Commit Graph

315 Commits (2858f89a5b618e184f91c424305cfc885385d681)

Author SHA1 Message Date
Brad Davidson 2858f89a5b Bump quic-go for CVE-2023-49295
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2024-01-11 16:29:20 -08:00
Brad Davidson f3c6250b28 Add embedded registry implementation
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 37e9b87f62)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2024-01-11 16:29:20 -08:00
Pedro Tashima 19b361f30b
Update to v1.28.5-k3s1 (#9081)
* Update to v1.28.5

Signed-off-by: Pedro Tashima <pedro.tashima@suse.com>

* Update Golang to 1.20.12

Signed-off-by: Pedro Tashima <pedro.tashima@suse.com>

---------

Signed-off-by: Pedro Tashima <pedro.tashima@suse.com>
Co-authored-by: Pedro Tashima <pedro.tashima@suse.com>
2023-12-20 20:47:19 -03:00
Brad Davidson 71a3c35fb7 Bump containerd to v1.7.11
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-12-11 17:04:52 -08:00
Brad Davidson b9c288f702 Bump containerd/runc to v1.7.10-k3s1/v1.1.10
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-12-08 18:17:19 -08:00
Johnatas 3f23723035
Update to v1.28.4 (#8920)
Signed-off-by: Johnatas <johnatas.santos@suse.com>
2023-11-22 15:01:45 -03:00
Brad Davidson 3a6284e2b9 Bump dynamiclistener to fix secret sync race
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-11-17 10:09:01 -08:00
Brad Davidson 32a1efa408 Bump kine to fix multiple issues
Ref: https://github.com/k3s-io/kine/releases/tag/v0.11.0
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-11-14 15:50:56 -08:00
Johnatas 6aef26e94b
Update to v1.28.3 (#8682) 2023-10-19 16:54:48 -07:00
Brad Davidson 3abc8b82ed Bump traefik, golang.org/x/net, google.golang.org/grpc
Fixes exposure to CVE-2023-39325

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-10-13 09:45:54 -07:00
Brad Davidson 5fe4f6709a Bump containerd to v1.7.7-k3s1
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-10-12 14:46:26 -07:00
Roberto Bonafiglia ad206310d1 Update kube-router
Signed-off-by: Roberto Bonafiglia <roberto.bonafiglia@suse.com>
2023-09-27 10:41:48 +02:00
Johnatas 6330a5b49c
Update to v1.28.2 and go v1.20.8 (#8364)
* Update to v1.28.2

Signed-off-by: Johnatas <johnatasr@hotmail.com>

* Bump containerd and stargz versions

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>

* Print message on upgrade fail

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>

* Send Bad Gateway instead of Service Unavailable when tunnel dial fails

Works around new handling for Service Unavailable by apiserver aggregation added in kubernetes/kubernetes#119870

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>

* Add 60 seconds to server upgrade wait to account for delays in apiserver readiness

Also change cleanup helper to ensure upgrade test doesn't pollute the
images for the rest of the tests.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>

---------

Signed-off-by: Johnatas <johnatasr@hotmail.com>
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
Co-authored-by: Brad Davidson <brad.davidson@rancher.com>
2023-09-19 10:18:47 -03:00
Brad Davidson 550dd0578f Bump kine to v0.10.3
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-09-08 13:01:59 -07:00
Derek Nola 2cb7023660 Use already imported semver, bump kine
Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-08-25 14:17:00 -06:00
Hussein Galal 62db5fa27c
Update to v1.28.1 (#8239)
Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
2023-08-24 23:27:06 +03:00
Hussein Galal af50e1b096
Update to v1.28.0-k3s1 (#8199)
* Update to v1.28.0

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* Update golang to v1.20.7

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* more changes

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* update wrangler

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* update wrangler

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* fix nodepassword test

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* fix nodepassword test

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* disable CGO before running golangci-lint

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* execlude CGO Enabled checks

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* Ignore reapply change error with logging

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* Update google api client

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

---------

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
2023-08-23 00:09:31 +03:00
Manuel Buil e31f00f863 Move flannel to 0.22.2
Signed-off-by: Manuel Buil <mbuil@suse.com>
2023-08-18 09:11:30 +02:00
Brad Davidson 84ded911e9 Bump helm-controller/klipper-helm versions
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-08-15 22:24:12 -07:00
Brad Davidson 66bae3e326 Bump dynamiclistener for init deadlock fix
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-08-15 16:36:12 -07:00
Brad Davidson fd531140e5 Bump kine to v0.10.2
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-08-03 14:55:37 -07:00
Brad Davidson 23d6842f9a Bump versions for etcd, containerd, runc, kine
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-08-03 01:26:10 -07:00
Brad Davidson a0da8eded3 Bump docker/docker to master commit
Fixes issue with invalid HTTP host headers over unix sockets caused by
recent releases of golang rejecting invalid header values.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-08-02 11:34:11 -07:00
Guilherme Macedo cc9dce5764
Security bump to docker/distribution (#8047)
Signed-off-by: Guilherme Macedo <guilherme@gmacedo.com>
2023-07-31 17:02:39 -04:00
Manuel Buil 780e638099 Update flannel to v0.22.1
Signed-off-by: Manuel Buil <mbuil@suse.com>
2023-07-27 11:41:59 +02:00
Pedro Tashima d8ae6ef59b
Update to v1.27.4 (#8014)
Signed-off-by: Pedro Tashima <pedro.tashima@suse.com>
Co-authored-by: Pedro Tashima <pedro.tashima@suse.com>
2023-07-20 13:14:51 -03:00
Daishan Peng ce3443ddf6 Allow k3s to customize apiServerPort on helm-controller
Signed-off-by: Daishan Peng <daishan@acorn.io>
2023-07-03 11:09:49 -07:00
Brooks Newberry fe9604cac1
Update Kubernetes to v1.27.3 (#7790)
Signed-off-by: Brooks Newberry <brooks@newberry.com>
2023-06-15 06:59:49 -07:00
Brad Davidson b66a118362 Bump helm-controller to v0.15.0 for create-namespace support
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-06-12 10:52:49 -07:00
Derek Nola 3a8e98a3b8
Bump docker go.mod (#7681)
Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-06-07 15:55:29 -07:00
Brad Davidson e5e1a674ce Enable containerd aufs/devmapper/zfs snapshotter plugins
These were unintentionally dropped when moving containerd back into the main multicall binary

