github/k3s - k3s - https://git.xinac.net

Commit Graph

Author	SHA1	Message	Date
Brian Downs	1232cbcc3a	add ability to specify etcd snapshot list output format (#5132 ) (#5178 )	2022-02-26 12:28:46 -07:00
Roberto Bonafiglia	dc970d27ca	Merge pull request #4982 from rbrtbnfgl/ipv6-nat_release-1.21 [Release 1.21] Add IPv6 NAT	2022-01-19 08:45:33 +01:00
Brian Downs	900e5ff519	[Release-1.21] Adds the ability to compress etcd snapshots (#4866 ) (#4959 )	2022-01-18 11:08:46 -07:00
Roberto Bonafiglia	bb3fe9b185	Added flannel-ipv6-masq flag to enable IPv6 nat Signed-off-by: Roberto Bonafiglia <roberto.bonafiglia@gmail.com>	2022-01-18 16:30:04 +01:00
Manuel Buil	8d2170f5c4	Remove Disables, Skips and DisableKubeProxy from the comparing configs Signed-off-by: Manuel Buil <mbuil@suse.com>	2021-12-17 18:45:35 +01:00
Manuel Buil	8ea26cdad1	Check HA network parameters Signed-off-by: Manuel Buil <mbuil@suse.com>	2021-12-08 12:50:24 +01:00
Derek Nola	1055837e4f	Backport secrets-encrypte command (#4658 ) Signed-off-by: Derek Nola <derek.nola@suse.com>	2021-12-07 17:21:10 -08:00
Manuel Buil	1390792919	Improve flannel logging Signed-off-by: Manuel Buil <mbuil@suse.com>	2021-12-01 18:46:07 +01:00
Manuel Buil	fd71ed9f4a	Allow svclb pod to enable ipv6 forwarding Signed-off-by: Manuel Buil <mbuil@suse.com>	2021-11-17 19:50:00 +01:00
Chris Kim	334eae119a	[release-1.21] Add etcd extra args support for K3s (#4471 ) * Export cli server flags and etcd restoration functions (#3527) * Export cli server flags and etfd restoration functions Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com> * export S3 Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com> Signed-off-by: Chris Kim <oats87g@gmail.com> * Add etcd extra args support for K3s Signed-off-by: Chris Kim <oats87g@gmail.com> * Remove integration test Signed-off-by: Chris Kim <oats87g@gmail.com> Co-authored-by: Hussein Galal <galal-hussein@users.noreply.github.com>	2021-11-11 20:36:17 -08:00
Brad Davidson	504e249a5e	Add containerd ready channel to delay etcd node join Signed-off-by: Brad Davidson <brad.davidson@rancher.com> (cherry picked from commit `88178ae65e`)	2021-10-20 11:06:12 -07:00
Brian Downs	4aa9553978	[Release-1.21] - Add etcd s3 timeout (#4207 ) (#4228 )	2021-10-18 10:45:38 -07:00
Hussein Galal	22f7f1c41a	Make sure there are no duplicates in etcd member list (#4025 ) (#4213 ) * Make sure there are no duplicates in etcd member list Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com> * fix node names with hyphens Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com> * use full server name for etcd node name Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>	2021-10-14 23:39:24 +02:00
Chris Kim	863512e055	Initial leader elected etcd member management controller (#4010 ) Signed-off-by: Chris Kim <oats87g@gmail.com>	2021-09-14 10:19:42 -07:00
Brad Davidson	02a5bee62f	Add system-default-registry support and remove shared code (#3285 ) * Move registries.yaml handling out to rancher/wharfie * Add system-default-registry support * Add CLI support for kubelet image credential providers Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2021-05-10 15:58:41 -07:00
Brad Davidson	2705431d96	Add support for dual-stack Pod/Service CIDRs and node IP addresses (#3212 ) * Add support for dual-stack cluster/service CIDRs and node addresses Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2021-04-21 15:56:20 -07:00
Brian Downs	4d1f9eda9d	Etcd Snapshot/Restore to/from S3 Compatible Backends (#2902 ) * Add functionality for etcd snapshot/restore to and from S3 compatible backends. * Update etcd restore functionality to extract and write certificates and configs from snapshot.	2021-03-03 11:14:12 -07:00
