From 9ce2107223eb90446bf2399784d85009c288d0a1 Mon Sep 17 00:00:00 2001 From: Steven Kreitzer Date: Sat, 2 Nov 2024 13:55:52 -0500 Subject: [PATCH] feat(kubernetes): deploy brand new ms-01 cluster --- .github/renovate/groups.json5 | 2 +- .taskfiles/bootstrap/Taskfile.yaml | 31 +- .taskfiles/talos/Taskfile.yaml | 4 +- .vscode/settings.json | 2 +- README.md | 27 +- .../app/helmrelease.yaml | 2 +- .../runner/helmrelease.yaml | 2 +- .../cert-manager/app/helmrelease.yaml | 2 +- .../cloudnative-pg/app/helmrelease.yaml | 2 +- .../cloudnative-pg/cluster/cluster.yaml | 2 +- .../apps/databases/cloudnative-pg/ks.yaml | 2 +- .../databases/dragonfly/app/helmrelease.yaml | 2 +- .../apps/databases/emqx/app/helmrelease.yaml | 2 +- .../democratic-csi/democratic-csi/ks.yaml | 20 -- .../local-hostpath/helmrelease.yaml | 86 ----- .../apps/home/atuin/app/helmrelease.yaml | 2 +- .../apps/home/go2rtc/app/helmrelease.yaml | 2 +- .../apps/home/hajimari/app/helmrelease.yaml | 2 +- .../home/home-assistant/app/helmrelease.yaml | 2 +- .../apps/home/home-assistant/app/volsync.yaml | 4 +- .../apps/home/miniflux/app/helmrelease.yaml | 2 +- .../apps/home/node-red/app/helmrelease.yaml | 2 +- .../apps/home/node-red/app/volsync.yaml | 10 +- .../apps/home/thelounge/app/helmrelease.yaml | 2 +- .../apps/home/thelounge/app/volsync.yaml | 4 +- .../home/zigbee2mqtt/app/helmrelease.yaml | 2 +- .../apps/home/zigbee2mqtt/app/volsync.yaml | 4 +- .../kube-system/cilium/app/helmrelease.yaml | 2 +- .../cilium/app/resources/values.yaml | 2 +- .../apps/kube-system/cilium/configs/l2.yaml | 2 +- .../kube-system/coredns/app/helmrelease.yaml | 2 +- .../descheduler/app/helmrelease.yaml | 2 +- .../kube-system/fstrim/app/helmrelease.yaml | 2 +- .../app/helmrelease.yaml | 2 +- .../intel-device-plugin/app/helmrelease.yaml | 2 +- .../intel-device-plugin/gpu/helmrelease.yaml | 2 +- .../kubelet-csr-approver/app/helmrelease.yaml | 2 +- .../apps/kube-system/kustomization.yaml | 1 - .../kube-system/mbpfan/app/helmrelease.yaml | 63 ---- .../kube-system/mbpfan/app/kustomization.yaml | 11 - .../mbpfan/app/resources/mbpfan.conf | 9 - .../metrics-server/app/helmrelease.yaml | 2 +- .../app/helmrelease.yaml | 2 +- .../features/apple-t2.yaml | 16 - .../features/google-coral.yaml | 3 +- .../features/intel-gpu.yaml | 3 +- .../features/phoscon-conbee.yaml | 3 +- .../kube-system/reloader/app/helmrelease.yaml | 2 +- .../kube-system/spegel/app/helmrelease.yaml | 2 +- .../apps/kyverno/kyverno/app/helmrelease.yaml | 2 +- .../apps/media/autobrr/app/helmrelease.yaml | 2 +- .../apps/media/bazarr/app/helmrelease.yaml | 2 +- kubernetes/apps/media/bazarr/app/volsync.yaml | 4 +- .../media/cross-seed/app/helmrelease.yaml | 2 +- .../apps/media/omegabrr/app/helmrelease.yaml | 2 +- .../apps/media/overseerr/app/helmrelease.yaml | 2 +- .../apps/media/overseerr/app/volsync.yaml | 4 +- .../apps/media/plex/app/helmrelease.yaml | 2 +- kubernetes/apps/media/plex/app/volsync.yaml | 4 +- .../apps/media/prowlarr/app/helmrelease.yaml | 2 +- .../media/qbittorrent/app/helmrelease.yaml | 2 +- .../apps/media/qbittorrent/app/volsync.yaml | 4 +- .../tools/qbtools/helmrelease.yaml | 2 +- .../apps/media/radarr/app/helmrelease.yaml | 2 +- .../apps/media/recyclarr/app/helmrelease.yaml | 2 +- .../apps/media/recyclarr/app/volsync.yaml | 4 +- .../apps/media/sabnzbd/app/helmrelease.yaml | 2 +- .../apps/media/sabnzbd/app/volsync.yaml | 4 +- .../apps/media/sonarr/app/helmrelease.yaml | 2 +- .../apps/media/tautulli/app/helmrelease.yaml | 2 +- .../apps/media/tautulli/app/volsync.yaml | 4 +- .../apps/media/unpackerr/app/helmrelease.yaml | 2 +- .../blackbox-exporter/app/helmrelease.yaml | 2 +- .../mqtt-exporter/app/helmrelease.yaml | 2 +- .../overseerr-exporter/app/helmrelease.yaml | 2 +- .../prowlarr-exporter/app/helmrelease.yaml | 2 +- .../qbittorrent-exporter/app/helmrelease.yaml | 2 +- .../radarr-exporter/app/helmrelease.yaml | 2 +- .../sabnzbd-exporter/app/helmrelease.yaml | 2 +- .../smartctl-exporter/app/helmrelease.yaml | 2 +- .../snmp-exporter/app/helmrelease.yaml | 2 +- .../sonarr-exporter/app/helmrelease.yaml | 2 +- .../speedtest-exporter/app/helmrelease.yaml | 2 +- .../tautulli-exporter/app/helmrelease.yaml | 2 +- .../monitoring/gatus/app/helmrelease.yaml | 2 +- .../monitoring/grafana/app/helmrelease.yaml | 2 +- .../monitoring/karma/app/helmrelease.yaml | 2 +- .../monitoring/kromgo/app/helmrelease.yaml | 2 +- .../app/helmrelease.yaml | 6 +- .../monitoring/kube-prometheus-stack/ks.yaml | 2 +- .../alertmanager-silencer/helmrelease.yaml | 2 +- .../apps/monitoring/loki/app/helmrelease.yaml | 6 +- kubernetes/apps/monitoring/loki/ks.yaml | 2 +- .../monitoring/thanos/app/helmrelease.yaml | 4 +- kubernetes/apps/monitoring/thanos/ks.yaml | 2 +- .../monitoring/unpoller/app/helmrelease.yaml | 2 +- .../monitoring/vector/agent/helmrelease.yaml | 2 +- .../vector/aggregator/helmrelease.yaml | 2 +- .../cloudflared/app/helmrelease.yaml | 2 +- .../echo-server/app/helmrelease.yaml | 2 +- .../external-dns/cloudflare/helmrelease.yaml | 2 +- .../external-dns/unifi/helmrelease.yaml | 2 +- .../networking/multus/app/helmrelease.yaml | 2 +- .../apps/networking/multus/networks/iot.yaml | 2 +- .../nginx/external/helmrelease.yaml | 2 +- .../nginx/internal/helmrelease.yaml | 2 +- .../smtp-relay/app/helmrelease.yaml | 2 +- .../networking/tailscale/app/helmrelease.yaml | 2 +- .../kustomization.yaml | 2 +- .../namespace.yaml | 2 +- .../openebs/app/helmrelease.yaml | 53 +++ .../openebs/app}/kustomization.yaml | 0 .../mbpfan => openebs-system/openebs}/ks.yaml | 8 +- .../rook-ceph/rook-ceph/app/helmrelease.yaml | 2 +- .../rook-ceph/cluster/helmrelease.yaml | 17 +- .../security/authelia/app/helmrelease.yaml | 2 +- .../external-secrets/app/helmrelease.yaml | 2 +- .../apps/security/glauth/app/helmrelease.yaml | 2 +- .../onepassword-connect/app/helmrelease.yaml | 2 +- .../app/helmrelease.yaml | 2 +- .../system-upgrade-controller/ks.yaml | 5 +- .../plans/talos.yaml | 4 +- .../snapshot-controller/app/helmrelease.yaml | 2 +- .../volsync/app/helmrelease.yaml | 2 +- ...ts.yaml => actions-runner-controller.yaml} | 2 +- .../{angelnu-charts.yaml => angelnu.yaml} | 2 +- .../{backube-charts.yaml => backube.yaml} | 2 +- .../helm/{bjw-s-charts.yaml => bjw-s.yaml} | 2 +- .../helm/{cilium-charts.yaml => cilium.yaml} | 2 +- ...ive-pg-charts.yaml => cloudnative-pg.yaml} | 2 +- .../{coredns-charts.yaml => coredns.yaml} | 2 +- ...veryhero-charts.yaml => deliveryhero.yaml} | 2 +- .../helm/democratic-csi-charts.yaml | 9 - .../helm/{emqx-charts.yaml => emqx.yaml} | 2 +- ...rnal-dns-charts.yaml => external-dns.yaml} | 2 +- ...rets-charts.yaml => external-secrets.yaml} | 2 +- .../{fairwinds-charts.yaml => fairwinds.yaml} | 2 +- .../{grafana-charts.yaml => grafana.yaml} | 2 +- .../{hajimari-charts.yaml => hajimari.yaml} | 2 +- ...s-nginx-charts.yaml => ingress-nginx.yaml} | 2 +- .../helm/{intel-charts.yaml => intel.yaml} | 2 +- .../{jetstack-charts.yaml => jetstack.yaml} | 2 +- ....yaml => kubernetes-sigs-descheduler.yaml} | 2 +- .../flux/repositories/helm/kustomization.yaml | 58 ++-- .../{kyverno-charts.yaml => kyverno.yaml} | 2 +- ...server-charts.yaml => metrics-server.yaml} | 2 +- ...harts.yaml => node-feature-discovery.yaml} | 2 +- .../flux/repositories/helm/openebs.yaml | 9 + .../{piraeus-charts.yaml => piraeus.yaml} | 2 +- ...stfinance-charts.yaml => postfinance.yaml} | 2 +- ...-charts.yaml => prometheus-community.yaml} | 2 +- .../{rook-ceph-charts.yaml => rook-ceph.yaml} | 2 +- .../helm/{spegel-charts.yaml => spegel.yaml} | 2 +- .../{stakater-charts.yaml => stakater.yaml} | 2 +- ...ehipwell-charts.yaml => stevehipwell.yaml} | 2 +- talos/talconfig.yaml | 307 +++++++----------- 156 files changed, 402 insertions(+), 649 deletions(-) delete mode 100644 kubernetes/apps/democratic-csi/democratic-csi/ks.yaml delete mode 100644 kubernetes/apps/democratic-csi/democratic-csi/local-hostpath/helmrelease.yaml delete mode 100644 kubernetes/apps/kube-system/mbpfan/app/helmrelease.yaml delete mode 100644 kubernetes/apps/kube-system/mbpfan/app/kustomization.yaml delete mode 100644 kubernetes/apps/kube-system/mbpfan/app/resources/mbpfan.conf delete mode 100644 kubernetes/apps/kube-system/node-feature-discovery/features/apple-t2.yaml rename kubernetes/apps/{democratic-csi => openebs-system}/kustomization.yaml (77%) rename kubernetes/apps/{democratic-csi => openebs-system}/namespace.yaml (81%) create mode 100644 kubernetes/apps/openebs-system/openebs/app/helmrelease.yaml rename kubernetes/apps/{democratic-csi/democratic-csi/local-hostpath => openebs-system/openebs/app}/kustomization.yaml (100%) rename kubernetes/apps/{kube-system/mbpfan => openebs-system/openebs}/ks.yaml (66%) rename kubernetes/flux/repositories/helm/{actions-runner-controller-charts.yaml => actions-runner-controller.yaml} (82%) rename kubernetes/flux/repositories/helm/{angelnu-charts.yaml => angelnu.yaml} (87%) rename kubernetes/flux/repositories/helm/{backube-charts.yaml => backube.yaml} (87%) rename kubernetes/flux/repositories/helm/{bjw-s-charts.yaml => bjw-s.yaml} (88%) rename kubernetes/flux/repositories/helm/{cilium-charts.yaml => cilium.yaml} (87%) rename kubernetes/flux/repositories/helm/{cloudnative-pg-charts.yaml => cloudnative-pg.yaml} (84%) rename kubernetes/flux/repositories/helm/{coredns-charts.yaml => coredns.yaml} (87%) rename kubernetes/flux/repositories/helm/{deliveryhero-charts.yaml => deliveryhero.yaml} (85%) delete mode 100644 kubernetes/flux/repositories/helm/democratic-csi-charts.yaml rename kubernetes/flux/repositories/helm/{emqx-charts.yaml => emqx.yaml} (88%) rename kubernetes/flux/repositories/helm/{external-dns-charts.yaml => external-dns.yaml} (86%) rename kubernetes/flux/repositories/helm/{external-secrets-charts.yaml => external-secrets.yaml} (83%) rename kubernetes/flux/repositories/helm/{fairwinds-charts.yaml => fairwinds.yaml} (86%) rename kubernetes/flux/repositories/helm/{grafana-charts.yaml => grafana.yaml} (87%) rename kubernetes/flux/repositories/helm/{hajimari-charts.yaml => hajimari.yaml} (86%) rename kubernetes/flux/repositories/helm/{ingress-nginx-charts.yaml => ingress-nginx.yaml} (85%) rename kubernetes/flux/repositories/helm/{intel-charts.yaml => intel.yaml} (88%) rename kubernetes/flux/repositories/helm/{jetstack-charts.yaml => jetstack.yaml} (86%) rename kubernetes/flux/repositories/helm/{kubernetes-sigs-descheduler-charts.yaml => kubernetes-sigs-descheduler.yaml} (80%) rename kubernetes/flux/repositories/helm/{kyverno-charts.yaml => kyverno.yaml} (88%) rename kubernetes/flux/repositories/helm/{metrics-server-charts.yaml => metrics-server.yaml} (85%) rename kubernetes/flux/repositories/helm/{node-feature-discovery-charts.yaml => node-feature-discovery.yaml} (83%) create mode 100644 kubernetes/flux/repositories/helm/openebs.yaml rename kubernetes/flux/repositories/helm/{piraeus-charts.yaml => piraeus.yaml} (87%) rename kubernetes/flux/repositories/helm/{postfinance-charts.yaml => postfinance.yaml} (86%) rename kubernetes/flux/repositories/helm/{prometheus-community-charts.yaml => prometheus-community.yaml} (83%) rename kubernetes/flux/repositories/helm/{rook-ceph-charts.yaml => rook-ceph.yaml} (86%) rename kubernetes/flux/repositories/helm/{spegel-charts.yaml => spegel.yaml} (88%) rename kubernetes/flux/repositories/helm/{stakater-charts.yaml => stakater.yaml} (87%) rename kubernetes/flux/repositories/helm/{stevehipwell-charts.yaml => stevehipwell.yaml} (86%) diff --git a/.github/renovate/groups.json5 b/.github/renovate/groups.json5 index 17eb8f527c..c88d7013c3 100644 --- a/.github/renovate/groups.json5 +++ b/.github/renovate/groups.json5 @@ -65,7 +65,7 @@ { description: ["Talos Group"], groupName: "Talos", - matchPackagePatterns: ["buroa/installer", "siderolabs/talosctl"], + matchPackagePatterns: ["siderolabs/installer", "siderolabs/talosctl"], matchDatasources: ["docker"], group: { commitMessageTopic: "{{{groupName}}} group", diff --git a/.taskfiles/bootstrap/Taskfile.yaml b/.taskfiles/bootstrap/Taskfile.yaml index 4dc9c90a8f..efd964a2a4 100644 --- a/.taskfiles/bootstrap/Taskfile.yaml +++ b/.taskfiles/bootstrap/Taskfile.yaml @@ -13,7 +13,6 @@ tasks: - task: etcd - task: kubeconfig - task: apps - - task: labels - task: rook - task: flux preconditions: @@ -39,14 +38,6 @@ tasks: preconditions: - test -f {{.TALOS_DIR}}/apps/helmfile.yaml - labels: - internal: true - cmds: - - for: { var: nodes } - cmd: kubectl label node {{.ITEM}} node-role.kubernetes.io/worker= - vars: - nodes: w0 w1 w2 - rook: internal: true cmds: @@ -54,26 +45,26 @@ tasks: task: rook-data vars: node: '{{.ITEM}}' - - for: { var: w0 } + - for: { var: m0 } task: rook-disk vars: - node: w0 + node: m0 serial: '{{.ITEM}}' - - for: { var: w1 } + - for: { var: m1 } task: rook-disk vars: - node: w1 + node: m1 serial: '{{.ITEM}}' - - for: { var: w2 } + - for: { var: m2 } task: rook-disk vars: - node: w2 + node: m2 serial: '{{.ITEM}}' vars: - nodes: m0 m1 m2 w0 w1 w2 - w0: S6S2NS0TC14873N S6S2NS0TC14865L - w1: S6S2NS0TC14871H S6S2NS0W122087H - w2: S6S2NS0W120772T S6S2NS0TC14864B + nodes: m0 m1 m2 + m0: S6S2NS0TC14865L # TODO: UPDATE ME + m1: S6S2NS0W122087H # TODO: UPDATE ME + m2: S6S2NS0TC14864B # TODO: UPDATE ME rook-data: internal: true @@ -101,7 +92,7 @@ tasks: - kubectl --namespace default logs job/{{.job}} - kubectl --namespace default delete job {{.job}} env: - disk: /dev/disk/by-id/nvme-Samsung_SSD_970_EVO_Plus_2TB_{{.serial}} + disk: /dev/disk/by-id/nvme-Samsung_SSD_970_EVO_Plus_2TB_{{.serial}} # TODO: UPDATE ME