github
/
k3s
mirror of https://github.com/k3s-io/k3s
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
2,227 Commits
31 Branches
881 Tags
634 MiB
Commit Graph

939 Commits (bb0cdd929a960aade81e51911f98fdee44ebce4e)

Author SHA1 Message Date
Brad Davidson 4acbbcad01 Move containerd wait into exported function 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2022-01-25 13:09:48 -08:00
Roberto Bonafiglia 43f130b965
Merge pull request #4983 from rbrtbnfgl/ipv6-nat_release-1.22 
[Release 1.22] Add IPv6 NAT
 2022-01-19 08:46:15 +01:00
Brad Davidson f4db804373 go generate 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2022-01-18 16:46:11 -08:00
Brad Davidson 01be2bb6fb Update packaged components 
Update images and manifests/charts for coredns, local-path-provisioner, traefik, and pause

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2022-01-18 16:46:11 -08:00
Brian Downs 354477adbf
Adds the ability to compress etcd snapshots (#4866) (#4960) 
Signed-off-by: Brian Downs <brian.downs@gmail.com>
 2022-01-18 11:08:37 -07:00
Manuel Buil 45365943e1 Move flannel logs to logrus 
Signed-off-by: Manuel Buil <mbuil@suse.com>
 2022-01-18 14:38:03 +01:00
Roberto Bonafiglia db4d0466e5 Added debug log for IPv6 Masquerading rule 
Signed-off-by: Roberto Bonafiglia <roberto.bonafiglia@gmail.com>
 2022-01-18 13:10:38 +01:00
Roberto Bonafiglia f5475bf6a8 Added flannel-ipv6-masq flag to enable IPv6 nat 
Signed-off-by: Roberto Bonafiglia <roberto.bonafiglia@gmail.com>
 2022-01-18 13:10:25 +01:00
Roberto Bonafiglia 4f7fa01730 Added iptables masquerade rules for ipv6 on flannel 
Signed-off-by: Roberto Bonafiglia <roberto.bonafiglia@gmail.com>
 2022-01-18 13:10:14 +01:00
Brad Davidson fb6c72ed13 Skip CGroup v2 evac when agent is disabled 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2022-01-14 13:25:03 -08:00
Derek Nola 82f1ec314c
Enable logging on all subcommands (#4921) (#4931) 
Signed-off-by: Derek Nola <derek.nola@suse.com>
 2022-01-14 09:21:02 -08:00
Brad Davidson f662a7f45b Move ClusterResetRestore handling ControlConfig setup 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2022-01-12 10:46:22 -08:00
Brad Davidson ea984d265d Fix handling of agent-token fallback to token 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2022-01-07 09:57:18 -08:00
Brad Davidson 34ba028da5 Fix use of agent creds for secrets-encrypt and config validate 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2022-01-06 13:11:25 -08:00
Derek Nola 10bf1e1146
[Release-1.22] Feature: Add CoreDNS Customization Options (#4860) 
* Backport custom coredns changes

Signed-off-by: Derek Nola <derek.nola@suse.com>

* Update docs, enable make generate in dapper

Signed-off-by: Derek Nola <derek.nola@suse.com>
 2022-01-03 14:25:19 -08:00
Luther Monson c2ea4524b8 code to remove vendor dir 
Signed-off-by: Luther Monson <luther.monson@gmail.com>
 2021-12-27 14:58:44 -07:00
Brad Davidson 56e3b66b21 Close etcd clients to avoid leaking GRPC connections 
If you don't explicitly close the etcd client when you're done with it,
the GRPC connection hangs around in the background. Normally this is
harmelss, but in the case of the temporary etcd we start up on 2399 to
reconcile bootstrap data, the client will start logging errors
afterwards when the server goes away.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 8ad7d141e8)
 2021-12-22 00:01:27 -08:00
Brad Davidson 2bfe752dc1 Fix panic checking name of uninitialized etcd member 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-12-21 23:38:44 -08:00
Brian Downs 8ab9a28edc
Update bootstrap logic to output all changed files on disk (#4800) (#4809) 
Signed-off-by: Brian Downs <brian.downs@gmail.com>
 2021-12-21 16:22:20 -07:00
Hussein Galal 05f1bc6e2a
[Release-1.22] Close agentReady channel only in k3s (#4793) 
* Close agentReady channel only in k3s

