| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| ... | |
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping moby to version v24.0.7, which comprises the following commits:
05d7386665 daemon: daemon.containerRestart: don't cancel restart on context cancel
dd37b0b960 vendor: github.com/klauspost/compress v1.17.2
7058c0d24d vendor: github.com/klauspost/compress v1.16.5
57bd388582 daemon: overlay2: Write layer metadata atomically
05d95fd503 daemon: release sandbox even when NetworkDisabled
2783345d3a daemon/c8d: Use non cancellable context in defers
a9e20aeaed daemon/containerd: rename some vars that collided with imports
a8d0a58b24 daemon/containerd: newROLayerForImage: remove unused args
c981f8aff7 daemon/containerd: log errors when releasing leases
73814c48df internal: Add compatcontext.WithoutCancel
535b70e90c Update check-config.sh
dde5995051 vendor: golang.org/x/net v0.17.0
8864727bae vendor: golang.org/x/crypto v0.14.0
81d73e17f7 vendor: golang.org/x/text v0.13.0
d8c62df0b6 vendor: golang.org/x/sys v0.13.0
d7a1fcef8f vendor: golang.org/x/net v0.13.0, golang.org/x/crypto v0.11.0
a22da0d5c4 vendor: golang.org/x/text v0.11.0
85234039a6 vendor: golang.org/x/crypto v0.9.0
9702281ba0 vendor: golang.org/x/sys v0.10.0
01860dc813 vendor: golang.org/x/crypto v0.3.0
daf599ea0a replace dockerfile/dockerignore with patternmatcher/ignorefile
1dffa3a814 vendor: github.com/moby/patternmatcher v0.6.0
58c1c7b8dc Limit OOMScoreAdj when running in UserNS ("Rootful-in-Rootless")
19039eae0b profiles/apparmor: deny /sys/devices/virtual/powercap
164a1a0f14 oci/defaults: deny /sys/devices/virtual/powercap
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
commit e89fac6c9bf8d0b [Add `buildah mkcw`, add `--cw` to `buildah
commit` and `buildah build`] added a statically linked x86
entrypoint binary
This entrypoint is not currently used in the tested / supported
worflows.
To avoid packaging QA warnings on non-x86 architectures, we remove
the binary during the compilation phase.
If it does need to be rebuilt in the future, buildah's Makefiles
will have to be changed to not test the host for architecture
support, and use the OE defined target arch and cross compilers
instead.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
podman commit dfec510b41b5 [go-md2man: use vendored-in version, not
system] removes the shell test for go-md2man, which means our native
executable is not found.
While we could export GOMD2MAN and point it to our sysroot version
(${RECIPE_SYSROOT_NATIVE}/usr/bin/go-md2man), we could run into the
issues with formatting that the podman commit is trying to avoid.
If we pass our build host architecture to the build, it will be
used and the executable created as part of the compilation.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
CVE: CVE-2023-44487
Bumping grpc-go to version v1.59.0, which comprises the following commits:
7765221f Change version to 1.59.0 (#6695)
e88f12e0 server: prohibit more than MaxConcurrentStreams handlers from running at once (#6703) (#6704)
be7919c3 transport: Pass Header metadata to tap handle. (#6652)
e3f1514c Reapply "status: fix/improve status handling (#6662)" (#6673) (#6688)
696faa98 client: add a test for NewSubConn / StateListener / cc.Close racing (#6678)
318c717a readme: fix badges (#6687)
39972fdd github: add code coverage with codecov.io (#6676)
93dbc059 xds: move virtual host matcher test to the xdsresource package (#6680)
2c004697 github: update actions/setup-go and actions/checkout (#6675)
1f73ed5f Replace the gRFC pull request with the permanent link. (#6674)
9e1fc3e9 Revert "status: fix/improve status handling (#6662)" (#6673)
0772ed73 status: fix/improve status handling (#6662)
1466283c internal/idle: add a test that invokes ClientConn methods concurrently (#6659)
fd9ef726 interop: implement rpc-behavior for UnaryCall() (#6575)
c6264a9f examples: add an example of flow control behavior (#6648)
ee4b62c7 encoding: fix mention of DecompressedSize in docstring (#6665)
09792b58 test: move codec tests to a separate file (#6663)
57cb4d80 internal/backoff: add a helper to run a function with backoff (#6661)
5e4402ff attributes: avoid the use of %#v formatting verb (#6664)
147bd859 balancer: add a warning for balancer names that contain upper case letters (#6647)
4ced6016 googlec2p: remove support for the experimental scheme (#6645)
a758b625 xds/googledirectpath: fix google-c2p resolver test case involving bootstrap env config (#6657)
e61a14d7 fix testing parameter on xds_client_custom_lb_test (#6646)
58e2f2b1 attributes: print typed nil values instead of panic (#6574)
fe0dc227 interop/grpc_testing: regenerate pb.gos (#6653)
130bc428 Improve testutils.MarshalAny (#6617)
3156151a grpclb: teach the manual resolver to handle restarts (#6635)
1457a961 balancer/weightedroundrobin: fix ticker leak on update (#6643)
92f5ba97 xdsclient: completely remove the old WatchCluster API (#6621)
94d8074c grpclb: some minor cleanups (#6634)
1880bd6f resolver/manual: support restarts, required for channel idleness (#6638)
9deee9ba idle: use LB policy close event as a proxy for channel idleness (#6628)
2d1bb21e grpc: ensure transports are closed when the channel enters IDLE (#6620)
552525e5 interop/xds_federation: remove binary file (#6622)
82a568dd cdsbalancer: switch cluster watch to generic xDS client API (#6600)
03172006 health/grpc_health_v1: update pb.go (#6616)
57dcb71f interop/xds: improve error message (#6614)
254bccb3 idle: decrement active call count for streaming RPCs only when the call completes (#6610)
b0a946cf xds: fix hash policy header to skip bin headers and use extra metadata (#6609)
1e0d82e9 balancer/leastrequest: Cache atomic load and also add concurrent rpc test (#6602)
8eb4ac4c grpc: Change server stream context handling (#6598)
e498bbc9 leastrequest: fix data race in leastrequest picker (#6587)
778e6381 balancergroup: improve observability around balancer cache behavior (#6597)
aa6ce35c vet: ensure all usages of grpc_testing package are renamed when importing (#6595)
d045b41c interop/grpc_testing: regenerate pb.gos (#6596)
61b7baa4 grpc_test: rename import for grpc_testing (#6594)
18059002 deps: update dependencies for all modules (#6582)
9362f261 grpc: re-enable channel idleness by default (#6585)
8b1a6710 stream: swallow Header errors as we used to; RecvMsg can still return it (#6586)
23ac72b6 update pb.gos by running regenerate.sh (#6584)
2ce7ecd1 cdsbalancer: test cleanup part 3/N (#6564)
7afbb9b9 Change version to 1.59.0-dev (#6581)
4c9777ce clusterresolver: fix deadlock when dns resolver responds inline with update or error at build time (#6563)
81b9df23 idle: move idleness manager to separate package and ~13s of tests into it (#6566)
7d35b8ec test: speed up TestServiceConfigTimeoutTD from 1.8s to 0.03s (#6571)
d51b3f41 interop/grpc_testing: update protos from grpc-proto repo (#6567)
fe1519ec client: fix ClientStream.Header() behavior (#6557)
8a2c2205 cdsbalancer: test cleanup part 2/N (#6554)
7f66074c vet.sh: fix interface{} check for macos (#6561)
b07bf5d0 cdsbalancer: test cleanup part 1/N (#6546)
33f9fa2e test: speed up two tests (#6558)
aca07ce9 xds/internal/xdsclient: Add least request support in xDS (#6517)
e5d8eac5 test: improve and speed up channelz keepalive test (#6556)
ebf0b4e3 idle: speed up test by 5x even while running 2x more iterations (#6555)
7d3996fd grpctest: use an interface instead of reflection (#6553)
cc705fe4 interop: regenerate pb.gos (#6551)
3e925040 status: optimize GRPCStatus() calls (#6539)
402ba09a pick_first: de-experiment pick first (#6549)
2821d7fa resolver: remove outdated Target examples (#6547)
53d1f23a benchmark: update proper benchmark binary to use larger buffers (#6537)
fbff2abb *: update `interface{}` to `any` and `go.mod` version to `go 1.19` (#6544)
e40da661 clientconn: release lock when returning from enterIdleMode() (#6538)
dbbc983c balancer/leastrequest: Add least request balancer (#6510)
a0100790 *: remove references to old versions of go (#6545)
03d32b9c orca: update example and interop to use StateListener (#6529)
c2bc22c7 testing: update Go versions tested to 1.19-1.21 (#6543)
879faf6b test: update client state subscriber test to be not flaky and more stressful about rapid updates (#6512)
f3e94ec1 xds: improve error message when matched route on client is not of type RouteActionRoute (#6248)
bb410670 balancergroup: do not cache closed sub-balancers by default (#6523)
68704f8e gracefulswitch, stub: remove last UpdateSubConnState references (#6533)
49006996 balancer/rls, xds/wrrlocality: stop forwarding UpdateSubConnState calls (#6532)
ebc3c514 internal/balancergroup: remove usage of UpdateSubConnState (#6528)
5da2731c balancer/weightedtarget: stop forwarding UpdateSubConnState calls (#6525)
182b0add interop/grpc_testing: regenerate protos (#6534)
e2741524 rls: fix flaky test introduced by #6514 (#6535)
61a1f779 balancer/weightedroundrobin: migrate to StateListener (#6530)
175c84c1 xds/ringhash: use StateListener instead of UpdateSubConnState (#6522)
3fa17cc1 test: speed up test that was taking 10 seconds to timeout (#6531)
694cb64c xds/clusterresolver: stop forwarding UpdateSubConnState calls (#6526)
8f51ca8f tests: stop using UpdateSubConnState (#6527)
cea77bb0 xds/clustermanager: stop forwarding UpdateSubConnState calls (#6519)
ce684134 xds/priority: stop forwarding UpdateSubConnState calls (#6521)
dceb6eef xds/clusterimpl: stop forwarding UpdateSubConnState calls (#6518)
8def12a4 xds/outlierdetection: Stop handling UpdateSubConnState forwarding (#6520)
67a8e73f multiple/test: use stub balancer instead of defining wrapped balancers (#6514)
92b481a6 test: allow set request/response size in interop soak test (#6513)
07609e1b benchmark: restore old buffer size values for published benchmarks (#6516)
2059c6e4 grpc: report connectivity state changes on the ClientConn for Subscribers (#6437)
4832debd test: clean up deadlines set in tests (#6506)
9c46304f xds/cdsbalancer: stop handling subconn state updates (#6509)
e9a4e942 base: update base balancer for new APIs (#6503)
6c0c69ef all: replace RemoveSubConn with Shutdown as much as possible (#6505)
28ac6efe xdsclient: make watch timer a no-op if authority is closed (#6502)
d06ab0d4 pickfirst: receive state updates via callback instead of UpdateSubConnState (#6495)
7aceafcc balancer: add SubConn.Shutdown; deprecate Balancer.RemoveSubConn (#6493)
4fe8d3d3 balancer: fix tests not properly updating subconn states (#6501)
8ebe4620 outlierdetection: fix unconditional calls of child UpdateSubConnState (#6500)
5d3d9d7c grpc: perform a blocking close of the balancer in ccb (#6497)
ecc5645b clusterresolver: fix a flaky test (#6499)
b9356e3d client: fix race between connection error and subconn shutdown (#6494)
2db7b17a test/xds: increase default test timeout (#6498)
8f496b2a test/kokoro: Add bootstrap generator test into Go Kokoro script (#6463)
02463732 testutils: remove TestSubConns for future extensibility (#6492)
c6354049 balancer: add StateListener to NewSubConnOptions for SubConn state updates (#6481)
94df716d resolver: State: add Endpoints and deprecate Addresses (#6471)
20c51a9f pickfirst: add tests for resolver error scenarios (#6484)
b8d36caf pickfirst: add prefix logging (#6482)
5ce5686d pickfirst: guard config parsing on GRPC_EXPERIMENTAL_PICKFIRST_LB_CONFIG (#6470)
41d12327 resolver/weighted_round_robin: remove experimental suffix from name (#6477)
2aa26156 clusterresolver: comply with A37 for handling errors from discovery mechanisms (#6461)
d7f45cdf xds/server: create the xDS client when the xDS enabled gRPC server is created (#6446)
f1fc2ca3 clientconn: add channel ID to some idleness logs (#6459)
9bb44fbf transport: use a sync.Pool to share per-connection write buffer (#6309)
d524b409 multiple: update dependencies after 1.57 branch cut (#6452)
7aab9c05 stats: Add RPC event for blocking for a picker update (#6422)
02946a3f resolver: remove deprecated AddressType (#6451)
919fe359 Change version to 1.58.0-dev (#6450)
94890820 github: replace deprecated command with environment file (#6417)
d1868a53 clusterresolver: add logs for dns discovery mechanism error cases (#6444)
8e9c8f8e grpc: do not use balancer attributes during address comparison (#6439)
db32c5bf Fix preloader mode in benchmarks (#6359)
f0280f9d xds: require EDS service name in new-style CDS clusters (gRFC A47) (#6438)
bf5b7aec clusterresolver: handle EDS nacks and resource-not-found errors correctly (#6436)
fc0aa468 client: encode the authority by default (#6428)
11feb0a9 resolver: delete Target.Scheme and Target.Authority (#6363)
df3e0214 status: fix panic when servers return a wrapped error with status OK (#6374)
acbfcbb8 internal/grpcsync: refactor test (#6427)
51042db7 internal/grpcsync: Provide an internal-only pub-sub type API (#6167)
620a118c xds/internal/balancer/clusterimpl: Switch cluster impl child to graceful switch (#6420)
6b8f4274 orca: remove useless log statement (#6424)
ea492f55 xdsclient: indicate authority serverURI in authority + transport logs (#6425)
67e881c3 xds: E2E Test for Audit Logging (#6377)
07718ef6 internal/xds/rbac: Add support for string matcher in RBAC header matching (#6419)
575a9365 xds: Fail xDS Server Serve() if called after Stop() or GracefulStop() (#6410)
7eb57278 xds: switch EDS watch to new generic xdsClient API (#6414)
e8599844 server: with TLS, set TCP user timeout on the underlying raw connection (#5646) (#6321)
1634254a rpc_util: Reuse memory buffer for receiving message (#5862)
789cf4e3 reflection: rename proto imports for disambiguation in import script (#6411)
0673105e clusterresolver: switch a couple of tests to e2e style (#6394)
0b3a81ea clusterresolver: remove priority LB related tests (#6395)
dd931c80 xds: clusterresolver e2e test cleanup (#6391)
10f5b50a [PSM interop] Don't fail target if sub-target already failed (#6390)
963238a6 clusterresolver: move tests around to different files (#6392)
f24b4c7e clusterresolver: remove redundant tests (#6388)
a9c79427 benchmark: Add support for Poisson load in benchmark client (#6378)
dd350d02 stats/opencensus: Fix flaky metrics test (#6372)
642dd63a reflection: expose both v1 and v1alpha reflection services (#6329)
3c6084b7 xds/outlierdetection: fix config handling (#6361)
3e8eca80 Revert "client: encode the authority by default (#6318)" (#6365)
1c0572a5 benchmark: fix package used to reference service to use grpc suffix instead of pb (#6362)
7a7caf36 protoc-gen-go-grpc: Update README.md file (#6349)
89790ea9 grpclb: fix typo (#6356)
907bdaa1 alts: Read max number of concurrent ALTS handshakes from environment variable. (#6267)
2ac1aaed weightedroundrobin: prefer application_utilization to cpu_utilization (#6358)
7aeea8f4 orca: add application utilization and range checking (#6357)
6578ef72 client: handle empty address lists correctly in addrConn.updateAddrs (#6354)
761c084e xds/ringhash: cache connectivity state of subchannels inside picker (#6351)
1b666637 benchmark: Add sleepBetweenRPCs and connections parameters (#6299)
81c513a4 opencensus: stop overwriting ctx parameter in tests (#6350)
68576b3c client: encode the authority by default (#6318)
c9d3ea56 deps: google.golang.org/genproto to latest in all modules (#6319)
02188e64 Change version to 1.57.0-dev (#6346)
8edfa1a1 authz: End2End test for AuditLogger (#6304)
2b1d70be xds: enable RLS in xDS by default (#6343)
47f8ed81 interop: Don't fail target if sub-target already failed (#6332)
1f23f6c2 client: fix Connect to handle channel idleness properly (#6331)
3ea58ce4 client: disable channel idleness by default (#6328)
6c2529bc xds: support pick_first custom load balancing policy (A62) (#6314)
9b9b364f internal/envconfig: Set Custom LB Env Var to true by default (#6317)
e325737c alts: Fix flaky ALTS TestFullHandshake test. (#6300)
4d3f221d xds/internal/xdsclient: Add support for String Matcher Header Matcher in RDS (#6313)
157db190 stats/opencensus: Fix flaky test span (#6296)
f19266cc xds: support built-in Stdout audit logger type (#6298)
59134c30 client: add support for pickfirst address shuffling from gRFC A62 (#6311)
a6e1acfc grpc: support sticky TF in pick_first LB policy (#6306)
2ae10b28 xdsclient: remove interface check related to ResourceData (#6308)
e9799e79 client: support a 1:1 mapping with acbws and addrConns (#6302)
2a266e78 authz: use pointer to to structpb.Struct instead of value (#6307)
511a9635 interop: let the interop client send additional metadata, controlled by a flag (#6295)
9b7a947c grpc: support channel idleness (#6263)
098b2d00 xds/internal/balancer/outlierdetection: Switch Outlier Detection to use new duration field (#6286)
417d4b68 examples: add error_handling example; move errors to error_details (#6293)
390c392f authz: Rbac engine audit logging (#6225)
52fef6da authz: Stdout logger (#6230)
92e65c89 test/kokoro: Add custom_lb_test to the xds_k8s_lb job (#6290)
756119c7 xds/outlierdetection: forward metadata from child picker (#6287)
8eba9c2d github: upgrade to v3 of checkout & setup-go (#6280)
24fd2521 proto: update generated code to match grpc-proto changes (#6283)
4eb88d7d cleanup: use new Duration type in base ServiceConfig (#6284)
1230f0e4 xds/internal/xdsclient: Split registry up and two separate packages (#6278)
0bdae480 interop: fix interop_test.sh shutdown (#6279)
5dcfb37c interop: hold lock on server for OOB metrics updates; share 30s timeout (#6277)
68381e7b xds: WRR in xDS (#6272)
fd376a5c test: fix flaky TimeoutOnDeadServer test; some cleanups (#6276)
1db474c8 weightedroundrobin: fix duration format in lb config (#6271)
523dcddf weightedroundrobin: fix test race accessing timeNow (#6269)
1536887c interop/xds: Add Custom LB needed for interop test (#6262)
7d613442 examples: fix authz example to receive streaming error properly (#6270)
afcbdc9a xds/internal/xdsclient/xdslbregistry: Continue in converter if type not found (#6268)
b3fbd87a interop: add ORCA test cases and functionality (#6266)
5e587344 xds: Add support for Custom LB Policies (#6224)
5c4bee51 balancer/weightedroundrobin: add load balancing policy (A58) (#6241)
c44f77e1 grpc: use CallbackSerializer in balancer wrapper (#6254)
f193ec01 orca: fix race when calling listeners coincides with updating the run goroutine (#6258)
417cf846 test: deflake TestBalancerProducerHonorsContext (#6257)
1f3fe1c8 Update ClientStream.SendMsg doc (#6247)
ccad7b75 grpc: use CallbackSerializer in resolver_wrapper (#6234)
47b3c554 orca: fix race at producer startup (#6245)
56b33d5c server/transport: send appropriate debug_data in GOAWAY frames (#6220)
add90153 orca: allow a ServerMetricsProvider to be passed to the ORCA service and ServerOption (#6223)
40d01479 googledirectpatph: enable ignore_resource_deletion in bootstrap (#6243)
ed3ceba6 balancer: make producer RPCs block until the SubConn is READY (#6236)
b153b006 multiple: standardize import renaming for typed structs (#6238)
713bd041 orca: minor cleanups (#6239)
21a339ce grpc: handle RemoveSubConn inline in balancerWrapper (#6228)
b1538271 xds: make glaze happy for test packages (#6237)
019acf2e stubserver: add option for allowing more services to be registered (#6240)
cf89a0b9 authz: Swap to using the correct TypedConfig in audit logger parsing (#6235)
df821471 internal: Document gcp/observability 1.0 dependencies in /internal (#6229)
da1a5eb2 tests: nix TestClientDoesntDeadlockWhileWritingErroneousLargeMessages (#6227)
e853dbf0 authz: add conversion of json to RBAC Audit Logging config (#6192)
497436ce xds/internal/balancer/outlierdetection: Change string to String (#6222)
de11139a clusterresolver: improve tests (#6188)
eff0942e xds/internal/xdsclient: Custom LB xDS Client Changes (#6165)
8628e075 xds/internal/balancer/outlierdetection: Add Channelz Logger to Outlier Detection LB (#6145)
83c460b8 authz: Move audit package (#6218)
8c70261b grpc: ClientConn cleanup in prep for channel idleness (#6189)
2cd95c75 gcp/observability: remove redundant import (#6215)
16651f60 go.mod: update all dependencies (#6214)
ca604628 stubserver: Stop server when StartClient failed (#6190)
7dfd7183 internal/buffer: add Close method to the Unbounded buffer type (#6161)
ebeda756 tests: defalke TestTimerAndWatchStateOnSendCallback (#6206)
0ed709c4 Change version to 1.56.0-dev (#6213)
875c97a9 examples/features/observability: use observability module v1.0.0 (#6210)
aa8c137d authz: add audit logging APIs (#6158)
b91b8842 gcp/observability: Have o11y module point to grpc 1.54 and opencensus 1.0.0 (#6209)
eab9e20d test/kokoro: increase PSM Security test timeout to 4h (#6193)
d90621f9 remove the unnecessary call to ResetTimer and StopTimer (#6185)
fe72db95 testing: add helpers to start test service, and retrieve port (#6187)
5a50b970 Revert "Revert "credentials/alts: defer ALTS stream creation until handshake …" (#6179)
89ec9609 grpc: read the service config channel once instead of twice (#6186)
6237dfe7 internal/stubserver: Close Client Conn in error handling of Start (#6174)
06de8f85 alts: Add retry loop when making RPC in ALTS's TestFullHandshake. (#6183)
6eabd7e1 server: use least-requests loadbalancer for workers (#6004)
8374ff8f Export the unwrapResource method, to allow callers outside of the package (#6181)
efb2f459 test/xds: Fix test_grpc import path (#6180)
81b30924 security/advancedtls: add TlsVersionOption to select desired min/max TLS versions (#6007)
17b693d7 alts: Perform full handshake in ALTS tests. (#6177)
01f8b866 Add documentation on some anti-patterns (#6034)
3489bb7d xdsclient/test: deflake TestWatchResourceTimerCanRestartOnIgnoredADSRecvError (#6159)
bfb57b8b testing: delete internal copy of test service proto, and use canonical one (#6164)
10401b92 stats/opencensus: the backend to Sent. Attempt. and Recv. (#6173)
b0a8b1b9 Use string instead of enum for xds resource type (#6163)
1d5b73a1 xds: add stop to avoid hanging in TestServeWithStop (#6172)
ea0a0383 xds/xdsclient: ignore resource deletion as per gRFC A53 (#6035)
a51779df xdsclient/test: deflake TestTimerAndWatchStateOnSendCallback (#6169)
e9799199 internal/grpcsync: move CallbackSerializer from xdsclient/internal to here (#6153)
c2899ddd examples/features/observability: Point o11y example to latest gcp/observability module (#6162)
113d75fb gcp/observability: Add isSampled bool to log entries (#6160)
4a125956 stats/opencensus: Switch helper to return Span Context from context (#6156)
c3f1d5e5 gcp/observability: Set the opencensus_task label only for metrics, not tracing and logging (#6155)
42dd7ac9 Use anypb.New instead of ptypes.MarshalAny (#6074)
415ccdf1 go.mod: update all dependencies after 1.54 branch cut (#6132)
a357bafa status: FromError: return entire error message text for wrapped errors (#6150)
44cebb8f xds: enable XDS federation by default (#6151)
c018273e examples: Add observability example (#6149)
277bb642 Revert "credentials/alts: defer ALTS stream creation until handshake time (#6077)" (#6148)
0fdfd402 gcp/observability: Generate unique process identifier unconditionally (#6144)
1d20f1b5 security/advancedtls: swap from deprecated pkix.CertificateList to x509.RevocationList (#6054)
a8a25ce9 transport: use prefix logging (#6135)
9c25653b cdsbalancer: improve log messages (#6134)
a02aae61 CONTRIBUTING.md: remove duplicated bullet point (#6139)
cdab8ae5 clusterresolver: push empty config to child policy upon removal of cluster resource (#6125)
7651e620 transport: add a draining state check before creating streams (#6142)
a2ca46c4 examples: organize READMEs better (#6121)
4efec30e stats/opencensus: remove leading slash for per call metrics (#6141)
78099db0 gcp/observability: Switch hex encoding to string() method (#6138)
70c52915 observability: remove import replace directive and switch it to point to latest commit (#6122)
66e35339 status: handle wrapped errors (#6031)
a75fd73d Change version to 1.55.0-dev (#6131)
b638faff stats/opencensus: Add message prefix to metrics names (#6126)
c84a5005 credentials/alts: defer ALTS stream creation until handshake time (#6077)
6f44ae89 metadata: add benchmark test for FromIncomingContext and ValueFromIncomingContext (#6117)
a1e657ce client: log last error on subchannel connectivity change (#6109)
36fd0a43 gcp/observability: Add compressed metrics to observability module and synchronize View data with exporter (#6105)
52ca9571 xds: make comparison of server configs in bootstrap more reliable (#6112)
7507ea6b gcp/observability: Change logging schema and set queue size limit for logs and batching delay (#6118)
16c3b7df examples: add example for ORCA load reporting (#6114)
b458a4f1 transport: stop always closing connections when loopy returns (#6110)
11e2506c tests: Scale down keepalive test timings (#6088)
5796c409 interop/observability: Pass interop parameters to client/server as-is (#6111)
abd4db22 xdsclient/tests: fix flaky test NodeProtoSentOnlyInFirstRequest (#6108)
3633361c tests: support LRS on the same port as ADS (#6102)
0558239a Update CONTRIBUTING.md (#6089)
22608213 go.mod: upgrade golang.org/x/net to address CVE-2022-41723 (#6106)
60a1aa38 testutils: add support for creating endpoint resources with options (#6103)
92d9e77a xds: NACK route configuration if sum of weights of weighted clusters exceeds uint32_max (#6085)
d02039b6 Deflake the integration test. (#6093)
55d87834 gcp/observability: Link logs and traces by logging Trace and Span IDs (#6056)
ad4057fc transport: stop returning errors that are always nil (#6098)
558e1b6f examples/authz: add token package docstring (#6095)
33df9fc4 credentials/xds: improve error message upon SAN matching failure (#6080)
32921935 xdsclient: handle race with watch timer handling (#6086)
e83e34be xds/resolver/test: use a non-blocking send instead of closing the channel (#6082)
b46bdef1 interop/observability: add GCP Observability Testing Client/Server (#5979)
f3116846 stats/opencensus: New uncompressed metrics and align with tracing spec (#6051)
cc320bf8 grpc: Log server trailers before writing status (#6076)
b9e6d59a xdsclient: send Node proto only on first discovery request on ADS stream (#6078)
ae4a2315 ringhash: ensure addresses are consistenly hashed across updates (#6066)
52dcd147 xdsclient: move tests from `e2e_test` to `tests` directory (#6073)
d8f80bb0 stats/opencensus: Added client api latency and upgrade go.mod (#6042)
a8b32264 gcp/observability: Disable logging and traces on channels to cloud ops backends (#6022)
20141c25 examples: add an example to illustrate authorization (authz) support (#5920)
8c374f76 clusterresolver: cleanup resource resolver implementation (#6052)
1d16ef5b metadata: Lowercase appended metadata (#6071)
8ba23be9 cmd/protoc-gen-go-grpc: bump -version to 1.3.0 for release (#6064)
a1693ec5 fakeserver: remove ADS and LRS v2 support (#6068)
832ecc25 channelz: use protocmp.Transform() to compare protos (#6065)
28b6bcf9 xds/xdsclient: improve failure mode behavior (gRFC A57) (#5996)
d53f0ec3 test: move compressor tests out of end2end_test.go (#6063)
dba41efd metadata: fix validation issues (#6001)
75bed1de test: move e2e health checking tests out of end2end_test.go (#6062)
0586c51d internal/transport: reduce running time of test from 5s to 1s (#6061)
7437662f internal/transport: Fix flaky keep alive test (#6059)
681b1338 admin/test: split channelz imports (#6058)
1093d3ac channelz: remove dependency on testing package (#6050)
3775f633 xdsclient/transport: reduce chattiness of logs (#5992)
6fe609da xdsclient: minor cleanup in eds parsing (#6055)
5353eaa4 testing: add helpers to configure cluster specifier plugin type (#5977)
8702a2eb stats/opencensus: Add top level call span (#6030)
85b95dc6 gcp/observability: Register new views (#6026)
abff344e stats/opencensus: Add per call latency metric (#6017)
0f02ca5c gcp/observability: Switch observability module to use new opencensus instrumentation code (#6021)
6d612a3e resolver: update Resolver.Scheme() docstring to mention requirement of lowercase scheme names (#6014)
30d8c0a0 xds/internal/xdsclient: NACK empty clusters in aggregate clusters (#6023)
081499f2 xds: remove support for v2 Transport API (#6013)
dd12def8 stats/opencensus: Add OpenCensus traces support (#5978)
f4feddb3 github: update tests to use go version 1.20 (#6020)
81534105 client: Add dial option to disable global dial options (#6016)
55dfae6e resolver: document handling UpdateState errors by resolvers (#6002)
ceb3f071 client: Revert dialWithGlobalOption (#6012)
d655f404 internal/transport: fix severity of log when receiving a GOAWAY with error code ENHANCE_YOUR_CALM (#5935)
b81e8b62 metadata: slightly improve operateHeaders (#6008)
e9d9bd04 tests: reduce the degree of stress testing in long running tests (#6003)
f8552261 github: update codeQL action to v2 (#6009)
f69e9ad8 stats/opencensus: Add OpenCensus metrics support (#5923)
3151e834 cmd/protoc-gen-go-grpc: export consts for full method names (#5886)
d6dabba0 xds/server: reduce chattiness of logs (#5995)
09540972 server: expose API to set send compressor (#5744)
a7058f7b xds/csds: switch tests to use the new generic xdsclient API (#6000)
37111547 xdsclient/bootstrap: reduce chattiness of logs (#5991)
d103fc70 xdsclient/xdsresource: reduce chattiness of logs (#5993)
6a707eb1 client: add an option to disable global dial options (#5990)
c813c17a Change version to 1.54.0-dev (#5985)
2a1e9348 server: after GracefulStop, ensure connections are closed when final RPC completes (#5968)
e2d69aa0 tests: fix spelling of variable (#5966)
a6376c98 xds/resolver: cleanup tests to use real xDS client 3/n (#5953)
bf8fc46f xds/resolver: cleanup tests to use real xDS client 5/n (#5955)
3930549b resolver: replace resolver.Target.Endpoint field with Endpoint() method (#5852)
894816c4 grpclb: rename `grpclbstate` package back to `state` (#5962)
e5a0237a encoding: fix duplicate compressor names (#5958)
4adb2a7a xds/resolver: cleanup tests to use real xDS client 2/n (#5952)
52a8392f gcp/observability: update method name validation (#5951)
4075ef07 xds: fix panic involving double close of channel in xDS transport (#5959)
7bf6a58a gcp/observability: Cleanup resources allocated if start errors (#5960)
bc9728f9 xds/resolver: cleanup tests to use real xDS client 4/n (#5954)
6e749384 xds/resolver: cleanup tests to use real xDS client (#5950)
9b9b3812 server: fix a few issues where grpc server uses RST_STREAM for non-HTTP/2 errors (#5893)
ace80823 xdsclient: close func refactor (#5926)
9326362a transport: fix maxStreamID to align with http2 spec (#5948)
4e4d8288 xds interop: Fix buildscripts not continuing on a failed test suite (#5937)
379a2f67 *: add missing colon to errorf messages to improve readability (#5911)
cde2edce Revert "xds interop: Fix buildscripts not continuing on a failed test suite (#5932)" (#5936)
78ddc05d xdsclient: fix race in load report implementation (#5927)
2a9e970f xds interop: Fix buildscripts not continuing on a failed test suite (#5932)
9228cffc rls: fix a data race involving the LRU cache (#5925)
be06d526 binarylog: consistently rename imports for binarylog proto (#5931)
bf3ad352 *: update all dependencies (#5924)
6de8f50f transport: drain client transport when streamID approaches maxStreamID (#5889)
42b7b633 stats/opencensus: OpenCensus instrumentation api (#5919)
974a5ef8 grpc: document defaults in MaxCallMsgSize functions (#5916)
9b73c42d test/xds: add tests for scenarios where authority in resource name is not specified in bootstrap config (#5890)
3b2da532 xdsclient: handle resource not found errors correctly (#5912)
f2fbb0e0 Deprecate use of `ioutil` package (#5906)
8ec85e42 priority: improve and reduce verbosity of logs (#5902)
12b8fb52 test: move e2e HTTP header tests to http_header_end2end_test.go (#5901)
f1a9ef9c stream: update ServerStream.SendMsg doc (#5894)
c90744f1 oauth: mark `NewOauthAccess` as deprecated and update examples to use `TokenSource` (#5882)
0e5421c1 internal/envconfig: add convenience boolFromEnv to improve readability (#5887)
4565dd70 ringhash: allow overriding max ringhash size via environment variable (#5884)
94a65dca rls: deflake tests (#5877)
08479c5e xdsclient: resource agnostic API implementation (#5776)
07ac97c3 transport: simplify httpClient by moving onGoAway func to onClose (#5885)
5ff7dfcd rls: propagate headers received in RLS response to backends (#5883)
f94594d5 interop: add test client for use in xDS federation e2e tests (#5878)
68b388b2 balancer: support injection of per-call metadata from LB policies (#5853)
4f16fbe4 examples: update server reflection tutorial (#5824)
b2d4d5db test: fix raceyness check to deflake test http server (#5866)
54b7d03e grpc: Add join Dial Option (#5861)
70617b11 vet & github: run vet separately from tests; make vet-proto only check protos (#5873)
81ad1b55 *: update all dependencies (#5874)
357d7afc Change version to 1.53.0-dev (#5872)
a0e8eb9d test: rename race.go to race_test.go (#5869)
ae86ff40 benchmark: fix typo in ClientReadBufferSize feature name (#5867)
e53d28f5 xdsclient: log node ID with verbosity INFO (#5860)
9373e5cb transport: Fix closing a closed channel panic in handlePing (#5854)
2f413c45 transport/http2: use HTTP 400 for bad requests instead of 500 (#5804)
5003029e testutils: do a better job of verifying pick_first in tests (#5850)
3e27f899 binarylog: Account for key in metadata truncation (#5851)
f54bba9a test/xds: minor cleanup in xDS e2e test (#5843)