job: '{{.job}}' node: '{{.node}}' vars: diff --git a/.taskfiles/talos/Taskfile.yaml b/.taskfiles/talos/Taskfile.yaml index 63d9913d49..fc3ccb2a45 100644 --- a/.taskfiles/talos/Taskfile.yaml +++ b/.taskfiles/talos/Taskfile.yaml @@ -4,6 +4,8 @@ version: "3" vars: TALOS_CONTROLLER: sh: talosctl config info --output json | jq --raw-output '.endpoints[]' | shuf -n 1 + TALOS_SCHEMATIC_ID: + sh: yq 'select(document_index == 1).spec.postBuild.substitute.TALOS_SCHEMATIC_ID' {{.KUBERNETES_DIR}}/apps/system-upgrade/system-upgrade-controller/ks.yaml TALOS_VERSION: sh: yq 'select(document_index == 1).spec.postBuild.substitute.TALOS_VERSION' {{.KUBERNETES_DIR}}/apps/system-upgrade/system-upgrade-controller/ks.yaml KUBERNETES_VERSION: @@ -38,7 +40,7 @@ tasks: upgrade: desc: Upgrade Talos on a node prompt: Upgrade Talos node {{.node}} ... continue? - cmd: talosctl --nodes {{.node}} upgrade --image=ghcr.io/buroa/installer:{{.TALOS_VERSION}} + cmd: talosctl --nodes {{.node}} upgrade --image=factory.talos.dev/installer/{{.TALOS_SCHEMATIC_ID}}:{{.TALOS_VERSION}} requires: vars: ["node"] preconditions: diff --git a/.vscode/settings.json b/.vscode/settings.json index 2272f29cf3..a07d5dd384 100644 --- a/.vscode/settings.json +++ b/.vscode/settings.json @@ -31,12 +31,12 @@ "actions-runner-system": "github", "cert-manager": "guard", "default": "home", - "democratic-csi": "dump", "flux-system": "pipe", "kube-system": "kubernetes", "media": "video", "monitoring": "event", "networking": "connection", + "openebs-system": "dump", "rook-ceph": "dump", "security": "guard", "system-upgrade": "update", diff --git a/README.md b/README.md index 397a54ab4b..fb4820a102 100644 --- a/README.md +++ b/README.md @@ -47,7 +47,7 @@ This is a repository for my home infrastructure and Kubernetes cluster. I try to ## ⛵ Kubernetes -This semi hyper-converged cluster operates on [Talos Linux](https://github.com/siderolabs/talos), an immutable and ephemeral Linux distribution tailored for [Kubernetes](https://github.com/kubernetes/kubernetes), and is deployed on bare-metal [Apple Mac Minis](https://www.apple.com/mac-mini). [Rook](https://github.com/rook/rook) supplies my workloads with persistent block, object, and file storage, while a separate server handles media file storage. The cluster is designed to enable a full teardown without any data loss. +This semi hyper-converged cluster operates on [Talos Linux](https://github.com/siderolabs/talos), an immutable and ephemeral Linux distribution tailored for [Kubernetes](https://github.com/kubernetes/kubernetes), and is deployed on bare-metal [MS-01](https://store.minisforum.com/products/minisforum-ms-01) workstations. [Rook](https://github.com/rook/rook) supplies my workloads with persistent block, object, and file storage, while a separate server handles media file storage. The cluster is designed to enable a full teardown without any data loss. There is a template at [onedr0p/cluster-template](https://github.com/onedr0p/cluster-template) if you want to follow along with some of the practices I use here. @@ -127,20 +127,17 @@ I have two instances of `external-dns` running in my cluster. The private DNS in rack -| Device | Count | OS Disk Size | Data Disk Size | Ram | Operating System | Purpose | -|-------------------------------------------------|-------|--------------|----------------|------|------------------|--------------------| -| [Apple Mac Mini](## "Intel i7 3.2GHz w/ 10GbE") | 3 | 1TB NVMe | - | 64GB | Talos | Kubernetes Workers | -| [Apple Mac Mini](## "Intel i7 3.2GHz w/ 1GbE") | 3 | 512GB NVMe | - | 32GB | Talos | Kubernetes Masters | -| APC SMT15000RM2UNC | 1 | - | - | - | - | UPS | -| Sabrent NVMe M.2 Thunderbolt 3 Enclosure | 6 | - | 2TB NVMe | - | - | Rook Ceph | -| Sonnet 10GbE Thunderbolt 3 Adapter | 3 | - | - | - | - | 10GbE | -| Synology NAS RS1221+ | 1 | - | 8x22TB HDD | 32GB | - | NFS | -| UDM Pro Max | 1 | - | 2x16TB HDD | - | UniFi OS | Router & NVR | -| USP PDU Pro | 1 | - | - | - | UniFi OS | PDU | -| USW Aggregation | 1 | - | - | - | UniFi OS | Core Switch | -| USW Enterprise XG 24 | 1 | - | - | - | UniFi OS | 10GbE Switch | -| USW Pro Max 24 PoE | 1 | - | - | - | UniFi OS | 2.5GbE PoE Switch | - +| Device | Count | OS Disk Size | Data Disk Size | Ram | Operating System | Purpose | +|---------------------------|-------|-----------------|-----------------------------|------|------------------|-----------------| +| MS-01 (i9-13900H) | 3 | 1.92TB M.2 NVMe | 3.84TB U.2 NVMe (rook-ceph) | 96GB | Talos | Kubernetes | +| USW Pro Max 24 PoE | 1 | - | - | - | UniFi OS | 2.5G PoE Switch | +| USW Pro Aggregation | 1 | - | - | - | UniFi OS | 10G/25G Switch | +| USP PDU Pro | 1 | - | - | - | UniFi OS | PDU | +| UDM Pro Max | 1 | - | 2x16TB HDD | - | UniFi OS | Router & NVR | +| Synology NAS RS1221+ | 1 | - | 8x22TB HDD | 32GB | - | NFS | +| APC SMT15000RM2UNC | 1 | - | - | - | - | UPS | +| TESmart 8 Port KVM Switch | 1 | - | - | - | - | KVM | +| PiKVM (RasPi 4) | 1 | 64GB (SD) | - | 4GB | PiKVM (Arch) | KVM | --- ## ⭐ Stargazers diff --git a/kubernetes/apps/actions-runner-system/actions-runner-controller/app/helmrelease.yaml b/kubernetes/apps/actions-runner-system/actions-runner-controller/app/helmrelease.yaml index b1adb9fdb1..7d5eca6d64 100644 --- a/kubernetes/apps/actions-runner-system/actions-runner-controller/app/helmrelease.yaml +++ b/kubernetes/apps/actions-runner-system/actions-runner-controller/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 0.9.3 sourceRef: kind: HelmRepository - name: actions-runner-controller-charts + name: actions-runner-controller namespace: flux-system install: crds: CreateReplace diff --git a/kubernetes/apps/actions-runner-system/actions-runner-controller/runner/helmrelease.yaml b/kubernetes/apps/actions-runner-system/actions-runner-controller/runner/helmrelease.yaml index 22f00e53ec..3a35e2356f 100644 --- a/kubernetes/apps/actions-runner-system/actions-runner-controller/runner/helmrelease.yaml +++ b/kubernetes/apps/actions-runner-system/actions-runner-controller/runner/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 0.9.3 sourceRef: kind: HelmRepository - name: actions-runner-controller-charts + name: actions-runner-controller namespace: flux-system install: remediation: diff --git a/kubernetes/apps/cert-manager/cert-manager/app/helmrelease.yaml b/kubernetes/apps/cert-manager/cert-manager/app/helmrelease.yaml index c04b62ec9e..2910128b89 100644 --- a/kubernetes/apps/cert-manager/cert-manager/app/helmrelease.yaml +++ b/kubernetes/apps/cert-manager/cert-manager/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: v1.16.1 sourceRef: kind: HelmRepository - name: jetstack-charts + name: jetstack namespace: flux-system install: remediation: diff --git a/kubernetes/apps/databases/cloudnative-pg/app/helmrelease.yaml b/kubernetes/apps/databases/cloudnative-pg/app/helmrelease.yaml index a98c0eee35..ea88aebae2 100644 --- a/kubernetes/apps/databases/cloudnative-pg/app/helmrelease.yaml +++ b/kubernetes/apps/databases/cloudnative-pg/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 0.22.1 sourceRef: kind: HelmRepository - name: cloudnative-pg-charts + name: cloudnative-pg namespace: flux-system install: remediation: diff --git a/kubernetes/apps/databases/cloudnative-pg/cluster/cluster.yaml b/kubernetes/apps/databases/cloudnative-pg/cluster/cluster.yaml index 4585502420..fe38560ad0 100644 --- a/kubernetes/apps/databases/cloudnative-pg/cluster/cluster.yaml +++ b/kubernetes/apps/databases/cloudnative-pg/cluster/cluster.yaml @@ -9,7 +9,7 @@ spec: primaryUpdateStrategy: unsupervised storage: size: 20Gi - storageClass: democratic-csi-local-hostpath + storageClass: openebs-hostpath superuserSecret: name: cloudnative-pg-secret enableSuperuserAccess: true diff --git a/kubernetes/apps/databases/cloudnative-pg/ks.yaml b/kubernetes/apps/databases/cloudnative-pg/ks.yaml index af3ccde571..4190d4c7c5 100644 --- a/kubernetes/apps/databases/cloudnative-pg/ks.yaml +++ b/kubernetes/apps/databases/cloudnative-pg/ks.yaml @@ -32,8 +32,8 @@ spec: labels: app.kubernetes.io/name: *app dependsOn: + - name: openebs - name: cloudnative-pg - - name: democratic-csi-local-hostpath path: ./kubernetes/apps/databases/cloudnative-pg/cluster prune: true sourceRef: diff --git a/kubernetes/apps/databases/dragonfly/app/helmrelease.yaml b/kubernetes/apps/databases/dragonfly/app/helmrelease.yaml index 6f00c7fce7..e8d44f98d9 100644 --- a/kubernetes/apps/databases/dragonfly/app/helmrelease.yaml +++ b/kubernetes/apps/databases/dragonfly/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/databases/emqx/app/helmrelease.yaml b/kubernetes/apps/databases/emqx/app/helmrelease.yaml index cb2ef56dbd..16d4c233e6 100644 --- a/kubernetes/apps/databases/emqx/app/helmrelease.yaml +++ b/kubernetes/apps/databases/emqx/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 2.2.25 sourceRef: kind: HelmRepository - name: emqx-charts + name: emqx namespace: flux-system install: remediation: diff --git a/kubernetes/apps/democratic-csi/democratic-csi/ks.yaml b/kubernetes/apps/democratic-csi/democratic-csi/ks.yaml deleted file mode 100644 index 82b62df302..0000000000 --- a/kubernetes/apps/democratic-csi/democratic-csi/ks.yaml +++ /dev/null @@ -1,20 +0,0 @@ ---- -apiVersion: kustomize.toolkit.fluxcd.io/v1 -kind: Kustomization -metadata: - name: &app democratic-csi-local-hostpath - namespace: flux-system -spec: - targetNamespace: democratic-csi - commonMetadata: - labels: - app.kubernetes.io/name: *app - path: ./kubernetes/apps/democratic-csi/democratic-csi/local-hostpath - prune: true - sourceRef: - kind: GitRepository - name: k8s-gitops - wait: true - interval: 30m - retryInterval: 1m - timeout: 15m diff --git a/kubernetes/apps/democratic-csi/democratic-csi/local-hostpath/helmrelease.yaml b/kubernetes/apps/democratic-csi/democratic-csi/local-hostpath/helmrelease.yaml deleted file mode 100644 index 8f34e1a455..0000000000 --- a/kubernetes/apps/democratic-csi/democratic-csi/local-hostpath/helmrelease.yaml +++ /dev/null @@ -1,86 +0,0 @@ ---- -apiVersion: helm.toolkit.fluxcd.io/v2 -kind: HelmRelease -metadata: - name: democratic-csi-local-hostpath -spec: - interval: 30m - chart: - spec: - chart: democratic-csi - version: 0.14.6 - sourceRef: - name: democratic-csi-charts - kind: HelmRepository - namespace: flux-system - install: - remediation: - retries: 3 - upgrade: - cleanupOnFail: true - remediation: - strategy: rollback - retries: 3 - values: - csiDriver: - name: local-hostpath.democratic-csi.k8s.home.arpa - storageCapacity: true - attachRequired: false - fsGroupPolicy: File - storageClasses: - - name: democratic-csi-local-hostpath - defaultClass: false - reclaimPolicy: Delete - volumeBindingMode: WaitForFirstConsumer - allowVolumeExpansion: false - volumeSnapshotClasses: - - name: csi-democratic-csi-local-hostpath - deletionPolicy: Delete - parameters: - cluster: k8s - controller: - enabled: true - strategy: node - externalProvisioner: - extraArgs: - - --leader-election=false - - --node-deployment=true - - --node-deployment-immediate-binding=false - - --feature-gates=Topology=true - - --strict-topology=true - - --enable-capacity=true - - --capacity-ownerref-level=1 - externalResizer: - enabled: false - externalAttacher: - enabled: false - externalSnapshotter: - enabled: true - extraArgs: - - --leader-election=false - - --node-deployment=true - nodeSelector: &nodeSelector - topology.kubernetes.io/zone: w - node: - driver: - image: ghcr.io/democratic-csi/democratic-csi:v1.9.3 - extraVolumeMounts: - - name: local-hostpath - mountPath: &path /var/lib/democratic-csi-local-hostpath - mountPropagation: Bidirectional - extraVolumes: - - name: local-hostpath - hostPath: - path: *path - type: DirectoryOrCreate - nodeSelector: *nodeSelector - driver: - config: - driver: local-hostpath - instance_id: k8s-local-hostpath - local-hostpath: - shareBasePath: *path - controllerBasePath: *path - dirPermissionsMode: "0770" - dirPermissionsUser: 0 - dirPermissionsGroup: 0 diff --git a/kubernetes/apps/home/atuin/app/helmrelease.yaml b/kubernetes/apps/home/atuin/app/helmrelease.yaml index d1778a53da..294e4cf34d 100644 --- a/kubernetes/apps/home/atuin/app/helmrelease.yaml +++ b/kubernetes/apps/home/atuin/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/home/go2rtc/app/helmrelease.yaml b/kubernetes/apps/home/go2rtc/app/helmrelease.yaml index c97954608d..a935a4017c 100644 --- a/kubernetes/apps/home/go2rtc/app/helmrelease.yaml +++ b/kubernetes/apps/home/go2rtc/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/home/hajimari/app/helmrelease.yaml b/kubernetes/apps/home/hajimari/app/helmrelease.yaml index b2534b6f92..9541d133d4 100644 --- a/kubernetes/apps/home/hajimari/app/helmrelease.yaml +++ b/kubernetes/apps/home/hajimari/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 2.0.2 sourceRef: kind: HelmRepository - name: hajimari-charts + name: hajimari namespace: flux-system install: remediation: diff --git a/kubernetes/apps/home/home-assistant/app/helmrelease.yaml b/kubernetes/apps/home/home-assistant/app/helmrelease.yaml index 32a3fc6913..8b1539fc11 100644 --- a/kubernetes/apps/home/home-assistant/app/helmrelease.yaml +++ b/kubernetes/apps/home/home-assistant/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/home/home-assistant/app/volsync.yaml b/kubernetes/apps/home/home-assistant/app/volsync.yaml index 82dce17dda..065f25714c 100644 --- a/kubernetes/apps/home/home-assistant/app/volsync.yaml +++ b/kubernetes/apps/home/home-assistant/app/volsync.yaml @@ -51,7 +51,7 @@ spec: volumeSnapshotClassName: csi-ceph-block cacheAccessModes: ["ReadWriteOnce"] cacheCapacity: 8Gi - cacheStorageClassName: democratic-csi-local-hostpath + cacheStorageClassName: openebs-hostpath moverSecurityContext: runAsUser: 568 runAsGroup: 568 @@ -75,7 +75,7 @@ spec: volumeSnapshotClassName: csi-ceph-block cacheAccessModes: ["ReadWriteOnce"] cacheCapacity: 8Gi - cacheStorageClassName: democratic-csi-local-hostpath + cacheStorageClassName: openebs-hostpath moverSecurityContext: runAsUser: 568 runAsGroup: 568 diff --git a/kubernetes/apps/home/miniflux/app/helmrelease.yaml b/kubernetes/apps/home/miniflux/app/helmrelease.yaml index 974b2728e0..96fee2cc87 100644 --- a/kubernetes/apps/home/miniflux/app/helmrelease.yaml +++ b/kubernetes/apps/home/miniflux/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/home/node-red/app/helmrelease.yaml b/kubernetes/apps/home/node-red/app/helmrelease.yaml index 0123eb3e05..22f296c1e9 100644 --- a/kubernetes/apps/home/node-red/app/helmrelease.yaml +++ b/kubernetes/apps/home/node-red/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/home/node-red/app/volsync.yaml b/kubernetes/apps/home/node-red/app/volsync.yaml index bc3e9a1df3..50d1ae0dd8 100644 --- a/kubernetes/apps/home/node-red/app/volsync.yaml +++ b/kubernetes/apps/home/node-red/app/volsync.yaml @@ -51,11 +51,11 @@ spec: volumeSnapshotClassName: csi-ceph-block cacheAccessModes: ["ReadWriteOnce"] cacheCapacity: 8Gi - cacheStorageClassName: democratic-csi-local-hostpath + cacheStorageClassName: openebs-hostpath moverSecurityContext: - runAsUser: 568 - runAsGroup: 568 - fsGroup: 568 + runAsUser: 1000 + runAsGroup: 1000 + fsGroup: 1000 capacity: 1Gi # must match the PersistentVolumeClaim `.resources.requests.storage` size above --- apiVersion: volsync.backube/v1alpha1 @@ -75,7 +75,7 @@ spec: volumeSnapshotClassName: csi-ceph-block cacheAccessModes: ["ReadWriteOnce"] cacheCapacity: 8Gi - cacheStorageClassName: democratic-csi-local-hostpath + cacheStorageClassName: openebs-hostpath moverSecurityContext: runAsUser: 1000 runAsGroup: 1000 diff --git a/kubernetes/apps/home/thelounge/app/helmrelease.yaml b/kubernetes/apps/home/thelounge/app/helmrelease.yaml index bf6749efdd..e7741e70d8 100644 --- a/kubernetes/apps/home/thelounge/app/helmrelease.yaml +++ b/kubernetes/apps/home/thelounge/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/home/thelounge/app/volsync.yaml b/kubernetes/apps/home/thelounge/app/volsync.yaml index ef3e4bb102..1173c532cf 100644 --- a/kubernetes/apps/home/thelounge/app/volsync.yaml +++ b/kubernetes/apps/home/thelounge/app/volsync.yaml @@ -51,7 +51,7 @@ spec: volumeSnapshotClassName: csi-ceph-block cacheAccessModes: ["ReadWriteOnce"] cacheCapacity: 8Gi - cacheStorageClassName: democratic-csi-local-hostpath + cacheStorageClassName: openebs-hostpath moverSecurityContext: runAsUser: 568 runAsGroup: 568 @@ -75,7 +75,7 @@ spec: volumeSnapshotClassName: csi-ceph-block cacheAccessModes: ["ReadWriteOnce"] cacheCapacity: 8Gi - cacheStorageClassName: democratic-csi-local-hostpath + cacheStorageClassName: openebs-hostpath moverSecurityContext: runAsUser: 568 runAsGroup: 568 diff --git a/kubernetes/apps/home/zigbee2mqtt/app/helmrelease.yaml b/kubernetes/apps/home/zigbee2mqtt/app/helmrelease.yaml index 414dea7506..7fb6576af6 100644 --- a/kubernetes/apps/home/zigbee2mqtt/app/helmrelease.yaml +++ b/kubernetes/apps/home/zigbee2mqtt/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/home/zigbee2mqtt/app/volsync.yaml b/kubernetes/apps/home/zigbee2mqtt/app/volsync.yaml index 459530e8ec..164d763a41 100644 --- a/kubernetes/apps/home/zigbee2mqtt/app/volsync.yaml +++ b/kubernetes/apps/home/zigbee2mqtt/app/volsync.yaml @@ -51,7 +51,7 @@ spec: volumeSnapshotClassName: csi-ceph-block cacheAccessModes: ["ReadWriteOnce"] cacheCapacity: 8Gi - cacheStorageClassName: democratic-csi-local-hostpath + cacheStorageClassName: openebs-hostpath moverSecurityContext: runAsUser: 568 runAsGroup: 568 @@ -75,7 +75,7 @@ spec: volumeSnapshotClassName: csi-ceph-block cacheAccessModes: ["ReadWriteOnce"] cacheCapacity: 8Gi - cacheStorageClassName: democratic-csi-local-hostpath + cacheStorageClassName: openebs-hostpath moverSecurityContext: runAsUser: 568 runAsGroup: 568 diff --git a/kubernetes/apps/kube-system/cilium/app/helmrelease.yaml b/kubernetes/apps/kube-system/cilium/app/helmrelease.yaml index bec25e2142..b898af75ea 100644 --- a/kubernetes/apps/kube-system/cilium/app/helmrelease.yaml +++ b/kubernetes/apps/kube-system/cilium/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 1.16.3 sourceRef: kind: HelmRepository - name: cilium-charts + name: cilium namespace: flux-system install: remediation: diff --git a/kubernetes/apps/kube-system/cilium/app/resources/values.yaml b/kubernetes/apps/kube-system/cilium/app/resources/values.yaml index ce402f3ac4..706f9cf962 100644 --- a/kubernetes/apps/kube-system/cilium/app/resources/values.yaml +++ b/kubernetes/apps/kube-system/cilium/app/resources/values.yaml @@ -17,7 +17,7 @@ cluster: name: main cni: exclusive: false -devices: eth+ +devices: bond+ endpointRoutes: enabled: true envoy: diff --git a/kubernetes/apps/kube-system/cilium/configs/l2.yaml b/kubernetes/apps/kube-system/cilium/configs/l2.yaml index 4a91c4cfe8..782c9d9b78 100644 --- a/kubernetes/apps/kube-system/cilium/configs/l2.yaml +++ b/kubernetes/apps/kube-system/cilium/configs/l2.yaml @@ -6,7 +6,7 @@ metadata: spec: loadBalancerIPs: true interfaces: - - eth0.20 + - bond0.20 nodeSelector: matchLabels: kubernetes.io/os: linux diff --git a/kubernetes/apps/kube-system/coredns/app/helmrelease.yaml b/kubernetes/apps/kube-system/coredns/app/helmrelease.yaml index daa3008e62..eefa53dc45 100644 --- a/kubernetes/apps/kube-system/coredns/app/helmrelease.yaml +++ b/kubernetes/apps/kube-system/coredns/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 1.36.1 sourceRef: kind: HelmRepository - name: coredns-charts + name: coredns namespace: flux-system install: remediation: diff --git a/kubernetes/apps/kube-system/descheduler/app/helmrelease.yaml b/kubernetes/apps/kube-system/descheduler/app/helmrelease.yaml index 4ce79e9338..0d1274958a 100644 --- a/kubernetes/apps/kube-system/descheduler/app/helmrelease.yaml +++ b/kubernetes/apps/kube-system/descheduler/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 0.31.0 sourceRef: kind: HelmRepository - name: kubernetes-sigs-descheduler-charts + name: kubernetes-sigs-descheduler namespace: flux-system install: remediation: diff --git a/kubernetes/apps/kube-system/fstrim/app/helmrelease.yaml b/kubernetes/apps/kube-system/fstrim/app/helmrelease.yaml index 9df25ab0ff..832316d8d1 100644 --- a/kubernetes/apps/kube-system/fstrim/app/helmrelease.yaml +++ b/kubernetes/apps/kube-system/fstrim/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/kube-system/generic-device-plugin/app/helmrelease.yaml b/kubernetes/apps/kube-system/generic-device-plugin/app/helmrelease.yaml index d93044c7d0..68dda0ca2b 100644 --- a/kubernetes/apps/kube-system/generic-device-plugin/app/helmrelease.yaml +++ b/kubernetes/apps/kube-system/generic-device-plugin/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/kube-system/intel-device-plugin/app/helmrelease.yaml b/kubernetes/apps/kube-system/intel-device-plugin/app/helmrelease.yaml index 7f301aa6f5..8410753712 100644 --- a/kubernetes/apps/kube-system/intel-device-plugin/app/helmrelease.yaml +++ b/kubernetes/apps/kube-system/intel-device-plugin/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 0.31.1 sourceRef: kind: HelmRepository - name: intel-charts + name: intel namespace: flux-system install: crds: CreateReplace diff --git a/kubernetes/apps/kube-system/intel-device-plugin/gpu/helmrelease.yaml b/kubernetes/apps/kube-system/intel-device-plugin/gpu/helmrelease.yaml index e1ee89f785..25d5ef7a18 100644 --- a/kubernetes/apps/kube-system/intel-device-plugin/gpu/helmrelease.yaml +++ b/kubernetes/apps/kube-system/intel-device-plugin/gpu/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 0.31.1 sourceRef: kind: HelmRepository - name: intel-charts + name: intel namespace: flux-system install: remediation: diff --git a/kubernetes/apps/kube-system/kubelet-csr-approver/app/helmrelease.yaml b/kubernetes/apps/kube-system/kubelet-csr-approver/app/helmrelease.yaml index 2c49795f23..2adce70063 100644 --- a/kubernetes/apps/kube-system/kubelet-csr-approver/app/helmrelease.yaml +++ b/kubernetes/apps/kube-system/kubelet-csr-approver/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 1.2.3 sourceRef: kind: HelmRepository - name: postfinance-charts + name: postfinance namespace: flux-system install: remediation: diff --git a/kubernetes/apps/kube-system/kustomization.yaml b/kubernetes/apps/kube-system/kustomization.yaml index f24ba84dac..79bc9e75e4 100644 --- a/kubernetes/apps/kube-system/kustomization.yaml +++ b/kubernetes/apps/kube-system/kustomization.yaml @@ -9,7 +9,6 @@ resources: - ./generic-device-plugin/ks.yaml - ./intel-device-plugin/ks.yaml - ./kubelet-csr-approver/ks.yaml - - ./mbpfan/ks.yaml - ./metrics-server/ks.yaml - ./node-feature-discovery/ks.yaml - ./reloader/ks.yaml diff --git a/kubernetes/apps/kube-system/mbpfan/app/helmrelease.yaml b/kubernetes/apps/kube-system/mbpfan/app/helmrelease.yaml deleted file mode 100644 index c093361d99..0000000000 --- a/kubernetes/apps/kube-system/mbpfan/app/helmrelease.yaml +++ /dev/null @@ -1,63 +0,0 @@ ---- -apiVersion: helm.toolkit.fluxcd.io/v2 -kind: HelmRelease -metadata: - name: mbpfan -spec: - interval: 30m - chart: - spec: - chart: app-template - version: 3.5.1 - sourceRef: - kind: HelmRepository - name: bjw-s-charts - namespace: flux-system - install: - remediation: - retries: 3 - upgrade: - cleanupOnFail: true - remediation: - strategy: rollback - retries: 3 - values: - controllers: - mbpfan: - type: daemonset - annotations: - reloader.stakater.com/auto: "true" - containers: - app: - image: - repository: ghcr.io/buroa/mbpfan - tag: v0.2.5@sha256:a2228735a12154f4d5851d14fa455db69aa376ba5898e3781d01b9dd02c08b38 - resources: - requests: - cpu: 10m - limits: - memory: 128Mi - securityContext: - allowPrivilegeEscalation: false - readOnlyRootFilesystem: true - capabilities: - drop: - - ALL - defaultPodOptions: - nodeSelector: - apple.feature.node.kubernetes.io/t2: "true" - priorityClassName: system-node-critical - persistence: - config: - type: configMap - name: mbpfan-configmap - globalMounts: - - path: /etc/mbpfan.conf - subPath: mbpfan.conf - readOnly: true - run: - type: emptyDir - medium: Memory - sys: - type: hostPath - hostPath: /sys diff --git a/kubernetes/apps/kube-system/mbpfan/app/kustomization.yaml b/kubernetes/apps/kube-system/mbpfan/app/kustomization.yaml deleted file mode 100644 index 5b3706fb91..0000000000 --- a/kubernetes/apps/kube-system/mbpfan/app/kustomization.yaml +++ /dev/null @@ -1,11 +0,0 @@ ---- -apiVersion: kustomize.config.k8s.io/v1beta1 -kind: Kustomization -resources: - - ./helmrelease.yaml -configMapGenerator: - - name: mbpfan-configmap - files: - - ./resources/mbpfan.conf -generatorOptions: - disableNameSuffixHash: true diff --git a/kubernetes/apps/kube-system/mbpfan/app/resources/mbpfan.conf b/kubernetes/apps/kube-system/mbpfan/app/resources/mbpfan.conf deleted file mode 100644 index 9362c02a38..0000000000 --- a/kubernetes/apps/kube-system/mbpfan/app/resources/mbpfan.conf +++ /dev/null @@ -1,9 +0,0 @@ -[general] -low_temp = 45 # fans will run at the minimum speed -high_temp = 55 # fans will gradually increase speed -max_temp = 65 # fans will run at the maximum speed - -min_fan1_speed = 2500 # minimum fan speed -max_fan1_speed = 4400 # maximum fan speed - -polling_interval = 1 # poll every second diff --git a/kubernetes/apps/kube-system/metrics-server/app/helmrelease.yaml b/kubernetes/apps/kube-system/metrics-server/app/helmrelease.yaml index a142059048..6214cbc077 100644 --- a/kubernetes/apps/kube-system/metrics-server/app/helmrelease.yaml +++ b/kubernetes/apps/kube-system/metrics-server/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.12.2 sourceRef: kind: HelmRepository - name: metrics-server-charts + name: metrics-server namespace: flux-system install: remediation: diff --git a/kubernetes/apps/kube-system/node-feature-discovery/app/helmrelease.yaml b/kubernetes/apps/kube-system/node-feature-discovery/app/helmrelease.yaml index 2c87de8ef2..5ed149a060 100644 --- a/kubernetes/apps/kube-system/node-feature-discovery/app/helmrelease.yaml +++ b/kubernetes/apps/kube-system/node-feature-discovery/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 0.16.6 sourceRef: kind: HelmRepository - name: node-feature-discovery-charts + name: node-feature-discovery namespace: flux-system install: crds: CreateReplace diff --git a/kubernetes/apps/kube-system/node-feature-discovery/features/apple-t2.yaml b/kubernetes/apps/kube-system/node-feature-discovery/features/apple-t2.yaml deleted file mode 100644 index 420a0b8474..0000000000 --- a/kubernetes/apps/kube-system/node-feature-discovery/features/apple-t2.yaml +++ /dev/null @@ -1,16 +0,0 @@ ---- -apiVersion: nfd.k8s-sigs.io/v1alpha1 -kind: NodeFeatureRule -metadata: - name: apple-t2-device -spec: - rules: - - # Apple Inc. T2 Bridge Controller - name: apple.t2 - labels: - apple.feature.node.kubernetes.io/t2: "true" - matchFeatures: - - feature: pci.device - matchExpressions: - vendor: { op: In, value: ["106b"] } - device: { op: In, value: ["1801"] } diff --git a/kubernetes/apps/kube-system/node-feature-discovery/features/google-coral.yaml