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* codespell check

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
 2021-12-21 20:29:17 +02:00
Manuel Buil 638dd36ade Remove Disables, Skips and DisableKubeProxy from the comparing configs 
Signed-off-by: Manuel Buil <mbuil@suse.com>
 2021-12-17 19:11:36 +01:00
Derek Nola 80577a1bd2
[Release-1.22] Fix cold boot and reconcilation on secondary servers (#4755) 
* Fix cold boot restarts of secondary servers

Signed-off-by: Derek Nola <derek.nola@suse.com>
 2021-12-15 15:45:25 -08:00
Hussein Galal 9400af4004 Fix snapshot restoration on fresh nodes (#4737) 
Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
Signed-off-by: Brian Downs <brian.downs@gmail.com>
 2021-12-13 18:14:18 -07:00
Brian Downs 7808ff9674 Resolve Bootstrap Migration Edge Case (#4730) 
Signed-off-by: Brian Downs <brian.downs@gmail.com>
 2021-12-13 13:03:57 -07:00
Brian Downs d64a8da871
Resolve restore bootstrap (#4704) (#4715) 2021-12-09 17:54:34 -07:00
Brad Davidson 8b05c21d58 Update wharfie usage in windows code path 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-12-09 13:17:27 -08:00
Hussein Galal b38bc7ddaa
Add validation to certificate rotation (#4700) 
Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
 2021-12-09 02:46:24 +02:00
Brad Davidson 3c0eaf2953 Bump wharfie to v0.5.1 and use shared decompression code 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 7d3447ceff)
 2021-12-08 10:51:33 -08:00
Alexey Medvedchikov 968371014a Include node-external-ip in serving-kubelet.crt SANs (#4620) 
* Include node-external-ip in serving-kubelet.crt SANs

Signed-off-by: Alexey Medvedchikov <alexeymedvedchikov@improbable.io>
(cherry picked from commit 8f389ab030)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-12-08 10:49:06 -08:00
Manuel Buil 3d16d94b39 Check HA network parameters 
Signed-off-by: Manuel Buil <mbuil@suse.com>
 2021-12-08 11:00:54 +01:00
Derek Nola 2561285e8e
Backport of https://github.com/k3s-io/k3s/pull/4372 (#4654) 
Signed-off-by: Derek Nola <derek.nola@suse.com>
 2021-12-07 15:29:31 -08:00
Hussein Galal 2dc4e2c3a0
Add cert rotation command (#4495) (#4635) 
* Add cert rotation command

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* add function to check for dynamic listener file

Signed-off-by: Brian Downs <brian.downs@gmail.com>

* Add dynamiclistener cert rotation support

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* fixes to the cert rotation

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* fix ci tests

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* fixes to certificate rotation command

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* more fixes

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

Co-authored-by: Brian Downs <brian.downs@gmail.com>

Co-authored-by: Brian Downs <brian.downs@gmail.com>
 2021-12-06 20:53:29 +02:00
Manuel Buil ace9db6e6a
Merge pull request #4614 from manuelbuil/loggingFlannel1.22 
[Release 1.22] Improve flannel logging
 2021-12-02 19:18:58 +01:00
Derek Nola a122f635b7
Export default parser (#4621) 
Signed-off-by: Derek Nola <derek.nola@suse.com>
 2021-12-01 13:04:42 -08:00
Manuel Buil 817188daa7 Improve flannel logging 
Signed-off-by: Manuel Buil <mbuil@suse.com>
 2021-12-01 18:25:45 +01:00
Derek Nola 12581188e8
Improved cleanup for etcd unit test (#4537) (#4608) 
* Improved cleanup for etcd unit test

