4093 commits

This branch

This branch

All branches

Author	SHA1	Message	Date
Brad Davidson	4cc440f2c9	Simplify snapshot compress/decompress logic ... Compression creates a zipfile with the same path as the snapshot file containing only the snapshot. Decompression can be a bit simpler by also extracting to the same path, and erroring if there are unexpected contents. In retrospect we probably should have just gzip'd the snapshot file, but I think there was some intention to observe the same behavior as RKE1, which used zip files. Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2026-03-16 16:06:49 -07:00
Brad Davidson	630f7d5e59	Bump cni plugins to v1.9.1 ... Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2026-03-16 16:06:41 -07:00
Manuel Buil	c08951e848	Fix trivy updatecli config ... Signed-off-by: Manuel Buil <mbuil@suse.com>	2026-03-16 21:45:05 +01:00
Manuel Buil	2f54f97ab4	Bump Traefik helm chart version ... Signed-off-by: Manuel Buil <mbuil@suse.com>	2026-03-16 16:48:28 +01:00
Brad Davidson	521255be53	Bump runc to v1.4.1 ... Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2026-03-14 08:15:37 -07:00
Brad Davidson	268322414f	Bump containerd to v2.2.2 ... Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2026-03-11 18:07:30 -07:00
Tom Risse	1501d1096d	fix: install.sh: Simplify handling for fedora rpm-ostree based distributions ... Signed-off-by: Tom Risse <tom@becarusys.de>	2026-03-10 14:16:57 -07:00
Brad Davidson	509562e215	Bump traefik and local-path-provisioner ... Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2026-03-10 14:16:31 -07:00
Brad Davidson	f4bb1e60c3	Use etcd-snapshot-retention as default for s3 if etcd-s3-retention is not set ... Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2026-03-10 12:10:40 -07:00
dependabot[bot]	36785d1993	build(deps): bump github.com/pion/dtls/v3 from 3.0.6 to 3.0.11 ... Bumps [github.com/pion/dtls/v3](https://github.com/pion/dtls) from 3.0.6 to 3.0.11. - [Release notes](https://github.com/pion/dtls/releases) - [Commits](https://github.com/pion/dtls/compare/v3.0.6...v3.0.11) --- updated-dependencies: - dependency-name: github.com/pion/dtls/v3 dependency-version: 3.0.11 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>	2026-03-10 11:53:20 -07:00
dependabot[bot]	74ad4d3f09	Bump github.com/docker/cli ... Bumps [github.com/docker/cli](https://github.com/docker/cli) from 28.3.2+incompatible to 29.2.0+incompatible. - [Commits](https://github.com/docker/cli/compare/v28.3.2...v29.2.0) --- updated-dependencies: - dependency-name: github.com/docker/cli dependency-version: 29.2.0+incompatible dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>	2026-03-10 11:48:52 -07:00
dependabot[bot]	f8c52914ed	Bump go.opentelemetry.io/otel/sdk from 1.39.0 to 1.40.0 ... Bumps [go.opentelemetry.io/otel/sdk](https://github.com/open-telemetry/opentelemetry-go) from 1.39.0 to 1.40.0. - [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases) - [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md) - [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.39.0...v1.40.0) --- updated-dependencies: - dependency-name: go.opentelemetry.io/otel/sdk dependency-version: 1.40.0 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>	2026-03-10 11:48:26 -07:00
dependabot[bot]	6c6a906ca4	Bump docker/metadata-action from 5 to 6 (#13748) ... Bumps [docker/metadata-action](https://github.com/docker/metadata-action) from 5 to 6. - [Release notes](https://github.com/docker/metadata-action/releases) - [Commits](https://github.com/docker/metadata-action/compare/v5...v6) --- updated-dependencies: - dependency-name: docker/metadata-action dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2026-03-10 10:43:27 -07:00