b/kubernetes/apps/kube-system/node-feature-discovery/features/google-coral.yaml index 5894542df7..86e801ce21 100644 --- a/kubernetes/apps/kube-system/node-feature-discovery/features/google-coral.yaml +++ b/kubernetes/apps/kube-system/node-feature-discovery/features/google-coral.yaml @@ -5,8 +5,7 @@ metadata: name: google-coral-device spec: rules: - - # Google Coral USB Accelerator - name: google.coral + - name: google.coral labels: google.feature.node.kubernetes.io/coral: "true" matchFeatures: diff --git a/kubernetes/apps/kube-system/node-feature-discovery/features/intel-gpu.yaml b/kubernetes/apps/kube-system/node-feature-discovery/features/intel-gpu.yaml index cd97e6f40a..12d35ed491 100644 --- a/kubernetes/apps/kube-system/node-feature-discovery/features/intel-gpu.yaml +++ b/kubernetes/apps/kube-system/node-feature-discovery/features/intel-gpu.yaml @@ -5,7 +5,6 @@ metadata: name: intel-gpu-device spec: rules: - # Intel UHD Graphics 630 - name: intel.gpu labels: intel.feature.node.kubernetes.io/gpu: "true" @@ -13,4 +12,4 @@ spec: - feature: pci.device matchExpressions: vendor: { op: In, value: ["8086"] } - device: { op: In, value: ["3e9b"] } + class: { op: In, value: ["0300", "0380"] } diff --git a/kubernetes/apps/kube-system/node-feature-discovery/features/phoscon-conbee.yaml b/kubernetes/apps/kube-system/node-feature-discovery/features/phoscon-conbee.yaml index f63d5a8ea6..702902478d 100644 --- a/kubernetes/apps/kube-system/node-feature-discovery/features/phoscon-conbee.yaml +++ b/kubernetes/apps/kube-system/node-feature-discovery/features/phoscon-conbee.yaml @@ -5,8 +5,7 @@ metadata: name: phoscon-conbee-device spec: rules: - - # Phoscon ConBee II The Universal Zigbee USB Gateway - name: phoscon.conbee + - name: phoscon.conbee labels: phoscon.feature.node.kubernetes.io/conbee: "true" matchFeatures: diff --git a/kubernetes/apps/kube-system/reloader/app/helmrelease.yaml b/kubernetes/apps/kube-system/reloader/app/helmrelease.yaml index 76f5de5bdf..e0c6ea017a 100644 --- a/kubernetes/apps/kube-system/reloader/app/helmrelease.yaml +++ b/kubernetes/apps/kube-system/reloader/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 1.1.0 sourceRef: kind: HelmRepository - name: stakater-charts + name: stakater namespace: flux-system install: remediation: diff --git a/kubernetes/apps/kube-system/spegel/app/helmrelease.yaml b/kubernetes/apps/kube-system/spegel/app/helmrelease.yaml index a82cfe0317..65363af175 100644 --- a/kubernetes/apps/kube-system/spegel/app/helmrelease.yaml +++ b/kubernetes/apps/kube-system/spegel/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: v0.0.27 sourceRef: kind: HelmRepository - name: spegel-charts + name: spegel namespace: flux-system install: remediation: diff --git a/kubernetes/apps/kyverno/kyverno/app/helmrelease.yaml b/kubernetes/apps/kyverno/kyverno/app/helmrelease.yaml index 191eac56f0..6e62fecc86 100644 --- a/kubernetes/apps/kyverno/kyverno/app/helmrelease.yaml +++ b/kubernetes/apps/kyverno/kyverno/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.3.2 sourceRef: kind: HelmRepository - name: kyverno-charts + name: kyverno namespace: flux-system install: remediation: diff --git a/kubernetes/apps/media/autobrr/app/helmrelease.yaml b/kubernetes/apps/media/autobrr/app/helmrelease.yaml index 6e5aa9d524..fb8a6e0b81 100644 --- a/kubernetes/apps/media/autobrr/app/helmrelease.yaml +++ b/kubernetes/apps/media/autobrr/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/media/bazarr/app/helmrelease.yaml b/kubernetes/apps/media/bazarr/app/helmrelease.yaml index 95e8830b0d..abbec623ec 100644 --- a/kubernetes/apps/media/bazarr/app/helmrelease.yaml +++ b/kubernetes/apps/media/bazarr/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/media/bazarr/app/volsync.yaml b/kubernetes/apps/media/bazarr/app/volsync.yaml index 3430f1482f..81482b3434 100644 --- a/kubernetes/apps/media/bazarr/app/volsync.yaml +++ b/kubernetes/apps/media/bazarr/app/volsync.yaml @@ -51,7 +51,7 @@ spec: volumeSnapshotClassName: csi-ceph-block cacheAccessModes: ["ReadWriteOnce"] cacheCapacity: 8Gi - cacheStorageClassName: democratic-csi-local-hostpath + cacheStorageClassName: openebs-hostpath moverSecurityContext: runAsUser: 568 runAsGroup: 568 @@ -75,7 +75,7 @@ spec: volumeSnapshotClassName: csi-ceph-block cacheAccessModes: ["ReadWriteOnce"] cacheCapacity: 8Gi - cacheStorageClassName: democratic-csi-local-hostpath + cacheStorageClassName: openebs-hostpath moverSecurityContext: runAsUser: 568 runAsGroup: 568 diff --git a/kubernetes/apps/media/cross-seed/app/helmrelease.yaml b/kubernetes/apps/media/cross-seed/app/helmrelease.yaml index fe0451c671..135d1dda9f 100644 --- a/kubernetes/apps/media/cross-seed/app/helmrelease.yaml +++ b/kubernetes/apps/media/cross-seed/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/media/omegabrr/app/helmrelease.yaml b/kubernetes/apps/media/omegabrr/app/helmrelease.yaml index a7a317741b..a8cfe37b01 100644 --- a/kubernetes/apps/media/omegabrr/app/helmrelease.yaml +++ b/kubernetes/apps/media/omegabrr/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/media/overseerr/app/helmrelease.yaml b/kubernetes/apps/media/overseerr/app/helmrelease.yaml index 3a42935ac9..4dbdab0812 100644 --- a/kubernetes/apps/media/overseerr/app/helmrelease.yaml +++ b/kubernetes/apps/media/overseerr/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/media/overseerr/app/volsync.yaml b/kubernetes/apps/media/overseerr/app/volsync.yaml index ad99ddbbfb..2629511cff 100644 --- a/kubernetes/apps/media/overseerr/app/volsync.yaml +++ b/kubernetes/apps/media/overseerr/app/volsync.yaml @@ -51,7 +51,7 @@ spec: volumeSnapshotClassName: csi-ceph-block cacheAccessModes: ["ReadWriteOnce"] cacheCapacity: 8Gi - cacheStorageClassName: democratic-csi-local-hostpath + cacheStorageClassName: openebs-hostpath moverSecurityContext: runAsUser: 568 runAsGroup: 568 @@ -75,7 +75,7 @@ spec: volumeSnapshotClassName: csi-ceph-block cacheAccessModes: ["ReadWriteOnce"] cacheCapacity: 8Gi - cacheStorageClassName: democratic-csi-local-hostpath + cacheStorageClassName: openebs-hostpath moverSecurityContext: runAsUser: 568 runAsGroup: 568 diff --git a/kubernetes/apps/media/plex/app/helmrelease.yaml b/kubernetes/apps/media/plex/app/helmrelease.yaml index 6a938f07dc..68e2fb304e 100644 --- a/kubernetes/apps/media/plex/app/helmrelease.yaml +++ b/kubernetes/apps/media/plex/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/media/plex/app/volsync.yaml b/kubernetes/apps/media/plex/app/volsync.yaml index 356754d5a3..aaf7ec2262 100644 --- a/kubernetes/apps/media/plex/app/volsync.yaml +++ b/kubernetes/apps/media/plex/app/volsync.yaml @@ -51,7 +51,7 @@ spec: volumeSnapshotClassName: csi-ceph-block cacheAccessModes: ["ReadWriteOnce"] cacheCapacity: 8Gi - cacheStorageClassName: democratic-csi-local-hostpath + cacheStorageClassName: openebs-hostpath moverSecurityContext: runAsUser: 568 runAsGroup: 568 @@ -75,7 +75,7 @@ spec: volumeSnapshotClassName: csi-ceph-block cacheAccessModes: ["ReadWriteOnce"] cacheCapacity: 8Gi - cacheStorageClassName: democratic-csi-local-hostpath + cacheStorageClassName: openebs-hostpath moverSecurityContext: runAsUser: 568 runAsGroup: 568 diff --git a/kubernetes/apps/media/prowlarr/app/helmrelease.yaml b/kubernetes/apps/media/prowlarr/app/helmrelease.yaml index 6a5bd73932..fd7bb226fc 100644 --- a/kubernetes/apps/media/prowlarr/app/helmrelease.yaml +++ b/kubernetes/apps/media/prowlarr/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/media/qbittorrent/app/helmrelease.yaml b/kubernetes/apps/media/qbittorrent/app/helmrelease.yaml index af9d96593d..f965d68240 100644 --- a/kubernetes/apps/media/qbittorrent/app/helmrelease.yaml +++ b/kubernetes/apps/media/qbittorrent/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/media/qbittorrent/app/volsync.yaml b/kubernetes/apps/media/qbittorrent/app/volsync.yaml index 3c5742101c..b8494df4a6 100644 --- a/kubernetes/apps/media/qbittorrent/app/volsync.yaml +++ b/kubernetes/apps/media/qbittorrent/app/volsync.yaml @@ -51,7 +51,7 @@ spec: volumeSnapshotClassName: csi-ceph-filesystem cacheAccessModes: ["ReadWriteOnce"] cacheCapacity: 8Gi - cacheStorageClassName: democratic-csi-local-hostpath + cacheStorageClassName: openebs-hostpath moverSecurityContext: runAsUser: 568 runAsGroup: 568 @@ -75,7 +75,7 @@ spec: volumeSnapshotClassName: csi-ceph-filesystem cacheAccessModes: ["ReadWriteOnce"] cacheCapacity: 8Gi - cacheStorageClassName: democratic-csi-local-hostpath + cacheStorageClassName: openebs-hostpath moverSecurityContext: runAsUser: 568 runAsGroup: 568 diff --git a/kubernetes/apps/media/qbittorrent/tools/qbtools/helmrelease.yaml b/kubernetes/apps/media/qbittorrent/tools/qbtools/helmrelease.yaml index 103c5d8f1f..174c1fd9cf 100644 --- a/kubernetes/apps/media/qbittorrent/tools/qbtools/helmrelease.yaml +++ b/kubernetes/apps/media/qbittorrent/tools/qbtools/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/media/radarr/app/helmrelease.yaml b/kubernetes/apps/media/radarr/app/helmrelease.yaml index 0bd854226d..6f3bd214ae 100644 --- a/kubernetes/apps/media/radarr/app/helmrelease.yaml +++ b/kubernetes/apps/media/radarr/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/media/recyclarr/app/helmrelease.yaml b/kubernetes/apps/media/recyclarr/app/helmrelease.yaml index bc29670a71..eafc545384 100644 --- a/kubernetes/apps/media/recyclarr/app/helmrelease.yaml +++ b/kubernetes/apps/media/recyclarr/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/media/recyclarr/app/volsync.yaml b/kubernetes/apps/media/recyclarr/app/volsync.yaml index d34d18598b..b8ee19255a 100644 --- a/kubernetes/apps/media/recyclarr/app/volsync.yaml +++ b/kubernetes/apps/media/recyclarr/app/volsync.yaml @@ -51,7 +51,7 @@ spec: volumeSnapshotClassName: csi-ceph-block cacheAccessModes: ["ReadWriteOnce"] cacheCapacity: 8Gi - cacheStorageClassName: democratic-csi-local-hostpath + cacheStorageClassName: openebs-hostpath moverSecurityContext: runAsUser: 568 runAsGroup: 568 @@ -75,7 +75,7 @@ spec: volumeSnapshotClassName: csi-ceph-block cacheAccessModes: ["ReadWriteOnce"] cacheCapacity: 8Gi - cacheStorageClassName: democratic-csi-local-hostpath + cacheStorageClassName: openebs-hostpath moverSecurityContext: runAsUser: 568 runAsGroup: 568 diff --git a/kubernetes/apps/media/sabnzbd/app/helmrelease.yaml b/kubernetes/apps/media/sabnzbd/app/helmrelease.yaml index b36d9f3f92..349f5f9303 100644 --- a/kubernetes/apps/media/sabnzbd/app/helmrelease.yaml +++ b/kubernetes/apps/media/sabnzbd/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/media/sabnzbd/app/volsync.yaml b/kubernetes/apps/media/sabnzbd/app/volsync.yaml index 26d2066cba..a09fa9c3a1 100644 --- a/kubernetes/apps/media/sabnzbd/app/volsync.yaml +++ b/kubernetes/apps/media/sabnzbd/app/volsync.yaml @@ -51,7 +51,7 @@ spec: volumeSnapshotClassName: csi-ceph-block cacheAccessModes: ["ReadWriteOnce"] cacheCapacity: 8Gi - cacheStorageClassName: democratic-csi-local-hostpath + cacheStorageClassName: openebs-hostpath moverSecurityContext: runAsUser: 568 runAsGroup: 568 @@ -75,7 +75,7 @@ spec: volumeSnapshotClassName: csi-ceph-block cacheAccessModes: ["ReadWriteOnce"] cacheCapacity: 8Gi - cacheStorageClassName: democratic-csi-local-hostpath + cacheStorageClassName: openebs-hostpath moverSecurityContext: runAsUser: 568 runAsGroup: 568 diff --git a/kubernetes/apps/media/sonarr/app/helmrelease.yaml b/kubernetes/apps/media/sonarr/app/helmrelease.yaml index 603c66003c..dc5cc6b5b3 100644 --- a/kubernetes/apps/media/sonarr/app/helmrelease.yaml +++ b/kubernetes/apps/media/sonarr/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/media/tautulli/app/helmrelease.yaml b/kubernetes/apps/media/tautulli/app/helmrelease.yaml index 7ca16a486e..6e9c5d57fc 100644 --- a/kubernetes/apps/media/tautulli/app/helmrelease.yaml +++ b/kubernetes/apps/media/tautulli/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/media/tautulli/app/volsync.yaml b/kubernetes/apps/media/tautulli/app/volsync.yaml index 08b7e36c4c..1839b60ee0 100644 --- a/kubernetes/apps/media/tautulli/app/volsync.yaml +++ b/kubernetes/apps/media/tautulli/app/volsync.yaml @@ -51,7 +51,7 @@ spec: volumeSnapshotClassName: csi-ceph-block cacheAccessModes: ["ReadWriteOnce"] cacheCapacity: 8Gi - cacheStorageClassName: democratic-csi-local-hostpath + cacheStorageClassName: openebs-hostpath moverSecurityContext: runAsUser: 568 runAsGroup: 568 @@ -75,7 +75,7 @@ spec: volumeSnapshotClassName: csi-ceph-block cacheAccessModes: ["ReadWriteOnce"] cacheCapacity: 8Gi - cacheStorageClassName: democratic-csi-local-hostpath + cacheStorageClassName: openebs-hostpath moverSecurityContext: runAsUser: 568 runAsGroup: 568 diff --git a/kubernetes/apps/media/unpackerr/app/helmrelease.yaml b/kubernetes/apps/media/unpackerr/app/helmrelease.yaml index 2407b4b802..d94a00f092 100644 --- a/kubernetes/apps/media/unpackerr/app/helmrelease.yaml +++ b/kubernetes/apps/media/unpackerr/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/monitoring/exporters/blackbox-exporter/app/helmrelease.yaml b/kubernetes/apps/monitoring/exporters/blackbox-exporter/app/helmrelease.yaml index 6c0f37ec5d..0ea583ad3c 100644 --- a/kubernetes/apps/monitoring/exporters/blackbox-exporter/app/helmrelease.yaml +++ b/kubernetes/apps/monitoring/exporters/blackbox-exporter/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 9.0.1 sourceRef: kind: HelmRepository - name: prometheus-community-charts + name: prometheus-community namespace: flux-system install: remediation: diff --git