Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

WIP DEBUG rebase 1.19 #292

Closed
wants to merge 3,763 commits into from
Closed

WIP DEBUG rebase 1.19 #292

wants to merge 3,763 commits into from

Conversation

sttts
Copy link

@sttts sttts commented Jul 22, 2020

No description provided.

k8s-ci-robot and others added 30 commits July 10, 2020 04:29
@k8s-ci-robot
Merge pull request kubernetes#91408 from saschagrunert/seccomp-api-mi…
26f0227 
…gration

Add seccomp GA version skew for pods
@r4f4
Make nested /volume/ repo images overridable
74183e0 
The multi-arch container images used in tests live in quay.io which
doesn't support nesting. By making the /volume/ images repo configurable,
we are able to override them despite our current limitation.

Signed-off-by: Rafael Fonseca <r4f4rfs@gmail.com>
@saschagrunert
Implement PodSecurityPolicy enforcement for seccomp GA
96fb83c 
This implements the necessary pieced for the PodSecurityPolicy
enforcement like described in the appropriate KEP section:

https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/20190717-seccomp-ga.md#podsecuritypolicy-enforcement

Signed-off-by: Sascha Grunert <sgrunert@suse.com>
@k8s-ci-robot
Merge pull request kubernetes#91637 from robscott/endpointslice-mirro…
4efed03 
…ring

Adding new EndpointSlice Mirroring Controller
@cpanato
Merge remote-tracking branch 'origin/master' into release-1.19
bcdfbeb
@Ghazgkull
Update to version 2.5.1 of the fluent-plugin-kubernetes_metadata_filter
29cdaad
@k8s-ci-robot
Merge pull request kubernetes#92651 from rajansandeep/kubeadm-coredns…
3727879 
…1.7.0

[Kubeadm]:Bump CoreDNS to v1.7.0
@k8s-ci-robot
Merge pull request kubernetes#92661 from jpbetz/smd-bump-field-unsetting
49dced7 
Bump to SMD PR#166 to pick up unsetting field changes and add integration tests
@k8s-ci-robot
Merge pull request kubernetes#92768 from deads2k/security-contacts
0cc9685 
update security contacts for apimachinery repos
@k8s-ci-robot
Merge pull request kubernetes#92779 from fisherxu/patch-2
a6378d8 
Return err when create ContainerLogsDir failed
@k8s-ci-robot
Merge pull request kubernetes#92784 from pohly/generic-ephemeral-inli…
0cb7e32 
…ne-volumes

generic ephemeral inline volumes
@k8s-ci-robot
Merge pull request kubernetes#92788 from yuzhiquan/fix-json-verbose
7ceac2b 
Fix JSON logger verbose
@k8s-ci-robot
Merge pull request kubernetes#92791 from p0lyn0mial/aggregator-dynami…
429f968 
…c-cert-reload

adds dynamic certificate reloading for kube aggregator
@k8s-ci-robot
Merge pull request kubernetes#92794 from klueska/upstream-more-tests-…
26da0ea 
…get-preferred-allocation

Add more tests for device plugin's GetPreferredAllocation() API
@k8s-ci-robot
Merge pull request kubernetes#92797 from ahg-g/ahg-prefilter
fbc9cf0 
Return a FitError when PreFilter fails with unschedulable status
@k8s-ci-robot
Merge pull request kubernetes#92802 from divyenpatel/fix-e2e-test-vsp…
2613cbc 
…here_volume_datastore

fixed e2e test vsphere_volume_datastore.go
@k8s-ci-robot
Merge pull request kubernetes#92805 from chethanv28/fix-e2e-test-vsph…
42ae200 
…ere_utils

Fix vsphere util method - disksAreAttached
@k8s-ci-robot
Merge pull request kubernetes#92812 from ii/heyste-create-delete-core…
cccb28b 
…-v1-collection-namespaced-pod-template-test