Signed-off-by: Derek Nola <derek.nola@suse.com>
 2021-11-30 11:05:13 -08:00
Chris Kim fdb335d7d8
etcd snapshot functionality enhancements (#4453) (#4605) 
Signed-off-by: Chris Kim <oats87g@gmail.com>
 2021-11-29 13:29:51 -08:00
Brad Davidson bec170bc81 go generate 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-11-23 16:39:14 -08:00
Hussein Galal 058f30de03
Fix regression with cluster reset (#4523) 
Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
 2021-11-18 02:15:08 +02:00
Manuel Buil c974abd780 Allow svclb pod to enable ipv6 forwarding 
Signed-off-by: Manuel Buil <mbuil@suse.com>
 2021-11-17 19:35:37 +01:00
Derek Nola 03779ea486
Improved regex for double equals arguments (#4507) 
Signed-off-by: Derek Nola <derek.nola@suse.com>
 2021-11-16 12:11:23 -08:00
Derek Nola f1b429f9ce
[Release-1.22] Removed value in warning about skipping flags (#4492) 
* Remove skip warning
* Add warning back in, without value

Signed-off-by: Derek Nola <derek.nola@suse.com>
 2021-11-15 13:18:33 -07:00
Chris Kim a1f490df9c
[release-1.22] Add etcd extra args support for K3s (#4469) 
* Add etcd extra args support for K3s

Signed-off-by: Chris Kim <oats87g@gmail.com>

* Add etcd custom argument integration test

Signed-off-by: Chris Kim <oats87g@gmail.com>
 2021-11-11 20:22:12 -08:00
Derek Nola b0cd1f6eb1
[Release-1.22] Parser improvements, allow config values to be used with etcd-snapshot (#4475) 
* Match to last After keyword for parser (#4383)
* Enabled skipping of unknown flags from config in parser
* Added new unit test, expanded existing

Signed-off-by: Derek Nola <derek.nola@suse.com>
 2021-11-11 18:47:19 -08:00
Brad Davidson cee09930cd
Increase agent's apiserver ready timeout (#4455) 
Since we now start the server's agent sooner and in the background, we
may need to wait longer than 30 seconds for the apiserver to become
ready on downstream projects such as RKE2.

Since this essentially just serves as an analogue for the server's
apiReady channel, there's little danger in setting it to something
relatively high.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-11-11 14:02:41 -07:00
Brad Davidson 38cf9a3bdf go generate 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-11-10 17:36:18 -08:00
Brian Downs 97f494a24d
[Release-1.22] All bootstrap backport (#4448) 
Add ability to reconcile bootstrap data between datastore and disk (#3398)
 2021-11-10 16:20:20 -07:00
Derek Nola 586ed948dd
Improve error message when using a "K10" prefixed token (#4180) (#4430) 
* Add new error message with a K10 prefixed secret token

Signed-off-by: dereknola <derek.nola@suse.com>
 2021-11-09 08:12:27 -08:00
Luther Monson cb0918ae3c
[release-1.22] updating to new signals package in wrangler (#4422) 
* updating to new signals package in wrangler

Signed-off-by: Luther Monson <luther.monson@gmail.com>
 2021-11-08 11:52:54 -07:00
Brad Davidson e1883d0537 Bump klipper-lb image for arm fix 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-11-02 19:01:30 -07:00
Brad Davidson 5eb13b6ba6 Fix log/reap reexec 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-11-01 14:58:46 -07:00
Brad Davidson 259ceb452c Fix other uses of NewForConfigOrDie in contexts where we could return err 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 3da1bb3af2)
 2021-10-29 16:44:38 -07:00
Brad Davidson cc23fce0a7 Watch the local Node object instead of get/sleep looping 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 5acd0b9008)
 2021-10-29 16:44:38 -07:00
Brad Davidson 6349aed8e8 Block scheduler startup on untainted node when using embedded CCM 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 3fe460d080)
 2021-10-29 16:44:38 -07:00
Brad Davidson 46eea2f10a Revert "Add ability to reconcile bootstrap data between datastore and disk (#3398)" 
This reverts commits
9a4ca5978b
c9f6fa0be0
07f844cf95
48355dce10

