mirror of
git://git.yoctoproject.org/meta-virtualization.git
synced 2025-07-19 20:59:41 +02:00
4fbc98c93c
Bumping k3s to version v1.30.2+k3s2-2-g16321f2554, which comprises the following commits:
faeaf1b01b Update flannel to v0.25.4 and fixed issue with IPv6 mask
a08ac6fcdc update stable channel to v1.29.6+k3s1 (#10417)
aa4794b372 Replace 1-weight semaphore on snapshots with simple mutex
b4d4ed8f01 Fix agent supervisor port using apiserver port instead
9af17d2997 Update Kubernetes to v1.30.2 (#10349)
f10cb29534 fix typo, use rancher/permissions
c0450a2cb4 Fix race condition panic in loadbalancer.nextServer
cff6f7aa1d Expand GHA go caching to includ newest release branch (#10307)
d9b8ba8d71 Add snapshot retention etcd-s3-folder fix
043b1eac5d Add test for `isValidResolvConf` (#10302)
df5db28a68 Add ADR for support for etcd s3 config secret (#9364)
1661f1024a Fix bug that caused agents to bypass local loadbalancer
79ba10f5ec fix: Use actual warningPeriod in certmonitor
1268779ea0 Bump Local Path Provisioner version (#10268)
f9130d537d Fix embedded mirror blocked by SAR RBAC and re-enable test
7a0ea3c953 Add write-kubeconfig-group flag to server (#9233)
307f07bd61 Fix issue caused by sole server marked as failed under load
ed23a2bb48 Fix netpol crash when node remains tained unintialized
f2e7c01acf chore: Bump Trivy version
4cb4542c3a Bump ubuntu from 22.04 to 24.04 in /tests/e2e/scripts
84b578ec74 Use busybox tar to avoid issues with fchmodat2 on arm
86875c97bb Bump alpine from 3.18 to 3.20 in /package
de4cda57e6 Bump alpine from 3.18 to 3.20 in /conformance
2eca3f1e2c Update golangci-lint to stop using deprecated skip files/dirs
f8e0648304 Convert remaining http handlers over to use util.SendError
ff679fb3ab Refactor supervisor listener startup and add metrics
3d14092f76 Fix issue with k3s-etcd informers not starting
eb192197eb Updating the script binary_size_check to complete the command name by adding .exe extension to the k3s binary name to make it available to run stat command
6683fcdb65 Bump klipper-helm image for tls secret support
c2738231ec update channel server for may 2024 (#10137)
3f62ec3207 Add extra log in e2e tests
99f543a2d4 fix: use absolute path
86b2554772 test: copy vpn-auth-file to guest
b8f101fd89 test: increment agentCount
ab29054887 test: use absolute path to auth file
a8f88aa9e5 test: add agent with auth file
6dcd52eb8e Use TrafficManager interface when calling flannel
af7bcc3900 Bump flannel version to v0.25.2
aadec85501 Fix go.mod
6fcaad553d allow helm controller set owner reference
6886c0977f Follow directory symlinks in auto deploying manifests (#9288)
3e48386c6e git_workflow filename correction
c1cb5d63b9 add missing kernel config check
f24ba9d3a9 Validate resolv.conf for presence of nameserver entries
2669d67a9b Bump kine to v0.11.9 to fix pagination
afdcc83afe bump minio-go to v7.0.70
423675b955 Create ADR for branching strategy (#10147)
aa36341f66 Update kube-router version to v2.1.2
5a0162d8ee Drop check for legacy traefik v1 chart
37f97b33c9 Add support for svclb pod PriorityClassName
b453630478 Update local-path-provisioner helper script
095ecdb034 Fix issue with local traffic policy for single-stack services on dual-stack nodes.
