New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add staging directory for kms #111980
Add staging directory for kms #111980
Conversation
Skipping CI for Draft Pull Request. |
Please note that we're already in Test Freeze for the Fast forwards are scheduled to happen every 6 hours, whereas the most recent run was: Tue Aug 23 19:46:32 UTC 2022. |
thanks @liggitt, that resolved the issue. The PR is ready for review. @ameukam could we change the default branch name to |
publishing-bot has @aramase can you please create an issue in the k/org repo to get the kms repo ready for publishing and assign it to me? We'll need a few more changes -- like ensuring that the repo has an initial empty commit, etc. |
I added a comment to the KEP for master->main for this repo, it's probably best to switch staging repos to main as part of that KEP rather than ahead of Kubernetes, so the branches continue to align closely: kubernetes/enhancements#2853 |
# DO NOT REPORT SECURITY VULNERABILITIES DIRECTLY TO THESE NAMES, FOLLOW THE | ||
# INSTRUCTIONS AT https://kubernetes.io/security/ | ||
|
||
aramase |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Pretty sure this is supposed to be match OWNERS
, i.e. sig-auth-encryption-at-rest-approvers
.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
AFAIK, sig-auth-encryption-at-rest-approvers
is only relevant in k/k
because the alias is defined here. If this alias is repo specific, we need to re define the alias in the staging dir, so the staging github repo has it or else the staging github repo will reference an alias that needs to be looked up in k/k
.
limitations under the License. | ||
*/ | ||
|
||
// Package kms contains the proto definitions for the kms API. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I suppose this is true right now but it will change in the future?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
that's right! I was thinking we can keep the comment relevant, so we can update this comment as we add more to this. WDYT?
@nikhita The kms repo issue is still open in |
/lgtm |
replicate the content of staging/src/k8s.io/apiserver/pkg/storage/value/encrypt/envelope/kmsv2/v2alpha1/OWNERS to staging/src/k8s.io/kms/apis/OWNERS to make sure these packages show up as packages needing API review lgtm otherwise (once the publishing bot CI is green) |
- Moves kms proto apis to the staging repo - Updates generate and verify kms proto scripts to check staging repo Signed-off-by: Anish Ramasekar <anish.ramasekar@gmail.com>
Added the OWNERS file for api reviews. @liggitt publishing bot CI failure is because there is no I0923 16:09:47.572947 152 validate.go:37] validating directories exist in the kubernetes branch
E0923 16:09:48.196706 152 main.go:46] Error : kms not found in branch master
E0923 16:09:48.197253 152 main.go:46] Error : kms not found in branch master Would the tests pass until we merge this PR? |
@aramase: The following test failed, say
Full PR test history. Your PR dashboard. Please help us cut down on flakes by linking to an open issue when you hit one in your PR. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here. |
hmm, I don't know if it's because
will defer to folks who know the publishing bot better than me to answer that /lgtm |
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: aramase, enj, liggitt The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
Signed-off-by: Anish Ramasekar anish.ramasekar@gmail.com
What type of PR is this?
/kind feature
What this PR does / why we need it:
Add the staging directory for the kms repo. See kubernetes/org#3630 for details.
Which issue(s) this PR fixes:
part of kubernetes/org#3630
Fixes #111921
Special notes for your reviewer:
I used #102153 as a template to make these changes.
Does this PR introduce a user-facing change?
Additional documentation e.g., KEPs (Kubernetes Enhancement Proposals), usage docs, etc.:
/sig auth
/assign @enj @ritazh