Derek Nola	e4cb0e74e0	Save cluster state before reencyrpting secrets with newly created key (#13764) ... Signed-off-by: Derek Nola <derek.nola@suse.com>	2026-03-10 09:20:50 -07:00
dependabot[bot]	7cd98146d8	Bump docker/setup-docker-action from 4 to 5 ... Bumps [docker/setup-docker-action](https://github.com/docker/setup-docker-action) from 4 to 5. - [Release notes](https://github.com/docker/setup-docker-action/releases) - [Commits](https://github.com/docker/setup-docker-action/compare/v4...v5) --- updated-dependencies: - dependency-name: docker/setup-docker-action dependency-version: '5' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>	2026-03-09 16:37:41 -07:00
dependabot[bot]	3975a57306	Bump docker/setup-qemu-action from 3 to 4 ... Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action) from 3 to 4. - [Release notes](https://github.com/docker/setup-qemu-action/releases) - [Commits](https://github.com/docker/setup-qemu-action/compare/v3...v4) --- updated-dependencies: - dependency-name: docker/setup-qemu-action dependency-version: '4' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>	2026-03-09 16:37:34 -07:00
dependabot[bot]	be7e63dd59	Bump docker/build-push-action from 6 to 7 ... Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 6 to 7. - [Release notes](https://github.com/docker/build-push-action/releases) - [Commits](https://github.com/docker/build-push-action/compare/v6...v7) --- updated-dependencies: - dependency-name: docker/build-push-action dependency-version: '7' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>	2026-03-09 16:37:27 -07:00
dependabot[bot]	de13a6435d	Bump DeterminateSystems/nix-installer-action from 17 to 21 ... Bumps [DeterminateSystems/nix-installer-action](https://github.com/determinatesystems/nix-installer-action) from 17 to 21. - [Release notes](https://github.com/determinatesystems/nix-installer-action/releases) - [Commits](https://github.com/determinatesystems/nix-installer-action/compare/v17...v21) --- updated-dependencies: - dependency-name: DeterminateSystems/nix-installer-action dependency-version: '21' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>	2026-03-09 16:37:20 -07:00
Brad Davidson	3f5eec4c4e	Drop use of github.com/gorilla/mux ... mux is replaced with a simple wrapper around http.ServeMux with middleware chain support Unfortunately github.com/rootless-containers/rootlesskit/pkg/parent still uses it so we can't drop the indirect dep yet. Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2026-03-09 16:09:01 -07:00
Brad Davidson	270484f01b	Replace merr.NewErrors with errors.Join ... Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2026-03-09 16:09:01 -07:00
Brad Davidson	3acf8db8f2	Update packages to remove dep on archived github.com/pkg/errors ... Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2026-03-09 16:09:01 -07:00
github-actions[bot]	64207c324f	chore: Bump golang:alpine image version in Dockerfiles ... Made with ❤️️ by updatecli	2026-03-09 15:12:35 -07:00
Brad Davidson	6ffcd77ffd	Bump klipper-lb and klipper-helm ... Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2026-03-09 15:11:09 -07:00
Michael Fritch	fd5f3e5685	Merge pull request #13743 from k3s-io/updatecli_main_58192f59672b46444171adc60a1ed2e637548441c207e6ffe971ed9efea2d0a5 ... Bump rancher/mirrored-coredns-coredns image version	2026-03-09 12:32:37 -06:00
github-actions[bot]	5855ed5345	chore: Update CoreDNS image version in manifests/coredns.yaml ... Made with ❤️️ by updatecli	2026-03-08 18:12:25 +00:00
github-actions[bot]	22e8e41356	chore: Update CoreDNS image version in scripts/airgap/image-list ... Made with ❤️️ by updatecli	2026-03-08 18:12:24 +00:00
