github
/
k3s
mirror of https://github.com/k3s-io/k3s
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
3,439 Commits
31 Branches
866 Tags
625 MiB
Commit Graph

3439 Commits (c88e217fe9c7f617068823b459c166da39e2c27d)

Author SHA1 Message Date
github-actions[bot] c88e217fe9
chore: Bump Trivy version (#11430) 
Made with ❤️️ by updatecli

Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2024-12-11 08:43:36 -08:00
Reinhard Nägele 124be7472b
Update coredns to 1.12.0 (#11387) 
* Update to coredns 1.12.0

Signed-off-by: Reinhard Nägele <unguiculus@gmail.com>
 2024-12-10 10:09:27 -08:00
Brad Davidson e143e0fa12 Add hidden flag/var for supervisor/apiserver listen config 
Add flags supervisor and apiserver ports and bind address so that we can add an e2e to cover supervisor and apiserver on separate ports, as used by rke2

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-12-10 09:31:18 -08:00
Brad Davidson 5a5b136151 Fix agent tunnel address on rke2 
Fix issue where rke2 tunnel was trying to connect to apiserver port instead of supervisor

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-12-10 09:31:18 -08:00
Brooks Newberry c8278053cb
update stable channel to v1.31.3+k3s1 (#11436) 2024-12-10 08:39:52 -08:00
Derek Nola 69c310d68b
Remove experimental from embedded-registry flag (#11443) 
Signed-off-by: Derek Nola <derek.nola@suse.com>
 2024-12-10 08:37:13 -08:00
Brad Davidson e9cf3a7ab5 Tail journald logs into report on suite failure 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-12-06 11:45:34 -08:00
Brad Davidson 45195e2654 Fix integration test failure message 
The error message should be printf style, not just concatenated. The
current message is garbled if the command or result contains things that
look like formatting directives:

`Internal error occurred: error sending request: Post "https://10.10.10.102:10250/exec/default/volume-test/volume-test?command=sh&command=-c&command=echo+local-path-test+%!!(MISSING)E(MISSING)+%!!(MISSING)F(MISSING)data%!!(MISSING)F(MISSING)test&error=1&output=1": proxy error from 127.0.0.1:6443 while dialing 10.10.10.102:10250, code 502: 502 Bad Gateway`

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-12-06 11:45:34 -08:00
Brad Davidson 81dda9d626 Add command output to test failure message 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-12-06 11:45:34 -08:00
Brad Davidson c7ff957cae Fall back to polling the supervisor for apiserver addresses when the watch fails 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-12-06 11:45:34 -08:00
Brad Davidson 168b344d1d Return apiserver addresses from both etcd and endpoints 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-12-06 11:45:34 -08:00
Brad Davidson 71918e0d69 Use helper to set consistent rest.Config rate limits and timeouts 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-12-06 11:45:34 -08:00
Brad Davidson 3d2fabb013 Add loadbalancer metrics 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-12-06 11:45:34 -08:00
Brad Davidson 911ee19a93 Refactor load balancer server list and health checking 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-12-06 11:45:34 -08:00
Brad Davidson 95797c4a79 Refactor filterCN to use a Set instead of map[string]bool 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-12-06 11:45:34 -08:00
Brad Davidson 67fd5fa9e5 Separate persistent config struct from LoadBalancer and make fields private 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-12-06 11:45:34 -08:00
Brad Davidson 13e9113787 Move http/socks proxy stuff to separate file 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-12-06 11:45:34 -08:00
Brad Davidson f2f57b4a4b Remove unused code from etcdproxy 
None of these fields or functions are used in k3s or rke2

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-12-06 11:45:34 -08:00
Derek Nola 183f0c8d09
Fix secrets-encrypt reencrypt timeout error (#11385) 
* Add missing default OS for split server test

