Erik Wilson
4210800648
Merge pull request #1343 from ibuildthecloud/rootless
...
Create pidns for rootless
2020-02-24 15:05:52 -07:00
Knic Knic
c2db115ec3
fix formatting
2020-02-23 00:48:26 -08:00
Knic Knic
2346ccc63f
get build on windows and get api_server to work
2020-02-22 23:17:59 -08:00
Knic Knic
522e08872a
do not rename inuse files
2020-02-21 22:45:05 -08:00
Erik Wilson
fe45eb008a
Merge pull request #1416 from erikwilson/device-plugins-path
...
Use default kubelet device-plugins path
2020-02-14 14:19:51 -07:00
galal-hussein
d49ef31767
Inject node config on startup
2020-02-14 21:17:13 +02:00
Erik Wilson
b15c4473cd
Use default kubelet device-plugins path
2020-02-14 10:18:07 -07:00
Darren Shepherd
782004bec9
Create pidns for rootless
2020-01-31 21:40:34 -07:00
Erik Wilson
0374c4f63d
Add --disable flag
2020-01-30 16:45:01 -07:00
Erik Wilson
3592d0bdd9
Merge pull request #1344 from ibuildthecloud/dialer-fallback
...
If tunnel session does not exist fallback to default dialer
2020-01-27 13:59:45 -07:00
Erik Wilson
1a2690d7be
Merge pull request #1192 from galal-hussein/add_encryption_config
...
Add secret encryption config
2020-01-27 13:59:09 -07:00
Darren Shepherd
bf57a7f419
Don't start node controller if coredns is not deployed
2020-01-22 11:09:36 -07:00
Darren Shepherd
3396a7b099
If tunnel session does not exist fallback to default dialer
2020-01-22 11:04:41 -07:00
Erik Wilson
1b23c891dd
Merge pull request #1304 from erikwilson/fixup-cadvisor
...
Run kubelet with containerd flag
2020-01-20 15:37:22 -07:00
Erik Wilson
4cacffd7e6
Merge pull request #1298 from erikwilson/warn-npc-fail
...
Warn if NPC can't start rather than fatal error
2020-01-20 15:36:56 -07:00
Erik Wilson
fa03a0df3c
Run kubelet with containerd flag
...
The containerd flag was accidentally added to kubelet and is
deprecated, but needed for cadvisor to properly connect with
the k3s containerd socket, so adding for now.
2020-01-16 10:25:57 -07:00
Erik Wilson
5b98d10e4b
Warn if NPC can't start rather than fatal error
...
If the ip_set kernel module is not available we should warn
that the network policy controller can not start rather than
cause a fatal error.
Also adds module probing and config checks for ip_set.
2020-01-14 14:30:12 -07:00
Erik Wilson
7675f9f85c
Clean up host-gw variable names
2020-01-08 17:43:07 -07:00
Segator
c23f12765e
hostgw flannel support
2020-01-08 17:43:07 -07:00
Segator
6736e24673
support hostgw
2020-01-08 17:43:07 -07:00
Erik Wilson
9421746ccf
Merge pull request #1235 from ibuildthecloud/master
...
Fix uint64 truncation issue in dqlite
2019-12-23 13:56:18 -07:00
galal-hussein
388cd9c4e8
Add secret encryption configuration
2019-12-23 13:16:27 +02:00
Darren Shepherd
9bda58c81a
Fix uint64 truncation issue in dqlite
2019-12-21 08:51:39 -07:00
galal-hussein
07d4c1510d
Add lease permissions to ccm cluster role
2019-12-21 04:41:24 +02:00
Erik Wilson
5c37454762
Merge pull request #1198 from narqo/tunel-addr-join-host-port
...
Respect IPv6 when building proxy address
2019-12-19 15:20:12 -07:00
Erik Wilson
9b2538c2c4
Set wireguard persistent-keepalive on wg set peer
2019-12-19 14:54:48 -07:00
Erik Wilson
3376f31fc2
Revert "Merge pull request #1190 from erikwilson/wireguard-keepalive"
...