a9709c3f Added logs for reasons causing connection and transport close (#5840)
aba03e1a xds: pass options by value to helper routines which setup the management server in tests (#5833)
638141fb examples: add feature/cancellation retry to example test script (#5846)
22c1fd2e deps: update golang.org/x/net to latest in all modules (#5847)
19490352 ringhash: add logs to surface information about ring creation (#5832)
f7c110af test: remove use of deprecated WithInsecure() API (#5836)
a2054471 examples: add new example to show updating metadata in interceptors (#5788)
001d234e rls: Fix regex in rls test (#5834)
73619713 rls: use a regex for the expected error string (#5827)
617d6c8a security/advancedtls: add test for crl cache expiration behavior (#5749)
ef51864f grpclb: improve grpclb tests (#5826)
fa99649f xdsclient: deflake new transport ack/nack tests (#5830)
99ba9823 transport/server: flush GOAWAY before closing conn due to max age (#5821)
20c937ee transport: limit AccountCheck tests to fewer streams and iterations to avoid flakes (#5828)
110ed9e6 xdsclient: resource-type-agnostic transport layer (#5808)
c91396d4 pickfirst: do not return initial subconn while connecting (#5825)
94f0e7fa benchmark: add a feature for read and write buffer sizes (#5774)
087387ca Deflake Outlier Detection xDS e2e test (#5819)
dd123b7f testutils/pickfirst: move helper function to testutils (#5822)
be202a26 examples: add an example to illustrate the usage of stats handler (#5657)
9f97673b test: move e2e goaway tests to goaway_test.go (#5820)
0fe49e82 grpc: Improve documentation of read/write buffer size server and dial options (#5800)
09fc1a34 interop: update Go version in docker container used for psm interop (#5811)
adfb9155 server: fix ChainUnaryInterceptor and ChainStreamInterceptor to allow retrying handlers (#5666)
e0a9f111 reflection: split grpc and pb imports (#5810)
6f96f961 reflection: update proto (#5809)
6e43203e reflection: generate protobuf files from grpc-proto (#5799)
0abb6f9b xdsclient: resource type agnostic WatchResource() API (#5777)
3011eaf7 test/tools: update staticcheck version to latest (#5806)
fefb3ec0 test/tools: update everything to latest versions except staticcheck (#5805)
50be6ae2 go.mod: update all dependencies (#5803)
ff146806 Cap min and max ring size to 4K (#5801)
0238b6e1 transport: new stream with actual server name (#5748)
817c1e8c passthrough: return error if endpoint is empty and opt.Dialer is nil when building resolver (#5732)
56ac86fa xdsclient: wait for underlying transport to close (#5775)
457c2f54 benchmark: use default buffer sizes (#5762)
689d061d Cleanup usages of resolver.Target's Scheme and Authority (#5761)
5331dbd3 outlierdetection: remove an unused variable in a test (#5778)
81db2506 Change version to 1.52.0-dev (#5784)
72812fe3 gcp/observability: filter logging from cloud ops endpoints calls (#5765)
0ae33e69 xdsclient: remove unused test code (#5772)
824f4491 go.mod: upgrade x/text to v0.4 to address CVE (#5769)
7f23df02 xdsclient: switch xdsclient watch deadlock test to e2e style (#5697)
32f969e8 o11y: Added started rpc metric in o11y plugin (#5768)
b597a8e1 xdsclient: improve authority watchers test (#5700)
e41e8940 orca: create ORCA producer for LB policies to use to receive OOB load reports (#5669)
36d14dbf Fix binary logging bug which logs a server header on a trailers only response (#5763)
fcb8bdf7 xds/google-c2p: validate url for no authorities (#5756)
040b795b xdsclient/e2e_test: use SendContext() where appropriate (#5729)
0d6481fb target: replace parsedTarget.Scheme to parsedTarget.URL.Scheme (#5750)
fdcc01b8 transport/test: implement staticcheck suggestion (#5752)
aa44ccaf google-c2p: use new-style resource name for LDS subscription (#5743)
c858a770 balancer/weightedtarget: fix ConnStateEvltr to ignore transition from TF to Connecting (#5747)
64df6526 google-c2p: include federation env var in the logic which determines when to use directpath (#5745)
3c09650e balancer/weightedtarget: use ConnectivityStateEvaluator (#5734)
3fd80b0c Fix flaky test MultipleClientStatsHandler (#5739)
26071c24 google-c2p resolver: add authority entry to bootstrap config (#5680)
9127159c client: synchronously verify server preface in newClientTransport (#5731)
f51d2126 xdsclient: improve RDS watchers test (#5692)
7c168026 tests: refactor tests to use testutils helper functions (#5728)
28fae96c xdsclient: improve federation watchers test (#5696)
f88cc659 xdsclient: improve EDS watchers test (#5694)
439221d8 xdsclient: add a convenience type to synchronize execution of callbacks (#5702)
dbb8e2bf xdsclient: improve CDS watchers test (#5693)
79ccdd8f clientconn: go idle if conn closed after preface received (#5714)
778860e6 testing: update Go to 1.19 (#5717)
eb8aa319 weightedtarget: return a more meaningful error when no child policy is reporting READY (#5391)
bb3d7394 fakeserver: add v3 support to the xDS fakeserver implementation (#5698)
912765f7 xds: move bootstrap config generating utility package to testutils (#5713)
f52b910b o11y: Fixed o11y bug (#5720)
00d1830c Fix o11y typo (#5719)
e163a908 xds/xdsclient: add EDS resource endpoint address duplication check (#5715)
9eba5743 xds: de-experimentalize google c2p resolver (#5707)
8b3b10bd gcp/observability: implement public preview config syntax, logging schema, and exposed metrics (#5704)
8062981d vet: workaround buggy mac git grep behavior (#5716)
e81d0a27 xdsclient: improve LDS watchers test (#5691)
7b817b4d client: set grpc-accept-encoding to full list of registered compressors (#5541)
c6724519 xds/xdsclient: add sum of EDS locality weights check (#5703)
c03925db priority: release references to child policies which are removed (#5682)
5fc798be Add binary logger option for client and server (#5675)
12db695f grpc: restrict status codes from control plane (gRFC A54) (#5653)
202d355a Change version to 1.51.0-dev (#5687)
1451c62c internal/transport: optimize grpc-message encoding/decoding (#5654)
be4b63b1 test: minor test cleanup (#5679)
d83070ec Changed Outlier Detection Env Var to default true (#5673)
54521b22 client: remove trailing null from unix abstract socket address (#5678)
36e48107 orca: cleanup old code, and get grpc package to use new code (#5627)
e8866a83 build: harden GitHub Workflow permissions (#5660)
8458251c xdsclient: ignore routes with cluster_specifier_plugin when GRPC_EXPERIMENTAL_XDS_RLS_LB is off (#5670)
a238ceba xDS: Outlier Detection Env Var not hardcoded to false (#5664)
b1d7f56b transport: Fix deadlock in transport caused by GOAWAY race with new stream creation (#5652)
9c3e589d rls: delegate pick to child policy as long as it is not in TransientFailure (#5656)
7da8a056 xds: Enable Outlier Detection interop tests (#5632)
21f0259e test: loosen metadata error check to reduce dependence on exact library errors (#5650)
552de120 orca: fix package used to reference service to use pb suffix instead of grpc (#5647)
87d1a90a orca: fix package used to reference service to use grpc suffix instead of pb (#5645)
60eecd91 metadata: add ValueFromIncomingContext to more efficiently retrieve a single value (#5596)
2ebd5943 Documentation/proxy: update due to Go 1.16 behavior change (#5630)
1530d3b2 gcp/observability: fix End() to cleanup global state correctly (#5623)
f7d20367 xds: add Outlier Detection Balancer (#5435)
182e9df1 Grab comment from proto file, similar to protoc-gen-go (#5540)
60a3a7e9 cleanup: fixes for issues surfaced by vet (#5617)
99ae81bf roundrobin: optimization of the roundrobin implementation. (#5607)
aee9f0ed orca: server side custom metrics implementation (#5531)
ddcda5f7 alts: do not set WaitForReady on handshaker RPCs (#5620)
d875a0e8 xdsclient: NACK cluster resource if config_source_specifier in lrs_server is not self (#5613)
c351f37d chore: remove duplicate word in comments (#5616)
f0f9f00f test/kokoro: enable pod log collection in the buildscripts (#5608)
1dd02563 ringhash: implement a no-op ExitIdle() method (#5614)
fe592260 clusterresolver: deflake eds_impl tests (#5562)
d5dee5fd xds/ringhash: make reconnection logic work for a single subConn (#5601)
b225ddaa transport: update http2 spec document link (#5597)
641dc871 transport: add peer information to http2Server and http2Client context (#5589)
02fbca0f xds/resolver: generate channel ID randomly (#5591)
97cb7b16 xds/clusterresolver: prevent deadlock of concurrent Close and UpdateState calls (#5588)
c56f196d internal/fakegrpclb: don't listen on all adapters (#5592)
3f5b7ab4 internal/transport: fix typo (#5566)
c11858e8 Publish arm64 binaries to GitHub releases (#5561)
802b32e0 Change version to 1.50.0-dev (#5585)
92cee344 gcp/observability: Add logging filters for logging, tracing, and metrics API calls (#5582)
c7fe135d O11Y: Added support for custom tags (#5565)
7981af40 test/kokoro: add missing image tagging to the xDS interop url map buildscript (#5569)
6f34b7ad xdsclient: NACK endpoint resource if load_balancing_weight is specified and is zero (#5568)
f9409d38 ringhash: handle config updates properly (#5557)
946dde00 xdsclient: NACK endpoint resources with zero weight (#5560)
b89f49b0 xdsclient: deflake Test/LDSWatch_PartialValid (#5552)
9bc72deb grpc: remove mentions of WithBalancerName from comments (#5555)
a077b946 Switched unlock to defer in newAddrConn (#5556)
57aaa10b test: move clientconn state transition test to test/ directory (#5551)
23f015c3 priority: sync priority with child in use (#5549)
c14e29e6 rls: suppress picker updates from children when handling config updates (#5539)
02f1a7ac grpc: prevent a nil stats handler from causing a panic (#5543)
1ec054bb transport/server: fix race that could cause a stray header to be sent (#5513)
2f60cb8b test: improve the logic for checking round_robin (#5534)
fd4700cf xdsclient: cleanup listener watchers test (#5506)
e72cb1c1 xdsclient: organize existing contents better with new files (#5533)
b695a7f2 test/interop: increase pick_first timeout (#5529)
9a689dc4 xdsclient: change receiver on BootstrapConfig() to be consistent (#5532)
ae261b06 xds: Fixed GoLang regression for Outlier Detection (#5537)
fdc5d2f3 xds/clustermanager: pause picker updates during UpdateClientConnState (#5528)
86117db5 balancer/weightedtarget: pause picker updates during UpdateClientConnState (#5527)
679138d6 gcp/observability: Add support for Environment Variable GRPC_CONFIG_OBSERVABILITY_JSON (#5525)
d0f3c561 interop client: fixes for interop soak test (#5502)
6dd40ad6 Change the log-level when a new ServerTransport cannot be created (#5524)
f601dfac test/kokoro: Add missing secondary_kube_context to xds LB tests (#5508)
3a77d291 xdsclient: fix LRS stream leaks when errors are encountered (#5505)
30d54d39 client: fix stream creation issue with transparent retry (#5503)
96aa657b xds: readd NewXDSResolverWithConfigForTesting() (#5504)
4f47c8c1 test/xds: wait for all ACKs before forcing stream restart (#5500)
a094a109 Fix race between activeStreams and bdp window size (#5494)
5e15eac0 xdsclient: handle empty authority in new style resource names (#5488)
c4023787 doc: remove comment about obsolete GRPC_GO_RETRY env var (#5495)
9ba66f1b xdsclient: use top-level server list if authority specific list is empty (#5491)
e02f27d9 internal: move baseContentType comment where it should be (#5486)
50170888 internal/xds: generate an entry in the authorities map with empty string key (#5493)
2c0949c2 all: update to 'go 1.17' to enable module graph pruning (#5477)
38df45ca xdsclient: move XDSClient interface definition to client.go (#5479)
03fee09e balancer: fix connectivity state aggregation algorithm to follow the spec (#5473)
0d04c6f5 ringhash: don't recreate subConns when update doesn't change address information (#5431)
a6dcb714 xdsclient: don't reset version info after stream restart (#5422)
8c494a9a Change version to 1.49.0-dev (#5484)
5770b1de xds: drop localities with zero weight at the xdsClient layer (#5476)
423cd8e3 interop: update proto to make vet happy (#5475)
c9b16c88 transport: remove unused `bufWriter.onFlush()` (#5464)
755bf5a1 fix typo in the binary log (#5467)
15739b5c health: split imports into healthpb and healthgrpc (#5466)
c075d201 interop client: provide new flag, --soak_min_time_ms_between_rpcs (#5421)
4b750055 clusterresolver: merge P(p)arseConfig functions (#5462)
d883f3d5 test/xds: fail only when state changes to something other than READY and IDLE (#5463)
c6ee1c71 xdsclient: only include nodeID in error strings, not the whole nodeProto (#5461)
06ad0b82 internal/proto: remove obsolete test and service_config.pb.go (#5459)
5cdb09fa outlierdetection: fix package level comments (#5457)
28de4866 interop: update grpc_testing proto (#5451)
b288a240 interop testing: log the peer address in interop soak client (#5419)
3e7b97fe xds/priority: bug fix and minor behavior change (#5417)
29d9970c xds: Outlier Detection configuration in Cluster Resolver Balancer (#5371)
1dabf545 test/kokoro: use standard TESTING_VERSION in the new framework builds (#5434)
f14d6112 resolver: minor improvements to AddressMap (#5426)
c0198a9c ringhash: use grpctest.Tester in unit tests (#5428)
f229f9c7 weightedroundrobin: update comments to indicate where addrInfo is stored (#5427)
71f16a1d internal/proto: pull in recent changes to service config proto (#5424)
584d9cd1 gcp/observability: update log name (#5414)
9ee2f146 gcp/observability: Implement tracing/metrics via OpenCensus (#5372)
34e4fc3b rls: use UNAVAILABLE instead of status from control plane (#5400)
a0d5484e interop: remove duplicated xDS tests in GCE framework (#5395)
ca5cc0bc credentials/google: support new-style xDS cluster names (#5399)
cbcceaf7 gracefulswitch: fix exit idle race (#5384)
ea86bf74 stats: add support for multiple stats handlers in a single client or server (#5347)
13b378bc internal: add global DialOptions and ServerOptions for all clients and servers (#5352)
70a80552 xds/priority: clean up tests (#5387)
e41f8685 test/xds: move tests to a package with _test suffix (#5382)
da6ef005 xds/clusterresolver: reuse child policy names for the same locality (#5367)
6e253e8a interop: update proto by running regenerate.sh (#5381)
a45cd25f xds: Enable aggregate and logical dns clusters by default (#5380)
c0e35731 xds: move e2e tests into grpc/test/xds directory (#5363)
c6c0a06d Change version to 1.48.0-dev (#5379)
ed752259 Don't call cmp in non testing file (#5370)
081c6884 client: fix hctx leakage in addrConn.createTransport (#5337)
30b9d59a client/SubConn: do not recreate addrConn if UpdateAddresses is called with the same addresses (#5373)
459729d6 xds/priority: avoid sending duplicate updates to children (#5374)
9f4b31a1 Added HTTP status and grpc status to POST check (#5364)
333a441e xds/ringhash: update connectivity state aggregation, and make sure at least one SubConn is connecting in TF (#5338)
e23132c6 Added support for metadata matcher invert (#5345)
d9b952b1 xds/resolver: use correct resource name in log message (#5357)
db79903a xds/priority: start the init timer when a child switch to Connecting from non-transient-failure state (#5334)
462d8676 xds: Add Outlier Detection configuration and CDS handling (#5299)
5c46f1aa xdsclient/csds: fix leaked metadata (#5339)
ee67b3d8 xds: Handle loops and ignore duplicates in aggregated cluster handling (#5317)
799605c2 client: fix potential panic during RPC retries (#5323)
78b13f27 xds/client: hold authority mutex before making a new authority (#5331)
de73b2b6 examples: improve error messages (#5329)
dc86d5de internal/proto: update generated code (#5332)
7567a5d9 documentation: fix typo in RegisterCodec godoc (#5306)
3bf6719f test/interop: register RLS to the interop test client (#5272)
8d68434c gcp/observability: correctly test this module in presubmit tests (#5300)
ebd09839 xds/eds: reject EDS resources with multiple instances of the same locality in the same priority (#5303)
9711b148 server: clarify documentation around setting and sending headers and ServerStream errors (#5302)
924e4849 server: return better status for context err when writing header (#5292)
5682cc6a Change version to 1.47.0-dev (#5298)
4467a29d gcp/observability: implement logging via binarylog (#5196)
18fdf542 cmd/protoc-gen-go-grpc: allow hooks to modify client structs and service handlers (#5240)
337b815c interop: build client without timeout; add logs to help debug failures (#5294)
e583b196 xds: Add RLS in xDS e2e test (#5281)
0066bf69 grpc: perform graceful switching of LB policies in the `ClientConn` by default (#5285)
3cccf6a4 xdsclient: always backoff between new streams even after successful stream (#5280)
4e780933 xds: ignore routes with unsupported cluster specifiers (#5269)
99aae344 cluster manager: Add Graceful Switch functionality to Cluster Manager (#5265)
42cadc17 test: cleanup balancer switching tests (#5271)
b6873c00 grpc: move to `TransientFailure` in `pick_first` LB policy when all addresses are removed (#5274)
474948a9 github: run all testing jobs to completion even if one fails (#5282)
c57d2b13 clientconn: fix target parsing tests to be tolerant to new url.URL field OmitHost (#5279)
562e12f0 test: use channelz instead of stats handler to determine RPC count (#5275)
e63e1230 advancedtls: remove the usage of CDP in CRL enforcement (#5218)
3a74cd52 balancergroup: Add trigger point to gracefully switch a child (#5251)
34660d10 test: use `t.Fatal` instead of `panic` for service config parsing errors (#5266)
96bdede4 pickfirst: cleanup tests (#5263)
e49486de test: add a test for clientConn close with pending RPC (#5264)
2fccb822 metadata: copy slices in FromContext() functions (#5267)
9d088969 github: update to test with Go 1.18 (#5262)
597e5d1b don't apply defaultSC upon receipt of invalid service config (#5257)
51ddcbad xds: suppress redundant updates only when we are SERVING (#5258)
4635bf28 make the RLS LB policy name available in the internal package (#5259)
50d0d0a5 server: set TCP_USER_TIMEOUT socket option for linux (#5219)
7840bd63 grpc: add a comment explaining why updateClientConnState is handled inline (#5261)
7ea4af98 internal/googlecloud: refactor OS-dependent code (#5239)
1ffd63de binarylog: generalize binarylog's MethodLogger preparing for new observability features (#5244)
63bdcbcc xds/interop: add xds_k8s_lb test suite (#5250)
89f31959 interop/client: simplify fallback test client and parameterize fallback deadline (#5248)
8078d1d5 balancergroup: Switched subBalancerWrapper to wrap a gracefulswitch.Balancer (#5245)
6131e9d4 examples: regenerate certs to use SHA256 signing algorithm (#5256)
f95b001a xds: avoid log spam during server mode switches (better A36 compliance) (#5215)
97c31434 xds/client: accept resources wrapped in discoverypb.Resource message (#5242)
6c3ccbe8 grpc: remove remaining usages of grpc.WithInsecure() (#5246)
fbe4ccbc xds/client: include Node ID in error messages from the XdsClient (#5223)
c4cabf78 grpc: handle invalid service configs by applying the default if available (#5238)
94ee3865 test: cleanup roundrobin tests to use stubserver (#5236)
23cc28fd security/authorization: upgrade cel-v0.10.1 and fix breaking API change. (#5243)
84793b56 xds/client: reset backoff when a message is received, even when the message is invalid (#5241)
722367c4 proto: regenerate proto to pick up latest (#5237)
eead9a82 grpc: delete deprecated API WithBalancerName() (#5232)
cf6d4d5a grpc: document ClientConn fields (#5227)
431ea809 internal/balancer: Add graceful switch LB policy (#5207)
63af9747 internal: update service config proto (#5222)
87b0a8d6 test: use real grpc.Server in call tests (#5213)
6b15b135 channelz: replace deprecated timestamp API with recommended ones (#5212)
6f314bd7 reflection: add comments on protos (#5209)
328efcc9 example: add mutual TLS example (#5194)
e601f1ae fix: does not validate metadata keys and values (#4886)
a73725f4 channelz: include channelz identifier in logs (#5192)
02f384d4 xds: rename rls proto import (#5205)
fd1f9881 Change version to 1.46.0-dev (#5204)
011544f7 authz: add additional logs to sdk authz (#5094)
18564ff6 reflection: improve server implementation (#5197)
ec717cad xds: minor cleanup in xdsclient bootstrap code (#5195)
ebc30b8f reflection: use protobuf/reflect instead of go reflection, fix dynamic messages (#5180)
46009ac9 transport: Add an Unwrap method to ConnectionError (#5148)
75fd0240 remove sdk term from grpc authz (#5191)
a354b1ee channelz: rename NewChannelzStorage to NewChannelzStorageForTesting (#5190)
0e055491 Format directory/file references (#5184)
c44f627f cleanup: replace grpc.WithInsecure with insecure.NewCredentials (#5177)
91967153 xds/priority: log warnings instead of errors (#5185)
1a633098 xds: Add support for Outlier Detection configuration in xdsclient (#5183)
2af7b5e6 xds/interop: update RPC timeout in blackhole after fallback case (#5174)
f664adfe benchmark: update client to include xds library (#5169)
c7f7d3a7 xds/bootstrap: add plugin system for credentials specified in bootstrap file (#5136)
2209ed9e cmd/protoc-gen-go-grpc: add hooks to allow overriding generated code (#5056)
f68fb05c leakcheck: ignore http read/write goroutine (#5182)
98079086 rls: support `routeLookupChannelServiceConfig` field (#5176)
593ff8d0 rls: service field in RLS request must not contain slashes (#5168)
e2fc510d internal/proto: update generated code (#5172)
3b70fe08 xds: fix broken test "unknown field EnableLRS in struct" (#5170)
d31dbe7a xds/resource: accept Self as LDS's RDS config source and CDS's EDS config source (#5152)
0a68f8af xds/federation: support federation in LRS (#5128)
61a6a06b server: handle context errors returned by service handler (#5156)
e2771749 xds/bootstrap: escape authority when populating resource name template (#5160)
231ca3b2 security/advancedtls: fix CRL issuer comparison (#5130)
449f1b22 grpclb: rename LB policy config field to `serviceName` (#5166)
546e6aeb proto: incorporate recent service config proto definition changes (#5167)
5b376823 Let helloworld example listen to all hosts (#5089)
9cb41138 xdsclient: make Close() idempotent (#5149)
6f54b5dd recommend the use `go test` commands instead of `make test` (#5151)
fa62572a rls: make the data cache purge ticker a field in rlsBalancer (#5154)
f93e8e67 rls: return status error from server interceptor in test (#5153)
61a352e9 rls: move RLS LB policy implementation out of internal (#5143)
475c62a8 testing: fix potential problems in testFlowControlAccountCheck (#5105)
5350e746 xds/controller: fix test nil panic on stream errors (#5144)
eb6ff1ae xds: update RPC timeout in blackhole case (#5126)
aad573d8 rls: LB policy implementation (#4992)
a0029942 internal/proto: update generated code (#5125)
c1198288 xdsclient: allow overriding grpc.Dial function for the xDS controller. (#5108)
f231ac52 wrr: improve randomWRR performance (#5067)
0145b50c use insecure.NewCredentials() instead of grpc.WithInsecure (#5087)
b49c0c99 xds/clusterresolver: set ClusterName for DNS child (#5119)
9353ae3b credentials/google: stub out the oauth package in test (#5118)
13c41bce Change version to 1.45.0-dev (#5122)
77b478d7 xds/federation: e2e tests (#5103)
907a202a attributes: document that some value types (e.g. `map`s) must implement Equal (#5109)
2fb1ac85 test: fix potential goroutine leak in TestUpdateAddresses_RetryFromFirstAddr (#5023)
afded723 xds/federation: update xdsclient to support multi authority (#5042)
b0694409 credentials/google: use grpctest.Tester for tests in this package (#5098)
fbaf7c55 authz: update representation of allow authenticated in SDK (#5052)
344b93a2 testdata: use SHA256 as signing algorithm in testdata certs (#5074)
4d58dd98 dialoptions.go: Fix WithBlock godoc (#5073)
78df8ec0 test/kokoro: Use xds-test-server-5 as the GCE interop server (#5071)
db9fdf70 insecure: remove experimental notice (#5069)
b3d19efe rls: move the data cache implementation into the rls package (#5060)
ec7cf6c9 grpclb: fix possible nil before conversion in TestDropRequest (#5022)
8ae11f46 grpc: minor improvement on WithInsecure() document (#5068)
7506755e internal/resolver: fix possible goroutine leak in TestSafeConfigSelector (#5058)
956c5948 rls: minor config processing changes (#5061)
c285fc70 cmd/protoc-gen-go-grpc: update version for release (#5070)
51835dc0 xds: Remove WithBlock option from the fallback test client (#5066)
ce152f20 xds: Add xds dependency to the fallback test client (#5062)
029b8227 xds: Add RLS Cluster Specifier Plugin (#5004)
50f82701 rls: control channel implementation (#5046)
7c8a9321 testing: fix goroutine leak in TestClientUpdatesParamsAfterGoAway (#5024)
a32d2778 xds/client: send connection errors to all watchers (#5054)
c18e2a28 cmd/protoc-gen-go-grpc: update google.golang.org/protobuf to v1.27.1 (#5053)
5d90b32d authz: fix regex expression match (#5035)
fd4e3bdc xds: Added env var for RLS in xDS (#5050)
bd707697 test: cleanup roundrobin_test (#5005)
d35aff3c xds/federation: resource name parsing (#4991)
62f73ecd xds/client: move xdsclient.New tests to controller.New (#5037)
40916aa0 transport: better error message when per-RPC creds fail (#5033)
1ec7a893 xds/client: send NewStream errors to the watchers (#5032)
ccc060cb grpclog.DepthLoggerV2: Correct comment: formats like fmt.Println (#5038)
a722e6aa xds/c2p: replace C2P resolver env var with experimental scheme suffix (#5044)
f5dc086d internal/balancergroup: eliminate race in exitIdle (#5012)
ac4edd2a Change version to 1.44.0-dev (#5041)
3786ae17 xds/resolver: Add support for cluster specifier plugins (#4987)
512e8947 rls: support extra_keys and constant_keys (#4995)
f3bbd120 xds/bootstrap_config: add a string function to server config (#5031)
46935b96 fix possible nil before casting (#5017)
c2bccd0b xds/kokoro: install go 1.17, and retry go build (#5015)
872a6f12 xds/c2p: fix default client resource template, and xds-client target scheme (#5010)
58beff18 balancergroup: add method to exitIdle a sub-balancer (#4994)
6f8796bc rls: double import rls protos (#5003)
d542bfce status: support wrapped errors in FromContextError (#4977)
f45e6179 rls: move pb.gos to grpc/internal/proto/grpc_lookup_v1 (#4993)
295d7e66 internal: move leakcheck to t.Cleanup (#4989)
23becb71 examples: Fix server port in route_guide example to work with client (#4975)
bdf8336f xds/client: cleanup Dump to remove unnecessary version field (#4978)
b2317c76 test/kokoro: rename xds_k8s to psm-security as part of tech-debt cleanup and name clarity (#4979)
cf8b64e2 internal: add log when service config is disabled (#4973)
6e79bc8a xdsclient: add Cluster Specifier Name to Route (#4972)
82d8af8b balancer: add Authority field to balancer.BuildOptions (#4969)
ea068ed2 rpc_util: Change error message to indicate size after decompression (#4918)
d61c7ae8 internal: merge xds/envconfig into env package (#4923)
6a896a3e pickfirst: check b.sc before calling Connect (#4971)
52d94167 xds/client: move transport_helper from xdsclient to a separate struct (#4968)
6603e730 xds: Added validation and construction of RBAC matcher engine to ParseConfig (#4964)
d57363ab xds: Add Cluster Specifier Plugin to xdsclient (#4967)
dd767416 grpc: implement WithInsecure() using the insecure package (#4718)
c25a52b7 config: remove retry disable via environment variable (#4922)
714ba8d5 xds: move balancergroup and weightedtarget our of xds directory (#4966)
14ebd917 lint: fix some unused parameter issues (#4956)
59e024e4 xds/client: move watchers from xdsclient to a separate struct (#4963)
bac0a7e4 transport: pass handshake info with attributes to custom dialers (#4938)
82c28251 xds/federation: support new bootstrap fields and protect them by an env var (#4936)
c53203c5 xds/federation: support populating resource template in xds-resolver (#4900)
79e9c957 xds/client: move unmarshal functions and types to a separate package (#4904)
3fa19881 internal: update pb.go (#4962)
878cea23 kokoro: Enable xds authz_test (#4954)
5841c8c7 xds/balancergroup: remove xds dependency from balancergroup (#4955)
3b94303f grpc: stabilize WithConnectParams DialOption (#4915)
c105005d xds: NACK missing route specifier server side (#4925)
670c133e transport/http2_server : Move up streamID validation in operate headers (#4873)
29deb6bf xds/bootstrap: refactor to support top level and per-authority server config (#4892)
1163cfab xds: move LocalTCPListener to internal/testutils (#4920)
467630fc examples: remove usage of WithBlock in examples (#4858)
6d465fe9 grpclb: move restartableListener to testutils (#4919)
d6aca733 Change version to 1.43.0-dev (#4912)
bb655a91 internal: update rls.pb.go (#4913)
2d7bdf2d xds: Set RBAC on by default (#4909)
d47437c9 xds: Fix invert functionality for header matcher (#4902)
9fa26982 xds/csds: populate new GenericXdsConfig field (#4898)
6e8625df doc: promote WithDisableRetry to stable; clarify retry is enabled by default (#4901)
f1d87c14 client: properly disable retry if GRPC_GO_RETRY=off (#4899)
03753f59 creds/google: fix CFE cluster name check (#4893)
4f21cde7 authz: support empty principals and fix rbac authenticated matcher (#4883)
f00baa6c resolver: replace AddressMap.Range with Keys (#4891)
2a312458 client: don't force passthrough as default resolver (#4890)
bd0f8815 grpclb: recover after receiving an empty server list (#4879)
0d503075 xds/priority: handle new low priority when high priority is in Idle (#4889)
fbf9b563 grpc: stabilize WithDefaultServiceConfig and improve godoc (#4888)
3b1d3e48 examples: update load balancing example to use loadBalancingConfig (#4887)
01ed6485 update go.mod to point to latest cncf/udpa repo (#4884)
3d9e9c42 logging: enable json logging in xds server container (#4885)
4757d024 xds: Make regex matchers match on full string, not just partial match (#4875)
d590071c status: clarify FromError docstring (#4880)
36d87572 attributes: add Equal method; resolver: add AddressMap and State.BalancerAttributes (#4855)
3db1cb09 xds/clusterimpl: fix SubConn wrapper returned by picker during race (#4876)
7e5fcc68 rls: update rls proto (#4877)
3bae5f5b xds: use protos from cncf/xds instead of cncf/udpa (#4866)
aaff9e7a grpc: better RFC 3986 compliant target parsing (#4817)
45097a8a Revert "kokoro: remove expired letsencrypt.org cert and update" (#4860)
2fe71180 xds/e2e: move flag check to each test, and call t.Skip() (#4861)
ea41fbfa examples: unix abstract socket (#4848)
6c56e211 grpclb: add `target_field` to service config (#4847)
49f63887 grpclog: support formatting output as JSON (#4854)
b99d1040 authz: create file watcher interceptor for gRPC SDK API (#4760)
03ca7b7d Added logs to rbac (#4853)
524d10cb kokoro: source test driver install script from core repo (#4825)
b9d7c74e xds: local interop tests (#4823)
404d8fd5 Added imports for HTTP Filters (#4850)
d16cfedb Rename env var (#4849)
4bd99953 xds: suppress redundant resource updates using proto.Equal (#4831)
ee479e63 creds/google: replace NewComputeEngineCredsWithOptions with NewDefaultCredentialsWithOptions (#4830)
02da6251 github: increase timeout for codeql and disable for PRs (#4841)
f2974e77 kokoro: remove expired letsencrypt.org cert and update (#4840)
f068a13e server: add missing conn.Close if the connection dies before reading the HTTP/2 preface (#4837)
09970207 xds: remove race in TestUnmarshalCluster_WithUpdateValidatorFunc (#4836)
b9f62538 rls: pull proto changes made in grpc-proto/pull/98 (#4832)
69e1b54d test: fix stayConnected to call Connect after state reports IDLE (#4821)
127c052c credentials/google: introduce a new API `NewComputeEngineCredsWithOptions` (#4767)
2ae5ac16 xds: nack if certprovider instance name is missing in bootstrap config (#4799)
adb21c46 rls: improve config parsing (#4819)
e6d0d281 internal: log SubConn type if it's not the expected type (#4813)
34df1b42 xds: Small RBAC Changes defined in A41 (#4818)
75f1d4b9 transport: call stats handler for trailers before closeStream (#4816)
08927214 xds/rds: NACK unknown route action cluster specifier (#4788)
710419d3 advancedtls: add revocation support to client/server options (#4781)
4555155a xds: Small changes at xDS RBAC Layer (#4815)
689f7b15 transport: logic specified in A41 to support RBAC xDS HTTP Filter (#4803)
11437f66 test: add option to make httpServer wait for END_STREAM; fix RetryStats race (#4811)
6ff68b48 channelz: recommend using admin.Register instead (#4797)
78d3aa8b grpc: cleanup parse target and authority tests (#4787)
83a34615 xds: have separate tests for RBAC on and off (#4807)
d7208f02 github: set a shorter timeout on testing jobs (#4806)
32cd3d61 interop: don't use WithBlock dial option in the client (#4805)
d623accd xds: fix parent balancers to handle Idle children (#4801)
e6246c22 server: optimize chain interceptors (-1 allocation, -10% time/call) (#4746)
458ea764 xds: Added validations for HCM to support xDS RBAC Filter (#4786)
1f12bf44 transport: fix a typo in http2_server.go (#4745)
606403de transport: fix log spam from Server Authentication Handshake errors (#4798)
616977cc Change version to 1.42.0-dev (#4793)
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
| |
Some cves are reported with "cpe:2.3:a:grpc:grpc:*:*:*:*:*:go:*:*"
See https://nvd.nist.gov/vuln/detail/CVE-2023-44487
Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Allow the kernel include file to be skipped, even if a
kernel is capable of merging and using the fragments in
the layer and kernel-cache.
