github
/
k3s
mirror of https://github.com/k3s-io/k3s
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
2,736 Commits
32 Branches
881 Tags
632 MiB
Commit Graph

365 Commits (c3eab737ad3fa3b14b2639bdadf1d9dbe3fdf413)

Author SHA1 Message Date
Brad Davidson 17c534022e Bump metrics-server to v0.6.3 and update tls-cipher-suites 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit e9958cf070)
 2023-06-12 10:53:26 -07:00
Brad Davidson 2c542f411c Bump klipper-lb to v0.4.4 
Fixes issue with localhost access to ServiceLB when
ExternalTrafficPolicy=Local

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 93279d2f59)
 2023-06-12 10:53:26 -07:00
Manuel Buil 98333e8a22 VPN integration 
Signed-off-by: Manuel Buil <mbuil@suse.com>
 2023-06-12 09:22:06 +02:00
Brad Davidson a41015abe5 Bump containerd/runc to v1.7.1-k3s1/v1.1.7 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2023-05-11 14:53:37 -07:00
Brad Davidson eff951b567 Bump helm-controller version for repo auth/ca support 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2023-05-10 15:18:54 -07:00
Brad Davidson 5227fe8cd5 Bump cni plugins to v1.2.0-k3s1 
Also add bandwidth and firewall plugins. The bandwidth plugin is
automatically registered with the appropriate capability, but the
firewall plugin must be configured by the user if they want to use it.

Ref: https://www.cni.dev/plugins/current/meta/firewall/

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit cedefeff24)
 2023-05-10 15:18:54 -07:00
Brad Davidson 30d37145a8 Bump traefik to v2.9.10 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 0bbc6ad3f0)
 2023-05-10 15:18:54 -07:00
Brad Davidson 55846cf767 Bump k3s-root for aarch64 page size fix 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 9539147ee1)
 2023-05-10 15:18:54 -07:00
Derek Nola 0a9d5c6e70
Bump runc, containerd, and docker dependencies (#7452) 
Signed-off-by: Derek Nola <derek.nola@suse.com>
 2023-05-08 12:48:04 -07:00
Derek Nola 71e53ae606
[Release-1.25] Add E2E testing in Drone (#7375) 
* Add E2E to Drone 
* Build e2e test image
* Add ci flag to secretsencryption
* Fix vagrant log on secretsencryption
* Add cron conformance pipeline

Signed-off-by: Derek Nola <derek.nola@suse.com>

* Add string output for nodes
* Switch snapshot restore for upgrade cluster

Signed-off-by: Derek Nola <derek.nola@suse.com>

* Added IPv6 check and agent restart on e2e test utils

Signed-off-by: Roberto Bonafiglia <roberto.bonafiglia@suse.com>

* Cleanup leftover VMs in E2E pipeline
* Dont run most pipelines on nightly cron

Signed-off-by: Derek Nola <derek.nola@suse.com>

* Don't default to local K3s for startup test (#6950)

Signed-off-by: Derek Nola <derek.nola@suse.com>

* Added multiClusterCIDR E2E test

Signed-off-by: Roberto Bonafiglia <roberto.bonafiglia@suse.com>

* fix_get_sha_url (#7187)

Signed-off-by: ShylajaDevadiga <shylaja@rancher.com>

* Improve RunCmdOnNode error

Signed-off-by: Derek Nola <derek.nola@suse.com>

* Pin upgradecluster to v1.25

Signed-off-by: Derek Nola <derek.nola@suse.com>

---------

Signed-off-by: Derek Nola <derek.nola@suse.com>
Signed-off-by: Roberto Bonafiglia <roberto.bonafiglia@suse.com>
Signed-off-by: ShylajaDevadiga <shylaja@rancher.com>
Co-authored-by: Roberto Bonafiglia <roberto.bonafiglia@suse.com>
Co-authored-by: ShylajaDevadiga <56045581+ShylajaDevadiga@users.noreply.github.com>
 2023-05-01 14:15:49 -07:00
Hussein Galal 540d19b097
[release-1.25] Update klipper lb and helm-controller (#7240) 
* Update klipper lb and helm-controller

