Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

alpha to beta #8194

Merged
merged 41 commits into from
Sep 25, 2024
Merged

alpha to beta #8194

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
41 commits
Select commit Hold shift + click to select a range
d9424ee
clean up minor k8s 1.30 references
demonCoder95 Sep 23, 2024
b8cc1fa
skipper,fabric-gateway: enable image-updater-bot
AlexanderYastrebov Sep 23, 2024
08a19aa
put leftover dashboard rbac behind the toggle to clean it up from clu…
demonCoder95 Sep 23, 2024
b7fcd22
Merge pull request #8151 from zalando-incubator/enable-image-updater-bot
AlexanderYastrebov Sep 23, 2024
4000f5f
Merge pull request #8150 from zalando-incubator/minor-cleanup
demonCoder95 Sep 23, 2024
563462f
Merge dev to dev-to-alpha
k8s-on-aws-manager-app[bot] Sep 23, 2024
67d50e0
prometheus: Update to version v2.53.1-master-57
zalando-teapot-robot Sep 23, 2024
194b22f
skipper-canary-controller: Update to version main-21
zalando-teapot-robot Sep 23, 2024
901e09e
hostname-credentials-controller: Update to version main-14
zalando-teapot-robot Sep 23, 2024
c3e0e96
admission-controller: Update to version master-214
zalando-teapot-robot Sep 23, 2024
296e72a
canary-controller: fix cronjob validation
MustafaSaber Sep 23, 2024
a8d2d00
Merge pull request #8166 from zalando-incubator/fix-canary-cronjob
MustafaSaber Sep 23, 2024
9630002
Merge dev to dev-to-alpha
k8s-on-aws-manager-app[bot] Sep 23, 2024
8cc1359
Merge pull request #8160 from zalando-incubator/container-registry.za…
demonCoder95 Sep 23, 2024
7102e7d
Merge pull request #8152 from zalando-incubator/remove-dashboard
demonCoder95 Sep 23, 2024
14b5e0c
metrics-server: Update to version v0.7.2-master-18
zalando-teapot-robot Sep 23, 2024
e644863
nvidia-gpu-device-plugin: Update to version v0.16.2-master-14
zalando-teapot-robot Sep 23, 2024
fbcc050
admission-controller: Update to version master-216
zalando-teapot-robot Sep 23, 2024
d7edb5e
Merge pull request #8161 from zalando-incubator/container-registry.za…
MustafaSaber Sep 23, 2024
d9687f2
kube-aws-iam-controller: Update to version v0.3.0-35-gdd6d128
zalando-teapot-robot Sep 23, 2024
5606709
cluster-lifecycle-controller: Update to version master-43
zalando-teapot-robot Sep 23, 2024
0592fbf
emergency-access-service: Update to version master-95
zalando-teapot-robot Sep 23, 2024
af8402d
kube-node-ready-controller: Update to version master-29
zalando-teapot-robot Sep 23, 2024
ce8f1c0
canary-controller: inject rest of Otel vars
MustafaSaber Sep 23, 2024
3309f93
Merge pull request #8171 from zalando-incubator/fix-otel-envs
MustafaSaber Sep 24, 2024
b9e11a9
Merge pull request #8173 from zalando-incubator/container-registry.za…
mikkeloscar Sep 24, 2024
2b22698
Merge pull request #8174 from zalando-incubator/container-registry.za…
mikkeloscar Sep 24, 2024
3d9525d
Merge pull request #8176 from zalando-incubator/container-registry.za…
mikkeloscar Sep 24, 2024
a12f39d
Merge pull request #8178 from zalando-incubator/container-registry.za…
mikkeloscar Sep 24, 2024
f801c76
Update VPA components to v1.2.1
mikkeloscar Sep 24, 2024
9ff2635
Merge pull request #8162 from zalando-incubator/container-registry.za…
demonCoder95 Sep 24, 2024
93b8b1f
update: skipper OPA URL query policy, step 2/2
Sep 24, 2024
62253b3
Merge pull request #8177 from zalando-incubator/container-registry.za…
katyanna Sep 25, 2024
5bb0f83
Merge pull request #8180 from zalando-incubator/container-registry.za…
katyanna Sep 25, 2024
afe7c1f
Merge pull request #8182 from zalando-incubator/vpa-v1.2.1
katyanna Sep 25, 2024
078c2a2
Merge pull request #8163 from zalando-incubator/926694233939.dkr.ecr.…
demonCoder95 Sep 25, 2024
dab9811
Merge dev to dev-to-alpha
k8s-on-aws-manager-app[bot] Sep 25, 2024
54e250e
Merge pull request #8183 from zalando-incubator/skipper/update-main-f…
AlexanderYastrebov Sep 25, 2024
f68440c
Merge dev to dev-to-alpha
k8s-on-aws-manager-app[bot] Sep 25, 2024
188aca7
Merge pull request #8154 from zalando-incubator/dev-to-alpha
katyanna Sep 25, 2024
cec808a
Merge alpha to alpha-to-beta
k8s-on-aws-manager-app[bot] Sep 25, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
5 changes: 1 addition & 4 deletions cluster/config-defaults.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -724,9 +724,6 @@ tracing_coredns_local_zone_traces_endpoint: ""
# AMI id given the image name and the Image AWS account owner.
#
# [0]: https://github.com/zalando-incubator/cluster-lifecycle-manager/blob/8a9bd1cb2d094038a9e23e646421f8146b48886a/provisioner/template.go#L116
kuberuntu_image_v1_30_jammy_amd64: {{ amiID "zalando-ubuntu-jammy-22.04-kubernetes-production-v1.30.2-amd64-master-341" "861068367966" }}
kuberuntu_image_v1_30_jammy_arm64: {{ amiID "zalando-ubuntu-jammy-22.04-kubernetes-production-v1.30.2-arm64-master-341" "861068367966" }}

kuberuntu_image_v1_31_jammy_amd64: {{ amiID "zalando-ubuntu-jammy-22.04-kubernetes-production-v1.31.0-amd64-master-347" "861068367966" }}
kuberuntu_image_v1_31_jammy_arm64: {{ amiID "zalando-ubuntu-jammy-22.04-kubernetes-production-v1.31.0-arm64-master-347" "861068367966" }}

Expand Down Expand Up @@ -799,7 +796,7 @@ ebs_csi_controller_sidecar_cpu: "10m"
serialize_image_pulls: "false"

# rate of image pull in the kubelet, see
# see https://github.com/kubernetes/kubernetes/blob/v1.30.0/staging/src/k8s.io/kubelet/config/v1beta1/types.go#L200-L212
# see https://github.com/kubernetes/kubernetes/blob/v1.31.0/staging/src/k8s.io/kubelet/config/v1beta1/types.go#L200-L212
#
# registryPullQPS is the limit of registry pulls per second.
# The value must not be a negative number.
Expand Down
4 changes: 2 additions & 2 deletions cluster/manifests/01-vertical-pod-autoscaler/admission-controller-deployment.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -26,9 +26,9 @@ spec:
containers:
- name: admission-controller
{{if eq .Cluster.ConfigItems.vertical_pod_autoscaler_version "current"}}
image: container-registry.zalando.net/teapot/vpa-admission-controller:v1.1.2-main-5-custom
image: container-registry.zalando.net/teapot/vpa-admission-controller:v1.2.1-main-6-custom
{{else if eq .Cluster.ConfigItems.vertical_pod_autoscaler_version "legacy"}}
image: container-registry.zalando.net/teapot/vpa-admission-controller:v1.1.2-main-2-custom
image: container-registry.zalando.net/teapot/vpa-admission-controller:v1.1.2-main-5-custom
{{end}}
command:
- /admission-controller
Expand Down
4 changes: 2 additions & 2 deletions cluster/manifests/01-vertical-pod-autoscaler/recommender-deployment.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -24,9 +24,9 @@ spec:
containers:
- name: recommender
{{if eq .Cluster.ConfigItems.vertical_pod_autoscaler_version "current"}}
image: container-registry.zalando.net/teapot/vpa-recommender:v1.1.2-main-5-custom
image: container-registry.zalando.net/teapot/vpa-recommender:v1.2.1-main-6-custom
{{else if eq .Cluster.ConfigItems.vertical_pod_autoscaler_version "legacy"}}
image: container-registry.zalando.net/teapot/vpa-recommender:v1.1.2-main-2-custom
image: container-registry.zalando.net/teapot/vpa-recommender:v1.1.2-main-5-custom
{{end}}
args:
- --logtostderr
Expand Down
4 changes: 2 additions & 2 deletions cluster/manifests/01-vertical-pod-autoscaler/updater-deployment.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -24,9 +24,9 @@ spec:
containers:
- name: updater
{{if eq .Cluster.ConfigItems.vertical_pod_autoscaler_version "current"}}
image: container-registry.zalando.net/teapot/vpa-updater:v1.1.2-main-5-custom
image: container-registry.zalando.net/teapot/vpa-updater:v1.2.1-main-6-custom
{{else if eq .Cluster.ConfigItems.vertical_pod_autoscaler_version "legacy"}}
image: container-registry.zalando.net/teapot/vpa-updater:v1.1.2-main-2-custom
image: container-registry.zalando.net/teapot/vpa-updater:v1.1.2-main-5-custom
{{end}}
command:
- ./updater
Expand Down
2 changes: 1 addition & 1 deletion cluster/manifests/02-kube-aws-iam-controller/deployment.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -27,7 +27,7 @@ spec:
hostNetwork: true
containers:
- name: kube-aws-iam-controller
image: container-registry.zalando.net/teapot/kube-aws-iam-controller:v0.3.0-33-g6df0443
image: container-registry.zalando.net/teapot/kube-aws-iam-controller:v0.3.0-35-gdd6d128
env:
- name: AWS_DEFAULT_REGION
value: "{{.Cluster.Region}}"
Expand Down
2 changes: 1 addition & 1 deletion cluster/manifests/cluster-lifecycle-controller/deployment.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -35,7 +35,7 @@ spec:
operator: Exists
containers:
- name: cluster-lifecycle-controller
image: container-registry.zalando.net/teapot/cluster-lifecycle-controller:master-42
image: container-registry.zalando.net/teapot/cluster-lifecycle-controller:master-43
args:
- --drain-grace-period={{.Cluster.ConfigItems.drain_grace_period}}
- --drain-min-pod-lifetime={{.Cluster.ConfigItems.drain_min_pod_lifetime}}
Expand Down
28 changes: 2 additions & 26 deletions cluster/manifests/deletions.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -297,34 +297,10 @@ post_apply:
namespace: kube-system

{{ if ne .Cluster.ConfigItems.k8s_dashboard_enabled "true" }}
- name: kubernetes-dashboard
namespace: kube-system
kind: Deployment
- name: kubernetes-dashboard
namespace: kube-system
kind: Service
- name: dashboard-metrics-scraper
namespace: kube-system
kind: Service
- name: dashboard-metrics-scraper
namespace: kube-system
kind: Deployment
- name: kubernetes-dashboard
namespace: kube-system
- name: readonly-dashboard
kind: Role
- name: kubernetes-dashboard
namespace: kube-system
- name: readonly-dashboard
kind: RoleBinding
- name: kubernetes-dashboard
kind: ClusterRole
- name: kubernetes-dashboard-internal
kind: ClusterRoleBinding
- name: kubernetes-dashboard-readonly
kind: ClusterRoleBinding
- name: dashboard-metrics-scraper-vpa
namespace: kube-system
kind: VerticalPodAutoscaler
- name: kubernetes-dashboard
namespace: kube-system
kind: ServiceAccount
{{ end }}
2 changes: 1 addition & 1 deletion cluster/manifests/emergency-access-service/deployment.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -41,7 +41,7 @@ spec:
cpu: 25m
memory: 25Mi
- name: emergency-access-service
image: "container-registry.zalando.net/teapot/emergency-access-service:master-94"
image: "container-registry.zalando.net/teapot/emergency-access-service:master-95"
args:
- --insecure-http
- --community={{ .Cluster.Owner }}
Expand Down
5 changes: 3 additions & 2 deletions cluster/manifests/fabric-gateway/deployment.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,4 +1,5 @@
# {{ $version := "master-289" }}
# {{ $image := "container-registry.zalando.net/gwproxy/fabric-gateway:master-289" }}
# {{ $version := index (split $image ":") 1 }}
apiVersion: apps/v1
kind: Deployment
metadata:
Expand Down Expand Up @@ -38,7 +39,7 @@ spec:
serviceAccountName: fabric-gateway-controller
containers:
- name: controller
image: container-registry.zalando.net/gwproxy/fabric-gateway:{{ $version }}
image: "{{ $image }}"
args:
- -update-fabric-gateway-status=true
- -versioned-hosts-base-domain={{ .Values.hosted_zone }}
Expand Down
2 changes: 1 addition & 1 deletion cluster/manifests/kube-node-ready-controller/daemonset.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -36,7 +36,7 @@ spec:
effect: NoSchedule
containers:
- name: controller
image: container-registry.zalando.net/teapot/kube-node-ready-controller:master-28
image: container-registry.zalando.net/teapot/kube-node-ready-controller:master-29
resources:
requests:
cpu: {{.Cluster.ConfigItems.kube_node_ready_controller_cpu}}
Expand Down
2 changes: 1 addition & 1 deletion cluster/manifests/metrics-server/deployment.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -28,7 +28,7 @@ spec:
serviceAccountName: metrics-server
containers:
- name: metrics-server
image: container-registry.zalando.net/teapot/metrics-server:v0.7.0-master-16
image: container-registry.zalando.net/teapot/metrics-server:v0.7.2-master-18
args:
- --cert-dir=/tmp
- --secure-port=4443
Expand Down
2 changes: 1 addition & 1 deletion cluster/manifests/nvidia/nvidia-gpu-device-plugin.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -60,7 +60,7 @@ spec:
{{- end}}
containers:
- name: nvidia-gpu-device-plugin
image: container-registry.zalando.net/teapot/nvidia-gpu-device-plugin:v0.16.0-master-13
image: container-registry.zalando.net/teapot/nvidia-gpu-device-plugin:v0.16.2-master-14
args:
- --fail-on-init-error=false