e8950a0a3b Fix issue installing artifacts from builds with multiple runs
5cf4d75749 Bump spegel version
bf8b15e7ae bump etcd to v3.5.13
aaa578785c Bump containerd to v1.7.17
30999f9a07 Switch stargz over to cri registry config_path
7374010c0c Use fixed stream server bind address for cri-dockerd
5f6b813cc8 Add WithSkipMissing to not fail import on missing blobs
811de8b819 Fix bug when using tailscale config by file
80978b5b9a Update to v1.30.1 (#10105)
1d22b6971f windows changes
1cd7986b50 Update channels with 1.30 (#10097)
dba30ab21c Replace deprecated ruby function
14549535f1 Fix e2e tests (#10061)
6531fb79b0 Deprecate pod-infra-container-image kubelet flag (#7409)
144f5ad333 Kubernetes V1.30.0-k3s1 (#10063)
fe7d114c6a Bump E2E opensuse leap to 15.6, fix btrfs test (#10057)
0981f0069d Add E2E Split Server to Drone, support parrallel testing in Drone (#9940)
5c94ce2cf8 update stable channel to v1.29.4+k3s1 (#10031)
94e29e2ef5 Make /db/info available anonymously from localhost
d3b60543e7 Fix 10 second etcd-snapshot request timeout
5b431ca531 Fix on-demand snapshots not honoring folder
d973fadbed Update to v1.29.4 (#9960)
06b6444904 Add startup testlet on preloaded images (#9941)
4e26ee1f84 Match setup-go caching key in GitHub Actions (#9890)
81cd630f87 Update kube-router to v2.1.0
c59820a52a Allow LPP to read helper logs (#9834)
3f906bee79 Update packaged manifests
b10cd8fe28 Bump latest to v1.29.3+k3s1
4cc73b1fee Actually fix agent certificate rotation
08f1022663 Don't log 'apiserver disabled' error sent by etcd-only nodes
7d9abc9f07 Improve etcd load-balancer startup behavior
fe465cc832 Move etcd snapshot management CLI to request/response
0792461885 Bump containerd and cri-dockerd
a064ae2f17 Add quotes to avoid useless updatecli updates
60248c42de Add supervisor cert/key to rotate list
9846a72e92 Bump spegel to v0.0.20-k3s1 (#9863)
0e118fe6d3 fix: agent volume in example docker compose (#9838)
f2961fb5d2 Add workaround for containerd hosts.toml bug
49414a8def chore: Bump Trivy version (#9840)
52712859c5 Add updatecli policy to update k3s-root
7f659759dd Add certificate expiry check and warnings
6624273a97 Fix embeddedmirror test
93bcaccad1 E2E setup: Only install jq when we need it
c98ca14198 Add wasm test to e2e matrix
6a42c6fcfe Remove old pinned dependencies (#9806)
14f54d0b26 Transition from deprecated pointer library to ptr (#9801)
5d69d6e782 Add tls for kine
c51d7bfbd1 Add health-check support to loadbalancer
edb0440017 Fix etcd snapshot reconcile for agentless nodes
7474a6fa43 Add /etc/passwd and /etc/group to k3s docker image
6c52235848 update channel server (#9808)
c47c85e5da Move to ubuntu 23.10 for E2E tests (#9755)
b5d0d4ee21 Bump Trivy version (#9780)
41377540fd Use ubuntu latest for better golang caching keys (#9711)
5461c3e1c1 Bump k3s-root
3f649e3bcb Add a new error when kine is with disable apiserver or disable etcd
f099bfa508 Fix error when image has already been pulled
65cd606832 Respect cloud-provider fields set by kubelet
d7cdbb7d4d Send error response if member list cannot be retrieved
7a2a2d075c Move error response generation code into util
8aecc26b0f Update to v1.29.3-k3s1 and Go 1.21.8 (#9747)
bba3e3c66b Fix wildcard entry upstream fallback
364dfd8b89 Fix flaky check in btrfs test
21c170512c Fix e2e vagrant cacheing
aea81c0822 Run docker tests in E2E GH Action
ec5d34dac0 remove repetitive words (#9671)
fe2ca9ecf1 Warn and suppress duplicate registry mirror endpoints
9bd4c8a9fc Bump upload and download actions to v4 (#9666)
2a091a693a Bump metrics-server to v0.7.0