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* update klipper helm image

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

---------

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
 2023-04-06 22:17:21 +02:00
Brad Davidson 7686c73624 Ensure that loopback is used for the advertised address when resetting 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit de80c07053)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2023-04-05 16:29:13 -07:00
Brad Davidson 88d5a723ce Bump Local Path Provisioner version (#7167) 
* chore: Bump Local Path Provisioner version
* go generate

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
(cherry picked from commit cee3ddbc4a)
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2023-04-05 16:29:13 -07:00
Brad Davidson 27f032ddb9 Update/rename certs.sh; add default cert rotation script 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2023-03-13 20:04:11 -07:00
Derek Nola 6728824743
[Release-1.25] Bump various dependencies for CVEs (#7043) 
* Match flannel for x/net
* Match containerd for x/sys
* Update replace for go-gax
* Isolate e2e terraform depedencies
* Bump containerd
* Bump wrangler to 1.1.1

Signed-off-by: Derek Nola <derek.nola@suse.com>
 2023-03-13 09:36:59 -07:00
Brad Davidson a2521856f5 Wait for server to become ready before creating token 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2023-02-10 09:33:55 -08:00
Brad Davidson d06052880e Add CI test 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit b43dd7746d)
 2023-02-10 09:33:55 -08:00
Brad Davidson 97c506cc65 Add support for `k3s token` command 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 373df1c8b0)
 2023-02-10 09:33:55 -08:00
Brad Davidson af753a8700 Add basic test for custom CA certs 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 8a6404f97c)
 2023-02-10 09:33:55 -08:00
Brad Davidson 4c17994391 Set cri-dockerd version at build time 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2023-01-26 14:33:04 -08:00
Brad Davidson c350594f18 Fix CI tests 
* General cleanup of test-helpers functions to address CI failures
* Install awscli in test image
* Log containerd output to file even when running with --debug

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit f54b5e4fa0)
 2023-01-17 18:15:24 -08:00
Brad Davidson 6d43d65fb6 Bump containerd to v1.6.15-k3s1 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2023-01-13 22:15:39 -08:00
Brad Davidson de654222cb Bump containerd to v1.6.14-k3s1 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2023-01-04 13:16:52 -08:00
Brad Davidson 48e5d2af5b Bump k3s-root version to v0.12.1 
Adds support for loading compressed kernel modules

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2022-12-13 17:39:11 -08:00
Brad Davidson 7f6e1d1552 Bump containerd to v1.6.12 
Also bump containerd client module to v1.5.16-k3s1

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2022-12-09 17:33:00 -08:00
Brad Davidson 2835368ecb Bump k3s-root and remove embedded strongswan support 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2022-12-01 12:40:40 -08:00
Brad Davidson 2a496d4fd3 Bump metrics-server to v0.6.2 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2022-11-30 15:09:32 -08:00
Brad Davidson 953c7699b4 Fix artifact upload with `aws s3 cp`; update secret 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2022-11-28 12:38:56 -08:00
Brad Davidson 16fa128e96 Fix passing AWS creds through Dapper 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2022-11-28 10:59:42 -08:00
Sakala Venkata Krishna Rohit 4e2e91e089
Switch from Google Buckets to AWS S3 Buckets (#6497) 
* Add python pip pakacge to install aws cli

Signed-off-by: Venkata Krishna Rohit Sakala <rohitsakala@gmail.com>

* Upload build artifacts to aws s3 instead of gcp bucket

Signed-off-by: Venkata Krishna Rohit Sakala <rohitsakala@gmail.com>

* Upload logs to aws s3 instead of google buckets

Signed-off-by: Venkata Krishna Rohit Sakala <rohitsakala@gmail.com>

* Replace gcloud auth with aws credentials for artifact uploading to buckets

Signed-off-by: Venkata Krishna Rohit Sakala <rohitsakala@gmail.com>

* Replace usage of google bucket with aws s3 buckets

Signed-off-by: Venkata Krishna Rohit Sakala <rohitsakala@gmail.com>

Signed-off-by: Venkata Krishna Rohit Sakala <rohitsakala@gmail.com>
 2022-11-28 19:27:43 +02:00
Brad Davidson a07bb555ba Bump klipper-helm and klipper-lb versions 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2022-11-23 14:55:59 -08:00
Brad Davidson 7964ada773 Pull modified traefik charts from k3s-charts repo 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2022-11-21 13:44:54 -08:00
Brad Davidson 6462a31b96 Bump containerd to v1.6.10-k3s1 
Also bump linked-in version of containerd module to v1.5.14-k3s1