Setting SKIP_META_VIRT_KERNEL_INCLUDE="t" in a kernel
bbappend, or in a configuration file will inhibit the
generated / detected include file.
BUT
If that opt-out is done, we warn, as the user has
explicitly disabled safeguards that help ensure that
subtle runtime issues aren't introduced.
BUT
If someone really knows what they are doing, they
don't want the warning to be present in each build.
So setting META_VIRT_KERNEL_CHECK_WARNING_INHIBIT="t"
will inhibit the message.
At that point, you have jumped through all the hoops
and you are free to ensure your kernel configuration
is correct using other means.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
To be compliant with the recent yocto project security
processes, add a SECURITY.md file that explains what to
do if an issue is detected.
This also renames README to README.md to be similar to
other layers.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
OCI requires that the architecture [1] be a valid GOARCH [2]. To
correctly perform this mapping, use the go library code from OE core.
[1]: https://github.com/opencontainers/image-spec/blob/main/config.md#properties
[2]: https://go.dev/doc/install/source#environment
Signed-off-by: Joshua Watt <JPEWhacker@gmail.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
| |
Bumping the standalone fragments recipe to pickup the latest
6.5 fragments.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
The OCI_IMAGE_TAG variable can contain a ":" if the user wants to give
the image a name and a tag, as in:
OCI_IMAGE_TAG = "${IMAGE_BASENAME}:latest"
However, while this is valid for tag name, the ":" is illegal in OCI
image file names so replace it with "_" when naming the symlinks
Signed-off-by: Joshua Watt <JPEWhacker@gmail.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Clean dir ${B}/plugins before do_compile to avoid cni generated binaries
like /usr/libexec/cni/bridge has wrong dynamic linker path and reports
error like: /usr/libexec/cni/bridge: no such file or directory".
Reproduce steps:
1. bitbake cni
2. enable usrmerge feature in local.conf
3. bitbake cni
After step 2, GOBUILDFLAGS changed,
"-I /lib64/ld-linux-aarch64.so.1" -> "/usr/lib/ld-linux-aarch64.so.1"
But "go build" seems only check if the cached packagefile changed, since
all not changed, the dynamic linker still use the old one, maybe go
build should improve this.
Clean dir ${B}/plugins to trigger rebuild of the binaries here.
Signed-off-by: Changqing Li <changqing.li@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
| |
runv rdepends on qemu, so update COMPATIBLE_HOST for runv to accord with qemu.
Signed-off-by: Kai Kang <kai.kang@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
Since the runtime dependency skopeo has been marked incompatible with
mips, mark for umoci accordingly.
buildah and podman-tui rdepends on podman which has been marked
incompatible with mips, so mark for them too.
Signed-off-by: Kai Kang <kai.kang@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
Quote the label argument passed to umoci to allow it to correctly handle
spaces. Note that this requires that OCI_IMAGE_LABELS have the argument
quoted with single quotes, as in:
OCI_IMAGE_LABELS = "org.opencontainers.image.description='${SUMMARY}'"
Signed-off-by: Joshua Watt <JPEWhacker@gmail.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
Quote the environment variable argument passed to umoci to allow it to
correctly handle spaces. Note that this requires that OCI_IMAGE_ENV_VARS
have the argument quoted with single quotes, as in:
OCI_IMAGE_ENV_VARS = "FOO='bar bat'"
Signed-off-by: Joshua Watt <JPEWhacker@gmail.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
| |
Commit 1fc1b193 (podman-compse: update to v1.0.6) states an update to v1.0.6
but does not change the SRCREV. Fix this by using the correct SRCREV of v1.0.6.
Fixes: 1fc1b193 (podman-compse: update to v1.0.6)
Signed-off-by: Leonard Anderweit <l.anderweit@phytec.de>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping libpod to version v4.7.1-6-g85b5f5723, which comprises the following commits:
d1cb93d79 rtd: implement v2 build file
8d045d4c9 Adjust to path name change for resolved unit
eb5b5dbc8 Switch version to 4.7.2-dev
ef83eeb9c New version: v4.7.1
cc5acabf0 Update RELEASE_NOTES.md for v4.7.1
456450438 compat API: speed up network list
a2efda96d inspect: ignore ENOENT during device lookup
f931f08a7 test/system: --env-file test fixes
297a66c30 Revert "feat(env): support multiline in env-file"
46a85e054 Revert "docs(env-file): improve document description"
6afddf430 Revert "fix(env): parsing --env incorrect in cli"
c5ca7e5fc [CI:DOCS] update swagger version on docs.podman.io
51ee25d3f Fix locale issues with WSL version detection
4d15c88a9 switch version to 4.7.1-dev
073183fe1 Bump to v4.7.0
44f727fb0 [CI:DOCS] v4.7.0 RELEASE_NOTES update
2d32314d2 rpm: remove gvproxy subpackage
a2697c028 packit: tag @containers/packit-build team on copr build failures
54ce0ca7c specgen, rootless: fix mount of cgroup without a netns
d2f9af717 pass --syslog to the cleanup process
133e3a4f2 fix --authfile auto-update test
2c62815e1 version: switch back from -rc1 to -dev
7845dd175 New pre-release: v4.7.0-rc1
49f76e95e [CI:DOCS] Update release notes for v4.7.0-rc1
fa6f94001 Cirrus: Update operating branch
0728a10c6 Move podman build opts to common file
8a9f778e2 Add ability for machine rm -f for WSL
919dce131 Plumbing to run machine tests with hyperv
ade0c4932 CI: trace setup and runner scripts
c37443e8b Bump to Buildah v1.32.0
9b36f334d [CI:DOCS] bump release notes on main with the latest release
cae110f8b fix(deps): update module github.com/opencontainers/image-spec to v1.1.0-rc5
4a2a423df Add --filter pod= autocompletion
075cf2254 e2e: ExitCleanly(): manual test fixes
db5adca73 e2e: continuing ExitCleanly(): just the replacements
c689fb4a5 Fix some spelling and formatting
522e0f43f Add support for Ulimit in quadlet
b1e3e8d97 Run codespell on code
6b7f718b4 wire in new buildah build options
f9aba28ca make golangci-lint happy
c1b6effac add !remote tag to pkg/specgen/generate
3acee29cf pkg/specgen: do not depend on libimage for remote
2c2299ad8 bump buildah to latest
bf86ed72c [CI:DOCS] restart.md: migrate to container unit
304b22729 fix(deps): update module k8s.io/kubernetes to v1.28.2
4ed3273f6 Add support for PidsLimit in quadlet
70560f916 Add DNS fields to Container and Network unit groups
777b5efa4 [CI:DOCS] update API docs version list
7b9114023 Try to fix broken CI (gvisor-something)
df011f437 e2e: more ExitCleanly(): manual test fixes
cb1cb338c e2e: more ExitCleanly(): dumb string replacements
62ac96e12 e2e: create_test: use ExitCleanly()
b0f77acd1 e2e: diff_test: use ExitCleanly()
5920bfa2e The `podman init` command cannot modify containers.
639a1a029 bump c/common to latest main
806c5de12 Podmansh: use podmansh_timeout
eefaa512a e2e: more ExitCleanly(): low-hanging fruit
9b17d6cb0 vendor: update checkpointctl to v1.1.0
cdcf18b86 kube: add DaemonSet support for generate
75b4679a7 vendor of containers/(common, storage, image)
19bd9b33d libpod: move oom_score_adj clamp to init
4f017236e e2e: commit_test: use ExitCleanly()
3a4be5e90 e2e: container_clone_test.go: use ExitCleanly()
8cb14e54a e2e: use ExitCleanly() in cleanup_test.go
925794c6a Ensure HC events fire after logs are written
65a64da27 [CI:DOCS] podman-systemd.unit: fix equivalents
d9a85466a Add support for kube TerminationGracePeriodSeconds
5eb0a53a0 Update podman-kube-play.1.md.in
c2cd93cdc Split up alt binaries to speed up build
7bf9f302a Switch installer task to EC2
fbbad0439 pod: fix duplicate volumes from containers.conf
0c75eac63 tests: add test for pod cgroups
b8f6a12d0 libpod: create the cgroup pod before containers
331b3c216 cmd, specgen: allow cgroup resources without --infra
83334fb4e specgen: allow --share-parent with --infra=false
5de8f4aba libpod: allow cgroup path without infra container
5121c9eb0 libpod: check if cgroup exists before creating it
38209ef49 libpod: refactor platformMakePod signature
627ac1c96 libpod: destroy pod cgroup on pod stop
9a347619d utils: export MoveUnderCgroup
556db46a6 libpod: refactor code to new function
65bddfcd2 e2e: use ExitCleanly() in checkpoint tests
479680232 [CI:DOCS]Remove use of --latest|-l from tutorial
afeab39d1 CI test runner: upgrade tests rely on system tests
59bd6a74a run --rmi: "cannot remove" is a warning, not an error
70cf9740f StopContainer: display signal num when name unknown
6f913f5f3 URGENT: fix broken CI
b83485022 Add support for kube securityContext\.procMount
589867d71 podman: don't restart after kill
2d7d8d1d1 Tmpfs should not be mounted noexec
c2575f726 sys tests: run_podman: check for unwanted warnings/errors
1211518e8 chore(deps): update dependency setuptools to ~=68.2.0
465150f10 e2e: use ExitCleanly() in attach & build tests
27495981c Some distros do not default to docker.io for shortname searches
30abd7f1a security: accept empty capabilities list
c32cfb1d0 systests: random_free_port: fix EADDRINUSE flake
a5798e9f5 fix(deps): update module github.com/cyphar/filepath-securejoin to v0.2.4
dbfc3e7e0 Restrict fcos_test to amd64, arm64
7b2fc5f8d fix(deps): update github.com/containers/libhvee digest to 56fb235
0a913d578 fix(deps): update module github.com/docker/docker to v24.0.6+incompatible
f9fd40221 fix(deps): update module golang.org/x/tools to v0.13.0
71549c642 Ignore spurious container-removal errors
e5bf0f96d fix(deps): update module golang.org/x/net to v0.15.0
fdf694fcf systests: manifest zstd test: lots of tiny cleanups
9730c0373 vendor: update github.com/opencontainers/runc to main
e825bd5d5 [skip-ci] Update actions/checkout action to v4
8b4a79a74 linux, rootless: clamp oom_score_adj if it is too low
681b6db3f machine: increase max number of inotify instances
302d15334 fix(deps): update module golang.org/x/term to v0.12.0
f094884c1 Remove redundant nil checks in system connection remove
17037af48 fix(deps): update module golang.org/x/text to v0.13.0
1d51cd14a fix(deps): update module golang.org/x/sys to v0.12.0
f542d21a7 fix(deps): update github.com/containers/libhvee digest to 2bf7930
d4fedb288 docs(readme): fix a broken link
50cd072bf [CI:BUILD] Podman FCOS image from main
58a0b7ac8 Update golang.org/x/exp digest to d852ddb
fe7bafb83 Add port forwarding and gvproxy machine test
702709a91 libpod: do not parse --hostuser in base 8
13342e503 fix: default typo
3a6fc8d2b Add Japanese locale and translation of index
39c5b7fac remove rh.container.bot@gmail.com
a62abfe3d Tweaks and cleanups to prepare hyperv for CI
a0738e7e6 system tests: housekeeping: various small fixes
4082b67f6 CI: e2e: first use of new ExitCleanly() matcher
6cbd17c0f CI: e2e: new ginkgo matcher, ExitCleanly()
da1246d58 CI: e2e: fetch the standard system-test image
d20b5869f kube play: fix pull policy
18d35b612 Fix gidmap command in example
e66c04c1f vendor containers/common@12405381ff45
b95ae3b4a manifest,push: support add_compression from containers.conf
1085177fe hyperv ignition: use gvforwarder instead of vm
2a8e6acec Set remote username earlier for hyperv
26cefcbf9 Added an additional troubleshooting problem and solution
a3c2d6ad2 Remove a dependency on libimage from pkg/bindings
f1c24df4f Rename parameter in pkg/bindings
259ab8594 Remove a dependency on libimage from pkg/api/handlers
4cac1d3bc Don't re-inspect an image
99834947d Cirrus: Remove multi-arch podman image builds
91b8bc7f1 uid/gid mapping flags
18c2a2be8 [DOC] Clarify default behaviour on uidmap
60e3b5ef1 Update containers/common to latest
fe3c4562f update libhvee
1b45fd723 /_ping handler: return OSType http header
2dbb0b096 e2e: fix race condition (kube play + logs)
fe11db1e8 Update module github.com/vbauerster/mpb/v8 to v8.6.0
7ef97fa49 Kube - support List documents
346e5e52e kube down/play --replace: handle absent objects
0938ee189 push, manifest-push: --force-compression must be true with --compression-format
4b347609d oci: print stderr only after checking state
461230c49 Updated docs to reflect pod spec sysctls support added in v4.6
b8146a8a2 [CI:BUILD] Packit: Disable unexpected journal message check for cockpit-podman
a6f2f5854 [CI:BUILD] Packit: Restrict cockpit tests to recent Fedoras
b6b300c79 Update machine init/set tests
da81bc13a Add rootful status to machine inspect
d3618719b Dedup and refactor image acquisition
adf34cbd7 Share podman sock bindings with other WSL distros
db95e678a Fix user-mode validation check
d898ae7f9 system tests: try to fix sdnotify flakes
ecf9f9fd8 Cirrus: Disable only hello multiarch build
f32e954b8 Set StopTimeout for service-container started under podman kube play
d2ec127c1 Set StopTimeout for compat API if not set by client
6f284dbd4 podman exec should set umask to match container
2c5c2d213 [CI:BUILD] Packit: run cockpit-podman tests in PRs
52ed7fce2 Add infra-name annotations to kube gen/play
a5f6a4a3b kube: notifyproxy: close once
7a94f8c12 system service: unset NOTIFY_SOCKET
638f994c2 Update module k8s.io/kubernetes to v1.28.1
7c9c96981 API attach: return vnd.docker.multiplexed-stream header
60e58f059 test/apiv2/60-auth.at: use `doesnotexists.podman.io`
61dd7f80c e2e tests: use registry:2.8.2 (was 2.8)
243f365aa create apiutils package
c5b4eb943 api docs: document stream format
70f77efef Revert "Remove `hello` multi-arch image build"
82bd56be7 manifest-push: add support for --force-compression
469ace091 push: add support for --force-compression
202cc433a Update module github.com/onsi/ginkgo/v2 to v2.12.0
7e0130f75 Remove `hello` multi-arch image build
1b0e64a10 hack/perf/system-df.sh: add `df` benchmarks
148d95d8d Expand env variables for cmds/entrypoint with format $(ENV)
e092f887f vendor c/storage@6902c2d
c416e4576 Ignore the resource limits on cgroups V1 rootless systems
9e680cbc6 Fixups for stopping gvproxy
21c9517b5 Revert "GHA: Closed issue/PR comment-lock test"
f0e8e79c9 GHA: Closed issue/PR comment-lock test
5477fd38a GHA: Add workflow to lock closed issues/PRs
75ce47347 [CI:DOCS] update auto-update docs
85d0df330 chore(deps): update dependency containers/automation_images to v20230816
bc35e28c0 fix(deps): update module github.com/google/uuid to v1.3.1
3d00744d2 libpod: sum per-interface network stats for FreeBSD
5eee8825e Set default Umask for `podman kube play`
ef8f4db81 [CI:BUILD] rpm: spdx compatible license field
e9539768c chore(deps): update dependency golangci/golangci-lint to v1.54.2
63a8926e9 Implement automatic port reassignment on Windows
45ce4834a Add support for ramfs as well as tmpfs in volume mounts
bdc304058 Validate current generation of WSL2 with user-mode-networking
67756ac60 use container restart policy if user specifies one
0772d8ddb Stop gvproxy on hyperv machine stop
50136ea86 [CI:BUILD] rpm: depend on man-db
36e09f18b Update machine list test
8b2990131 Update machine start tests
c3dbfa9a1 Update machine rm tests
c726cf810 libpod: improve conmon error handling
ed1f514d5 cirrus setup: install en_US.UTF-8 locale
8f85aaf07 fixup "podman logs with non ASCII log tag" tests
27b41f087 libpod: use /var/run instead of /run on FreeBSD
9b4f1cdb9 cirrus/lib.sh: extend env to passthrough at start for locale work
ff66f31dd libpod: correctly pass env so alternative locales work
29c298856 cgroups_linux: use SessionBusPrivateNoAutoStartup
362747cfa podmansh man page UID=$(id -u lockedu) is not allowed
e38cf33a6 CI: systests: remove pasta ICMP tests
7103fdb3f podman.1.md: Fix formatting of exit code 127, clarify wording of `exit code` example.
896cab612 document available secret drivers
53dd37cc4 pkg/specgen: add support for read-only root on FreeBSD
d5841ed52 add --module flag
6a3f09e8a Update dependency setuptools to ~=68.1.0
1d5890bcd Add riscv64 architecture to the cross build target
252f51de8 GetFcosArch add `riscv64` arch
98e7d7af0 Update WSL backend to be compat with FCOS defaults
9e14e3ebe enabled hyperv image downloads
3e2e360b9 fix(deps): update module github.com/containers/ocicrypt to v1.1.8
abd35d4d3 [CI:DOCS] Fix git build example in build page
0c52d1004 CI: e2e manifest_test: use image from quay
31dc42224 Cirrus: Remove EC2 experimental flag
4c7546cb3 sphinx: skip options include dir
345b9b029 Update rootfs.md: Fix formatting and wording of idmap option
f33b01b73 fix: Docker API compatible bool deserialization
4cb2d48ca Revert "compat,build: pull must accept string"
68bd81470 Add missing verb in machinectl example
78d6cd4c9 [CI:DOCS] Update Release Notes and Release Process
b6349017a chore(deps): update dependency golangci/golangci-lint to v1.54.1
4b80492bd fix podman top missing output flake
5908999e6 New partial-line test is flaking
555b4f930 [CI:BUILD] Packit: add back fedora-eln targets
f0dac3677 Cirrus: Prune defunct job + fix noop alias
1947f035c Bump bundled gvproxy to 0.7.0
df28df1ae systests: tests for --env and --env-file
bcebcad1f Update system connection add & remove
310f971fc Add tests for podman farm
dce3ef3c4 Add podman farm update command
44a704dfc Add podman farm remove command
59a8140f1 Add podman farm list command
6fcdf1a19 Add podman farm create command
1d5ef29f0 Add podman farm subcommand
23d5b5008 CI: e2e: add delay before podman logs or journalctl
2951316b2 Add completion for Farms
b672ddc79 Vendor c/common changes
3963c5639 chore(deps): update dependency golangci/golangci-lint to v1.54.0
a55c2636d file logger: fix podman logs --tail with partial lines
7ce654fea fix(env): parsing --env incorrect in cli
4c4bc0922 Update docker.io/library/golang Docker tag to v1.21
f55c48ad3 podman stop --cidfile missing --ignore
7ef03517f Skip podman exec cannot be invoked on Debian
95ceacefb Re-enable checkpoint test on Debian SID
c193dbd94 Require a non-generic reason for non-Fedora skip
d79e3a23d CI FIXME removal/update.
