ec397ef351
Updating the script binary_size_check to complete the command name by adding .exe extension to the k3s binary name to make it available to run stat command
...
Signed-off-by: Anuj Garg <anujgarg@microsoft.com>
(cherry picked from commit eb192197eb
2024-05-31 09:17:58 -07:00
2c2a6ee982
Bump klipper-helm image for tls secret support
...
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 6683fcdb65
2024-05-31 09:17:58 -07:00
4fa7991664
allow helm controller set owner reference
...
Signed-off-by: huangzy <huangzynn@outlook.com>
(cherry picked from commit 6fcaad553d
2024-05-31 09:17:58 -07:00
edad9c6873
Follow directory symlinks in auto deploying manifests ( #9288 )
...
Signed-off-by: Robert Rose <robert.rose@mailbox.org>
(cherry picked from commit 6886c0977f
2024-05-31 09:17:58 -07:00
92d59a0e03
add missing kernel config check
...
Signed-off-by: zouxianyu <2979121738@qq.com>
(cherry picked from commit c1cb5d63b9
2024-05-31 09:17:58 -07:00
6781d660bf
Validate resolv.conf for presence of nameserver entries
...
Co-authored-by: Brad Davidson <brad@oatmail.org>
Signed-off-by: linxin <linxin@geedgenetworks.com>
(cherry picked from commit f24ba9d3a9
2024-05-31 09:17:58 -07:00
13eafdd23a
Bump kine to v0.11.9 to fix pagination
...
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 2669d67a9b
2024-05-31 09:17:58 -07:00
153a4991bb
bump minio-go to v7.0.70
...
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit afdcc83afe
2024-05-31 09:17:58 -07:00
884673c8e1
Add support for svclb pod PriorityClassName
...
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 37f97b33c9
2024-05-31 09:17:58 -07:00
064c9cfcdc
Update local-path-provisioner helper script
...
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit b453630478
2024-05-31 09:17:58 -07:00
783528867a
Fix issue with local traffic policy for single-stack services on dual-stack nodes.
...
Just enable IP forwarding for all address families regardless of service address families.
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 095ecdb034
2024-05-31 09:17:58 -07:00
9f909e6b9d
Bump spegel version
...
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 5cf4d75749
2024-05-31 09:17:58 -07:00
92b7a0b46f
bump etcd to v3.5.13
...
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit bf8b15e7ae
2024-05-31 09:17:58 -07:00
63532fee4b
Bump containerd to v1.7.17
...
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit aaa578785c
2024-05-31 09:17:58 -07:00
3579301899
Switch stargz over to cri registry config_path
...
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 30999f9a07
2024-05-31 09:17:58 -07:00
4fae0011e3
Use fixed stream server bind address for cri-dockerd
...
Will now use 127.0.0.1:10010, same as containerd's CRI
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 7374010c0c
2024-05-31 09:17:58 -07:00
59c1b2d280
Add WithSkipMissing to not fail import on missing blobs
...
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 5f6b813cc8
2024-05-31 09:17:58 -07:00
331ce70666
Improve tailscale test & add extra log in e2e tests
...
Signed-off-by: Manuel Buil <mbuil@suse.com>
2024-05-28 22:24:28 +02:00
d53cf93ad8
Update kube-router version to v2.1.2
...
Signed-off-by: Roberto Bonafiglia <roberto.bonafiglia@suse.com>
2024-05-28 17:02:54 +02:00
4d6f662cc4
Merge pull request #10222 from thomasferrandiz/issue-9957-release-1.27
...
[release 1.27] Bump flannel version to v0.25.2
2024-05-28 11:44:04 +02:00
e5eea95ca7
Use TrafficManager interface when calling flannel
...
Signed-off-by: Thomas Ferrandiz <thomas.ferrandiz@suse.com>
2024-05-28 08:49:35 +00:00
1da6b9aacd
Bump flannel version to v0.25.2
...
Signed-off-by: Thomas Ferrandiz <thomas.ferrandiz@suse.com>
2024-05-28 08:49:35 +00:00
2593230e51
Fix bug when using tailscale config by file
...
Signed-off-by: Manuel Buil <mbuil@suse.com>
2024-05-24 07:56:33 +02:00
0029d7a71e
Replace deprecated ruby function
...
Signed-off-by: Manuel Buil <mbuil@suse.com>
2024-05-23 11:54:49 +02:00
b0b34e4d92
Update to v1.27.14 ( #10103 )
2024-05-17 13:38:12 -07:00
2a6f762bc7
windows changes
...
Signed-off-by: Harrison Affel <harrisonaffel@gmail.com>
2024-05-16 16:57:26 -07:00
37c4634cf1
Set release channel for e2e upgrade test
...
Signed-off-by: Derek Nola <derek.nola@suse.com>
2024-05-15 11:12:01 -07:00
222fc6c403
Bump E2E opensuse leap to 15.6, fix btrfs test ( #10057 )
...
