Brad Davidson
f21ae1d949
Make apiserver egress args conditional on egress-selector-mode
...
Only configure enable-aggregator-routing and egress-selector-config-file
if required by egress-selector-mode.
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-07-31 13:59:41 -07:00
Simon Kirsten
546dc247a0
Add support for `{{ template "base" . }}` in etc/containerd/config.toml.tmpl ( #7991 )
...
Signed-off-by: Simon Kirsten <simonkirsten24@gmail.com>
2023-07-31 16:36:23 -04:00
Derek Nola
6d360e6473
Unit test for MustFindString ( #8013 )
...
Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-07-31 10:22:34 -07:00
Derek Nola
946c8ea842
ADR on secrets encryption v3 ( #7938 )
...
* ADR on secrets encryption v3
Signed-off-by: Derek Nola <derek.nola@suse.com>
* Update adr based off design meeting discussion
Signed-off-by: Derek Nola <derek.nola@suse.com>
* Update with acceptance
Signed-off-by: Derek Nola <derek.nola@suse.com>
---------
Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-07-31 10:20:48 -07:00
Manuel Buil
76e8e9789a
Merge pull request #8057 from manuelbuil/updateFlannel
...
Update flannel to v0.22.1
2023-07-31 10:56:40 +02:00
Manuel Buil
a37416f38c
Merge pull request #8056 from manuelbuil/update-cniPlugins
...
Update cni plugins version to v1.3.0
2023-07-31 10:56:27 +02:00
Manuel Buil
780e638099
Update flannel to v0.22.1
...
Signed-off-by: Manuel Buil <mbuil@suse.com>
2023-07-27 11:41:59 +02:00
Manuel Buil
e56839b329
Update cni plugins version to v1.3.0
...
Signed-off-by: Manuel Buil <mbuil@suse.com>
2023-07-27 11:37:28 +02:00
Pedro Tashima
36645e7311
fix update go version doc ( #8028 )
...
Signed-off-by: Pedro Tashima <pedro.tashima@suse.com>
Co-authored-by: Pedro Tashima <pedro.tashima@suse.com>
2023-07-21 18:03:03 -03:00
Pedro Tashima
d8ae6ef59b
Update to v1.27.4 ( #8014 )
...
Signed-off-by: Pedro Tashima <pedro.tashima@suse.com>
Co-authored-by: Pedro Tashima <pedro.tashima@suse.com>
2023-07-20 13:14:51 -03:00
Derek Nola
be44243353
Adjust default kubeconfig file permissions ( #7978 )
...
* Adjust default kubeconfig permissions
Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-07-14 15:00:27 -07:00
Derek Nola
0b18a65d4f
Revert "Warn that v1.28 will deprecate reencrypt/prepare ( #7848 )"
...
This reverts commit 4ab01f3941
.
Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-07-14 12:38:33 -07:00
Ian Cardoso
58a8deb25d
fix image_scan.sh script and download trivy version ( #7950 )
...
Signed-off-by: Ian Cardoso <osodracnai@gmail.com>
2023-07-13 15:03:50 -03:00
Derek Nola
3eb4e12c3b
Don't use zgrep in `check-config` if apparmor porfile is enforced ( #7939 )
...
* Don't use zgrep if apparmor is enforced for it
* Bump e2e se timeouts for reencryption time
Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-07-12 08:49:05 -07:00
Bartosz Lenart
34617390d0
Generation of certificates and keys for etcd gated if etcd is disabled. ( #6998 )
...
Problem:
When support for etcd was added in 3957142
, generation of certificates and keys for etcd was not gated behind use of managed etcd.
Keys are generated and distributed across servers even if managed etcd is not enabled.
Solution:
Allow generation of certificates and keys only if managed etc is enabled. Check config.DisableETCD flag.
Signed-off-by: Bartossh <lenartconsulting@gmail.com>
2023-07-11 10:24:35 -07:00
Johnatas
2eddfe6cf4
Add retry for clone step ( #7862 )
...
* Add retry for clone step
Signed-off-by: Johnatas <johnatas.santos@suse.com>
2023-07-07 14:33:57 -04:00
dependabot[bot]
782a3a1cb4
Bump google.golang.org/grpc from 1.51.0 to 1.53.0 in /tests/terraform ( #7879 )
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.51.0 to 1.53.0.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.51.0...v1.53.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-07-07 09:19:57 -07:00
Derek Nola
8405813c12
Fix rootless node password ( #7887 )
...
Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-07-07 09:14:49 -07:00
Johnatas
607320d670
Improve for K3s release Docs ( #7864 )
...
* Add changes in k3s release doc
Signed-off-by: Johnatas <johnatas.santos@suse.com>
* Get go version from .go-version file
Signed-off-by: Johnatas <johnatas.santos@suse.com>
* Update tags output
Signed-off-by: Johnatas <johnatas.santos@suse.com>
---------
Signed-off-by: Johnatas <johnatas.santos@suse.com>
2023-07-07 09:24:21 -03:00
Manuel Buil
6121e8cc8e
Merge pull request #7807 from dennwc/headscale
...
Support setting control server URL for Tailscale
2023-07-07 12:24:04 +02:00
Denys Smirnov
b9a2bf11ee
Support setting control server URL for Tailscale.
...
This change enables the use of Headscale - open source implementation of the Tailscale control server.
Signed-off-by: Denys Smirnov <dennwc@pm.me>
2023-07-07 10:49:01 +03:00
Derek Nola
4ab01f3941
Warn that v1.28 will deprecate reencrypt/prepare ( #7848 )
...