a/kubernetes/apps/monitoring/exporters/mqtt-exporter/app/helmrelease.yaml b/kubernetes/apps/monitoring/exporters/mqtt-exporter/app/helmrelease.yaml index 671cd3553c..0a925f7ce1 100644 --- a/kubernetes/apps/monitoring/exporters/mqtt-exporter/app/helmrelease.yaml +++ b/kubernetes/apps/monitoring/exporters/mqtt-exporter/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/monitoring/exporters/overseerr-exporter/app/helmrelease.yaml b/kubernetes/apps/monitoring/exporters/overseerr-exporter/app/helmrelease.yaml index 308c32ddcc..b2aacded0d 100644 --- a/kubernetes/apps/monitoring/exporters/overseerr-exporter/app/helmrelease.yaml +++ b/kubernetes/apps/monitoring/exporters/overseerr-exporter/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/monitoring/exporters/prowlarr-exporter/app/helmrelease.yaml b/kubernetes/apps/monitoring/exporters/prowlarr-exporter/app/helmrelease.yaml index 3bed9e2aa5..5a1126548d 100644 --- a/kubernetes/apps/monitoring/exporters/prowlarr-exporter/app/helmrelease.yaml +++ b/kubernetes/apps/monitoring/exporters/prowlarr-exporter/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/monitoring/exporters/qbittorrent-exporter/app/helmrelease.yaml b/kubernetes/apps/monitoring/exporters/qbittorrent-exporter/app/helmrelease.yaml index 573480be83..cde2b81912 100644 --- a/kubernetes/apps/monitoring/exporters/qbittorrent-exporter/app/helmrelease.yaml +++ b/kubernetes/apps/monitoring/exporters/qbittorrent-exporter/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/monitoring/exporters/radarr-exporter/app/helmrelease.yaml b/kubernetes/apps/monitoring/exporters/radarr-exporter/app/helmrelease.yaml index d6a3b5b5f0..b7999f95da 100644 --- a/kubernetes/apps/monitoring/exporters/radarr-exporter/app/helmrelease.yaml +++ b/kubernetes/apps/monitoring/exporters/radarr-exporter/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/monitoring/exporters/sabnzbd-exporter/app/helmrelease.yaml b/kubernetes/apps/monitoring/exporters/sabnzbd-exporter/app/helmrelease.yaml index 11f17ea620..afbb5e9643 100644 --- a/kubernetes/apps/monitoring/exporters/sabnzbd-exporter/app/helmrelease.yaml +++ b/kubernetes/apps/monitoring/exporters/sabnzbd-exporter/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/monitoring/exporters/smartctl-exporter/app/helmrelease.yaml b/kubernetes/apps/monitoring/exporters/smartctl-exporter/app/helmrelease.yaml index 1720961cca..ab51f43e66 100644 --- a/kubernetes/apps/monitoring/exporters/smartctl-exporter/app/helmrelease.yaml +++ b/kubernetes/apps/monitoring/exporters/smartctl-exporter/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 0.10.0 sourceRef: kind: HelmRepository - name: prometheus-community-charts + name: prometheus-community namespace: flux-system install: remediation: diff --git a/kubernetes/apps/monitoring/exporters/snmp-exporter/app/helmrelease.yaml b/kubernetes/apps/monitoring/exporters/snmp-exporter/app/helmrelease.yaml index 7f6d5864b4..cf6770c2c2 100644 --- a/kubernetes/apps/monitoring/exporters/snmp-exporter/app/helmrelease.yaml +++ b/kubernetes/apps/monitoring/exporters/snmp-exporter/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 5.6.0 sourceRef: kind: HelmRepository - name: prometheus-community-charts + name: prometheus-community namespace: flux-system install: remediation: diff --git a/kubernetes/apps/monitoring/exporters/sonarr-exporter/app/helmrelease.yaml b/kubernetes/apps/monitoring/exporters/sonarr-exporter/app/helmrelease.yaml index 91d8d3a4e5..86c2956535 100644 --- a/kubernetes/apps/monitoring/exporters/sonarr-exporter/app/helmrelease.yaml +++ b/kubernetes/apps/monitoring/exporters/sonarr-exporter/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/monitoring/exporters/speedtest-exporter/app/helmrelease.yaml b/kubernetes/apps/monitoring/exporters/speedtest-exporter/app/helmrelease.yaml index c97cbb6c88..9eaf3d0722 100644 --- a/kubernetes/apps/monitoring/exporters/speedtest-exporter/app/helmrelease.yaml +++ b/kubernetes/apps/monitoring/exporters/speedtest-exporter/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/monitoring/exporters/tautulli-exporter/app/helmrelease.yaml b/kubernetes/apps/monitoring/exporters/tautulli-exporter/app/helmrelease.yaml index afa691c893..cac6ef03e4 100644 --- a/kubernetes/apps/monitoring/exporters/tautulli-exporter/app/helmrelease.yaml +++ b/kubernetes/apps/monitoring/exporters/tautulli-exporter/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/monitoring/gatus/app/helmrelease.yaml b/kubernetes/apps/monitoring/gatus/app/helmrelease.yaml index 8e4bb1986f..78fbb5972b 100644 --- a/kubernetes/apps/monitoring/gatus/app/helmrelease.yaml +++ b/kubernetes/apps/monitoring/gatus/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/monitoring/grafana/app/helmrelease.yaml b/kubernetes/apps/monitoring/grafana/app/helmrelease.yaml index 5dc48005b5..186f8bd885 100644 --- a/kubernetes/apps/monitoring/grafana/app/helmrelease.yaml +++ b/kubernetes/apps/monitoring/grafana/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 8.5.11 sourceRef: kind: HelmRepository - name: grafana-charts + name: grafana namespace: flux-system install: remediation: diff --git a/kubernetes/apps/monitoring/karma/app/helmrelease.yaml b/kubernetes/apps/monitoring/karma/app/helmrelease.yaml index 0263168eb2..dcb70de9ac 100644 --- a/kubernetes/apps/monitoring/karma/app/helmrelease.yaml +++ b/kubernetes/apps/monitoring/karma/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/monitoring/kromgo/app/helmrelease.yaml b/kubernetes/apps/monitoring/kromgo/app/helmrelease.yaml index 45f835f908..d7e6e776a1 100644 --- a/kubernetes/apps/monitoring/kromgo/app/helmrelease.yaml +++ b/kubernetes/apps/monitoring/kromgo/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/monitoring/kube-prometheus-stack/app/helmrelease.yaml b/kubernetes/apps/monitoring/kube-prometheus-stack/app/helmrelease.yaml index 3e42fcccd1..b7e08fd6ad 100644 --- a/kubernetes/apps/monitoring/kube-prometheus-stack/app/helmrelease.yaml +++ b/kubernetes/apps/monitoring/kube-prometheus-stack/app/helmrelease.yaml @@ -12,7 +12,7 @@ spec: version: 65.5.1 sourceRef: kind: HelmRepository - name: prometheus-community-charts + name: prometheus-community namespace: flux-system install: crds: CreateReplace @@ -49,7 +49,7 @@ spec: storage: volumeClaimTemplate: spec: - storageClassName: democratic-csi-local-hostpath + storageClassName: openebs-hostpath resources: requests: storage: 1Gi @@ -123,7 +123,7 @@ spec: storageSpec: volumeClaimTemplate: spec: - storageClassName: democratic-csi-local-hostpath + storageClassName: openebs-hostpath resources: requests: storage: 20Gi diff --git a/kubernetes/apps/monitoring/kube-prometheus-stack/ks.yaml b/kubernetes/apps/monitoring/kube-prometheus-stack/ks.yaml index 7f41399ed6..b78c439245 100644 --- a/kubernetes/apps/monitoring/kube-prometheus-stack/ks.yaml +++ b/kubernetes/apps/monitoring/kube-prometheus-stack/ks.yaml @@ -10,8 +10,8 @@ spec: labels: app.kubernetes.io/name: *app dependsOn: + - name: openebs - name: external-secrets-stores - - name: democratic-csi-local-hostpath path: ./kubernetes/apps/monitoring/kube-prometheus-stack/app prune: true sourceRef: diff --git a/kubernetes/apps/monitoring/kube-prometheus-stack/tools/alertmanager-silencer/helmrelease.yaml b/kubernetes/apps/monitoring/kube-prometheus-stack/tools/alertmanager-silencer/helmrelease.yaml index 91a416d3b5..743830141e 100644 --- a/kubernetes/apps/monitoring/kube-prometheus-stack/tools/alertmanager-silencer/helmrelease.yaml +++ b/kubernetes/apps/monitoring/kube-prometheus-stack/tools/alertmanager-silencer/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/monitoring/loki/app/helmrelease.yaml b/kubernetes/apps/monitoring/loki/app/helmrelease.yaml index 3a4f2bcd15..ffea500bf1 100644 --- a/kubernetes/apps/monitoring/loki/app/helmrelease.yaml +++ b/kubernetes/apps/monitoring/loki/app/helmrelease.yaml @@ -12,7 +12,7 @@ spec: version: 6.18.0 sourceRef: kind: HelmRepository - name: grafana-charts + name: grafana namespace: flux-system install: crds: Skip @@ -85,7 +85,7 @@ spec: replicas: 3 persistence: size: 20Gi - storageClass: democratic-csi-local-hostpath + storageClass: openebs-hostpath gateway: replicas: 3 image: @@ -96,7 +96,7 @@ spec: replicas: 3 persistence: size: 20Gi - storageClass: democratic-csi-local-hostpath + storageClass: openebs-hostpath lokiCanary: enabled: false sidecar: diff --git a/kubernetes/apps/monitoring/loki/ks.yaml b/kubernetes/apps/monitoring/loki/ks.yaml index 00d584df9a..fcdeb58954 100644 --- a/kubernetes/apps/monitoring/loki/ks.yaml +++ b/kubernetes/apps/monitoring/loki/ks.yaml @@ -10,8 +10,8 @@ spec: labels: app.kubernetes.io/name: *app dependsOn: + - name: openebs - name: rook-ceph-cluster - - name: democratic-csi-local-hostpath path: ./kubernetes/apps/monitoring/loki/app prune: true sourceRef: diff --git a/kubernetes/apps/monitoring/thanos/app/helmrelease.yaml b/kubernetes/apps/monitoring/thanos/app/helmrelease.yaml index 1ee9b5437e..48c367191f 100644 --- a/kubernetes/apps/monitoring/thanos/app/helmrelease.yaml +++ b/kubernetes/apps/monitoring/thanos/app/helmrelease.yaml @@ -12,7 +12,7 @@ spec: version: 1.18.1 sourceRef: kind: HelmRepository - name: stevehipwell-charts + name: stevehipwell namespace: flux-system install: remediation: @@ -44,7 +44,7 @@ spec: - --retention.resolution-1h=60d persistence: &persistence enabled: true - storageClass: democratic-csi-local-hostpath + storageClass: openebs-hostpath size: 15Gi query: replicas: 3 diff --git a/kubernetes/apps/monitoring/thanos/ks.yaml b/kubernetes/apps/monitoring/thanos/ks.yaml index df3cf6d8be..1fddefc689 100644 --- a/kubernetes/apps/monitoring/thanos/ks.yaml +++ b/kubernetes/apps/monitoring/thanos/ks.yaml @@ -10,9 +10,9 @@ spec: labels: app.kubernetes.io/name: *app dependsOn: + - name: openebs - name: dragonfly-cluster - name: rook-ceph-cluster - - name: democratic-csi-local-hostpath path: ./kubernetes/apps/monitoring/thanos/app prune: true sourceRef: diff --git a/kubernetes/apps/monitoring/unpoller/app/helmrelease.yaml b/kubernetes/apps/monitoring/unpoller/app/helmrelease.yaml index 2cff8f6f41..aaa53490cc 100644 --- a/kubernetes/apps/monitoring/unpoller/app/helmrelease.yaml +++ b/kubernetes/apps/monitoring/unpoller/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/monitoring/vector/agent/helmrelease.yaml b/kubernetes/apps/monitoring/vector/agent/helmrelease.yaml index 44895e16a1..e56102ea17 100644 --- a/kubernetes/apps/monitoring/vector/agent/helmrelease.yaml +++ b/kubernetes/apps/monitoring/vector/agent/helmrelease.yaml @@ -12,7 +12,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/monitoring/vector/aggregator/helmrelease.yaml b/kubernetes/apps/monitoring/vector/aggregator/helmrelease.yaml index dfe32577fe..186b695d7c 100644 --- a/kubernetes/apps/monitoring/vector/aggregator/helmrelease.yaml +++ b/kubernetes/apps/monitoring/vector/aggregator/helmrelease.yaml @@ -12,7 +12,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/networking/cloudflared/app/helmrelease.yaml b/kubernetes/apps/networking/cloudflared/app/helmrelease.yaml index b33484dbd6..31e20cfe4e 100644 --- a/kubernetes/apps/networking/cloudflared/app/helmrelease.yaml +++ b/kubernetes/apps/networking/cloudflared/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/networking/echo-server/app/helmrelease.yaml b/kubernetes/apps/networking/echo-server/app/helmrelease.yaml index ee5ae6b7f8..867101fa87 100644 --- a/kubernetes/apps/networking/echo-server/app/helmrelease.yaml +++ b/kubernetes/apps/networking/echo-server/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/networking/external-dns/cloudflare/helmrelease.yaml b/kubernetes/apps/networking/external-dns/cloudflare/helmrelease.yaml index f2c9f69c24..65e9ba2fd3 100644 --- a/kubernetes/apps/networking/external-dns/cloudflare/helmrelease.yaml +++ b/kubernetes/apps/networking/external-dns/cloudflare/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 1.15.0 sourceRef: kind: HelmRepository - name: external-dns-charts + name: external-dns namespace: flux-system install: crds: CreateReplace diff --git a/kubernetes/apps/networking/external-dns/unifi/helmrelease.yaml b/kubernetes/apps/networking/external-dns/unifi/helmrelease.yaml index 0f286c4458..0c823fa3f8 100644 --- a/kubernetes/apps/networking/external-dns/unifi/helmrelease.yaml +++ b/kubernetes/apps/networking/external-dns/unifi/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 1.15.0 sourceRef: kind: HelmRepository - name: external-dns-charts + name: external-dns namespace: flux-system install: crds: CreateReplace diff --git a/kubernetes/apps/networking/multus/app/helmrelease.yaml b/kubernetes/apps/networking/multus/app/helmrelease.yaml index 14a3101f41..03a79baf43 100644 --- a/kubernetes/apps/networking/multus/app/helmrelease.yaml +++ b/kubernetes/apps/networking/multus/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 5.0.7 sourceRef: kind: HelmRepository - name: angelnu-charts + name: angelnu namespace: flux-system install: remediation: diff --git a/kubernetes/apps/networking/multus/networks/iot.yaml b/kubernetes/apps/networking/multus/networks/iot.yaml index 076b0072ee..1d306708df 100644 --- a/kubernetes/apps/networking/multus/networks/iot.yaml +++ b/kubernetes/apps/networking/multus/networks/iot.yaml @@ -11,7 +11,7 @@ spec: "plugins": [ { "type": "macvlan", - "master": "eth0.30", + "master": "bond0.30", "mode": "bridge", "ipam": { "type": "static", diff --git a/kubernetes/apps/networking/nginx/external/helmrelease.yaml b/kubernetes/apps/networking/nginx/external/helmrelease.yaml