5ec856652 Update dependency containers/automation_images to v20230807
7988dd82c [skip-ci] Update dawidd6/action-send-mail action to v3.8.0
8a410784b [CI:DOCS] fixed couple typos in build docs
282594e58 Stop timer in function waitPidStop
7c0bccaf7 packit: Build PRs into default packit COPRs
afaeedef7 Add support for host-gateway
2de22ebf0 Ensure volumes-from mounts override image volumes
03d7a5120 Minor: Include shasums in GHA workflow artifacts
d63ac0652 Minor: Add important comment to windows GHA workflow
9d7fe4e90 Minor: Update/fix dry-run input descriptions
518daef72 [CI:DOCS] Quadlet - provide more information about network files
819129b0d man-page xref: check for duplicate entries
39641482c cp: close temporary file on error path
018fdb48e Makefile: work around the lack of 'man -l' on FreeBSD
0b7769fda Update module golang.org/x/net to v0.14.0
ec5a9b9cc libpod: fix a crash in 'kube generate' on FreeBSD
23c5890f2 remove temporary files when copy [NO NEW TESTS NEEDED]
fab62f816 Update module golang.org/x/sys to v0.11.0
b46d72fec [ci] Remove the podman socket in remove_packaged_podman_files()
706c51b52 [ci] Correct the podman systemd file names
dd4f47dd9 Always show RemoteSocket.Exists in json
fc7c6efd3 Fail if ssh key exists
69e883493 Fix regression for hyperv
803a49da4 [CI:BUILD] Makefile: rpm target generates correct version
1a63c1b23 Fix nits in #19480
1e5453943 Add support for passing container stop timeout as -1 (infinite)
d50054f1e pkg/specgen: Add device support for FreeBSD
f5058f148 [CI:DOCS] man: remove duplicate entry .LastUp
a8974d4a3 CI: e2e: remove useless test
53d44a65e Check tty flag to set default terminal in Env
62a22c5d6 Run codespell on code
44f159ed3 Deprecate podman generate systemd
346f9cb4e manifest/push: add support for --add-compression
8ccda1ee8 [CI:DOCS]Update Release Notes
b91599742 CI: sys: quadlet %T test: do not rely on journal
4d69f0146 GHA: Support testing build/sign workflows
15f35d354 Remove unnecessary backslashes
18e75daa5 [docs] Use code blocks for commands in podman-completion
f3ebd798c Make podman run --rmi automatically set --rm
8b7701f52 machine: QEMU: recover from failed start
49b8b971a vendor: bump c/image to v5.26.1-0.20230801083106-fcf7f0e1712a
bfd2a8cad secret: add support for `--ignore` with rm
21ebe0e90 Move `writeConfig` logic to shared function
597ccff0b Move some logic of `setRootful` to a common file
98cf8462a move `removeFilesAndConnections` to a common file
75a8f13c4 Move `waitAPIAndPrintInfo` to common file
55c7b5cec Move `addSSHConnectionsToPodmanSocket` code to shared file
0489d3aa6 Update module golang.org/x/net to v0.13.0
d74c225f4 chore(deps): update dependency containers/automation_images to v20230726
27d79e1fc Skip pasta local forwarder test on debian SID
b69cd8d84 Skip broken/flaky blkio-weight test
822f2f495 Skip tarball re-inport test in rawhide for CI
851cd9cca Cleanup CIDFile on podman-remote run --rm command
a237c3f46 CI: e2e: remove workaround for missing login file
42ad0c6e7 vendor: bump c/image and c/common
5b7dce8a3 Add support for confined users
78b850c48 Cirrus: Temp. disable rawhide validation task
def70012b Limit git-validation to 'short-subject'
33b8c451e Fix up man page and add test on globs
850482b31 Move alternate image acquisition to separate function
906af5bbc Move `getDevNullFiles` into a common file
89f1fdc7f Update github.com/digitalocean/go-qemu digest to 2e3d018
d6847b19c Convert QEMU functions to methods with documentation
6930f39a6 Update docs/source/markdown/podman-build.1.md.in
e1114f03c do not redefine gobuild for eln
39341f283 Set default userns from containers.conf file
4f1f88d7c Mention TimeoutStartSec in quadlet man page
ada71889c inspect with network=none show SandboxKey netns path
93f4cc1b5 [CI:DOCS] GHA: Use stable go for Mac/Win builds
ff7d287fc Breakup AppleHV machine funcs
64873e322 Codespell fixups
acbe7703f Update docs/source/markdown/podman-stats.1.md.in
0b7157e3b CI: e2e: reenable containerized checkpoint tests
c67ef7c1a docs(env-file): improve document description
4ee31dc37 Don't log EOF error when using podman --remote build with an empty context directory.
f2794f9a8 API: kill: return 409 on invalid state
170a78631 feat(env): support multiline in env-file
19deb6a34 Adds documentation to new functions that were added
481143e58 `startHostNetworking`: get DevNull files
13da82466 `Remove`: remove network and ready sockets from registry
d896431b2 `Remove`: remove files and connections
32265e1f6 `Remove`: collect files to destroy
381b103dd `Init`: read and split ign file
aa6827a67 `Init`: write ign config
cc30639d7 `Init`: add network and registry socks to registry
78d3b549c `Init`: add SSH conns to podman sock
630e7ba39 Improve the description of fields in podman-stats man page
22a8b6886 make /dev & /dev/shm read/only when --read-only --read-only-tmpfs=false
663fe9446 Mention no comment lines in Containerfile.in podman-build man page
e973d15c3 [CI:BUILD] RPM: define gobuild macro for rhel/centos stream
837bc2568 Fix HyperV loadMachineFromJSON function name
416a471ee machine: QEMU: lock VM on stop/rm/set
bb57c1631 libpod: add 'pod top' support on FreeBSD
f592c33fb [CI:DOCS] Build and Sign Mac Pkginstaller
f540bbffa Make sure users changes --authfile before checking
8757fe88a github: add issue type as link to podman github discussions
3523b9b05 Break QEMU `config.go` code into its own functions
c341a0ffe machine: QEMU: lock VM on start
afe8d5d84 libpod: fix 'podman kube generate' on FreeBSD
0fefcf8a4 Add glob support to podman run/create --mount
d6815da8c kube: add DaemonSet support
239a5b64a Fix artifacts script after removal of msitools msi build
e335a66a9 System tests: quadlet: fix race in %T test
d6a32a3da If quadlets have same name, only use first
db0ba9b25 Add support for mounts listed in containers.conf
6dda21984 Update vendor of containers/common
33891e8e9 System tests: add test tags
5ba055937 [CI:DOCS] socket_activation.md: increase socat timeout
dfec510b4 go-md2man: use vendored-in version, not system
a92bb3219 CI: use different TMPDIR on prior-fedora
6894e2031 system tests: authfile-exists: minor cleanup
d70f15cc0 start(): don't defer event
de122bb44 Fix: use --all in podman stats to get all containers stats
349d775de Verify authfile exists if user specifies it
e0ef23955 libpod: don't generate errors for createTimer etc.
0cfd12786 add "healthy" sdnotify policy
cbc96a7b4 Remove LICENSE and general doc files that are installed by the main package
37f0e9620 Add missing `
2f21df7b3 Remove legacy msitools based msi installer
ac212605c Remove any quotes around distribution id
e596b17fb add a podman-compose command
eee2817de pkg/specgen: Don't crash for device spec with...
d2796c6c1 fix(deps): update module github.com/docker/docker to v24.0.5+incompatible
f4fbd6fd0 Update vendor of containers/(storage,image)
d4fc66af9 Clean up /var/tmp/ when using oci-archives when creating containers
49257a3c5 [CI:BUILD] RPM: separate out gvproxy for copr and rawhide
b57091ac9 Reduce qemu machine function sizes
baf30e612 [CI:DOCS] migrate socket_activation.md to quadlet
7314569cb [CI:DOCS] Update kube play volume support
b5ce0ab2d Fix language, typos and markdown layout
cb5450af7 [CI:DOCS] Add note about QUADLET_UNIT_DIRS to simplify quadlet debug
0bb73bf55 Add note on debugging quadlet unit files
d4cfc498d Remove unnecessary use of the word "please".
a6a207673 libpod: fix FreeBSD 'podman-remote top' default behaviour
709beb6c0 fix(deps): update module github.com/onsi/gomega to v1.27.9
3e534eff9 Add support for ShmSize to quadlet
4b9f670ca Quadlet system test - force journald log driver for short lived containers
731bd7d94 fix(deps): update module github.com/containers/libhvee to v0.4.0
413552e10 quadlet recursively scan for unit files
ce736413b Ensure that we appropriately warn that TCP is insecure
558a70262 systests: quadlet: fixes for RHEL8
8d190704a Quadlet - Allow setting Service WorkingDirectory for Kube units
24bf6fc24 Quadlet system test - do not rely on journalctl in kube file tests
3d6bc2f86 Fix markdown in docs for podman-network-create
11ffea313 Man pages: check for corrupt tables
1d14bb7a8 quadlet systest: fix broken tmpdir references
e55e128fc Add `since` as valid filter option for `volume` subcommands
6df17332b Podmansh: Better error, increase timeout to 30s
96241159a Fix multiple filter options logic for `podman volume ls `
00a5b0709 Add bash-completion for podman inspect
3b6343202 Fix windows installer
d7e25e14a Add missing reserved annotation support to `play`
d2862c7dd Avoid progress hang with empty files
5c0912b07 Revert the usage of `home.GetConfigHome()`
5aa52659b Fix bug report issue template README link
47997857f Replace error check for non-existent file
8febb6aa1 Emergency gating-test fixes for RHEL8
d8d600b1d Add progress bar for decompress image
46058cfed refactor: move progressbar to a function
ca9874ab7 Use pkg/homedir to get the home config directory
7fb17ae78 fix(deps): update module github.com/vbauerster/mpb/v8 to v8.5.2
a224ff731 Should be checking tmpfs versus type not source
9e60f3ec5 fix(deps): update module github.com/vbauerster/mpb/v8 to v8.5.1
b4ffbcdfd Enabled arm64 arch for podman applehv provider
4e4078dbb [CI:BUILD] Packit: remove pre-sync action
d0602e8f7 Add `--podman-only` flag to `podman generate kube`
13a950016 Update vendor containers/(common, buildah, image, storage)
f256f4f95 Use constants for mount types
310a8f103 libpod: use define.TypeBind when resolving container paths
1e9410094 Tests: remove/update obsolete skips
a3bbc3a2c Fix trust not using local policy file
0997cf012 Fix `podman container prune` docs for `--filter`
a8d8c9497 Add more tests for liveness probes with default hostname & named ports
383d683f8 docs: podman-build --network add slirp and pasta
5e64cbf35 docs: podman run --network mention comma separted names
1443e2918 Podman machine AppleHV pass number 3
315a7887a Makefile: `package` -> `rpm`
85d936133 network create: document --internal better
e43127e0b pkg/specgen: fix support for --rootfs on FreeBSD
8c16322a8 machine start: qemu: wait for SSH readiness
12dc546fc [CI:BUILD] Packit: downstream task action fix
2b2c4453f Fix container errors not being sent via pod removal API
6ec261e7a Add missing return after utils.InternalServerError()
d1950869a Update cmd/podman/login.go
cce8501a5 [CI:DOCS] Reformat and reorder table with --userns options
d497eb369 Add secret support to podman login
2a9b9bb53 netavark: macvlan networks keep custom nameservers
c6b5b9a02 remote: fix podman-remote play kube --userns
441af003a fix(deps): update container-device-interface to v0.6.0
656ad760f go mod: no longer use 1.18
aeef403cd fix(deps): update module github.com/containers/libhvee to v0.3.0
6fd4ae6d2 chore(deps): update module github.com/gin-gonic/gin to v1.9.1 [security]
0dcfe6e06 Run codespell on code
3ad55f48b system service: unset listen fds on tcp
f1c68b79e add hostname to network alias
b6ec2127b libpod: set cid network alias in setupContainer()
4e96686e9 AppleHV enablement pass #2
72a1857e4 e2e: Fetch the correct user name
7b54fd84e Add `--no-trunc` flag to maintain original annotation length
600de05e3 Fix TCP probes when the optional host field is not given
ac3a115c3 Add support for using port names in Kubernetes health probes
4494cefbc Fix: cgroup is not set: internal libpod error after os reboot
932fae402 Allow setting volume and network names in Quadlet
427b959a1 pasta tests: automatically determine test parameters
97fd03ccd test/e2e: wait for socket
a69194b02 manifest inspect: support authentication
70428baef api: fix slow version endpoint
f8213a6d5 libpod: don't make a broken symlink for /etc/mtab on FreeBSD
499b8d13c CI: remove build without cgo task
42ea0bf9c libpod: use io.Writer vs io.WriteCloser for attach streams
597ebeb60 top: do not depend on ps(1) in container
3f8ee70d0 make --syslog errors non fatal
dbec2b5aa api: fix doc for default ps_args
1b7eb44d3 Fixes typo in the path where quadlet looks for files
efefd8cf5 Add --replace flag to podman secret create
eec438222 [CI:DOCS] uidmap man pages: fix corrupt italics
8d24e2838 [skip-ci] Update github/issue-labeler action to v3.2
f9077689e [CI:DOCS] podman-system-service.1.md: document systemd usage
dd16661b1 fix(deps): update module github.com/docker/docker to v24.0.4+incompatible
65136521e fix(deps): update module github.com/docker/docker to v24.0.3+incompatible
fa654e985 Use bytes size consistently instead of human size
dee94ea69 bugfix: do not try to parse empty ranges
9e4045768 [CI:BUILD] Packit: fix pre-sync action for downstream tasks
531fb21d0 fix(deps): update module golang.org/x/tools to v0.11.0
ab2fa45ad fix(deps): update module golang.org/x/net to v0.12.0
459b1578c fix(deps): update module golang.org/x/term to v0.10.0
99f93d55c e2e: fix two toolbox flakes
fc5aa9c9c test/e2e: use GinkgoT().TempDir() over MkdirTemp()
ea8992cb4 test/e2e: use random ImageCacheDir
17a06d343 test/e2e: remove RHEL7 workaround
bc22aefce test/e2e: remove unnecessary code in SynchronizedAfterSuite
ff7790038 test/e2e: do not use /tmp for podman commands
db7cb1dbf test/tools: vendor ginkgo v2.11
c20612bab test/e2e: write timings directly to file
a0b765552 machine start: qemu: adjust backoffs
d874790bc auto update: fix usage of --authfile
ba1355b23 system tests: refactor registry code
94b321337 fix(deps): update module golang.org/x/text to v0.11.0
644f7cd9b pkg/specgen: properly identify image OS on FreeBSD
a3a62275c libpod: use new libcontainer BlockIO constructors
2d68c3add [CI:BUILD] Minor: Don't confuse osx-debugging
5aabc5088 [CI:DOCS] Better document the default value of --userns
e4644c3cb Cirrus: build FreeBSD binaries in a VM
92fc0f481 Makefile: add support for building freebsd release tarballs
4a5396b46 [CI:DOCS] uidmap man pages: fix corrupt tables
5a8e092a2 fix(deps): update github.com/crc-org/vfkit digest to c9a4b08
d0359fcca fix(deps): update module github.com/containers/buildah to v1.31.0
300eb36b4 fix(deps): update module github.com/opencontainers/image-spec to v1.1.0-rc4
94e59bd2f Use /proc/self/gid_map as intended, not uid_map
a16488f89 fix(command): ignore `--format` in `podman search --list-tags`
9fb2f8e10 podman machine start: fix ready service
8408ad498 Makefile: don't rely on the non-standard -r flag for ln
39624473b pasta: Create /etc/hosts entries for pods using pasta networking
fe0de8b9f fix(deps): update module github.com/containers/libhvee to v0.2.0
2393fe453 pasta tests: add sanity check for test name vs function
4da3e47b6 pasta tests: cleanup + 1 new test
43b9426fc cmd/podman, pkg/domain/infra: sockets should live in /var/run on FreeBSD
e3f2a97d1 cmd/podman/system: add API server support on FreeBSD
0d7da5c0b [CI:DOCS] Document support of pod security context IDs
f64a1a1cc rootless: use default_rootless_network_cmd config
e4efd709d Revert^3 "pasta: Use two connections instead of three in TCP range forward tests"
17cd5aecb pasta: Workaround occasional socat failures in CI
13c7d05cc pasta: Remove some leftover code from pasta bats tests
bc58dae36 Bump c/image to v5.26.0, c/common 0.54.0
2cb549339 fix(deps): update module github.com/coreos/stream-metadata-go to v0.4.3
bf60bb073 Display secret to user in inpspect
448e01566 [CI:BUILD] RPM: Fix koji and ELN issues
8fb719a9e e2e: systemd test: major fixes
865d77e94 pkg/specgen: add support for 'podman run --init' on FreeBSD
74b4615aa Bump version after v4.6 branch cut
b6e636cbe Remove 'inspecting object' from inspect errors
fe8355be7 pasta: Fix pasta tests to work on hosts with multiple interfaces
d15cca024 [CI:DOCS] fix command incorrect in windows
bcb89fc8b Fix readonly=false failure
609c47ae6 pkg/specgen: Add support for Linux emulation on FreeBSD
cf9ebcddf Fix up podmansh man page
05eb3e6f1 Make Podman/Buildah use same DecryptConfig/EncryptConfig funcs
f5cc0487e Fixes for vendoring Buildah
0f4c86e26 vendor in latest buildah
6eaf8a271 tests: fix "Storing signatures" check
b80fd54a5 update c/image and c/storage to latest
eeb7aeb49 Kube quadlets can support autoupdate as well as containers
2160a114c debug tail 800 lines flake
dd81f7ac6 Pass in correct cwd value for hooks exe
227c07aeb specgen: honor --device-cgroup-rule with a new user namespace
0220f3338 specgen, rootless: raise error with --device-cgroup-rule
db37d66cd make image listing more resilient
17a18b16c Update module google.golang.org/protobuf to v1.31.0
bc5269f18 Trim whitespace from unit files while parsing
516034215 Re-organize hypervisor implementations
ba3da15e0 play.go: remove volumes on down -f
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
The recipe *podman* requires the distro feature *ipv6*. Using a distro
without it causes the build of *packagegroup-container* fails, even if
*packagegroup-podman* is not used:
ERROR: Nothing RPROVIDES 'podman' (but /build/../work/layers-3rdparty/meta-virtualization/recipes-core/packagegroups/packagegroup-container.bb RDEPENDS on or otherwise requires it)
podman was skipped: missing required distro feature 'ipv6' (not in DISTRO_FEATURES)
NOTE: Runtime target 'podman' is unbuildable, removing...
Missing or unbuildable dependency chain was: ['podman']
NOTE: Runtime target 'packagegroup-docker' is unbuildable, removing...
Missing or unbuildable dependency chain was: ['packagegroup-docker', 'podman']
Signed-off-by: Jörg Sommer <joerg.sommer@navimatix.de>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
| |
umoci can encode both entrypoint and cmd lists into the oci image.
This is done by using the --config.entrypoint and --config.cmd arguments
multiple times.
We can split our OCI_* variables on space and support multiple arguments
in either command and keep compatibility with existing users.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping kubernetes to version v1.28.2-44-ge3b5e621f07, which comprises the following commits:
b5e28b1cdd6 [go] Bump images, dependencies and versions to go 1.20.10
1cd2ac99542 .: bump golang.org/x/net to v0.17.0
cecc0e93916 Mark a volume as uncertain-attached after detach error
15101d92e18 Unit & integration tests for OpenAPIV2 AddUpdateAPIService
9f4011446a2 Fix 120878 - Refactor cacheabledownloader so handler can be updated and fix AddUpdateAPIService to update handler
489c08ddf47 Fix 120739 - Prevent AddUpdateAPIService from blocking on updating spec
d35a00e218c Fix 120758 - prevent cache Load on uninitialized spec
985ef265511 Add nil checks for hpa object target type values
88669d0a23b Make a certain ipv4-vs-ipv6 config error non-fatal, for backward compat
84a3ad3573b [go] Bump images, versions and deps to use Go 1.20.9
63fcac91c42 Only configure swap if available on node
07a74666cb2 Use local isCgroup2UnifiedMode consistently
57bbc335fd7 cronjob controller: ensure already existing jobs are added to Active list of cronjobs
8ea9b219c69 reintroduce resourcequota.NewMonitor
794d56966e8 change rolling update logic to exclude sunsetting nodes
a08ec1215fe vsphere: adapt to govmomi bump
ef63f36ff82 .: bump govmomi to v0.30.6
aba7c443072 Increase range of job_sync_duration_seconds
bcaa53c9c10 sync Service API status rest storage
a68748c7cd0 Update CHANGELOG/CHANGELOG-1.28.md for v1.28.2
89a4ea3e1e4 Release commit for Kubernetes v1.28.2
0c6a0c3f69b kubeadm: remove reference of k8s.io/kubernetes/pkg/apis/core/v1
47507f9f022 fix race on etcd client constructor for healthchecks
7d33fba21a8 e2e pods: fix WaitForPodsResponding retry
2480fce67f5 kmsv2: reload metrics bug fix backport
110a6fe8a9f scheduler: start scheduling attempt with clean UnschedulablePlugins
0aebbad4731 fix(queue_test): make sure the first bind failure via counter
798a0abe368 [go] Bump images, versions and deps to use Go 1.20.8
62321a9201c scheduler: unit test case for concurrent event with other pod
e5b981ebcd7 scheduler: fix tracking of concurrent events
16298b54483 fix verify errors
38904e5f2d1 remove used vars
ce017591468 sort stability list of metrics in the shell command
b5fd7e9f23c Feature-gate SidecarContainers code in pkg/kubelet/kuberuntime
958c30349fa Add an e2e test for the pod sandbox changed scenario
ac67de196ff fix: concurrent map writes in e2e test
19c4cf0f1a0 Automated cherry pick of #119776: Fix a job quota related deadlock (#120319)
dda909d6c51 TopologyAwareHints: Take lock in HasPopulatedHints
8656da75f2a Fallback to legacy discovery on a wider range of conditions in aggregator
526e25b685a Fix OpenAPI aggregation cleanup
0bca3b0e4de apiextensions-apiserver: generate applyconfigurations
8c7c4f3fc4d Revert to json-patch 4.12.0
a4fdac21a98 update build cross image to the correct release branch image
fc184558921 Mark Job onPodConditions as optional in pod failure policy
955843efcf3 Incorporating feedback on 119341
4c8b24d8618 Update CHANGELOG/CHANGELOG-1.28.md for v1.28.1
8dc49c4b984 Release commit for Kubernetes v1.28.1
ad60b95eb63 Add wait for cache sync
175bbaa8894 check for overflow
f3f88b8e7b5 Fix CEL cost handling of zero length replacement strings
90715527543 Use env varaibles for passing path
53902ce5ede Use environment varaibles for parameters in Powershell
e8abf3c441c e2e framework util subtle bug checking endpoints
a1fdd1152d9 Pass Pinned field to kubecontainer.Image
27e6c94259f prep for go1.21: use -e in go list
04de4683cb1 kubeadm: fix nil pointer when etcd member is already removed
8fd45c6bd0f update to golangci-lint v1.54.1 + go-ruleguard v0.4.0
cce3f6ffa79 Make gomaxprocs install optional, limit to tests
20b69aea685 Drop [Feature: tag to make sure this tests runs on pre-submits
58ac6e12ccc Statefulset should wait for new replicas when removing .start.ordinal
e7cfe85b9c1 e2e WaitForServiceEndpointsNum take into account the address family
96696c15f89 fix: when PreFilter returns UnschedulableAndUnresolvable, copy the state in all nodes in statusmap
d20fe4d8487 Update CHANGELOG/CHANGELOG-1.28.md for v1.28.0
855e7c48de7 Release commit for Kubernetes v1.28.0
b4053c3b293 Fix a bug that PostFilter plugin may not function if previous PreFilter plugins return Skip
b4fac632cd1 Remove release-notes for the PR#118895
5f7b27f4ade Remove release-notes for the PR#118895
87caf500e1f Update CHANGELOG/CHANGELOG-1.28.md for v1.28.0-rc.1
c5048f41fe3 CHANGELOG: Update directory for v1.28.0-rc.1 release
add7e14df11 Release commit for Kubernetes v1.28.0-rc.1
c6efaf16c1e apiserver/etcd3: fix segv during metric collection
6ddcdef29ae kube-proxy: fix combination of --config and logging command line flags
0d90d1ffa5e Revert "Merge pull request #118895 from RyanAoh/kep-1860"
1876ddf7149 Avoid returning nil responseKind in v1beta1 aggregated discovery
55ca1a6ee15 Remove leases test case from AdmissionWebhookMatchConditions suit
050c0437e60 fix: broadcast when pod is pushed back to activeQ directly in AddUnschedulableIfNotPresent
9bc857d6d90 [releng] Update publishing-bot rules for release branches to Go 1.20.7
38a81ca04f3 Bump distroless-iptables to 0.2.7
ae86051ec5a Bump protoc
ab26637eae4 Add test coverage of result size of string operations
8e72718249e Bump cel-go to v0.16.1
72c8cf9fce7 [go] Bump images, versions and deps to use Go 1.20.7
2ceca1c78db e2e WaitForServiceEndpointsNum should watch EndpointSlices
2f30fae0e8b scheduler: fix data race after binding failure
1b90dff5276 .*: bump golang.org/x/net to v0.13.0
73107c1b755 Update OWNERS
53c8872cc18 Update OWNERS
2a82aac5248 Update CHANGELOG-1.28.md for KMSv2KDF
294c7df3285 Avoid pulling node-problem-detector through CDN
b4ef4015a29 Avoid pulling mounter.tar through the CDN
cfcbce31a39 apiextensions: fix validation error for status.storedVersions
936819c21bc docs: update release note for KMSv1 deprecation
6689fd97469 DefaultHostNetworkHostPortsInWorkloads -> DefaultHostNetworkHostPortsInPodTemplates
a65d2075072 calculate the correct machine-type
182a4f858a3 API warn non-ExternalName services w/ externalName
7bd0a857e30 API warn ExternalName services with externalIPs
dd8a64d7e15 publishing-bot rules for release-1.28 branch
a005617111c CHANGELOG: Update directory for v1.28.0-rc.0 release
7d13c9b096b set map to nil if an empty string is passed
eb4063f0ced Add cases to tests `AdmissionWebhook` MatchConditions size limit (#119404)
ef4907eddd7 Add e2e tests for admission webhooks MatchCondition fields (#118319)
a248c4de521 test: fix NodeLogQuery tests to query the correct node for logs
45710678b30 Release commit for Kubernetes v1.28.0-rc.0
67769438e1d kmsv2 test feature enablement disablement and restart
18a7025383c update documentation with descriptions
7e0a9a7f4e7 Use statusReason for reason under x-kubernetes-validations (#119544)
3b9af471185 add admission policy integration test all resources
22bf29ad22f Treat empty string as nil in fuzzer for CEL Reason field
a164005cc09 Fix non-test code relying on test-code
e1b0bc3d0a7 bugfix: use matched resource for AdmissionRequest.resource, not the resource it was converted from
5e2e8c80647 bump validatingadmissionpolicy alpha->beta
1c99f9591b0 add node-env and instance-type flags to node-e2e tests
d6479587445 update codegen
ef8670c946d refactor: replace usage of v1alpha1 with v1beta1
294f5c9a42f make update
ae185e91186 e2e: test LastPhaseTransitionTime field when binding PV
a9c3444a47b test: add coverage for pv status update and create strategy
bf49c727ba1 kmsv2: KDF based nonce extension
aa65bab4269 implement pv last phase transition time
c97eb2b5cb0 Fix XValidations deepcopy to copy contents of nested pointers
76eefd3a012 CHANGELOG: Update directory for v1.28.0-beta.0 release
1b4de065df4 add LastPhaseTransitionTime field to PersistentVolume
5310dd7ff53 add PersistentVolumeLastPhaseTransitionTime feature gate
a31fee98f09 rename function for dropping disabled fields
dbea2791129 Fix the flaky TestJobApiBackoffReset test
8f35fceae37 update vendor to use containerd cgroups
c4bf42199a0 do not touch swap for cgroup v1 if swap not enabled
74fcf3e7668 implementation of PodReplacementPolicy kep in the job controller
cb6d7fbe66c update documented metrics
f50e74206e1 Address comment
c46ffc2b422 Refactor jsonpath parser and add tests.
b3b775baa51 test: adjust tests for v1beta1 validatingadmissionpolicy
88becfc0ba5 api: add v1beta1 ValidatingAdmissionPolicy/Binding types and storage
b5e9e0168cf feature: add multiple params capability to VAP controller
3f63a2d17d4 refactor: make scope of ParamKind available to vap controller
6323c106e9b refactor: use the provided sharedInformerFactory for params
9a595209bd2 update-codegen
c8dbf4712cf add namespaceParamRef to v1alpha1 and internal
03aad1f823c Fix the semantic meaning of etcd server within component statuses and metrics.
e0a6eb93a1f node_e2e: Fix createStaticSystemNodeCriticalPod's invalid spec
2863b3d1ab7 Revert "refactor: simplify RunScorePlugins for readability + performance"
3685e5e5a9c CHANGELOG: Update directory for v1.24.16 release
51bfe417b81 CHANGELOG: Update directory for v1.25.12 release
c575a1e31aa CHANGELOG: Update directory for v1.26.7 release
ba01bfcdc6c CHANGELOG: Update directory for v1.27.4 release
ce929520376 add podReplacementPolicy and terminating field to job api
35d0af9243c Include ignored pods when computing backoff delay for Job pod failures
ee82654e398 Add pod_swap_usage_bytes as an expected metric in e2e test
81abfca4078 Add a haveKeys() helper function to match multiple keys
1000ed64e09 Use debian-base instead of distroless for conformance image
d6e525877b5 [KEP-2876]Add reason and fieldPath into CRD validation rules (#118041)
b1d685a05fe apiextensions: validate status updates with status schema
06a81d13959 cmd/kubelet: implement drop-in configuration directory for kubelet
c1aef65640b Add integration test
cd5f3d9f9d5 Add impl for uvip
2c8288ac873 feat: improves metric and logging
0449cef8fd5 Increase timeout for DRA kubelet plugin client
a15c27661e6 Job controller implementation of backoff limit per index (#118009)
b5012ba1e2d Mark existing NodeLogQuery e2e tests as [LinuxOnly] since they do not run on Windows
bfb2c6a22a2 update go.mod
668497e7550 use ratcheting schema validator when feature is enabled
e0f9db42ace add ratcheting schema validator using new openapi hooks
6f238334ab4 add CRDValidationRatcheting feature gate
635875ad521 refactor: convert slices to []interface before inserion into VendorExtensible
9ee6d97fc05 refactor: add ValidateCustomResourceUpdate to support future validators for CRD Updates
a8a2fb317c8 Add tracking and reporting of executing requests
1351845133b Update cri-api change in v1.28.0
59b4951c649 Expose commit memory used in WindowsMemoryUsage struct
0ec99fb0b24 Kubelet DRA: fix failing test cases
f6431c61386 DRA: don't query claims from API server
cf0b74774f6 Extend the API for the Job job-index-failure-count annotation
d281daee335 Prefer pods without a deletion timestamp over pods with a deletion timestamp when getting an ordered list of active pods.
