forked from kubernetes/kubernetes
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
elbv2 multicert #1
Closed
Closed
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
The iptables rule that matches kubeNodePortLocalSetSCTP must be inserted before the one matches kubeNodePortSetSCTP, otherwise all SCTP traffic would be masqueraded regardless of whether its ExternalTrafficPolicy is Local or not. To cover the case in tests, the patch adds rule order validation to checkIptables.
In older versions of Kubernetes (at least pre-0.19, it's the earliest this test will run unmodified on), Pods that depended on devices could be restarted after the device plugin had been removed. Currently however, this isn't possible, as during ContainerManager.GetResources(), we attempt to DeviceManager.GetDeviceRunContainerOptions() which fails as there's no cached endpoint information for the plugin type. This commit therefore breaks apart the existing test into two: - One active test that validates that assignments are maintained across restarts - One skipped test that validates the behaviour after GPUs have been removed, in case we decide that this is a bug that should be fixed in the future.
…to_output_resp.Body fix Log attempts to output resp.Body kubernetes#104184
Enable http2 health checking with go 1.16.5 on KAS egress.
The cmp comparison is relatively expensive (kubernetes#104821). If we're not going to log it, we shouldn't make the comparison.
So that the width estimate has some effect but not a grossly excessive one. Added the fifo::Peek method to simplify the fifo client code. Also renamed the queueSet::estimatedServiceTime field to estimatedServiceSeconds to make the units clear.
Adding more detailed logging for Topology Hints
…happen-name server-side-apply: print object name in SHOULD NOT HAPPEN message
This field never made it past the alpha API.
Object creation with generateName should return AlreadyExists instead of a Timeout
Avoid expensive go-cmp/cmp comparison
Signed-off-by: Dave Chen <dave.chen@arm.com>
Update the valid string from rand.go
rbac: remove AttributeRestriction documentation
…e-scores Add verbose logs for node/plugin scores even ranged in low levels
Instead of a plain `Mutex`, use an `RWMutex` so that the common operations can proceed in parallel.
Refine locking in API Priority and Fairness config controller
Change TTLAfterFinished state to beta in comment
A pod that has been rejected by admission will have status manager set the phase to Failed locally, which make take some time to propagate to the apiserver. The rejected pod will be included in admission until the apiserver propagates the change back, which was an unintended regression when checking pod worker state as authoritative. A pod that is terminal in the API may still be consuming resources on the system, so it should still be included in admission.
Fix couple of incorrect description
kubeadm: remove the flag --port from scheduler manifest
Signed-off-by: Carlos Panato <ctadeu@gmail.com>
add StatefulSet MinReadySeconds e2e test
pin-dependency.sh: enhance forking of a dependency
staging/publishing: Set go1.16 version to go1.16.8
kubeadm: do not check if the /etc/kubernetes/manifests folder is empty on joining worker nodes during preflight
Because it is for the "Flow Distinguisher".
This commit adds information about CVE 2021-25741 to the v1.19 changelog which did not make it into the document at release time. Signed-off-by: Adolfo García Veytia (Puerco) <adolfo.garcia@uservers.net>
Add CVE 2021-25741 info to 1.19 Release Notes
KEP-2887 OpenAPI Enum Types
…re-gate/kep-2887 add feature gate for OpenAPIEnums.
remove windows service not used global variable
…inguisher Rename httplog entry from "apf_d" to "apf_fd"
Structured log migration for pkg/util/netsh
turn on CSIMigrationAzureDisk by default on 1.23
* remove deprecated validEgressSelectorNames 'master' Signed-off-by: pacoxu <paco.xu@daocloud.io> * update gce configure: replace deprecated egress name 'master' with 'controlplane' Signed-off-by: pacoxu <paco.xu@daocloud.io> * add dup error for EgressSelection & fix converting alpha/beta to v1 name
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
NodeResourcesBalancedAllocation
plugin to cover more resourcesdistroless/base
image to latest versionlatest
CGO_ENABLED=0
ShutDownWithDrain
allowing the queue to drain when shutting down<
or>
//go:build
)2
release-managers
--seccomp-profile-root
/seccompProfileRoot
configuration--allow-gathering-profiles
e2e.test flagcmd/proxy/app
andpkg/proxy/meta_proxier
to structured logging (Migratecmd/proxy/app
andpkg/proxy/meta_proxier
to structured logging kubernetes/kubernetes#104928)What type of PR is this?
What this PR does / why we need it:
Which issue(s) this PR fixes:
Fixes #
Special notes for your reviewer:
Does this PR introduce a user-facing change?
Additional documentation e.g., KEPs (Kubernetes Enhancement Proposals), usage docs, etc.: