Mirror/k3s
1
0
Fork 0
mirror of https://github.com/k3s-io/k3s.git synced 2024-06-07 19:41:36 +00:00
Code Issues Packages Projects Releases Wiki Activity
1,999 Commits 27 Branches 785 Tags 625 MiB
b282528ee2
Commit Graph

1999 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Hussein Galal
b282528ee2
Display cluster tls error only in debug mode (#4124) 
* Display cluster tls error only in debug mode

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* fix

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
 2021-10-13 00:00:28 +02:00
Brad Davidson
dc18ef2e51 Refactor log and reaper exec to omit MAINPID 
Using MAINPID breaks systemd's exit detection, as it stops watching the
original pid, but is unable to watch the new pid as it is not a child
of systemd itself. The best we can do is just notify when execing the child
process.

We also need to consolidate forking into a sigle place so that we don't
end up with multiple levels of child processes if both redirecting log
output and reaping child processes.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-10-12 13:35:10 -07:00
Derek Nola
feec44572d
Improve error message when using a "K10" prefixed token (#4180) 
* Add new error message with a K10 prefixed secret token

Signed-off-by: dereknola <derek.nola@suse.com>
 2021-10-11 10:00:22 -07:00
Brian Downs
ac7a8d89c6
Add ability to reconcile bootstrap data between datastore and disk (#3398) 2021-10-07 12:47:00 -07:00
Luther Monson
9e787bfacb moving fossa to being inline step with a sles image 
Signed-off-by: Luther Monson <luther.monson@gmail.com>
 2021-10-06 16:47:49 -07:00
Derek Nola
b6919adf62
Add "etcd-" prefix to etcd-snapshot commands as aliases (#4161) 
* Add "etcd-" prefix to etcd-snapshot commands as alias

Signed-off-by: dereknola <derek.nola@suse.com>
 2021-10-06 14:20:22 -07:00
Manuel Buil
635f790eb4
Merge pull request #4114 from manuelbuil/lb-controller-dual-stack 
Dual-stack support in serviceLB controller
 2021-10-06 16:08:10 +02:00
Manuel Buil
00cf4578ec Dual-stack support LB controller 
Signed-off-by: Manuel Buil <mbuil@suse.com>
 2021-10-06 11:06:20 +02:00
Brad Davidson
1f7151ed2f Update stable to v1.21.5+k3s2 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-10-05 15:59:38 -07:00
Marc Bachmann
9b35734e1a Add topologySpreadConstraints to support scaling of coredns 
Signed-off-by: Marc Bachmann <marc.brookman@gmail.com>
 2021-10-05 11:52:44 -07:00
Brad Davidson
e24e1332fd Bump containerd to v1.5.7+k3s1 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-10-04 12:42:05 -07:00
Brad Davidson
12e675e2cc Don't evacuate the root cgroup when rootless 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-10-01 16:18:12 -07:00
Brad Davidson
cd5002ea37 Skip tests that violate version skew policy 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-09-30 12:26:35 -07:00
Brad Davidson
5d1a37ee32 Send MAINPID to systemd when reexecing for logfile output 
This allows the new process to notify systemd when it is ready.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-09-29 11:41:09 -07:00
Brad Davidson
a16105b348 Properly handle operation as init process 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-09-28 11:05:34 -07:00
Brian Downs
f4cea90cb9
set transport to skip verify if se skip flag passed (#4102) 2021-09-28 10:13:50 -07:00
Chris Kim
fd495a6a5f
Bump stable to v1.21.5+k3s1 (#4068) 
Signed-off-by: Chris Kim <oats87g@gmail.com>
 2021-09-28 09:32:00 -07:00
Michal Rostecki
4c75122585
Merge pull request #4098 from manuelbuil/enable_sysctl_inheritance 
Enable the inheritance of sysctl network settings for ipv6
 2021-09-28 15:32:52 +02:00
Manuel Buil
87524a7ac7 Enable the inheritance of settings for ipv6 
Signed-off-by: Manuel Buil <mbuil@suse.com>
 2021-09-28 09:42:08 +02:00
Michal Rostecki
47676eff78
Merge pull request #4080 from manuelbuil/update_klipperlb2 
Use the new klipper-lb image that has newer go and Alpine versions
 2021-09-27 10:11:52 +02:00
Luther Monson
4ec71b360c Adding fossa anaylze/test drone step 
Signed-off-by: Luther Monson <luther.monson@gmail.com>
 2021-09-23 17:04:24 -07:00
Brad Davidson
73e21e739f Drop broken SupportNoneCgroupDriver support 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-09-23 16:12:51 -07:00
Brad Davidson
8005885bad Add 1.22 channel 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-09-23 15:54:22 -07:00
Brad Davidson
539e224159 Update build images to python3 for compat with recent gsutil change 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-09-23 13:33:51 -07:00
Manuel Buil
b99b943c17 Use the new klipper-lb image that has newer go and Alpine versions 
Signed-off-by: Manuel Buil <mbuil@suse.com>
 2021-09-22 09:23:38 +02:00
Brad Davidson
28be0de4e8 Revert "Use the newer klipper-lb image" 
This reverts commit 1d21491094.
 2021-09-20 13:19:38 -07:00
Brad Davidson
64b502e92c Disable automounting service account token in servicelb pods 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-09-17 15:52:44 -07:00
Hussein Galal
7826407a2e
Make sure there are no duplicates in etcd member list (#4025) 
* Make sure there are no duplicates in etcd member list

