New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
WIP DEBUG rebase 1.19 #292
Conversation
…gration Add seccomp GA version skew for pods
The multi-arch container images used in tests live in quay.io which doesn't support nesting. By making the /volume/ images repo configurable, we are able to override them despite our current limitation. Signed-off-by: Rafael Fonseca <r4f4rfs@gmail.com>
This implements the necessary pieced for the PodSecurityPolicy enforcement like described in the appropriate KEP section: https://github.com/kubernetes/enhancements/blob/master/keps/sig-node/20190717-seccomp-ga.md#podsecuritypolicy-enforcement Signed-off-by: Sascha Grunert <sgrunert@suse.com>
…ring Adding new EndpointSlice Mirroring Controller
…1.7.0 [Kubeadm]:Bump CoreDNS to v1.7.0
Bump to SMD PR#166 to pick up unsetting field changes and add integration tests
update security contacts for apimachinery repos
Return err when create ContainerLogsDir failed
…ne-volumes generic ephemeral inline volumes
Fix JSON logger verbose
…c-cert-reload adds dynamic certificate reloading for kube aggregator
…get-preferred-allocation Add more tests for device plugin's GetPreferredAllocation() API
Return a FitError when PreFilter fails with unschedulable status
…here_volume_datastore fixed e2e test vsphere_volume_datastore.go
…ere_utils Fix vsphere util method - disksAreAttached
…-v1-collection-namespaced-pod-template-test Promote DeleteCoreV1CollectionNamespacedPodTemplate test+promote - +1 endpoint
…vcaffinity Bypass PreFilter in ServiceAfffinity if AffinityLabels arg is not present
…-flag-to-beta Set CSIMigrationvSphere feature gates to beta
fix: license issue in blob disk feature
Respect grace period when removing mirror pod
Refactoring: Change Inf Loop Condition (1 -> True)
log tls handshake error at trace level to avoid error flooding
In kubernetes#91342 attempting to evict a Pod with a DeletionTimestamp caused checking of PDBs to be ignored due to the fact that a Pod scheduled for deletion should not be factored into a disruption budget. However, PDB eviction tests currently will sometimes select a Pod already scheduled for deletion, expecting that attempting to evict it will conflict with the PDB. This updates those tests to make sure a Pod with deletion timestamp is not selected for eviction when it is intended to violate a PDB. Signed-off-by: hasheddan <georgedanielmangum@gmail.com>
Make sure pod tested for eviction with PDB is not scheduled for deletion
Implement PodSecurityPolicy enforcement for seccomp GA
…ration wiring Origin-commit: 3b0c72dd7b9f9367dda8f8645909d9277a6c29e9
Upstream requires 1.14 but downstream can't switch until ART supports 1.14.
openshift-kube-apiserver: make generated_files
The quoting involved causes unit test failure on golang 1.13, but seems to pass on golang 1.14. Drop/revert this commit when downstream switches to golang 1.14.
[APPROVALNOTIFIER] This PR is NOT APPROVED This pull-request has been approved by: sttts The full list of commands accepted by this bot can be found here.
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
…er to allowed node labels Server side validation of node labels was added in kubernetes#90307. We only disabled kubelet-side validation before to make our node role labels work.
…on for unknown labels This reverts commit 0350b57.
9d331b0
to
efb9d44
Compare
The following users are mentioned in OWNERS file(s) but are untrusted for the following reasons. One way to make the user trusted is to add them as members of the openshift org. You can then trigger verification by writing
|
@sttts: PR needs rebase. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
@sttts: The following tests failed, say
Full PR test history. Your PR dashboard. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here. |
@sttts: The following tests failed, say
Full PR test history. Your PR dashboard. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here. |
No description provided.