index d55dde8c60..aac96a5aa9 100644 --- a/kubernetes/apps/networking/nginx/external/helmrelease.yaml +++ b/kubernetes/apps/networking/nginx/external/helmrelease.yaml @@ -12,7 +12,7 @@ spec: version: 4.11.3 sourceRef: kind: HelmRepository - name: ingress-nginx-charts + name: ingress-nginx namespace: flux-system install: remediation: diff --git a/kubernetes/apps/networking/nginx/internal/helmrelease.yaml b/kubernetes/apps/networking/nginx/internal/helmrelease.yaml index f0eb523c0c..1b796eff7e 100644 --- a/kubernetes/apps/networking/nginx/internal/helmrelease.yaml +++ b/kubernetes/apps/networking/nginx/internal/helmrelease.yaml @@ -12,7 +12,7 @@ spec: version: 4.11.3 sourceRef: kind: HelmRepository - name: ingress-nginx-charts + name: ingress-nginx namespace: flux-system install: remediation: diff --git a/kubernetes/apps/networking/smtp-relay/app/helmrelease.yaml b/kubernetes/apps/networking/smtp-relay/app/helmrelease.yaml index 07356c7728..f28208a2bb 100644 --- a/kubernetes/apps/networking/smtp-relay/app/helmrelease.yaml +++ b/kubernetes/apps/networking/smtp-relay/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/networking/tailscale/app/helmrelease.yaml b/kubernetes/apps/networking/tailscale/app/helmrelease.yaml index f3da3cb9b9..aa1c437dc8 100644 --- a/kubernetes/apps/networking/tailscale/app/helmrelease.yaml +++ b/kubernetes/apps/networking/tailscale/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/democratic-csi/kustomization.yaml b/kubernetes/apps/openebs-system/kustomization.yaml similarity index 77% rename from kubernetes/apps/democratic-csi/kustomization.yaml rename to kubernetes/apps/openebs-system/kustomization.yaml index 40b307f6f0..9cd8d4e4f2 100644 --- a/kubernetes/apps/democratic-csi/kustomization.yaml +++ b/kubernetes/apps/openebs-system/kustomization.yaml @@ -3,4 +3,4 @@ apiVersion: kustomize.config.k8s.io/v1beta1 kind: Kustomization resources: - ./namespace.yaml - - ./democratic-csi/ks.yaml + - ./openebs/ks.yaml diff --git a/kubernetes/apps/democratic-csi/namespace.yaml b/kubernetes/apps/openebs-system/namespace.yaml similarity index 81% rename from kubernetes/apps/democratic-csi/namespace.yaml rename to kubernetes/apps/openebs-system/namespace.yaml index 17ee6a42c2..f173c6c9cd 100644 --- a/kubernetes/apps/democratic-csi/namespace.yaml +++ b/kubernetes/apps/openebs-system/namespace.yaml @@ -2,6 +2,6 @@ apiVersion: v1 kind: Namespace metadata: - name: democratic-csi + name: openebs-system labels: kustomize.toolkit.fluxcd.io/prune: disabled diff --git a/kubernetes/apps/openebs-system/openebs/app/helmrelease.yaml b/kubernetes/apps/openebs-system/openebs/app/helmrelease.yaml new file mode 100644 index 0000000000..a2a514c2d1 --- /dev/null +++ b/kubernetes/apps/openebs-system/openebs/app/helmrelease.yaml @@ -0,0 +1,53 @@ +--- +apiVersion: helm.toolkit.fluxcd.io/v2 +kind: HelmRelease +metadata: + name: openebs +spec: + interval: 30m + chart: + spec: + chart: openebs + version: 4.1.1 + sourceRef: + kind: HelmRepository + name: openebs + namespace: flux-system + install: + remediation: + retries: 3 + upgrade: + cleanupOnFail: true + remediation: + strategy: rollback + retries: 3 + values: + localpv-provisioner: + localpv: + image: + registry: quay.io/ + hostpathClass: + name: openebs-hostpath + helperPod: + image: + registry: quay.io/ + openebs-crds: + csi: + volumeSnapshots: + enabled: false + keep: false + zfs-localpv: + enabled: false + lvm-localpv: + enabled: false + mayastor: + enabled: false + engines: + local: + lvm: + enabled: false + zfs: + enabled: false + replicated: + mayastor: + enabled: false diff --git a/kubernetes/apps/democratic-csi/democratic-csi/local-hostpath/kustomization.yaml b/kubernetes/apps/openebs-system/openebs/app/kustomization.yaml similarity index 100% rename from kubernetes/apps/democratic-csi/democratic-csi/local-hostpath/kustomization.yaml rename to kubernetes/apps/openebs-system/openebs/app/kustomization.yaml diff --git a/kubernetes/apps/kube-system/mbpfan/ks.yaml b/kubernetes/apps/openebs-system/openebs/ks.yaml similarity index 66% rename from kubernetes/apps/kube-system/mbpfan/ks.yaml rename to kubernetes/apps/openebs-system/openebs/ks.yaml index c949027b5c..4785d6e9f4 100644 --- a/kubernetes/apps/kube-system/mbpfan/ks.yaml +++ b/kubernetes/apps/openebs-system/openebs/ks.yaml @@ -2,16 +2,14 @@ apiVersion: kustomize.toolkit.fluxcd.io/v1 kind: Kustomization metadata: - name: &app mbpfan + name: &app openebs namespace: flux-system spec: - targetNamespace: kube-system + targetNamespace: openebs-system commonMetadata: labels: app.kubernetes.io/name: *app - dependsOn: - - name: node-feature-discovery-features - path: ./kubernetes/apps/kube-system/mbpfan/app + path: ./kubernetes/apps/openebs-system/openebs/app prune: true sourceRef: kind: GitRepository diff --git a/kubernetes/apps/rook-ceph/rook-ceph/app/helmrelease.yaml b/kubernetes/apps/rook-ceph/rook-ceph/app/helmrelease.yaml index 8fbf7b2ae4..26e897405b 100644 --- a/kubernetes/apps/rook-ceph/rook-ceph/app/helmrelease.yaml +++ b/kubernetes/apps/rook-ceph/rook-ceph/app/helmrelease.yaml @@ -12,7 +12,7 @@ spec: version: v1.15.4 sourceRef: kind: HelmRepository - name: rook-ceph-charts + name: rook-ceph namespace: flux-system install: remediation: diff --git a/kubernetes/apps/rook-ceph/rook-ceph/cluster/helmrelease.yaml b/kubernetes/apps/rook-ceph/rook-ceph/cluster/helmrelease.yaml index ba76ae8025..877be2d709 100644 --- a/kubernetes/apps/rook-ceph/rook-ceph/cluster/helmrelease.yaml +++ b/kubernetes/apps/rook-ceph/rook-ceph/cluster/helmrelease.yaml @@ -12,7 +12,7 @@ spec: version: v1.15.4 sourceRef: kind: HelmRepository - name: rook-ceph-charts + name: rook-ceph namespace: flux-system install: remediation: @@ -108,18 +108,15 @@ spec: config: osdsPerDevice: "1" nodes: - - name: w0 + - name: m0 devices: - - name: /dev/disk/by-id/nvme-Samsung_SSD_970_EVO_Plus_2TB_S6S2NS0TC14873N - - name: /dev/disk/by-id/nvme-Samsung_SSD_970_EVO_Plus_2TB_S6S2NS0TC14865L - - name: w1 + - name: /dev/disk/by-id/nvme-XYZ-1 # TODO: UPDATE ME + - name: m1 devices: - - name: /dev/disk/by-id/nvme-Samsung_SSD_970_EVO_Plus_2TB_S6S2NS0TC14871H - - name: /dev/disk/by-id/nvme-Samsung_SSD_970_EVO_Plus_2TB_S6S2NS0W122087H - - name: w2 + - name: /dev/disk/by-id/nvme-XYZ-1 # TODO: UPDATE ME + - name: m2 devices: - - name: /dev/disk/by-id/nvme-Samsung_SSD_970_EVO_Plus_2TB_S6S2NS0W120772T - - name: /dev/disk/by-id/nvme-Samsung_SSD_970_EVO_Plus_2TB_S6S2NS0TC14864B + - name: /dev/disk/by-id/nvme-XYZ-1 # TODO: UPDATE ME cephBlockPools: - name: ceph-blockpool spec: diff --git a/kubernetes/apps/security/authelia/app/helmrelease.yaml b/kubernetes/apps/security/authelia/app/helmrelease.yaml index c77ef42f7c..0d6f167b14 100644 --- a/kubernetes/apps/security/authelia/app/helmrelease.yaml +++ b/kubernetes/apps/security/authelia/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/security/external-secrets/app/helmrelease.yaml b/kubernetes/apps/security/external-secrets/app/helmrelease.yaml index 946d0e021b..03be0ea0ff 100644 --- a/kubernetes/apps/security/external-secrets/app/helmrelease.yaml +++ b/kubernetes/apps/security/external-secrets/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 0.10.5 sourceRef: kind: HelmRepository - name: external-secrets-charts + name: external-secrets namespace: flux-system install: remediation: diff --git a/kubernetes/apps/security/glauth/app/helmrelease.yaml b/kubernetes/apps/security/glauth/app/helmrelease.yaml index 43d508e060..3cb176e6f1 100644 --- a/kubernetes/apps/security/glauth/app/helmrelease.yaml +++ b/kubernetes/apps/security/glauth/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/security/onepassword-connect/app/helmrelease.yaml b/kubernetes/apps/security/onepassword-connect/app/helmrelease.yaml index 2738a8ed12..92a34e6707 100644 --- a/kubernetes/apps/security/onepassword-connect/app/helmrelease.yaml +++ b/kubernetes/apps/security/onepassword-connect/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/system-upgrade/system-upgrade-controller/app/helmrelease.yaml b/kubernetes/apps/system-upgrade/system-upgrade-controller/app/helmrelease.yaml index 6438c0b3a4..6d2343c4d6 100644 --- a/kubernetes/apps/system-upgrade/system-upgrade-controller/app/helmrelease.yaml +++ b/kubernetes/apps/system-upgrade/system-upgrade-controller/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.5.1 sourceRef: kind: HelmRepository - name: bjw-s-charts + name: bjw-s namespace: flux-system install: remediation: diff --git a/kubernetes/apps/system-upgrade/system-upgrade-controller/ks.yaml b/kubernetes/apps/system-upgrade/system-upgrade-controller/ks.yaml index 42fd0dbd6c..3daddeed56 100644 --- a/kubernetes/apps/system-upgrade/system-upgrade-controller/ks.yaml +++ b/kubernetes/apps/system-upgrade/system-upgrade-controller/ks.yaml @@ -43,7 +43,8 @@ spec: timeout: 5m postBuild: substitute: + TALOS_SCHEMATIC_ID: de3b865124c5616da8084826167f8c0b0fbc9b905b146290db797024e84097fc + # renovate: depName=ghcr.io/siderolabs/installer datasource=docker + TALOS_VERSION: v1.8.2 # renovate: depName=ghcr.io/siderolabs/kubelet datasource=docker KUBERNETES_VERSION: v1.31.2 - # renovate: depName=ghcr.io/buroa/installer datasource=docker - TALOS_VERSION: v1.8.2 diff --git a/kubernetes/apps/system-upgrade/system-upgrade-controller/plans/talos.yaml b/kubernetes/apps/system-upgrade/system-upgrade-controller/plans/talos.yaml index 941b7d6fbf..3e02f68f89 100644 --- a/kubernetes/apps/system-upgrade/system-upgrade-controller/plans/talos.yaml +++ b/kubernetes/apps/system-upgrade/system-upgrade-controller/plans/talos.yaml @@ -14,8 +14,6 @@ spec: exclusive: true nodeSelector: matchExpressions: - - key: apple.feature.node.kubernetes.io/t2 - operator: Exists - key: feature.node.kubernetes.io/system-os_release.ID operator: In values: @@ -46,5 +44,5 @@ spec: args: - --nodes=$(NODE_IP) - upgrade - - --image=ghcr.io/buroa/installer:$(SYSTEM_UPGRADE_PLAN_LATEST_VERSION) + - --image=factory.talos.dev/installer/${TALOS_SCHEMATIC_ID}:$(SYSTEM_UPGRADE_PLAN_LATEST_VERSION) - --wait=false diff --git a/kubernetes/apps/volsync-system/snapshot-controller/app/helmrelease.yaml b/kubernetes/apps/volsync-system/snapshot-controller/app/helmrelease.yaml index 3e3ab85d7b..9914f077fb 100644 --- a/kubernetes/apps/volsync-system/snapshot-controller/app/helmrelease.yaml +++ b/kubernetes/apps/volsync-system/snapshot-controller/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 3.0.6 sourceRef: kind: HelmRepository - name: piraeus-charts + name: piraeus namespace: flux-system install: crds: CreateReplace diff --git a/kubernetes/apps/volsync-system/volsync/app/helmrelease.yaml b/kubernetes/apps/volsync-system/volsync/app/helmrelease.yaml index b37dfb9f74..f31a69dba7 100644 --- a/kubernetes/apps/volsync-system/volsync/app/helmrelease.yaml +++ b/kubernetes/apps/volsync-system/volsync/app/helmrelease.yaml @@ -11,7 +11,7 @@ spec: version: 0.10.0 sourceRef: kind: HelmRepository - name: backube-charts + name: backube namespace: flux-system install: remediation: diff --git a/kubernetes/flux/repositories/helm/actions-runner-controller-charts.yaml b/kubernetes/flux/repositories/helm/actions-runner-controller.yaml similarity index 82% rename from kubernetes/flux/repositories/helm/actions-runner-controller-charts.yaml rename to kubernetes/flux/repositories/helm/actions-runner-controller.yaml index 7b15878ffe..2fa30cf97c 100644 --- a/kubernetes/flux/repositories/helm/actions-runner-controller-charts.yaml +++ b/kubernetes/flux/repositories/helm/actions-runner-controller.yaml @@ -2,7 +2,7 @@ apiVersion: source.toolkit.fluxcd.io/v1 kind: HelmRepository metadata: - name: actions-runner-controller-charts + name: actions-runner-controller namespace: flux-system spec: type: oci diff --git a/kubernetes/flux/repositories/helm/angelnu-charts.yaml b/kubernetes/flux/repositories/helm/angelnu.yaml similarity index 87% rename from kubernetes/flux/repositories/helm/angelnu-charts.yaml rename to kubernetes/flux/repositories/helm/angelnu.yaml index da114f2882..b910ea0d69 100644 --- a/kubernetes/flux/repositories/helm/angelnu-charts.yaml +++ b/kubernetes/flux/repositories/helm/angelnu.yaml @@ -2,7 +2,7 @@ apiVersion: source.toolkit.fluxcd.io/v1 kind: HelmRepository metadata: - name: angelnu-charts + name: angelnu namespace: flux-system spec: interval: 2h diff --git a/kubernetes/flux/repositories/helm/backube-charts.yaml b/kubernetes/flux/repositories/helm/backube.yaml similarity index 87% rename from kubernetes/flux/repositories/helm/backube-charts.yaml rename to kubernetes/flux/repositories/helm/backube.yaml index 558f144c95..1863042a5c 100644 --- a/kubernetes/flux/repositories/helm/backube-charts.yaml +++ b/kubernetes/flux/repositories/helm/backube.yaml @@ -2,7 +2,7 @@ apiVersion: source.toolkit.fluxcd.io/v1 kind: HelmRepository metadata: - name: backube-charts + name: backube namespace: flux-system spec: interval: 2h diff --git a/kubernetes/flux/repositories/helm/bjw-s-charts.yaml b/kubernetes/flux/repositories/helm/bjw-s.yaml similarity index 88% rename from kubernetes/flux/repositories/helm/bjw-s-charts.yaml rename to kubernetes/flux/repositories/helm/bjw-s.yaml index 3da16d3a6b..a40b5d7789 100644 --- a/kubernetes/flux/repositories/helm/bjw-s-charts.yaml +++ b/kubernetes/flux/repositories/helm/bjw-s.yaml @@ -2,7 +2,7 @@ apiVersion: source.toolkit.fluxcd.io/v1 kind: HelmRepository metadata: - name: bjw-s-charts + name: bjw-s namespace: flux-system spec: type: oci diff --git