494 commits

Author	SHA1	Message	Date
Michael Fritch	f1deb4ec75	Update to flannel v0.28.2 ... Signed-off-by: Michael Fritch <mfritch@suse.com>	2026-03-27 13:37:44 -06:00
Brad Davidson	367c38b49e	Bump helm-controller for job race fix ... Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2026-03-25 15:31:51 -07:00
Rafael	176c93176d	[main] Update to v1.35.3-k3s1 and Go 1.25.7 (#13836) ... * Update to v1.35.3 Signed-off-by: Rafael Breno <rafael_breno@outlook.com> * Update how VERSION_GOLANG is set Signed-off-by: Rafael Breno <rafael_breno@outlook.com> --------- Signed-off-by: Rafael Breno <rafael_breno@outlook.com>	2026-03-19 17:17:36 -03:00
Brad Davidson	268322414f	Bump containerd to v2.2.2 ... Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2026-03-11 18:07:30 -07:00
dependabot[bot]	36785d1993	build(deps): bump github.com/pion/dtls/v3 from 3.0.6 to 3.0.11 ... Bumps [github.com/pion/dtls/v3](https://github.com/pion/dtls) from 3.0.6 to 3.0.11. - [Release notes](https://github.com/pion/dtls/releases) - [Commits](https://github.com/pion/dtls/compare/v3.0.6...v3.0.11) --- updated-dependencies: - dependency-name: github.com/pion/dtls/v3 dependency-version: 3.0.11 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>	2026-03-10 11:53:20 -07:00
dependabot[bot]	74ad4d3f09	Bump github.com/docker/cli ... Bumps [github.com/docker/cli](https://github.com/docker/cli) from 28.3.2+incompatible to 29.2.0+incompatible. - [Commits](https://github.com/docker/cli/compare/v28.3.2...v29.2.0) --- updated-dependencies: - dependency-name: github.com/docker/cli dependency-version: 29.2.0+incompatible dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>	2026-03-10 11:48:52 -07:00
dependabot[bot]	f8c52914ed	Bump go.opentelemetry.io/otel/sdk from 1.39.0 to 1.40.0 ... Bumps [go.opentelemetry.io/otel/sdk](https://github.com/open-telemetry/opentelemetry-go) from 1.39.0 to 1.40.0. - [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases) - [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md) - [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.39.0...v1.40.0) --- updated-dependencies: - dependency-name: go.opentelemetry.io/otel/sdk dependency-version: 1.40.0 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>	2026-03-10 11:48:26 -07:00
Brad Davidson	3acf8db8f2	Update packages to remove dep on archived github.com/pkg/errors ... Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2026-03-09 16:09:01 -07:00
Ada	de59b6327c	Add nix-snapshotter support to the embedded containerd ... Add support for the "nix" snapshotter, which enables running container images built with nix2container. Nix images reference store paths directly, avoiding layer tarballs and enabling deduplication through the nix store. Changes: - Register nix-snapshotter as a builtin containerd plugin - Add NixSupported() validation (checks nix-store is in PATH) - Configure nix-snapshotter image service proxy in V2/V3 templates with containerd_address for CRI image operations - Add Transfer service unpack_config with differ=walking for multi-arch support - Use containerd state dir for socket path (rootless compatible) - Disable NRI in rootless mode to prevent bind failures Usage: k3s server --snapshotter nix Signed-off-by: Ada <ada@6bit.com> Co-Authored-By: Joshua Perry <josh@6bit.com> Signed-off-by: Ada <ada@6bit.com>	2026-03-06 12:36:57 -08:00
Rafael	abc7cc8560	Update to v1.35.2 (#13708) ... Signed-off-by: Rafael Breno <rafael_breno@outlook.com>	2026-02-27 13:57:33 -03:00
Brad Davidson	d300004f29	Improve resilience of datastore bootstrap reconcile from etcd ... * Add store tests with fixtures * Try connecting to local etcd first, if it is available * Handle panics from etcd backend code * Don't try to read WAL and restore v3 snapshots as they almost never exist Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2026-02-26 10:13:04 -08:00