0372e4b6620 add unit test for dra/manager.go.
fcbfdc17106 Extend the Job API for BackoffLimitPerIndex
3fd40ffb0ef addons/metrics-server: fix nanny rbac permissions
056c19e8b39 Add slash ended urls for service-account-issuer-discovery to match API in swagger (#117511)
89ab733760a Improve docs on framework.CycleState
4da418aba7f refactor: cleanup to NewSchemaValidator takes JSONSchemaProps
ba581300213 refactor: rename apiservervalidation -> apiextensionsvalidation
735be024cf9 Make CRDs built and aggregated lazily for oasv2
ea23e13463f Update OpenAPI Aggregator
850dc6123af Remove ability to re-enable serving deprecated policyv1beta1 APIs
e7be841957d cli-runtime: make VerifiableQueryParam shared-parameter aware
a4a607198a1 hack/update-openapi-spec.sh
961c1503b5b Bump kube-openapi
4cb5547f934 Adjust summary API e2e test
e429793db1e Unit tests: node swap usage resource metric
1d368420b28 Add a node swap usage resource metric (/metrics/resource)
7d187f967ba Unit tests: CRI swap stats
59e3e3897e3 Add SwapStats to summary API through CRI
87ff9c45256 Add swap statistics to CRI-API
053d7ac61f5 Unit tests: cadvisor swap stats
c74ee8045de Add SwapStats to summary API through cadvisor
a05d200ac89 Add SwapStats to NodeStats, PodStats and ContainerStats
d029f0ef060 Add restartable init container lifecycle hook e2e tests
f17e9117776 Add restartable init container probe e2e tests
9d6c1030db0 Generate containers ready condition including restartable init containers
3bf282652f0 Allow restartable init containers to have lifecycle
7ef2d674e24 Allow restartable init containers to have livenessProbe
2c8b37498e5 Allow restartable init containers to have readinessProbe
8b20dbd0d16 Add validateStartupProbe
c7e7eee554a feature(scheduling_queue): track events per Pods (#118438)
91ea8043355 Replace lavalamp with jpbetz as feature-approver for api-machinery
94c8ad289bb Enable admissionWebhookMatchCondition by default
4321d8c60f3 Graduate NodeSwap to Beta1
f1e7386fbc4 Deprecate now-unused kubelet iptables flags
d486736dd38 Remove IPTablesOwnershipCleanup checks and dead code
77cbd86b0b1 Add metrics for cloud-provider node sync, update.
d3c506133f1 Skip apiserver_admission_webhook_request_total during context-canceled
7698fe76397 Add StatefulSet pod index as pod label (#119232)
2e217e8cea1 Reduce duplication between helpers for checking featuregate
7edd72f7805 Update generated documentation
137474e2839 Fix validation options for old pvc
d765fa6b747 Update generated stuff after changing comments
f01a1faa8cb Update comments about allocatedResourceStatus
c072e5b3a7e Update test generated data for 1.26 branch
db8998265e9 Update 1.27 generated data
6a780f57ce5 Update generated data
e0111871149 Update code to use new generic allocatedResourceStatus field
d3ef2d4fe95 priority & fairness: support dynamically configuring work estimator max seats
9189c3d5599 fix tests
aa788219f46 fix metric names
d32aa62d844 promote beta metrics
65ce7222ced All sig node approvers should be able to merge changes to CRI API
9cb2c103107 Adding node feature owners
00de051729a Make matchConditionsFeatureGateInitiallyEnabled a boolean instead
48eee4eed86 Fix e2e tests for overriding timoutGracePeriodSeconds of probes
0074b24ca42 Graduate AdmissionWebhookMatchCondition to beta
bfa62e0009a kubelet: retry RuntimeConfig call and prep for nil values from GetLinux
6aeff13def3 Never drop the `terminationGracePeriodSeconds` of a probe
d0952686f68 CRI: add cavieats about cgroup driver field
d7797fbc616 kubelet: get cgroup driver config from CRI
fd434003f3f kubelet: initialization of runtime service earlier in the startup
37330a13924 Add KubeletCgroupDriverFromCRI feature gate
d2d5e2e27dc Add CRI fake runtimes for RuntimeConfig rpc
0f05a92ce68 cri-api: add rpc for querying runtime configuration
660be4484b4 Update publishing-bot rules for release branches to Go 1.20.6
be01f4a0838 KEP-3178 IPTablesOwnershipCleanup to GA
ff62cca47b8 Bump distroless-iptables to 0.2.6
229eb93a834 DRA: report NodePrepareResource errors
b57c7e2fe4b Add CDI devices to device plugin API
b1850497b4b Integration tests for IP mode field
7eab0d7a0de Proxy changes for IP mode field
7c6e399b228 Generated code for IP mode field
e6863757f4f Add IP mode field
e38ab6d3671 Add PodGC changes for PodReplacementPolicy
169abcc0398 openapi: reference shared parameters
6c0ea702d43 Conditionally serialize flushFrequency as int
19f61caabee aggregate kube-proxy metrics
bd9b78d6861 kubeadm: remove the limitation that the 'ignorePreflightErrors' field can not be set to 'all' in kubeadm config file, and keep CLI / config consistent
6b3ce3004db Add integration tests for match conditions feature gate enablement
b883f305011 kubeadm: Support `kubeadm config validate` for ResetConfiguration
171b19d9fe1 fix histogram vec compare using ignore fields
9b6af80a631 upgrade prometheus common to v0.44.0
8f9e2cb8a80 kubeadm: Support `kubeadm config migrate` for ResetConfiguration
22f0f2e210f kubeadm: add 'kubeadm config print reset-defaults' command for ResetConfiguration
13172cba5c0 ValidatingAdmissionPolicy: support namespace access (#118267)
df0d51d3b35 add some detailed message for dup container ports(steal from thockin)
1732b23a343 Ignore context canceled from validate and mutate webhook failopen metric
90ab7580aae add list of served versions to storage version
9564bdc39de Ensure final diff is used for setting expectations for Job pod creation
8a4a29d5917 remove todo/spelling
bef43788fc0 update histogram
01b9f4b6eb8 matchCondition metrics
5f37c102cb5 revert changes in staging
d9bd413f991 Proactively bump golang.org/x/net to v0.12.0
883d0c3b717 Add a dummy implementation of proxyutil.LineBuffer
34640772ed4 implement SchedulerQueueingHints feature gate
619be9c1537 Add a swap e2e test
4b6314f815b Unit test: Swap - Limited/Unlimited Swap, cgroups v1/v2, etc
a30410d9ceb LimitedSwap: Automatically configure swap limit for Burstable QoS Pods
e4da568f331 Make kuberuntime unit tests environment independent + support cgroup v2
f37aec6c57f Add LIMITED_SWAP env var to enable limited swap
0ed7bdb057e Update vendor
69c4bc29f55 [go] Bump images, versions and deps to use Go 1.20.6
2a907e60043 kubeadm: fix fuzzing for ResetConfiguration
2e6715bc77b kubeadm: implementation of `ResetConfiguration` API types
037847066ce replace strings.Index with strings.Contains instead
3e2a1a7b9ce Regenerate
b2613dd381b Add e2e to check that hostIPs and Downward API works
14b09c414ac Add DownwardAPI validation for status.hostIPs
335d905ce95 Downward API support for status.hostIPs
bf030fd68ab Add validate HostIPs
267e76a66e2 Add status.hostIPs in validEnvDownwardAPIFieldPathExpressions
c287943bdd5 Add status.hostIPs in ConvertDownwardAPIFieldLabel
7a81ef6406c Add fuzzer for PodStatus
e6bdd224c17 Add HostIPs for kubelet
dacb6890027 Add dropDisabledStatusFields
e061143de7f Add HostIPs field and update PodIPs field
c2c001a243a Add FeatureGate PodHostIPs
ce90eb2cc2f Fix validation to use field.Forbidden instead of Required
7305c967101 QueueSet and controller part of borrowing by exempt PLs
2069835094d Tolerate only the two allowed field changes
3754d2da20f apf: allow admin to change the Exempt field only of the exempt pl
f8e4e8abac8 apf: add validation to exempt for borrowing
f78d6062eb8 Update generated code for APF borrowing by exempt
a9d8cace1f5 Fix AutoUpdateAnnotationKey, NominalConcurrencyShares
3d3240c8b43 apf: add API changes for borrowing by exempt pl
b635f2a401f ValidatingAdmissionPolicy: Variable Composition (#118642)
49d03468021 Pre-allocate webhook accessors arrays for mutating and validating webhooks
037091284e2 fix unit test bug
423f4dfc798 Add quantity library to CEL (#118803)
a1a5f49bb9c remove statefulset label added to wrong branch
1ae60c0ed16 use job completion index annotation as label
131216fa8f2 chore: hashes keyID
049614f884e ValidatingAdmissionPolicy controller for Type Checking (#117377)
d25075f3424 update generated list of stable metrics
c291e6355c4 feat: implements metrics for encryption config hot reload
be2e5417ea2 allow api-approvers to approve directories touched by generation
80ab8f0542f dra: handle scheduled pods in kube-controller-manager
cffbb1f1b29 dra controller: enhance testing
5cec6d798c3 dra: revamp event handlers in kube-controller-manager
0bb419b1498 promote the following APF metrics to beta:
39207dada25 Add integration test for node authorizer claim references
4121c1fc79a auth: don't allow kubelet to from modify ResourceClaimStatuses
c688478a28b Fix lifecycle generator to check the version correctly (#119268)
ddc0d947900 dra API: ensure that pod status contains no duplicate resource claims
052b06bdad3 Remove test Pods sharing a single local PV
22d8ae1ba6e Enable NewVolumeManagerReconstruction
9914909f5aa Define tcpProtocol in one place in the unit tests rather than many
967ef293786 Remove/clarify two FIXME comments in the proxier unit test
14375947869 Remove some stray references to the ProxyTerminatingEndpoints feature gate
7e3b53042b1 Pass Job context down to firstPendingIndexes
4835d9e1371 Belatedly clean up some "Endpoints" vs "EndpointSlice" distinctions in the unit tests
4d8f569b037 Remove KUBECTL_EXPLAIN_OPENAPIV3 environment variable
c5147c91b88 controlplane: kubernetes.default controller stop polling
9f5b6db8be8 test: azure: check error for cloud detection.
1db11c07ff2 node authorizer: limit kubelet access to ResourceClaim objects
71ef0dafa72 add flag 'logging-format' to kube-proxy
c550c17f7f0 accept int or string flush frequency
148acc8632c enable arm64 support for GCE node configuration
75186b1c32a Fix, deprecate apiserver_flowcontrol_request_concurrency_limit
c52911e59ad docs: add comment describing `LoadConfigFromFile`
5c18810f357 chore: update license date for configfile tests
72aeb961322 test: add tests for `LoadConfigFromFile`
b3373ae2738 refactor: make only `LoadConfigFromFile` public - `loadConfig` can be made public again when needed (not required now)
8e284389a5d feat: make `loadConfig` and `loadConfigFile` public functions - so that users who import kube-scheduler libraries can use these functions to read kube scheduler config
0599b3caa0f change the QueueingHintFn to pass a logger
39bb8f4bb1d Implement ConsistentListFromCache feature gate
0695853a306 Improve naming and code comments
08d40f53a7a dra: test with and without immediate ReservedFor
98ba89d31d5 resourceclaim controller: avoid caching deleted pod unnecessarily
28b6c906966 Move DeleteFunc logging to level 2
761016482da Properly setup mutatingWebhookConfigurationManager{}
747dbd9b6b7 run `./hack/verify-gofmt.sh`
1eb60939fe5 Add smart reload for `MutatingWebhooks`
aeefb762ece Properly handle parameter in `shareInformer.DeleteFunc`
a01a8cb07e7 Fix webhook accessors caching pattern
7d3d44af776 Add webhookAccessors smart reloads unit tests
c6f36e8702a Fix deadlock issue
99875b3fb73 Webhook Accessors Smart Recompilation
7d064812bb4 kube-controller-manager: finish conversion to contextual logging
d743c50bb9e kubelet: support batched prepare/unprepare in v1alpha3 DRA plugin API
7a63997c8a1 Improve apiserver storage size metric to allow it's graduation
610509fedd9 Update standard app protocols
f1f2fa9da8a kube-apiserver/corerest: split apart generic code
01c3a51a780 node: podresources: getallocatable: move to GA
c1decb6763d Fix TestConditionalProgressRequester and TestWaitUntilFreshAndListTimeout flakes
1b8ddf6b79a podgc controller: convert to contextual logging
f924bf95df9 dynamic resource allocation: Improve code coverage of state checkpoint
c635a7e7d83 node: devicemgr: topomgr: add logs
d78671447f2 e2e: node: add test to check device-requiring pods are cleaned up
5cf50105a2b e2e: node: devices: improve the node reboot test
b926aba2689 e2e: node: devicemanager: update tests
3bcf4220ece kubelet: devices: skip allocation for running pods
ab3a0b78ea3 Match both old and new kubectl version for a while in e2e
c143a875edb dra e2e: fix "reallocation works" flake
6f1a29520fe scheduler/dra: reduce pod scheduling latency
e01db325735 scheduler util: handle cache.DeletedFinalStateUnknown in As
ef48efc736c scheduler dynamicresources: minor logging improvements
363874e9b56 setcap: update to debian bookworm v1.0.0
19869478c11 Migrate /pkg/controller/disruption to structured and contextual logging
b81f07ac9a6 Add enj to apiserver options approver
6d6595d0f6e Add jpbetz as approver of apiserver integration tests
43b509de420 staging: Add endpointslice to publishing data.
7c873327b67 Convert controller name to reconciler variable.
29fad383dab move endpointslice reconciler to staging endpointslice repo
c0030a4d27e Add support for watchlist to APF
9759fc3c230 Fix the converts an empty string to nil.
22c66784e03 staging: add endpointslice repo
a34e06e74c7 kube-apiserver/corerest: structure Config
75e3576523f kube-apiserver: rewire service controllers: kubernetesservice + IP repair
f22aa42aa81 bump go.mod cadvisor to v0.47.3
f855a23b455 topologymanager: promote TopologyManagerPolicyOptions feature to beta
3267dd9d529 kubectl delete: Introduce new interactive flag for interactive deletion (#114530)
23833b9c81c topologymanager: Increase TopologyManager test coverage by adding negative test cases around NUMA topology discovery
998654e0443 topologymanager: fix TopologyManagerPolicyBetaOptions not being enabled by default
fec25785ee6 dra: store generated ResourceClaims in cache
ba810871ada dra e2e: check that not generating a ResourceClaim works
0fc62d5ded0 dra: generated files
444d23bd2f1 dra: generated name for ResourceClaim from template
98461be8ffa Implement conditionalProgressRequester that allows requesting watch progress notification if watch cache is not fresh
cd14e97ea80 Add a builder for ContainerAllocateResponse objects
db2a1edbdd6 Generate empty cdi annotations
f0e3c32fe56 Move CDI annotation code to utils package
354b6c409f5 Rename updateReconstructedFromAPIServer
1903f5aa2ad Rename volumesNeedDevicePath
7cd60df4aa1 Update volumesInUse after attachability is confirmed
0a2272dc68d Add uncertain state of volume attach-ability
bf48165232f Remarks to syncJobCtx
990339d4c3e Introduce syncJobContext to limit the number of function parameters
94b782680c0 Update publishing-bot rules for release branches to Go 1.20.5
f443c458afe move non-graceful node shutdown to GA
645cb907320 migrated pkg/controller/endpointslicemirroring to contextual logging
98c6e25c371 update name of pod index label
09849b09cf4 migrated pkg/controller/endpointslice to contextual logging
de076430957 Document address family of listening INET sockets
08dd657a71c Implement metrics agreed on the KEP
9b1c4c7b57f Implement KEP-3836
cca66011067 Add reason to force detach metric
e655931274f expended type checking.
8fb5b6eb4c1 node-e2e: Add container lifecycle e2e tests for preStop hook
47ef977ddd5 Direct reference to the packages
7286d122fb7 Mark pods with restartable init containers as `UnschedulableAndUnresolvable`
0a987079128 Sidecar: Update printPod to show restartable init container information
ea1eb7f8f79 implement sidecar resource calculation
03c22176877 Sidecar: Add e2e tests
b94fa250c27 Sidecar: Implement lifecycle of the restartable init container
c187b381173 Sidecar: Generated code
5d26bcd468b Sidecar: API changes
10dc1ca0846 Skip GracefulNodeShutdown on older systemd versions
f7a1fb76f4f Only declare job as finished after removing all finalizers
3f07fc3acc9 Remove long/golang version information making short the default
3a5268502f3 Remove deprecated scheduler CLI flags
68ed020b2a3 Split IptablesRulesTotal metric into two different metrics
bc059817dc5 fix: Add "metav1.CauseType" to "field.ErrorType" map
c0eb0caf4ac Support fine-gained rescheduling in ReservePlugin
d7708e79d32 Use cmp diff
278a8376e17 Fix: fiterror in permit plugin not handled perfectly
14bd9bc127e CHANGELOG: Update directory for v1.28.0-alpha.4 release
2fe38f93e53 feat: Append job creation timestamp to cronjob annotations (#118137)
1acdb4ae86e [KMSv2] Mark KMS v1beta1 as deprecated with no further fixes (#119007)
02c59710eaa Test the IptablesRulesTotal metric in TestSyncProxyRulesRepeated
ecf0cee91ce update comment on feature flag
3a02ecb3418 check test case param instead of feature flag in unit test code
b10cc642b56 DRA controller: batch resource claims for Allocate
be0db3f93d7 clean up the implementation around QueueingHintFn
5175752df74 Issue 4230: remove readiness check for cache exclusion
132d477cb7a use stopCh to avoid goroutine leak in tests
20a25cbfcfb Add user specified image to CRI `ContainerConfig`
65e818d4ecf Introduce apiserver_flowcontrol_current_executing_seats metric
1bf2f6c9c05 feat(NodePorts): return Skip status in PreFilter
dfc1838379f Migrated pkg/controller/volume|util|replicaset|nodeipam to contextual logging
6c0387d0047 Migrated pkg/controller/endpoint to contextual logging
3cf2822bc58 Migrated pkg/controller/garbagecollector to contextual logging
921b7e6e8f7 remove equalReady and replace with k8 util function
a647f9febbf default enabled pod index for test cases, add test case disabling it
322da7c1aae fix gc metrics
02efe09abe3 component-base/logs: improve handling of re-applying a configuration
1240a29af9c Hide numberOfMissedSchedules as an algorithm internal number
c733c57962f pkg/controlplane: wire core storage as RESTStorageProvider
65b34221ebb kube-apiserver: remove IP repair plumbing from kubernetes service controller
9dcc57ede62 Stop using deprecated API
5e1777be529 Update debian-base to bookworm
a514f40131c dra resourceclaim controller: delete generated claims when pod is done
e8a0c42212d dra resourceclaim controller: remove reservation for completed pods
7f5a02fc7e4 dra resourceclaim controller: enhance logging
d1ba893ad8e dra resourceclaim controller: refactor isPodDone
e2900da46aa Remove unnecessary utiliptables.Interface arg from local detectors
7690c6e8121 Simplify getDualStackLocalDetectorTuple
cefd50a753e Improve the single-stack LocalDetector behavior
bfccfa7016b Add names to the getLocalDetector unit tests, use t.Run
16e9cc42c1a e2e node: remove unused test/e2e_node/gcp
932d0337b82 e2e: detect unexpected command line arguments
68aee61d4f7 SPLIT: kube-apiserver/corerest: split out service IP setup logic
443bf3b01b0 scheduler test: Use cmp.Diff instead of reflect.DeepEqual for pkg/scheduler/internal/cache
dad3e4d2112 SPLIT: kube-apiserver/corerest: split constructor
31943cc3f44 kubeadm: check the GV after the config migration
b4f479d1f29 bump npd to v0.8.13
a556feb7cbe run hack/update-vendor.sh to fix verify master
4149933ed2e kube-apiserver: move "public IP matches IP family" check to option validation
616c9599880 FIXUP: pkg/controlplane: move bootstrap controller to controllers/kubernetesservice
c26e1ba10c3 [UT] increase coverage kubeadm/app/phases/dns
b36fdd68b72 Test consistent List
01b1174c114 kubeadm: fix "migrate config --allow-experimental-api" to print v1beta4 kubeadm configurations instead of v1beta3
18f2e9055fc Add OIDC integration tests
c68a6b07456 kubeadm: fix fuzzing for ExtraEnvs defined in the control plane component
80b035a116a kubeadm: Support custom env in control plane component
6b01ece5806 scheduler-perf: fix perfdash display problem
29e5771aa4d scheduler-perf: shorten "Name" label in metrics
e08bd3bc263 Simplify DeleteCollection
7b62d000a4d MOVE: pkg/controlplane: move bootstrap controller to controllers/kubernetesservice
2b03f04ce58 Initialize the AuditEvent with the AuditContext (#113611)
c903c29c3b1 e2e: support admissionapi.LevelRestricted in test/e2e/framwork/pod
19cb6d036ae kube-apiserver/corerest: remove redundant interface
ede17eace45 test-e2e: Retrigger the RBD image post merge job
a966d186083 Double-check the proxy configuration vs the available IP families
36e458612a9 cmd/kube-apiserver: move back master count variable from generic controlplane
1cfb932111e kubectl: Allow parallelizing diffing
bcbc12cd79c Fix `should be able to create and delete a critical pod` test
4517d3004ad bump kube-dns to v1.22.23
985cf718a43 [Dual-stack] Fix generateAPIPodStatus() of kubelet handling Secondary IP hostIPs order may not be be consistent. If secondary IP is before primary one, current logic adds primary IP twice into PodIPs, which leads to error: "may specify no more than one IP for each IP family". In this case, the second IP shouldn't be added.
f6a86bb2030 fix indent error
c143710ecf1 upgrade npd image version to v0.8.13 for kubemark
96694514a75 Remove csiDriver Conformance test
bb0c3a08189 Remove proxyutil.IsProxyableIP / IsProxyableHostname
59592ba4639 Add OIDC test server
1f2bf32e95f Figure out single-stack/dual-stack support before creating the proxier
8abfa89e82b Move proxy platformSetup call, and do LocalDetector setup from there
ebb0fdd4f6f Don't explicitly filter config.NodePortAddresses by IP family
a74b9fde3aa Don't pass around full node in proxy constructor, just pass PodCIDRs
0537c1da563 kubeadm: move migrate / validate tests out of config_tests.go
b01a4145b2c Install ecr-credential-provider during node e2e tests
4e6aa5fb861 kube-proxy service health: add new return header with number of local endpoints
a5df442be78 flowcontrol: copy object before passing it to client-go Create to avoid data race
ea34d039256 integration testing: configure gRPC logging during init
1c48b7ec144 Add servedVersions info in StorageVersion API
d548983dbb2 Use table-driven table for TestPerPodSchedulingMetrics
e0af0a5a455 add test case param for feature flag
d68f5f0d921 fix tests
44f1c4dd94d fix duplicate metrics issue
84b3d9b7b7e remove legacy NetworkPolicy tests
0eeca0987a6 fix tests
04ea1d506b4 promote sli metrics to beta
f96d83af668 Copy container logs for easier debugging
dfc150ca182 e2e: node: podresources: cooldown the rate limit
f7cf9effa33 fix kubelet podWorkers.SyncKnownPods() typo
52ef833b6c2 Bump cadvisor version in tests to v0.47.2
8266c4d934d Generalize watch storage tests
d53762ec3a5 remove unnecessary comment in pkg/scheduler/framework.QueueingHintFn
1b47e6433b8 dra delayed allocation: deallocate when a pod is done
dbdd861ea36 chore: address review feedback
72294e4eff0 scheduler test: Use cmp.Diff instead of reflect.DeepEqual for pkg/scheduler/internal/queue/
f269acd12b2 Make QueueSet support exempt behavior; use it
931456a1427 Simplify the node name for metrics - just use localhost
3e5fafd57ab Drop docker.log and add cloud-init-output.log
1c7e87cff27 client-go: add DNS resolver latency metrics (#115357)
150f732c7ee [StructuredAuthenticationConfig] wire request context to claim resolver
4a5a242a68d dra e2e: using logging for background activity
f1700e4b95b Cache authz decisions within validating policy admission.
60fb8f2fbc5 Exclude terminal pods from Daemonset e2e tests
24f4785e3eb kubeadm: remove unused Kind and Resource functions from output API
16fdd3e5eef apiserver: introduce larger buckets for flowcontrol request_wait_duration_seconds bucket
90f82d05ce2 kubeadm: remove unused Kind and Resource functions from kubeadm internal API
fd15c6791a4 kubeadm: restore and generalize the TestMigrateOldConfig test
d616cf72a3b Add unit tests for parallel StatefulSet create & delete
c6079843792 apiserver: introduce larger buckets for request_filter_duration_seconds metric
ef265101648 Return Skip in PodTopologySpread#PreScore under specific conditions
732775ee7d1 Paginate within DeleteCollection call.
0d41d509d2d scheduler_perf: replace gomega.Eventually with wait.PollUntilContextTimeout
cecebe8ea2f scheduler_perf: add TestScheduling integration test
dfd646e0a89 scheduler_perf: fix namespace deletion
d9c16a1cedd scheduler_perf: fix goroutine leak in runWorkload
2e7f37353cb test/integration: avoid errors in fake PC controller during shutdown
812556365b6 kubeadm: backdate generated CAs by 5 minutes
44692a486f9 client-go: allow to set NotBefore in NewSelfSignedCACert()
cfa2fa6d774 put feature gate in alphabetical order
860aab842db fix a reference to the wrong variable name
a75b00ea39d Better URL for scraping metrics from kubelet
685b0c5efa1 Bump to latest node-problem-detector version with arm64
cad338890df add test for apiservices.apiregistration.k8s.io discoverability in openapi/v3
9e3b5b65838 update openapi
ad2b4368e21 expose apiregistration.k8s.io into OpenAPIV3
bb8766daaf6 feature flags should be ordered alphabetically
7f4c187ab26 kubectl explain should work for both cluster and namespace resources and without a GET method
a9afaa1eee9 add feature gate
dfce076c6cf Update the template.pot file with latest message IDs.
a4519665fe0 Skip terminal Pods with a deletion timestamp from the Daemonset sync (#118716)
9c7166ff639 wait for eventhandlers to sync before run scheduler
bde66bfb55c kubelet dra: restore skipping of unused resource claims
874daa8b52c kubelet dra: fix checking of second pod which uses a claim
6c587b43e92 Cleanup pods at the end in Pod conditions e2e node test
56c5c8f7eef Revert "Make CA valid 1 hour in the past"
ecd727e4c75 Fix PodGC test when PodDisruptionConditions disabled (#118805)
bdbf07525fa test: remove exception comments in discovery tests
6fd830a075f hack/tools: bump golangci-lint and consequently staticcheck
1af54256969 hack: disable gomega.Consistently/Eventually check due to false positives
f618e613322 e2e: replace gomega.HaveLen(0) with gomega.BeEmpty()
e7df337ebad e2e: replace gomega.Equal(true/false) with gomega.BeTrue/BeFalse()
8b33e8bdd1b e2e: fix gomega.Expect calls without assertions
0ef1f2f2d89 Set AWS specific credential provider when running there
b0f694f50ac CHANGELOG-1.27: Add note for AWS in-tree provider removal
af1c9e49c49 Update schedule logic to properly calculate missed schedules
0033f658085 increase the log level for the GetTargetNodeName error message
08198fe22b5 Extend Large Create Timeout to 60 min
9354e78289f no-op: split transformer interface
21760534157 add completion index as pod label
8083d0d22e2 pkg/controlplane/apiserver: remove temporary import restriction of cmd/kube-apiserver
764da8a01dc FIXUP: cmd/kube-apiserver/app/options: split apart controlplane part
1b3779baa0d MOVE: cmd/kube-apiserver/app/options: split apart controlplane part
3df92362abd fix openapi/v3 non local apiservices aggregation
4298953c26c kubeadm: remove unused Kind and Resource functions from v1beta4 API
6e079545c48 cmd/kube-apiserver: move options completion into options package
f04484fe775 kubeadm: add the --allow-experimental-api flag to "config" commands
0774f779d5c kubeadm: add v1beta4 to the kubeadm API scheme
38222014c61 kubelet pod-resources: add e2e for KubeletPodResourcesGet feature
f7239e40959 Better back off delays and connection timeout to talk to containerd
e4f93d8a82d ipallocator bug if ips has leading zeros
89a9e480f9b fix: update deployment e2e tests
41d961758ee update cri-api change in v1.27
22258a263f4 Fix stable metric finder for NewDesc with custom import name
13842746227 Update metric documentation
45aa59946af Refactor FindAttachablePluginBySpec out of CSI code path
07f38a3ec18 add test
6f8d38406a7 feature(scheduler): implement ClusterEventWithHint to filter out useless events
531d38e323c features: rename UserNamespacesStatelessPodsSupport
556d713a4ad apis: drop check for volumes with user namespaces
8ed23558b44 Do not set jm.syncJobBatchPeriod=0 if not needed
17013d39604 Review remarks to improve HandlePodCleanups in kubelet
e3ee9b9adc1 Fix the deletion of rejected pods
c91c578795c scheduler_perf: skip expensive cleanup during benchmarks
92a35f5bca9 Usse generics to simplify pkg/registry/flowcontrol/ensurer
902c711fb49 Unset gated pod info timestamp in addToActiveQ
56cb4c93918 [bug] Update DefaultObjectDescriber to handle interface params (#118190)
1053d1bbcf5 CEL lib: Expose errors on authz decisions instead of raising them from check().
406899360b5 Refactor shouldDelegateList/shouldListFromStorage to better explain decisions
e4cf103c9b9 Test all cases for LIST request cache bypass
7f532891c9c e2e tests: set all PSa labels instead of just enforcing
a9af2de8fdd Refactor WithRequireLeader to make it part of the etcd store
1bd3f072fa7 stop ignoring storage class selection errors
e5cbc51d29d e2e framework: allow setting all PSa labels at once
edb59e9bc75 kubeadm: move token defaulting and related constants to token package
ec70b2ec801 e2e dra: add "kubelet must skip NodePrepareResource if not used by any container"
fdd992da865 upgrade image addon-manager/kube-addon-manager:v9.1.6 to v9.1.7
420fbd11e44 ignore Histogram for prometheus client v1.16.0
c98e72841b1 Add a connection backoff to talk to CRI impls
409bc8ccc05 deps: Bump to cAdvisor v0.47.2
f72c2c2b7d2 add process start to prometheus handler opts
bbc7ca94a42 CHANGELOG: Update directory for v1.28.0-alpha.3 release
ab75e48494c storage: stop using deprecated io/ioutil
687ca0e0bb2 fix(script): handle wait_for_success failed condition
eecac058718 kubeadm: add v1beta4 API boilerplate
63e5b6bdb24 Parallel StatefulSet pod create & delete
2fb472c83cd Refactor StatefulSet controller update logic
784a309b917 Do not error in Job controller sync when there are pod failures
f2e3157df0a Remove AdvancedAuditing feature gate.
bbae445d172 fix metrics test with 1.16.0 prometheus client
180c2332bf8 [UT] increase coverage ut for kubeadm/app/features
564c236ce28 Do NOT prepull images for e2e-node jobs
c84b5b0a99f Cleanup unnecessary renames of variable t
c9b01dd9778 Fix race in logging expectations
3dd1bac4dce Set small DefaultJobPodFailureBackOff in Job integration tests
85d9339ef8f add KCM names into CCM cmd allowed import-restrictions
3b55f20bd34 update vendor
4e6a3fb9c10 deduplicate cloud provider controller names
e5f5a9bfdbe use controller names for CLI FlagSets to show the names in help
cd56748ec57 reference controllers correctly from CLI help
9fd8f568fe0 introduce CCM controller aliases and unify controller names
94792d85dea simplify TestValidateControllersOptions test
97309511366 introduce KCM controller aliases and unify controller names
ba1755132e1 support controller name aliases in GenericControllerManagerConfigurationOptions
2596245f5a7 Replace deprecated sets.Int with sets.Set[int] in Job integration tests
e5116a39c96 fix: kubectl expose fails for apps with same-port, different-protocol
958c8fb6950 Make use of `k8s.io/utils/pointer.Duration`
ede2ec22b68 kubeadm: drop older etcd versions from kubeadm support
8cd65e9cee6 reorder hack/unwanted-dependencies.json map keys and arrays
f44029705f9 exit 1 if status are not as expected(order)
a1e0aa0e504 DRA Node E2E: add NodeAlphaFeature to fix CI
74c5ff97f18 Lower the constants for the rate limiter in Job controller
f54c15d4e80 Change the fieldpath in the deprecated plugin response
471fd1ae8a1 deprecate RBD plugin from available in-tree drivers
c51a422d787 Cleanup job controller handling of backoff
fff5b35023b Adding review changs to update
889ecf865b7 always execute condition for wait.PollUntilContextTimeout with immediate=true
5aa5f1abc9c update prometheus/client_golang v1.14.0 to v1.16.0
5bde9404a09 Remove unused error return value from internal function
8636f9353a8 CHANGELOG: Update directory for v1.27.3 release
763555814b5 CHANGELOG: Update directory for v1.26.6 release
3bf93156d80 Update pending_eligible_endpoints.yaml to match APISnoop
ff2a1f0167f CHANGELOG: Update directory for v1.25.11 release
a29be0cfb00 update container runtime flags to use containerd instead of docker
89adbc6e5b5 check for AWS environment before running sudo
7f650acb3c1 CHANGELOG: Update directory for v1.24.15 release
a83edd35c4a DRA Node E2E: relabel test suite to fix CI
c27f9fdeb79 Add warnings for big number of completions and parallelism
a86380c7813 Update CLI help text for grammar and consistency
96e7d5f1f25 Bump iscsi test server image
e0f273ffdaf use ingress-gce-glbc v1.23.1 image for CI
e213448db12 Updated kubectl explain help output
7bc449d7e0c add contextual logging to job-controller
cfbc5dc54f8 mount-utils: fix linter warnings in tests
8ced101db53 mount-utils: stop using ioutil in tests
699d118d85f mount-utils: stop using ioutil
b690450e846 mount-utils: don't reread mountinfo on newer kernels
8c79a911331 mount-utils: isMountPointMatch: simplify and speedup
404e844468b mount-utils: add isMountPointMatch test and benchmark
4bb02392793 mount-utils: IsMountPoint: fix
167252fb5e0 mount-utils: format with gofumpt
55b690ee018 kmsv2: no-op refactor priming logic into its own function
15003c609d0 kmsv2: refine probing logic to avoid slow starts
d8150b81601 kmsv2: add a sanity check to confirm that new state is always valid
8c06ca68d7d Details added in kubectl explain help
4960207b317 DRA Node E2E: test NodePrepareResource timeout
5c5f6e8fe2f DRA Node E2E: add NodePrepareResourceCalled API
673d0aaa60c DRA Node E2E: add call blocking to the Kubelet plugin APIs
a60314c47ef Make etcd component status consistent with health probes
e1735b98637 Make CA valid 1 hour in the past
5e048041e40 remove helper function for unused storage feature in pkg/proxy/util
e1aef2ac917 Bump publishing bot rules for Go 1.19 branches
9cb52a6872c Fix the flaky legacy_service_account_token_clean_up_test.