This reverts commit e712cdf7e8
, reversing
changes made to d5929bc8c8
.
Wireguard docs fail to describe that persistent-keepalive is only valid
when peer is set.
2019-12-19 14:41:38 -07:00
Vladimir Varankin
0c5299c951
pkg/agent/tunnel: respect ipv6 when building proxy addresses
2019-12-19 12:08:07 +01:00
Erik Wilson
6875b11dd2
Fix identity_token -> identitytoken for containerd toml
2019-12-17 21:14:05 -07:00
Darren Shepherd
4acaa0740d
Small dqlite fixes
2019-12-16 11:45:01 -07:00
Erik Wilson
97383868bd
Merge pull request #1186 from erikwilson/upgrade-k8s-1.17.0
...
Upgrade k8s to v1.17.0
2019-12-16 09:40:38 -07:00
Erik Wilson
e712cdf7e8
Merge pull request #1190 from erikwilson/wireguard-keepalive
...
Set Wireguard keepalive to 25 seconds
2019-12-16 09:40:11 -07:00
Erik Wilson
5679a8bd2f
Update generated
2019-12-15 23:28:19 -07:00
Erik Wilson
76281bf731
Update k3s for k8s 1.17.0
2019-12-15 23:28:19 -07:00
Erik Wilson
814c302d7c
Merge pull request #955 from btashton/servicelb-sysctl
...
Enable ip forwarding on both all and default net config
2019-12-12 17:31:02 -07:00
Erik Wilson
7b62811f98
Set Wireguard keepalive to 25 seconds
2019-12-12 10:40:41 -07:00
Erik Wilson
d4959d53af
Merge pull request #1182 from erikwilson/docker-pause-image
...
Allow --pause-image to set docker sandbox image also
2019-12-11 10:36:07 -07:00
Erik Wilson
2eacfa75cb
Merge pull request #1180 from erikwilson/cleanup-flannel-backend-help-text
...
Cleanup --flannel-backend help text
2019-12-11 10:35:50 -07:00
Erik Wilson
56b0743653
Merge pull request #1171 from dweomer/mutable-labels
...
Mutable --node-label values for server/agent sub-commands.
2019-12-11 10:35:27 -07:00
Erik Wilson
c2be59e5f3
Allow udp protocol for service-lb ports
...
For #577
2019-12-11 10:34:11 -07:00
Brennan Ashton
a952d5c32a
Default device net config enables ip forwarding
...
The Linux kernel is inconsistent about how devconf is configured for new
network namespaces between ipv4 and ipv6. The behavior can also be
controlled via net.core.devconf_inherit_init_net in Linux 5.1+ so make
sure to enable forwarding on all and default for both ipv6 and ipv4.
This issue first came up testing on a yocto kernel that had this patch:
ipv4: net namespace does not inherit network configurations
[0] https://www.kernel.org/doc/html/latest/admin-guide/sysctl/net.html#devconf-inherit-init-net
[1] https://lkml.org/lkml/2014/7/29/119
Signed-off-by: Brennan Ashton <brennana@jfrog.com>
2019-12-10 16:29:59 -08:00
Erik Wilson
2de93d70cf
Allow --pause-image to set docker sandbox image also
2019-12-10 16:16:26 -07:00
Erik Wilson
11e4d01efe
Cleanup --flannel-backend help text
2019-12-10 14:51:16 -07:00
Jacob Blain Christen
063efb25bb
Mutable --node-label values for server/agent sub-commands.
...
Values passed in via the server/agent `--node-label` flag are treated as mutable. They are passed through to the kubelet just as before but after the kubelet comes up they are applied again. This allows for passing labels a k3s start-time that may be necessary for scheduling but may change from boot to boot, e.g. `k3os.io/version` after an upgrade.
Tested locallon on my amd64 workstation with the docker container.
Addresses #1119 .