Derek Nola	2f527ff16b	Revert "Move to rootlesskit v2 (#13486)" ... This reverts commit f1b166f74f. Signed-off-by: Derek Nola <derek.nola@suse.com>	2026-02-26 08:38:14 -08:00
Brad Davidson	ed7141a2ed	Bump kine to v0.14.12 ... Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2026-02-23 12:28:20 -08:00
Rafael	c5b1587989	Update to v1.35.1-k3s1 and Go 1.25.6 (#13638) ... Signed-off-by: Rafael Breno <rafael_breno@outlook.com>	2026-02-11 11:59:31 -03:00
Brad Davidson	9568459ee0	Bump kine for list/watch revision fixes ... Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2026-02-05 14:44:41 -08:00
Rafael	f061615cb4	Update to v1.35.0 (#13524) ... Signed-off-by: Rafael Breno <rafael_breno@outlook.com>	2026-01-27 22:27:57 -03:00
Brad Davidson	031145c2fa	Bump etcd to v3.6.7 ... Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2026-01-26 13:39:19 -08:00
Rahul Rai	8835242159	Fix CVE-2025-54410: Update docker/docker to v25.0.13 (#13473) ... Upgrade docker/docker dependency from v25.0.8 to v25.0.13 to address CVE-2025-54410 which affects Moby/Docker versions before 25.0.13. This vulnerability could allow containers across different bridge networks to access each other's ports when firewalld is reloaded, breaking network isolation. Signed-off-by: Rahul Rai <rahul.cncf@gmail.com>	2026-01-22 09:27:04 -08:00
Derek Nola	f1b166f74f	Move to rootlesskit v2 (#13486) ... Signed-off-by: Derek Nola <derek.nola@suse.com>	2026-01-21 10:14:10 -08:00
Brad Davidson	8c3587dfbc	Bump kine for NATS conformance fixes ... Includes the long-awaited fixes from * https://github.com/k3s-io/kine/pull/549 Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2026-01-09 13:23:28 -08:00
Brad Davidson	efeacc1ed8	Bump spegel to v0.6.0 ... Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2026-01-08 13:54:14 -08:00
Brad Davidson	e4f67846fe	Bump expr-lang/expr ... Fixes HIGH CVE-2025-68156. This is an indirect dep from github.com/nats-io/jsm.go but it appears they have not yet bumped it either Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2026-01-08 11:38:29 -08:00
Brad Davidson	926bbce8aa	Drop use of deprecated docker reexec package ... Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2026-01-08 11:33:17 -08:00
Brad Davidson	ade30b4568	Bump CNI plugins ... Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2026-01-08 11:33:17 -08:00
Brad Davidson	3943327933	Bump kubernetes v1.35.0 and golang v1.25.5 ... Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2025-12-18 07:22:48 -08:00
Brad Davidson	c0b1314d15	Bump kine to v0.14.9 ... Fixes spurious watch progress response with revision=0 Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2025-12-11 12:42:13 -08:00
Rafael	463678586d	[main] Update to v1.34.3-k3s1 and Go 1.24.11 (#13308) ... * Update to v1.34.3-k3s1 and Go 1.24.11 Signed-off-by: Rafael Breno <rafael_breno@outlook.com> * Switch to custom action Go setup Signed-off-by: Rafael Breno <rafael_breno@outlook.com> --------- Signed-off-by: Rafael Breno <rafael_breno@outlook.com>	2025-12-11 11:23:48 -03:00
Brad Davidson	b4b33afbde	Bump kube-router to v2.6.3-k3s1 ... New release is out, and the tag on our fork conflicted with upstream tag - our v2.6.2 should have been v2.6.2-k3s1 as it pointed at a different commit than the upstream tag Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2025-12-10 11:25:33 -08:00
Brad Davidson	764e98cbb4	Bump kine to v0.14.8 ... Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2025-12-09 16:25:18 -08:00
Brad Davidson	aaa7fa237b	Bump kine and etcd ... kine => v0.14.7 etcd => v3.6.6 Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2025-12-08 12:53:29 -08:00
Roberto Bonafiglia	e3cc61c43c	Update kube-router to v2.6.2 ... Signed-off-by: Roberto Bonafiglia <roberto.bonafiglia@suse.com>	2025-12-03 16:07:03 +01:00