4e20a8f52bc kill all processes in a container in the event of OOM
0222e6d4ae3 Update kind details for DRA e2e
75cf25c0e7f iscsi: use dbus from the host
f7a5817bc65 e2e storage: terminate worker quietly on test completion
22de2c27d1b scheduler: improve cache_test.go - Add test name to enhance test readability - Remove redundant test tables
325205efb72 Migrated pkg/controller/endpoint to contextual logging
be14b026e33 fix the integration test
a7eb7ed5c6a refactor: simplify RunScorePlugins for readability + performance
587f992a7b2 e2e: deflake a HPA CPU test by stabilizing cpu consumption
672614b57e8 apf: refactor bootstrap ensure strategy
910630fbea2 kubelet: mark '--azure-container-registry-config' flag as deprecated
5e6ae25a33b Updates chairs, tech leads for sig cloud provider
34368884783 move luxas as an emeritus approver of test/e2e/lifecycle
e97d9803f2f add SataQiu as a test/e2e/lifecycle approver
4977189c1b0 Fix ginkgo noColor deprecation warning
e6bc945a61b Add startup probe in integration test
ea1de7517ee CHANGELOG: Update directory for v1.28.0-alpha.2 release
7ccc2317839 add test for authorizer type checking.
54cae706786 Pass the mandatory parameters to support testing on ARM64
fdc49f5257c Return deprecation warning for storageOS,PhotonPD,ScaleIO..etc
151509fb74d Remove unreachable warning on volume name dup
d73923c8ebf fix 'pod' in kubelet prober metrics
0ddaa7f7c9f Fix warnings on "duplicate" env vars
4820cc852a0 Minor fix on variable
a6f5abfb81e Updating names from webhookconversion to conversionwebhook
0fe84ff7cb1 Re-add the legacy wsstream package and deprecate it
8f3109da791 Refactor wsstream library from apiserver to apimachinery
6d4abd7e7b6 bump distroless-iptables to v0.2.5
04fa4184ed3 add support for authorizer to type checking.
e5a15c87e9d Ensure timeout test handlers don't complete before timing out.
f2a64cb91d7 fix Cronjob status.lastSuccessfulTime not populated by a manually triggered job
2f6b1d3c0fb Ensure Job sync invocations are batched by 1s periods
ed429c4388a replace node-role.kubernetes.io/master taint with node-role.kubernetes.io/control-plane for gce kubelet flags
b1da721bdd7 Update vendor with hack/update-vendor.sh
88b69cdd0e6 Fix flaky persistent volumes e2e test
d9e12db547e Bump images, versions and deps to use Go 1.20.5
ea6495e8284 Remove StartupProbe on debug with pod copy
ac15d697578 remove RetroactiveDefaultStorageClass feature gate checks
6afb363ca17 test: remove RetroactiveDefaultStorageClass feature gate
97a81a59f62 test: correct validation test error message
42722ffef02 graduate RetroactiveDefaultStorageClass feature to GA in 1.28
7f87ec9406a storage: Add MadhavJivrajani as reviewer
7ac36bd0720 test/integration: use t.Log in TestAPIServiceWaitOnStart
77cf37ee543 STRUCTURE: cmd/kube-apiserver: move admission construction back from controlplane
7961812bed8 STRUCTURE: cmd/kube-apiserver: move OpenAPI construction back from controlplane
43be9c3a0ac MOVE: cmd/kube-apiserver: move genericapiserver construction into controlplane package
9be6e7bb339 STRUCTURE: cmd/kube-apiserver/app: stratify construction with options/config/server
e6ed4c7934d CLEANUP: cmd/kube-apiserver/app: remove trivial funcs
f7d4e90b5c4 MOVE: cmd/kube-apiserver/app.createAPIExtensionsConfig -> pkg/controlplane
087fbc9304f Remove invalid merge key
4962e6eacb9 Squash detectNodeIP and nodeIPTuple together
b5db644422d Add merge map key validation to StorageVersions
58162ffd63b DRA: add node tests
b69b34bec64 Move a kube-proxy unit test to the correct file
4bee9b2b352 structured logging in proxy/ipvs/ipset
26801d6541a kube-proxy avoid race condition using LocalModeNodeCIDR
4dbece1e203 e2e-framework: remove node-role.kubernetes.io/master taint from non-blocking-taints
dddbecb47e2 prune's xml files to display only top level tests and failed sub-tests
8b0a6ed6999 re-send the shutdown signal in case the dbus restart is not done
4d0e25151db Fix SELinux contexts used in e2e tests
010343562c6 dependencies: update github.com/dustin/go-humanize v1.0.1
743e5525edb fix eviction failing test for nil feature gates assignment
6d66fbc6b67 storage: Move cacher tests to reside with the cacher code
70978e4af61 cacher: Move common testing utils to a single file
bdfb96c57d3 chore: os.SEEK_END os.SEEK_SET and use b.Logf(...) instead of b.Log(fmt.Sprintf(...))
7a80d7c839c add warning for duplicate containers[*].ports with the same port, protocol, hostPort, and hostIP
923db7bd8e0 chore: use strings.Contains instead
e9e4acb1dde k8s.io/apiserver: remove skewed completion from EtcdOptions
4d85a1f00cb storage: Implement TestWatchFromZero for cacher
2e76ac31fd8 Replace os.Setenv with testing.T.Setenv in tests
ac5ce5cbce7 Replace os.Setenv with testing.T.Setenv in tests
b274a9bf7c4 remove csidriver endpoints from pending_eligible_endpoints.yaml
5d4bf0b6f90 Promote CSIDriver e2e test to Conformance
3085b57869a Do not copy bytes for cached serializations
c009667c6c6 deprecate CephFS plugin from available in-tree drivers.
1fcfd1d5090 pkg/util/iptables: use buf.String() instead of string(buf.Bytes())
9eaa50cc829 Rename scheduler queue variables for consistency
6195f96e56e minor fix comments in netpol so its easy to understand the tests for newcomers, remove one misleading comment (#118264)
410b6023d6f scheduler: fix code style issues for pkg/scheduler
71ab7dc791f Remarks
70d3bb43e56 Adjust the algorithm for computing the pod finish time
b994e639a6b Add mininumKubelet tag into ReadWriteOncePod test
db9fcfeed29 Move cri/streaming to k8s.io/kubelet staging repository
da4a8d831b9 kubectl: use bytes.Buffer.String
8e4228a8c1f remove CSI-migration gate
a5c4fbe9791 chore(fix): test jsonpath condition parsing errors
9d3e55ec431 Support JSONPath condition without value
f520f6fd06c Add Pod Termination e2e tests to test termination grace period seconds
b4dfae25dee fix terminationGracePeriod blocked by preStop
fd92acba5a8 chore: should use buf.String() instead of string(buf.Bytes())
20866b3f85a dryrun: Don't reuse current object for conversion
f351c6d1ecc k8s.io/apiserver: apply storage object count tracker implicitly
45c9e066164 Fix errant debugging code in codegen
a51be9786ba remove enabled by default beta resources that have been removed
f4d326a1fcc verify: produce JUnit file also for pull-kubernetes-verify-strict-lint
a4ea058cc75 feature(scheduler_perf): distinguish result in scheduler_scheduling_attempt_duration_seconds metric result
322968e9b38 Update unwanted dependencies per CI instructions
2111e79f56a Update gnostic references
1993a4cb379 vendor
0b4efddae01 verify: nicer failure message rendering in Prow
dbbb21469f4 verify: pick relevant lines from verify-golangci-lint.sh as failure message
d6168bb6587 Add ephemeralcontainer to imagepolicy securityaccount admission plugin
70ff750c755 chore: io/ioutil deprecated
1ce285ad3df Revert "removed the deprecated `azureFile` in-tree storage plugin"
daa71159077 kubeadm: add deprecation message for UpgradeAddonsBeforeControlPlane feature gate
a6c7f63b188 Set the node-ips annotation correctly with CloudDualStackNodeIPs
d49c43abde5 kubeadm: add integration test to ensure that the supported etcd version is always available for the stable Kubernetes version
6d23da045fc Migrated pkg/scheduler/framework/plugins/interpodaffinity to use contextual logging
db2389ba9c8 kube-proxy: remove log warning about not using config file
15aa00fc836 Remove unused `getSeccompProfilePath` helper function
d0a64739e2c e2e dra: collect and check GRPC calls
68901de8981 Enable optionals and add tests
5c0b59891d6 Bump cel-go to v0.16.0
5b3510c0b67 Fixing gmsa-webhook install steps for Windows GMSA full tests
c539c739161 Changes to buckets and comments
35d2431b3a8 informer: fix race against Run and SetTransform/SetWatchErrorHandler
64269620597 Changes to histogram buckets
c48c4c679ad Fix ginkgo deprecation warning
5a14573258b clean: use info instead of error to log queue closed message when scheduler exit
f2a5e247ebf add pacoxu to kubeadm approvers list
705c6ff315b Review comments, added metric namespace, moved utility functions, and etc
a8ef109aca0 CHANGELOG: Update directory for v1.28.0-alpha.1 release
369e3faa4ff Moving Kubelet Credential Provider test to common so that it can be run both as Node and Cluster test
2d8c820741d move pkg/util/ipset inside pkg/proxy/ipvs
85e0d8c8b14 Revert "kubeadm: add --feature-gates flag for kubeadm upgrade node"
f3ba9353363 Consistently use proxyutil as the name for pkg/proxy/util
b3111170f8e remove Ephemeral Containers form list
64c9070f8d0 add pod containers[*].port duplicate warning
f9ae3e774d0 testutil: use contextual logging
534f5edb53c Cleanup boilerpate.py
d9e2583af16 test/e2e: replace deprecated ioutil
4b4b3b71b78 clean up dead code
4523a301c87 kubeadm: enable --feature-gates flag for kubeadm upgrade node
074900e81bd scheduler: update the scheduler interface and cache methods to use contextual logging
0951204298a kubeadm: Supports() return true for all alpha/beta/ga/deprecated
c6aaa1eab04 kubeadm: lower the log level of EtcdSupportedVersion warning message as it is a kubeadm internal warning
4e6d929580a deprecate csi migration for ceph rdb
11a40406a1f Promote Ephemeral containers e2e test to Conformance
bf116e85943 Optimize reflect checks further, save item type information
12e3d9fcc4c Implement WithAlloc variants for EachListItem and ExtractList
efc601302ad Extract List reflect optimization
b8a3bd673dc Add WithAlloc interface and stub implementations with base benchmarks
4aa5441de2e Move pkg/util/ipvs inside pkg/proxy/ipvs
0535e742241 feature(schedule_one): use heap to find the highest score node
532fe3c9653 Add kerthcet and sanposhiho as SIG scheduling approvers
8df1a5e6dcb Webhook conversion metrics
a045fedd025 Update google.golang.org/genproto
455169bd66a e2e storage: add missing error checking for WaitForVolumeAttachmentTerminated
d76043958fb Follow up from dynamic retryAfter
510287d3444 Fix the git-repo test error caused by the correct use of loop variables
926bc9bf8e5 Update podFailurePolicy comment from alpha-level to beta
7d2e1888f8a Chore: fix the example about how to use PollUntilContextTimeout
4d2ff08bfa1 e2e-framework: code cleanup for mismatched comments
15678e4a67e Optimize usage message of commands which have subcommands.
6a867eacd85 kubeadm: warning only for deprecated FG
4dfc684b342 Set kube-proxy memory request to 50Mi
5d18f471494 Improve clarity and guidance in provisioner waiting message
7a6b4a9215e dra scheduler plugin test: fix loopvar bug and "reserve" expected data
e31b2080f5a e2e framework retry on Service unavailable errors
a50549cc906 e2e rc: if the pods are running but not ready the test will fail
133eff3df49 implement LegacyServiceAccountTokenCleanUp alpha
a6003ae1e11 fix unknown field error in rs e2e
27057def059 Signature fix for registeropenapi
4373ae05f34 Update vendor
72e4c9a82ac kubeadm: add the "config validate" subcommand
f4891842194 Delete CRDs created during field validation tests.
2ea6896f90c Add warning log callback in client-go loading rules (#117233)
485d1631cd3 Remove Azure file in-tree storage plugin
2eed9b4143a Should get ENABLE_CLIENT_GO_WATCH_LIST_ALPHA when new reflector
e2ed8f8c3ca style: correct the sentence
08139044040 Fix: Restricted profile comply with PSS (#117543)
c68f8586580 proxy/ipvs: github user name change: daman1807 -> aroradaman
05b3beb7f02 Create e2e test for CSIDriver endpoints
d459b4429f4 integration: remove special verbosity for garbagecollector and graph_builder
931cc96b8d4 remote windows condition when #116693 is merged
0bff705acd8 Preserve code blocks in templates.Normalizer (#118029)
7470a94f5a9 add some log for debuging
6232ac734a0 Merge duplicated Linux/Windows kube-proxy setup code
08ce5805769 Add ProxyServer.platformSetup
e0b7f31ce6e use standard base image in dra dev
149f4878a70 Simplify DeferCleanup.
dbb6d25f13b e2e: apply timeout for CSI Storage Capacity test only to node
1c05cf1d516 kube-scheduler: NewFramework function to pass the context parameter
1b206399f6a fix using stale binaries in local-up-cluster
ece68cf8337 Fix update-vendor.sh logging
cba8c1f5e2e Fixing windows memory allocation e2e tests after a refactor
96d48de9b97 add OWNERS for cmd/prune-junit-xml
86a258b13a2 kmsv2: ignore cache key expiration on reads
89439b570fc test/e2e: use agnhost latest version in the manifest
b30720fc9f0 Add test for starting kubelet with a CSI volume mounted
ad9e264c3cc test/e2e: Use json.NewSerializerWithOptions in place of json/yaml newSerializers.
048938f1d85 hpa: cleanup `currentReplicas` code
0f5535ea259 registry/core/service: remove incorrect comments
2db577a560c scheduler-perf: inject "benchmark" as name into JSON result filename
0789bbe9f7a Update k8s.po
b6364dddfe6 update webhook test to go 1.21
d8db9640fab kubeadm: remove function pointer comparison in phase test
2658a2b627f Make connection lost retryable in webhook
ed26fcf5b87 cleanup useless null pointer check about nodeInfo.Node() from snapshot for in-tree plugins
e21cf9a54e9 Setup e2e_node to support testing on ARM64
ec8d94f2057 Grab logs from all the containers when DNS related tests fail
182cd425d3b graduate LegacyServiceAccountTokenTracking to GA
337728b0255 Improve backoff policy in reflector.
0fe27a06f99 Cleanup the Job controller handling of terminating pods
c74790e266a remove redundunt type conversion, unused variable...etc
07c94553608 fix apiserver InstallAPIGroups slices out of range
aa11cc69696 Mark grpc-gateway v1 as an unwanted dependency
19ae2de19cb kubeadm: speedup init by 0s or 20s
e4102d5e300 Test APIService safe handling at startup
3be3997193a Fix waiting for CRD sync at server start
71ec9df5b61 update image tags in manifests to reflect the version listed in the source
a10ff53d8e6 Reword the event message to read better for a single secret
b2eae2f92e9 Support podman for building release images
6b4251c0fdf Remove statefulset from logcheck.conf
3f1d8e7aeb4 Apply to use contextual logging for all loggers in statefulSet
d9b941b7827 Remove undesired verbose fields from log
bea71a3e4ee remove unused pv informer from expand_controller
4c9887e3ebd Updating the nodeAffinity of gated pods having nil affinity should be allowed
a0f14c1c5ea CHANGELOG: Update directory for v1.25.10 release
bab8002fb38 CHANGELOG: Update directory for v1.24.14 release
80b9c853613 belated cleanup of some kube-proxy stuff for old versions
e553fe1fff0 CHANGELOG: Update directory for v1.27.2 release
c9e4de90dbe CHANGELOG: Update directory for v1.26.5 release
526d45416fb update err status code check in transformation metrics
5a75a03a774 Improve warning message
b76ef2e095f fix: move to `dl.k8s.io` from `kubernetes-release` bucket
fc4fb004cf6 add reviewers and labels to yamlfmt
93462377120 Update docker/containerd/runc versions and capture more logs
885f3d7a7df Sort and limit to the describers the return (string, error)
9e9a6cde4b8 test/integration/scheduler: fix data races
b035c373db8 build latest sample-api-server for test/e2e
bafae5c0764 rename err to lookupErr
8b9cbe62025 fix false positive kubectl plugin unit tests
b9950b5192d Drop zeitgeist from tools go.mod
36f0caf7ecd remove GlusterFS references from test/e2e/* comments/descriptions
d83c3ce7ca8 make rbd and iscsi test images in parity with the test code
9de2846c72c remove glusterdynamic provisioner images reference from tests
763e7923fb9 e2e: replace ubuntu-slim with agnhost in hpa cm noExporterDeployment
261de704c25 kubeadm: fix a bug where the static pod changes detection logic is inconsistent with kubelet
666be79d670 legacy names of volume plugins have been gone a LONG time
8b4840aa374 clean up unsupport etcd version
e0ebac6c9ca drop redundant NArg check when looping Args
82c40e3697e drop redundant NArg check when looping Args
829bcea7634 remove vestigial BUILD file
0616d15712b Fix perf-test by increasing the error margin
46ed70ecac5 Bump runc to v1.1.7
51d79c4d6b0 e2e: use gomega.Expect instead of deprecated framework.Expect*
1daf74d25c4 Initialize data if nil
b81cfb9cb8c Update vendor
15c5713015e managedfields: Remove gvk from SkipNonApplied
b52e57c589a managedfields: Improve/strengthen version checking for Apply
559d12fcce0 managedfields: Create NewFakeFieldManager
45853e20ae5 openapi: Create client -> TypeConverter function
45603efecb7 Create e2e test for PodEphemeralcontainers endpoints
ebaf49dbd70 Export DefaultServerUrlFor utility function
5519b89a28e Validate lock identity
e3eb4bd0c56 updating dependencies.yaml for etcd v3.5.9 version
c99cf53a108 e2e: deflake hpa e2e custom metrics tests
247ea7fc780 use upstream etcd github path instead of redirecting one
6616e1f2385 update etcd version in install.sh to 3.5.9
0e456dcf866 Clarify localhost nodeport comments/errors
a744a186b67 Rename GetNodeAddresses to GetNodeIPs, return net.IP
2ca215fd994 Add NodePortAddresses.MatchAll()
d6e488b998e Changing annotate PrintFlags from annotate to annotated
d8e82b1417c e2e: use gomega.Expect instead of framework.ExpectEqual in windows/*
8c6c1e53194 plugin_evaluation_total metric support preScore/score
3680a5230c3 Bump docker/distribution to 2.8.2
3ac74973610 Chore: cleanup in interpodaffinity
073b4cf66ad test/e2e/dra: fix kind cluster creation
3b69fa2fa54 dependencies: update github.com/mitchellh/go-wordwrap v1.0.1
19ae103e829 emit warning on deprecated annotation volume.beta.kubernetes.io/storage-class
517c5b75c5d Update unwanted deps
d6d1dbdd82a Update kube-openapi, drop mapstructure
a52dcd0d9f3 Add DelayCacheUntilActive option to start informers after leader election
7c554ea1d91 Regenerate discovery fixtures
2ab6fd3590b Capture discovery API output in test fixtures
3867569ae27 codegen
0819d342040 using parsers in applyDefaultImageTag
7da7468a3fc cleanup: duplicate request_test TestRequestAbsPathPreservesTrailingSlash
f0f92853ad8 Add api-machinery TL owners permissions for jpbetz
e4dd6f68dc8 remove CSIStorageCapacity featuregate
9ac657bb94e Make NodePortAddresses explicitly IP-family-specific
f7bb9a9a0a7 Remove a mostly-unused variable in the ipvs proxy
1ca8f84eede Scheduler: Pass the supported nodeSelectorOperators to the field.NotSupported
d85b91f343b scheduler-perf: measure workload runtime and relabel workloads
aa405c8aac6 Allow runtimes to provide additional context on CRI pull errors
83fb5a50bc9 dependencies: bump k8s.io/utils
daebf1c735d Simplify plugin resolution check function
f562375c8a6 add changelog for kube-addon-manager v9.1.7
be4c4a51ea2 Update pending_eligible_endpoints.yaml
d34d4755ae2 Promote APIResources e2e test to Conformance
6e2ea32fc89 feature(DynamicResources): return Skip in PreFilter
a0133b7cc47 proxy/ipvs: added daman1807 as reviewer
dcefc42b35a update vendor dependencies for the change
ae749238786 etcd depdencies are updated to v3.5.9
13cef6a7549 cleanup unused variables for v1beta2 component config
815578295ae Revert "support short name for flowschema and prioritylevelconfiguration"
72202f9a007 Revert "add shortnames for mutatingwebhookconfigurations and validatingwebhookconfigurations"
45836971f27 cli: replace intstr.FromInt with intstr.FromInt32
8580c116d5c fix: use dl.k8s.io, not kubernetes-release bucket
ef9f8d7c0c8 kubeadm: Remove leading zeros from etcd member ID in log messages
ff4c6916ec7 kubeadm: Fix log message when etcd member is added as learner
196e2f041b1 Update the cgroups v2 toleration in local-up-cluster
7248b9263f0 Fix comments on InformerFor
6ac1bae2815 test: Improve debug output of init container tests
1f16d711857 kubelet: Rename PodManager DeletePod to RemovePod
166256f73e8 kubelet: Reduce the interface pod.Manager consumers accept
8bd94dfa762 kubelet: Organize and document kubelet pod-related members
bb568844b67 kubelet: Separate the MirrorClient from the PodManager
80b1aca580b kubelet: Remove dispatchWork and inline calls to UpdatePod
e7207c85467 kubelet: Merge orphaned mirror pod names into GetPodsAndMirrorPods
f8086f2dac1 kubelet: Convert IsMirrorOf to a function
02960a8253e kubelet: Remove unused mirrorPodFunc in eviction
1168b118750 Stabilize local-up-cluster in our CI
3dc4eea8896 proxy/service_health: release read lock early
655f2f74010 replace build to build.sh
cc1251123ba use wait to avoid blocking the SIGTERM handler
808098c4c69 proxy/ipvs: healthzServer for instantiating the proxier
4b50c4bb016 Update --image-gc-low-threshold option's description
3da79e2850d OpenAPI V3 invalid document checks
cbe825b2b6c ginkgo update to v2.9.4 and gomega to 1.27.6
feb63fb0285 e2e_kubeadm: stop using deprecated framework.ExpectEqual
7681135f1b1 etcd: Build image 3.5.9-0
7a4787ade10 openconsensus update to v0.24.0
82d1e356de4 deps: go-gcfg update to the v1.2.3
f03b5cdc083 update containerd/ttrpc to v1.2.2
dd49af86b7b [UT] add ut for pkg/client/conditions
f7948c6e2e4 use kubectl v1.27.1 in cluster addon manager
eb1483fe64d user --prune-allowlist in kube-addons.sh
20602c819be e2e framework: remove dependency on k8s.io/kubernetes/pkg/api/v1/pod
2e2afc7fd27 Job: Use generic Set in validation
1ffe3f467e8 lavalamp is taking a long break
1ea17254bf0 hack/tools: bump logcheck to v0.5.0
3fa55d469c7 fix a bug where the AttachedVolume is not printed correctly in the log
8c82855467b When expecting pods count only active ones
de882f5193b Job: Replace deprecated pointer utils with supported ones
8f11f5bb2b5 DRA: use containerd 1.7 in kind image
123845da886 Log a warning if a ImagePullSecrets does not exist
3f3e1d507d0 add new metrics for the internal client-go transport generator
e7c679c362c cidrset, multicidrset: directly use getIndexForIP method
fe728996ca8 scheduler test: call frameworkruntime.WithLogger function for contextual logging
b4563925678 Migrated `pkg/scheduler/framework/runtime` to use contextual logging
bfb4f8b7071 etcd version monitor build go version update to 1.19.9
0ae902fca4c update golang version of etcd build to 1.19.9
3b634de6ffc test/e2e/dra: update README
5fdeaa8e42c update for feedback
6f23c774085 QueryParamVerifier falls back on invalid v3 document
d5f4b9634c6 DRA: fix image build on Mac
569695b0226 e2e/network: setting --max-time for curl
5fd5768ef32 kubeadm: Make etcd member removal idempotent
164113bc1c3 fix a bug where the KubeletConfiguration is not printed correctly in the log
a5575425b03 add no resources found message to rollout-status command (#117884)
c0611b6bb33 Return Skip in InterPodAffinity#PreScore under specific conditions
11f1d241654 unit tests: Fixes kubelet util unit tests for Windows
3a394bbeada fix:translations zh_CN LC_MESSAGES k8s.po error
4634073d0b9 Use getter function for plugin subcommand resolution
2c03afac4c8 apimachinery/util: stop using deprecated io/ioutil
e3d5feb76c4 fix HPA plain metric calculate
6607834207a Use the same report files as before
9150e6b55a1 s/of referencedFrom/from referenceFrom/
4bbf611773d Retool validation for pod HostNetwork ports
ec3379a717e Do hostNet Pod-ports -> hostPorts in Pod defaults
ef796dca9bb Simpler openapi gen - subprojects do themselves
93b2845bec7 Codegen: subprojects openapi
4909dbd0d7f Deprecate generate*groups.sh -> kube_codegen.sh
c3971002c9d MinimizeIPTablesRestore to GA
8f229057484 [refactor] refactoring flags and options in Expose cmd
82e3fa0930e fix fd leaks and failed file removing for main pkg and cmd
5289a7b029f fix fd leaks and failed file removing for test directory
b94c6daa0b7 fix fd leaks and failed file removing for pkg kubectl and pod-security-admission
982d2966cd3 fix fd leaks and failed file removing for pkg controller-manager and apiserver
73aeed8766c fix fd leaks and failed file removing for pkg client-go
f49cc5eb113 add remove_file in client-go util directory
c8737346db4 Export GOMAXPROCS environment variable
e865b30abd0 update serial number to a valid non-zero number in ca certificate (#117791)
308ab380d7c Add unit testcases of refMap.