2019-12-09 16:40:15 -07:00
yuzhiquan
24869ddf21
remove []byte trans, handle func error
2019-11-28 19:26:45 +08:00
yuzhiquan
7cc0110081
fix typo
2019-11-28 19:24:19 +08:00
Erik Wilson
ce3a03a16a
Merge pull request #1111 from dduportal/patch-1
...
Bump Traefik to 1.7.19
2019-11-26 15:29:57 -07:00
dduportal
9598a527a2
Regenerate bindata
...
Signed-off-by: dduportal <1522731+dduportal@users.noreply.github.com>
2019-11-26 17:21:22 +01:00
Guangbo Chen
8ff4c3c256
Update base pause image to rancher repo
2019-11-25 16:09:05 +08:00
galal-hussein
99b8222e8d
Change storage to datastore
2019-11-15 21:52:07 -07:00
Darren Shepherd
c2e7f9c7b0
Add logging parameters
2019-11-15 21:51:51 -07:00
Darren Shepherd
4e544bded2
Delete unused code
2019-11-15 21:51:51 -07:00
Darren Shepherd
ff34c5c5cf
Download cert/key to agent with single HTTP request
...
Since generated cert/keys are stored locally, each server has a different
copy. In a HA setup we need to ensure we download the cert and key from
the same server so we combined HTTP requests to do that.
2019-11-15 21:51:51 -07:00
Erik Wilson
95ff805c98
Fix broken K3S_TOKEN env
2019-11-14 12:42:42 -07:00
Darren Shepherd
77703b90ff
Don't ever change 10252/10251 ports
...
Kubernetes componentstatus check is hardcoded to 10252 and 10251
so we should never change these ports. If you do componentstatus
will return error.
2019-11-13 18:20:57 -07:00
Erik Wilson
d4151b7739
Add the --with-node-id flag to agent
2019-11-13 16:13:41 -07:00
Erik Wilson
670d4b4162
Merge pull request #914 from erikwilson/validation-utilities
...
Add check-config for system validation
2019-11-13 09:00:08 -07:00
Erik Wilson
a73f8b1773
Update check-config.sh for k3s
2019-11-13 08:34:24 -07:00
Darren Shepherd
9a4df7c05c
Merge pull request #1058 from ibuildthecloud/master
...
Update kine/dynamiclistener
2019-11-13 15:31:48 +00:00
Darren Shepherd
6063317144
Add a couple more known SANs
2019-11-13 06:05:31 +00:00
Erik Wilson
e4b3730fa2
Go DNS lookup order hack
2019-11-12 20:16:31 -07:00
Erik Wilson
d383d1b47e
Merge pull request #1054 from erikwilson/sort-deployments
...
Use lexical (sorted) order for file deployments
2019-11-12 16:51:24 -07:00
Erik Wilson
b298733b3f
Use lexical (sorted) order for file deployments
2019-11-12 16:05:09 -07:00
Erik Wilson
55c05ac500
Refactor node password location
2019-11-12 15:30:34 -07:00
Erik Wilson
eff502342a
Fix node-passwd on upgrade missing 3 columns
2019-11-12 13:16:05 -07:00
Darren Shepherd
3e213d1347
Allow --debug to be set with K3S_DEBUG env var
2019-11-12 08:22:48 +00:00
Darren Shepherd
668fcf7e83
Fix broken --cluster-reset
2019-11-12 01:12:24 +00:00
Darren Shepherd
b2439788d7
Reduce logging in dqlite
2019-11-12 01:12:24 +00:00
Darren Shepherd
0ae20eb7a3
Support both http and db based bootstrap
2019-11-12 01:12:24 +00:00
Darren Shepherd
3f5fb70116
Move server arguments to experimental for dqlite related
2019-11-12 01:12:24 +00:00
Darren Shepherd
29b270dce6
Wait for apiserver to be health, not just running
2019-11-12 01:09:33 +00:00
Darren Shepherd
e2431bdf9d
Add dqlite support
2019-11-10 03:49:56 +00:00
Darren Shepherd
53d3ab074c
Shrink k3s wrapper binary
2019-11-08 21:35:58 +00:00
Darren Shepherd
91cacb3a14
Fix server join issues
2019-11-08 21:35:58 +00:00
Erik Wilson
e9a11c7cc4
Update generated code
2019-11-05 14:34:09 -07:00
Erik Wilson
47a94637dc
Move metrics-server manifests to sub-directory
2019-11-05 14:30:50 -07:00
Erik Wilson
01f6e0e64e
Add context to server daemon functions that wait
2019-11-05 11:06:07 -07:00
larmog
7aa3d08385
Wait for api-server to report version after starting
2019-11-05 11:05:22 -07:00
Erik Wilson
c4eb6ea3ef
Update generated data
2019-11-05 10:11:21 -07:00
Erik Wilson
0fef39de65
Add default multi-arch metrics-server deployment
2019-11-05 10:11:08 -07:00
Erik Wilson
931f63073f
Merge pull request #899 from mrueg/coredns-ready
...