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-10-27 14:17:12 -07:00
Brian Downs 9a4ca5978b
reset buffer after use (#4279) (#4329) 2021-10-26 17:58:25 -07:00
Brian Downs c9f6fa0be0 remove integration test 
Signed-off-by: Brian Downs <brian.downs@gmail.com>
 2021-10-25 16:23:31 -07:00
Brian Downs 07f844cf95 Copy old bootstrap buffer data for use during migration (#4215) 
Signed-off-by: Brian Downs <brian.downs@gmail.com>
 2021-10-25 16:23:31 -07:00
Brian Downs 48355dce10 Add ability to reconcile bootstrap data between datastore and disk (#3398) 
Signed-off-by: Brian Downs <brian.downs@gmail.com>
 2021-10-25 16:23:31 -07:00
galal-hussein 84e9b829e0 Update peer address when running cluster-reset 
Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
 2021-10-25 15:43:45 -07:00
Derek Nola f98934980d
Added configuration input to etcd-snapshot (#4280) (#4281) 
Signed-off-by: dereknola <derek.nola@suse.com>
 2021-10-22 13:08:12 -07:00
Brad Davidson 971854c15b Refactor log and reaper exec to omit MAINPID 
Using MAINPID breaks systemd's exit detection, as it stops watching the
original pid, but is unable to watch the new pid as it is not a child
of systemd itself. The best we can do is just notify when execing the child
process.

We also need to consolidate forking into a sigle place so that we don't
end up with multiple levels of child processes if both redirecting log
output and reaping child processes.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit dc18ef2e51)
 2021-10-20 13:41:50 -07:00
Brad Davidson 3988edef25 Add containerd ready channel to delay etcd node join 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 88178ae65e)
 2021-10-20 13:05:40 -07:00
Manuel Buil 0d6ccf4199
Merge pull request #4222 from manuelbuil/race_fix_1.22 
[release-1.22] Race fix 1.22
 2021-10-19 09:14:45 +02:00
Brian Downs 7c78e1c802
[Release-1.22] - Add etcd s3 timeout (#4207) (#4230) 2021-10-18 10:45:56 -07:00
Manuel Buil c10a0a2163 Fix race condition in cloud provider 
Signed-off-by: Manuel Buil <mbuil@suse.com>
 2021-10-15 19:31:08 +02:00
Hussein Galal 6193b1af97
Display cluster tls error only in debug mode (#4200) 
Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
 2021-10-13 01:48:00 +02:00
Brian Downs 737f722315
set transport to skip verify if se skip flag passed (#4102) (#4103) 2021-10-07 12:47:42 -07:00
Derek Nola dd4b36e034
Add "etcd-" prefix to etcd-snapshot commands as aliases (#4161) (#4170) 
* Add "etcd-" prefix to etcd-snapshot commands as alias

Signed-off-by: dereknola <derek.nola@suse.com>
 2021-10-07 11:04:39 -07:00
Manuel Buil cedcece9cc Dual-stack support LB controller 
Signed-off-by: Manuel Buil <mbuil@suse.com>
 2021-10-06 16:10:45 +02:00
Brad Davidson bdd597fb9e Don't evacuate the root cgroup when rootless 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-10-01 16:18:33 -07:00
Brad Davidson a09bcba540 Properly handle operation as init process 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-09-28 11:32:16 -07:00
Manuel Buil 44013ae899 Enable the inheritance of settings for ipv6 
Signed-off-by: Manuel Buil <mbuil@suse.com>
 2021-09-28 18:28:01 +02:00
Brad Davidson 28be0de4e8 Revert "Use the newer klipper-lb image" 
This reverts commit 1d21491094.
 2021-09-20 13:19:38 -07:00
Brad Davidson 64b502e92c Disable automounting service account token in servicelb pods 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-09-17 15:52:44 -07:00
Hussein Galal 7826407a2e
Make sure there are no duplicates in etcd member list (#4025) 
* Make sure there are no duplicates in etcd member list

