Commit Graph

2479 Commits

Author SHA1 Message Date
Brad Davidson
9a48086524 Ignore cluster membership errors when reconciling from temp etcd
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2022-03-01 20:25:20 -08:00
Brad Davidson
e4846c92b4 Move temporary etcd startup into etcd module
Reuse the existing etcd library code to start up the temporary etcd
server for bootstrap reconcile. This allows us to do proper
health-checking of the datastore on startup, including handling of
alarms.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2022-03-01 20:25:20 -08:00
Brad Davidson
4b064b5d22 Wait for process to exit before returning from kill helper
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2022-03-01 11:56:52 -08:00
Brad Davidson
555087b9b8 Add function to clear local alarms on etcd startup
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2022-03-01 11:56:52 -08:00
Derek Nola
6e397aa42e
E2E secrets encryption test (#5144)
* Dump vagrant log on creation failure
* Update RunCmdOnNode to add quotes
* secrets encryption e2e test

Signed-off-by: Derek Nola <derek.nola@suse.com>
2022-03-01 11:28:39 -08:00
Kamil Madac
333248466b
Add http/2 support to API server (#5149)
fix issue #5148

Signed-off-by: Kamil Madac <kamil.madac@gmail.com>
2022-03-01 11:27:52 -08:00
Brad Davidson
3531df3f31 Disable ineffassign CI plugin for excessive false positives
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2022-02-28 19:56:08 -08:00
Brad Davidson
5014c9e0e8 Fix adding etcd-only node to existing cluster
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2022-02-28 19:56:08 -08:00
Kohei Tokunaga
7f4aa59014
Bump up github.com/containerd/stargz-snapshotter (v0.11.0) (#5032)
Signed-off-by: Kohei Tokunaga <ktokunaga.mail@gmail.com>
2022-02-28 17:11:46 -08:00
Brad Davidson
a1b800f0bf Remove unnecessary copies of etcdconfig struct
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2022-02-28 12:05:16 -08:00
Brad Davidson
2989b8b2c5 Remove unnecessary copies of runtime struct
Several types contained redundant references to ControlRuntime data. Switch to consistently accessing this via config.Runtime instead.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2022-02-28 12:05:16 -08:00
Brad Davidson
54bb65064e Fix cluster bootstrap test
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2022-02-28 12:05:16 -08:00
Jossemar Cordero
0a56b29dec
Add contributors documentation (#5154)
Add contributor's documentation addressing: 
- Git workflow and CI
- Coding conventions in Go and POSIX shell languages
- Development setup and tooling involved
2022-02-28 11:56:23 -06:00
Derek Nola
a698ece9c5
Add --json flag for k3s secrets-encrypt status (#5127)
* Add json flag for secrets-encrypt status

Signed-off-by: Derek Nola <derek.nola@suse.com>
2022-02-28 09:14:32 -08:00
Brian Downs
40a46e1412
add ability to specify etcd snapshot list output format (#5132) 2022-02-25 14:00:00 -07:00
Derek Nola
142eed1a9f
Create encryption hash file if it doesn't exist (#5140)
Signed-off-by: Derek Nola <derek.nola@suse.com>
2022-02-25 08:43:03 -08:00
Derek Nola
299ca60009
Move testing lock from server creation to test start (#5155)
Signed-off-by: Derek Nola <derek.nola@suse.com>
2022-02-25 08:42:21 -08:00
Hussein Galal
43b1cb4820
Update to V1.23.4 k3s1 (#5135)
* Update to v1.23.4

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* Upgrade treafik to 2.6.1

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* Upgrade treafik to 2.6.1

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* Upgrade treafik image in image-list

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* Update kubernetes

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
2022-02-22 18:57:22 +02:00
Brad Davidson
feb6feeaec Fix deploy controller resource deletion
Update Wrangler to resolve issue with deleting owned resources.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2022-02-11 15:51:44 -08:00
Manuel Buil
5233946ca1
Merge pull request #5106 from manuelbuil/fix_annoying_netpol_log
Fix annoying netpol heartbeat missing log
2022-02-10 23:19:34 +01:00
Manuel Buil
062fe63dd1 Fix annoying netpol log
Signed-off-by: Manuel Buil <mbuil@suse.com>
2022-02-10 20:01:27 +01:00
Olli Janatuinen
966f4d6a01 Add support for IPv6 only mode
Automatically switch to IPv6 only mode if first node-ip is IPv6 address