1c8be1d011 Improve E2E Aftersuite cleanup
af4c51bfc3 Move to ubuntu 2204 for all E2E tests
da7312d082 Convert snapshotter test in e2e test
d022a506d5 Migrate E2E tests to GitHub Actions
75ccaf9942 Allow non-sudo vagrant
6f331ea7b5 Include flannel version in flannel cni plugin version
d37d7a40da Bump Trivy version (#9528)
88c431aea5 Adjust first node-ip based on configured clusterCIDR
1fe0371e95 Improve tailscale e2e test
82cfacb2f3 Update contrib/util/check-config.sh
ce0765c9f8 Rename `RAW_OUTPUT` -> `NO_COLOR`
ff7cfa2235 Disable color outputs using RAW_OUTPUT env var
59c724f7a6 Fix wildcard with embbeded registry test
f82d438f39 e2e tests: cover WebAssembly integration
64e4f0e6e7 fix: use correct wasm shims names
2c4773a5aa chore(deps): Remediating CVEs found by trivy; CVE-2023-45142 on otelrestful and CVE-2023-48795 on golang.org/x/crypto (#9513)
091a5c8965 Don't register embedded registry address as an upstream registry
b5a4846e9d Remove filtering of wildcard mirror entry
84a071a81e Add env var to allow spegel mirroring of `latest` tag
26feb25c40 Bump spegel to v0.0.18-k3s4
88d30f940d Use and version flannel/cni-plugin properly
0b3593205a Move snapshot-retention to EtcdSnapshotFlags in order to support loading from config
3576ed4327 Clean up snapshotDir create/exists logic
b164d7a270 Fix additional corner cases in registries handling
29c73e6965 Fix setup-go typos (#9634)
935ad1dbac Move docker tests into tests folder (#9555)
138a107f4c Reenable Install and Snapshotter Testing (#9601)
81a60de256 update stable channel to v1.28.7+k3s1 (#9615)
109e3e454c Bump helm-controller/klipper-helm versions
82432a2df7 Fix issue with etcd node name missing hostname
513c3416e7 Tweak netpol node wait logs
be569f65a9 Fix NodeHosts on dual-stack clusters
8c83b5e0f3 Rootless mode also bind service nodePort to host for LoadBalancer type
3e948aa0d5 Correct formatting of GH PR sha256sum artifact (#9472)
8f777d04f8 Better GitHub CI caching strategy for golang (#9495)
736fb2bc8d Add an integration test for flannel-backend=none
3b4f13f28d Update klipper-lb image version
fa37d03395 Update install test OS matrix (#9480)
922c5a6bed Unit Testing Matrix and Actions bump (#9479)
57e11c72d1 Testing ADR (#9562)
86f102134e Fix netpol startup when flannel is disabled
fae0d99863 Use 3/2/1 cluster for split role test
f90fd7b744 Change default number of etcd nodes in E2E splitserver test
fae41a8b2a Rename AgentReady to ContainerRuntimeReady for better clarity
91cc2feed2 Restore original order of agent startup functions
1c1746114c remove e2e logs drone step (#9517)
085ccbb0ac Fix drone publish for arm (#9503)
3e13e3619c Update Kubernetes to v1.29.2 (#9493)
de825845b2 Bump kine and set NotifyInterval to what the apiserver expects
0ac4c6a056 Expose rootless containerd socket directories for external access
14c6c63b30 Expose rootless state dir under ~/.rancher/k3s/rootless
e3b237fc35 Don't verify the node password if the local host is not running an agent
701e7e45ce Fix iptables check when sbin isn't in user PATH
fa11850563 Readd `k3s secrets-encrypt rotate-keys` with correct support for KMSv2 GA (#9340)
cfc3a124ee [Testing]: Test_UnitApplyContainerdQoSClassConfigFileIfPresent (Created) (#8945)
cc04edf05f Update Kube-router to v2.0.1
a36cc736bc allow executors to define containerd and docker behavior
b1323935dc Add codcov secret for integration tests on Push (#9422)
753c00f30c Consistently handle component exit on shutdown
9e076db724 Bump cri-dockerd
e9cec46a23 Runtimes refactor using exec.LookPath
f9ee66f4d8 Changed how lastHeartBeatTime works in the etcd condition
