Commit Graph

901 Commits (965d0a08ef62b1d14bf5b115e09b520d7e995ad7)

Author SHA1 Message Date
Brad Davidson dc556cbb72 Set controller authn/authz kubeconfigs
3 years ago
Brad Davidson 199424b608 Pass context into all Executor functions
3 years ago
Chris Kim 928b8531c3
[master] Add `etcd-member-management` controller to K3s (#4001)
3 years ago
Brad Davidson 57377d2cd4 Minor cleanup on cribbed function
3 years ago
Brad Davidson 3449d5b9f9 Wait for apiserver readyz instead of healthz
3 years ago
Brad Davidson b4d8c641c6 Add exposed metrics listener instead of replacing loopback listener
3 years ago
Brad Davidson 29c8b238e5 Replace klog with non-exiting fork
3 years ago
Brad Davidson 90960ebf4e SupportPodPidsLimit is locked to true of 1.20, making pids cgroup support mandatory
3 years ago
Darren Shepherd 741ba95b04 Migrate sqlite data to etcd when initializing the cluster
3 years ago
Devin Buhl a1ec43e0b7
feat: add option to disable s3 over https
3 years ago
Kohei Tokunaga 8b857eef9c
Ship Stargz Snapshotter (#2936)
3 years ago
Brad Davidson cf12a13175 Add missing node name entry to apiserver SAN list
3 years ago
Brad Davidson b8add39b07 Bump kine for metrics/tls changes
3 years ago
Hussein Galal 933052a02c
Fix condition for adding kubernetes endpoints (#3941)
3 years ago
Derek Nola 60297a1bbe
Creation of K3s integration test Sonobuoy plugin (#3931)
3 years ago
Brad Davidson 2a68c7c8a4 Fix issue where addon checksum was never stored
3 years ago
Manuel Buil 2e5c9e5cad
Merge pull request #3916 from manuelbuil/net_v6
3 years ago
Manuel Buil 96dcef478a Add functions to separate ipv4 from ipv6 functions
3 years ago
Derek Nola 114b30277f
Redux: Enable K3s integration test to run on existing cluster (#3905)
3 years ago
Akihiro Suda 331c6fed71 Remove runtime V1 (`containerd-shim`)
3 years ago
Akihiro Suda 176451f4ea
Fix rootless regression in 1.22 (Set KubeletInUserNamespace gate) (#3901)
3 years ago
Derek Nola 66dacc6ee0
Revert "Enable K3s integration test to run on existing cluster (#3892)" (#3899)
3 years ago
Derek Nola 703b5af950
Enable K3s integration test to run on existing cluster (#3892)
3 years ago
Brad Davidson e95b75409a Fix lint failures
3 years ago
Brad Davidson a5355f0827 Replace dropped v1beta1 APIs with v1
3 years ago
Brad Davidson dc14f370c4 Update wrangler to v0.8.5
3 years ago
Brad Davidson c434db7cc6 Wrap errors in runControllers for additional context
3 years ago
Brad Davidson 422d266da2 Disable deprecated insecure port
3 years ago
Brad Davidson 641ab26fde Update containerd to 1.5
3 years ago
Brad Davidson 872855015c Update etcd to v3.5.0
3 years ago
Brad Davidson e204d863a5 Update Kubernetes to v1.22.1
3 years ago
Derek Nola ed5991f13b
K3s Flock Integration Test (#3887)
3 years ago
Hussein Galal e322924781
Reset load balancer state during restoraion (#3877)
3 years ago
Malte Starostik b23955e835
Fix URL pruning when joining an etcd member (#3832)
3 years ago
Derek Nola a1e36153f9
Added locking system for integration tests (#3820)
3 years ago
Jamie Phillips ae909c73e5 Updated the code to use GetNetworkByName and tweaked logic.