- --pass-device-specs
Expand Down
2 changes: 1 addition & 1 deletion cluster/manifests/prometheus/statefulset.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -57,7 +57,7 @@ spec:
mountPath: /prometheus
containers:
- name: prometheus
image: container-registry.zalando.net/teapot/prometheus:v2.53.1-master-56
image: container-registry.zalando.net/teapot/prometheus:v2.53.1-master-57
args:
- "--config.file=/prometheus/prometheus.yaml"
- "--storage.tsdb.path=/prometheus/"
Expand Down
2 changes: 2 additions & 0 deletions cluster/manifests/roles/readonly-binding.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -19,6 +19,7 @@ subjects:
- kind: Group
name: "okta:common/read-only"
apiGroup: rbac.authorization.k8s.io
{{ if ne .Cluster.ConfigItems.k8s_dashboard_enabled "true" }}
---
kind: RoleBinding
apiVersion: rbac.authorization.k8s.io/v1
Expand All @@ -42,6 +43,7 @@ subjects:
- kind: Group
name: "okta:common/read-only"
apiGroup: rbac.authorization.k8s.io
{{ end }}
---
kind: RoleBinding
apiVersion: rbac.authorization.k8s.io/v1
Expand Down
2 changes: 2 additions & 0 deletions cluster/manifests/roles/readonly-dashboard.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,3 +1,4 @@
{{ if ne .Cluster.ConfigItems.k8s_dashboard_enabled "true" }}
apiVersion: rbac.authorization.k8s.io/v1
kind: Role
metadata:
Expand All @@ -8,3 +9,4 @@ rules:
resources: [ "services/proxy" ]
verbs: [ "get" ]
resourceNames: [ "kubernetes-dashboard" ]
{{ end }}
19 changes: 16 additions & 3 deletions cluster/manifests/skipper-canary-controller/canary-cronjob.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -12,6 +12,7 @@ spec:
schedule: "*/30 * * * *"
jobTemplate:
spec:
backoffLimit: 0
template:
metadata:
labels:
Expand All @@ -21,18 +22,30 @@ spec:
serviceAccountName: skipper-canary-controller
# Make sure the job run only once
restartPolicy: Never
concurrencyPolicy: Forbid
backoffLimit: 0
containers:
- name: skipper-canary-controller
terminationMessagePolicy: FallbackToLogsOnError
image: container-registry.zalando.net/gwproxy/skipper-canary-controller:main-20
image: container-registry.zalando.net/gwproxy/skipper-canary-controller:main-21
env:
- name: _PLATFORM_OBSERVABILITY_ACCESS_TOKEN
valueFrom:
secretKeyRef:
name: skipper-ingress
key: lightstep-token
- name: _PLATFORM_OBSERVABILITY_COLLECTOR_SCHEME
value: "{{ .Cluster.ConfigItems.observability_collector_scheme }}"
- name: _PLATFORM_OBSERVABILITY_COLLECTOR_PORT
value: "{{ .Cluster.ConfigItems.observability_collector_port }}"
- name: _PLATFORM_OBSERVABILITY_COLLECTOR_ENDPOINT
value: "{{ .Cluster.ConfigItems.observability_collector_endpoint }}"
- name: _PLATFORM_OBSERVABILITY_METRICS_ENDPOINT
value: "{{ .Cluster.ConfigItems.observability_metrics_endpoint }}"
- name: _PLATFORM_OBSERVABILITY_METRICS_PORT
value: "{{ .Cluster.ConfigItems.observability_metrics_port }}"
- name: _PLATFORM_ACCOUNT
value: "{{ .Cluster.Alias }}"
- name: _PLATFORM_OBSERVABILITY_COMMON_ATTRIBUTE_CLOUD__ACCOUNT__ID
value: "{{ .Cluster.Alias }}"
- name: LIGHTSTEP_DEBUG
value: "true"
args:
Expand Down
2 changes: 1 addition & 1 deletion cluster/manifests/skipper/deployment.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,4 +1,4 @@
{{ $internal_version := "v0.21.195-1014" }}
{{ $internal_version := "v0.21.198-1017" }}
{{ $canary_internal_version := "v0.21.198-1017" }}