358c4d6aa9 build: Align drone base images (#8959)
950473e35f Bump flannel version
8224a3a7f6 Fix ipv6 endpoint address selection for on-demand snapshots
888f866dae Fix issue with coredns node hosts controller
77ba9904d1 Bump CNI plugins to v1.4.0
6ec1926f88 Add check for etcd-snapshot-dir and fix panic in Walk
82e3c32c9f Retry startup snapshot reconcile
4005600d4e Fix excessive retry on snapshot reconcile
6a57db553f update channel (#9388)
5c92345423 Bump codecov/codecov-action from 3 to 4 (#9353)
a324146b76 Bump Trivy version (#9237)
fcd1108e73 Add ability to install K3s PR Artifact from GitHub (#9185)
f249fcc2f1 Bump Local Path Provisioner version (#8953)
57482a1c1b Bump helm-controller to fix issue with ChartContent
c635818956 Bump runc and helm-controller versions
97a22632b9 gofmt config_test.go
29848dea3d Fix issues with certs.d template generation
2d98c44fb3 Delete old stalebot
cef7e9e2dc New stale action
d8907ce62c Update to v1.29.1 (#9259)
9a70021a9e Error getting node in setEtcdStatusCondition
c87e6e5f7e Move proxy dialer out of init() and fix crash
5303aa60e9 Fix nonexistent dependency repositories (#9213)
76fa022045 Enable network policy controller metrics
c5a299d0ed Bump quic-go for CVE-2023-49295
6072476432 Add e2e test for embedded registry mirror
37e9b87f62 Add embedded registry implementation
ef90da5c6e Add server CLI flag and config fields for embedded registry
b8f3967ad1 Add ADR for embedded registry
77846d63c1 Propagate errors up from config.Get
16d29398ad Move registries.yaml load into agent config
5c99bdd9bd Pin images instead of locking layers with lease
df5e983fc8 add e2e startup test for rootless k3s (#8383)
64dbbba996 update s3 e2e test (#9025)
4a92ced8ee Handle etcd status condition when cluster reset and disable etcd
8d2c40cdac Use `ipFamilyPolicy: RequireDualStack` for dual-stack kube-dns (#8984)
ac8fe8de2b fix: update trivy from 0.46.1 to 0.48.1 (#8812)
6330e26bb3 Wait for taint to be gone in the node before starting the netpol controller
102ff76328 Print error when downloading file error inside install script (#6874)
eae221f9e5 Fix OS PRETTY_NAME on tagged releases
b297996b92 Add runtime checking of golang version
5fe074b540 Add more paths to crun runtime detection (#9086)
c45524e662 Add support for containerd cri registry config_path
319dca3e82 Fix nil map in full snapshot configmap reconcile
db7091b3f6 Handle logging flags when parsing kube-proxy args
1e663622d2 Fix the OTHER log message that prints the wrong variable
08ccea5cb6 Fix install script checksum
9d21b8a135 add system-agent-installer-k3s step to ga release (#9153)
a7fe1aaaa5 Dockerfile.dapper: set $HOME properly
30449e0128 Add 2>dev/null when checking nm-cloud systemd unit
0ad5d65a1e Added support for env *_PROXY variables for agent loadbalancer (#9118)
a27d660a24 Add ServiceLB support for PodHostIPs FeatureGate
baaab250a7 Silence SELinux warning on INSTALL_K3S_SKIP_SELINUX_RPM (#8703)
aca1c2fd11 Add a retry around updating a secrets-encrypt node annotations (#9039)
bbd68f3a50 Rebase & Squash (#9070)
c7a8eef977 update stable channel to v1.28.5+k3s1 and add v1.29 channel (#9110)
d87851d46e chore: Update Code of Conduct to Redirect to CNCF CoC (#9104)
9d9fbf4ff4 Bump actions/setup-go from 4 to 5 (#9036)
798eecf112 chore: Update sonobuoy image versions (#8910)
3190a5faa2 Remove rotate-keys subcommand (#9079)
9411196406 Update flannel to v0.24.0 and remove multiclustercidr flag (#9075)
7101af36bb Update Kubernetes to v1.29.0+k3s1 (#9052)
bf3f29f9e8 Only publish to code_cov on merged E2E builds (#9051)
231cb6ed20 Remove GA feature-gates (#8970)