3 years ago
Derek Nola 4cc781b5e3
Moved testing utils into tests directory. Improved gotests template. (#3805)
3 years ago
Brian Downs dcf0657b20
account for an s3 folder when listing objects (#3807)
3 years ago
Derek Nola b4eca61aeb
Prevent snapshot commands from creating empty snapshot directory (#3783)
3 years ago
Jiaqi Luo 3b01157a3a
Use New Image Names (#3749)
3 years ago
Hussein Galal bc96ffb5f3
Fix Node stuck at deletion (#3771)
3 years ago
Brad Davidson dfd4e42e57 Wrap context with lease before importing images
3 years ago
Hussein Galal 2069cdf4ee
Fix initial start of etcd only nodes (#3748)
3 years ago
Ryan Sanna 429af17e4d update rancher/local-path-provisioner to v0.0.20
3 years ago
Brad Davidson 5ab3590d9b Improve config retrieval messages
3 years ago
Brad Davidson 869b98bc4c Sync DisableKubeProxy into control struct
3 years ago
Hussein Galal b1b5f72dc3
Notify systemd for etcd only node (#3732)
3 years ago
Jamie Phillips 7704fb6ee5
Exporting the AddFeatureGate function and adding a unit test for it. (#3661)
3 years ago
Jamie Phillips fc19b805d5
Added logic to strip any existing hyphens before processing the args. (#3662)
3 years ago
Derek Nola a1d7a62493
Fix to allow non-root users access to storage volumes. (#3714)
3 years ago
Brad Davidson 90445bd581
Wait until server is ready before configuring kube-proxy (#3716)
3 years ago
Derek Nola 21c8a33647
Introduction of Integration Tests (#3695)
3 years ago
galal-hussein 20a48734c2 more fixes
3 years ago
galal-hussein 7ebcc4b134 more fixes
3 years ago
galal-hussein b4401296ec replace error with warn in delete
3 years ago
galal-hussein 2f82bfcf67 fix warning msg
3 years ago
galal-hussein b377839148 migrate old token key format
3 years ago
galal-hussein 997ed7b9b4 simplifying the code
3 years ago
galal-hussein ad17292fa8 migrate empty string key properly
3 years ago
galal-hussein a65e5b6466 Fix multiple bootstrap keys found
3 years ago
Luther Monson 37fcb61f5e move go routines for api server ready beneath wait group
3 years ago
Luther Monson 18bc98f60c
adding startup hooks args to access to Disables and Skips (#3674)
3 years ago
Derek Nola bba49ea447
Fix to allow prune to correctly cleanup custom named snapshots (#3649)
3 years ago
Jamie Phillips aef8a6aafd
Adding support for waitgroup to the Startuphooks (#3654)
3 years ago
Hussein Galal a939decf01
fix a runtime core panic (#3627)
3 years ago
Derek Nola 55fe4ff5b0
Convert existing unit tests to standard layout (#3621)
3 years ago
Brian Downs 238dc2086e
prevent snapshot save when snapshots are disabled (#3475)
3 years ago
William Zhang a4c992ce52 🐳 burp to inetaf/tcpproxy
3 years ago
Chris Kim ada145641c
Update etcd snapshot error message to be more informative when etcd database is not found (#3568)
3 years ago
Jamie Phillips a62d143936 Fixing various bugs related to windows.
3 years ago
Derek Nola 73df2d806b
Update embedded kube-router (#3557)
3 years ago
Deshi Xiao 77fcf2dfc5 missing build tag for windows
3 years ago
Derek Nola c833183517
Add unit tests for pkg/etcd (#3549)
3 years ago
Brad Davidson cbfe673c43 Fix spelling to satisfy codespell check
3 years ago
Brad Davidson cbacd7107e Allow passing targeted environment variables to containerd
3 years ago
Hussein Galal f5fbb9a9a8
Export cli server flags and etcd restoration functions (#3527)
3 years ago
Brad Davidson 246b378a27 Bump kine to resolve race condition and unrevisioned delete
3 years ago
Derek Nola 3e1693bc97
Changes local storage pods to have 700 permissions (#3537)
3 years ago
Chris Kim 04398a2582
Move cloud-controller-manager into an embedded executor (#3525)
3 years ago
Joe Kralicky a84c75af62 Adds a command-line flag '--disable-helm-controller' that will disable
3 years ago
Jamie Phillips 82394d7d36 Basic windows agent that will join a cluster without CNI.
