WIP: Rebase 1.34 #2484
Open
WIP: Rebase 1.34 #2484
+398,615
−246,390
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Adding check for nil pod resources in huge pages test
…flake Fix apiserver service proxying e2e test flakiness
…expected network errors Signed-off-by: Anish Ramasekar <[email protected]>
feat: trigger PreBindPreFlight in the binding cycle
Signed-off-by: utam0k <[email protected]>
…cycle Fix prerelease-lifecycle for volumeattributesclass
…ding-conditions Implement DRA Device Binding Conditions (KEP-5007)
This reverts commit 7804b51.
Signed-off-by: utam0k <[email protected]>
* HPA support for pod-level resource specifications * Add e2e tests for HPA support for pod-level resource specifications
Clear pod.Status.NominatedNodeName when pod is bound
…ation Fix incorrect validation on the kubelet
…ssue_133249 test: fix TestStructuredAuthenticationConfigReload flake by handling expected network errors
When pod-level resources are detected, the cpu and memory manages cannot engage because the feature is not yet compatible, one of the main reasons being the managers only work at container level. So, the managers has to detect if pod level resources are in use, and turn themselves to no-operation skipping resource allocation should that be the case. We add an intentional loud log to inform the user, because pods with pod-level resources landing on a node which cannot actuate the desired spec is likely to be undesirable. Signed-off-by: Francesco Romani <[email protected]>
Signed-off-by: Francesco Romani <[email protected]>
…nslator_WebSocketServerErrors Deflake test stream translator web socket server errors
Add / update kubelet and DRA API owners
…_all_cases KEP-5278 Stop clearing NominatedNodeName in all cases
This commit fixes bug 1919737. https://bugzilla.redhat.com/show_bug.cgi?id=1919737 * pkg/proxy/iptables/proxier.go (syncProxyRules): Prefer a local endpoint for the cluster DNS service.
Signed-off-by: ehila <[email protected]>
Explicitly exclude etcd and etcd-readiness checks (OCPBUGS-48177) and have etcd operator take responsibility for properly reporting etcd readiness. Justification: kube-apiserver instances get removed from a load balancer when etcd starts to report not ready (as will KA's /readyz). Client connections can withstand etcd unreadiness longer than the readiness timeout is. Thus, it is not necessary to drop connections in case etcd resumes its readiness before a client connection times out naturally. This is a downstream patch only as OpenShift's way of using etcd is unique.
Signed-off-by: Peter Hunt <[email protected]> UPSTREAM: <carry>: authorization: add minimumkubeletversion package MinimumKubeletVersion is a way for an admin to declare that nodes any older than the minimum version cannot authorize with the apiserver. This effectively prevents them from joining. Doing so means the apiservers can trust newer features are usable on clusters with version skews Signed-off-by: Peter Hunt <[email protected]> UPSTREAM: <carry>: authorizer: move mininum kubelet version authorizer to pkg/kubeapiserver and add authorization mode this does require a line of code be moved from the enablement package to stop a cyclical import Signed-off-by: Peter Hunt <[email protected]> UPSTREAM: <carry>: crdvalidation: move latency profile file to be agnostic of field Signed-off-by: Peter Hunt <[email protected]> UPSTREAM: <carry>: features: add MinimumKubeletVersion feature Signed-off-by: Peter Hunt <[email protected]>
Upstream enables volume group snapshots by editing yaml files in a shell script [1]. We can't use this script in openshift-tests. Create a brand new, OCP specific test driver based on csi-driver-hostpath, only with the --feature-gate=VolumeGroupSnapshot on external-snapshotter command line. We will need to carry this patch until the feature graduates to GA. I've chosen to create brand new files in this carry patch, so it can't conflict with the existing ones. 1: https://github.com/kubernetes/kubernetes/blob/91d6fd3455c4a071408df20c7f48df221f2b6d30/test/e2e/testing-manifests/storage-csi/external-snapshotter/volume-group-snapshots/run_group_snapshot_e2e.sh
Co-authored-by: Allen Ray <[email protected]>
…1 as deprecated." This reverts commit 24bf6d5.
Add featuregate for performantsecuritypolicy for storage
Signed-off-by: Connor Catlett <[email protected]>
This should avoid races between pvc creation and quota creation
…TClient. Authorization, token authentication, imagepolicy admission, and audit webhooks configure RESTClients that encode to JSON regardless of the ContentType of the provided rest.Config. Because this is opaque to the RESTClient, configuring a ContentType other than "application/json" results in requests with JSON-encoded bodies and a non-JSON media type in the Content-Type header. Webhook servers that respect the Content-Type request header will be unable to decode an object from the request body. Explicitly overriding the ContentType of the provided rest.Config fixes this issue and is consistent with how clients are constructed for conversion and admission webhooks.
…version. Backported from 799312a upstream - drop once we rebase onto a version that has it.
…own secrets for table test
…ver manifest Update image from v1.7.3 to v1.16.1 to avoid pulling multiple in CI.
… expired credential, remove credential, add TODOs" This reverts commit a2ef871. That commit removed a test that we already skip in OCP. The patch also removed an image from an iota-based enum, which caused images returned by the `openshift-tests tests images` command to be renamed. Ultimately, this broke metal jobs because the list of images returned by `openshift-tests` was not the same as the list required by the tests. This change provides a temporary fix until a proper solution is implemented.
bertinatto
force-pushed
the
rebase-1.34
branch
from
63e204a to
f194ef5
Compare
bertinatto
force-pushed
the
rebase-1.34
branch
from
f194ef5 to
4e042c8
Compare
|
@bertinatto: The following tests failed, say
Full PR test history. Your PR dashboard. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here. |
|
/payload 4.21 nightly blocking |
|
@bertinatto: trigger 13 job(s) of type blocking for the nightly release of OCP 4.21
See details on https://pr-payload-tests.ci.openshift.org/runs/ci/5f5792d0-a319-11f0-9d0d-0e5625475ae0-0 trigger 67 job(s) of type informing for the nightly release of OCP 4.21
See details on https://pr-payload-tests.ci.openshift.org/runs/ci/5f5792d0-a319-11f0-9d0d-0e5625475ae0-1 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
No description provided.