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* fix node names with hyphens

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* use full server name for etcd node name

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
 2021-09-18 00:51:18 +02:00
Manuel Buil 1d21491094 Use the newer klipper-lb image 
Signed-off-by: Manuel Buil <mbuil@suse.com>
 2021-09-17 15:42:48 -07:00
Brad Davidson 753e11ee3c Enable JobTrackingWithFinalizers FeatureGate 
Works around issue with Job controller not tracking job pods that
are in CrashloopBackoff during upgrade from 1.21 to 1.22.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-09-17 11:26:45 -07:00
Derek Nola eda65b19d9
Remove expiremental from cluster commands (#4024) 
Signed-off-by: dereknola <derek.nola@suse.com>
 2021-09-15 16:41:50 -07:00
Joe Kralicky debb508643
Nvidia container runtime discovery in containerd config template (#3890) 
* Update the default containerd config template with support for adding extra container runtimes. Add logic to discover nvidia container runtimes installed via the the gpu operator or package manager.

Signed-off-by: Joe Kralicky <joe.kralicky@suse.com>
 2021-09-15 14:31:11 -07:00
Brad Davidson 086ca8ba6a Fix premature etcd shutdown when joining an existing cluster 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-09-15 10:35:07 -07:00
Manuel Buil 60cd86bc42
Merge pull request #3906 from manuelbuil/dual-stack 
Add dual-stack support on flannel
 2021-09-15 18:48:10 +02:00
Brad Davidson 85e11c47d1 Add StargzSupported stub for Windows 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-09-15 09:45:57 -07:00
Chris Kim acf9036b63
No-op when etcd member was already removed and use existing name for etcd controller (#4014) 
Signed-off-by: Chris Kim <oats87g@gmail.com>
 2021-09-15 08:41:30 -07:00
Manuel Buil 9fcd79baae Add tests to the dual-stack PR and enable dual-stack with flannel backend 
Signed-off-by: Manuel Buil <mbuil@suse.com>
 2021-09-15 14:11:54 +02:00
Manuel Buil 681058bb40 Add dual-stack support 
Signed-off-by: Manuel Buil <mbuil@suse.com>
 2021-09-15 11:44:48 +02:00
Brad Davidson b72306ce3d Return the error since it just gets logged and retried anyways 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-09-14 16:41:27 -07:00
Brad Davidson 5986898419 Use SubjectAccessReview to validate CCM RBAC 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-09-14 16:41:27 -07:00
Brad Davidson dc556cbb72 Set controller authn/authz kubeconfigs 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-09-14 16:41:27 -07:00
Brad Davidson 199424b608 Pass context into all Executor functions 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-09-14 16:41:27 -07:00
Chris Kim 928b8531c3
[master] Add `etcd-member-management` controller to K3s (#4001) 
* Initial leader elected etcd member management controller
* Bump etcd to v3.5.0-k3s2