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2022-11-21 13:30:19 -08:00
Derek Nola 0f52088cd3
Add new `prefer-bundled-bin` experimental flag (#6420) 
* initial prefer-bundled-bin ci change
* Add startup testlet
* Convert parsing to pflag library
* Fix code validation
* go mod tidy

Signed-off-by: Derek Nola <derek.nola@suse.com>
 2022-11-21 13:01:36 -08:00
Brad Davidson 6d2e13b62c Move traefik chart repo again 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2022-11-15 11:18:24 -08:00
Brad Davidson 7c129b1963 Pull traefik helm chart directly from GH 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2022-11-08 16:41:05 -08:00
thomasferrandiz b7d217dbf3
Merge pull request #6405 from thomasferrandiz/log-kube-router-version 
log kube-router version when starting netpol controller
 2022-11-04 11:07:37 +01:00
Brad Davidson dd2f652618 Fix test-mods to allow for pinning version from k8s.io 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2022-11-03 15:32:41 -07:00
Thomas Ferrandiz 68ac954489 log kube-router version when starting netpol controller 
Signed-off-by: Thomas Ferrandiz <thomas.ferrandiz@suse.com>
 2022-11-03 12:26:50 +01:00
Brad Davidson 4cc8b6cfb9 Bump coredns to v1.9.4 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2022-11-02 11:29:05 -07:00
Brad Davidson cc92fdd681 Bump local-path-provisioner to v0.0.23 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2022-11-02 11:29:05 -07:00
Brad Davidson 86d3686e6c Fix sonobouy tests on v1.25 
Use --disable instead of --no-deploy, and don't silently succeed if sonobouy never runs

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2022-11-02 08:35:38 -07:00
James Blair 86be784aa0 Replace deprecated k8s registry references. 
Problem:
Previously all of Kubernetes' image hosting has been out of gcr.io. There were significant egress costs associated with this when images were pulled from entities outside gcp.  Refer to https://github.com/kubernetes/k8s.io/wiki/New-Registry-url-for-Kubernetes-(registry.k8s.io)

Solution:
As highlighted at KubeCon NA 2022 k8s infra SIG update, the replacement for k8s.gcr.io which is registry.k8s.io is now ready for mainstream use and the old k8s.gcr.io has been formally deprecated. This commit migrates all references for k3s to registry.k8s.io.

Signed-off-by: James Blair <mail@jamesblair.net>
 2022-11-01 16:06:50 -07:00
Brad Davidson cb86d2c1f0 Bump traefik to v2.9.4 / chart v18.3.0 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2022-11-01 16:05:45 -07:00
Derek Nola 43709420a3
Remove vagrant dev env (#6395) 
Signed-off-by: Derek Nola <derek.nola@suse.com>
 2022-11-01 14:47:10 -07:00
Silvio Moioli dbc7c72416
Disable optimizations and symbol stripping on debug builds (#6147) 
Signed-off-by: Silvio Moioli <silvio@moioli.net>
Co-authored-by: Brad Davidson <brad@oatmail.org>
 2022-10-28 09:17:49 -07:00
Brad Davidson 02bd026dda Add new tests to test list 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2022-10-26 13:33:18 -07:00
Brad Davidson eb24f8f81c Add upgrade test 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2022-10-26 13:33:18 -07:00
Brad Davidson 3b0c6ff320 Add hardened cluster test 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2022-10-26 13:33:18 -07:00
Brad Davidson 4d3912a0f8 Fix flakey traefik upgrade in etcd test 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2022-10-26 13:33:18 -07:00