dependabot[bot]	669bb79f08	Bump softprops/action-gh-release from 2.2.1 to 2.5.0 ... Bumps [softprops/action-gh-release](https://github.com/softprops/action-gh-release) from 2.2.1 to 2.5.0. - [Release notes](https://github.com/softprops/action-gh-release/releases) - [Changelog](https://github.com/softprops/action-gh-release/blob/master/CHANGELOG.md) - [Commits](https://github.com/softprops/action-gh-release/compare/v2.2.1...v2.5.0) --- updated-dependencies: - dependency-name: softprops/action-gh-release dependency-version: 2.5.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2026-03-06 16:28:26 -08:00
dependabot[bot]	340623bf53	build(deps): bump aws-actions/configure-aws-credentials from 5 to 6 ... Bumps [aws-actions/configure-aws-credentials](https://github.com/aws-actions/configure-aws-credentials) from 5 to 6. - [Release notes](https://github.com/aws-actions/configure-aws-credentials/releases) - [Changelog](https://github.com/aws-actions/configure-aws-credentials/blob/main/CHANGELOG.md) - [Commits](https://github.com/aws-actions/configure-aws-credentials/compare/v5...v6) --- updated-dependencies: - dependency-name: aws-actions/configure-aws-credentials dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>	2026-03-06 16:28:12 -08:00
dependabot[bot]	7563007cd4	build(deps): bump aquasecurity/trivy-action from 0.33.1 to 0.34.1 ... Bumps [aquasecurity/trivy-action](https://github.com/aquasecurity/trivy-action) from 0.33.1 to 0.34.1. - [Release notes](https://github.com/aquasecurity/trivy-action/releases) - [Commits](https://github.com/aquasecurity/trivy-action/compare/0.33.1...0.34.1) --- updated-dependencies: - dependency-name: aquasecurity/trivy-action dependency-version: 0.34.1 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2026-03-06 16:27:29 -08:00
dependabot[bot]	d648c8cb89	build(deps): bump actions/stale from 10.1.1 to 10.2.0 ... Bumps [actions/stale](https://github.com/actions/stale) from 10.1.1 to 10.2.0. - [Release notes](https://github.com/actions/stale/releases) - [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/stale/compare/v10.1.1...v10.2.0) --- updated-dependencies: - dependency-name: actions/stale dependency-version: 10.2.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>	2026-03-06 16:27:22 -08:00
dependabot[bot]	45bdf9c9f8	Bump actions/download-artifact from 7 to 8 ... Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 7 to 8. - [Release notes](https://github.com/actions/download-artifact/releases) - [Commits](https://github.com/actions/download-artifact/compare/v7...v8) --- updated-dependencies: - dependency-name: actions/download-artifact dependency-version: '8' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>	2026-03-06 16:27:13 -08:00
Brad Davidson	8908d5fcde	Do not create etcd name file if etcd is not in use ... etcd.setName was being called during managed driver creation, even if the managed driver (etcd) is not in use. Let etcd.Register handle calling setName. Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2026-03-06 14:50:06 -08:00
Ada	20c02eda5a	Add nix-snapshotter integration test ... Docker-based integration test that verifies nix-snapshotter works with k3s. The test builds a nix hello image, starts k3s with --snapshotter nix, pulls the image via nix:0 ref, and runs it as a pod, verifying "Hello, world!" output. Signed-off-by: Ada <ada@6bit.com> Co-Authored-By: Joshua Perry <josh@6bit.com> Signed-off-by: Ada <ada@6bit.com>	2026-03-06 12:36:57 -08:00
