Commit Graph

3237 Commits (f9130d537df6862a63120aa4ddb803f1317e0ef9)

Author SHA1 Message Date
Brad Davidson f21ae1d949 Make apiserver egress args conditional on egress-selector-mode
Only configure enable-aggregator-routing and egress-selector-config-file
if required by egress-selector-mode.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-07-31 13:59:41 -07:00
Simon Kirsten 546dc247a0
Add support for `{{ template "base" . }}` in etc/containerd/config.toml.tmpl (#7991)
Signed-off-by: Simon Kirsten <simonkirsten24@gmail.com>
2023-07-31 16:36:23 -04:00
Derek Nola 6d360e6473
Unit test for MustFindString (#8013)
Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-07-31 10:22:34 -07:00
Derek Nola 946c8ea842
ADR on secrets encryption v3 (#7938)
* ADR on secrets encryption v3

Signed-off-by: Derek Nola <derek.nola@suse.com>

* Update adr based off design meeting discussion

Signed-off-by: Derek Nola <derek.nola@suse.com>

* Update with acceptance

Signed-off-by: Derek Nola <derek.nola@suse.com>

---------

Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-07-31 10:20:48 -07:00
Manuel Buil 76e8e9789a
Merge pull request #8057 from manuelbuil/updateFlannel
Update flannel to v0.22.1
2023-07-31 10:56:40 +02:00
Manuel Buil a37416f38c
Merge pull request #8056 from manuelbuil/update-cniPlugins
Update cni plugins version to v1.3.0
2023-07-31 10:56:27 +02:00
Manuel Buil 780e638099 Update flannel to v0.22.1
Signed-off-by: Manuel Buil <mbuil@suse.com>
2023-07-27 11:41:59 +02:00
Manuel Buil e56839b329 Update cni plugins version to v1.3.0
Signed-off-by: Manuel Buil <mbuil@suse.com>
2023-07-27 11:37:28 +02:00
Pedro Tashima 36645e7311
fix update go version doc (#8028)
Signed-off-by: Pedro Tashima <pedro.tashima@suse.com>
Co-authored-by: Pedro Tashima <pedro.tashima@suse.com>
2023-07-21 18:03:03 -03:00
Pedro Tashima d8ae6ef59b
Update to v1.27.4 (#8014)
Signed-off-by: Pedro Tashima <pedro.tashima@suse.com>
Co-authored-by: Pedro Tashima <pedro.tashima@suse.com>
2023-07-20 13:14:51 -03:00
Derek Nola be44243353
Adjust default kubeconfig file permissions (#7978)
* Adjust default kubeconfig permissions

Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-07-14 15:00:27 -07:00
Derek Nola 0b18a65d4f
Revert "Warn that v1.28 will deprecate reencrypt/prepare (#7848)"
This reverts commit 4ab01f3941.

Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-07-14 12:38:33 -07:00
Ian Cardoso 58a8deb25d
fix image_scan.sh script and download trivy version (#7950)
Signed-off-by: Ian Cardoso <osodracnai@gmail.com>
2023-07-13 15:03:50 -03:00
Derek Nola 3eb4e12c3b
Don't use zgrep in `check-config` if apparmor porfile is enforced (#7939)
* Don't use zgrep if apparmor is enforced for it

* Bump e2e se timeouts for reencryption time

Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-07-12 08:49:05 -07:00
Bartosz Lenart 34617390d0
Generation of certificates and keys for etcd gated if etcd is disabled. (#6998)
Problem:
When support for etcd was added in 3957142, generation of certificates and keys for etcd was not gated behind use of managed etcd.
Keys are generated and distributed across servers even if managed etcd is not enabled.

Solution:
Allow generation of certificates and keys only if managed etc is enabled. Check config.DisableETCD flag.

Signed-off-by: Bartossh <lenartconsulting@gmail.com>
2023-07-11 10:24:35 -07:00
Johnatas 2eddfe6cf4
Add retry for clone step (#7862)
* Add retry for clone step

Signed-off-by: Johnatas <johnatas.santos@suse.com>
2023-07-07 14:33:57 -04:00
dependabot[bot] 782a3a1cb4
Bump google.golang.org/grpc from 1.51.0 to 1.53.0 in /tests/terraform (#7879)
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.51.0 to 1.53.0.
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.51.0...v1.53.0)

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-07-07 09:19:57 -07:00
Derek Nola 8405813c12
Fix rootless node password (#7887)
Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-07-07 09:14:49 -07:00
Johnatas 607320d670
Improve for K3s release Docs (#7864)
* Add changes in k3s release doc

Signed-off-by: Johnatas <johnatas.santos@suse.com>

* Get go version from .go-version file

Signed-off-by: Johnatas <johnatas.santos@suse.com>

* Update tags output

Signed-off-by: Johnatas <johnatas.santos@suse.com>

---------

Signed-off-by: Johnatas <johnatas.santos@suse.com>
2023-07-07 09:24:21 -03:00
Manuel Buil 6121e8cc8e
Merge pull request #7807 from dennwc/headscale
Support setting control server URL for Tailscale
2023-07-07 12:24:04 +02:00
Denys Smirnov b9a2bf11ee Support setting control server URL for Tailscale.
This change enables the use of Headscale - open source implementation of the Tailscale control server.