3 years ago
Hussein Galal 136dddca11
Fix storing bootstrap data with empty token string (#3422)
3 years ago
Derek Nola 4b2ab8b515
Renamed client-cloud-controller crt and key (#3470)
3 years ago
Derek Nola ef23c6c548
Redux: Change containerd image leases from context lifespan to permanent (#3464)
3 years ago
Derek Nola b74c499709
Revert "Change containerd image leases from 24h to permanent (#3452)" (#3461)
4 years ago
Derek Nola 86b3ba8dba
Change containerd image leases from 24h to permanent (#3452)
4 years ago
Brian Downs 88f95ec409
Send systemd notifications for both server and agent (#3430)
4 years ago
Brad Davidson a7d1159ba6 Emit events for AddOn lifecycle
4 years ago
Brad Davidson ea2cd6d727 Add comments, clean up imports and function names
4 years ago
Brad Davidson 6e48ca9b53 Tidy up function calls with many args
4 years ago
Brad Davidson 6ef000091a Add nodename to UA string for deploy controller
4 years ago
Brad Davidson f6cec4e75d Add kubernetes.default.svc to serving certs
4 years ago
Manuel Buil 243fd14cf1 Change Replace with ReplaceAll function
4 years ago
Brian Downs afd506a595 fix possible race where bootstrap data might not save
4 years ago
Brian Downs 2682183773 add log message indicating etcd snapshots are disabled
4 years ago
Derek Nola 664a98919b
Fix RBAC cloud-controller-manager name 3308 (#3388)
4 years ago
Manuel Buil 5153088286
Merge pull request #3385 from manuelbuil/wireguard-fix
4 years ago
Manuel Buil 1576030d6b Add a path for wireguard's privatekey
4 years ago
Jamie Phillips 7345ac35ae
Initial windows support for agent (#3375)
4 years ago
Brian Downs ecbf17e2ed move object channel defer close to goroutine
4 years ago
Brian Downs 254b52077e add retention default and wire in s3 prune
4 years ago
Brad Davidson 7e175e8ad4 Handle conntrack-related sysctls in supervisor agent setup
4 years ago
Brian Downs e8ecc00fc8 add etcd snapshot save subcommand
4 years ago
Brian Downs 6ee28214fa
Add the ability to prune etcd snapshots (#3310)
4 years ago
Brad Davidson 079620ded0 Fix passthrough of SystemDefaultRegistry from server config
4 years ago
MonzElmasry 24474c5734
change --disable-apiserver flag
4 years ago
Brad Davidson e10524a6b1 Add executor.Bootstrap hook for pre-execution setup
4 years ago
Brian Downs bcd8b67db4
Add the ability to list etcd snapshots (#3303)
4 years ago
Brad Davidson 02a5bee62f
Add system-default-registry support and remove shared code (#3285)
4 years ago
Hussein Galal 948295e8e8
Fix cluster restoration in rke2 (#3295)
4 years ago
Brad Davidson fc037e87f8 Use config file values in node-args annotation
4 years ago
Brian Downs e998cd110d
Add the ability to delete an etcd snapshot locally or from S3 (#3277)
4 years ago
Siegfried Weber e77fd18270 Sign CSRs for kubelet-serving with the server CA
4 years ago
Hussein Galal f410fc7d1e
Invoke cluster reset function when only reset flag is passed (#3276)
4 years ago
Brian Downs beb0d8397a reference node name when needed
4 years ago
Brian Downs c5ad71ce0b
Collect and Store etcd Snapshots and Metadata (#3239)
4 years ago
Hussein Galal 2db3bf7a89
Export CriConnection function (#3225)
4 years ago
Brad Davidson 3cb4ca4b35 Use same SANs on ServingKubeAPICert as dynamiclistener
4 years ago
Darren Shepherd 8f1a20c0d3 Add ability to append to slice during config file merge
4 years ago
Brad Davidson 2705431d96
Add support for dual-stack Pod/Service CIDRs and node IP addresses (#3212)
4 years ago
Darren Shepherd a0a1071aa5
Support .d directory for k3s config file (#3162)
4 years ago
Brad Davidson 601c4984f5 Fix service-account-issuer
4 years ago
Brad Davidson e8381db778 Update Kubernetes to v1.21.0
4 years ago
Brian Downs 66ed6efd57 Resolve local retention issue when S3 in use.