Ada	de59b6327c	Add nix-snapshotter support to the embedded containerd ... Add support for the "nix" snapshotter, which enables running container images built with nix2container. Nix images reference store paths directly, avoiding layer tarballs and enabling deduplication through the nix store. Changes: - Register nix-snapshotter as a builtin containerd plugin - Add NixSupported() validation (checks nix-store is in PATH) - Configure nix-snapshotter image service proxy in V2/V3 templates with containerd_address for CRI image operations - Add Transfer service unpack_config with differ=walking for multi-arch support - Use containerd state dir for socket path (rootless compatible) - Disable NRI in rootless mode to prevent bind failures Usage: k3s server --snapshotter nix Signed-off-by: Ada <ada@6bit.com> Co-Authored-By: Joshua Perry <josh@6bit.com> Signed-off-by: Ada <ada@6bit.com>	2026-03-06 12:36:57 -08:00
Brian Downs	1ad0978f13	update channel server to 1.34.5 (#13732)	2026-03-05 15:23:19 -07:00
Fabiano Fidêncio	b51167a996	config: add default imports to containerd base templates ... Add imports to the generated containerd config so containerd loads drop-in TOML files: config.toml.d for v2, config-v3.toml.d for v3 (e.g. /var/lib/rancher/k3s/agent/etc/containerd/config.toml.d and /var/lib/rancher/k3s/agent/etc/containerd/config-v3.toml.d). Also fix the v3 header comment to say config-v3.toml.tmpl instead of config.toml.tmpl. Signed-off-by: Fabiano Fidêncio <ffidencio@nvidia.com>	2026-03-02 14:20:29 -08:00
Derek Nola	29f92e9d50	Assign github.event to env first (#13715) ... Signed-off-by: Derek Nola <derek.nola@suse.com>	2026-03-02 10:20:02 -08:00
Rafael	abc7cc8560	Update to v1.35.2 (#13708) ... Signed-off-by: Rafael Breno <rafael_breno@outlook.com>	2026-02-27 13:57:33 -03:00
Manuel Buil	019561dec2	Bump Traefik to v3.6.9 ... Signed-off-by: Manuel Buil <mbuil@suse.com>	2026-02-27 09:49:19 +01:00
Brad Davidson	d300004f29	Improve resilience of datastore bootstrap reconcile from etcd ... * Add store tests with fixtures * Try connecting to local etcd first, if it is available * Handle panics from etcd backend code * Don't try to read WAL and restore v3 snapshots as they almost never exist Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2026-02-26 10:13:04 -08:00
Derek Nola	b33bb61a72	Fix rootless test to work with -local flag ... Signed-off-by: Derek Nola <derek.nola@suse.com>	2026-02-26 08:38:14 -08:00
Derek Nola	2f527ff16b	Revert "Move to rootlesskit v2 (#13486)" ... This reverts commit f1b166f74f. Signed-off-by: Derek Nola <derek.nola@suse.com>	2026-02-26 08:38:14 -08:00
Derek Nola	fc1059eabb	Bump rancher/systemd-node version for docker tests ... Signed-off-by: Derek Nola <derek.nola@suse.com>	2026-02-26 08:38:14 -08:00
Derek Nola	4dcd2723e3	Fix support for E2E commit installs ... Signed-off-by: Derek Nola <derek.nola@suse.com>	2026-02-26 08:38:14 -08:00
Michael Moll	39ccf3e075	Install binutils-gold only for arm64 builds ... Signed-off-by: Michael Moll <kvedulv@kvedulv.de>	2026-02-23 13:38:14 -08:00
Brad Davidson	ed7141a2ed	Bump kine to v0.14.12 ... Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2026-02-23 12:28:20 -08:00
Manuel Buil	702aba6f37	Make artifact URL prefix configurable ... Signed-off-by: Manuel Buil <mbuil@suse.com>	2026-02-23 15:18:32 +01:00
Rafael	e96330febe	Update stable to v1.34.4+k3s1 (#13642) ... Signed-off-by: Rafael Breno <rafael_breno@outlook.com>	2026-02-13 20:51:09 -03:00
Rafael	c5b1587989	Update to v1.35.1-k3s1 and Go 1.25.6 (#13638) ... Signed-off-by: Rafael Breno <rafael_breno@outlook.com>	2026-02-11 11:59:31 -03:00
Brad Davidson	499e1b564b	Fix removal of init node ... Removing the initial node from the cluster would previously cause etcd to panic on startup. Fixes to etcd reconcile have stopped that from happening, but now the node will successfully come up and start a new cluster - which is not right either. Require either manual removal of DB files to create a new cluster, or setting server address to join an existing cluster. Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2026-02-10 15:49:28 -08:00