github
/
k3s
mirror of https://github.com/k3s-io/k3s
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
3,240 Commits
32 Branches
873 Tags
629 MiB
Commit Graph

3240 Commits (92f8dc0a150e1e25377490cbb198968237aaf9d1)

Author SHA1 Message Date
Brad Davidson 92f8dc0a15 Ensure remotedialer kubelet connections use kubelet bind address 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit eb8bd15889)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-07-15 10:14:33 -07:00
github-actions[bot] 2bdaaed7bb Bump Local Path Provisioner version (#10394) 
* chore: Bump Local Path Provisioner version

Made with ❤️️ by updatecli

---------

Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
(cherry picked from commit a0b374508e)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-07-15 10:14:33 -07:00
dependabot[bot] 82b6cbc9a8 Bump github.com/hashicorp/go-retryablehttp from 0.7.4 to 0.7.7 
Bumps [github.com/hashicorp/go-retryablehttp](https://github.com/hashicorp/go-retryablehttp) from 0.7.4 to 0.7.7.
- [Changelog](https://github.com/hashicorp/go-retryablehttp/blob/main/CHANGELOG.md)
- [Commits](https://github.com/hashicorp/go-retryablehttp/compare/v0.7.4...v0.7.7)

---
updated-dependencies:
- dependency-name: github.com/hashicorp/go-retryablehttp
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
(cherry picked from commit f6942f3de4)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-07-15 10:14:33 -07:00
Brad Davidson 5c81c715bf Bump k3s-root to v0.14.0 
Also remove the wg-add script that has been unused since v1.26 dropped the legacy wireguard backend

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 047664b610)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-07-15 10:14:33 -07:00
Roberto Bonafiglia b4b156d9d1 Update flannel to v0.25.4 and fixed issue with IPv6 mask 
Signed-off-by: Roberto Bonafiglia <roberto.bonafiglia@suse.com>
 2024-07-01 18:58:20 +02:00
Brad Davidson 83ae095ab9 Replace 1-weight semaphore on snapshots with simple mutex 
Fixes an issue where the semaphore wasn't permanently initialized
until a scheduled snapshot was taken, allowing multiple on-demand
snapshots to be taken until the first scheduled snapshot was triggered.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-06-19 09:48:09 -07:00
Brad Davidson 4a5f69fae1 Fix agent supervisor port using apiserver port instead 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-06-13 15:13:34 -07:00
Brooks Newberry c1df57555d
[release-1.29] Update Kubernetes to v1.29.6 (#10348) 
Signed-off-by: Brooks Newberry <brooks@newberry.com>
 2024-06-13 09:09:41 -07:00
Derek Nola 8ac224148a
Expand GHA go caching to includ newest release branch (#10334) 
Signed-off-by: Derek Nola <derek.nola@suse.com>
 2024-06-10 08:53:50 -07:00
Harrison Affel 125f5bf501 fix typo, use rancher/permissions 
Signed-off-by: Harrison Affel <harrisonaffel@gmail.com>
 2024-06-07 08:31:26 -07:00
Brad Davidson 3ef137a8d2 Fix race condition panic in loadbalancer.nextServer 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-06-07 07:40:10 -07:00
fmoral2 12864fb665
Add test for `isValidResolvConf` (#10302) 
Signed-off-by: Francisco <francisco.moral@suse.com>
 2024-06-07 11:07:27 -03:00
Vitor Savian 013ec43b02 Add snapshot retention etcd-s3-folder fix 
* Add snapshot retention folder fix

Signed-off-by: Vitor Savian <vitor.savian@suse.com>

* Add snapshot retention E2E test

Signed-off-by: Vitor Savian <vitor.savian@suse.com>

---------

Signed-off-by: Vitor Savian <vitor.savian@suse.com>
 2024-06-06 20:17:39 -03:00
Brad Davidson 485eaf31b4 Fix bug that caused agents to bypass local loadbalancer 
If proxy.SetAPIServerPort was called multiple times, all calls after the
first one would cause the apiserver address to be set to the default
server address, bypassing the local load-balancer. This was most likely
to occur on RKE2, where the supervisor may be up for a period of time
before it is ready to manage node password secrets, causing the agent
to retry.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 1661f1024a)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-06-04 12:48:16 -07:00
Koen de Laat 9fedcc5220 fix: Use actual warningPeriod in certmonitor 
Signed-off-by: Koen de Laat <koen.de.laat@philips.com>
(cherry picked from commit 79ba10f5ec)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-06-04 12:48:16 -07:00
github-actions[bot] c5efab64d0 Bump Local Path Provisioner version (#10268) 
* chore: Bump Local Path Provisioner version

