Skip to content

[release-1.34] Backports for 2025-12 #13251

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 12 commits into
base: release-1.34
Choose a base branch
from
Open

[release-1.34] Backports for 2025-12 #13251

wants to merge 12 commits into from

Conversation

@brandond
Copy link
Member

@brandond brandond commented Nov 21, 2025
edited
Loading

dereknola and others added 10 commits November 21, 2025 17:50
@dereknola @brandond
Add docker dualstack test (k3s-io#13070)
edf804c 
Signed-off-by: Derek Nola <[email protected]>
(cherry picked from commit cfcc9ef)
Signed-off-by: Brad Davidson <[email protected]>
@brandond
Fix windows build os (k3s-io#13201)
8265c4b 
* Pass GOOS into Dockerfile.local build args
  Fixes issue with build-windows job not actually building for windows
* Remove `go generate` from package-cli
  We no longer use codegen in this repo
* Fix go:embed path separator on Windows
* Bump hcsshim for containerd 2.1 compat on windows
* Include failing lister in error message
* Bump k3s-io/api and k3s-io/helm-controller for embedded CRD windows path fix

Signed-off-by: Brad Davidson <[email protected]>
(cherry picked from commit ed57fb5)
Signed-off-by: Brad Davidson <[email protected]>
@jvassev @brandond
tunnel: handle pod IP reuse (k3s-io#13212)
47514ea 
* tunnel: handle pod IP reuse

a valid tunnel/session may be deleted when an IP is reused while a
Complete pod (for example a job) was using that IP but is being gc'ed.

This causes timeouts to webhooks after directDial is attempted because
session was removed.

Solution is to track the owner of the IP and delete the entry only when
the the owner pod is deleted.

Signed-off-by: Julian Vassev <[email protected]>
(cherry picked from commit 9130056)
Signed-off-by: Brad Davidson <[email protected]>
@brandond
Stop waiting on CRI ready if context is cancelled
e784134 
Signed-off-by: Brad Davidson <[email protected]>
(cherry picked from commit f0d5452)
Signed-off-by: Brad Davidson <[email protected]>
@brandond
Fix spegel ready checks to give server more time to find a peer
7ea606b 
Signed-off-by: Brad Davidson <[email protected]>
(cherry picked from commit 9806524)
Signed-off-by: Brad Davidson <[email protected]>
@brandond
Add digests and source labels for imported images
c7f279a 
Signed-off-by: Brad Davidson <[email protected]>
(cherry picked from commit 1037dcb)
Signed-off-by: Brad Davidson <[email protected]>
@brandond
Add test for sharing imported images by digest
22448d3 
Signed-off-by: Brad Davidson <[email protected]>
(cherry picked from commit af441c2)
Signed-off-by: Brad Davidson <[email protected]>
@brandond
Fix airgap-extra-registry flag
0cc060a 
It is hidden and undocumented, but also apparently broken.

Signed-off-by: Brad Davidson <[email protected]>
(cherry picked from commit f783052)
Signed-off-by: Brad Davidson <[email protected]>
@brandond
Use docker containerd snapshotter for stable image digests
76c2420 
The legacy Docker snapshotter flattens application/vnd.docker.distribution.manifest.v2+json manifests to application/vnd.oci.image.manifest.v1+json when saving. Switching to the containerd snapshotter allows us to keep the original manifest digest when pulling and saving image tarballs.

Signed-off-by: Brad Davidson <[email protected]>
(cherry picked from commit 74088f5)
Signed-off-by: Brad Davidson <[email protected]>
@brandond
Clean tools from runners before tests
d598246 
Remove optional tools from runners to make space available for docker/vagrant

Signed-off-by: Brad Davidson <[email protected]>
(cherry picked from commit f726966)
Signed-off-by: Brad Davidson <[email protected]>
@brandond brandond requested a review from a team as a code owner November 21, 2025 18:53
@codecov
Copy link

codecov bot commented Nov 21, 2025
edited
Loading

Codecov Report

❌ Patch coverage is 0% with 122 lines in your changes missing coverage. Please review.
✅ Project coverage is 21.78%. Comparing base (8dac81b) to head (d7cf5cf).

Files with missing lines Patch % Lines
pkg/agent/containerd/containerd.go 0.00% 75 Missing ⚠️
pkg/etcd/etcd.go 0.00% 12 Missing ⚠️
pkg/spegel/bootstrap.go 0.00% 12 Missing ⚠️
pkg/spegel/spegel.go 0.00% 11 Missing ⚠️
pkg/daemons/control/tunnel.go 0.00% 9 Missing ⚠️
pkg/deploy/stage.go 0.00% 1 Missing ⚠️
pkg/server/context.go 0.00% 1 Missing ⚠️
pkg/util/bindata/embed.go 0.00% 1 Missing ⚠️
Additional details and impacted files 
@@               Coverage Diff                @@
##           release-1.34   #13251      +/-   ##
================================================
- Coverage         21.92%   21.78%   -0.14%     
================================================
  Files               186      186              
  Lines             15171    15259      +88     
================================================
- Hits               3326     3324       -2     
- Misses            11406    11496      +90     
  Partials            439      439
Flag Coverage Δ
unittests 21.78% <0.00%> (-0.14%) ⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

@brandond
Bump opencontainers/selinux
dbdff56 
We do not use any vulnerable code from this project, but we should bump it anyway to pacify scanners

Signed-off-by: Brad Davidson <[email protected]>
(cherry picked from commit 3de0888)
Signed-off-by: Brad Davidson <[email protected]>
@brandond
Remove remaining references to drone
d7cf5cf 
Signed-off-by: Brad Davidson <[email protected]>
(cherry picked from commit 96ed439)
Signed-off-by: Brad Davidson <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@cwayne18 cwayne18 cwayne18 approved these changes

@vitorsavian vitorsavian vitorsavian approved these changes

+1 more reviewer

@farazkhawaja farazkhawaja farazkhawaja approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

6 participants

@brandond @cwayne18 @farazkhawaja @vitorsavian @dereknola @jvassev