Signed-off-by: Derek Nola <derek.nola@suse.com>
2024-05-15 11:12:01 -07:00
b23f142da8
Make /db/info available anonymously from localhost
...
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2024-04-22 19:34:57 -07:00
b721a3e05d
Fix 10 second etcd-snapshot request timeout
...
The default clientaccess request timeout is too short. Wait longer by default, and add the s3 timeout if s3 is enabled.
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit d3b60543e7
2024-04-22 11:25:08 -07:00
08a1ee5150
Fix on-demand snapshots not honoring folder
...
Also fix etcd s3 tests to actually check that the files are saved to s3 🙃
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 5b431ca531
2024-04-22 11:25:08 -07:00
33ee1687db
Update to v1.27.13 ( #9958 )
...
Signed-off-by: Pedro Tashima <pedro.tashima@suse.com>
2024-04-16 18:18:17 -03:00
b3cb19fca1
Update kube-router to v2.1.0
...
Signed-off-by: Roberto Bonafiglia <roberto.bonafiglia@suse.com>
2024-04-12 12:25:35 +02:00
2d48b19624
Allow LPP to read helper logs ( #9834 )
...
Signed-off-by: Thomas Anderson <127358482+zc-devs@users.noreply.github.com>
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2024-04-11 13:50:35 -07:00
a302dae4b5
Update packaged manifests
...
* Update traefik chart to bump image tag and fix quoting
* Fix image quoting in flat manifests
* Update local-path-provisioner config to stop using deprecated hostpath volume type
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2024-04-11 10:01:23 -07:00
12c6d6a5cf
Actually fix agent certificate rotation
...
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 4cc73b1fee
2024-04-11 10:01:23 -07:00
2ae9eaccd5
Don't log 'apiserver disabled' error sent by etcd-only nodes
...
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 08f1022663
2024-04-11 10:01:23 -07:00
d25523fc94
Improve etcd load-balancer startup behavior
...
Prefer the address of the etcd member being joined, and seed the full address list immediately on startup.
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 7d9abc9f07
2024-04-11 10:01:23 -07:00
0990716e8f
Move etcd snapshot management CLI to request/response
...
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit fe465cc832
2024-04-11 10:01:23 -07:00
8114c663ac
Bump containerd and cri-dockerd
...
Bump containerd to v1.7.15
Bump cri-dockerd to v0.3.12
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 0792461885
2024-04-11 10:01:23 -07:00
82bc741643
Add supervisor cert/key to rotate list
...
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 60248c42de
2024-04-11 10:01:23 -07:00
44e77dacc6
Add workaround for containerd hosts.toml bug
...
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit f2961fb5d2
2024-04-11 10:01:23 -07:00
b8b95493af
Add certificate expiry check and warnings
...
* Add ADR
* Add `k3s certificate check` command.
* Add periodic check and events when certs are about to expire.
* Add metrics for certificate validity remaining, labeled by cert subject
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 7f659759dd
2024-04-11 10:01:23 -07:00
347fb0064c
Add health-check support to loadbalancer
...
* Adds support for health-checking loadbalancer servers. If a
health-check fails when dialing, all existing connections to the
server will be closed.
* Wires up a remotedialer tunnel connectivity check as the health check
for supervisor/apiserver connections.
* Wires up a simple ping request to the supervisor port as the health
check for etcd connections.
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit c51d7bfbd1
2024-04-11 10:01:23 -07:00
5344e45dc4
Fix etcd snapshot reconcile for agentless nodes
...
Disable cleanup of orphaned snapshots and patching of node annotations if running agentless
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit edb0440017
2024-04-11 10:01:23 -07:00
7cadedb610
Add /etc/passwd and /etc/group to k3s docker image
...
Fixes `cannot find name for user ID 0: No such file or directory` errors when checking user info in docker image
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 7474a6fa43
2024-04-11 10:01:23 -07:00
d3e8c49ec6
Fix error when image has already been pulled
...
CRI and containerd APIs disagree about the registry names - CRI supports
index.docker.io as an alias for docker.io, while containerd does not.
Use the actual stored RepoTag to determine what image to ask containerd for.
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit f099bfa508
2024-04-11 10:01:23 -07:00
3287cab8e5
Respect cloud-provider fields set by kubelet
...
Don't clobber the providerID field and instance-type/region/zone labels if provided by the kubelet. This allows the user to set these to the correct values when using the embedded CCM in a real cloud environment.
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 65cd606832
2024-04-11 10:01:23 -07:00
a75951ba29
Send error response if member list cannot be retrieved
...
Prevents joining nodes from being stuck with bad initial member list if there is a transient failure, or if they try to join themselves
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit d7cdbb7d4d
2024-04-11 10:01:23 -07:00
349cd3b871
Move error response generation code into util
...
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
(cherry picked from commit 7a2a2d075c
2024-04-11 10:01:23 -07:00
Anuj Garg