k3s-io
/
k3s
mirror of https://github.com/k3s-io/k3s.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
3,786 Commits
34 Branches
776 Tags
634 MiB
Commit Graph

3786 Commits (master)

Author SHA1 Message Date
Zachary Spar 908a0b91dc
Fix install script raspi cmdline message (#12842) 
* Fix install script raspi cmdline message

Signed-off-by: Zachary Spar <41600414+zachspar@users.noreply.github.com>
 2025-09-19 08:35:48 -07:00
Brad Davidson 3854eb56d4 Run upgrade test in dedicated drone step 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2025-09-18 16:31:15 -07:00
Brad Davidson 5b19165e9e Fix pods readiness tests 
Test should not succeed when there are no pods, or when helm-install
pods are still running.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2025-09-18 16:31:15 -07:00
Brad Davidson a0ce2aaeaf Add sequential split-server test 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2025-09-18 16:31:15 -07:00
Brad Davidson bfdcc7bcc8 Fix etcd member promotion 
The `continue` was incorrectly changed to `return` when converting the
loop to an inline function in 4974fc7c24

Also addresses unnecessary creation of a new kubernetes client every
time the promotion check runs.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2025-09-18 16:31:15 -07:00
dependabot[bot] 626178624f
Bump aquasecurity/trivy-action from 0.32.0 to 0.33.1 (#12879) 
Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.32.0 to 0.33.1.
- [Release notes](https://github.com/aquasecurity/trivy-action/releases)
- [Commits](https://github.com/aquasecurity/trivy-action/compare/0.32.0...0.33.1)

---
updated-dependencies:
- dependency-name: aquasecurity/trivy-action
  dependency-version: 0.33.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-09-18 10:13:32 -07:00
Derek Nola 14e919804d
Fix garbled CLI (#12899) 
Signed-off-by: Derek Nola <derek.nola@suse.com>
 2025-09-17 11:27:35 -07:00
Brad Davidson 4974fc7c24 Use sync.WaitGroup to avoid exiting before components have shut down 
Currently only waits on etcd and kine, as other components
are stateless and do not need to shut down cleanly.

Terminal but non-fatal errors now request shutdown via context
cancellation, instead of just logging a fatal error.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2025-09-17 09:37:08 -07:00
Brad Davidson 7e028854e7 Fix signal handling when pid 1 
When running K3s as a subprocess for reaping or logging purposes, properly wire up signals to send it SIGINT instead of just exiting immediately.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2025-09-17 09:37:08 -07:00
Brad Davidson 274498fb4d Add pkg/signals for signal handler setup 
Adds some additional functionality and prevents having to take a dep on wrangler in CLI code

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2025-09-17 09:37:08 -07:00
Brad Davidson b61d6f3b81 Transfer cluster leadership before removing leader member 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2025-09-17 09:37:08 -07:00
Brad Davidson 659f2a7014 Fix perpetual etcd member removal 
Fixes issue where member removal would be requeud until the node was deleted, or rejoined with a new name.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2025-09-17 09:37:08 -07:00
Brad Davidson a7d3c8559f Fix IPv6 handling for loadbalancer addresses 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2025-09-16 11:04:22 -07:00
Derek Nola 07d0711e5a
Update hardened script for cis-1.11 (#12912) 
Signed-off-by: Derek Nola <derek.nola@suse.com>
 2025-09-16 11:02:28 -07:00
manuelbuil 0136cf2589 Remove NetworkManager check for nm-cloud.service 
Signed-off-by: manuelbuil <mbuil@suse.com>
 2025-09-15 13:21:32 -07:00
github-actions[bot] 2f6283a92c chore: Bump Klipper Helm and Helm Controller version 
Made with ❤️️ by updatecli
 2025-09-15 13:17:32 -07:00
dependabot[bot] 9c6d0eb5cd
Bump actions/github-script from 7 to 8 (#12881) 
Bumps [actions/github-script](https://github.com/actions/github-script) from 7 to 8.
- [Release notes](https://github.com/actions/github-script/releases)
- [Commits](https://github.com/actions/github-script/compare/v7...v8)

---
updated-dependencies:
- dependency-name: actions/github-script
  dependency-version: '8'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-09-12 09:39:11 -07:00
dependabot[bot] 1b98629b2c
Bump actions/setup-go from 5 to 6 (#12880) 
Bumps [actions/setup-go](https://github.com/actions/setup-go) from 5 to 6.
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](https://github.com/actions/setup-go/compare/v5...v6)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-version: '6'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2025-09-12 09:39:06 -07:00
Brad Davidson bdb92296a5 Bump dynamiclistener for secret sync fix 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2025-09-11 13:27:56 -07:00
Rafael 67c23a20e3
Update to v1.34.1 (#12897) 
Signed-off-by: Rafael Breno <rafael_breno@outlook.com>
 2025-09-10 22:35:56 -03:00
Brad Davidson 7e253dbf02 Fix netpol fatal error when changing node IP 
Wait for updated ready condition before starting netpol controller, to ensure that node IPs have been updated following a restart. The current checks only ensure that the taint is removed, which works for the initial join - but does not handle changing node IPs on restarts.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2025-09-10 10:27:52 -07:00
Brad Davidson b3ac144e2d Move data dir into position before creating CNI symlinks 
Addresses issue where CNI bin symlinks were created with targets that were not yet valid, which caused external container runtimes that rely on filesystem notifications to detect changes to think that the bins did not exist.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2025-09-05 22:05:52 -07:00
Brad Davidson 857412ae58 Add 1.34 release channel 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2025-09-05 12:56:03 -07:00
Brad Davidson a64d872c13 Add opencontainers/runc pin 
We no longer depend on this as a module any more, but need to keep it pinned for build-time version selection.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2025-09-05 12:32:08 -07:00
Michael Fritch a3d76b5b71
Merge pull request #12854 from mgfritch/release-1.34 
Update to Kubernetes v1.34
 2025-09-05 12:29:01 -06:00
Brad Davidson 4d1f1affcb
Fix caceertrotation test; add kine to matrix 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2025-09-05 17:07:43 +00:00
Brad Davidson f3a036a9b1
Bump kine for compact_rev_key watch fix 
Fix apiserver-managed compact, and enable it