Promote DeleteCoreV1CollectionNamespacedPodTemplate test+promote - +1 endpoint
@k8s-ci-robot
Merge pull request kubernetes#92815 from Huang-Wei/bypass-prefilter-s…
36b4c29 
…vcaffinity

Bypass PreFilter in ServiceAfffinity if AffinityLabels arg is not present
@k8s-ci-robot
Merge pull request kubernetes#92816 from divyenpatel/change-migration…
5a5cb56 
…-flag-to-beta

Set CSIMigrationvSphere feature gates to beta
@k8s-ci-robot
Merge pull request kubernetes#92824 from andyzhangx/fix-license-issue
c9c5c23 
fix: license issue in blob disk feature
@k8s-ci-robot
Merge pull request kubernetes#92442 from tedyu/grace-period-with-map
93e76f5 
Respect grace period when removing mirror pod
@k8s-ci-robot
Merge pull request kubernetes#92832 from marload/patch-0706-03
d20c5ed 
Refactoring: Change Inf Loop Condition (1 -> True)
@k8s-ci-robot
Merge pull request kubernetes#91277 from borgerli/master
c2d1541 
log tls handshake error at trace level to avoid error flooding
@gnufied
Handle volume-in-use error
b8c0435
@jpbetz
Enable nested tracing, add request filter chain tracing incl. authn/a…
b12ac0a 
…uthz tracing
@Ghazgkull
Bump image version
15bf1b1
@hasheddan
Make sure pod tested for eviction with PDB is not scheduled for deletion
a527c10 
In kubernetes#91342 attempting to evict a Pod with a DeletionTimestamp caused
checking of PDBs to be ignored due to the fact that a Pod scheduled for
deletion should not be factored into a disruption budget. However, PDB
eviction tests currently will sometimes select a Pod already scheduled
for deletion, expecting that attempting to evict it will conflict with
the PDB. This updates those tests to make sure a Pod with deletion
timestamp is not selected for eviction when it is intended to violate a
PDB.

Signed-off-by: hasheddan <georgedanielmangum@gmail.com>
@k8s-ci-robot
Merge pull request kubernetes#92991 from hasheddan/disrupt-dt
60b8693 
Make sure pod tested for eviction with PDB is not scheduled for deletion
@k8s-ci-robot
Merge pull request kubernetes#92856 from saschagrunert/psp-seccomp-ga
70f68db 
Implement PodSecurityPolicy enforcement for seccomp GA
deads2k and others added 14 commits July 21, 2020 23:31
@deads2k @marun
UPSTREAM: <carry>: eliminate unnecessary closure in openshift configu…
824326d 
…ration wiring

Origin-commit: 3b0c72dd7b9f9367dda8f8645909d9277a6c29e9
@marun
UPSTREAM: <carry>: Copy hack scripts and tools from openshift/origin
1792da6
@marun
UPSTREAM: <carry>: Fix shellcheck failures for copied openshift-hack …
224ceb2 
…bash
@marun
UPSTREAM: <carry>: Enable build, test and verify
6f79a5b
@marun
UPSTREAM: <carry>: Copy README content from origin
2ac2c19
@marun
UPSTREAM: <carry>: Ensure downstream OWNERS
e8e720d
@sttts @marun
UPSTREAM: <carry>: Copy watch-termination command from openshift/origin
788f3a3
@marun
UPSTREAM: <drop>: Temporarily allow building with golang 1.13
d8fea34 
Upstream requires 1.14 but downstream can't switch until ART supports
1.14.
@marun
UPSTREAM: <drop>: FAKE bump(*)
c22bfaa
@marun
UPSTREAM: <drop>: make update
2dc3ce4 
openshift-kube-apiserver: make generated_files
@marun
UPSTREAM: <drop> Fix unit test failure
5520078 
The quoting involved causes unit test failure on golang 1.13, but
seems to pass on golang 1.14. Drop/revert this commit when downstream
switches to golang 1.14.
@marun
UPSTREAM: <drop>: Temporarily skip failing unit tests
640ef22
@sttts
UPSTREAM: <drop>: auto-approve CSRs from bootstrap node
fb2a7e7
@mfojtik @sttts
UPSTREAM: 0000: Fix fuzzer for CertificateSigningRequest
510bdac
@openshift-ci-robot openshift-ci-robot added do-not-merge/work-in-progress Indicates that a PR should not merge because it is a work in progress. kind/api-change Categorizes issue or PR as related to adding, removing, or otherwise changing an API labels Jul 22, 2020
@openshift-ci-robot
Copy link