Signed-off-by: Chris Kim <oats87g@gmail.com>
 2021-09-14 08:20:38 -07:00
Brad Davidson 57377d2cd4 Minor cleanup on cribbed function 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-09-10 17:04:15 -07:00
Brad Davidson 3449d5b9f9 Wait for apiserver readyz instead of healthz 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-09-10 17:04:15 -07:00
Brad Davidson b4d8c641c6 Add exposed metrics listener instead of replacing loopback listener 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-09-10 09:39:39 -07:00
Brad Davidson 29c8b238e5 Replace klog with non-exiting fork 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-09-10 09:36:16 -07:00
Brad Davidson 90960ebf4e SupportPodPidsLimit is locked to true of 1.20, making pids cgroup support mandatory 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-09-09 11:49:53 -07:00
Darren Shepherd 741ba95b04 Migrate sqlite data to etcd when initializing the cluster 
Signed-off-by: Darren Shepherd <darren@rancher.com>
 2021-09-09 10:24:02 -07:00
Devin Buhl a1ec43e0b7
feat: add option to disable s3 over https 
Signed-off-by: Devin Buhl <devin.kray@gmail.com>
 2021-09-05 12:03:49 -04:00
Kohei Tokunaga 8b857eef9c
Ship Stargz Snapshotter (#2936) 
* Ship Stargz Snapshotter

Signed-off-by: ktock <ktokunaga.mail@gmail.com>

* Bump github.com/containerd/stargz-snapshotter to v0.8.0

Signed-off-by: Kohei Tokunaga <ktokunaga.mail@gmail.com>
 2021-09-01 16:27:42 -07:00
Brad Davidson cf12a13175 Add missing node name entry to apiserver SAN list 
Also honor node-ip when adding the node address to the SAN list, instead
of hardcoding the autodetected IP address.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-09-01 13:22:32 -07:00
Brad Davidson b8add39b07 Bump kine for metrics/tls changes 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-09-01 01:51:30 -07:00
Hussein Galal 933052a02c
Fix condition for adding kubernetes endpoints (#3941) 
* Fix condition for adding kubernetes endpoints

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* Fix condition for adding kubernetes endpoints

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
 2021-08-31 00:57:17 +02:00
Derek Nola 60297a1bbe
Creation of K3s integration test Sonobuoy plugin (#3931) 
* Added test runner and build files
* Changes to int test to output junit results.
* Updated documentation, removed comments

Signed-off-by: dereknola <derek.nola@suse.com>
 2021-08-30 08:27:59 -07:00
Brad Davidson 2a68c7c8a4 Fix issue where addon checksum was never stored 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-08-27 10:26:13 -07:00
Manuel Buil 2e5c9e5cad
Merge pull request #3916 from manuelbuil/net_v6 
Add functions to separate ipv4 and ipv6 CIDRs
 2021-08-27 18:57:54 +02:00
Manuel Buil 96dcef478a Add functions to separate ipv4 from ipv6 functions 
Signed-off-by: Manuel Buil <mbuil@suse.com>
 2021-08-27 10:14:39 +02:00
Derek Nola 114b30277f
Redux: Enable K3s integration test to run on existing cluster (#3905) 
* Made it possible to run int tests on existing cluster

Signed-off-by: dereknola <derek.nola@suse.com>
 2021-08-26 16:26:19 -07:00
Akihiro Suda 331c6fed71 Remove runtime V1 (`containerd-shim`) 
Fix issue 3105

Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
 2021-08-26 11:50:33 -07:00
Akihiro Suda 176451f4ea
Fix rootless regression in 1.22 (Set KubeletInUserNamespace gate) (#3901) 
Fix issue 3900

Kubernetes 1.22 requires `KuebletInUserNamespace` feature gate to be set for rootless:
https://kubernetes.io/docs/tasks/administer-cluster/kubelet-in-userns/#userns-the-hard-way

Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
 2021-08-24 08:27:17 -07:00
Derek Nola 66dacc6ee0
Revert "Enable K3s integration test to run on existing cluster (#3892)" (#3899) 
This reverts commit 703b5af950.
 2021-08-24 07:26:14 -07:00
Derek Nola 703b5af950
Enable K3s integration test to run on existing cluster (#3892) 
* Made it possible to run int tests on existing cluster