Made with ❤️️ by updatecli

(cherry picked from commit 1268779ea0)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-06-04 12:48:16 -07:00
Katherine Door da2625d1a9 Add write-kubeconfig-group flag to server (#9233) 
* Add write-kubeconfig-group flag to server
* update kubectl unable to read config message for kubeconfig mode/group

Signed-off-by: Katherine Pata <me@kitty.sh>
(cherry picked from commit 7a0ea3c953)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-05-31 09:16:55 -07:00
Brad Davidson 2c50f4aa5b Fix embedded mirror blocked by SAR RBAC and re-enable test 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-05-31 09:16:55 -07:00
Brad Davidson 8262c02cdd Fix issue caused by sole server marked as failed under load 
If health checks are failing for all servers, make a second pass through the server list with health-checks ignored before returning failure

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit ca39614d4e)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-05-31 09:16:55 -07:00
Brad Davidson 2e7b394713 Fix netpol crash when node remains tained unintialized 
It is concievable that users might take more than 60 seconds to deploy their own cloud-provider. Instead of exiting, we should wait forever, but with more logging to indicate what's being waited on.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit ed23a2bb48)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-05-31 09:16:55 -07:00
github-actions[bot] 8fdeedaa7b chore: Bump Trivy version 
Made with ❤️️ by updatecli

(cherry picked from commit f2e7c01acf)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-05-31 09:16:55 -07:00
dependabot[bot] de15915c9c Bump ubuntu from 22.04 to 24.04 in /tests/e2e/scripts 
Bumps ubuntu from 22.04 to 24.04.

---
updated-dependencies:
- dependency-name: ubuntu
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
(cherry picked from commit 4cb4542c3a)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-05-31 09:16:55 -07:00
Brad Davidson 7fc90652ac Use busybox tar to avoid issues with fchmodat2 on arm 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 84b578ec74)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-05-31 09:16:55 -07:00
dependabot[bot] b2a2ac0afc Bump alpine from 3.18 to 3.20 in /package 
Bumps alpine from 3.18 to 3.20.

---
updated-dependencies:
- dependency-name: alpine
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
(cherry picked from commit 86875c97bb)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-05-31 09:16:55 -07:00
dependabot[bot] 47116cb425 Bump alpine from 3.18 to 3.20 in /conformance 
Bumps alpine from 3.18 to 3.20.

---
updated-dependencies:
- dependency-name: alpine
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
(cherry picked from commit de4cda57e6)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-05-31 09:16:55 -07:00
Brad Davidson e053c0434a Update golangci-lint to stop using deprecated skip files/dirs 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 2eca3f1e2c)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-05-31 09:16:55 -07:00
Brad Davidson 0a728b8ff9 Convert remaining http handlers over to use util.SendError 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit f8e0648304)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-05-31 09:16:55 -07:00
Brad Davidson 7ef30a2c60 Refactor supervisor listener startup and add metrics 
* Refactor agent supervisor listener startup and authn/authz to use upstream
  auth delegators to perform for SubjectAccessReview for access to
  metrics.
* Convert spegel and pprof handlers over to new structure.
* Promote bind-address to agent flag to allow setting supervisor bind
  address for both agent and server.
* Promote enable-pprof to agent flag to allow profiling agents. Access
  to the pprof endpoint now requires client cert auth, similar to the
  spegel registry api endpoint.
* Add prometheus metrics handler.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit ff679fb3ab)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-05-31 09:16:55 -07:00
galal-hussein c9f3efbe11 Add proctitle package with linux and windows constraints 
Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
(cherry picked from commit 48ff3bcddb)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-05-31 09:16:55 -07:00
Brad Davidson 2b63eb4a27 Fix issue with k3s-etcd informers not starting 
Start shared informer caches when k3s-etcd controller wins leader election. Previously, these were only started when the main k3s apiserver controller won an election. If the leaders ended up going to different nodes, some informers wouldn't be started