Brad Davidson	ec661c67d7	Add support for retagging images on load from tarball Adds support for retagging images to appear to have been sourced from one or more additional registries as they are imported from the tarball. This is intended to support RKE2 use cases with system-default-registry where the images need to appear to have been pulled from a registry other than docker.io. Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2021-02-17 11:48:03 -08:00
Hussein Galal	5749f66aa3	Add disable flags for control components (#2900 ) * Add disable flags to control components Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com> * golint Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com> * more fixes Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com> * fixes to disable flags Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com> * Add comments to functions Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com> * Fix joining problem Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com> * more fixes Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com> * golint Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com> * fix ticker Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com> * fix role labels Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com> * more fixes Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>	2021-02-12 17:35:57 +02:00
Brad Davidson	07256cf7ab	Add ServiceIPRange and ServiceNodePortRange to agent config Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2021-02-03 10:41:51 -08:00
Yuriy	06fda7accf	Add functionality to bind custom IP address for Etcd metrics endpoint (#2750 ) * Add functionality to bind custom IP address for Etcd metrics endpoint Signed-off-by: yuriydzobak <yurii.dzobak@lotusflare.com>	2021-01-22 17:40:48 -08:00
Brian Downs	13229019f8	Add ability to perform an etcd on-demand snapshot via cli (#2819 ) * add ability to perform an etcd on-demand snapshot via cli	2021-01-21 14:09:15 -07:00
Jacob Blain Christen	36230daa86	[migration k3s-io] update kine dependency (#2568 ) rancher/kine ➡️ k3s-io/kine Part of https://github.com/rancher/k3s/issues/2189 Signed-off-by: Jacob Blain Christen <jacob@rancher.com>	2020-11-30 16:45:22 -07:00
MonzElmasry	e8436cc76b	Make etcd use node private ip Signed-off-by: MonzElmasry <menna.elmasry@rancher.com>	2020-10-28 23:45:24 +02:00
Brian Downs	866dc94cea	Galal hussein etcd backup restore (#2154 ) * Add etcd snapshot and restore Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com> * fix error logs Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com> * goimports Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com> * fix flag describtion Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com> * Add disable snapshot and retention Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com> * use creation time for snapshot retention Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com> * unexport method, update var name Signed-off-by: Brian Downs <brian.downs@gmail.com> * adjust snapshot flags Signed-off-by: Brian Downs <brian.downs@gmail.com> * update var name, string concat Signed-off-by: Brian Downs <brian.downs@gmail.com> * revert previous change, create constants Signed-off-by: Brian Downs <brian.downs@gmail.com> * update Signed-off-by: Brian Downs <brian.downs@gmail.com> * updates Signed-off-by: Brian Downs <brian.downs@gmail.com> * type assertion error checking Signed-off-by: Brian Downs <brian.downs@gmail.com> * update Signed-off-by: Brian Downs <brian.downs@gmail.com> * update Signed-off-by: Brian Downs <brian.downs@gmail.com> * update Signed-off-by: Brian Downs <brian.downs@gmail.com> * pr remediation Signed-off-by: Brian Downs <brian.downs@gmail.com> * pr remediation Signed-off-by: Brian Downs <brian.downs@gmail.com> * pr remediation Signed-off-by: Brian Downs <brian.downs@gmail.com> * pr remediation Signed-off-by: Brian Downs <brian.downs@gmail.com> * pr