mirror of
git://git.yoctoproject.org/meta-virtualization.git
synced 2025-07-19 20:59:41 +02:00
11036424a9
Bumping kubernetes to version v1.23.0-alpha.0-33-gd9d4f0c69cb, which comprises the following commits:
363d47c08c8 staging/publishing: fix rules for legacy-cloud-providers for 1.22
6d1556df7bb Update to using apiserver-network-proxy v1.22
7728428f017 Do not try to create an audit log file named "-"
77afa53f9d3 Add e2e testing manifest bundle to e2e_node test suite
0cce9a4a6c6 Remove conformance status from a sysctl test and relabel
0aa16fae5b8 staging/publishing: add release-1.22 rules
3af4fe8c9b6 Use pointer gomega comparison for UsageNanoCores
2a4a1c1d005 disable aufs module
0610968bfaa bump metrics-server to 0.5.0
c5aead020b6 cluster: fix CI metrics-server deployment
9103b7187c9 Fetch metrics from controller manager & scheduler no run once
236e72cf8a9 Make CSR cleaner tolerate objects with invalid status.certificate
c1bac408803 Fix SIG Node SSH e2e test
33feaee2c2d Fix windows storage tests
fac3dd6914f CHANGELOG: Update directory for v1.22.0-rc.0 release
59c0523bca0 Using ServiceIPs instead of DNS names in the NetworkPolicy Probes + adding Interface decoupling (#102354)
536cf819747 Add konnectivity agent to log dump
d7ee024cc5d kubelet: Make condition processing in one spot
c2a6d07b8f0 kubelet: Avoid allocating multiple times during status
9efd40d72ad kubelet: Preserve reason/message when phase changes
9d0b32858a5 update cos 85 version to latest.
e5b434e990d kubelet/cm: don't set Devices
eb5df869baa vendor: bump runc to 1.0.1
aeb82243fc8 Revert "tests for statefulset PersistentVolumeClaimDeletePolicy api change"
faed88bb720 Add additional APF test for handling other panic types
ef435b85b47 Optimize APF support for watch initialization to fix the pod startup time regression.
1f2902a336c Fix panic in master upgrade tests
e5a1f86e0ac add apiserver tracing integration test, and fix endpoint validation
10a3cc815be Revert "statefulset PersistentVolumeClaimDeletePolicy api change"
fb5b966a88a Revert "Add StatefulSetAutoDeletePVC feature gate"
0d1aa3a1b87 CHANGELOG: Update directory for v1.21.3 release
1e5ba82fd0b CHANGELOG: Update directory for v1.20.9 release
fc6a5be694a CHANGELOG: Update directory for v1.19.13 release
be34dc95b5d Remove E2E test for NodePreferAvoidPods scheduling Score
a2ea04bab3e tests: Updates cuda-vector-add:1.0 image to the promoted registry
a3b6f0557d2 device-plugins: replace gcr.io/gke-release to use the community registry
f5bc129a991 CHANGELOG: Update directory for v1.22.0-beta.2 release
a6ac42082b4 client-go exec: fix metrics related to plugin not found
5e1b5ec398c Revert counting deleted pods as failures for Job
75748c185ea enable verify-golangci-lint.sh
07332ad3985 fix ineffassign and varcheck
26cc8e40a8f fix deadcode issues
b74fe232e34 update golangci-lint to newer version
416efdab26a Remove Endpoints write access from aggregated edit role
6c61ee51b90 Revert granting EndpointSlice write access to edit role
de9cdab5ae3 kubelet: Prevent runtime-only pods from going into terminated phase
aaa7de0ac67 Update API description for probe.terminationGracePeriodSeconds
bf2ae14501e Move feature flag to beta (but leave as false) and remove the feature flag from Kubelet
83f8d1ad72d [go1.16] Update to go1.16.6
65618bfd696 Add sync reconstructed volume from desired state of world for volumemanager
9fa641b9add test/integration/endpoints: check for pod existencen in TestEndpointWithTerminatingPod
1280a365e4a Revert "use PermitWithoutStream=true for etcd: send pings even without active stream"
bc475373b24 Drop direct dependency on gotest.tools
32783f75684 PodSecurity: Initial webhook implementation
2878e472ad7 test/integration/endpoints: improve docs for TestEndpointWithTerminatingPod
0aa1b3b0bfc test/integration/endpoints: add a test to ensure Endpoints does not include terminating pods
642eff0c69d Rename NodeSwapEnabled flag to NodeSwap
d1ef44242a3 Make khenidak a sig-net approver
c2aaf0667fd PodSecurity: make integration tests run sparsely
9dd59017c4c add tracing to webhook requests
581b088f760 integration test: provide a timeout for /health
a570008cbd6 apf: fix virtual clock
5918869ed6c Revert 103327: "kube-scheduler: ensure the default config output of --write-to-config is usable"
1727cea64c1 Fix index out of range if multiple default plugins are overridden
b14c10ae301 create LeaderMigrationConfiguration v1beta1
40b2155ddb7 promote ControllerManagerLeaderMigration to beta.