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: sttts
To complete the pull request process, please assign smarterclayton
You can assign the PR to them by writing /assign @smarterclayton in a comment when ready.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@openshift-ci-robot openshift-ci-robot added the do-not-merge/invalid-owners-file Indicates that a PR should not merge because it has an invalid OWNERS file in it. label Jul 22, 2020
@sttts
UPSTREAM: <drop>: auto-approve CSRs from bootstrap node – govet
cf8b020
@sttts
UPSTREAM: <carry>: noderestrictions: add node-role.kubernetes.io/mast…
a79ab42 
…er to allowed node labels

Server side validation of node labels was added in kubernetes#90307. We only disabled kubelet-side validation before to make our node role labels work.
@sttts
UPSTREAM: revert: <carry>: CHECK(node): disable --node-label validati…
efb9d44 
…on for unknown labels

This reverts commit 0350b57.
@openshift-ci-robot
Copy link

The following users are mentioned in OWNERS file(s) but are untrusted for the following reasons. One way to make the user trusted is to add them as members of the openshift org. You can then trigger verification by writing /verify-owners in a comment.

  • hasheddan
    • User is not a member of the org. User is not a collaborator. Satisfy at least one of these conditions to make the user trusted.
  • msau42
    • User is not a member of the org. User is not a collaborator. Satisfy at least one of these conditions to make the user trusted.
  • pwittrock
    • User is not a member of the org. User is not a collaborator. Satisfy at least one of these conditions to make the user trusted.
  • cheftako
    • User is not a member of the org. User is not a collaborator. Satisfy at least one of these conditions to make the user trusted.
    • cluster/OWNERS
    • pkg/kubelet/server/OWNERS
  • robscott
    • User is not a member of the org. User is not a collaborator. Satisfy at least one of these conditions to make the user trusted.
    • pkg/controller/endpointslicemirroring/OWNERS
  • tallclair
    • User is not a member of the org. User is not a collaborator. Satisfy at least one of these conditions to make the user trusted.
    • pkg/kubelet/prober/OWNERS
    • pkg/kubelet/server/OWNERS
  • alejandrox1
    • User is not a member of the org. User is not a collaborator. Satisfy at least one of these conditions to make the user trusted.
  • dims
    • User is not a member of the org. User is not a collaborator. Satisfy at least one of these conditions to make the user trusted.
    • cluster/OWNERS
  • jdumars
    • User is not a member of the org. User is not a collaborator. Satisfy at least one of these conditions to make the user trusted.
  • saad-ali
    • User is not a member of the org. User is not a collaborator. Satisfy at least one of these conditions to make the user trusted.
    • pkg/controller/volume/ephemeral/OWNERS
  • tpepper
    • User is not a member of the org. User is not a collaborator. Satisfy at least one of these conditions to make the user trusted.
  • verult
    • User is not a member of the org. User is not a collaborator. Satisfy at least one of these conditions to make the user trusted.
  • zhouya0
    • User is not a member of the org. User is not a collaborator. Satisfy at least one of these conditions to make the user trusted.
  • dashpole
    • User is not a member of the org. User is not a collaborator. Satisfy at least one of these conditions to make the user trusted.
    • pkg/kubelet/OWNERS
  • brianpursley
    • User is not a member of the org. User is not a collaborator. Satisfy at least one of these conditions to make the user trusted.
  • freehan
    • User is not a member of the org. User is not a collaborator. Satisfy at least one of these conditions to make the user trusted.
    • pkg/controller/endpointslicemirroring/OWNERS
  • spiffxp
    • User is not a member of the org. User is not a collaborator. Satisfy at least one of these conditions to make the user trusted.
    • cluster/OWNERS
  • odinuge
    • User is not a member of the org. User is not a collaborator. Satisfy at least one of these conditions to make the user trusted.
  • saschagrunert
    • User is not a member of the org. User is not a collaborator. Satisfy at least one of these conditions to make the user trusted.
  • karan
    • User is not a member of the org. User is not a collaborator. Satisfy at least one of these conditions to make the user trusted.
  • pohly
    • User is not a member of the org. User is not a collaborator. Satisfy at least one of these conditions to make the user trusted.
  • jingxu97
    • User is not a member of the org. User is not a collaborator. Satisfy at least one of these conditions to make the user trusted.