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 3d14092f76)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-05-31 09:16:55 -07:00
Anuj Garg 6f4fd6d9c3 Updating the script binary_size_check to complete the command name by adding .exe extension to the k3s binary name to make it available to run stat command 
Signed-off-by: Anuj Garg <anujgarg@microsoft.com>
(cherry picked from commit eb192197eb)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-05-31 09:16:55 -07:00
Brad Davidson 77407d0068 Bump klipper-helm image for tls secret support 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 6683fcdb65)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-05-31 09:16:55 -07:00
huangzy d40fc0878f allow helm controller set owner reference 
Signed-off-by: huangzy <huangzynn@outlook.com>
(cherry picked from commit 6fcaad553d)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-05-31 09:16:55 -07:00
Robert Rose 8a7b0b75fe Follow directory symlinks in auto deploying manifests (#9288) 
Signed-off-by: Robert Rose <robert.rose@mailbox.org>
(cherry picked from commit 6886c0977f)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-05-31 09:16:55 -07:00
zouxianyu 23e87f2521 add missing kernel config check 
Signed-off-by: zouxianyu <2979121738@qq.com>
(cherry picked from commit c1cb5d63b9)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-05-31 09:16:55 -07:00
linxin d386eaf904 Validate resolv.conf for presence of nameserver entries 
Co-authored-by: Brad Davidson <brad@oatmail.org>
Signed-off-by: linxin <linxin@geedgenetworks.com>
(cherry picked from commit f24ba9d3a9)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-05-31 09:16:55 -07:00
Brad Davidson 2434cfd46e Bump kine to v0.11.9 to fix pagination 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 2669d67a9b)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-05-31 09:16:55 -07:00
Brad Davidson 30cf166b8a bump minio-go to v7.0.70 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit afdcc83afe)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-05-31 09:16:55 -07:00
Brad Davidson d1b3a02af2 Add support for svclb pod PriorityClassName 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 37f97b33c9)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-05-31 09:16:55 -07:00
Brad Davidson 6452a5ea1b Update local-path-provisioner helper script 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit b453630478)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-05-31 09:16:55 -07:00
Brad Davidson 2f3d3aa05b Fix issue with local traffic policy for single-stack services on dual-stack nodes. 
Just enable IP forwarding for all address families regardless of service address families.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 095ecdb034)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-05-31 09:16:55 -07:00
Brad Davidson ef8bd94480 Bump spegel version 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 5cf4d75749)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-05-31 09:16:55 -07:00
Brad Davidson ea66a4e8cb bump etcd to v3.5.13 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit bf8b15e7ae)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-05-31 09:16:55 -07:00
Brad Davidson 3056358e3d Bump containerd to v1.7.17 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit aaa578785c)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-05-31 09:16:55 -07:00
Brad Davidson c7d8e98b37 Switch stargz over to cri registry config_path 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 30999f9a07)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-05-31 09:16:55 -07:00
Brad Davidson bfc17af8bb Use fixed stream server bind address for cri-dockerd 
Will now use 127.0.0.1:10010, same as containerd's CRI

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 7374010c0c)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-05-31 09:16:55 -07:00
Brad Davidson c4226adc8f Add WithSkipMissing to not fail import on missing blobs 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 5f6b813cc8)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-05-31 09:16:55 -07:00
Nikos Pitsillos fa351253a1 Improve tailscale test & add extra log in e2e tests 
Signed-off-by: Manuel Buil <mbuil@suse.com>
 2024-05-28 22:24:09 +02:00
Roberto Bonafiglia e600877338 Update kube-router version to v2.1.2 
Signed-off-by: Roberto Bonafiglia <roberto.bonafiglia@suse.com>
 2024-05-28 15:21:54 +02:00
thomasferrandiz 1b16cd1492
Merge pull request #10220 from thomasferrandiz/issue-9957_release-1.29 
[Release 1.29] Bump flannel version to v0.25.2
 2024-05-28 11:32:45 +02:00