Brad Davidson	3de08883f7	Bump opencontainers/selinux ... We do not use any vulnerable code from this project, but we should bump it anyway to pacify scanners Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2025-11-21 13:18:37 -08:00
Brad Davidson	ed57fb5e61	Fix windows build os (#13201) ... * Pass GOOS into Dockerfile.local build args Fixes issue with build-windows job not actually building for windows * Remove `go generate` from package-cli We no longer use codegen in this repo * Fix go:embed path separator on Windows * Bump hcsshim for containerd 2.1 compat on windows * Include failing lister in error message * Bump k3s-io/api and k3s-io/helm-controller for embedded CRD windows path fix Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2025-11-15 02:02:12 -08:00
Rafael	3cdb5f8cf5	Update to v1.34.2-k3s1 and Go 1.24.9 (#13204) ... Signed-off-by: Rafael Breno <rafael_breno@outlook.com>	2025-11-13 15:45:18 -03:00
Derek Nola	8215b940e3	Bump klipper-helm and helm-controller (#13187) ... Signed-off-by: Derek Nola <derek.nola@suse.com>	2025-11-11 12:49:23 -08:00
Brad Davidson	e438a3c1a0	Bump containerd to v2.1.5 ... Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2025-11-06 18:23:44 -08:00
Brad Davidson	a2663f8884	Bump remotedialer to fix deadlock on connection close ... Fixes an issue where remotedialer clients may run into a deadlock when closing connections. This prevents the client from reconnecting to the server, and as the Close function has deadlocked, any health-checks that rely on checking remotedialer connection state will continue to pass as it claims to still be connected. Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2025-11-06 10:31:48 -08:00
Brad Davidson	e1238095f0	Bump kine to 0.14.6 ... Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2025-10-29 15:49:40 -07:00
Brad Davidson	92a0b7eec2	Bump helm-controller/klipper-helm ... Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2025-10-22 18:53:01 -07:00
Brad Davidson	0e5bc29d34	Bump kine for idle progress fix ... Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2025-10-10 12:00:06 -07:00
Brad Davidson	701cc35b7a	Bump kine=v0.14.4, etcd=v3.6.5 ... Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2025-10-09 07:41:55 -07:00
Roberto Bonafiglia	09762a57df	Update flannel, kube-router and cni plugins ... Signed-off-by: Roberto Bonafiglia <roberto.bonafiglia@suse.com>	2025-10-08 09:31:31 +02:00
Brad Davidson	ef6d6f4c36	Bump kine for postgres object count fix ... Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2025-10-02 09:49:01 -07:00
Brad Davidson	59b4a9d738	Bump kine to v0.14.2 for schema fix ... Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2025-09-25 10:20:39 -07:00
Brad Davidson	8347597031	Bump spegel to v0.4.0 ... Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2025-09-24 09:55:04 -07:00
Brad Davidson	4974fc7c24	Use sync.WaitGroup to avoid exiting before components have shut down ... Currently only waits on etcd and kine, as other components are stateless and do not need to shut down cleanly. Terminal but non-fatal errors now request shutdown via context cancellation, instead of just logging a fatal error. Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2025-09-17 09:37:08 -07:00
github-actions[bot]	2f6283a92c	chore: Bump Klipper Helm and Helm Controller version ... Made with ❤️️ by updatecli	2025-09-15 13:17:32 -07:00
Brad Davidson	bdb92296a5	Bump dynamiclistener for secret sync fix ... Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2025-09-11 13:27:56 -07:00
Rafael	67c23a20e3	Update to v1.34.1 (#12897) ... Signed-off-by: Rafael Breno <rafael_breno@outlook.com>	2025-09-10 22:35:56 -03:00
Brad Davidson	f3a036a9b1	Bump kine for compact_rev_key watch fix ... Fix apiserver-managed compact, and enable it Signed-off-by: Brad Davidson <brad.davidson@rancher.com>	2025-09-05 00:04:41 +00:00