{{/* Optional canary arguments separated by "[cf724afc]" to allow whitespaces, e.g. "-foo=has a whitespace[cf724afc]-baz=qux" */}}
Expand Down
5 changes: 3 additions & 2 deletions cluster/manifests/skipper/hostname-credentials-controller.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,5 +1,6 @@
# {{ if eq .Cluster.ConfigItems.skipper_oauth2_ui_login "true" }}
# {{ $version := "main-13" }}
# {{ $image := "container-registry.zalando.net/gwproxy/hostname-credentials-controller:main-14" }}
# {{ $version := index (split $image ":") 1 }}
apiVersion: v1
kind: ServiceAccount
metadata:
Expand Down Expand Up @@ -124,7 +125,7 @@ spec:
restartPolicy: Never
containers:
- name: controller
image: "container-registry.zalando.net/gwproxy/hostname-credentials-controller:{{ $version }}"
image: "{{ $image }}"
terminationMessagePolicy: FallbackToLogsOnError
args:
- -ingress-selector=application
Expand Down
2 changes: 1 addition & 1 deletion cluster/node-pools/master-default/userdata.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -206,7 +206,7 @@ write_files:
limits:
memory: {{ .Values.InstanceInfo.MemoryFraction (parseInt64 .Cluster.ConfigItems.apiserver_memory_limit_percent)}}
{{- end }}
- image: 926694233939.dkr.ecr.eu-central-1.amazonaws.com/production_namespace/teapot/admission-controller:master-211
- image: 926694233939.dkr.ecr.eu-central-1.amazonaws.com/production_namespace/teapot/admission-controller:master-216
name: admission-controller
lifecycle:
preStop:
Expand Down