995278c9fbb add ControllerManagerLeaderMigration as beta
513bd93f76d update test for feature gate
412962204ff Fix the code is leaking the defaulting between unrelated pod instances
2b88dc381e1 [PodSecurity] Add test coverage for pod-template-containing objects
0fa01c371c9 Mark volume mount as uncertain in case of volume expansion fails
fd0db61d6c3 test/intergration/endpointslice: add tests for endpointslice terminating condition
826a5219dac promote EndpointSliceTerminatingCondition to Beta
a2fb8b00392 smtalign: e2e: add tests
23abdab2b77 smtalign: propagate policy options to policies
6dcec345dfb smtalign: cm: factor out admission response
c5cb263dcf2 smtalign: propagate policy options to cpumanager
6dccad45b4f smtalign: add auto generated code
cc76a756e40 smtalign: add cpu-manager-policy-options flag in Kubelet
649b87aaf85 prevent mutation of deletion options during delete collection
d95b14e1abf Revert "apiserver: add callback to get notified of object count"
d5d9327351d Only use dualstack if the node and config supports it
8e2b728c68a Explicitly skip host file mounting for windows
2dd26221881 Track Job Pods completion in status
7da1a0b2304 update the help text of KubeletConfig following the DynamicKubletConfig feature deprecation
41c5bca3496 kubectl: update set command description to include cronjob resource (#102503)
bb56a0bd048 Add Job.status.uncountedPodUIDs
418fa71b6b1 Simplify use of the fake dynamic client
62d7a417fa6 CHANGELOG: Update directory for v1.22.0-beta.1 release
40f1db8d2d4 update license gathering script for forked code
79e230ea212 fix kubelet panic when DynamicKubeletConfig enabled
b6b3a692843 Don't set sysctl net.ipv4.vs.conn_reuse_mode for kernels >=5.9
369c4a2b98b Use cmp.Diff() replace reflect and diagnosis
7f9d2eda828 limit warnings to requests that would otherwise succeed, reformat warning message
36907db929e PodSecurity: Drop field path from container visitor
78953990777 PodSecurity: seLinuxOptions: regenerate files
d5419707516 PodSecurity: seLinuxOptions: cleanup
19c8ab297c0 PodSecurity: sysctls: cleanup
e178695c25b PodSecurity: seccompProfile_baseline: regenerate files
bebf6129672 PodSecurity: seccompProfile_baseline: cleanup
2af08d1a5a0 PodSecurity: seccompProfile_restricted: regenerate files
88a12412998 PodSecurity: seccompProfile_restricted: cleanup
43146d4377f PodSecurity: runAsNonRoot: regenerate files
5fc06591a2c PodSecurity: runAsNonRoot: cleanup
edb7cdb02aa PodSecurity: restrictedVolumes: regenerate files
676240a342a PodSecurity: restrictedVolumes: cleanup
4a69c579923 PodSecurity: procMount: cleanup
f9b8dfd0e69 PodSecurity: privileged: cleanup
7c704674003 PodSecurity: windowsHostProcess: regenerate files
9dce1d6a493 PodSecurity: windowsHostProcess: cleanup
45485bb7aea PodSecurity: hostPorts: cleanup
f709cf05f41 PodSecurity: hostPathVolumes: regenerate files
a39c448684a PodSecurity: hostPathVolumes: cleanup
826c57701c7 PodSecurity: hostNamespaces: cleanup
62b71175e74 PodSecurity: restricted capabilities: regenerate files
f10dfc6e304 PodSecurity: restricted capabilities: cleanup
bd4dc42a72e PodSecurity: baseline capabilities: regenerate files
809abf4f5b9 PodSecurity: baseline capabilities: cleanup
b390e9e32dd PodSecurity: appArmorProfile: cleanup
8291f8490b9 PodSecurity: allowPrivilegeEscalation: regenerate files
1e2886341a6 PodSecurity: allowPrivilegeEscalation: cleanup
648b970718e PodSecurity: add message helper
92541f46e6b Restore ability to print long strings
5d80665b0a6 Fix dbus config path for GracefulNodeShutdown e2e
6c72fbaa899 update vendor after switch
79d0c6cdc10 switch from golang-lru to the one in k8s.io/utils
3a221b33324 update to new k8s.io/utils
a3f57886a26 fix CleanScope so we can resolve correct verb for apiserver_request_terminations_total