* Warn that v1.28 will deprecate reencrypt/prepare
Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-07-06 12:34:51 -07:00
Manuel Buil
6c44b06e0a
Merge pull request #7838 from manuelbuil/ipv4ipv6tailscale
...
Check if we are on ipv4, ipv6 or dualStack when doing tailscale
2023-07-06 11:11:26 +02:00
Ian Cardoso
9e334153cf
add e2e s3 test ( #7833 )
...
Signed-off-by: Ian Cardoso <osodracnai@gmail.com>
2023-07-05 17:35:44 -03:00
Manuel Buil
882297b081
Merge pull request #7858 from manuelbuil/fixCodeSpell
...
Fix code spell check
2023-07-04 15:52:04 +02:00
Manuel Buil
bca0adbca8
Fix code spell check
...
Signed-off-by: Manuel Buil <mbuil@suse.com>
2023-07-04 13:02:06 +02:00
Manuel Buil
9c48d10eba
Merge pull request #7845 from manuelbuil/removeWinFile
...
Remove file_windows.go
2023-07-04 12:43:09 +02:00
Brad Davidson
7f50b40cfe
Fall back to basic/bearer auth when node identity auth is rejected
...
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-07-03 16:20:50 -07:00
Daishan Peng
ce3443ddf6
Allow k3s to customize apiServerPort on helm-controller
...
Signed-off-by: Daishan Peng <daishan@acorn.io>
2023-07-03 11:09:49 -07:00
Ian Cardoso
324f9ad4da
fix e2e startup flaky test ( #7839 )
...
Signed-off-by: Ian Cardoso <osodracnai@gmail.com>
2023-07-03 10:35:56 -07:00
LeiLei
72d50b1f7c
Add `--data-dir` to the `k3s certificate rotate-ca` cli ( #7791 )
...
Need to add a cli flag for this. Also, should probably have config file loading support for the certificate commands.
Signed-off-by: leilei.zhai <leilei.zhai@qingteng.cn>
2023-07-03 09:30:04 -07:00
Manuel Buil
d593c83603
Remove file_windows.go
...
Signed-off-by: Manuel Buil <mbuil@suse.com>
2023-07-03 16:08:39 +02:00
Manuel Buil
f21a01474d
Check if we are on ipv4, ipv6 or dualStack when doing tailscale
...
Signed-off-by: Manuel Buil <mbuil@suse.com>
2023-07-03 10:48:59 +02:00
Vitor Savian
0809187cff
Adding cli to custom klipper helm image ( #7682 )
...
Adding cli to custom klipper helm image
Signed-off-by: Vitor Savian <vitor.savian@suse.com>
2023-06-28 15:31:58 +00:00
Brooks Newberry
c7dec8ed24
Update stable channel to v1.27.3+k3s1 ( #7827 )
2023-06-27 14:09:19 -07:00
Derek Nola
70691a95ee
Faster K3s Binary Build Option ( #7805 )
...
* Add local build option
Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-06-27 10:28:23 -07:00
guoguangwu
2215870d5d
chore: pkg imported more than once
...
Signed-off-by: guoguangwu <guoguangwu@magic-shield.com>
2023-06-26 16:58:11 -07:00
Brooks Newberry
fe9604cac1
Update Kubernetes to v1.27.3 ( #7790 )
...
Signed-off-by: Brooks Newberry <brooks@newberry.com>
2023-06-15 06:59:49 -07:00
Manuel Buil
30f414e614
Merge pull request #7777 from manuelbuil/deleteTailscale
...
Add commands to remove advertised routes of tailscale in k3s-killall.sh
2023-06-14 20:29:41 +02:00
Manuel Buil
95245c9935
Merge pull request #7776 from manuelbuil/fixErrorReport
...
Fix error logging in tailscale
2023-06-14 19:41:13 +02:00
Manuel Buil
d968e64de0
Add commands to logout from tailscale
...
Signed-off-by: Manuel Buil <mbuil@suse.com>
2023-06-14 18:57:10 +02:00
Manuel Buil
43611bb5ad
Fix the error report
...
Signed-off-by: Manuel Buil <mbuil@suse.com>
2023-06-14 18:26:59 +02:00
Brad Davidson
b66a118362
Bump helm-controller to v0.15.0 for create-namespace support
...
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-06-12 10:52:49 -07:00
Manuel Buil
55db9b18f0
Merge pull request #7745 from manuelbuil/removeVagrantConfig
...
Remove useless libvirt config
2023-06-12 18:15:28 +02:00
Manuel Buil
318ef4e07a
Merge pull request #7740 from manuelbuil/fixSpelling
...
Fix spelling check
2023-06-12 15:42:26 +02:00
Manuel Buil
a5874f855f
Remove unused libvirt config
...
Signed-off-by: Manuel Buil <mbuil@suse.com>
2023-06-12 14:29:31 +02:00
Manuel Buil
c6a6e8ef57
Fix spelling check
...
Signed-off-by: Manuel Buil <mbuil@suse.com>
2023-06-12 10:24:30 +02:00
Manuel Buil
268c9a7684
Merge pull request #7352 from manuelbuil/vpnintegrations-afterparental
...
Integrate tailscale into k3s
2023-06-09 19:02:46 +02:00
Max
cc22c80e49
Add issue template for OS validation ( #7695 )
...
* Add issue template for OS validation
Signed-off-by: rancher-max <max.ross@suse.com>
2023-06-09 09:59:29 -07:00
Derek Nola
efa86a63e8
Remove unnecessary daemonset addition/deletion ( #7696 )
...
Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-06-09 09:51:41 -07:00