fmoral2
45bc26309f
Remove terraform test package ( #8136 )
...
Signed-off-by: Francisco <francisco.moral@suse.com>
2023-08-04 10:06:45 -03:00
Brad Davidson
fd531140e5
Bump kine to v0.10.2
...
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-08-03 14:55:37 -07:00
Vitor Savian
ca7aeed090
Etcd snapshots retention when node name changes ( #8099 )
...
Fixed the etcd retention to delete orphaned snapshots
Signed-off-by: Vitor <vitor.savian@suse.com>
2023-08-03 10:54:40 -03:00
Brad Davidson
23d6842f9a
Bump versions for etcd, containerd, runc, kine
...
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-08-03 01:26:10 -07:00
Brad Davidson
a0da8eded3
Bump docker/docker to master commit
...
Fixes issue with invalid HTTP host headers over unix sockets caused by
recent releases of golang rejecting invalid header values.
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-08-02 11:34:11 -07:00
Brad Davidson
aa76942d0f
Add FilterCN function to prevent SAN Stuffing
...
Wire up a node watch to collect addresses of server nodes, to prevent adding unauthorized SANs to the dynamiclistener cert.
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-08-02 11:15:39 -07:00
Manuel Buil
8c38d1169d
Merge pull request #8077 from manuelbuil/fixTailscale
...
Fix tailscale bug with ip modes
2023-08-02 11:42:20 +02:00
Ikko Eltociear Ashimine
3515d712a7
Fix typo in terraform/README.md ( #8090 )
...
Signed-off-by: Ikko Eltociear Ashimine <eltociear@gmail.com>
2023-08-01 14:15:08 -04:00
Derek Nola
a87b183f9c
E2E: Support GOCOVER for more tests + fixes ( #8080 )
...
* Add support for local build and go coverage to all E2E tests
* Remove unused EXTERNAL_DB from etcd tests
* Fix private reg test
* Add coverage to tailscale
* Cleanup unnecessary "sudo" in commands
Signed-off-by: Derek Nola <derek.nola@suse.com>
* Add additonal s3 coverage clause
Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-08-01 09:32:34 -07:00
Derek Nola
46cbbab263
Consolidate CopyFile functions ( #8079 )
...
* Consolidate CopyFile function
Signed-off-by: Derek Nola <derek.nola@suse.com>
* Copy to File, not destination folder
Signed-off-by: Derek Nola <derek.nola@suse.com>
---------
Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-08-01 08:55:34 -07:00
Manuel Buil
59eec78c62
Fix tailscale bug with ip modes
...
Signed-off-by: Manuel Buil <mbuil@suse.com>
2023-08-01 09:43:25 +02:00
Johnatas
468bddb59c
update stable channel to v1.27.4+k3s1 ( #8067 )
...
Signed-off-by: Johnatas <johnatas.santos@suse.com>
2023-07-31 18:17:51 -03:00
Hussein Galal
767b64ba58
Fix coreos multiple installs ( #8083 )
...
Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
2023-08-01 00:10:19 +03:00
Guilherme Macedo
cc9dce5764
Security bump to docker/distribution ( #8047 )
...
Signed-off-by: Guilherme Macedo <guilherme@gmacedo.com>
2023-07-31 17:02:39 -04:00
Brad Davidson
f21ae1d949
Make apiserver egress args conditional on egress-selector-mode
...
Only configure enable-aggregator-routing and egress-selector-config-file
if required by egress-selector-mode.
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-07-31 13:59:41 -07:00
Simon Kirsten
546dc247a0
Add support for {{ template "base" . }} in etc/containerd/config.toml.tmpl ( #7991 )
...
Signed-off-by: Simon Kirsten <simonkirsten24@gmail.com>
2023-07-31 16:36:23 -04:00
Derek Nola
6d360e6473
Unit test for MustFindString ( #8013 )
...
Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-07-31 10:22:34 -07:00
Derek Nola
946c8ea842
ADR on secrets encryption v3 ( #7938 )
...
* ADR on secrets encryption v3
Signed-off-by: Derek Nola <derek.nola@suse.com>
* Update adr based off design meeting discussion
Signed-off-by: Derek Nola <derek.nola@suse.com>
* Update with acceptance
Signed-off-by: Derek Nola <derek.nola@suse.com>
---------
Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-07-31 10:20:48 -07:00
Manuel Buil
76e8e9789a
Merge pull request #8057 from manuelbuil/updateFlannel
...
Update flannel to v0.22.1
2023-07-31 10:56:40 +02:00
Manuel Buil
a37416f38c
Merge pull request #8056 from manuelbuil/update-cniPlugins
...
Update cni plugins version to v1.3.0
2023-07-31 10:56:27 +02:00
Manuel Buil
780e638099
Update flannel to v0.22.1
...
Signed-off-by: Manuel Buil <mbuil@suse.com>
2023-07-27 11:41:59 +02:00
Manuel Buil
e56839b329
Update cni plugins version to v1.3.0
...
Signed-off-by: Manuel Buil <mbuil@suse.com>
2023-07-27 11:37:28 +02:00
Pedro Tashima
36645e7311
fix update go version doc ( #8028 )
...
Signed-off-by: Pedro Tashima <pedro.tashima@suse.com>
Co-authored-by: Pedro Tashima <pedro.tashima@suse.com>
2023-07-21 18:03:03 -03:00
Pedro Tashima
d8ae6ef59b
Update to v1.27.4 ( #8014 )
...
Signed-off-by: Pedro Tashima <pedro.tashima@suse.com>
Co-authored-by: Pedro Tashima <pedro.tashima@suse.com>
2023-07-20 13:14:51 -03:00
Derek Nola
be44243353
Adjust default kubeconfig file permissions ( #7978 )
...