a6b30e96294 podsecurity: added ValidatePodSecurityConfiguration
c3d9b10ca83 feature: support Memory QoS for cgroups v2
80dda49ce22 Service: Fix semantics for Update wrt allocations
6cf3e36c370 kubeadm: statically default the "from cluster" InitConfiguration
0a42f7b9890 Graduate EndpointSliceProxying and WindowsEndpointSliceProxying Gates
1dfacd3c702 PodSecurity: use code/reason/details from admission library
fb9cafc99be sched: provide an option for plugin developers to move pods to activeQ
9bd857ca047 Truncate endpoints over a 1000 addresses
d9e3fbff949 apf: fix bootstrap ensurer log message
bb3fe633b47 add test for triggering race condition
33e6ebc8f8d update translations
ab1807f2bcb copy podStatus.ContainerStatuses before sorting it
1e0f695afa9 fix translations location in update-translations.sh
6408f3dffc0 Update generated files
250f47a45c5 Rename to capabilities_restricted
08608a24f14 Update dropCapabilities check/fixtures
ce257266aa7 client-go: copying object to fix data race (#103148)
2c116055f7e [disruptioncontroller] Don't error for unmanaged pods
a8793dcb3e2 Implement check_dropAllCapabilities.go and test/fixtures_dropAllCapabilities.go
3fadea4ea2e Bump version of Addon Resizer used by Metrics Server
6b736f34848 Minor adjustments to descriptions and example text
cea1dcfeed2 Add watch tracker to APF for request cost estimation
2df05df6982 Avoid code duplication in watchcache
96406b915d3 Clean up the remaining master names in test/integration
7f1c4977d7a Refinements to pick queue logic in P&F
26e83ac4d43 kubelet: ignore /dev/kmsg error when running in userns
192790c52fe kube-proxy: allow running in userns
dbe01551397 kubelet/cm: ignore sysctl error when running in userns
b16323e37ce New feature gate: KubeletInUserNamespace
af19d7f415d fix delete nil pointer panic
d8fe255f413 Add test for validateProbe
e378600c90d Add validation for Prober TerminationGracePeriodSeconds
1ff5ae2cb5f Regenerate
20de04d6c30 Update API documents
00dba76918e Add DataSourceRef field to PVC spec
5b787aa1843 Clean up testing of AllocateLoadBalancerNodePorts
eae4a19bd35 Fix small bug with AllocateLoadBalancerNodePorts
3eadd1a9ead Keep pod worker running until pod is truly complete
68dadd40d63 Fix pkg/api/pod/util tests to ensure feature gate is set
adcfcfa2e78 add yaml separator validation and avoid silent ignoration
04d59ff2df3 test/e2e/network: add Service internalTrafficPolicy test for pod (w/ host network) -> pod (w/ host network)
9977ea371b1 test/e2e/network: add Service internalTrafficPolicy test for pod -> pod (w/ host network)
025c95a778b test/e2e/network: add Service internalTrafficPolicy test pod (w/ host network) -> pod
f6bc5d01402 test/e2e/network: add Service internalTrafficPolicy test pod to pod
2d0f99fba18 Fix resource metrics e2e test
28152a26fee fix: return empty VMAS name if using standalone VM
ad8275f294f Added unit tests for ExpandPathsToFileVisitors
dffc2a60a28 deprecate and disable by default DynamicKubeletConfig feature flag
68ccb8a9477 Use system-validators v1.5.0
b1f34ea205f add RetryOnConflict to pod status updates
6d4096cc69a Upgrade kustomize-in-kubectl to v4.2.0
a46b42a92b8 Manually update kustomize attachment points.
212ce7c2871 Shorten test time
a42c066af70 Fix Data Race in nodeshutdown restart
c69ad8c57a3 e2e: increase readiness gate timeout
71f810bb71e Add distributed tracing to the etcd client
babebf76d39 Apply PSP container tests to EphemeralContainers
aff49ca6846 Generated code for securityContext in EphemeralContainers
70765fa24d5 Allow securityContext in EphemeralContainers
ebe550bd488 Upgrade etcd to 3.5.0
7839668877e GCE Windows: Set TCP/IP parameters to keep idle connections alive on GCE.