@openshift-ci-robot openshift-ci-robot added the needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. label Jul 26, 2020
@openshift-ci-robot
Copy link

@sttts: PR needs rebase.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

@openshift-ci-robot
Copy link

@sttts: The following tests failed, say /retest to rerun all failed tests:

Test name Commit Details Rerun command
ci/prow/verify-commits efb9d44 link /test verify-commits
ci/prow/e2e-conformance-k8s efb9d44 link /test e2e-conformance-k8s
ci/prow/e2e-gcp efb9d44 link /test e2e-gcp
ci/prow/e2e-aws-csi efb9d44 link /test e2e-aws-csi
ci/prow/e2e-cmd efb9d44 link /test e2e-cmd
ci/prow/kubernetes-e2e efb9d44 link /test kubernetes-e2e
ci/prow/e2e-aws-fips efb9d44 link /test e2e-aws-fips
ci/prow/e2e-aws-serial efb9d44 link /test e2e-aws-serial
ci/prow/integration efb9d44 link /test integration
ci/prow/unit efb9d44 link /test unit
ci/prow/gcp-e2e-kubernetes efb9d44 link /test gcp-e2e-kubernetes
ci/prow/k8s-e2e-gcp efb9d44 link /test k8s-e2e-gcp
ci/prow/e2e-upgrade efb9d44 link /test e2e-upgrade
ci/prow/e2e-azure-upgrade efb9d44 link /test e2e-azure-upgrade
ci/prow/e2e-gcp-upgrade efb9d44 link /test e2e-gcp-upgrade
ci/prow/e2e-aws-selfupgrade efb9d44 link /test e2e-aws-selfupgrade
ci/prow/e2e-aws-upgrade efb9d44 link /test e2e-aws-upgrade

Full PR test history. Your PR dashboard.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here.

@openshift-merge-robot
Copy link

@sttts: The following tests failed, say /retest to rerun all failed tests:

Test name Commit Details Rerun command
ci/prow/e2e-aws-upgrade efb9d44 link /test e2e-aws-upgrade
ci/prow/e2e-aws-selfupgrade efb9d44 link /test e2e-aws-selfupgrade
ci/prow/e2e-azure-upgrade efb9d44 link /test e2e-azure-upgrade
ci/prow/e2e-agnostic-cmd efb9d44 link /test e2e-agnostic-cmd

Full PR test history. Your PR dashboard.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here.

@sttts sttts closed this Oct 29, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@deads2k deads2k Awaiting requested review from deads2k

@jsafrane jsafrane Awaiting requested review from jsafrane

Assignees
No one assigned
Labels
do-not-merge/invalid-owners-file Indicates that a PR should not merge because it has an invalid OWNERS file in it. do-not-merge/work-in-progress Indicates that a PR should not merge because it is a work in progress. kind/api-change Categorizes issue or PR as related to adding, removing, or otherwise changing an API needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet