Commit Graph

3410 Commits (9bd48b1a3f26eeb20582f4c5bd26aa53ec55939d)

Author SHA1 Message Date
Derek Nola c7468edbe7 Bump go dependencies to match upstream 1.31
Signed-off-by: Derek Nola <derek.nola@suse.com>
2024-08-22 14:23:34 -07:00
Derek Nola ebbb109840 Update VERSION_K8S to handle any k3s revision
Co-authored-by: Brad Davidson <brad@oatmail.org>
Signed-off-by: Derek Nola <derek.nola@suse.com>
2024-08-22 14:23:34 -07:00
Derek Nola f5c6472b16 Bump Kine to v0.12.0
Signed-off-by: Derek Nola <derek.nola@suse.com>
2024-08-22 14:23:34 -07:00
Derek Nola d358a89171 Fix secrets-encrypt metrics
Signed-off-by: Derek Nola <derek.nola@suse.com>
2024-08-22 14:23:34 -07:00
galal-hussein 178aadbe20 Add k3s-io/kubernetes tags
Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
2024-08-22 14:23:34 -07:00
galal-hussein 5087240e32 Downgrade Microsoft/hcsshim to v0.8.26
Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
2024-08-22 14:23:34 -07:00
galal-hussein 8cbcbcd044 go generate
Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
2024-08-22 14:23:34 -07:00
galal-hussein 20b50426ab Update to v1.31.0
Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
2024-08-22 14:23:34 -07:00
github-actions[bot] 876d54cf49
chore: Bump Trivy version (#10670)
Made with ❤️️ by updatecli

Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
2024-08-16 14:12:35 -04:00
Robert Silén 518276fb77
adding MariaDB to README.md (#10717)
MariaDB is mentioned as supported in requirements, so adding to README too. Also raises a discussion earlier:  https://github.com/k3s-io/k3s/issues/10686

Signed-off-by: Robert Silén <robert.silen@iki.fi>
2024-08-16 09:10:34 -07:00
Brad Davidson 649678bd89 Fix k3s-killall.sh support for custom data dir
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2024-08-13 09:23:12 -07:00
Derek Nola 38df76708d
Fix caching name for e2e vagrant box (#10695)
Signed-off-by: Derek Nola <derek.nola@suse.com>
2024-08-13 09:22:56 -07:00
Brooks Newberry ae0d79c7ea Update to v1.30.3-k3s1 and Go 1.22.5 (#10536)
Signed-off-by: Brooks Newberry <brooks@newberry.com>
(cherry picked from commit 086d9ca0fa)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2024-08-13 09:21:08 -07:00
ChrisBeaker 019b0afdd8
Fix: Add $SUDO prefix to transactional-update commands in install script (#10531)
* Fix: Add $SUDO prefix to transactional-update commands in install script

This commit addresses an issue in the k3s install script where the transactional-update commands did not include the $SUDO variable. This omission caused the script to fail if sudo was not used. Adding the $SUDO prefix ensures that the script runs correctly in all environments.

Signed-off-by: ChrisBeaker <christian.siebigteroth@suse.com>
Signed-off-by: Derek Nola <derek.nola@suse.com>
2024-08-12 15:28:36 -07:00
Alireza Eskandari 22fb7049bd Add tolerations support for DaemonSet pods
Signed-off-by: Alireza Eskandari <alireza.eskandari@wsd.com>
2024-08-12 13:01:27 -07:00
Brad Davidson daf0094cc7 Bump helm-controller to v0.16.3 to drop Helm v2 support
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2024-08-12 11:45:13 -07:00
Derek Nola ac247d29cf
Update to newer OS images for install testing (#10681)
* Update to newer OS images for install testing
* Update vagrant images used for E2E

Signed-off-by: Derek Nola <derek.nola@suse.com>
2024-08-12 09:26:19 -07:00
Brad Davidson 0ee714d62b
Bump containerd to v1.7.20 (#10659)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2024-08-07 13:05:13 -07:00
Derek Nola acb71ee379 Allow Amazon Linux 2 rpm installs
Signed-off-by: Derek Nola <derek.nola@suse.com>
2024-08-07 13:03:53 -07:00
Derek Nola 79ec016b6d Allow kylin V10 rpm installs
Signed-off-by: Derek Nola <derek.nola@suse.com>
Co-Authored-By: ErikJang <81848652+erikjang@users.noreply.github.com>
2024-08-07 13:03:53 -07:00
Derek Nola 8ff7d162cc Allow fedora iot rpm installs
Signed-off-by: Derek Nola <derek.nola@suse.com>
Co-Authored-By: Blayne Campbell <5565939+bcambl@users.noreply.github.com>
2024-08-07 13:03:53 -07:00
Derek Nola 45c04f3502 Allow Amazon Linux 2023 rpm installs
Signed-off-by: Derek Nola <derek.nola@suse.com>
Co-Authored-By: ahmedali6 <87921765+ahmedali6@users.noreply.github.com>
2024-08-07 13:03:53 -07:00
Vitor Savian 3aceb85c22 Add a change for killall to not unmount server and agent directory
Signed-off-by: Vitor Savian <vitor.savian@suse.com>

Add recursive search and deletion of unmounted/mounted dirs in killall

Signed-off-by: Vitor Savian <vitor.savian@suse.com>

Only clean the server and agent directory if it is uninstall

Signed-off-by: Vitor Savian <vitor.savian@suse.com>

Add uninstall test to check mount points

Signed-off-by: Vitor Savian <vitor.savian@suse.com>

Add uninstall test in CI

Signed-off-by: Vitor Savian <vitor.savian@suse.com>
2024-08-07 10:06:12 -07:00
Brad Davidson 82ba778a86 bump docker/docker to v25.0.6
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2024-08-02 14:38:02 -07:00
Brooks Newberry 38e8b01b8f
update stable channel to v1.30.3+k3s1 (#10647) 2024-08-01 18:09:28 -07:00
Brad Davidson bffdf463e1 Fix cloudprovider controller name
Looking at metrics revealed the cloudprovider controller name was anempty string.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2024-07-29 21:54:20 -07:00
Brad Davidson e168438d44 Wire lasso metrics up to common gatherer
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2024-07-29 21:54:20 -07:00
Will Andrews e2179aa957 Update pkg/cluster/managed.go
Co-authored-by: Derek Nola <derek.nola@suse.com>
Signed-off-by: Will Andrews <will7989@hotmail.com>
2024-07-29 16:23:17 -07:00
Will Andrews 3ec086f6f7 Update pkg/secretsencrypt/config.go
Co-authored-by: Brad Davidson <brad@oatmail.org>
Signed-off-by: Will Andrews <will7989@hotmail.com>
2024-07-29 16:23:17 -07:00
Will e4f3cc7b54 remove deprecated use of wait functions
Signed-off-by: Will <will7989@hotmail.com>
2024-07-29 16:23:17 -07:00
Brad Davidson e514940020 Fix inconsistent loading of config dropins when config file does not exist
FindString would silently skip parsing dropins if the main config file
didn't exist. If a custom config file path was passed it would raise an
error, but if we were parsing the default config file and it didn't
exist it would just silently fail to load the dropins.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2024-07-29 15:23:52 -07:00
Brad Davidson 9111b1f77e Add K3S_DATA_DIR as env var for --data-dir flag
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2024-07-29 15:23:52 -07:00
Brad Davidson a26a5ab1d7 Don't set K3S_DATA_DIR env var
This was only used to pass the bundled strongswan path through to the flannel ipsec backend, and is no longer needed. Ref: #719

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2024-07-29 15:23:52 -07:00
Derek Nola 59e0761043
Use higher QPS for secrets reencryption (#10571)
* Use higher QPS for secrets reencryption

Signed-off-by: Derek Nola <derek.nola@suse.com>
2024-07-26 12:07:26 -07:00
Derek Nola a70157c12e
Allow Pprof and Superisor metrics in standalone mode (#10576)
* Allow pprof to run on server with `--disable-agent`
* Allow supervisor metrics to run on server with `--disable-agent`

Signed-off-by: Derek Nola <derek.nola@suse.com>
2024-07-26 11:23:57 -07:00
Derek Nola ecff337e00
Enhance E2E Hardened option (#10558)
* Remove unnecessary hardened arguments

Signed-off-by: Derek Nola <derek.nola@suse.com>

* slim down hardened arguments

Signed-off-by: Derek Nola <derek.nola@suse.com>

---------

Signed-off-by: Derek Nola <derek.nola@suse.com>
2024-07-25 09:37:03 -07:00
Brad Davidson d4c3422a85 Fix ipv6 sysctl required by non-ipv6 LoadBalancer service
This is a partial revert of 095ecdb034,
with the workaround moved into klipper-lb.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2024-07-24 13:40:33 -07:00
Brad Davidson 21611c5665 Cap length of generated name used for servicelb daemonset
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2024-07-24 13:40:33 -07:00
Brad Davidson 891e72f90f Update secretsencrypt pagination
Make secretsencrypt page size and iteration consistent with other paginators

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2024-07-24 12:44:29 -07:00
Brad Davidson c2216a62ad Use pagination when retrieving etcd snapshot list
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2024-07-24 12:44:29 -07:00
Brad Davidson 37830fe170 Don't use server and token values from config file for etcd-snapshot commands
Fixes an issue where running etcd-snapshot commands on a node that has a server address set in the config will manage snapshots on that server, instead of on the local node as intended.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2024-07-15 10:12:50 -07:00
Brad Davidson cb6bf74bc4 Add dial duration to debug error message
This should give us more detail on how long dials take before failing, so that we can perhaps better tune the retry loop in the future.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2024-07-15 09:46:52 -07:00
Brad Davidson 118acabec2 Fix IPv6 primary node-ip handling
I should have caught `[]string{cfg.NodeIP}[0]` and `[]string{envInfo.NodeIP.String()}[0]` in code review...

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2024-07-15 09:46:52 -07:00
Brad Davidson 9841517457 Fix agents removing configured supervisor address
We shouldn't be replacing the configured server address on agents. Doing
so breaks the agent's ability to fall back to the fixed registration
endpoint when all servers are down, since we replaced it with the first
discovered apiserver address. The fixed registration endpoint will be
restored as default when the service is restarted, but this is not the
correct behavior. This should have only been done on etcd-only nodes
that start up using their local supervisor, but need to switch to a
control-plane node as soon as one is available.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2024-07-15 09:46:52 -07:00
Brad Davidson 9d0c2e0000 Fix reentrant rlock in loadbalancer.dialContext
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2024-07-15 09:46:52 -07:00
Brad Davidson b999a5b23d Bump kine to v0.11.11
https://github.com/k3s-io/kine/compare/v0.11.9...v0.11.11
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2024-07-12 21:56:27 -07:00
Derek Nola 58ab25927f
For E2E upgrade test, automatically determine the channel to use (#10461)
* For E2E upgrade test, determine the upgrade channel

Signed-off-by: Derek Nola <derek.nola@suse.com>

* Fix typos

Signed-off-by: Derek Nola <derek.nola@suse.com>

---------

Signed-off-by: Derek Nola <derek.nola@suse.com>
2024-07-11 10:11:38 -07:00
Brad Davidson c36db53e54 Add etcd s3 config secret implementation
* Move snapshot structs and functions into pkg/etcd/snapshot
* Move s3 client code and functions into pkg/etcd/s3
* Refactor pkg/etcd to track snapshot and s3 moves
* Add support for reading s3 client config from secret
* Add minio client cache, since S3 client configuration can now be
  changed at runtime by modifying the secret, and don't want to have to
  create a new minio client every time we read config.
* Add tests for pkg/etcd/s3

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2024-07-10 13:13:55 -07:00
github-actions[bot] 5508589fae chore: Bump Trivy version
Made with ❤️️ by updatecli
2024-07-10 13:04:30 -07:00
Brad Davidson eb8bd15889 Ensure remotedialer kubelet connections use kubelet bind address
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2024-07-10 13:00:25 -07:00