dghubble-renovate[bot]
10dd385c38
Bump registry.k8s.io/coredns/coredns image from v1.11.4 to v1.12.0
2024-11-29 08:54:38 -08:00
dghubble-renovate[bot]
cec2a097d4
Bump quay.io/cilium/cilium image from v1.16.3 to v1.16.4
2024-11-24 08:36:50 -08:00
dghubble-renovate[bot]
afbb55b79e
Bump quay.io/cilium/operator-generic image from v1.16.3 to v1.16.4
2024-11-24 08:36:46 -08:00
dghubble-renovate[bot]
a908d30821
Bump registry.k8s.io/coredns/coredns image from v1.11.3 to v1.11.4
2024-11-14 13:31:17 -08:00
Raimo Radczewski
2b99ccaa39
nginx/bare-metal: fix selector
2024-11-11 10:00:35 -08:00
Raimo Radczewski
93c6c2fed3
nginx: Add endpointslices.discovery.k8s.io to all rbac documents
2024-11-11 10:00:35 -08:00
dghubble-renovate[bot]
ef740832c9
Bump docker.io/flannel/flannel image from v0.26.0 to v0.26.1
2024-11-11 09:41:02 -08:00
dghubble-renovate[bot]
c3cb5a3f1b
Bump quay.io/cilium/cilium image from v1.16.2 to v1.16.3
2024-10-26 08:20:58 -07:00
dghubble-renovate[bot]
81265483c6
Bump quay.io/cilium/operator-generic image from v1.16.2 to v1.16.3
2024-10-26 08:19:17 -07:00
dghubble-renovate[bot]
a4e0ade8d9
Bump docker.io/flannel/flannel image from v0.25.7 to v0.26.0
2024-10-26 08:18:52 -07:00
dghubble-renovate[bot]
edd9328554
Bump quay.io/cilium/cilium image from v1.16.1 to v1.16.2
2024-10-08 21:07:18 -07:00
dghubble-renovate[bot]
8656a2d75b
Bump quay.io/cilium/operator-generic image from v1.16.1 to v1.16.2
2024-10-08 21:07:13 -07:00
dghubble-renovate[bot]
16c26f4384
Bump docker.io/flannel/flannel image from v0.25.6 to v0.25.7
2024-10-08 21:07:05 -07:00
dghubble-renovate[bot]
c72e99834c
Bump docker.io/flannel/flannel image from v0.25.5 to v0.25.6
2024-08-28 19:45:28 -07:00
Dalton Hubble
3412060c3c
Use Cilium kube-proxy replacement when Cilium CNI is used
...
* When using the Cilium component, disable bootstrapping the
kube-proxy DaemonSet. Instead, configure Cilium to provide its
kube-proxy replacement with BPF
* Update the self-managed Cilium component to use kube-proxy
replacement as well
2024-08-23 12:33:32 -07:00
dghubble-renovate[bot]
1cb49e1267
Bump quay.io/cilium/cilium image from v1.16.0 to v1.16.1
2024-08-16 08:31:11 -07:00
dghubble-renovate[bot]
d79f94f4f5
Bump quay.io/cilium/operator-generic image from v1.16.0 to v1.16.1
2024-08-16 08:31:01 -07:00
dghubble-renovate[bot]
39b5079bc3
Bump registry.k8s.io/coredns/coredns image from v1.11.1 to v1.11.3
2024-07-31 13:28:30 -07:00
dghubble-renovate[bot]
858d665d9b
Bump quay.io/cilium/cilium image from v1.15.7 to v1.16.0
2024-07-28 11:59:07 -07:00
dghubble-renovate[bot]
8cea37cdd9
Bump quay.io/cilium/operator-generic image from v1.15.7 to v1.16.0
2024-07-28 11:58:58 -07:00
dghubble-renovate[bot]
6a61afcd3b
Bump docker.io/flannel/flannel image from v0.25.4 to v0.25.5
2024-07-20 10:36:12 -07:00
dghubble-renovate[bot]
ca1f897b35
Bump quay.io/cilium/cilium image from v1.15.6 to v1.15.7
2024-07-14 13:42:35 -07:00
dghubble-renovate[bot]
d4514db00c
Bump quay.io/cilium/operator-generic image from v1.15.6 to v1.15.7
2024-07-14 13:42:26 -07:00
dghubble-renovate[bot]
5090e60fe0
Bump quay.io/cilium/operator-generic image from v1.15.5 to v1.15.6
2024-06-15 08:01:29 -07:00
dghubble-renovate[bot]
158a681a8b
Bump quay.io/cilium/cilium image from v1.15.5 to v1.15.6
2024-06-15 08:00:23 -07:00
dghubble-renovate[bot]
8fd2c95cec
Bump docker.io/flannel/flannel image from v0.25.3 to v0.25.4
2024-06-15 07:55:44 -07:00
dghubble-renovate[bot]
d6e4f49cd9
Bump docker.io/flannel/flannel image from v0.25.2 to v0.25.3
2024-05-31 17:13:30 -07:00
dghubble-renovate[bot]
e942ae9f4a
Bump docker.io/flannel/flannel image from v0.25.1 to v0.25.2
2024-05-26 12:45:03 -07:00
Dalton Hubble
7b8a51070f
Add Terraform modules for CoreDNS, Cilium, and flannel
...