a/kubernetes/flux/repositories/helm/cilium-charts.yaml b/kubernetes/flux/repositories/helm/cilium.yaml similarity index 87% rename from kubernetes/flux/repositories/helm/cilium-charts.yaml rename to kubernetes/flux/repositories/helm/cilium.yaml index 6630a9d383..dbe02e2161 100644 --- a/kubernetes/flux/repositories/helm/cilium-charts.yaml +++ b/kubernetes/flux/repositories/helm/cilium.yaml @@ -2,7 +2,7 @@ apiVersion: source.toolkit.fluxcd.io/v1 kind: HelmRepository metadata: - name: cilium-charts + name: cilium namespace: flux-system spec: interval: 2h diff --git a/kubernetes/flux/repositories/helm/cloudnative-pg-charts.yaml b/kubernetes/flux/repositories/helm/cloudnative-pg.yaml similarity index 84% rename from kubernetes/flux/repositories/helm/cloudnative-pg-charts.yaml rename to kubernetes/flux/repositories/helm/cloudnative-pg.yaml index a039ef86e4..bb5337cbb1 100644 --- a/kubernetes/flux/repositories/helm/cloudnative-pg-charts.yaml +++ b/kubernetes/flux/repositories/helm/cloudnative-pg.yaml @@ -2,7 +2,7 @@ apiVersion: source.toolkit.fluxcd.io/v1 kind: HelmRepository metadata: - name: cloudnative-pg-charts + name: cloudnative-pg namespace: flux-system spec: interval: 2h diff --git a/kubernetes/flux/repositories/helm/coredns-charts.yaml b/kubernetes/flux/repositories/helm/coredns.yaml similarity index 87% rename from kubernetes/flux/repositories/helm/coredns-charts.yaml rename to kubernetes/flux/repositories/helm/coredns.yaml index 00706b5754..2622d03df2 100644 --- a/kubernetes/flux/repositories/helm/coredns-charts.yaml +++ b/kubernetes/flux/repositories/helm/coredns.yaml @@ -2,7 +2,7 @@ apiVersion: source.toolkit.fluxcd.io/v1 kind: HelmRepository metadata: - name: coredns-charts + name: coredns namespace: flux-system spec: interval: 2h diff --git a/kubernetes/flux/repositories/helm/deliveryhero-charts.yaml b/kubernetes/flux/repositories/helm/deliveryhero.yaml similarity index 85% rename from kubernetes/flux/repositories/helm/deliveryhero-charts.yaml rename to kubernetes/flux/repositories/helm/deliveryhero.yaml index c5be937fd9..93a4ccc1b1 100644 --- a/kubernetes/flux/repositories/helm/deliveryhero-charts.yaml +++ b/kubernetes/flux/repositories/helm/deliveryhero.yaml @@ -2,7 +2,7 @@ apiVersion: source.toolkit.fluxcd.io/v1 kind: HelmRepository metadata: - name: deliveryhero-charts + name: deliveryhero namespace: flux-system spec: interval: 2h diff --git a/kubernetes/flux/repositories/helm/democratic-csi-charts.yaml b/kubernetes/flux/repositories/helm/democratic-csi-charts.yaml deleted file mode 100644 index a138e21792..0000000000 --- a/kubernetes/flux/repositories/helm/democratic-csi-charts.yaml +++ /dev/null @@ -1,9 +0,0 @@ ---- -apiVersion: source.toolkit.fluxcd.io/v1 -kind: HelmRepository -metadata: - name: democratic-csi-charts - namespace: flux-system -spec: - interval: 2h - url: https://democratic-csi.github.io/charts/ diff --git a/kubernetes/flux/repositories/helm/emqx-charts.yaml b/kubernetes/flux/repositories/helm/emqx.yaml similarity index 88% rename from kubernetes/flux/repositories/helm/emqx-charts.yaml rename to kubernetes/flux/repositories/helm/emqx.yaml index 159aba5969..8b271d29f1 100644 --- a/kubernetes/flux/repositories/helm/emqx-charts.yaml +++ b/kubernetes/flux/repositories/helm/emqx.yaml @@ -2,7 +2,7 @@ apiVersion: source.toolkit.fluxcd.io/v1 kind: HelmRepository metadata: - name: emqx-charts + name: emqx namespace: flux-system spec: interval: 2h diff --git a/kubernetes/flux/repositories/helm/external-dns-charts.yaml b/kubernetes/flux/repositories/helm/external-dns.yaml similarity index 86% rename from kubernetes/flux/repositories/helm/external-dns-charts.yaml rename to kubernetes/flux/repositories/helm/external-dns.yaml index ad0b28dad9..c9429b32f0 100644 --- a/kubernetes/flux/repositories/helm/external-dns-charts.yaml +++ b/kubernetes/flux/repositories/helm/external-dns.yaml @@ -2,7 +2,7 @@ apiVersion: source.toolkit.fluxcd.io/v1 kind: HelmRepository metadata: - name: external-dns-charts + name: external-dns namespace: flux-system spec: interval: 2h diff --git a/kubernetes/flux/repositories/helm/external-secrets-charts.yaml b/kubernetes/flux/repositories/helm/external-secrets.yaml similarity index 83% rename from kubernetes/flux/repositories/helm/external-secrets-charts.yaml rename to kubernetes/flux/repositories/helm/external-secrets.yaml index 5f06b51f77..aec5cc55e0 100644 --- a/kubernetes/flux/repositories/helm/external-secrets-charts.yaml +++ b/kubernetes/flux/repositories/helm/external-secrets.yaml @@ -2,7 +2,7 @@ apiVersion: source.toolkit.fluxcd.io/v1 kind: HelmRepository metadata: - name: external-secrets-charts + name: external-secrets namespace: flux-system spec: interval: 2h diff --git a/kubernetes/flux/repositories/helm/fairwinds-charts.yaml b/kubernetes/flux/repositories/helm/fairwinds.yaml similarity index 86% rename from kubernetes/flux/repositories/helm/fairwinds-charts.yaml rename to kubernetes/flux/repositories/helm/fairwinds.yaml index 9f943d16c0..eb9e6329f6 100644 --- a/kubernetes/flux/repositories/helm/fairwinds-charts.yaml +++ b/kubernetes/flux/repositories/helm/fairwinds.yaml @@ -2,7 +2,7 @@ apiVersion: source.toolkit.fluxcd.io/v1 kind: HelmRepository metadata: - name: fairwinds-charts + name: fairwinds namespace: flux-system spec: interval: 2h diff --git a/kubernetes/flux/repositories/helm/grafana-charts.yaml b/kubernetes/flux/repositories/helm/grafana.yaml similarity index 87% rename from kubernetes/flux/repositories/helm/grafana-charts.yaml rename to kubernetes/flux/repositories/helm/grafana.yaml index 4b98b27a41..a3220b7675 100644 --- a/kubernetes/flux/repositories/helm/grafana-charts.yaml +++ b/kubernetes/flux/repositories/helm/grafana.yaml @@ -2,7 +2,7 @@ apiVersion: source.toolkit.fluxcd.io/v1 kind: HelmRepository metadata: - name: grafana-charts + name: grafana namespace: flux-system spec: interval: 2h diff --git a/kubernetes/flux/repositories/helm/hajimari-charts.yaml b/kubernetes/flux/repositories/helm/hajimari.yaml similarity index 86% rename from kubernetes/flux/repositories/helm/hajimari-charts.yaml rename to kubernetes/flux/repositories/helm/hajimari.yaml index 0548ea268e..7de8ad6c66 100644 --- a/kubernetes/flux/repositories/helm/hajimari-charts.yaml +++ b/kubernetes/flux/repositories/helm/hajimari.yaml @@ -2,7 +2,7 @@ apiVersion: source.toolkit.fluxcd.io/v1 kind: HelmRepository metadata: - name: hajimari-charts + name: hajimari namespace: flux-system spec: interval: 2h diff --git a/kubernetes/flux/repositories/helm/ingress-nginx-charts.yaml b/kubernetes/flux/repositories/helm/ingress-nginx.yaml similarity index 85% rename from kubernetes/flux/repositories/helm/ingress-nginx-charts.yaml rename to kubernetes/flux/repositories/helm/ingress-nginx.yaml index eef8dbbc11..dafda6db18 100644 --- a/kubernetes/flux/repositories/helm/ingress-nginx-charts.yaml +++ b/kubernetes/flux/repositories/helm/ingress-nginx.yaml @@ -2,7 +2,7 @@ apiVersion: source.toolkit.fluxcd.io/v1 kind: HelmRepository metadata: - name: ingress-nginx-charts + name: ingress-nginx namespace: flux-system spec: interval: 2h diff --git a/kubernetes/flux/repositories/helm/intel-charts.yaml b/kubernetes/flux/repositories/helm/intel.yaml similarity index 88% rename from kubernetes/flux/repositories/helm/intel-charts.yaml rename to kubernetes/flux/repositories/helm/intel.yaml index 3db750cbaf..1eb82c68cf 100644 --- a/kubernetes/flux/repositories/helm/intel-charts.yaml +++ b/kubernetes/flux/repositories/helm/intel.yaml @@ -2,7 +2,7 @@ apiVersion: source.toolkit.fluxcd.io/v1 kind: HelmRepository metadata: - name: intel-charts + name: intel namespace: flux-system spec: interval: 2h diff --git a/kubernetes/flux/repositories/helm/jetstack-charts.yaml b/kubernetes/flux/repositories/helm/jetstack.yaml similarity index 86% rename from kubernetes/flux/repositories/helm/jetstack-charts.yaml rename to kubernetes/flux/repositories/helm/jetstack.yaml index 06c630f514..ac46f93d79 100644 --- a/kubernetes/flux/repositories/helm/jetstack-charts.yaml +++ b/kubernetes/flux/repositories/helm/jetstack.yaml @@ -2,7 +2,7 @@ apiVersion: source.toolkit.fluxcd.io/v1 kind: HelmRepository metadata: - name: jetstack-charts + name: jetstack namespace: flux-system spec: interval: 2h diff --git a/kubernetes/flux/repositories/helm/kubernetes-sigs-descheduler-charts.yaml b/kubernetes/flux/repositories/helm/kubernetes-sigs-descheduler.yaml similarity index 80% rename from kubernetes/flux/repositories/helm/kubernetes-sigs-descheduler-charts.yaml rename to kubernetes/flux/repositories/helm/kubernetes-sigs-descheduler.yaml index 6db35fdebf..867920a586 100644 --- a/kubernetes/flux/repositories/helm/kubernetes-sigs-descheduler-charts.yaml +++ b/kubernetes/flux/repositories/helm/kubernetes-sigs-descheduler.yaml @@ -2,7 +2,7 @@ apiVersion: source.toolkit.fluxcd.io/v1 kind: HelmRepository metadata: - name: kubernetes-sigs-descheduler-charts + name: kubernetes-sigs-descheduler namespace: flux-system spec: interval: 2h diff --git a/kubernetes/flux/repositories/helm/kustomization.yaml b/kubernetes/flux/repositories/helm/kustomization.yaml index 9c5b72afaf..2d8a35639e 100644 --- a/kubernetes/flux/repositories/helm/kustomization.yaml +++ b/kubernetes/flux/repositories/helm/kustomization.yaml @@ -2,32 +2,32 @@ apiVersion: kustomize.config.k8s.io/v1beta1 kind: Kustomization resources: - - ./actions-runner-controller-charts.yaml - - ./angelnu-charts.yaml - - ./backube-charts.yaml - - ./bjw-s-charts.yaml - - ./cilium-charts.yaml - - ./cloudnative-pg-charts.yaml - - ./coredns-charts.yaml - - ./deliveryhero-charts.yaml - - ./democratic-csi-charts.yaml - - ./emqx-charts.yaml - - ./external-dns-charts.yaml - - ./external-secrets-charts.yaml - - ./fairwinds-charts.yaml - - ./grafana-charts.yaml - - ./hajimari-charts.yaml - - ./ingress-nginx-charts.yaml - - ./intel-charts.yaml - - ./jetstack-charts.yaml - - ./kubernetes-sigs-descheduler-charts.yaml - - ./kyverno-charts.yaml - - ./metrics-server-charts.yaml - - ./node-feature-discovery-charts.yaml - - ./piraeus-charts.yaml - - ./postfinance-charts.yaml - - ./prometheus-community-charts.yaml - - ./rook-ceph-charts.yaml - - ./spegel-charts.yaml - - ./stakater-charts.yaml - - ./stevehipwell-charts.yaml + - ./actions-runner-controller.yaml + - ./angelnu.yaml + - ./backube.yaml + - ./bjw-s.yaml + - ./cilium.yaml + - ./cloudnative-pg.yaml + - ./coredns.yaml + - ./deliveryhero.yaml + - ./emqx.yaml + - ./external-dns.yaml + - ./external-secrets.yaml + - ./fairwinds.yaml + - ./grafana.yaml + - ./hajimari.yaml + - ./ingress-nginx.yaml + - ./intel.yaml + - ./jetstack.yaml + - ./kubernetes-sigs-descheduler.yaml + - ./kyverno.yaml + - ./metrics-server.yaml + - ./node-feature-discovery.yaml + - ./openebs.yaml + - ./piraeus.yaml + - ./postfinance.yaml + - ./prometheus-community.yaml + - ./rook-ceph.yaml + - ./spegel.yaml + - ./stakater.yaml + - ./stevehipwell.yaml diff --git a/kubernetes/flux/repositories/helm/kyverno-charts.yaml b/kubernetes/flux/repositories/helm/kyverno.yaml similarity index 88% rename from kubernetes/flux/repositories/helm/kyverno-charts.yaml rename to kubernetes/flux/repositories/helm/kyverno.yaml index dbcf2f51b1..086a1184a5 100644 --- a/kubernetes/flux/repositories/helm/kyverno-charts.yaml +++ b/kubernetes/flux/repositories/helm/kyverno.yaml @@ -2,7 +2,7 @@ apiVersion: source.toolkit.fluxcd.io/v1 kind: HelmRepository metadata: - name: kyverno-charts + name: kyverno namespace: flux-system spec: type: oci diff --git a/kubernetes/flux/repositories/helm/metrics-server-charts.yaml b/kubernetes/flux/repositories/helm/metrics-server.yaml similarity index 85% rename from kubernetes/flux/repositories/helm/metrics-server-charts.yaml rename to kubernetes/flux/repositories/helm/metrics-server.yaml index 13a6644113..b71155ac59 100644 --- a/kubernetes/flux/repositories/helm/metrics-server-charts.yaml +++ b/kubernetes/flux/repositories/helm/metrics-server.yaml @@ -2,7 +2,7 @@ apiVersion: source.toolkit.fluxcd.io/v1 kind: HelmRepository metadata: - name: metrics-server-charts + name: metrics-server namespace: flux-system spec: interval: 2h diff --git a/kubernetes/flux/repositories/helm/node-feature-discovery-charts.yaml b/kubernetes/flux/repositories/helm/node-feature-discovery.yaml similarity index 83% rename from kubernetes/flux/repositories/helm/node-feature-discovery-charts.yaml rename to kubernetes/flux/repositories/helm/node-feature-discovery.yaml index 34d3c636b0..3141f75e23 100644 --- a/kubernetes/flux/repositories/helm/node-feature-discovery-charts.yaml +++ b/kubernetes/flux/repositories/helm/node-feature-discovery.yaml @@ -2,7 +2,7 @@ apiVersion: source.toolkit.fluxcd.io/v1 kind: HelmRepository metadata: - name: node-feature-discovery-charts + name: node-feature-discovery namespace: flux-system spec: interval: 2h diff --git a/kubernetes/flux/repositories/helm/openebs.yaml b/kubernetes/flux/repositories/helm/openebs.yaml new file mode 100644 index 0000000000..25d7ab1a6c --- /dev/null +++ b/kubernetes/flux/repositories/helm/openebs.yaml @@ -0,0 +1,9 @@ +--- +apiVersion: source.toolkit.fluxcd.io/v1 +kind: HelmRepository +metadata: + name: openebs + namespace: flux-system +spec: + interval: 2h + url: https://openebs.github.io/openebs diff --git a/kubernetes/flux/repositories/helm/piraeus-charts.yaml b/kubernetes/flux/repositories/helm/piraeus.yaml similarity index 87% rename from kubernetes/flux/repositories/helm/piraeus-charts.yaml rename to kubernetes/flux/repositories/helm/piraeus.yaml index e3b5805d52..84f361a324 