kubernetes
/
website
mirror of https://github.com/kubernetes/website.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

[zh] Sync several feature gates

pull/50839/head
windsonsea 2025-05-08 09:07:30 +08:00
parent 76ccd588a4
commit 118b38bc10
14 changed files with 112 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
content/zh-cn/docs/reference/command-line-tools-reference/feature-gates/APIListChunking.md
View File

@ -16,7 +16,10 @@ stages:
toVersion: "1.28"
- stage: stable
defaultValue: true
fromVersion: "1.29"
fromVersion: "1.29"
toVersion: "1.32"
removed: true
---
<!--

5
content/zh-cn/docs/reference/command-line-tools-reference/feature-gates/AdmissionWebhookMatchConditions.md
View File

@ -16,7 +16,10 @@ stages:
toVersion: "1.29"
- stage: stable
defaultValue: true
fromVersion: "1.30"
fromVersion: "1.30"
toVersion: "1.32"
removed: true
---
<!--

3
content/zh-cn/docs/reference/command-line-tools-reference/feature-gates/AggregatedDiscoveryEndpoint.md
View File

@ -17,6 +17,9 @@ stages:
- stage: stable
defaultValue: true
fromVersion: "1.30"
toVersion: "1.32"
removed: true
---
<!--

18
content/zh-cn/docs/reference/command-line-tools-reference/feature-gates/AllowParsingUserUIDFromCertAuth.md Normal file
View File

@ -0,0 +1,18 @@
---
title: AllowParsingUserUIDFromCertAuth
content_type: feature_gate
_build:
list: never
render: false
stages:
- stage: alpha
defaultValue: false
fromVersion: "1.33"
---
<!--
When this feature is enabled, the subject name attribute `1.3.6.1.4.1.57683.2`
in an X.509 certificate will be parsed as the user UID during certificate authentication.
-->
当启用此特性时X.509 证书中的主体名称属性 `1.3.6.1.4.1.57683.2` 将在证书认证过程中被解析为用户 UID。

3
content/zh-cn/docs/reference/command-line-tools-reference/feature-gates/EfficientWatchResumption.md
View File

@ -17,6 +17,9 @@ stages:
- stage: stable
defaultValue: true
fromVersion: "1.24"
toVersion: "1.32"
removed: true
---
<!--

3
content/zh-cn/docs/reference/command-line-tools-reference/feature-gates/KubeProxyDrainingTerminatingNodes.md
View File

@ -17,6 +17,9 @@ stages:
- stage: stable
defaultValue: true
fromVersion: "1.31"
toVersion: "1.32"
removed: true
---
<!--

17
content/zh-cn/docs/reference/command-line-tools-reference/feature-gates/ListFromCacheSnapshot.md Normal file
View File

@ -0,0 +1,17 @@
---
title: ListFromCacheSnapshot
content_type: feature_gate
_build:
list: never
render: false
stages:
- stage: alpha
defaultValue: false
fromVersion: "1.33"
---
<!--
Enables the API server to generate snapshots for the watch cache store and using them to serve LIST requests.
-->
允许 API 服务器为 watch 缓存存储生成快照,并使用这些快照来处理 LIST 请求。

3
content/zh-cn/docs/reference/command-line-tools-reference/feature-gates/RemainingItemCount.md
View File

@ -17,6 +17,9 @@ stages:
- stage: stable
defaultValue: true
fromVersion: "1.29"
toVersion: "1.32"
removed: true
---
<!--

36
content/zh-cn/docs/reference/command-line-tools-reference/feature-gates/StrictIPCIDRValidation.md Normal file
View File

@ -0,0 +1,36 @@
---
title: StrictIPCIDRValidation
content_type: feature_gate
_build:
list: never
render: false
stages:
- stage: alpha
defaultValue: false
fromVersion: "1.33"
---
<!--
Use stricter validation for fields containing IP addresses and CIDR values.
-->
对包含 IP 地址和 CIDR 值的字段使用更严格的校验。
<!--
In particular, with this feature gate enabled, octets within IPv4 addresses are
not allowed to have any leading `0`s, and IPv4-mapped IPv6 values (e.g.
`::ffff:192.168.0.1`) are forbidden. These sorts of values can potentially cause
security problems when different components interpret the same string as
referring to different IP addresses (as in CVE-2021-29923).
-->
具体而言启用此特性门控后IPv4 地址中的每个八位字节不允许出现前导 `0`
同时禁止使用 IPv4 映射的 IPv6 值(例如 `::ffff:192.168.0.1`)。
当不同组件将同一个字符串解释为不同的 IP 地址时,这类值可能会导致安全问题
(如 CVE-2021-29923 中所述)。
<!--
This tightening applies only to fields in build-in API kinds, and not to
custom resource kinds, values in Kubernetes configuration files, or
command-line arguments.
-->
该校验收紧仅适用于内置 API 类型中的字段不影响自定义资源类型、Kubernetes 配置文件中的值或命令行参数。

5
content/zh-cn/docs/reference/command-line-tools-reference/feature-gates/TopologyAwareHints.md
View File

@ -17,6 +17,11 @@ stages:
- stage: beta
defaultValue: true
fromVersion: "1.24"
toVersion: "1.32"
- stage: stable
defaultValue: true
locked: true
fromVersion: "1.33"
---
<!--

5
content/zh-cn/docs/reference/command-line-tools-reference/feature-gates/ValidatingAdmissionPolicy.md
View File

@ -6,7 +6,7 @@ _build:
render: false
stages:
- stage: alpha
- stage: alpha
defaultValue: false
fromVersion: "1.26"
toVersion: "1.27"
@ -17,6 +17,9 @@ stages:
- stage: stable
defaultValue: true
fromVersion: "1.30"
toVersion: "1.31"
removed: true
---
<!--

3
content/zh-cn/docs/reference/command-line-tools-reference/feature-gates/VolumeCapacityPriority.md
View File

@ -9,6 +9,9 @@ stages:
- stage: alpha
defaultValue: false
fromVersion: "1.21"
toVersion: "1.32"
removed: true
---
<!--

6
content/zh-cn/docs/reference/command-line-tools-reference/feature-gates/WatchBookmark.md
View File

@ -16,8 +16,12 @@ stages:
toVersion: "1.16"
- stage: stable
defaultValue: true
fromVersion: "1.17"
fromVersion: "1.17"
toVersion: "1.32"
removed: true
---
<!--
Enable support for watch bookmark events.
-->

4
content/zh-cn/docs/reference/command-line-tools-reference/feature-gates/WinDSR.md
View File

@ -9,6 +9,10 @@ stages:
- stage: alpha
defaultValue: false
fromVersion: "1.14"
toVersion: "1.32"
- stage: beta
defaultValue: true
fromVersion: "1.33"
---
<!--