Signed-off-by: dereknola <derek.nola@suse.com>
 2021-08-23 12:12:03 -07:00
Brad Davidson e95b75409a Fix lint failures 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-08-20 18:47:16 -07:00
Brad Davidson a5355f0827 Replace dropped v1beta1 APIs with v1 
Requires updating traefik as well to drop deprecated types.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-08-20 18:47:16 -07:00
Brad Davidson dc14f370c4 Update wrangler to v0.8.5 
Required to support apiextensions.v1 as v1beta1 has been deleted. Also
update helm-controller and dynamiclistener to track wrangler versions.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-08-20 18:47:16 -07:00
Brad Davidson c434db7cc6 Wrap errors in runControllers for additional context 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-08-20 18:47:16 -07:00
Brad Davidson 422d266da2 Disable deprecated insecure port 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-08-20 18:47:16 -07:00
Brad Davidson 641ab26fde Update containerd to 1.5 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-08-20 18:47:16 -07:00
Brad Davidson 872855015c Update etcd to v3.5.0 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-08-20 18:47:16 -07:00
Brad Davidson e204d863a5 Update Kubernetes to v1.22.1 
* Update Kubernetes to v1.22.1
* Update dependent modules to track with upstream

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-08-20 18:47:16 -07:00
Derek Nola ed5991f13b
K3s Flock Integration Test (#3887) 
* Upgraded flock with shared and integration test.

Signed-off-by: dereknola <derek.nola@suse.com>

Co-authored-by: Brian Downs <brian.downs@gmail.com>
 2021-08-20 12:34:22 -07:00
Hussein Galal e322924781
Reset load balancer state during restoraion (#3877) 
* Reset load balancer state during restoraion

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* Reset load balancer state during restoraion

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
 2021-08-18 01:02:30 +02:00
Malte Starostik b23955e835
Fix URL pruning when joining an etcd member (#3832) 
* Fix URL pruning when joining an etcd member

Problem:
Existing member clientURLs were checked if they contain the joining
node's IP. In some edge cases this would prune valid URLs when the
joining IP is a substring match of the only existing member's IP.
Because of this, it was impossible to e.g. join 10.0.0.2 to an existing
node that has an IP of 10.0.0.2X or 10.0.0.2XX:

level=fatal msg="starting kubernetes: preparing server: start managed database:
joining etcd cluster: etcdclient: no available endpoints"

Solution:
Fixed by properly parsing the URLs and comparing the IPs for equality
instead of substring match.

Signed-off-by: Malte Starostik <info@stellaware.de>
 2021-08-12 15:59:04 -07:00
Derek Nola a1e36153f9
Added locking system for integration tests (#3820) 
* Added locking system for integration tests
Signed-off-by: dereknola <derek.nola@suse.com>
 2021-08-10 16:22:12 -07:00
Jamie Phillips ae909c73e5 Updated the code to use GetNetworkByName and tweaked logic. 
Updated the method being called and tweaked the logic.

Signed-off-by: Jamie Phillips <jamie.phillips@suse.com>
 2021-08-10 13:53:08 -07:00
Derek Nola 4cc781b5e3
Moved testing utils into tests directory. Improved gotests template. (#3805) 
* Moved testing utils into tests directory. Improved gotests template.
* Updated cgroups2 with util folder rename

Signed-off-by: dereknola <derek.nola@suse.com>
 2021-08-10 11:13:26 -07:00
Brian Downs dcf0657b20
account for an s3 folder when listing objects (#3807) 
* account for an s3 folder when listing objects
 2021-08-09 16:14:41 -07:00
Derek Nola b4eca61aeb
Prevent snapshot commands from creating empty snapshot directory (#3783) 
Signed-off-by: dereknola <derek.nola@suse.com>
 2021-08-09 09:04:18 -07:00
Jiaqi Luo 3b01157a3a
Use New Image Names (#3749) 
* switch image names to the ones with the prefix mirrored
* bump rancher/mirrored-coredns-coredns to 1.8.4

Signed-off-by: Jiaqi Luo <6218999+jiaqiluo@users.noreply.github.com>
 2021-08-06 16:14:58 -07:00
Hussein Galal bc96ffb5f3
Fix Node stuck at deletion (#3771) 
* fix Node stuck at deletion

