Commit Graph

2808 Commits

Author SHA1 Message Date
Brad Davidson
7f50b40cfe Fall back to basic/bearer auth when node identity auth is rejected
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-07-03 16:20:50 -07:00
Daishan Peng
ce3443ddf6 Allow k3s to customize apiServerPort on helm-controller
Signed-off-by: Daishan Peng <daishan@acorn.io>
2023-07-03 11:09:49 -07:00
Ian Cardoso
324f9ad4da
fix e2e startup flaky test (#7839)
Signed-off-by: Ian Cardoso <osodracnai@gmail.com>
2023-07-03 10:35:56 -07:00
LeiLei
72d50b1f7c
Add --data-dir to the k3s certificate rotate-ca cli (#7791)
Need to add a cli flag for this. Also, should probably have config file loading support for the certificate commands.

Signed-off-by: leilei.zhai <leilei.zhai@qingteng.cn>
2023-07-03 09:30:04 -07:00
Vitor Savian
0809187cff
Adding cli to custom klipper helm image (#7682)
Adding cli to custom klipper helm image

Signed-off-by: Vitor Savian <vitor.savian@suse.com>
2023-06-28 15:31:58 +00:00
Brooks Newberry
c7dec8ed24
Update stable channel to v1.27.3+k3s1 (#7827) 2023-06-27 14:09:19 -07:00
Derek Nola
70691a95ee
Faster K3s Binary Build Option (#7805)
* Add local build option

Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-06-27 10:28:23 -07:00
guoguangwu
2215870d5d chore: pkg imported more than once
Signed-off-by: guoguangwu <guoguangwu@magic-shield.com>
2023-06-26 16:58:11 -07:00
Brooks Newberry
fe9604cac1
Update Kubernetes to v1.27.3 (#7790)
Signed-off-by: Brooks Newberry <brooks@newberry.com>
2023-06-15 06:59:49 -07:00
Manuel Buil
30f414e614
Merge pull request #7777 from manuelbuil/deleteTailscale
Add commands to remove advertised routes of tailscale in k3s-killall.sh
2023-06-14 20:29:41 +02:00
Manuel Buil
95245c9935
Merge pull request #7776 from manuelbuil/fixErrorReport
Fix error logging in tailscale
2023-06-14 19:41:13 +02:00
Manuel Buil
d968e64de0 Add commands to logout from tailscale
Signed-off-by: Manuel Buil <mbuil@suse.com>
2023-06-14 18:57:10 +02:00
Manuel Buil
43611bb5ad Fix the error report
Signed-off-by: Manuel Buil <mbuil@suse.com>
2023-06-14 18:26:59 +02:00
Brad Davidson
b66a118362 Bump helm-controller to v0.15.0 for create-namespace support
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-06-12 10:52:49 -07:00
Manuel Buil
55db9b18f0
Merge pull request #7745 from manuelbuil/removeVagrantConfig
Remove useless libvirt config
2023-06-12 18:15:28 +02:00
Manuel Buil
318ef4e07a
Merge pull request #7740 from manuelbuil/fixSpelling
Fix spelling check
2023-06-12 15:42:26 +02:00
Manuel Buil
a5874f855f Remove unused libvirt config
Signed-off-by: Manuel Buil <mbuil@suse.com>
2023-06-12 14:29:31 +02:00
Manuel Buil
c6a6e8ef57 Fix spelling check
Signed-off-by: Manuel Buil <mbuil@suse.com>
2023-06-12 10:24:30 +02:00
Manuel Buil
268c9a7684
Merge pull request #7352 from manuelbuil/vpnintegrations-afterparental
Integrate tailscale into k3s
2023-06-09 19:02:46 +02:00
Max
cc22c80e49
Add issue template for OS validation (#7695)
* Add issue template for OS validation

Signed-off-by: rancher-max <max.ross@suse.com>
2023-06-09 09:59:29 -07:00
Derek Nola
efa86a63e8
Remove unnecessary daemonset addition/deletion (#7696)
Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-06-09 09:51:41 -07:00
Ian Cardoso
7c151d468f
add private registry e2e test (#7653)
add private registry e2e test

Signed-off-by: Ian Cardoso <osodracnai@gmail.com>
Co-authored-by: Derek Nola <derek.nola@suse.com>
2023-06-09 10:51:21 -03:00
Manuel Buil
869e030bdd VPN PoC
Signed-off-by: Manuel Buil <mbuil@suse.com>
2023-06-09 12:39:33 +02:00
Derek Nola
1e73bb8967 Run integration tests on E2E changes, ensures correct coverage values
Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-06-08 09:39:48 -07:00
Derek Nola
8f9502233a E2E: Inject gocover ENV for k3s commands
Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-06-08 09:39:48 -07:00
Derek Nola
4a68fbd8e9 E2E: Use sudo for all RunCmdOnNode
Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-06-08 09:39:48 -07:00
github-actions[bot]
00f3e2413f
chore: Bump Trivy version (#7672)
Made with ❤️️ by updatecli

Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
2023-06-07 16:22:26 -07:00
Derek Nola
dc6c569b98
Shortcircuit commands with version or help flags (#7683)
* Shortcircuit search with help and version flag

Signed-off-by: Derek Nola <derek.nola@suse.com>

* Keep functions seperate

Signed-off-by: Derek Nola <derek.nola@suse.com>

---------

Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-06-07 15:57:52 -07:00
Derek Nola
3a8e98a3b8
Bump docker go.mod (#7681)
Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-06-07 15:55:29 -07:00
Brad Davidson
e5e1a674ce Enable containerd aufs/devmapper/zfs snapshotter plugins
These were unintentionally dropped when moving containerd back into the main multicall binary

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-06-05 15:32:30 -07:00
Brad Davidson
5170bc5a04 Improve error response logging
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-06-05 15:31:04 -07:00
Brad Davidson
45d8c1a1a2 Soft-fail on node password verification if the secret cannot be created
Allows nodes to join the cluster during a webhook outage. This also
enhances auditability by creating Kubernetes events for the deferred
verification.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-06-05 15:31:04 -07:00
Derek Nola
b0188f5a13
Test Coverage Reports for E2E tests (#7526)
* Move coverage writer into agent and server
* Add coverage report to E2E PR tests
* Add codecov upload to drone

Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-06-05 14:15:17 -07:00
Andy Record
afc88cec88 check variant before version to decide rpm target and packager
Signed-off-by: Andy Record <adrecord@gmail.com>
2023-06-05 13:02:28 -07:00
Hussein Galal
fa0dc5900a
Use el8 rpm for fedora 38 and 39 (#7664)
* Use el8 rpm for fedora 38 and 39

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* nit fix

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

---------

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
2023-06-02 01:59:26 +03:00
Ian Cardoso
7c0a7687c6 add format command on Makefile and remove vendor
This commit adds the format command to make it easier to be compliant to golangci-lint issues

Signed-off-by: Ian Cardoso <osodracnai@gmail.com>
2023-06-01 11:06:15 -03:00
Derek Nola
9227e0bde2
Bump vagrant libvirt with fix for plugin installs (#7605)
Signed-off-by: Derek Nola <derek.nola@suse.com>
2023-05-31 13:48:55 -07:00
Yuxing Deng
b64a226ebd Make LB image configurable when compiling k3s
It is no way we can configure the lb image because it is a const value.
It would be better that we make it variable value and we can override
the value like the `helm-controller` job image when compiling k3s/rke2

Signed-off-by: Yuxing Deng <jxfa0043379@hotmail.com>
2023-05-31 08:51:13 -07:00
Manuel Buil
f58b7bd9e2
Merge pull request #7628 from manuelbuil/updateFlannel
Update flannel version
2023-05-31 08:37:52 +02:00
github-actions[bot]
a5928ee137 chore: Bump golang:alpine version
Made with ❤️️ by updatecli
2023-05-30 18:16:27 -07:00
Brad Davidson
612473755d Add ADR
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-05-30 18:15:11 -07:00
Brad Davidson
7b61aacb56 Fix test file list
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-05-30 18:15:11 -07:00
Brad Davidson
64a5f58f1e Create new kubeconfig for supervisor use
Only actual admin actions should use the admin kubeconfig; everything done by the supervisor/deploy/helm controllers will now use a distinct account for audit purposes.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-05-30 18:15:11 -07:00
Brad Davidson
8748813a61 Use distinct clients for supervisor, deploy, and helm controllers
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-05-30 18:15:11 -07:00
Brad Davidson
e9958cf070 Bump metrics-server to v0.6.3 and update tls-cipher-suites
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-05-30 17:44:06 -07:00
Brad Davidson
93279d2f59 Bump klipper-lb to v0.4.4
Fixes issue with localhost access to ServiceLB when
ExternalTrafficPolicy=Local

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
2023-05-30 17:38:59 -07:00
Andrew Roffey
0485a56f33 allow coredns override extensions
Signed-off-by: Andrew Roffey <andrew@roffey.au>
2023-05-30 17:24:00 -07:00
Brian Downs
85e10cf9d2
update channels (#7634) 2023-05-30 16:05:46 -07:00
Hussein Galal
9543470eb7
Add el9 selinux rpm (#7635)
* Add el9 to the install script

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* Add rocky-9 install test to test el9 selinux

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* Add rocky-9 install test to test el9 selinux to workflow

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* Use el8 for fedora 37

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* Add a warning to reboot in coreos systems

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* remove k3s-selinux module in case of upgrade in el9

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* Check for available container-selinux and k3s-selinux

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* extend selinux upgrade to sle distros

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* create /var/lib/rpm-state in sle systems

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* nit fix

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* extend selinux upgrade to sle distros

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

---------

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
2023-05-31 01:51:23 +03:00
Manuel Buil
d1b0254b91 Update flannel version
Signed-off-by: Manuel Buil <mbuil@suse.com>
2023-05-30 10:41:15 +02:00