* Adjust default kubeconfig permissions
Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-07-14 15:00:27 -07:00
Derek Nola
0b18a65d4f
Revert "Warn that v1.28 will deprecate reencrypt/prepare ( #7848 )"
...
This reverts commit 4ab01f3941
2023-07-14 12:38:33 -07:00
Ian Cardoso
58a8deb25d
fix image_scan.sh script and download trivy version ( #7950 )
...
Signed-off-by: Ian Cardoso <osodracnai@gmail.com>
2023-07-13 15:03:50 -03:00
Derek Nola
3eb4e12c3b
Don't use zgrep in check-config if apparmor porfile is enforced ( #7939 )
...
* Don't use zgrep if apparmor is enforced for it
* Bump e2e se timeouts for reencryption time
Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-07-12 08:49:05 -07:00
Bartosz Lenart
34617390d0
Generation of certificates and keys for etcd gated if etcd is disabled. ( #6998 )
...
Problem:
When support for etcd was added in 3957142
2023-07-11 10:24:35 -07:00
Johnatas
2eddfe6cf4
Add retry for clone step ( #7862 )
...
* Add retry for clone step
Signed-off-by: Johnatas <johnatas.santos@suse.com>
2023-07-07 14:33:57 -04:00
dependabot[bot]
782a3a1cb4
Bump google.golang.org/grpc from 1.51.0 to 1.53.0 in /tests/terraform ( #7879 )
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.51.0 to 1.53.0.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.51.0...v1.53.0 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-07-07 09:19:57 -07:00
Derek Nola
8405813c12
Fix rootless node password ( #7887 )
...
Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-07-07 09:14:49 -07:00
Johnatas
607320d670
Improve for K3s release Docs ( #7864 )
...
* Add changes in k3s release doc
Signed-off-by: Johnatas <johnatas.santos@suse.com>
* Get go version from .go-version file
Signed-off-by: Johnatas <johnatas.santos@suse.com>
* Update tags output
Signed-off-by: Johnatas <johnatas.santos@suse.com>
---------
Signed-off-by: Johnatas <johnatas.santos@suse.com>
2023-07-07 09:24:21 -03:00
Manuel Buil
6121e8cc8e
Merge pull request #7807 from dennwc/headscale
...
Support setting control server URL for Tailscale
2023-07-07 12:24:04 +02:00
Denys Smirnov
b9a2bf11ee
Support setting control server URL for Tailscale.
...
This change enables the use of Headscale - open source implementation of the Tailscale control server.
Signed-off-by: Denys Smirnov <dennwc@pm.me>
2023-07-07 10:49:01 +03:00
Derek Nola
4ab01f3941
Warn that v1.28 will deprecate reencrypt/prepare ( #7848 )
...
* Warn that v1.28 will deprecate reencrypt/prepare
Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-07-06 12:34:51 -07:00
Manuel Buil
6c44b06e0a
Merge pull request #7838 from manuelbuil/ipv4ipv6tailscale
...
Check if we are on ipv4, ipv6 or dualStack when doing tailscale
2023-07-06 11:11:26 +02:00
Ian Cardoso
9e334153cf
add e2e s3 test ( #7833 )
...
Signed-off-by: Ian Cardoso <osodracnai@gmail.com>
2023-07-05 17:35:44 -03:00
Manuel Buil
882297b081
Merge pull request #7858 from manuelbuil/fixCodeSpell
...
Fix code spell check
2023-07-04 15:52:04 +02:00
Manuel Buil
bca0adbca8
Fix code spell check
...
Signed-off-by: Manuel Buil <mbuil@suse.com>
2023-07-04 13:02:06 +02:00
Manuel Buil
9c48d10eba
Merge pull request #7845 from manuelbuil/removeWinFile
...
Remove file_windows.go
2023-07-04 12:43:09 +02:00
Brad Davidson
7f50b40cfe
Fall back to basic/bearer auth when node identity auth is rejected
...
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-07-03 16:20:50 -07:00
Daishan Peng
ce3443ddf6
Allow k3s to customize apiServerPort on helm-controller
...
Signed-off-by: Daishan Peng <daishan@acorn.io>
2023-07-03 11:09:49 -07:00
Ian Cardoso
324f9ad4da
fix e2e startup flaky test ( #7839 )
...
Signed-off-by: Ian Cardoso <osodracnai@gmail.com>
2023-07-03 10:35:56 -07:00
LeiLei
72d50b1f7c
Add --data-dir to the k3s certificate rotate-ca cli ( #7791 )
...
Need to add a cli flag for this. Also, should probably have config file loading support for the certificate commands.
Signed-off-by: leilei.zhai <leilei.zhai@qingteng.cn>
2023-07-03 09:30:04 -07:00
Manuel Buil
d593c83603
Remove file_windows.go
...
Signed-off-by: Manuel Buil <mbuil@suse.com>
2023-07-03 16:08:39 +02:00
Manuel Buil
f21a01474d
Check if we are on ipv4, ipv6 or dualStack when doing tailscale
...
Signed-off-by: Manuel Buil <mbuil@suse.com>
2023-07-03 10:48:59 +02:00
Vitor Savian
0809187cff
Adding cli to custom klipper helm image ( #7682 )
...
Adding cli to custom klipper helm image
Signed-off-by: Vitor Savian <vitor.savian@suse.com>
2023-06-28 15:31:58 +00:00
Brooks Newberry
c7dec8ed24
Update stable channel to v1.27.3+k3s1 ( #7827 )
2023-06-27 14:09:19 -07:00
Derek Nola
70691a95ee
Faster K3s Binary Build Option ( #7805 )
...
* Add local build option
Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-06-27 10:28:23 -07:00