Signed-off-by: Derek Nola <derek.nola@suse.com>

* Launch go routine and return for k3s secrets-encrypt reencrypt

Signed-off-by: Derek Nola <derek.nola@suse.com>

---------

Signed-off-by: Derek Nola <derek.nola@suse.com>
 2024-12-05 09:11:22 -08:00
Derek Nola 7296fa8863
Fix leap install test (#11379) 
Signed-off-by: Derek Nola <derek.nola@suse.com>
 2024-12-03 17:19:21 -08:00
Brad Davidson 5bb3d82e27 Add rewrite test to privateregistry e2e 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-12-03 11:58:51 -08:00
Brad Davidson e414e0af42 Bump containerd for image rewrite fix 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-12-03 11:58:51 -08:00
manuelbuil 4ec261733e If no etcd was deployed, fail etcd-snapshot with a useful error 
Signed-off-by: manuelbuil <mbuil@suse.com>
 2024-11-28 09:40:42 +01:00
Brad Davidson 0e15269e99 Fix INSTALL_K3S_PR support 
Filter check names server-side instead of with jq. With recent changes to CI we now have more than 30 check runs, which is more than the API will return by default. Rather than paginating or increasing the page size, ask the server to filter for us.

Also replaces the awk/sort/head with jq split/sort/last

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-11-27 12:56:33 -08:00
Derek Nola c669600c8f
Fix Branch Name logic for Dependabot and UpdateCLI pushes to k3s-io (#11376) 
* Improve node checking for etcd docker test
* Fix branch name for dependabot and updatecli PRs

Signed-off-by: Derek Nola <derek.nola@suse.com>
 2024-11-27 09:50:14 -08:00
Brooks Newberry 55cda2200e
update Kubernetes to v1.31.3-k3s1 (#11373) 
Signed-off-by: Brooks Newberry <brooks@newberry.com>
 2024-11-26 16:50:32 -08:00
Derek Nola b5e2fa77a6
Convert legacy docker tests from bash to golang (#11357) 
* Convert the following Docker test from Bash to Go
    - basics
    - bootstraptoken
    - cacerts
    - compat -> skew
    - etcd
    - lazypull
    - upgrade

Signed-off-by: Derek Nola <derek.nola@suse.com>

* Add Docker go tests to GHA
* Prebuild K3s Go Tests
* Strip go test binaries to reduce size
* Handle complex branch options

Signed-off-by: Derek Nola <derek.nola@suse.com>

* Implement basic golang tests on arm and arm64 pipelines

Signed-off-by: Derek Nola <derek.nola@suse.com>
 2024-11-26 12:30:52 -08:00
dependabot[bot] 1b7dd765a5
Bump aquasecurity/trivy-action from 0.28.0 to 0.29.0 (#11364) 
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.28.0 to 0.29.0.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/0.28.0...0.29.0)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-11-26 10:15:46 -08:00
github-actions[bot] 15575def9d
chore: Bump Trivy version (#11360) 
Made with ❤️️ by updatecli

Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2024-11-26 10:12:38 -08:00
Vitor Savian 9bd48b1a3f Add ubuntu 24.04 apt command for e2e test 
Signed-off-by: Vitor Savian <vitor.savian@suse.com>
 2024-11-26 11:45:04 -03:00
Derek Nola e138929ebb
Try and remove the toolchain line (#11358) 
Signed-off-by: Derek Nola <derek.nola@suse.com>
 2024-11-25 11:23:27 -08:00
Thomas Gleason b83f80372a
allow install script to print error on failed binary download (#11335) 
Signed-off-by: Thomas Gleason <tommatime@proton.me>
 2024-11-21 09:27:29 -08:00
Jorge Andrade 4fef655219 Add to the output command to be consistent with the product command 
Signed-off-by: Jorge Andrade <jandrade@i-t-m.com>
 2024-11-20 10:16:58 -08:00
Emmanuel Ferdman 59707dab3d
Update `localstorage_int_test.go` reference (#11339) 
Signed-off-by: Emmanuel Ferdman <emmanuelferdman@gmail.com>
 2024-11-19 10:35:31 -08:00
Brad Davidson cd4ddedbc9 Fix issue with loadbalancer failover to default server 
The loadbalancer should only fail over to the default server if all other server have failed, and it should force fail-back to a preferred server as soon as one passes health checks.