23ac0fdaa52 APF: Dynamically compute retry-after based on history
99ebc8d9f82 Tweak annotating kubemark nodes on startup
aab02d52f4d Fix make etcd image failed
91570a36614 promote ServiceNodePortStaticSubrange to beta
e79daae6823 Chore: clearify need update test cases
fb4d0150b96 Convert apiextensions-apiserver to new codegen
29913a89735 Convert code-generator/examples to new codegen
643bf1b0362 Convert kube-aggregator to new codegen
1e0b7aab756 Convert metrics to new codegen
e368f1b25bf Convert sample-controller to new codegen
d0e5adb58bc Add a new way for subprojects to do codegen
05b3449346e kubeadm: Add etcd client unit tests
fc1b2287798 kubeadm: Use internal etcd client through an interface
e740f8340ee Introduce CEL EnvSets for managing safe rollout of new CEL features, libraries and expression variables
235c261196e Job: Fix a misspelling
b4560f9e573 kubeadm: fix a bug where file copy(backup) could not be executed correctly on Windows platform during upgrade
f2de1a00b8f storage/etcd: skip SendInitialEvents if the request is backward compatible
bbf5c03dd80 Add NodeLogQuery e2e tests
ddb8c8a38b4 remove ServiceInternalTrafficPolicy e2e feature tag
16fecf3e761 Refactor APF handler in preparation for dynamic retryAfter
d3237b72587 unittests: Fixes unit tests for Windows (part 7)
ccb4ca89549 record podUID in refMap in watchBasedManager
e4340f0d9bd Job: Use generic Set in controller
22d0aa1d04a remove DevicePlugins featuregate
27cdddeaf16 update Feature:KubeletCredentialProviders] e2e test name
2ebc0cc0257 remove unwantedReferences
57969c1b52c Fix etcd3 config changed
4e24237f3bc e2e services: retry if healthcheck nodeport is not avaioable
e560df770e3 respect local GOPROXY setting in build/common.sh
c56839c0a1e etcd: Update version to 3.5.8
64f2fe2357d kubeadm: fix crictl pull using wrong flag, use -i and -r
936265e8707 Add podUID in AddReference and DeleteReference
cd51c1803e2 Add new partial/full sync time metrics for iptables kube-proxy
a862a5f2d24 Use the right executable ss/netstat in log message
ae08fe1e199 ProbeTerminationGracePeriod promote to GA
2cb215e1091 Add all describers to the exported DefaultObjectDescriber
5ea40d14fd9 Added e2e_node test for sigkilled pods exit code and exit reason check
3e57a0bd138 Add go.work and go.work.sum to .gitignore
008576da073 Improve and simplify maintenance of APF bootstrap objects
194ac957ad3 make resize of hollow objects more verbose in start-kubemark
c3e77bf21cd Update podFailurePolicy comments from alpha-level to beta
4fa7e444805 Remove gcp cloud-provider checks for kubelet version >= 1.7.2
1c45bacfb0e mount-utils: fix flaky test 'TestFormat'
6a5cf99aad1 pkg/proxy: human-readable messages
c2c8b8d1783 pkg/proxy: using generic sets
359bcec0e09 benchmark test to evaluate the overhead of podMatchesScopeFunc
edd032e22b7 Fix incorrect calculation for ResourceQuota with PriorityClass as its scope
e807a6aec57 Disable NewVolumeManagerReconstruction feature gate
0c9f55588c5 Simplify creation of default KubeProxyConfiguration
ec2cc36404e e2e: disable jig.ExternalIPs
b849ff57b85 e2e reasonable grace termination period timeout
791573ddb60 promote ProxyTerminatingEndpoints to GA
b249b4ca9bb Promote ExpandedDNSConfig feature to the GA stage
5aca41af50f [local-up-cluster] Use the kubectl we built
8524d21bf48 Bump Ginkgo Poll Progress parameters to a sane level
034528a9f04 scheduler perf: add DynamicResourceAllocation test cases
1c52fb38759 Update publishing-bot rules for release branches to Go 1.19.9
19f7cb23c8c e2e agnhost functionality to RST TCP connections
63b69dd50ce Add support for CRI `ErrSignatureValidationFailed`
859359ad6ae Fix strict linting
a7035f54595 Pass Context to StartTestServer
2d866ec2fc8 Teardown only scheduler in integration tests
8969fdd2f51 QueryParamVerifierV3 resilient to minimal OpenAPI V3 documents
cede96336a8 Depend on k8s.io/utils cpuset
9f46cbc6fa4 Update k8s.io/utils version to v0.0.0-20230313181309-38a27ef9d749
10a869fc752 Remove duplicated config fields from ProxyServer
1f7c07f3553 scheduler: remove deprecated v1beta2 KubeSchedulerConfiguration
a3848714f55 dependencies: update gh/Azure/go-autorest to latest version
17c17da97b6 e2e_node: move getSampleDevicePluginPod to device_plugin_test.go
c53cc4fe0db Update distroless-iptables to v0.2.4
c4575c34382 Fix up detect-local-mode validation
3734fe7ab1d Remove some useless error checks
19885264f3d [go] Bump images, dependencies and versions to go 1.20.4
d82684e691d Add check to skip PodTopologySpread PreFilter if no constraints are specified
d22b9310e6e Allow override of prerelease/buildID portions of version at runtime
36b760a9317 upgrade etcd deps to v3.5.8
7c5573d326d Fix cmd, integration, and conformance tests
69eccd41b89 endpointslice: reduce visibility of vars/funcs
933b665c18c Upgrades spf13/cobra to 1.7.0
3653b21e6ba Move glusterfs 1.25 deprecation notice to the deprecation section.
9d19c207d22 fix: fixes flake in TestKMSv2Healthz
561548e86c4 unit tests: Fixes kuberuntime unittests for Windows
5f489a33277 feat: rename PodHasNetwork to PodReadyToStartContainers
a40810a2d9d Add comment about removing the feature gate
e51e5962d5a Use early return pattern to avoid nested conditions
e1e38148bb2 Add DisruptionTarget condition when preempting for critical pod
7be3f8e43f7 Remove old metric scheduler_goroutines
e7396e35513 remove ability to re-enable serving deprecated versions of the runtimeclasses kind
d96f83f02f9 windows-tests: Update connectivity check util function
e496085bd34 Kube-proxy/ipvs: accept access to healthCheckNodePort on LbIP
d257d5dfdc4 Trigger re-sync on any change to providerID
40de26dcff8 KEP-3325: Promote SelfSubjectReview to GA
d9524379210 Fix flaky HPA e2e tests by not failing on context cancelled (#117669)
5fff8cae749 dependencies: klog v2.100.1
d55b67b3490 Clean up brace whitespace in **/validation_test.go
2ad2c15c9ca Update copyright year to 2023
b464d084278 Remove custom fake svc lister in favor of regular indexer
b899ae48477 remove genericfeatures.DryRun in 1.28
c6bdde8051c Create e2e test for APIResources endpoints
ab9c8eb1e8d Removing WindowsHostProcessContainers feature-gate
077cc20f8af fixup patcher test to include field manager
ad5cda4d219 remove checks for fieldmanager from handlers
4721ec7519c include apiextensions types in apiextensions generated openapi
08e756342c2 fix scale not being given gvk in CRD openapi schemas
ffb9c076d77 add OpenAPIV3 config to tests and server options
c2177dca5f6 add error for attempting to initialize field manager with nil typeconverter
94909af68ae supply deduced typeconverter to apiserver tests
302daa889c5 Throw error if OpenAPIV3 config is not provided
1b766839677 filter out directives before taking patch value as-is
6de6cd0a658 add integration test for nested $patch in SMP
e00a9c3a0b1 add subtests
ffeec1f4d44 Update compatibility data test
ec997d5433a Generated files for NetworkPolicyStatus removal
bff8a6cd9f3 Remove withdrawn feature NetworkPolicyStatus
0fcf42f3211 Move test double queue to test file and unexport
208af2d1d83 Localize SpyWorkQueue to cloud-provider for now
a15013ec8b1 Document RetryError properly
73bc9861d25 Improve error logging in processNextServiceItem
18e978a89df Improve RetryError GoDocs
de34540248a Update kube-openapi to fix race
d0677f528c0 Add json tag
69bc6855568 node: podresources: graduate to GA
04ad946e8fb kubelet dra: lock before getting claimInfo CDIDevices and annotations fields
aaa30439bdd reduce util pkg for testing in tempdir.
4c83aae2cc7 kubeadm: replace intstr.FromInt with intstr.FromInt32
026e7c7cb37 registry: replace intstr.FromInt with intstr.FromInt32
0ee9f1b7a75 kubelet: replace intstr.FromInt with intstr.FromInt32
1c4b97ea272 network: replace intstr.FromInt with intstr.FromInt32
5bfe738af2e apps: replace intstr.FromInt with intstr.FromInt32
94410ee8078 api-machinery: replace intstr.FromInt with intstr.FromInt32
4911e9de4a7 api: replace intstr.FromInt with intstr.FromInt32
79266560383 kubelet: Implement support for Windows podAndContainerStatsFromCRI
14952cef5b7 kubelet: Move Linux stats to a Linux specific file
fc8b4657c18 Add tests
ea4ce5dc28e Alias api/errors instead of stdlib errors
a179203bdba Support specifying custom LB retry period from cloud provider
da922f0af67 Remove ability to re-enable serving deprecated discoveryv1beta1 APIs
e28f3de6568 Revert "proxy startup-time config handling cleanup"
d94c733ee2b Use absolute path instead requestURI in openapiv3 discovery (#117495)
34d3c7520be update Deps gopkg.in/warnings.v0 v0.1.1 to v0.1.2
944a4cd3114 Remove ability to re-enable serving deprecated autoscalingapiv2beta APIs
671a3f43fdf Correct the changelog for GlusterFS removal in 1.26.
859690d72a4 Added support for image credential provider for windows and arm64 on gce
28c573358b0 test for init container restarts
d727df1741e node: device-plugin: e2e: Additional test cases
3dbb741c976 node: device-plugin: add node reboot test scenario
a26f4d855d5 node: device-plugin: e2e: Capture pod admission failure
96975737033 node: device-mgr: e2e: adapt to sample device plugin refactoring
282a6a80b92 node: device-mgr: e2e: Update the e2e test to reproduce issue:109595
d509e79837d node: device-mgr: e2e: Implement End to end test
dc1a5926321 node: device-mgr: Handle recovery by checking if healthy devices exist
53c9103a1de Set ENABLE_AUTH_PROVIDER_GCP to true in gce tests
2572a430344 kubeadm: fix unit test failure on node with multiple cri endpoints
f81b49d8739 Remove ability to re-enable serving deprecated eventv1beta1 APIs
48d01d6d9b0 Remove ability to re-enable serving deprecated batchapiv1beta1 APIs
c6f4bee98dd kubeadm: add deprecated FG UpgradeAddonsBeforeControlPlane
4d9261c7567 Fix LocationOfOrigin shows up unexpectedly
76fe41a996e chore: update cgroups and ttrpc versions
0dbeff4b6e6 remove GA feature gates in 1.28 about network
4e7b6e8ba49 remove DelegateFSGroupToCSIDriver featuregate
fc0d2cd32f5 added init containers tests to simplify the sidecar KEP large PR
258c4c4251e Remove duplicated config fields from ProxyServer
9d4f10f5d28 Fix up detect-local-mode validation
5ece6541b80 proxy/ipvs: don't bind nodeips to the dummy device
5310305098a proxy/ipvs: add a GetAllLocalAddressesExcept() function
f24d1d2c950 use go 1.19.x for etcd version monitor compilation
91ee58050f8 wait: fix PollUntilContextTimeout godoc comment
b3e0bc88640 scheduler_perf: let the test decide which informers are needed
969d28b12b7 scheduler_perf: refactor common code
91df71be549 correct etcd base image reference in the doc
6b40cd8cd37 update test/conformance/image version to v1.4.2
6c8be35fa86 update the etcd base image to v1.4.2
1eca720dcc7 Refactor some watchcache tests
7f370d651dd Migrated `pkg/scheduler/framework/plugins/podtopologyspread` to contextual logging
54e6f609ceb Migrated `pkg/scheduler/framework/plugins/noderesources` to contextual logging
152c1a02723 Chore: Replace re-initialized variables with create new ones
37a9260d5c5 Migrate pkg/scheduler/framework/plugins/defaultpreemption/default_preemption.go to use contextual logging
eeb13993832 Migrated `pkg/scheduler/framework/preemption` to use contextual logging
550d4c00746 scheduler_perf: support test case selection via labels
79de8879cbe OWNERS_ALIASES: add self to sig-node-reviewers
217196c59fa Add ROX storage tests (#114628)
6a4cf352b8b remove tracking annotation from validation and webhooks
2af662b05fe Refactors discovery content-type and helper functions
170d5ef9fa0 code cleanup for kubeadm
902c4ecc90f Add jpbetz to approvers of apiextensions-apiserver
0a582431593 node: device-plugin: e2e: Add test case for kubelet restart
09100804722 node: device-plugin: e2e: Provide sleep intervals via constants
4a0f7c791fe node: device-plugin: e2e: Update test description to make it explicit
fd459beeff6 node: device-plugin: e2e: Isolate test to pod restart scenario
5ab4ba62052 node: device-plugin: e2e: Annotate device check with error message
5c4f397361f node: device-plugins: e2e: s/devLen/expectedSampleDevsAmount
0aa6a5726a6 node: device-plugins: e2e: Refactor parse log to return string and error
8ed861889aa feat(NodeVolumeLimits): return Skip in PreFilter
28519e240ed Fix scheduler performance regression after adding plugin metrics
c96188a38b5 remove seccomp profile path
96eaed9980d cluster/gce: update cloud-controller-manager to use go-runner
0d27d3cfffc cluster/gce: update cloud-provider-gcp image to latest tagged version
4cdfe600e04 Fix image pull error type `ErrRegistryUnavailable`
6da128bdb3e dependencies: go.uber.org/atomic v1.10.0
87230578802 dependencies: update go.uber.org/multierr v1.11.0
f7ce6f834a1 Chore: add ipfamilies tweak functions
78b8af9fed3 scheduler_perf: update throughputCollector
a325fdbbe5d update Deps gopkg.in/natefinch/lumberjack.v2 v2.0.0 to v2.2.1
da3e7e37816 stop watcher when error occurs
018564b8cfc change the seccompProfile field description to match the imlpementation
6d8a0100f70 Fix typo in kubectl api-resources help text for --categories flag
3c45b61b643 [KCCM]: have providerID trigger re-sync, but not be required for nodes
a4f98e4c1e8 Update staging/src/k8s.io/apiserver/pkg/cel/common/values.go
e115d5234c2 Fix bug where CEL listOfString.join() results in unexpected error
3229deda37b register missing metrics
24e68b3c6ac use client-go metrics not only rest_client
2bd42061b6e Remove support for EndpointsLeases and ConfigMapsLeases lock from leader election
3f247e59edf Refactor cacher.ListerWatcher code structure
892ebf2d253 Ensure version "*" is passed instead of "" for all authz checks (#116937)
73d9a9cfa06 kubelet/kuberuntime: Fix flaky test 'TestGeneratePodSandboxConfig'
e3d84aa93cd kubeadm: add the experimental (alpha) feature gate UpgradeAddonsAfterControlPlane that supports upgrade coredns and kube-proxy addons after all the control plane instances have been upgraded
78e6cb1cccb intstr: add FromInt32, deprecate FromInt
88e2c344390 Enable a bunch of generic storage tests for watchcache.
860329c04b5 drop v1.25.0 API testdata
440d5910f7d Chore: add app protocol tweak function
06993afdd6a Chore: cleanup whitespaces
3d8f7233da9 Chore: remove impossible and redunant cases
4a6bc66e40f updating microsft/go-winio package to latest version
60d25c3ed77 improve remotecommand testing fuzzing the data stream
d76f5dae67c Add a comment to roleRef to document that it is immutable
959c90c1d9a Chore: add deletion timestamp tweak function
4169d7d0283 golangci-lint: allow exceptions for Go naming convention
4f8eba2a0be Chore: add finalizers tweak function
28db34a231f Chore: add load balancer tweak function
1c465c51e80 Chore: add service port tweak function
0cc7369196b Chore: add LBIngress tweak function
23c242770fe Chore: add etp tweak function
2f6bc661dc3 Chore: rewrite newService function
f9bab9a60b0 add --concurrent-cron-job-syncs flag
bc00f5c071f Update cri-tools to v1.27.0
c3384191ea6 remove validation GCE-ism
28ac914bc54 Remove repeated info
e0d5c4aa93e Move info where its most relevant
0a508ad8067 Update `kubectl edit` documentation
d0412928961 Add v1.27.0 API testdata
7514d8b3339 add shortnames for mutatingwebhookconfigurations and validatingwebhookconfigurations
95fea2f2bff add test case for merging a patch against empty list
3469bb05db7 kubeadm: fix unit test panic for TestNewResetData
ed37e6986b6 uncomment exit trap to cleanup tmpdir
63d44fdde58 retain KUBE_GOPATH on recursive kube::golang
4d736a0435e cleanup update-mocks.sh
726992f9db9 call kube::golang::setup_env before setting up worktree
17db22d0558 Fix potential mutex usage bug
39e52449f9f remove nodes resource from CoreDNS RBAC manifest
7a14c5ad6dd ensure we can remove _output
11f3ef1ed7d drop linux/arm build warning, now that 1.27 is released, this is covered by the release notes
104c208d0fb add Authentication tracking request/error counts and latency metrics
65f3454c1d9 fix undefined convertion
8efeb5afcfd Dependencies Update google.golang.org/protobuf v1.28.1 to v1.30.0
6f90c536330 Dependencies Update golang.org/x/tools v0.7.0 to v0.8.0
5c584269a79 avoid volume copy in checkAttachableInlineVolume
2bbd07c0192 remove defunct interactive tutorial
1d15354ccb5 update gofuzz dependency
2cd23c8b17c Update go-logr dependencies
062f146d325 Replace the deprecated ioutil method in the pkg/credentialprovider directory
be6709044ad etcd: Build image 3.5.8-0
6db4cbfde7b cacher: do not popExpiredWatchers when the cacher hasn't dispatched any event
eab66a687b2 cacher avoid double locking (#117410)
a02e94ae2b4 e2e: fix flaky test 'should contain OpenAPI V3 for Aggregated APIServer'
0c54d9af6f2 Fix stomping os env in kubectl e2e tests
766f6c3ad41 Include stderr in cred provider plugin errors
eaba1703b1b enhancemanet: reduce calculation calls
a8b808ee6ca Replace the deprecated ioutil methods in the test directory
a959785f964 dependencies: udpate coredns/caddy to v1.1.1
0297329795e Refactor watch bookmark tests to allow sharing between etcd3 and watchcache
45e836a968a Generalize few watch tests from cacher
f3b9e0ddc9b Replace os.Setenv with testing.T.Setenv in tests
7cbbf47f5ea Cleanup environment in tests that call os.Unsetenv
d38ac7e7c6b Replace os.Setenv with testing.T.Setenv in tests
e8d3a4a105c Cleanup environment in tests that call os.Unsetenv
2181eea4843 Replace os.Setenv with testing.T.Setenv in tests
cf125a35611 Replace os.Setenv with testing.T.Setenv in tests
b9ef1603223 Cleanup environment in tests that call os.Unsetenv
240fccd7668 Replace os.Setenv with testing.T.Setenv in tests
89467ad3e9b Replace os.Setenv with testing.T.Setenv in tests
fc643d2e40c Replace os.Setenv with testing.T.Setenv in tests
29b6c54d158 dependencies: update github.com/cenkalti/backoff/v4 to v4.2.1
0a8343352b4 Document gomega.Equal() instead of gomega.BeEqual()
d231d6022b0 Remove endpoints (old leader election) related RBAC from kube-controller-manager ClusterRole
e340325024d Fix nil pointer in test AfterEach for volumeperf.go
453f81d1cae kubelet: pass context to VolumeManager.WaitFor*
4de0d2c6f8f use generic set in storage/validation
3ac77335303 Add `saschagrunert` to `sig-node-reviewers`
7fb88eec73c support fieldSelector spec.hostNetwork
4d73864026c Dependencies Update golang.org/x/timet 90d013bbcef8 to v0.3.0
ff9ebfa90de e2e framework: control k/k/pkg imports
ee99ca25ee6 Remove unnecessary if judgments
1359ebcc5b0 fix doc mismatch
a6339e2702f proxy/conntrack: using common conntrack cleaning function in proxiers
399f09dde05 proxy/conntrack: common function for cleaning stale conntrack entries
efb05630946 proxy/conntrack: moved pkg/util/conntrack -> pkg/proxy/conntrack
37ea51fd567 Improve the performance of map usage
9c0153aef9e KCCM: add providerID predicate to service controller
d3c103edce7 Re-work logic in shouldSyncUpdatedNode
dc4f6f9da6a e2e framework: remove last dependency to k/k/pkg/util
40521fe3601 e2e framework: remove last dependency to k/k/pkg/kubelet
030debc1990 changelog: fix formatting issue with v1.27 change log
4e8c5364bc6 CHANGELOG: Update directory for v1.27.1 release
1b93abb9bac Move kubelet config API to e2e_node
4e928c96b5e skip checks when topologyPolicyName is PolicyNone
71a989e5e9c Fix CHANGELOG-1.27 correct
06dc3d00fcc e2e/apimachinery: Add an e2e test for the API Streaming feature
8d19c0002bb Add node check to vSphere cloud provider
3b7c14e8cfb Remove unnecessary int type conversion
36e6e759182 dependencies: udpate seccomp/libseccomp-golang to v0.10.0
5bce18c98ec dependencies: update go-semver to v0.3.1
d7270f4ba72 dependencies: update go-oidc to v2.2.1
b0d89a7807e dependencies: update github.com/gofrs/uuid v4.4.0
1595d7f52d7 dependencies: update go-systemd to v22.5.0
9cfdf989eda dependencies: update gh/fvbommel/v1.1.0
6b70710b0d1 dependencies: xlab/treeprint v1.2.0
6320b6843a2 dependencies: update netns to v0.0.4
9e2bb40e158 fix typo annotation key notes.
becf73a82b1 add invaild scope test case
c4e1b01416e replace spew methods with dump methods
a96358ac0fa Remove some useless error checks
867be8fc3e2 get rid of e2e/framework -> k/k/pkg/kubelet dependency
2bb35e08f4b Clarify kubelet/kube-proxy iptables rule skew constraints
6d13cad2cf5 dependencies: update gh/Azure/auto-test/{adal,validation}
432a3016a49 Revert "Merge pull request #113151 from ncdc/refactor-crd-conversion"
9c5a66e2080 Revert "CR conversion: protect from converter input edits"
ed0124855aa add log includes pod preemption details
0979d554435 unit tests: Skip flaky tests on Windows (part 2)
2d06fad5163 dependencies: azure-sdk-for-go to v55->v68
625c3025057 change pv recycler scrub cmd to find -delete
c042837a761 truncate the precision at a millisecond for image pull event message
804d9f47c9f kube-aggregator: correctly use client-go TLS cache with custom dialer
db5d74935ee optimize evict sandbox logic
ccf7ddacfce replace ioutil with os, update doc
5668399a87c Codegen: use openapi-gen via k8s.io/code-generator
b23ab389b4f Add SIG ownership to controller/nodelifecycle
375e3cf869b CHANGELOG: Update directory for v1.24.13 release
f7295ac5e08 CHANGELOG: Update directory for v1.25.9 release
d567d61aa56 Fix a data race in TopologyCache
a62563f1305 Fix TopologyAwareHint not working when zone label is added after Node creation
83a1774df2b CHANGELOG: Update directory for v1.26.4 release
a7a8cd6e5de Codegen: subprojects: nuke existing files
bc302fa4144 Replace uses of ObjectReflectDiff with cmp.Diff
9627c50ef37 Replace uses of ObjectGoPrintDiff with cmp.Diff
29c0b73d640 Replace uses of diff.ObjectDiff with cmp.Diff
dd7af241c11 Replace diff.ObjectDiff with cmp.Equal
97bab44cae3 Replace apimachinery diff.StringDiff with cmp
4f6714ef42d apiserver/etcd: add request and request_error metrics (#117222)
d09842e0adf node-lifecycle-controller: improve monitorNodeHealth test-coverage (#116687)
be101a748dd Remove some unused winkernel arguments/fields/functions
8a790ac2e1b Remove unused ProxyServer.EventClient field
9754386c764 Remove write-only ProxyServer fields
b4c384ebfb2 vendor: bump runc to 1.1.6
c69689659a6 Add `--concurrent-job-syncs` flag to kube-controller-manager
4438208511e api: encode NamespacedName with lower case in JSON
476e407ffd2 cacher: prevent a potential deadlock
7cdffe37c1d update container storage interface spec to v1.8.0
10a8ec5b2cc use case-insensitive header keys for http probes
a6173fad88a Delete duplicate code in schedule.go
5588e8a4cd0 hack/logcheck.conf: remove certificate controller exception
277c03fc799 remove these unrelated openapi files (#117051)
9a468563070 remove reuse buf todo (#117033)
5da386745af Kubectl convert - warn users with NotRegisteredError and Fail on all other errors (#117002)
0eec63fd687 fix the mistake in the release note
02d8fc28faa fix: add the bug as a known issue o on the v1.26 release note
75f17eb38fc optimize watch-cache getlist (#116327)
9c15d75f234 Migrated `pod-security-admission` to contextual logging (#114471)
2bed67d0f1c Revert "Optimization on running prePreEnqueuePlugins before adding pods into activeQ"
73eb7c09309 Codegen: easier to read logs for subproject output
bbbb695060a Codegen: subproject: chdir to the project dir
893ec0ca453 Codegen: simpler k8s.io/code-generator/examples
af29cca6ced Codegen: new tools will not become part of 'all'
5f7345deaac Codegen subprojects: consolidate generate-*groups
95e614b3717 Codegen subprojects: deprecate "all" in scripts
a94ed5b8ac8 Codegen metrics: include v1beta2
8b68e063e14 Codegen subprojects: regen defaulters when needed
5200f4b0d36 Codegen subprojects: reify 'all' into explicit
201653aa870 Trivial change to reduce diffs
901dea73073 Fix azure disk e2e after migration
d212041d513 hack/local-up-cluster.sh: Remove old dynamic certs
ed5dd38dcdc CHANGELOG: Update directory for v1.27.0 release
464edfe6f6e test/integration: create nodes directly with kubernetes.io/hostname label
9204e6b286e remove unused constant `expansionFailed` in expansion test.
4491ba89171 rename variable delete to avoid collision to builtin variable
d04d7ffa6ec kubelet: Mark new terminal pods as non-finished in pod worker
0020631985e test: Add node e2e to restart kubelet while pod is terminating
aa73f06e569 scheduler perf: allow creating 0 items
49bbf7c2681 scheduler_perf: fix race condition
a869a898257 scheduler perf: remove cleanup func
b039a2ff2c7 Add new contribex leads to sig-contribex-approvers
9363afc6502 Fixing broken tests
d102a6fea51 HPA Controller - Update Owners
8d18ae6fc24 Use the generic Set in scheduler
b04ca79445e Add unit tests showing the effect of unlimited containers when calculating pod limits.
1dec97436c8 Fix typo at job_test.go
046bb892566 supported version of etcd 3.5.7-0 for Kubernetes v1.27.0-rc.0
f138d29bf2d watchcache: currentCapacity acquires read lock
c77ad3116f4 kubelet: fix setup of emptyDir with sizeLimit (fsquota)
ea74a2d877d cpumanager: fix typo in godoc
1cce3b3e2f5 wait: fix incorrect suggested method
d3ae6c2df3c Specify KUBE_ROOT for test-e2e-node/AWS to work
d9bd22115ff Alias deprecated genericclioptions.IOStreams with new one
26b35ce36ae Remove endpoint related RBAC from scheduler cluster role
7fa3d54ea5b unittests: Fixes server journal unit test on Windows
08a324bf512 cluster/addons: set metrics-resolution to 15s
eba18d503cc cluster/addons: bump metrics-server to v0.6.3
88e055059cd component-base: avoid data race in log format registry
a2fb32870f3 test/integration/auth: fix data race
1dde8ef026e test/integration/framework: avoid race around grpclog.SetLoggerV2
f91518b81a5 Add genericiooptions in allowed list of genericclioptions
b4e4db336f6 More migrations from genericclioptions to genericiooptions
5e1c6cd0d4f pkg/registry/flowcontrol: avoid race condition during Create
934516791c6 Swap assert.Equal parameters oders to follow convention
2d06601b81c RBD: e2e containers base image has been udpated to F38
0518dffd259 iscsi: e2e containers base image has been udpated to F38
8d9386fc402 Remove genericclioptions.IOStreams struct
c3497b30aca More migrations from genericclioptions to genericiooptions
00c30941260 Migrate genericclioptions.IOStreams usage to genericiooptions
51a7751a496 Move genericclioptions.IOStreams into genericiooptions.IOStreams
e450ed98122 CVE-2023-27561: Bump runc go module v1.1.4 -> v1.1.5
3d3686b9cf0 Return error for localhost seccomp type with no localhost profile defined
e1bcfd47da9 Sort unmounted volumes message in volume manager
79b3126f00a skip clear quota if FSQuotaMonitoring is disabled
0a37f09c32b Fix directory mismatch for `volume.SetVolumeOwnership()`
731068288e1 correct storage class selection message
cc8cd88a94d remove duplicate validation for csi
978da1e8f13 remove GA feature-gates
bda73bd1129 Refactor remote runners
e389d140ae6 fix as suggested
457bb58ebbf kubectl events: Support fully qualified names for --for flag
1893f639d03 test: Fix flake in node e2e mirror pod tests
ffcf3ee6f87 feature(pkg/api): warning for Pod with null labelSelector in PodAffinity and TopologySpread
70369bfe299 remove GAed KubeletCredentialProviders
5662566e03a Set GOMAXPROCS explicitly
56755b8ffdb fix doc mismatch
8e36e948ce6 verifyVolumeNoStatusUpdateNeeded may cause flake and so only keep the last ones
dac85fe2d3f [KMSv2] cleanup comments in v2 proto api
feba08a6947 Create local copy to avoid potential race condition
29503fd8d45 openapi: Make file client more easy to re-use
ed48dcd2d71 kubelet: Ensure pods that have not started track a pendingUpdate
db92cc13880 ftr(etcd): add benchmarks
05f4e497f1d Deflake TestGetListNonRecursive
906f0607efc Clean up kms test
d3f6cb717f7 update conformance yaml
7bfcfc4d5de docs: fix storage e2e test README
f7765eb0d42 Add damemi to emeritus SIG scheduling approvers
bbbd366cf39 Move damemi to sig-scheduling reviewers
397cc73dc9b delete unused functions in pkg/controller directory
47f8d42a6ba Add CecileRobertMichon to sig-cluster-lifecycle-leads
449f847630e [KMSv2] update ci script and add readme
86e1f4b9d10 e2e node: bump all nodes ready timeout
beb329f4bfa Do not look at VPC-related resources outside the cluster's network
8d92cfb1316 Added conversions to/from NamespacedName
df0a2538205 generate ReportingInstance and ReportingController in Event
e9b384f5a75 fix typo
f638e2849fb replaced spew.Sprintf with a util pretty print function
838ed7feb53 Improve the performance of map usage
f6fa250e304 Add API approvers
03be789851d Fix sample-controller docs after moving to context-based cancellation
99ad88a2611 Remove unnecessary int type conversion
f2fe1fff655 [KMSv2] add tests for generate transformer
479fcf0b13f kmsv2: validate encrypt response at DEK generation time
8d644fbc725 return skip in volumerestrictions
ade63dd7647 cronjob: add ut for namespace terminating cause no extra log
9a776cbf212 kubelet pod-resources: e2e node test add failure description ExpectNoError
1031977b7d8 kubelet PodResources API: follow-up review comments
ec9515a828e Add structured alternatives to strings in client-go/tools/cache
2b01f63b115 move check for noop managed field timestamp updates
07ebb22db92 added known issue for 1.27 release
80480f8e215 combine conditional checks
7a6d58001b7 handle event errors caused due to terminating namespaces
af95a76bb21 cri-api: fix comment lines about PROPAGATION_PRIVATE
daa1d287e4d fix GetPodVolumeClaims in comments
c14068c2023 deflake: Add retry with timeout to wait for final conditions
fbf33e32e61 Fix memory leak in kubelet volume_manager populator processedPods
27f84b755e1 Migrated the volumezone scheduler plugin to use contextual logging
ddc13e983b5 Chore: add selector labels tweak function
4cab11f26f0 Chore: add persistent volume claim retention policy tweak function
ba9dfe686fd Chore: add persistent volume claim template tweak function
f97d3cf7486 Chore: add rolling update max unavailable type tweak function
1b17b4fa799 Chore: add rolling update partition type tweak function
f3ffeae426f Chore: add update strategy type tweak function
5e0161b3de8 Chore: add labels tweak function
ec34891782c Chore: add annotation tweak function
b907d5af49f Chore: add finalizers tweak function
18ba7c0e433 Chore: add ordinal start tweak function
3eb34d8b6ce Chore: add min ready seconds tweak function
2161d095fa1 Chore: add template restart policy tweak function
4418a9f5906 Chore: add replicas tweak function
7fc08e0ce70 Chore: add pod management policy tweak function
77c7d6efcf6 Chore: add basic make function for stateful set
4a667a1026c fix: remove case sensitive checking of probe headers
81a0ea3da3c return name when error occurred in csi-translation
a2cf4e73459 use describe node to print node events as well
e5674903178 fix: remove last ip when apiserver was shut down
f59ac6e6524 [WinProxy] Adding additional validations to queried endpoint list iteration.