4 years ago
Brian Downs 80e4baf525 add hidden attribute to disable flags
4 years ago
Brian Downs d9381b84ad add etcd s3 secret and access key flags and env vars to secret data
4 years ago
Brian Downs 693c5290b1
Update CoreDNS to version 1.8.3. (#3168)
4 years ago
Brian Downs ad4f04d2fc
Merge pull request #3155 from briandowns/rke2-issue-856
4 years ago
Erik Wilson 9a53fca872 Bump traefik to v2.4.8
4 years ago
Brad Davidson 58e93feda6
Fix CI failures non-deterministic traefik chart repackaging (#3165)
4 years ago
Brian Downs 4a49b9e40b delete nocluster file and remove build tag
4 years ago
Brian Downs 3ed9b0a997 remove hidden attribute from cluster flags and related code
4 years ago
Xiao Deshi cfe7e0c734 remove duplicated func GetAddresses
4 years ago
Akihiro Suda cb73461a5b AkihiroSuda/containerd-fuse-overlayfs -> containerd/fuse-overlayfs-snapshotter
4 years ago
Akihiro Suda e672c988e4 rootless: allow kernel.dmesg_restrict=1
4 years ago
Akihiro Suda 6e8284e3d4 rootless: enable resource limitation (requires cgroup v2, systemd)
4 years ago
Akihiro Suda 11ef43011a bump up RootlessKit
4 years ago
Brian Downs 400a632666 put etcd bootstrap save call in goroutine and update comment
4 years ago
Hussein Galal 73df65d93a
remove etcd data dir when etcd is disabled (#3059)
4 years ago
Jacob Blain Christen 618b0f98bf
registry mirror repository rewrites (#3064)
4 years ago
Brian Downs 7c99f8645d
Have Bootstrap Data Stored in etcd at Completed Start (#3038)
4 years ago
Chris Kim 69f96d6225
Define a Controllers and LeaderControllers on the server config (#3043)
4 years ago
Brad Davidson 8ace8975d2 Don't start up multiple apiserver load balancers
4 years ago
Brad Davidson c0d129003b Handle loadbalancer port in TIME_WAIT
4 years ago
Brad Davidson 7cdfaad6ce
Always use static ports for client load-balancers (#3026)
4 years ago
Hussein Galal c26b737b24
Mark disable components flags as experimental (#3018)
4 years ago
Brian Downs 4d1f9eda9d
Etcd Snapshot/Restore to/from S3 Compatible Backends (#2902)
4 years ago
Hussein Galal 1bf04b6a50
Merge pull request #3003 from galal-hussein/fix_etcd_only_nodes
4 years ago
Brad Davidson 4fb073e799 Log clearer error on startup if NPC cannot be started
4 years ago
galal-hussein ef999f0b4f change error to warn when removing self from etcd members
4 years ago
galal-hussein d6124981d5 remove etcd member if disable etcd is passed
4 years ago
Erik Wilson 4e5218b62c
Apply suggestions from code review
4 years ago
Erik Wilson 4aac6b6bd0
Update to Traefik 2.4.2 and combine manifests
4 years ago
Erik Wilson 54a35505f0
Remove Traefik v1 migration
4 years ago
Chin-Ya Huang cc96f8140a
Allow download traefik static file and rename
4 years ago
Chin-Ya Huang 10e0328977
Traefik v2 integration
4 years ago
Brad Davidson f970e49b7d Wait for apiserver to become healthy before starting agent controllers
4 years ago
Brad Davidson 9b39c1c117 Hide the airgap-extra-registry flag
4 years ago
Brad Davidson 88dd601941 Limit zstd decoder memory
4 years ago
Brad Davidson ae5b93a264 Use HasSuffixI utility function
4 years ago
Brad Davidson ec661c67d7 Add support for retagging images on load from tarball
4 years ago
Hussein Galal 5749f66aa3
Add disable flags for control components (#2900)
4 years ago
Brian Downs 21d1690d5d
update usage text (#2926)