Signed-off-by: Olli Janatuinen <olli.janatuinen@gmail.com>
2022-02-10 20:34:59 +02:00
Derek Nola
830c330aad
E2E Test Improvements (#5102)
* Fix infinite while loop on failure, reduce upgradecluster

* DRY code

Signed-off-by: Derek Nola <derek.nola@suse.com>
2022-02-10 09:27:00 -08:00
Derek Nola
e28be2912c
Migrate Ginkgo testing framework to V2, consolidate integration tests (#5097)
* Upgrade and convert ginkgo from v1 to v2
* Move all integration tests into integration folder
* Update TESTING.md

Signed-off-by: Derek Nola <derek.nola@suse.com>
2022-02-09 08:22:53 -08:00
Hussein Galal
13728058a4
Add k3s etcd restoration integration test (#5014)
* Add k3s etcd restoration test

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* Fix tests and rebase

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* Reorganizing the tests

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* Fixing comments

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* Fix etcd restore

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* dont check for errors when restoring

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* use eventually to test for restoration

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* fix tests

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* fix golint

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
2022-02-08 21:24:34 +02:00
Manuel Buil
0a3bdc6dae
Merge pull request #5059 from manuelbuil/cleanuptables
Remove the iptables rules from ipmasq flannel
2022-02-08 20:11:25 +01:00
Manuel Buil
def9c99679 Remove the iptables rules from ipmasq flannel
Signed-off-by: Manuel Buil <mbuil@suse.com>
2022-02-08 18:55:25 +01:00
ShylajaDevadiga
35582e6213
Fix cluster validation and add upgrade cluster test (#5020)
Signed-off-by: Shylaja Devadiga <shylaja@rancher.com>

Co-authored-by: Derek Nola <derek.nola@suse.com>
2022-02-08 09:34:57 -08:00
Jossemar Cordero
466a7f4535
Update CentOS 8 smoke vm's with vault repositories (#5092)
Update CentOS 8 smoke vm's with vault repositories

Problem: CentOS 8 reached its EOL alongside its public mirrors, making
all the smoke test fail at provisioning time.

Solution: Point all the CentOS repositories to vault.

Signed-off-by: Jonnatan Jossemar Cordero <jonnatan.cordero@suse.com>
2022-02-08 10:03:19 -06:00
Manuel Buil
773c2a4184
Merge pull request #5079 from manuelbuil/michalsPR
netpol: Use kube-router as a library
2022-02-07 19:18:15 +01:00
Michal Rostecki
4fed9f4052 netpol: Use kube-router as a library
Before this change, we were copying a part of kube-router code to
pkg/agent/netpol directory with modifications, from which the biggest
one was consumption of k3s node config instead of kube-router config.

However, that approach made it hard to follow new upstream versions.
It's possible to use kube-router as a library, so it seems like a better
way to do that.

Instead of modifying kube-router network policy controller to comsume
k3s configuration, this change just converts k3s node config into
kube-router config. All the functionality of kube-router except netpol
is still disabled.

Signed-off-by: Michal Rostecki <mrostecki@opensuse.org>
Signed-off-by: Manuel Buil <mbuil@suse.com>
2022-02-07 10:54:08 +01:00
Derek Nola
4f36c82ff7
Check for --kubeconfig flag with embedded kubectl (#5064)
* Check for kubeconfig flag

Signed-off-by: Derek Nola <derek.nola@suse.com>
2022-02-03 09:00:24 -08:00
Ankur Gupta
df4147cd57
Update legacy-unknown-cert and legacy-unknown-key (#5057)
Signed-off-by: Ankur Gupta <ankur.gupta130887@gmail.com>
2022-02-02 09:15:41 -08:00
Manuel Buil
db5e5d3585
Merge pull request #5035 from manuelbuil/update_versions
Update versions of K3S root, flannel and cni_plugins
2022-02-01 11:28:01 +01:00
Derek Nola
6fe36be691
Bump K3s stable to v1.22.6 (#5050)
Signed-off-by: Derek Nola <derek.nola@suse.com>
2022-01-31 13:30:45 -08:00
Manuel Buil
3fffef18fa Update versions:
* K3S_ROOT
* FLANNEL
* CNI_PLUGINS