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2025-09-05 00:04:41 +00:00
Derek Nola 9314d84714
Bump grpc and update resolver 
Signed-off-by: Derek Nola <derek.nola@suse.com>
 2025-09-04 17:33:42 -06:00
Derek Nola 56ef1cd3a2
Update etcd to v3.6.4-k3s3 
* Raft is now an independent dependency, with a seperate release version
* errors moved into their own subpackage
* set a default WarningUnaryRequestDuration

Signed-off-by: Derek Nola <derek.nola@suse.com>
Co-authored-by: Michael Fritch <mfritch@suse.com>
 2025-09-04 17:33:10 -06:00
Michael Fritch f248751dbd
make format 2025-09-04 14:41:58 -06:00
Michael Fritch 127f0ae5a7
Update to Kubernetes v1.34 
- golang:1.24.6-alpine3.22
- github.com/k3s-io/containerd/v2 v2.1.4-k3s2
- github.com/k3s-io/cri-dockerd v0.3.19-k3s3
- github.com/k3s-io/cri-tools v1.34.0-k3s2
- github.com/k3s-io/kubernetes v1.34.0-k3s1
- github.com/k3s-io/stargz-snapshotter v0.17.0-k3s1
- k8s.io/kube-openapi f3f2b99

Signed-off-by: Michael Fritch <mfritch@suse.com>
 2025-09-04 14:36:11 -06:00
Brad Davidson c837bfcdc7 Bump kine for metrics panic fix 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2025-09-03 09:52:51 -07:00
Brad Davidson 1ae5ec3d74 Upload integration test logs on failure 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2025-09-03 09:52:51 -07:00
Brad Davidson ac9f834dff Bump k3s-root to v0.15.0 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2025-09-03 09:52:51 -07:00
Brad Davidson d08bf6c9b6 Wire up remotedialer metrics 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2025-08-27 13:42:17 -07:00
Brad Davidson f1c82392d0 Fix etcd join timeout handling 
Error is deadline exceeded, not cancelled

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2025-08-27 13:41:54 -07:00
Brad Davidson 795091a809 Wire up kine metrics 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2025-08-27 13:41:16 -07:00
dependabot[bot] 81445d85d0 Bump actions/checkout from 4 to 5 
Bumps [actions/checkout](https://github.com/actions/checkout) from 4 to 5.
- [Release notes](https://github.com/actions/checkout/releases)
- [Commits](https://github.com/actions/checkout/compare/v4...v5)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: '5'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2025-08-27 10:43:44 -07:00
Rafael 3c73a06fa7
Update stable to v1.33.4+k3s1 (#12826) 
Signed-off-by: Rafael Breno <rafael_breno@outlook.com>
 2025-08-27 13:40:51 -03:00
Brad Davidson 068a01351a Retry CRD creation in case of conflict 
Also cleans up some of the server.Context factory creation stuff to eliminate unused code paths and avoid registering the Helm controller when helm is disabled.

As of fe465cc832 we no longer call NewContext outside pkg/server, so the isServer bool flag to use the supervisor kubeconfig and create an event recorder is unnecessary.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2025-08-26 12:29:36 -07:00
Brad Davidson e47c497a3e Bump containerd to v2.1.4 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2025-08-26 10:15:38 -07:00
Brad Davidson a9016f3dcb Add retry on etcd MemberAdd timeout 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2025-08-26 09:35:48 -07:00
Brad Davidson 0ec47408e9 Do not bootstrap etcd-only nodes from existing supervisor 
Changes to how we bootstrap the agent and apiserver address list have
made this unnecessary since 5014c9e was merged, and it is creating
problems due to only etcd-only nodes not using their own config.

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2025-08-25 22:16:48 -07:00
Brad Davidson 0254ca3f14 Update to runc v1.3.0 
Requires switch from github.com/opencontainers/runc/libcontainer/cgroups -> github.com/opencontainers/cgroups

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2025-08-25 14:50:22 -07:00
Brad Davidson 356bd5d298 Fix spegel logging and startup sequence 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2025-08-25 11:02:30 -07:00
Brad Davidson 6ab8b424dd Wire cri-dockerd --log-level=debug up to k3s --debug flag 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2025-08-22 10:23:30 -07:00
Brad Davidson 55587471b1 Bump rancher libs: wrangler/lasso/remotedialer 
Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2025-08-21 14:52:04 -07:00
Rafael e7dd3b7e7e
Update to v1.33.4 (#12767) 
Signed-off-by: Rafael Breno <rafael_breno@outlook.com>
 2025-08-14 16:55:28 -03:00
Brad Davidson 3d4c2cf2cf Fix cert startup check events 
Ensure that cert checks don't run until after the apiserver is ready to receive events

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
 2025-08-12 11:56:15 -07:00
Michael Fritch f62f1d6c91
Merge pull request #12726 from mgfritch/metrics-server-v0.8.0 
Bump metrics-server to v0.8.0
 2025-08-11 14:08:29 -06:00