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
|
||
|---|---|---|
| classes | ||
| conf | ||
| docs | ||
| dynamic-layers | ||
| files | ||
| lib/oeqa/runtime/cases | ||
| recipes-containers | ||
| recipes-core | ||
| recipes-demo | ||
| recipes-devtools | ||
| recipes-extended | ||
| recipes-graphics/xorg-xserver | ||
| recipes-kernel | ||
| recipes-networking | ||
| scripts | ||
| wic | ||
| .gitignore | ||
| COPYING.MIT | ||
| MAINTAINERS | ||
| meta-virt-roadmap.txt | ||
| README.md | ||
| SECURITY.md | ||
meta-virtualization
This layer provides support for building Xen, KVM, Libvirt, and associated packages necessary for constructing OE-based virtualized solutions.
The bbappend files for some recipes (e.g. linux-yocto) in this layer need to have 'virtualization' in DISTRO_FEATURES to have effect. To enable them, add in configuration file the following line.
DISTRO_FEATURES:append = " virtualization"
If meta-virtualization is included, but virtualization is not enabled as a distro feature a warning is printed at parse time:
You have included the meta-virtualization layer, but
'virtualization' has not been enabled in your DISTRO_FEATURES. Some bbappend files
may not take effect. See the meta-virtualization README for details on enabling
virtualization support.
If you know what you are doing, this warning can be disabled by setting the following variable in your configuration:
SKIP_META_VIRT_SANITY_CHECK = 1
Depending on your use case, there are other distro features in meta-virtualization that may also be enabled:
- xen: enables xen functionality in various packages (kernel, libvirt, etc)
- kvm: enables KVM configurations in the kernel and autoloads modules
- k8s: enables kubernets configurations in the kernel, tools and configuration
- aufs: enables aufs support in docker and linux-yocto
- x11: enable xen and libvirt functionality related to x11
- selinux: enables functionality in libvirt and lxc
- systemd: enable systemd services and unit files (for recipes for support)
- sysvinit: enable sysvinit scripts (for recipes with support)
- seccomp: enable seccomp support for packages that have the capability.
Dependencies
This layer depends on:
URI: git://github.com/openembedded/openembedded-core.git branch: master revision: HEAD prio: default
URI: git://github.com/openembedded/meta-openembedded.git branch: master revision: HEAD layers: meta-oe meta-networking meta-filesystems meta-python
Required for Xen XSM policy: URI: git://git.yoctoproject.org/meta-selinux branch: master revision: HEAD prio: default
Required for Ceph: URI: git://git.yoctoproject.org/meta-cloud-services branch: master revision: HEAD prio: default
Required for cri-o: URI: git://git.yoctoproject.org/meta-selinux branch: master revision: HEAD prio: default
Community / Colaboration
Repository: https://git.yoctoproject.org/cgit/cgit.cgi/meta-virtualization/ Mailing list: https://lists.yoctoproject.org/g/meta-virtualization IRC: libera.chat #meta-virt channel
Maintenance
Send pull requests, patches, comments or questions to meta-virtualization@lists.yoctoproject.org
Maintainer: Bruce Ashfield bruce.ashfield@gmail.com see MAINTAINERS for more specific information
When sending single patches, please using something like: $ git send-email -1 -M --to meta-virtualization@lists.yoctoproject.org --subject-prefix='meta-virtualization][PATCH'
License
All metadata is MIT licensed unless otherwise stated. Source code included in tree for individual recipes is under the LICENSE stated in each recipe (.bb file) unless otherwise stated.