100644 --- a/kubernetes/flux/repositories/helm/piraeus-charts.yaml +++ b/kubernetes/flux/repositories/helm/piraeus.yaml @@ -2,7 +2,7 @@ apiVersion: source.toolkit.fluxcd.io/v1 kind: HelmRepository metadata: - name: piraeus-charts + name: piraeus namespace: flux-system spec: interval: 2h diff --git a/kubernetes/flux/repositories/helm/postfinance-charts.yaml b/kubernetes/flux/repositories/helm/postfinance.yaml similarity index 86% rename from kubernetes/flux/repositories/helm/postfinance-charts.yaml rename to kubernetes/flux/repositories/helm/postfinance.yaml index 692f42c61a..cb792fdd9e 100644 --- a/kubernetes/flux/repositories/helm/postfinance-charts.yaml +++ b/kubernetes/flux/repositories/helm/postfinance.yaml @@ -2,7 +2,7 @@ apiVersion: source.toolkit.fluxcd.io/v1 kind: HelmRepository metadata: - name: postfinance-charts + name: postfinance namespace: flux-system spec: interval: 2h diff --git a/kubernetes/flux/repositories/helm/prometheus-community-charts.yaml b/kubernetes/flux/repositories/helm/prometheus-community.yaml similarity index 83% rename from kubernetes/flux/repositories/helm/prometheus-community-charts.yaml rename to kubernetes/flux/repositories/helm/prometheus-community.yaml index 44a7498eef..318a1a5140 100644 --- a/kubernetes/flux/repositories/helm/prometheus-community-charts.yaml +++ b/kubernetes/flux/repositories/helm/prometheus-community.yaml @@ -2,7 +2,7 @@ apiVersion: source.toolkit.fluxcd.io/v1 kind: HelmRepository metadata: - name: prometheus-community-charts + name: prometheus-community namespace: flux-system spec: type: oci diff --git a/kubernetes/flux/repositories/helm/rook-ceph-charts.yaml b/kubernetes/flux/repositories/helm/rook-ceph.yaml similarity index 86% rename from kubernetes/flux/repositories/helm/rook-ceph-charts.yaml rename to kubernetes/flux/repositories/helm/rook-ceph.yaml index dde34c1c14..58728cc965 100644 --- a/kubernetes/flux/repositories/helm/rook-ceph-charts.yaml +++ b/kubernetes/flux/repositories/helm/rook-ceph.yaml @@ -2,7 +2,7 @@ apiVersion: source.toolkit.fluxcd.io/v1 kind: HelmRepository metadata: - name: rook-ceph-charts + name: rook-ceph namespace: flux-system spec: interval: 2h diff --git a/kubernetes/flux/repositories/helm/spegel-charts.yaml b/kubernetes/flux/repositories/helm/spegel.yaml similarity index 88% rename from kubernetes/flux/repositories/helm/spegel-charts.yaml rename to kubernetes/flux/repositories/helm/spegel.yaml index 20cdfecff2..d9a8b2cd30 100644 --- a/kubernetes/flux/repositories/helm/spegel-charts.yaml +++ b/kubernetes/flux/repositories/helm/spegel.yaml @@ -2,7 +2,7 @@ apiVersion: source.toolkit.fluxcd.io/v1 kind: HelmRepository metadata: - name: spegel-charts + name: spegel namespace: flux-system spec: type: oci diff --git a/kubernetes/flux/repositories/helm/stakater-charts.yaml b/kubernetes/flux/repositories/helm/stakater.yaml similarity index 87% rename from kubernetes/flux/repositories/helm/stakater-charts.yaml rename to kubernetes/flux/repositories/helm/stakater.yaml index 656860db52..c727f37f12 100644 --- a/kubernetes/flux/repositories/helm/stakater-charts.yaml +++ b/kubernetes/flux/repositories/helm/stakater.yaml @@ -2,7 +2,7 @@ apiVersion: source.toolkit.fluxcd.io/v1 kind: HelmRepository metadata: - name: stakater-charts + name: stakater namespace: flux-system spec: type: oci diff --git a/kubernetes/flux/repositories/helm/stevehipwell-charts.yaml b/kubernetes/flux/repositories/helm/stevehipwell.yaml similarity index 86% rename from kubernetes/flux/repositories/helm/stevehipwell-charts.yaml rename to kubernetes/flux/repositories/helm/stevehipwell.yaml index 4b8efd8dd1..d703073692 100644 --- a/kubernetes/flux/repositories/helm/stevehipwell-charts.yaml +++ b/kubernetes/flux/repositories/helm/stevehipwell.yaml @@ -2,7 +2,7 @@ apiVersion: source.toolkit.fluxcd.io/v1 kind: HelmRepository metadata: - name: stevehipwell-charts + name: stevehipwell namespace: flux-system spec: type: oci diff --git a/talos/talconfig.yaml b/talos/talconfig.yaml index bc9c7bcd08..16d3fa62e6 100644 --- a/talos/talconfig.yaml +++ b/talos/talconfig.yaml @@ -8,13 +8,13 @@ clusterSvcNets: endpoint: https://k8s.internal:6443 -# renovate: depName=ghcr.io/buroa/installer datasource=docker +# renovate: depName=ghcr.io/siderolabs/installer datasource=docker talosVersion: v1.8.2 # renovate: depName=ghcr.io/siderolabs/kubelet datasource=docker kubernetesVersion: v1.31.2 additionalApiServerCertSans: &sans - - 192.168.10.250 + - 192.168.10.200 - k8s.internal - 127.0.0.1 @@ -24,106 +24,25 @@ cniConfig: name: none nodes: - # macm 2018 3.2GHz / 32GB / 256GB SSD / 10GbE via TB3 - hostname: m0.k8s.internal ipAddress: 192.168.10.10 installDiskSelector: - serial: C0785130064JRQ5AA + serial: 052410221DA7 controlPlane: true networkInterfaces: - - deviceSelector: - hardwareAddr: 00:30:93:10:5c:f1 - driver: atlantic - dhcp: false - mtu: 9000 - vlans: - - vlanId: 10 - dhcp: false - addresses: - - 192.168.10.10/24 - mtu: 9000 - routes: - - network: 0.0.0.0/0 - gateway: 192.168.10.1 - vip: - ip: 192.168.10.250 - - vlanId: 20 - dhcp: false - mtu: 1500 - - vlanId: 30 - dhcp: false - mtu: 1500 - - # macm 2018 3.2GHz / 32GB / 256GB SSD / 10GbE via TB3 - - hostname: m1.k8s.internal - ipAddress: 192.168.10.11 - installDiskSelector: - serial: H280463005RJRV2C6 - controlPlane: true - networkInterfaces: - - deviceSelector: - hardwareAddr: 00:30:93:10:5c:f6 - driver: atlantic - dhcp: false - mtu: 9000 - vlans: - - vlanId: 10 - dhcp: false - addresses: - - 192.168.10.11/24 - mtu: 9000 - routes: - - network: 0.0.0.0/0 - gateway: 192.168.10.1 - vip: - ip: 192.168.10.250 - - vlanId: 20 - dhcp: false - mtu: 1500 - - vlanId: 30 - dhcp: false - mtu: 1500 - - # macm 2018 3.2GHz / 32GB / 256GB SSD / 10GbE via TB3 - - hostname: m2.k8s.internal - ipAddress: 192.168.10.12 - installDiskSelector: - serial: C070234007KJRT9AZ - controlPlane: true - networkInterfaces: - - deviceSelector: - hardwareAddr: 00:30:93:10:5c:ee - driver: atlantic - dhcp: false - mtu: 9000 - vlans: - - vlanId: 10 - dhcp: false - addresses: - - 192.168.10.12/24 - mtu: 9000 - routes: - - network: 0.0.0.0/0 - gateway: 192.168.10.1 - vip: - ip: 192.168.10.250 - - vlanId: 20 - dhcp: false - mtu: 1500 - - vlanId: 30 - dhcp: false - mtu: 1500 - - # macm 2018 3.2GHz / 64GB / 1TB SSD / 10GbE - - hostname: w0.k8s.internal - ipAddress: 192.168.10.20 - installDiskSelector: - serial: H281495002CJRVGDX - controlPlane: false - networkInterfaces: - - deviceSelector: - hardwareAddr: cc:2d:b7:0b:0c:40 - driver: atlantic + - interface: bond0 + bond: + mode: 802.3ad + lacpRate: fast + xmitHashPolicy: layer3+4 + miimon: 100 + updelay: 200 + downdelay: 200 + deviceSelectors: + - hardwareAddr: 58:47:ca:77:c5:8e + driver: i40e + - hardwareAddr: 58:47:ca:77:c5:8f + driver: i40e dhcp: false mtu: 9000 vlans: @@ -135,6 +54,8 @@ nodes: routes: - network: 0.0.0.0/0 gateway: 192.168.10.1 + vip: + ip: 192.168.10.200 - vlanId: 20 dhcp: false mtu: 1500 @@ -142,45 +63,56 @@ nodes: dhcp: false mtu: 1500 - deviceSelector: - busPath: 1-1.0 # w1 + busPath: 1-1.0 # m1 dhcp: false mtu: 65520 addresses: - - 169.254.255.20/32 + - 169.254.255.10/32 routes: - - network: 169.254.255.21/32 + - network: 169.254.255.11/32 metric: 2048 - deviceSelector: - busPath: 1-3.0 # w2 + busPath: 1-3.0 # m2 dhcp: false mtu: 65520 addresses: - - 169.254.255.20/32 + - 169.254.255.10/32 routes: - - network: 169.254.255.22/32 + - network: 169.254.255.12/32 metric: 2048 - # macm 2018 3.2GHz / 64GB / 1TB SSD / 10GbE - - hostname: w1.k8s.internal - ipAddress: 192.168.10.21 + - hostname: m1.k8s.internal + ipAddress: 192.168.10.11 installDiskSelector: - serial: C070173002EJRVGAW - controlPlane: false + serial: 052410221DA8 + controlPlane: true networkInterfaces: - - deviceSelector: - hardwareAddr: cc:2d:b7:07:c0:00 - driver: atlantic + - interface: bond0 + bond: + mode: 802.3ad + lacpRate: fast + xmitHashPolicy: layer3+4 + miimon: 100 + updelay: 200 + downdelay: 200 + deviceSelectors: + - hardwareAddr: 58:47:ca:77:ce:da + driver: i40e + - hardwareAddr: 58:47:ca:77:ce:db + driver: i40e dhcp: false mtu: 9000 vlans: - vlanId: 10 dhcp: false addresses: - - 192.168.10.21/24 + - 192.168.10.11/24 mtu: 9000 routes: - network: 0.0.0.0/0 gateway: 192.168.10.1 + vip: + ip: 192.168.10.200 - vlanId: 20 dhcp: false mtu: 1500 @@ -188,45 +120,56 @@ nodes: dhcp: false mtu: 1500 - deviceSelector: - busPath: 1-1.0 # w0 + busPath: 1-1.0 # m0 dhcp: false mtu: 65520 addresses: - - 169.254.255.21/32 + - 169.254.255.11/32 routes: - - network: 169.254.255.20/32 + - network: 169.254.255.10/32 metric: 2048 - deviceSelector: - busPath: 1-3.0 # w2 + busPath: 1-3.0 # m2 dhcp: false mtu: 65520 addresses: - - 169.254.255.21/32 + - 169.254.255.11/32 routes: - - network: 169.254.255.22/32 + - network: 169.254.255.12/32 metric: 2048 - # macm 2018 3.2GHz / 64GB / 1TB SSD / 10GbE - - hostname: w2.k8s.internal - ipAddress: 192.168.10.22 + - hostname: m2.k8s.internal + ipAddress: 192.168.10.12 installDiskSelector: - serial: C07843600H7JRVGA8 - controlPlane: false + serial: 052410221B9A + controlPlane: true networkInterfaces: - - deviceSelector: - hardwareAddr: cc:2d:b7:02:b9:b5 - driver: atlantic + - interface: bond0 + bond: + mode: 802.3ad + lacpRate: fast + xmitHashPolicy: layer3+4 + miimon: 100 + updelay: 200 + downdelay: 200 + deviceSelectors: + - hardwareAddr: 58:47:ca:77:c6:ba + driver: i40e + - hardwareAddr: 58:47:ca:77:c6:bb + driver: i40e dhcp: false mtu: 9000 vlans: - vlanId: 10 dhcp: false addresses: - - 192.168.10.22/24 + - 192.168.10.12/24 mtu: 9000 routes: - network: 0.0.0.0/0 gateway: 192.168.10.1 + vip: + ip: 192.168.10.200 - vlanId: 20 dhcp: false mtu: 1500 @@ -234,31 +177,48 @@ nodes: dhcp: false mtu: 1500 - deviceSelector: - busPath: 1-1.0 # w0 + busPath: 1-1.0 # m0 dhcp: false mtu: 65520 addresses: - - 169.254.255.22/32 + - 169.254.255.12/32 routes: - - network: 169.254.255.20/32 + - network: 169.254.255.10/32 metric: 2048 - deviceSelector: - busPath: 1-3.0 # w1 + busPath: 1-3.0 # m1 dhcp: false mtu: 65520 addresses: - - 169.254.255.22/32 + - 169.254.255.12/32 routes: - - network: 169.254.255.21/32 + - network: 169.254.255.11/32 metric: 2048 controlPlane: nodeLabels: topology.kubernetes.io/region: *cluster topology.kubernetes.io/zone: m + + schematic: + customization: + extraKernelArgs: + - intel_iommu=on + - iommu=pt + - mitigations=off + - net.ifnames=0 + - talos.logging.kernel=udp://vector.ktwo.io:6001/ + + systemExtensions: + officialExtensions: + - siderolabs/i915-ucode + - siderolabs/intel-ucode + - siderolabs/mei + - siderolabs/thunderbolt + patches: # Configure containerd - - &containerdPatch |- + - |- machine: files: - op: create @@ -273,13 +233,13 @@ controlPlane: discard_unpacked_layers = false # Disable search domain everywhere - - &disableSearchDomainPatch |- + - |- machine: network: disableSearchDomain: true # Enable cluster discovery - - &discoveryPatch |- + - |- cluster: discovery: registries: @@ -289,7 +249,7 @@ controlPlane: disabled: true # Enable host dns - - &hostDnsPatch |- + - |- machine: features: hostDNS: @@ -298,17 +258,25 @@ controlPlane: forwardKubeDNSToHost: false # Configure kubelet - - &kubeletPatch |- + - |- machine: kubelet: extraArgs: rotate-server-certificates: true + extraMounts: + - destination: /var/openebs/local + source: /var/openebs/local + type: bind + options: + - bind + - rshared + - rw nodeIP: validSubnets: - 192.168.10.0/24 # Enable KubePrism - - &kubePrismPatch |- + - |- machine: features: kubePrism: @@ -316,7 +284,7 @@ controlPlane: port: 7445 # Enable logging - - &loggingPatch |- + - |- machine: logging: destinations: @@ -324,14 +292,14 @@ controlPlane: format: json_lines # Force nameserver - - &nameserverPatch |- + - |- machine: network: nameservers: - 192.168.10.1 # Configure NFS mount options - - &nfsPatch | + - | machine: files: - op: overwrite @@ -348,7 +316,7 @@ controlPlane: nconnect=8 # Configure NTP - - &ntpPatch |- + - |- machine: time: disabled: false @@ -356,16 +324,16 @@ controlPlane: - time.cloudflare.com # Static host entries - - &staticHostEntriesPatch |- + - |- machine: network: extraHostEntries: - - ip: 192.168.10.250 + - ip: 192.168.10.200 aliases: - k8s.internal # Custom sysctl settings - - &sysctlPatch |- + - |- machine: sysctls: fs.inotify.max_user_watches: 1048576 @@ -378,32 +346,10 @@ controlPlane: net.ipv4.tcp_wmem: 4096 65536 33554432 net.ipv4.tcp_tw_reuse: 1 net.ipv4.tcp_window_scaling: 1 - - # Custom sysfs settings - - &sysfsPatch |- - machine: - sysfs: - block.nvme0n1.queue.scheduler: none - devices.system.cpu.cpufreq.boost: 0 - - # Custom Talos installer patch - - &talosPatch |- - machine: - install: - extraKernelArgs: - - cpufreq.default_governor=performance - - intel_iommu=on - - intel_pstate=disable - - iommu=pt - - mitigations=off - - module_blacklist=tg3 - - net.ifnames=0 - - pcie_ports=native - - talos.logging.kernel=udp://vector.ktwo.io:6001/ - legacyBIOSSupport: true + vm.nr_hugepages: 1024 # Various udev rules - - &udevPatch |- + - |- machine: udev: rules: @@ -469,24 +415,3 @@ controlPlane: - os:admin allowedKubernetesNamespaces: - system-upgrade - -worker: - nodeLabels: - topology.kubernetes.io/region: *cluster - topology.kubernetes.io/zone: w - patches: - - *containerdPatch - - *disableSearchDomainPatch - - *discoveryPatch - - *hostDnsPatch - - *kubeletPatch - - *kubePrismPatch - - *loggingPatch - - *nameserverPatch - - *nfsPatch - - *ntpPatch - - *staticHostEntriesPatch - - *sysctlPatch - - *sysfsPatch - - *talosPatch - - *udevPatch