Signed-off-by: Denys Smirnov <dennwc@pm.me>
2023-07-07 10:49:01 +03:00
Derek Nola 4ab01f3941
Warn that v1.28 will deprecate reencrypt/prepare (#7848)
* Warn that v1.28 will deprecate reencrypt/prepare

Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-07-06 12:34:51 -07:00
Manuel Buil 6c44b06e0a
Merge pull request #7838 from manuelbuil/ipv4ipv6tailscale
Check if we are on ipv4, ipv6 or dualStack when doing tailscale
2023-07-06 11:11:26 +02:00
Ian Cardoso 9e334153cf
add e2e s3 test (#7833)
Signed-off-by: Ian Cardoso <osodracnai@gmail.com>
2023-07-05 17:35:44 -03:00
Manuel Buil 882297b081
Merge pull request #7858 from manuelbuil/fixCodeSpell
Fix code spell check
2023-07-04 15:52:04 +02:00
Manuel Buil bca0adbca8 Fix code spell check
Signed-off-by: Manuel Buil <mbuil@suse.com>
2023-07-04 13:02:06 +02:00
Manuel Buil 9c48d10eba
Merge pull request #7845 from manuelbuil/removeWinFile
Remove file_windows.go
2023-07-04 12:43:09 +02:00
Brad Davidson 7f50b40cfe Fall back to basic/bearer auth when node identity auth is rejected
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-07-03 16:20:50 -07:00
Daishan Peng ce3443ddf6 Allow k3s to customize apiServerPort on helm-controller
Signed-off-by: Daishan Peng <daishan@acorn.io>
2023-07-03 11:09:49 -07:00
Ian Cardoso 324f9ad4da
fix e2e startup flaky test (#7839)
Signed-off-by: Ian Cardoso <osodracnai@gmail.com>
2023-07-03 10:35:56 -07:00
LeiLei 72d50b1f7c
Add `--data-dir` to the `k3s certificate rotate-ca` cli (#7791)
Need to add a cli flag for this. Also, should probably have config file loading support for the certificate commands.

Signed-off-by: leilei.zhai <leilei.zhai@qingteng.cn>
2023-07-03 09:30:04 -07:00
Manuel Buil d593c83603 Remove file_windows.go
Signed-off-by: Manuel Buil <mbuil@suse.com>
2023-07-03 16:08:39 +02:00
Manuel Buil f21a01474d Check if we are on ipv4, ipv6 or dualStack when doing tailscale
Signed-off-by: Manuel Buil <mbuil@suse.com>
2023-07-03 10:48:59 +02:00
Vitor Savian 0809187cff
Adding cli to custom klipper helm image (#7682)
Adding cli to custom klipper helm image

Signed-off-by: Vitor Savian <vitor.savian@suse.com>
2023-06-28 15:31:58 +00:00
Brooks Newberry c7dec8ed24
Update stable channel to v1.27.3+k3s1 (#7827) 2023-06-27 14:09:19 -07:00
Derek Nola 70691a95ee
Faster K3s Binary Build Option (#7805)
* Add local build option

Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-06-27 10:28:23 -07:00
guoguangwu 2215870d5d chore: pkg imported more than once
Signed-off-by: guoguangwu <guoguangwu@magic-shield.com>
2023-06-26 16:58:11 -07:00
Brooks Newberry fe9604cac1
Update Kubernetes to v1.27.3 (#7790)
Signed-off-by: Brooks Newberry <brooks@newberry.com>
2023-06-15 06:59:49 -07:00
Manuel Buil 30f414e614
Merge pull request #7777 from manuelbuil/deleteTailscale
Add commands to remove advertised routes of tailscale in k3s-killall.sh
2023-06-14 20:29:41 +02:00
Manuel Buil 95245c9935
Merge pull request #7776 from manuelbuil/fixErrorReport
Fix error logging in tailscale
2023-06-14 19:41:13 +02:00
Manuel Buil d968e64de0 Add commands to logout from tailscale
Signed-off-by: Manuel Buil <mbuil@suse.com>
2023-06-14 18:57:10 +02:00
Manuel Buil 43611bb5ad Fix the error report
Signed-off-by: Manuel Buil <mbuil@suse.com>
2023-06-14 18:26:59 +02:00
Brad Davidson b66a118362 Bump helm-controller to v0.15.0 for create-namespace support
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-06-12 10:52:49 -07:00
Manuel Buil 55db9b18f0
Merge pull request #7745 from manuelbuil/removeVagrantConfig
Remove useless libvirt config
2023-06-12 18:15:28 +02:00
Manuel Buil 318ef4e07a
Merge pull request #7740 from manuelbuil/fixSpelling
Fix spelling check
2023-06-12 15:42:26 +02:00
Manuel Buil a5874f855f Remove unused libvirt config
Signed-off-by: Manuel Buil <mbuil@suse.com>
2023-06-12 14:29:31 +02:00
Manuel Buil c6a6e8ef57 Fix spelling check
Signed-off-by: Manuel Buil <mbuil@suse.com>
2023-06-12 10:24:30 +02:00
Manuel Buil 268c9a7684
Merge pull request #7352 from manuelbuil/vpnintegrations-afterparental
Integrate tailscale into k3s
2023-06-09 19:02:46 +02:00
Max cc22c80e49
Add issue template for OS validation (#7695)
* Add issue template for OS validation

Signed-off-by: rancher-max <max.ross@suse.com>
2023-06-09 09:59:29 -07:00
Derek Nola efa86a63e8
Remove unnecessary daemonset addition/deletion (#7696)
Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-06-09 09:51:41 -07:00