Signed-off-by: Manuel Buil <mbuil@suse.com>
2022-01-31 20:19:37 +01:00
Derek Nola
444a7cb0ad
Fixes to Drone CI Stability (#4897)
* Do serial only first

Signed-off-by: Derek Nola <derek.nola@suse.com>

* Add test-post-hook for extremely flaky tests, enable parallel

Signed-off-by: Derek Nola <derek.nola@suse.com>

* Add flaky test post hook to etcd

* Add concurrent parallel, fix flaky tests checks

Signed-off-by: Derek Nola <derek.nola@suse.com>
2022-01-31 10:57:23 -08:00
Derek Nola
d583a99f62
Add server flag to access nonlocal/nondefault k3s server (#5016)
Signed-off-by: Derek Nola <derek.nola@suse.com>
2022-01-27 10:53:38 -08:00
Derek Nola
5fb370e53e
Update to v1.23.3 (#5027)
* Update to v1.23.3

Signed-off-by: Derek Nola <derek.nola@suse.com>

* Update tags to k3s-io for v1.23.3

Signed-off-by: Derek Nola <derek.nola@suse.com>
2022-01-26 12:47:56 -08:00
Aaron Ogle
c71bd31ae6
Add Rocket.Chat to list of adopters (#5017)
Signed-off-by: Aaron Ogle <geekgonecrazy@users.noreply.github.com>
Signed-off-by: Aaron Ogle <aaron.ogle@rocket.chat>
2022-01-26 12:55:44 -05:00
Brad Davidson
bc7635f01f Move containerd wait into exported function
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2022-01-25 13:09:30 -08:00
Derek Nola
fc8309a46c
Update to v1.23.2 (#4997)
* Update to v1.23.2

Signed-off-by: Derek Nola <derek.nola@suse.com>

* Update tags to k3s-io for v1.23.2

Signed-off-by: Derek Nola <derek.nola@suse.com>
2022-01-20 11:06:38 -08:00
Derek Nola
9bd101c120
Add new upgradecluster E2E test (#4900)
* validatecluster fixes

Signed-off-by: Derek Nola <derek.nola@suse.com>
2022-01-19 18:48:59 -08:00
Manuel Buil
01388fee2d
Merge pull request #4973 from manuelbuil/delete-ip6tables
Remove ip6table rules when cleaning up k3s
2022-01-19 09:11:56 +01:00
Roberto Bonafiglia
bb856c67dc
Merge pull request #4952 from rbrtbnfgl/ipv6-nat
Add IPv6 NAT
2022-01-19 08:44:57 +01:00
Brad Davidson
a094dee7dd Update packaged components
Update images and manifests/charts for coredns, local-path-provisioner, traefik, and pause

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2022-01-18 16:40:00 -08:00
Brad Davidson
27fe2c3c1b go generate
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2022-01-18 11:01:49 -08:00
Farukh Khan
c4eb273641 Upgrade: metrics server version bump from v0.5.0 to v0.5.2
Kubernetes Metrics Server version upgrade with the following changes:

Remove elevated permissions cap_net_bind_service from metrics-server

Fix bad architecture metadata

Fix reporting inconsistent number of nodes, caused by using invalid Kubelet node start time metric

Fix reporting partial container metrics for pod

Signed-off-by: Farukh Khan <farukhkhan21@gmail.com>
2022-01-18 11:01:49 -08:00
Manuel Buil
66780cc665 Remove ip6table rules when cleaning up k3s
Signed-off-by: Manuel Buil <mbuil@suse.com>
2022-01-18 08:36:00 +01:00
Roberto Bonafiglia
8eded2749a Added debug log for IPv6 Masquerading rule
Signed-off-by: Roberto Bonafiglia <roberto.bonafiglia@gmail.com>
2022-01-17 10:20:12 +01:00