17:07:05 +00:00
Yuan Wang
af595a44ae Add container restart rules to API 2025-07-24 16:49:52 +00:00
Patrick Ohly
cff91579e8 DRA API: v1 registration + tests 2025-07-24 08:30:25 +02:00
HirazawaUi
c35e4ad2b2 add codes for drop disabled pod fields 2025-07-23 22:57:12 +08:00
Bing Hongtao
6f3b6b91f0
KEP-3721: Support for env files (#132626) 
* Add FileKeyRef field and struct to the Pod API

* Add the implementation code in the kubelet.

* Add validation code

* Add basic functionality e2e tests

* add codes for drop disabled pod fields

* update go.mod
 2025-07-22 13:40:42 -07:00
Kubernetes Prow Robot
cc674e7470
Merge pull request #128010 from ahmedtd/pod-certificates-types 
Pod Certificates: Preliminary implementation of KEP-4317
 2025-07-21 19:26:30 -07:00
Taahir Ahmed
4624cb9bb9 Pod Certificates: Basic implementation 
* Define feature gate
* Define and serve PodCertificateRequest
* Implement Kubelet projected volume source
* kube-controller-manager GCs PodCertificateRequests
* Add agnhost subcommand that implements a toy signer for testing

Change-Id: Id7ed030d449806410a4fa28aab0f2ce4e01d3b10
 2025-07-21 21:49:57 +00:00
Kubernetes Prow Robot
e0f20a38ed
Merge pull request #132912 from natasha41575/obsgen-beta 
Graduate PodObservedGenerationTracking to beta
 2025-07-21 14:14:40 -07:00
Kubernetes Prow Robot
c297f38544
Merge pull request #132214 from Peac36/fix/131497 
add warnings when creating headless service with specified load balan…
 2025-07-21 14:14:26 -07:00
Nikola
43706d6b7a add warnings when creating headless service with specified load balancer ip,external ips and/or session affinity 
Signed-off-by: Nikola <peac36@abv.bg>
 2025-07-21 20:34:36 +03:00
Natasha Sarkar
8996e81fc8 fix unit tests 2025-07-21 16:46:07 +00:00
Kubernetes Prow Robot
ade9b7746a
Merge pull request #132595 from AxeZhan/ga3960 
Graduate PodLifecycleSleepAction to GA
 2025-07-19 13:22:39 -07:00
sreeram-venkitesh
00bf3b37a7 Graduate PodLifecycleSleepActionAllowZero to GA 2025-07-18 21:35:58 +05:30
Kubernetes Prow Robot
963a9acb6d
Merge pull request #131989 from tallclair/apparmor-cleanup 
Apparmor cleanup
 2025-07-18 03:46:25 -07:00
Kubernetes Prow Robot
99f55ae4ef
Merge pull request #132662 from gnufied/bump-recovery-feature-ga 
Bump recovery feature ga
 2025-07-17 17:10:25 -07:00
Tim Allclair
5f829195e6 Only warn when AppArmor annotation doesn't match pod field 2025-07-17 14:46:47 -07:00
Tim Allclair
e417232f92 Warn when using AppArmor annotations with a pod field 2025-07-17 14:07:35 -07:00
Tim Allclair
3ecb3d230f Remove unused appArmor*InUse functions 2025-07-17 14:07:35 -07:00
Cici Huang
a3ecea296c manual change 2025-07-15 01:44:13 +00:00
Hemant Kumar
c126870ebc Bump RecoverVolumeExpansionFailure to GA 2025-07-10 12:19:31 -04:00
Kubernetes Prow Robot
41477c9748
Merge pull request #132361 from yongruilin/master_vg_enable-csr 
Enable Declarative Validation for CertificateSigningRequest
 2025-07-07 17:05:25 -07:00
PatrickLaabs
baf71997f5 chore: depr. pointer pkg replacement for pkg/controller 2025-07-07 13:22:36 +02:00
Kubernetes Prow Robot
3d6e49e3c2
Merge pull request #132738 from ylink-lfs/chore/api_pod_utilpointer_removal 
chore: remove utilpointer usage in pkg/api/pod
 2025-07-05 21:55:25 -07:00
ylink-lfs
995a7872c5 chore: remove utilpointer usage in pkg/api/pod 2025-07-06 11:34:27 +08:00
Tsubasa Nagasawa
0ad351281b Cleanup duplicate function to get port number from named port 
Currently, the function to translate named port to port number is
located in two places (pod utils and endpointslice lib).
When fixing the bug in restartable init containers, one part of the code
was fixed, but the other part was not, leaving the bug unresolved.
To prevent such partial fixes in the future, we will make the function
in the endpointslice lib public and remove the other part of the code
from pod utils. Then consume the endpointslice lib in k/k.

Signed-off-by: Tsubasa Nagasawa <toversus2357@gmail.com>
 2025-07-05 10:03:30 +09:00
AxeZhan
dcbed2fbdc Graduate PodLifecycleSleepAction to GA 2025-07-02 09:37:14 +08:00
yongruilin
5d4a85f9f6 Enable versioned validation fuzz testing for certificates v1/v1alpha1/v1beta1 group 2025-07-01 16:13:56 +00:00