db5590a194b Remove sig-network-driver-approvers alias
fc8892d26d7 Add more labels (esp. area/kube-proxy) to sig-network OWNERS
2f3800e1007 Make pkg/util/iptables and pkg/util/ipvs owned by sig-network
10b36075df6 Cleanup: use Set instead of map in endpointSlice utils
eb60dce33b0 deprecate ExperimentalHostUserNamespaceDefaulting
94f2d351644 Wire bootstrap token authn secret lister only when it is enabled
d71aea434e5 docs(readme): add go report and latest release badges
a780544f58c add log for kubemark start
d25572c3892 kubelet: HandlePodCleanups takes an extra sync to restart pods
41ed0e12341 Add an image for kubectl
1c7155e7ff6 Move hollow_proxy.go from pkg/kubemark to pkg/proxy/kubemark
8d3a498c879 don't ignore UID impersonation in webhook clients
364b66ddd65 admission ApplyTo: take in clients
630af564be3 Update cri-tools to v1.26.1
1aeec10efb7 DRA: get rid of unneeded loops over pod containers
017bb93887f certificate controller: use contextual logging
c94a9a14d8d update gofmt
8cbe9fe543e trigger update event when service ipFamilies changes.
b430464df06 gce: podresources: don't disable on windows
6b4ffdb9f75 node: re-implement Localendpoint on windows
195fc2f5162 kubelet: podresources: rename variable
d6d19a290de Simplify statefulset fuzzer
376bda41c74 undeprecate kubelet --provider-id flag
8bb328680c0 upgrade cluster-autoscaler v1.26.1 to fix ci warnings
c94bcabd7e2 [fix][typing] startResourceClaimController errrorf message has typos
31e1df9ae6c Bump Konnectivity to 0.1.2
aadb87bdcdb kubelet: Do not mutate pods in the pod manager
13192176002 Remove vestigal err check from CEL admission controller.
a6ffbb41f8e Squashed commit of the following:
bbf2b968c89 skip pod resource check when request is zero
64ecb161d47 Codegen: git grep returns non-zero if no match
241d46d1dd5 Codegen: deepcopy needs to run before swagger
3405853e6d0 Codegen: clean up stray ls-files use
3dd0c416639 support short name for flowschema and prioritylevelconfiguration
e2b10505162 add some buff for pod initial restart count that is not zero
efee9b4866d cleanup: promote ProbeTerminationGracePeriod to conformance tests
b0eeeacfc0c fix: the volume is not detached after the pod and PVC objects are deleted
4d3f92d5f75 Update toplogy keyset initialization
a890724f9ef cronjob: return immediately when failed to create job for the namespace is terminating
37aff025ff8 cleanup: remove Clear for fake job controller
b7cdbca2374 Add more tests that should exist but don't for some reason
67d7f09eb82 hack/OWNERS: add pohly as reviewer and approver
5dca1be0160 Add tests
bab2c18c246 Add jsonpath support for explain
77692f1b1c5 fix linting
fabf1cba947 Add warning about TLS 1.3 cipher suites
6ad156d80ee Cleanup: modify some sentences about statefulset
13354d3da4d Add note about TLS 1.3 cipher suites
c50c19d13af remove unused not api functions in the pkg/apis directory
b1e3326eaee Fix gorestful typos in the APIServerHandler.Director docstring
a3b44b574fb cluster/gce: Fetch image from image family
26f0325734c fix typo in volume util
0311a4e8e6d Fixed typo
9b9f22f06b5 Fix unknown field error in deployment lifecycle e2e
6f19e8656f5 Apply suggestions from code review
1134134e727 kubelet/cm/containermap: Improving test coverage
87f094c5e88 Replaces path.Operation with filepath.Operation (part 2)
5111bced373 fix test cases that may be incorrect
9a3c4aa2dc9 initial e2e tests for ValidatingAdmissionPolicy
bd778449f4d versioning of CRI API
34d980e7709 i18n: Fix bug where package-level variables are not translated.
ad2d23eb9ff Add test for cmd/kubeadm/app/phases/upgrade/compute.go
fd4adba9acd add sig/storage label for pkg/controller/volume package PR
2557b35202f controller: add non-exist node test case
95fe0a158c2 Fix strategic merge patch $deleteFromPrimitiveList bug
76c8765bda5 ensure etc-host file permission is 644 whatever umask is
73883c71574 Remove default annotations from copied storage class
f16f9100e57 cleanup: delete unused AuditDynamicOptions in apiserver
583ea17efd6 Add parameter to set SecurityContext for containers in tests
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping distribution to version v2.8.3-2-gd607c6cc, which comprises the following commits:
6b9f48f3 docs: remove blank line
a4fa6992 Add v2.8.3 release notes
5e6b1b5c Do not close HTTP request body in HTTP handler
29b00e8b digestset: deprecate package in favor of go-digest/digestset
d1ab2430 [release/2.8] vendor: github.com/opencontainers/go-digest v1.0.0
3dda0677 deprecate reference package, migrate to github.com/distribution/reference
3c6f7788 update to go1.20.8
31f5cd48 Handle rand deprecations in go 1.20
29b8ba0b Update to go 1.20
3316b198 Update to golang 1.19.10
444d053e update golangci-lint to v1.52
b800af44 ignore SA1019: ac.(*accessController).rootCerts.Subjects has been deprecated
0a98a00d Ignore SA1019: SplitHostname is deprecated.
2ec0471b Dont parse errors as JSON unless Content-Type is set to JSON
cb121c3f Set Content-Type header in registry client ReadFrom
b57133cc referene: fix formatting of "deprecated" comment.
2c4bf1a6 replace deprecated function
110cb753 Enable build tags in 2.8
2d62a402 s3: add interface assertion
2548973b Enable Go build tags
ab7178cc Pass BUILDTAGS argument to go build
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
| |
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping moby to version v24.0.6-36-gf9b8a35ac4, which comprises the following commits:
58c1c7b8dc Limit OOMScoreAdj when running in UserNS ("Rootful-in-Rootless")
f87492689e update to go1.20.10
3715eaf078 update to go1.20.9
31f49bd685 Make one-shot stats faster
37796c7029 Revert "daemon/logger/etwlogs: rewrite to use go-winio/pkg/etw"
51dc5fb58f integration/internal/swarm: rename max/min as it collides with go1.21 builtin
4e11c149d1 pkg/tailfile: rename max/min as it collides with go1.21 builtin
0b97ecddb0 pkg/plugins: rename max/min as it collides with go1.21 builtin
710c748801 pkg/sysinfo: rename max/min as it collides with go1.21 builtin
b340a777c0 pkg/archive: rename max/min as it collides with go1.21 builtin
e996dffe56 daemon: rename max/min as it collides with go1.21 builtin
334719141c api/types/versions: rename max/min as it collides with go1.21 builtin
0702941de6 restartmanager: rename max/min as it collides with go1.21 builtin
bed0c789dd daemon/cluster: format code with gofumpt
30fe6540a5 libcontainerd/windows: Don't reap on failure
1320e79bd8 libcontainer/windows: Remove unneeded var declaration
a1ba69a82b libcontainer/windows: Fix process not being killed after stdio attach failure
1f3ea9841e update containerd binary to v1.7.6
58224457c3 ipam: Replace ChildSubnet with parent Subnet when its mask is bigger
df983b7990 daemon: fix under what conditions container's mac-address is applied
f014c349a0 update to go1.20.8
e2ab5f72eb 24.0: Update buildkit to fix source policy order
8216da20af more robust dockerd-rootless-setuptools.sh
c35376c455 volume/local: Don't unmount, restore mounted status
5d4cc0b5b5 integration/liveRestore: Check volume content
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping crun to version 1.9.2-12-g8af8ee2, which comprises the following commits:
bdb95d6 features: export intelRDT status
e2f9853 update: support update of Intel RDT
05bc600 libcrun: support update of Intel RDT
41ae2a2 libcrun: plug Intel RDT support
52d5faa libcrun: add Intel RDT support functions
a7a1af9 container: fix early return
122f8ae linux: open mounts before setgroups if in a userns
64105d9 Use overlay and single nix derivation
35274d3 NEWS: tag 1.9.2
8f6b76f tests, podman: enable more tests
255268d Reset the inherited cpu affinity after moving to cgroup
745b6d9 tests, podman: run tests on overlay
f42e279 tests, podman: get more information on the environment
379b17c tests, podman: avoid deprecated options
bd251c9 rpm: do not special case krun man
fe4e15d build: install krun.1 only if krun is enabled
0cabf0c rpm: fix manpage installation
67ee730 Packit: notify @containers/packit-build team on failed tasks
1f2769e linux: fix fallback mechanism in a userns
a0b7e18 NEWS: tag 1.9.1
bb4e975 utils: partially rewrite improve error message patch
14afa8a utils: fix ignore ENOTSUP when chmod a symlink
0acb237 oci-validation,test: lock tap to @16.3.8
bbb1c87 tests: install device-mapper-devel
75dd83c podman, test: disable more tests failing in the CI
98db1d2 utils: improve error message for ensure_dir
57262a2 utils: ignore ENOTSUP when chmod a symlink
523eed3 linux: add new fallback when mount fails with EBUSY
2239c50 linux: teach MS_MOVE to do_mount
c9a1a12 Add man page for krun
8645d1a Fix CentOS 7 Build by Checking if FSOPEN_CLOEXEC exists
a538ac4 NEWS: tag 1.9
1e2f0c4 fix: correctly handle unknow signal string
41fa779 crun delete: call systemd's reset-failed
76b80ae fix random errors
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping cri-tools to version v1.26.0-353-gf8733ddf, which comprises the following commits:
f570bc09 Bump golang.org/x/net from 0.16.0 to 0.17.0
75c136c8 Validate sandbox and container metadata
4f3475f5 Bump github.com/onsi/ginkgo/v2 from 2.12.1 to 2.13.0
93bc1bf2 Bump golang.org/x/net from 0.15.0 to 0.16.0
57d7848c Switch to `github.com/distribution/reference`
f61309ae Bump github.com/docker/distribution
6a1c7883 Bump github.com/onsi/gomega from 1.27.10 to 1.28.0
024268e7 Bump github.com/onsi/ginkgo/v2 from 2.12.0 to 2.12.1
04fb3af1 Verify required checkpoint parameters are set
544d4792 Remove duplicated import "k8s.io/cri-api/pkg/apis"
dbd6c086 Enable staticcheck linter with SA1019 to find deprecated methods
06bb4c99 Use executor.StreamWithContext instead of deprecated executor.Stream
092eddc1 Address deprecation of Strings.Title
9059543c Remove unnecessary rand.Seed
52fcfd43 Address deprecated io/ioutils
833ab93c Address deprecated call cli.NewExitError of urfave/cli package
3e036cfa Bump github.com/onsi/ginkgo/v2 from 2.11.0 to 2.12.0
b84b1817 Bump actions/checkout from 3 to 4
4b5c3fe1 Update version compatibility between Kubernetes and cri-tools
7458ab35 Bump golang.org/x/net from 0.14.0 to 0.15.0
aa049113 Bump github.com/docker/docker
71beb1da Fix containerd tests
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping cri-o to version v1.27.0-662-gf8ccf314a, which comprises the following commits:
3b7ab35ff build(deps): bump crate-ci/typos from 1.16.17 to 1.16.18
f7d3228a7 Avoid an unnecessary c/storage lookup in ListImages
96e6aa9b5 Inline getImageCacheItem into ListImages
e4f2b888d Split imageIsBeingPulled from ListImages
c7188518d Simplify ListImages more
1cfe3c8bb Simplify appendCachedResult
ae597ba16 Remove the "filter" parameter to ListImages
e0750462f Turn ListImages(filter) into ImageStatus
50ce23e89 Simplify storageImageStatus a bit
2cb166512 Simplify ImageStatus a bit
1b0e82a22 Split storageImageStatus from ImageStatus
ad8be44cc Simplify error handling in ImageStatus
203612b23 Move the ImageResult -> ImageStatusResponse conversion out of the loop
97329e4fa build(deps): bump ossf/scorecard-action from 2.2.0 to 2.3.0
013a0998c Update release-notes to v0.16.1
dc44bac35 Fix quoting issue in usage help text
f22040da2 crio: add support for --imagestore
1d0e5d074 build(deps): bump crate-ci/typos from 1.16.15 to 1.16.17
bb4ab8110 Run GitHub actions in `update-nixpkgs-*` branches
45a6e70e7 Update nixpkgs
8ec74c5fa contrib/test: pin the latest release of runc
2505851e0 Update crun to 1.9.2
f3e53a058 test: Add test for image pinning behavior
12cabc651 internal/storage: compute Pinned field from recently loaded image
0fd641c6d build(deps): bump crate-ci/typos from 1.16.14 to 1.16.15
347194d3f build(deps): bump crate-ci/typos from 1.16.13 to 1.16.14
f532cbd89 Add nixpkgs update cron
8fa9260fc build(deps): bump crate-ci/typos from 1.16.12 to 1.16.13
72280f09c Update install.md removed spaces (markdown lint error)
fe9ed4e3a storage: add support to split filesystem using imagestore
544db3209 RFC: Use RuntimeContainerMetadata for passing container data
c9309ebb6 Add a layer name in one step
4f5a2e95c Microoptimize reference creation
3a77cc956 Eliminate the now unused imageAuthFile and isPauseImage parameters
61d86923c Simplify createContainerOrPodSandbox again
a936e6861 Simplify CreatePodSandbox
39095cbb4 CHANGE: Simplify CreateContainer image lookup
a09320639 Eliminate the clearly dead part of the just copy&pasted code
a7f841955 Blindly copy the image handling code from createContainerOrPodSandbox into callers
6cabaaee1 Remove an imageID parameter to CreatePodSandbox
2b4652c52 Fix/Add error handling
8e1e1e672 update containers storage to 1.50.2
5d8538318 build(deps): bump DavidAnson/markdownlint-cli2-action from 12 to 13
6c1574efc Fix nix `dirty` build
d951faa32 Make the release branch fast forward a cronjob
5dee42bcf build(deps): bump crate-ci/typos from 1.16.11 to 1.16.12
91b83b10c Fix release notes job
096f803a3 Bump golang dependencies
7d86c2e25 docs: fix CI failure
f182fb411 Bump version to 1.29.0
51bae7a96 Remove the IsFullIdentifier check from Server.pullImage again
7eb248b1a Don't silently modify the caller's SystemContext
2d72e13e6 Fix a VERY misleading comment.
472d2c5f9 Remove an unnecessary check
23d7c35d5 Remove an unnecessary parse call
6f9a7173f Remove an unnecessary check
8c3e301da Optimize handling of full image IDs
5f45d232a Remove the ErrCannotParseImageID special case
335d4b0f3 Fix a VERY misleading comment
b489507c9 Remove a completely unused ErrImageMultiplyTagged
98f171147 Make Server.pullImage responsible for rejecting image IDs
e292f17c0 docs: Update the containers/image branch name
6005b03f2 contrib/test/ci: remove the redundant golang setup file
059a7b5f8 Add conmon-rs binary to bundle
4ac3aeef2 internal/storage: address unpredictable behavior of image names
61a0b7c79 config/server: add functions to check IDMap support in runtime
9ce778351 Remove golang-go from debian installation
3d450274e Pause container during checkpointing
e069cc827 contrib/test: fix golang version extraction for CI
0774b644d build(deps): bump actions/checkout from 3 to 4
d6f4c7100 Adopters.md: fix linting issue
d805d28fd Add new adopter
940de5009 build(deps): bump crate-ci/typos from 1.16.10 to 1.16.11
ac9c6fbfe Don't vendor main Kubernetes repo any more
4a1e406b0 Mention Roadmap GitHub Project in README.md
bacc5e638 build(deps): bump crate-ci/typos from 1.16.9 to 1.16.10
9cbd8d555 build(deps): bump cachix/install-nix-action from 22 to 23
798a8d701 build(deps): bump actions/checkout from 3 to 4
758e3d8c3 cgmgr: reorder setting of sched_load_balance for pod cgroup
0e6b13e08 build(deps): bump crate-ci/typos from 1.16.8 to 1.16.9
ff434ba27 build(deps): bump github.com/containers/podman/v4 from 4.6.1 to 4.6.2
0002792fa build(deps): bump DavidAnson/markdownlint-cli2-action from 11 to 12
3aa18aff3 Switch to go 1.21
5b9f7f96d Add dependabot group for OTEL deps
d7ad3fcbf build(deps): bump github.com/containers/buildah from 1.31.2 to 1.31.3
85c3d9db1 Bump conmon and crun dependencies
5ab387fe5 build(deps): bump github.com/containers/common from 0.55.3 to 0.55.4
a4f2d8071 server: remove deprecated functionality
28ae1f81a Fix bundle e2e tests
a9afa0442 Add ppc64le binaries to release notes
c8f8ca498 Add Kubernetes package test for static binary bundle
734e1538c build(deps): bump github.com/google/uuid from 1.3.0 to 1.3.1
873c0f420 Policy: Allow backport of independent features
bebd421b5 Configure systemd install path based on OS
ec4bbac12 feat(cmdrunner): add support for context
59f9b823d move shmSetup in server/sandbox to internal/factory/sandbox
d1946b30a blockio: add blockio_reload option
ce1cdfa54 main: create parent crio dir before creating clean.shutdown.supported
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping containerd to version v1.7.7-5-g5e21abb18, which comprises the following commits:
d0a1fedb5 *: add runc-fp as runc wrapper to inject failpoint
04491240a containerd-shim-runc-v2: avoid potential deadlock in create handler
6982a0df5 containerd-shim-runc-v2: remove unnecessary `s.getContainer()`
0e2320398 Uncopypaste parsing of OCI Bundle spec file
a34fa5681 Prepare release notes for v1.7.7
6ca0aebf0 Allow for images with artifacts to pull
7df492a95 remotes/docker: Fix MountedFrom prefixed with target repository
7779ce64e remotes: always try to establish tls connection when tls configured
b3db314a5 Bump x/net to 0.13
a83c66813 Require plugins to succeed after registering readiness
171d76849 cri: call RegisterReadiness after NewCRIService
6013b5e03 cri: stop recommending disable_cgroup
3d27bc738 Handle unexpected shim kill events
4ffa3ed29 Build binaries with 1.21.1
5756f6064 [release/1.7] vendor: github.com/Microsoft/hcsshim v0.11.1
09633b539 deprecate logs package, but disable linter (for transitioning)
cb201519f alias log package to github.com/containerd/log v0.1.0
a5024e6dd vendor: github.com/stretchr/testify v1.8.4
7bd976af3 vendor: github.com/sirupsen/logrus v1.9.3
3ca015e55 nri: update mock plugin handlers
4cd208c1f vendor: update github.com/containerd/nri@v0.4.0
8cd2d33c2 [release/1.7] remotes/docker: Add MountedFrom and Exists push status
3e09c65b2 Prepare release notes for v1.7.6
5ebf05d97 push: inherit distribution sources from parent
d206896dd content: add InfoProvider interface
423693d7b [release/1.7] update to go1.20.8
c7a35ccdc Fix transfer service dependencies:
38d4e506d Invoke Stable ABI compatibility function in windows platform matcher
ddffc7c9a Update hcsshim tag to v0.11.0
b449440a4 CRI: Support Linux usernames for !linux platforms
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
| |
6.4 is no longer in OEcore, so we drop our associated
kernel .inc file.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
| |
Pass -trimpath to the build to fix the below build path issue:
WARNING: umoci-v0.4.7+git-r0 do_package_qa: QA Issue: File /usr/sbin/umoci in package umoci contains reference to TMPDIR [buildpaths]
Signed-off-by: Mingli Yu <mingli.yu@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
The new version has an internally stripped binary, so we inhibit the
QA warning.
Bumping buildah to version v1.31.0-159-g4f3d7b0b6, which comprises the following commits:
5151ccff5 .cirrus.yml: run tests relative to the release-1.32 branch
2326d4929 Tag v1.32.0
e90b3502b GetTmpDir is not using ImageCopyTmpdir correctly
ccac7ca0b Run codespell on code
6be719454 Bump vendor containers/(common, storage, image)
9545744e8 Cirrus: Remove multi-arch buildah image builds
206cda149 fix(deps): update module github.com/containerd/containerd to v1.7.6
0191bc671 Split GetTempDir from internal/util
6e6827b27 Move most of internal/parse to internal/volumes
292b429f6 copier: remove libimage dependency via util package
4f3abf936 Add some docs for `build --cw`, `commit --cw`, and `mkcw`
e89fac6c9 Add `buildah mkcw`, add `--cw` to `buildah commit` and `buildah build`
cc619c28d Make sure that pathnames picked up from the environment are absolute
4ee5f020a fix(deps): update module github.com/cyphar/filepath-securejoin to v0.2.4
fd72bbee2 fix(deps): update module github.com/docker/docker to v24.0.6+incompatible
754568580 Don't try to look up names when committing images
d5b02e551 fix(deps): update module golang.org/x/crypto to v0.13.0
3fc5274d3 docs: use valid github repo
f94689199 fix(deps): update module golang.org/x/sys to v0.12.0
6ec6f046f vendor containers/common@12405381ff45
df1bc3834 push: --force-compression should be true with --compression-format
9c5cde533 Update module github.com/containerd/containerd to v1.7.5
3ebeaa2dd [skip-ci] Update tim-actions/commit-message-checker-with-regex action to v0.3.2
cc9f15f09 docs: add reference to oci-hooks
3454d5b29 Support passing of ULimits as -1 to mean max
f330c77be GHA: Attempt to fix discussion_lock workflow
4942cc908 Fixing the owner of the storage.conf.
f4e43f0e8 pkg/chrootuser: Ignore comments when parsing /etc/group on FreeBSD
2b57cef2b Use buildah repo rather then podman repo
a8bbc9f5f GHA: Closed issue/PR comment-lock test
82069390f fix(deps): update module github.com/containers/storage to v1.49.0
4c4ff3128 chore(deps): update dependency containers/automation_images to v20230816
af3891258 Replace troff code with markdown in buildah-{copy,add}.1.md
e997a966f [CI:BUILD] rpm: spdx compatible license field
a3f2aa3c7 executor: build-arg warnings must honor global args
f6fb75d9d fix(deps): update module github.com/containers/ocicrypt to v1.1.8
5643a7fa8 chroot: `setSeccomp` add support for `ArchPARISC(64)` and `ArchRISCV64`
8428dee36 make,cross: restore loong64
e3cd4d790 Clear CommonBuildOpts when loading Builder status
d68d9a237 buildah/push/manifest-push: add support for --force-compression
3445a775a vendor: bump c/common to v0.55.1-0.20230811093040-524b4d5c12f9
2d6e43071 chore(deps): update dependency containers/automation_images to v20230809
065b95599 [CI:BUILD] RPM: fix buildtags
3964ca9d6 fix(deps): update module github.com/opencontainers/runc to v1.1.9
591b5390d chore(deps): update dependency ubuntu to v22
204c5a1ce chore(deps): update dependency containers/automation_images to v20230807
9ab3b526d [CI:BUILD] Packit: add fedora-eln targets
ed2a501c9 [CI:BUILD] RPM: build docs with vendored go-md2man
5bdb8c70d packit: Build PRs into default packit COPRs
fc7329d7c Update install.md
f6c4ead1b Update install.md changes current Debian stable version name
2254ca208 fix(deps): update module golang.org/x/term to v0.11.0
248f5a2b3 fix(deps): update module golang.org/x/crypto to v0.12.0
ae36f6542 tests: fix layer-label tests
f888b3d84 buildah: add --layer-label for setting labels on layers
239b2a877 Cirrus: container/rootless env. var. passthrough
65c1c9327 Cirrus: Remove duplicate env. var. definitions
978be7796 fix(deps): update github.com/containers/storage digest to c3da76f
62d405771 Add a missing .Close() call on an ImageSource
e588986fa Create only a reference when that's all we need
fe947ed9c Add a missing .Close() call on an ImageDestination
597d30880 CI:BUILD] RPM: define gobuild macro for rhel/centos stream
b9ac8d5e0 manifest/push: add support for --add-compression
d27a82356 manifest/inspect: add support for tls-verify and authfile
071f851da vendor: bump c/common to v0.55.1-0.20230727095721-647ed1d4d79a
512273587 vendor: bump c/image to v5.26.1-0.20230726142307-8c387a14f4ac
3d8616537 fix(deps): update module github.com/containerd/containerd to v1.7.3
c20d0164f fix(deps): update module github.com/onsi/gomega to v1.27.10
2e7dcc143 fix(deps): update module github.com/docker/docker to v24.0.5+incompatible
6a236937a fix(deps): update module github.com/containers/image/v5 to v5.26.1
d78f6c2a2 fix(deps): update module github.com/opencontainers/runtime-spec to v1.1.0
dbc71b7cc Update vendor of containers/(storage,image,common)
331fac670 fix(deps): update module github.com/opencontainers/runc to v1.1.8
9cc5d5e8c [CI:BUILD] Packit: remove pre-sync action
09a1cd698 fix(deps): update module github.com/containers/common to v0.55.2
11cec8523 [CI:BUILD] Packit: downstream task script needs GOPATH
70cb4c7e0 Vendor in containers/(common, image, storage)
173ac7dc9 fix(deps): update module golang.org/x/term to v0.10.0
8b84d9b8a [CI:BUILD] Packit: fix pre-sync action for downstream tasks
97b84029a contrib/buildahimage: set config correctly for rootless build user
cba7b9fae fix(deps): update module github.com/opencontainers/image-spec to v1.1.0-rc4
e00845797 Bump to v1.32.0-dev
f704a67a1 Update debian install instructions
4c72c25a2 pkg/overlay: add limited support for FreeBSD
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
Main change is the relicense from GPL-3 to GPL-2, which will allow
catatonit (and hence podman) to be used in deployments where the license
previously posed an issue.
Contains the following commits:
7f0c9bb version: release catatonit 0.2.0
fe191ef license: switch to GPLv2-or-later
Signed-off-by: Patrick Wicki <patrick.wicki@siemens.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Bumping k3s to v1.28.2, which comprises the following commits:
6330a5b49c Update to v1.28.2 and go v1.20.8 (#8364)
550dd0578f Bump kine to v0.10.3
b3bb7e5a11 update channel for version v1.28 (#8305)
0d23cfe038 Add RWMutex to address controller
cba9f0d142 Add new CLI flag to disable TLS SAN CN filtering
2cb7023660 Use already imported semver, bump kine
f2d0c5409a Add check for support on cp nodes
51f1a5a0ab Review comments and fixes
42c2ac95e2 CLI + Backend for Secrets Encryption v3
e45a674457 Add new encryption test
b967f92785 Replace os.Write with AtomicWrite function
ced330c66a [v1.28] CLI Removal for v1.28.0 (#8203)
62db5fa27c Update to v1.28.1 (#8239)
af50e1b096 Update to v1.28.0-k3s1 (#8199)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
| |
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
It is currently unclear if we have a hard dependency on this version
of the module.
meta-python has a newer version, so we are now breaking tests for
yocto compliance (the layer changes the hash).
For now, we fork the recipe to avoid the error and start preparing
to drop it.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
| |
We introduced this to support python3-docker-compose, but docker
compose has moved onto being a go application.
meta-python has a newer version of the recipe, so our old one
is causing signature issues.
Dropping the recipe keeps everything happy
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
Fix textrel QA issue like below:
ERROR: QA Issue: docker-compose: ELF binary /usr/lib/docker/cli-plugins/
docker-compose has relocations in .text [textrel]
The problem could be fixed by adding -buildmode=pie, as this option has
already been in GOBUILDFLAGS except for mips and riscv32, let's make
use of GOBUILDFLAGS.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
| |
The 6.5 kernel has now been tested against core and meta-virtualization
so we add the .inc file to show that status.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
| |
Some of the (current) rdepends for skopeo are not compatible with
mips.
To make this restriction more obvious, we also mark skopeo itself
incompatible with mips.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
When building skopeo for mips(64), we get the following errors:
| go.go:(.text+0xdd07fc): relocation R_MIPS_26 against `a local symbol' cannot be used when making a shared object; recompile with -fPIC
| go.go:(.text+0xdd0830): relocation R_MIPS_26 against `a local symbol' cannot be used when making a shared object; recompile with -fPIC
| go.go:(.text+0xdd0864): relocation R_MIPS_26 against `a local symbol' cannot be used when making a shared object; recompile with -fPIC
| collect2: error: ld returned 1 exit status
Tag the recipe as incompatible with mips to avoid having it built
at all.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
The external to m-virt users of libslirp-virt have been validated
against the OEcore version.
Having this recipe in world builds causes errors with sstate with
recent changes to bitbake.
Until we hit another runtime incompatibility, we can drop this
recipe. A previous commit excluding the recipe from world builds
was created as a reminder that we'll need to have that in place
if the recipe returns.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Recent changes in oe-core have made the sysroot error on duplicate
files and symlinks.
We have this recipe as a compatibility fallback to some older
container stacks.
package lists and recipes that need this, can exclude the oe-core
recipe as required.
For now, we exclude it from world build, and mark it incompatible
with the oe-core libslirp.
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
|
|
|
| |
Fix the following QA issue:
ERROR: QA Issue: nerdctl: ELF binary /usr/bin/nerdctl has relocations in .text [textrel]
We want to use -buildmode=pie, in order to avoid duplicating codes with
go.bbclass, make use of GOBUILDFLAGS.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
| |
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
| |
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
| |
docker-compose needs it, otherwise, exporting port would failure
when running `docker compose up'. To reproduce the issue, use
commands shown in https://docs.docker.com/compose/gettingstarted/.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
| |
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
| |
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
|
|
|
|
|
| |
In case of multilib, the location is /usr/lib64/docker/cli-plugins,
which cannot be recognized by docker. We should use nonarch_libdir
instead.
Signed-off-by: Chen Qi <Qi.Chen@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
| |
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
| |
|
|
| |
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