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* fix node names with hyphens

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>

* use full server name for etcd node name

Signed-off-by: galal-hussein <hussein.galal.ahmed.11@gmail.com>
 2021-09-18 00:51:18 +02:00
Manuel Buil
1d21491094 Use the newer klipper-lb image 
Signed-off-by: Manuel Buil <mbuil@suse.com>
 2021-09-17 15:42:48 -07:00
Brad Davidson
753e11ee3c Enable JobTrackingWithFinalizers FeatureGate 
Works around issue with Job controller not tracking job pods that
are in CrashloopBackoff during upgrade from 1.21 to 1.22.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-09-17 11:26:45 -07:00
Rowan Thorpe
dccee4e87b Fix regression from commit 137e80cd86 
Problem:

A false-negative in check-config.sh for cgroups v2 systems was fixed but the
commit introduced a regression based on a small assumption that content of
/sys/fs/cgroup/cgroup.controllers would have the same format as the content
of /proc/self/cgroup. It doesn't.

Solution:

This just tweaks the regex to count occurrences of either cgroup
subsystem-names on each line (as occurs in the sysfs pseudo-file), or those
names with colons either side (as occurs in the procfs pseudo-file).

Signed-off-by: Rowan Thorpe <rowan@rowanthorpe.com>
 2021-09-17 11:21:17 -07:00
Brad Davidson
7a36c3f7f2 Bump golang version 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-09-16 15:48:29 -07:00
Brad Davidson
77dfdda909 Update Kubernetes to v1.22.2-k3s1 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-09-16 15:48:29 -07:00
Derek Nola
eda65b19d9
Remove expiremental from cluster commands (#4024) 
Signed-off-by: dereknola <derek.nola@suse.com>
 2021-09-15 16:41:50 -07:00
Joe Kralicky
debb508643
Nvidia container runtime discovery in containerd config template (#3890) 
* Update the default containerd config template with support for adding extra container runtimes. Add logic to discover nvidia container runtimes installed via the the gpu operator or package manager.

Signed-off-by: Joe Kralicky <joe.kralicky@suse.com>
 2021-09-15 14:31:11 -07:00
Brad Davidson
086ca8ba6a Fix premature etcd shutdown when joining an existing cluster 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-09-15 10:35:07 -07:00
Manuel Buil
60cd86bc42
Merge pull request #3906 from manuelbuil/dual-stack 
Add dual-stack support on flannel
 2021-09-15 18:48:10 +02:00
Brad Davidson
85e11c47d1 Add StargzSupported stub for Windows 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-09-15 09:45:57 -07:00
Nicolas Brechet
e732517712 Retrieve "CONTAINERD_" environment variables 
Signed-off-by: Nicolas Brechet <nicolas.brechet@swisscom.com>
 2021-09-15 09:37:34 -07:00
Chris Kim
acf9036b63
No-op when etcd member was already removed and use existing name for etcd controller (#4014) 
Signed-off-by: Chris Kim <oats87g@gmail.com>
 2021-09-15 08:41:30 -07:00
Manuel Buil
9fcd79baae Add tests to the dual-stack PR and enable dual-stack with flannel backend 
Signed-off-by: Manuel Buil <mbuil@suse.com>
 2021-09-15 14:11:54 +02:00
Manuel Buil
681058bb40 Add dual-stack support 
Signed-off-by: Manuel Buil <mbuil@suse.com>
 2021-09-15 11:44:48 +02:00
Brad Davidson
5e0fae914f Bump helm-controller and klipper-helm image version 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-09-15 00:09:22 -07:00
Brad Davidson
b72306ce3d Return the error since it just gets logged and retried anyways 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-09-14 16:41:27 -07:00
Brad Davidson
5986898419 Use SubjectAccessReview to validate CCM RBAC 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-09-14 16:41:27 -07:00
Brad Davidson
dc556cbb72 Set controller authn/authz kubeconfigs 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-09-14 16:41:27 -07:00
Brad Davidson
199424b608 Pass context into all Executor functions 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-09-14 16:41:27 -07:00
Rowan Thorpe
137e80cd86 Handle cgroup v1/2/hybrid in check-config.sh more explicitly/accurately 
Problem:
 In check-config.sh assumptions are made about cgroups v1/v2/hybrid,
 causes false-negative on pure V2 system.

Solution:
 In check-config.sh implement the same validation as found in
 ./pkg/agent/run.go -> validate(), validateCgroupsV1(), validateCgroupsV2()
 [ which use containerd/cgroups:utils.go -> Mode() ]

Signed-off-by: Rowan Thorpe <rowan@rowanthorpe.com>
 2021-09-14 15:53:12 -07:00
Chris Kim
928b8531c3
[master] Add etcd-member-management controller to K3s (#4001) 
* Initial leader elected etcd member management controller
* Bump etcd to v3.5.0-k3s2

Signed-off-by: Chris Kim <oats87g@gmail.com>
 2021-09-14 08:20:38 -07:00
Brad Davidson
699ea16523 go mod tidy 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2021-09-10 17:04:15 -07:00