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-06-05 15:32:30 -07:00
Manuel Buil d1b0254b91 Update flannel version
Signed-off-by: Manuel Buil <mbuil@suse.com>
2023-05-30 10:41:15 +02:00
Brad Davidson fe554fe703 Pin emicklei/go-restful to v3.9.0
Fix regression in legacy API prefix, until upstream pulls in support for MergePathStrategy from https://github.com/emicklei/go-restful/pull/523

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-05-23 18:01:19 -07:00
Brian Downs d069a85fcc
Update to v1.27.2-k3s1 (#7575) 2023-05-18 10:24:04 -07:00
Brad Davidson cbe8d33c93 Bump containerd/runc to v1.7.1-k3s1/v1.1.7
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-05-11 13:32:38 -07:00
Brad Davidson 8f450bafe1 Bump helm-controller version for repo auth/ca support
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-05-10 14:57:37 -07:00
Brad Davidson 607cbf0ad6 Bump containerd to v1.7.0 and move back into multicall binary
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-05-10 08:34:03 -07:00
Roberto Bonafiglia 9ec1789c21 Bump kube-router version to fix a bug when a port name is used
Signed-off-by: Roberto Bonafiglia <roberto.bonafiglia@suse.com>
2023-05-09 18:21:29 +02:00
Brad Davidson b32bf49541 Bump kine to v0.10.1
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-05-05 15:54:19 -07:00
Derek Nola ef648b7a5d
Bump Runc and Containerd (#7339)
* Bump runc

Signed-off-by: Derek Nola <derek.nola@suse.com>

* Bump to containerd, recombine build and go.mod version

Signed-off-by: Derek Nola <derek.nola@suse.com>

---------

Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-04-28 09:37:32 -07:00
Brad Davidson ad41fb8c96 Create CRDs with schema
Fixes an issue where CRDs were being created without schema, allowing
resources with invalid content to be created, later stalling the
controller ListWatch event channel when the invalid resources could not
be deserialized.

This also requires moving Addon GVK tracking from a status field to
an annotation, as the GroupVersionKind type has special handling
internal to Kubernetes that prevents it from being serialized to the CRD
when schema validation is enabled.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-04-27 20:42:46 -07:00
Derek Nola f076080b2b
Bump cri-dockerd (#7347)
Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-04-24 15:57:14 -07:00
Derek Nola f2bde63eea
Kubernetes v1.27.1 (#7271)
* Bump go version to 1.20.3 to match upstream
* Bump cri-dockerd
* Bump golanci-lint
* go generate
* Bump selinux in cgroup test
* Bump to v1.27.1 tags
* Release documentation improvements
* Only run upgrade e2e test on PR

Signed-off-by: Derek Nola <derek.nola@suse.com>
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
Co-authored-by: Brad Davidson <brad.davidson@rancher.com>
2023-04-18 21:48:36 -07:00
Brian Downs 257fa2c54c
Update to v1.26.4-k3s1 (#7282) 2023-04-13 13:51:37 -07:00
Roberto Bonafiglia 0c683720ad Update kube-router to insert iptables rules right after kubernetes ones
Signed-off-by: Roberto Bonafiglia <roberto.bonafiglia@suse.com>
2023-04-12 22:33:10 +02:00
Roberto Bonafiglia 3e3512bdae Updated kube-route version to move the iptables ACCEPT default rule at the end of the chain
Signed-off-by: Roberto Bonafiglia <roberto.bonafiglia@suse.com>
2023-04-06 09:55:34 +02:00
Brad Davidson 5dece799df Update remotedialer to silence errors when disconnecting
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-04-04 12:02:22 -07:00
Hussein Galal 127cea1f3f
Upgrade helm-controller to v0.13.3 (#7209)
* Upgrade helm-controller to v0.13.3

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* Upgrade klipper-helm image in the airgap list

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

---------

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
2023-04-04 20:20:40 +02:00
Brad Davidson 877247a691 Bump runc to v1.1.5
Addresses GHSA-m8cg-xc2p-r3fc GHSA-vpvm-3wq2-2wvm GHSA-g2j6-57v7-gm8c

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-04-03 17:00:44 -07:00
Brad Davidson eb982bbbde Bump etcd to v3.5.7
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-04-03 17:00:30 -07:00