* With the new component system, these components can be managed
independent from the cluster and rolled or edited in advanced
ways
2024-05-19 17:00:10 -07:00
8ball030
af719e46f2
feat ensured that appropriate rbacs are set to allow the ingressclass on gcp ( #1409 )
2024-01-12 20:16:10 -08:00
Dalton Hubble
ce52a2cd35
Update Nginx Ingress and monitoring addon components
...
* Update ingress-nginx, Prometheus, node-exporter, and
kube-state-metrics
2022-12-05 09:38:38 -08:00
Dalton Hubble
f597f7cda3
Update Prometheus and Grafana addons
2022-11-23 11:06:03 -08:00
Dalton Hubble
26dbc7e91d
Update Kubernetes from v1.25.3 to v1.25.4
...
* Update Calico from v3.24.3 to v3.24.5
* Update Prometheus and Grafana addons
2022-11-10 09:42:21 -08:00
Dalton Hubble
b4c8b1729c
Switch addons images from k8s.gcr.io to registry.k8s.io
...
* Switch addon manifests to use the new Kubernetes image registry
Rel:
* https://github.com/poseidon/typhoon/pull/1206
* https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG/CHANGELOG-1.25.md#moved-container-registry-service-from-k8sgcrio-to-registryk8sio
2022-10-09 16:14:28 -07:00
Dalton Hubble
e82241169a
Update Prometheus from v2.38.0 to v2.39.1
...
* https://github.com/prometheus/prometheus/releases/tag/v2.39.1
2022-10-09 16:12:35 -07:00
Dalton Hubble
558e293f78
Update Nginx Ingress and Grafana addons
2022-09-20 08:28:30 -07:00
Dalton Hubble
5f612c82e2
Update kube-state-metrics and Grafana addons
2022-09-01 08:58:32 -07:00
Dalton Hubble
bf06412dfd
Update Prometheus and Grafana addons
2022-08-21 08:56:00 -07:00
Dalton Hubble
b321b90a4f
Update Grafana from v9.0.6 to v9.0.7
2022-08-13 15:39:44 -07:00
Dalton Hubble
679f8b878f
Update Grafana from v9.0.5 to v9.0.6
2022-08-10 08:23:04 -07:00
Dalton Hubble
6eb7861f96
Update Grafana liveness and readiness probes
...
* Use the liveness and readiness probes that Grafana recommends
* Update Grafana from v9.0.3 to v9.0.5
2022-08-08 09:22:44 -07:00
Dalton Hubble
ffbacbccf7
Update node-exporter DaemonSet to fix permission denied
...
* Add toleration to run node-exporter on controller nodes
* Add HostToContainer mount propagation and security context group
settings from upstream
* Fix SELinux denied accessing /host/proc/1/mounts. The mounts file
is has an SELinux type attribute init_t, but that won't allow running
the node-exporter binary so we have to use spc_t. This should be more
targeted at just the SELinux issue than making the Pod privileged
* Remove excluded mount points and filesystem types, the defaults are
https://github.com/prometheus/node_exporter/blob/v1.3.1/collector/filesystem_linux.go#L35
```
caller=collector.go:169 level=error msg="collector failed" name=filesystem duration_seconds=0.000666766 err="open /host/proc/1/mounts: permission denied"
```
```
[ 3664.880899] audit: type=1400 audit(1659639161.568:4400): avc: denied { search } for pid=28325 comm="node_exporter" name="1" dev="proc" ino=22542 scontext=system_u:system_r:container_t:s0 tcontext=system_u:system_r:init_t:s0 tclass=dir permissive=0
```
2022-08-08 09:19:46 -07:00
Dalton Hubble
767a653baa
Update Prometheus, Grafana, and ingress-nginx addons
...
* Update ingress-nginx RBAC Role to include coordination.k8s.io leases
permissions that are required with ingress-nginx v1.3.0
2022-07-15 20:19:12 -07:00
Dalton Hubble
42bf82b325
Update Prometheus and Grafana addons
...
* Bump recommended Terraform provider versions
2022-07-02 11:28:34 -07:00
Dalton Hubble
2a8915fee9
Update Prometheus, kube-state-metrics, and Grafana addons
...
* Update monitoring addons
2022-06-18 18:32:17 -07:00
Dalton Hubble
31c7f0ba0e
Update nginx-ingress addon from v1.2.0 to v1.2.1
...
* https://github.com/kubernetes/ingress-nginx/releases/tag/controller-v1.2.1
2022-05-31 16:37:57 +01:00
Dalton Hubble
8e8bf305c3
Update Prometheus and Grafana addons
2022-05-31 14:29:55 +01:00
Dalton Hubble
02f78fbd1a
Update Grafana from v8.4.5 to v8.5.1
2022-05-02 08:19:41 -07:00
Dalton Hubble
a122867748
Update nginx-ingress, Prometheus, and Grafana addons
...
* Sync addons with versions used in Poseidon
2022-04-27 21:02:32 -07:00
Dalton Hubble
d91408258b
Update nginx-ingress, Prometheus, and Grafana addons
2022-04-04 08:53:29 -07:00