4 years ago
Brad Davidson 6e768c301e Use appropriate response codes for authn/authz failures
4 years ago
Brad Davidson 374271e9a0
Collect IPs from all pods before deciding to use internal or external addresses (#2909)
4 years ago
Brad Davidson e06119729b
Improve handling of comounted cpu,cpuacct controllers (#2911)
4 years ago
Brad Davidson ad5e504cf0
Allow joining clusters when the server CA is trusted by the OS CA bundle (#2743)
4 years ago
Brad Davidson 6c472b5942 Use zstd instead of gzip for embedded tarball
4 years ago
Brad Davidson c5e2676d5c
Update local-path-provisioner and helper busybox (#2885)
4 years ago
Brad Davidson 65c78cc397 Replace options.KubeRouterConfig with config.Node and remove metrics/waitgroup stuff
4 years ago
Brad Davidson 07256cf7ab Add ServiceIPRange and ServiceNodePortRange to agent config
4 years ago
Brad Davidson 95a1a86847 Spell check upstream code
4 years ago
Brad Davidson 29483d0651 Initial update of netpol and utils from upstream
4 years ago
Akihiro Suda f3c41b7650 fix cgroup2 support
4 years ago
Akihiro Suda 728ebcc027 rootless: remove rootful /run/{netns,containerd} symlinks
4 years ago
Brad Davidson 071de833ae Fix typo in field tag
4 years ago
Brad Davidson 8011697175 Only container-runtime-endpoint wants RuntimeSocket path as URI
4 years ago
Yuriy 06fda7accf
Add functionality to bind custom IP address for Etcd metrics endpoint (#2750)
4 years ago
Brad Davidson f152f656a0
Replace k3s cloud provider wrangler controller with core node informer (#2843)
4 years ago
Brian Downs 13229019f8
Add ability to perform an etcd on-demand snapshot via cli (#2819)
4 years ago
Waqar Ahmed 3ea696815b Do not validate snapshotter argument if docker is enabled
4 years ago
Erik Wilson c71060f288
Merge pull request #2744 from erikwilson/rke2-node-password-bootstrap
4 years ago
MonzElmasry 86f68d5d62
change etcd dir permission if it exists
4 years ago
Erik Wilson 4245fd7b67 Return http.StatusOK instead of 0
4 years ago
Erik Wilson 2fb411fc83 Fix spelling mistake
4 years ago
Erik Wilson 09eb44ba53 Bootstrap node password with local file
4 years ago
JenTing Hsiao 57041f0239
Add codespell CI test and fix codespell error (#2740)
4 years ago
Brad Davidson 8936cf577f Bump coredns to 1.8.0
4 years ago
Chris Kim 332fd73d46
Add support for both config-file and data-dir at a global level in the self-extracting wrapper for K3s (#2594)
4 years ago
Erik Wilson 1230d7b7df Fix HA server initialization
4 years ago
Brad Davidson 8e4d3e645b Restore legacy master role for etcd nodes
4 years ago
Chris Kim 61ef2ce95e use version.Program
4 years ago
Chris Kim 48925fcb88
Simplify checkCgroups function call
4 years ago
Chris Kim a3f87a81bd Independently set kubelet-cgroups and runtime-cgroups, and detect if we are running under a systemd scope
4 years ago
Brad Davidson c5aad1b5ed Disable the ServiceAccountIssuerDiscovery feature-gate.
4 years ago
Brad Davidson 63f2211b31 deprecate the "node-role.kubernetes.io/master" label / taint
4 years ago
Brad Davidson c6950d2cb0 Update Kubernetes to v1.20.0-k3s1
4 years ago
Brad Davidson cd27c6fcbe Bump coredns to 1.7.1
4 years ago
Erik Wilson 0ae7f2d5ae
Merge pull request #2407 from erikwilson/node-passwd-cleanup
4 years ago
Chris Kim 3d1e40eaa3 Handle the case when systemd lives under `/init.scope`
4 years ago