remediation Signed-off-by: Brian Downs <brian.downs@gmail.com> * updates Signed-off-by: Brian Downs <brian.downs@gmail.com> * updates Signed-off-by: Brian Downs <brian.downs@gmail.com> * simplify logic, remove unneeded function Signed-off-by: Brian Downs <brian.downs@gmail.com> * update flags Signed-off-by: Brian Downs <brian.downs@gmail.com> * update flags Signed-off-by: Brian Downs <brian.downs@gmail.com> * add comment Signed-off-by: Brian Downs <brian.downs@gmail.com> * exit on restore completion, update flag names, move retention check Signed-off-by: Brian Downs <brian.downs@gmail.com> * exit on restore completion, update flag names, move retention check Signed-off-by: Brian Downs <brian.downs@gmail.com> * exit on restore completion, update flag names, move retention check Signed-off-by: Brian Downs <brian.downs@gmail.com> * update disable snapshots flag and field names Signed-off-by: Brian Downs <brian.downs@gmail.com> * move function Signed-off-by: Brian Downs <brian.downs@gmail.com> * update field names Signed-off-by: Brian Downs <brian.downs@gmail.com> * update var and field names Signed-off-by: Brian Downs <brian.downs@gmail.com> * update var and field names Signed-off-by: Brian Downs <brian.downs@gmail.com> * update defaultSnapshotIntervalMinutes to 12 like rke Signed-off-by: Brian Downs <brian.downs@gmail.com> * update directory perms Signed-off-by: Brian Downs <brian.downs@gmail.com> * update etc-snapshot-dir usage Signed-off-by: Brian Downs <brian.downs@gmail.com> * update interval to 12 hours Signed-off-by: Brian Downs <brian.downs@gmail.com> * fix usage typo Signed-off-by: Brian Downs <brian.downs@gmail.com> * add cron Signed-off-by: Brian Downs <brian.downs@gmail.com> * add cron Signed-off-by: Brian Downs <brian.downs@gmail.com> * add cron Signed-off-by: Brian Downs <brian.downs@gmail.com> * wire in cron Signed-off-by: Brian Downs <brian.downs@gmail.com> * wire in cron Signed-off-by: Brian Downs <brian.downs@gmail.com> * wire in cron Signed-off-by: Brian Downs <brian.downs@gmail.com> * wire in cron Signed-off-by: Brian Downs <brian.downs@gmail.com> * wire in cron Signed-off-by: Brian Downs <brian.downs@gmail.com> * wire in cron Signed-off-by: Brian Downs <brian.downs@gmail.com> * wire in cron Signed-off-by: Brian Downs <brian.downs@gmail.com> * update deps target to work, add build/data target for creation, and generate Signed-off-by: Brian Downs <brian.downs@gmail.com> * remove dead make targets Signed-off-by: Brian Downs <brian.downs@gmail.com> * error handling, cluster reset functionality Signed-off-by: Brian Downs <brian.downs@gmail.com> * error handling, cluster reset functionality Signed-off-by: Brian Downs <brian.downs@gmail.com> * update Signed-off-by: Brian Downs <brian.downs@gmail.com> * remove intermediate dapper file Signed-off-by: Brian Downs <brian.downs@gmail.com> Co-authored-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>	2020-08-28 16:57:40 -07:00
Brad Davidson	b1d017f892	Update dynamiclistener Second round of fixes for #1621 Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2020-08-18 10:38:47 -07:00
Jacob Blain Christen	e2089bea18	cli: add --selinux flag to agent/server sub-cmds (#2111 ) * cli: add --selinux flag to agent/server sub-cmds Introduces --selinux flag to affirmatively enable SELinux in containerd. Deprecates --disable-selinux flag which now defaults to true which auto-detection of SELinux configuration for containerd is no longer supported. Specifying both --selinux and --disable-selinux will result in an error message encouraging you to pick a side. * Update pkg/agent/containerd/containerd.go update log warning message about enabled selinux host but disabled runtime Co-authored-by: Brad Davidson <brad@oatmail.org> Signed-off-by: Jacob Blain Christen <jacob@rancher.com>	2020-08-11 16:17:32 -07:00