30d2ad576ac Remove ManagedPod,ManagedContainer metrics
1c8675fc02f Ensure node e2e apiserver and test suite can open enough files
c4e644406ed test images: Adds windows-nanoserver image
d5cb5065c46 Skip node container manager test on systemd
03d60a89a0c Add build instruction for buildx CLI plugin
82e4ab5ec62 Improve slice allocation in LabelSelectorAsSelector
19c23949154 Add benchmark for LabelSelectorAsSelector
3f0b64ec959 kubectl: show consistent unit format in quota describe
0a83041d4d3 remove Factory that not used
9e372bffeff e2e: test SSH port on NodeSSHHosts
c12aa0f6b75 promote HugePageStorageMediumSize to GA
849dbe034b3 use PermitWithoutStream=true for etcd: send pings even without active streams
29178fff1c9 Add kubelet managed pod metrics
b42c1a3e474 test images: Adds cuda-vector-add-old image
a70323d6320 Updating OWNERS_ALIASES for SIG-Windows
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|---|---|---|
| classes | ||
| conf | ||
| docs | ||
| dynamic-layers | ||
| files | ||
| recipes-containers | ||
| recipes-core | ||
| recipes-devtools | ||
| recipes-extended | ||
| recipes-graphics/xorg-xserver | ||
| recipes-kernel/linux | ||
| recipes-networking | ||
| scripts/lib/wic/plugins/source | ||
| wic | ||
| .gitignore | ||
| COPYING.MIT | ||
| MAINTAINERS | ||
| meta-virt-roadmap.txt | ||
| README | ||
meta-virtualization
This layer provides support for building Xen, KVM, Libvirt, and associated packages necessary for constructing OE-based virtualized solutions.
The bbappend files for some recipes (e.g. linux-yocto) in this layer need to have 'virtualization' in DISTRO_FEATURES to have effect. To enable them, add in configuration file the following line.
DISTRO_FEATURES_append = " virtualization"
If meta-virtualization is included, but virtualization is not enabled as a distro feature a warning is printed at parse time:
You have included the meta-virtualization layer, but
'virtualization' has not been enabled in your DISTRO_FEATURES. Some bbappend files
may not take effect. See the meta-virtualization README for details on enabling
virtualization support.
If you know what you are doing, this warning can be disabled by setting the following variable in your configuration:
SKIP_META_VIRT_SANITY_CHECK = 1
Depending on your use case, there are other distro features in meta-virtualization that may also be enabled:
- xen: enables xen functionality in various packages (kernel, libvirt, etc)
- kvm: enables KVM configurations in the kernel and autoloads modules
- k8s: enables kubernets configurations in the kernel, tools and configuration
- aufs: enables aufs support in docker and linux-yocto
- x11: enable xen and libvirt functionality related to x11
- selinux: enables functionality in libvirt and lxc
- systemd: enable systemd services and unit files (for recipes for support)
- sysvinit: enable sysvinit scripts (for recipes with support)
- seccomp: enable seccomp support for packages that have the capability.
Dependencies
This layer depends on:
URI: git://github.com/openembedded/openembedded-core.git branch: master revision: HEAD prio: default
URI: git://github.com/openembedded/meta-openembedded.git branch: master revision: HEAD layers: meta-oe meta-networking meta-filesystems meta-python
BBFILE_PRIORITY_openembedded-layer = "4"
Required for Xen XSM policy: URI: git://git.yoctoproject.org/meta-selinux branch: master revision: HEAD prio: default
Required for Ceph: URI: git://git.yoctoproject.org/meta-cloud-services branch: master revision: HEAD prio: default
Required for cri-o: URI: git://github.com/advancedtelematic/meta-updater URI: git://git.yoctoproject.org/meta-selinux URI: git://git.yoctoproject.org/meta-security branch: master revision: HEAD prio: default
Community / Colaboration
Repository: https://git.yoctoproject.org/cgit/cgit.cgi/meta-virtualization/ Mailing list: https://lists.yoctoproject.org/g/meta-virtualization IRC: libera.chat #meta-virt channel
Maintenance
Send pull requests, patches, comments or questions to meta-virtualization@lists.yoctoproject.org
Maintainer: Bruce Ashfield bruce.ashfield@gmail.com see MAINTAINERS for more specific information
When sending single patches, please using something like: $ git send-email -1 -M --to meta-virtualization@lists.yoctoproject.org --subject-prefix='meta-virtualization][PATCH'
License
All metadata is MIT licensed unless otherwise stated. Source code included in tree for individual recipes is under the LICENSE stated in each recipe (.bb file) unless otherwise stated.