coredns: Add readinessProbe
2019-11-04 14:25:45 -07:00
Erik Wilson
2bbc356f65
Merge pull request #1008 from erikwilson/ip6-system-setup
...
Improve ip6 system setup & utilities
2019-11-04 14:24:55 -07:00
Erik Wilson
afa9422ad9
Improve ip6 system setup & utilities
2019-11-04 11:35:14 -07:00
Darren Shepherd
609c5e5f51
Update generated code
2019-10-30 19:08:26 -07:00
Darren Shepherd
ba240d0611
Refactor tokens, bootstrap, and cli args
2019-10-30 19:06:49 -07:00
Manuel Rüger
e8ca18ab2b
coredns: Add readinessProbe
2019-10-29 11:51:36 +01:00
Erik Wilson
8a8fa8a351
Update go generated data
2019-10-28 16:10:36 -07:00
YAMAMOTO Takashi
4970d6133f
Propagate DisableAgent flag
...
The recent setMasterRoleLabel stuff uses it.
2019-10-28 14:43:53 +09:00
Erik Wilson
f648a64ee3
Merge pull request #923 from AkihiroSuda/fix-rootless-kubelet-flags
...
rootless: add kubelet flags automatically
2019-10-25 01:40:06 -07:00
Akihiro Suda
aafccdbccb
rootless: add kubelet flags automatically
...
Fix https://github.com/rancher/k3s/issues/784
Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
2019-10-25 17:10:14 +09:00
Erik Wilson
ad4ea681ce
Hide the --disable-agent flag
2019-10-24 21:51:58 -07:00
Erik Wilson
1cd3786a6a
Merge pull request #952 from btashton/bump-klipper-lb
...
Bump klipper-lb version
2019-10-24 21:30:06 -07:00
Brennan Ashton
af7dc09f5c
Bump klipper-lb version
...
Signed-off-by: Brennan Ashton <brennana@jfrog.com>
2019-10-24 14:01:47 -07:00
Erik Wilson
aed163b338
Remove trailing whitespace trimming from containerd template
2019-10-23 08:02:07 -07:00
Erik Wilson
2ff2baba49
Merge pull request #913 from erikwilson/kube-router-network-policy
...
Add network policy support
2019-10-18 16:14:18 -07:00
Erik Wilson
da3a7c6bbc
Add network policy controller
2019-10-18 16:11:42 -07:00
Erik Wilson
1df72d14b8
Cleanup containerd config template spacing
2019-10-18 12:34:27 -07:00
Erik Wilson
90df4a1921
Use containerd-shim-run-v2
2019-10-18 12:34:27 -07:00
Erik Wilson
12307a4a69
Fallback to /etc/strongswan for config
...
Needed for docker image
2019-10-17 22:38:48 -07:00
Darren Shepherd
30c14a4db6
Merge pull request #901 from erikwilson/default-kubelet-dir
...
Use default kubelet directory
2019-10-17 16:49:11 -07:00