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* fix Node stuck at deletion

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
 2021-08-05 22:32:01 +02:00
Brad Davidson dfd4e42e57 Wrap context with lease before importing images 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-08-04 10:22:19 -07:00
Hussein Galal 2069cdf4ee
Fix initial start of etcd only nodes (#3748) 
* Fix initial start of etcd only nodes

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* more fixes

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* more fixes

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
 2021-08-03 19:53:21 +02:00
Ryan Sanna 429af17e4d update rancher/local-path-provisioner to v0.0.20 
Signed-off-by: Ryan Sanna <ryansann@umich.edu>
 2021-08-02 12:25:47 -07:00
Brad Davidson 5ab3590d9b Improve config retrieval messages 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-07-30 12:26:50 -07:00
Brad Davidson 869b98bc4c Sync DisableKubeProxy into control struct 
Sync DisableKubeProxy from cfg into control before sending control to clients,
as it may have been modified by a startup hook.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-07-30 12:26:50 -07:00
Hussein Galal b1b5f72dc3
Notify systemd for etcd only node (#3732) 
Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
 2021-07-29 23:42:19 +02:00
Jamie Phillips 7704fb6ee5
Exporting the AddFeatureGate function and adding a unit test for it. (#3661) 2021-07-28 13:04:42 -07:00
Jamie Phillips fc19b805d5
Added logic to strip any existing hyphens before processing the args. (#3662) 
Updated the logic to handle if extra args are passed with existing hyphens in the arg. The test was updated to add the additional case of having pre-existing hyphens. The method name was also refactored based on previous feedback.
 2021-07-28 13:04:19 -07:00
Derek Nola a1d7a62493
Fix to allow non-root users access to storage volumes. (#3714) 
* Fix to prevent non-root users from accessing storage directory, while allowing non-root users access to subdirectories.

Signed-off-by: dereknola <derek.nola@suse.com>

* Added integration test

Signed-off-by: dereknola <derek.nola@suse.com>
 2021-07-28 10:25:34 -07:00
Brad Davidson 90445bd581
Wait until server is ready before configuring kube-proxy (#3716) 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-07-27 14:56:05 -07:00
Derek Nola 21c8a33647
Introduction of Integration Tests (#3695) 
* Commit of new etcd snapshot integration tests.
* Updated integration github action to not run on doc changes.
* Update Drone runner to only run unit tests

Signed-off-by: dereknola <derek.nola@suse.com>
 2021-07-26 09:59:33 -07:00
galal-hussein 20a48734c2 more fixes 
Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
 2021-07-21 22:42:05 +02:00
galal-hussein 7ebcc4b134 more fixes 
Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
 2021-07-21 22:39:44 +02:00
galal-hussein b4401296ec replace error with warn in delete 
Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
 2021-07-21 22:18:56 +02:00
galal-hussein 2f82bfcf67 fix warning msg 
Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
 2021-07-21 22:05:43 +02:00
galal-hussein b377839148 migrate old token key format 
Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
 2021-07-21 20:59:57 +02:00
galal-hussein 997ed7b9b4 simplifying the code 
Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
 2021-07-21 19:56:19 +02:00
galal-hussein ad17292fa8 migrate empty string key properly 
Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
 2021-07-21 19:21:38 +02:00
galal-hussein a65e5b6466 Fix multiple bootstrap keys found 
Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
 2021-07-21 02:50:42 +02:00
Luther Monson 37fcb61f5e move go routines for api server ready beneath wait group 
Signed-off-by: Luther Monson <luther.monson@gmail.com>
 2021-07-20 17:36:34 -07:00
Luther Monson 18bc98f60c
adding startup hooks args to access to Disables and Skips (#3674) 
Signed-off-by: Luther Monson <luther.monson@gmail.com>
 2021-07-20 05:24:52 +02:00