jahanson/theshire
1
0
Fork 0
Code Issues 1 Pull requests 5 Projects Releases Packages Wiki Activity Actions

scale-to-one-node #269

Merged
jahanson merged 3 commits from scale-to-one-node into main 2024-05-07 13:37:02 -05:00
Conversation 0 Commits 3 Files changed 28 +92 -14
8 changed files with 92 additions and 14 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files
Showing only changes of commit 801395b748 - Show all commits

3
kubernetes/apps/kube-system/kubelet-csr-approver/app/helm-values.yaml Normal file
View file

@ -0,0 +1,3 @@
---
providerRegex: ^shadowfax$
bypassDnsResolution: true

32
kubernetes/apps/kube-system/kubelet-csr-approver/app/helmrelease.yaml Normal file
View file

@ -0,0 +1,32 @@
---
# yaml-language-server: $schema=https://ks.hsn.dev/helm.toolkit.fluxcd.io/helmrelease_v2beta2.json
apiVersion: helm.toolkit.fluxcd.io/v2beta2
kind: HelmRelease
metadata:
name: kubelet-csr-approver
spec:
interval: 30m
chart:
spec:
chart: kubelet-csr-approver
version: 1.1.0
sourceRef:
kind: HelmRepository
name: postfinance
namespace: flux-system
install:
remediation:
retries: 3
upgrade:
cleanupOnFail: true
remediation:
strategy: rollback
retries: 3
valuesFrom:
- kind: ConfigMap
name: kubelet-csr-approver-helm-values
values:
metrics:
enable: true
serviceMonitor:
enabled: true

12
kubernetes/apps/kube-system/kubelet-csr-approver/app/kustomization.yaml Normal file
View file

@ -0,0 +1,12 @@
---
# yaml-language-server: $schema=https://json.schemastore.org/kustomization.json
apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- ./helmrelease.yaml
configMapGenerator:
- name: kubelet-csr-approver-helm-values
files:
- values.yaml=./helm-values.yaml
configurations:
- kustomizeconfig.yaml

7
kubernetes/apps/kube-system/kubelet-csr-approver/app/kustomizeconfig.yaml Normal file
View file

@ -0,0 +1,7 @@
---
nameReference:
- kind: ConfigMap
version: v1
fieldSpecs:
- path: spec/valuesFrom/name
kind: HelmRelease

21
kubernetes/apps/kube-system/kubelet-csr-approver/ks.yaml Normal file
View file

@ -0,0 +1,21 @@
---
# yaml-language-server: $schema=https://raw.githubusercontent.com/fluxcd-community/flux2-schemas/main/kustomization-kustomize-v1.json
apiVersion: kustomize.toolkit.fluxcd.io/v1
kind: Kustomization
metadata:
name: &app kubelet-csr-approver
namespace: flux-system
spec:
targetNamespace: kube-system
commonMetadata:
labels:
app.kubernetes.io/name: *app
path: ./kubernetes/apps/kube-system/kubelet-csr-approver/app
prune: false # never should be deleted
sourceRef:
kind: GitRepository
name: homelab
wait: false
interval: 30m
retryInterval: 1m
timeout: 5m

1
kubernetes/apps/kube-system/kustomization.yaml
View file

@ -10,6 +10,7 @@ resources:
- ./descheduler/ks.yaml - ./descheduler/ks.yaml
- ./dnsimple-webhook-rbac.yaml - ./dnsimple-webhook-rbac.yaml
- ./fstrim/ks.yaml - ./fstrim/ks.yaml
- ./kubelet-csr-approver/ks.yaml
- ./metrics-server/ks.yaml - ./metrics-server/ks.yaml
- ./multus/ks.yaml - ./multus/ks.yaml
- ./intel-device-plugin/ks.yaml - ./intel-device-plugin/ks.yaml

16
kubernetes/bootstrap/talos/apps/helmfile.yaml
View file

@ -10,8 +10,8 @@ helmDefaults:
repositories: repositories:
- name: cilium - name: cilium
url: https://helm.cilium.io url: https://helm.cilium.io
- name: nvdp - name: postfinance
url: https://nvidia.github.io/k8s-device-plugin url: https://postfinance.github.io/kubelet-csr-approver
releases: releases:
- name: cilium - name: cilium
@ -20,15 +20,15 @@ releases:
version: 1.15.4 version: 1.15.4
values: ["../../../apps/kube-system/cilium/app/resources/values.yml"] values: ["../../../apps/kube-system/cilium/app/resources/values.yml"]
wait: true wait: true
- name: nvidia-device-plugin - name: kubelet-csr-approver
namespace: kube-system namespace: kube-system
chart: nvdp/nvidia-device-plugin chart: postfinance/kubelet-csr-approver
version: 0.14.5 version: 1.1.0
values: ["../../../apps/kube-system/nvidia-device-plugin/app/resources/values.yml"] values: ["../../../apps/kube-system/kubelet-csr-approver/app/helm-values.yaml"]
wait: true needs: ["cilium"]
- name: spegel - name: spegel
namespace: kube-system namespace: kube-system
chart: oci://ghcr.io/spegel-org/helm-charts/spegel chart: oci://ghcr.io/spegel-org/helm-charts/spegel
version: v0.0.22 version: v0.0.22
values: ["../../../apps/kube-system/spegel/app/resources/values.yml"] values: ["../../../apps/kube-system/spegel/app/resources/values.yml"]
wait: true wait: true

14
kubernetes/bootstrap/talos/talconfig.yaml
View file

@ -6,9 +6,6 @@ talosVersion: v1.7.1
kubernetesVersion: 1.28.4 kubernetesVersion: 1.28.4
endpoint: "https://10.1.1.57:6443" endpoint: "https://10.1.1.57:6443"
cniConfig:
name: none
additionalApiServerCertSans: additionalApiServerCertSans:
- 10.1.1.57 - 10.1.1.57
@ -21,10 +18,12 @@ nodes:
ipAddress: 10.1.1.61 ipAddress: 10.1.1.61
controlPlane: true controlPlane: true
installDiskSelector: installDiskSelector:
busPath: /dev/nvme0n1 busPath: /pci0000:20/0000:20:01.2/0000:2d:00.0/nvme/nvme1/nvme1n1
networkInterfaces: networkInterfaces:
- interface: eth0 - interface: enp37s0f1
dhcp: true dhcp: true
- interface: enp37s0f0
dhcp: false
kernelModules: kernelModules:
- name: nvidia - name: nvidia
- name: nvidia_uvm - name: nvidia_uvm
@ -55,7 +54,7 @@ controlPlane:
machine: machine:
network: network:
nameservers: nameservers:
- 10.1.1.11 - 10.1.1.1
# Configure NTP # Configure NTP
- |- - |-
@ -79,6 +78,9 @@ controlPlane:
allowSchedulingOnMasters: true allowSchedulingOnMasters: true
proxy: proxy:
disabled: true disabled: true
network:
cni:
name: none
# ETCD configuration # ETCD configuration
- |- - |-