The loadbalancer tests have been improved to ensure that this occurs.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-11-13 19:41:45 -08:00
manuelbuil b93fd98a1c Fix updatecli config for helm controller and klipper 
Signed-off-by: manuelbuil <mbuil@suse.com>
 2024-11-13 09:58:52 +01:00
Brad Davidson 0c29696eef Fix handling of wrapped subcommands when run with a path 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-11-12 16:35:54 -08:00
Brad Davidson 71fdc4a117 Bump kine for mysql connection close fix 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-11-12 15:54:37 -08:00
Derek Nola c3eece6071 Fix GenKubeConfigFile, move from "cat" command to "scp" 
Remove CI fog warnings from RunCmdOnNode output

Signed-off-by: Derek Nola <derek.nola@suse.com>
 2024-11-12 15:54:37 -08:00
Brad Davidson 62caa4a8c2 Bump kine 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-11-11 16:54:54 -08:00
github-actions[bot] 8f3acee3f5
chore: Bump to latest k3s-root version in scripts/version.sh (#11282) 
Made with ❤️️ by updatecli

Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
 2024-11-11 10:16:22 -08:00
Ludo Stellingwerff 2441e46950 Fix the "Standalone"-mode of oidc-login in the wrapped kubectl application. 
This fixes: 'error: no Auth Provider found for name "oidc"' when trying to run any subcommands in kubectl that require a valid server login.

Signed-off-by: Ludo Stellingwerff <ludo.stellingwerff@gmail.com>
 2024-11-08 08:52:53 -08:00
Brad Davidson 9c32f83819 Bump containerd to v1.7.23-k3s1 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-11-06 10:09:10 -08:00
Brad Davidson ff5c633fe7 Fix MustFindString returning override flags on external CLI commands 
External CLI actions cannot short-circuit on --help or --version, so we
cannot skip loading the config file if these flags are present when
running these wrapped commands. The behavior of just returning the
override flag name instead of the requested flag value was breaking
data-dir lookup when running wrapped commands.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-11-06 09:51:55 -08:00
dependabot[bot] 98d66d37f7
Bump github.com/golang-jwt/jwt/v4 from 4.5.0 to 4.5.1 (#11236) 
Bumps [github.com/golang-jwt/jwt/v4](https://github.com/golang-jwt/jwt) from 4.5.0 to 4.5.1.
- [Release notes](https://github.com/golang-jwt/jwt/releases)
- [Changelog](https://github.com/golang-jwt/jwt/blob/main/VERSION_HISTORY.md)
- [Commits](https://github.com/golang-jwt/jwt/compare/v4.5.0...v4.5.1)

---
updated-dependencies:
- dependency-name: github.com/golang-jwt/jwt/v4
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-11-06 08:53:42 -08:00
Roberto Bonafiglia 566f6cd5c0 Update flannel and base cni plugins version 
Signed-off-by: Roberto Bonafiglia <roberto.bonafiglia@suse.com>
 2024-11-06 15:21:20 +01:00
Brad Davidson 917761ce54 Bump runc to v1.2.1 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-11-05 12:47:27 -08:00
Brad Davidson 56fb3b0991 Add nonroot-devices flag to agent CLI 
Add new flag that is passed through to the device_ownership_from_security_context parameter in the containerd CRI config. This is not possible to change without providing a complete custom containerd.toml template so we should add a flag for it.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-11-05 11:36:55 -08:00
Brad Davidson b67249ec77 Fix git-sha warning in etcd startup logs 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-11-05 09:07:11 -08:00
Brad Davidson bc60ff79f6 Set kine EmulatedETCDVersion from embedded etcd version 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2024-11-05 09:07:11 -08:00