Brian Downs	5a81fdbdc5	update cis flag implementation to propogate the rest of the way through to kubelet Signed-off-by: Brian Downs <brian.downs@gmail.com>	2020-07-20 16:31:56 -07:00
Jason	e3f8789114	Add containerd snapshotter flag (#1991 ) * Add containerd snapshotter flag Signed-off-by: Jason-ZW <zhenyang@rancher.com> * Fix CamelCase nit and option description Signed-off-by: Brad Davidson <brad.davidson@rancher.com> Signed-off-by: Jason-ZW <zhenyang@rancher.com> Co-authored-by: Brad Davidson <brad@oatmail.org>	2020-07-18 01:16:23 +02:00
Darren Shepherd	6b5b69378f	Add embedded etcd support This is replaces dqlite with etcd. The each same UX of dqlite is followed so there is no change to the CLI args for this.	2020-06-06 16:39:41 -07:00
Darren Shepherd	39571424dd	Generate etcd certificates	2020-06-06 16:39:41 -07:00
Darren Shepherd	a18d387390	Refactor clustered DB framework	2020-06-06 16:39:41 -07:00
Chuck Schweizer	ca9c9c2e1e	Adding support for TLS MinVersion and CipherSuites This will watch for the following kube-apiserver-arg variables and apply them to the k3s kube-apiserver https listener. --kube-apiserver-arg=tls-cipher-suites=XXXXXXX --kube-apiserver-arg=tls-min-version=XXXXXXX	2020-05-07 09:27:09 -05:00
Darren Shepherd	cb4b34763e	Merge pull request #1759 from ibuildthecloud/background Start kube-apiserver in the background	2020-05-06 21:50:48 -07:00
Darren Shepherd	072396f774	Start kube-apiserver in the background In rke2 everything is a static pod so this causes a chicken and egg situation in which we need the kubelet running before the kube-apiserver can be launched. By starting the apiserver in the background this allows us to do this odd bootstrapping.	2020-05-06 21:17:23 -07:00
Darren Shepherd	2f5ee914f9	Add supervisor port In k3s today the kubernetes API and the /v1-k3s API are combined into one http server. In rke2 we are running unmodified, non-embedded Kubernetes and as such it is preferred to run k8s and the /v1-k3s API on different ports. The /v1-k3s API port is called the SupervisorPort in the code. To support this separation of ports a new shim was added on the client in then pkg/agent/proxy package that will launch two load balancers instead of just one load balancer. One load balancer for 6443 and the other for 9345 (which is the supervisor port).	2020-05-05 15:54:51 -07:00
Darren Shepherd	70ddc799bd	Merge pull request #1691 from ibuildthecloud/staticpod Suppport static pods at ${datadir}/agent/staticpods	2020-05-05 14:35:45 -07:00
Darren Shepherd	8c7fbe3dde	Suppport static pods at ${datadir}/agent/pod-manifests	2020-05-05 12:43:47 -07:00
Erik Wilson	c941e1d0bb	Merge pull request #1695 from ibuildthecloud/kubeproxy Add ability to disable kubeproxy	2020-05-04 20:26:22 -07:00
Darren Shepherd	3c8e0b4157	No longer use basic auth for default admin account	2020-04-28 16:01:33 -07:00
Darren Shepherd	5715e1ba0d	Add ability to disable kubeproxy	2020-04-27 11:24:00 -07:00
Erik Wilson	a3cb9ee1f6	Simplify SELinux detection and add --disable-selinux flag	2020-02-28 10:10:55 -07:00
Erik Wilson	0374c4f63d	Add --disable flag	2020-01-30 16:45:01 -07:00
Erik Wilson	1a2690d7be	Merge pull request #1192 from galal-hussein/add_encryption_config Add secret encryption config	2020-01-27 13:59:09 -07:00
Erik Wilson	7675f9f85c	Clean up host-gw variable names	2020-01-08 17:43:07 -07:00
Segator	6736e24673	support hostgw	2020-01-08 17:43:07 -07:00
galal-hussein	388cd9c4e8	Add secret encryption configuration	2019-12-23 13:16:27 +02:00
galal-hussein	99b8222e8d	Change storage to datastore	2019-11-15 21:52:07 -07:00
Erik Wilson	55c05ac500	Refactor node password location	2019-11-12 15:30:34 -07:00
Darren Shepherd	0ae20eb7a3	Support both http and db based bootstrap	2019-11-12 01:12:24 +00:00

1 2

90 Commits (3cd7a46b8fb9362fb490bec641ddd7e25c1d93f7)