diff --git a/docker.properties b/docker.properties index 9cb5d8ee576..7ae5eb73573 100644 --- a/docker.properties +++ b/docker.properties @@ -1,4 +1,4 @@ -DOCKER_IMAGE_TAG=202504121153 -LINTER_IMAGE_DIGEST=ff369d95c4c84c95b668498219fda60ff8126828839171262f2eee58bd95ce19 -DEV_IMAGE_DIGEST=91e7fb85e0497340df5efaf035b65d98eab458908f852a782aeeb5ea0b69b5c9 -DEV_IMAGE_WITH_EXTRAS_DIGEST=f90e8b9b69d5870a7115ad434388da7bcef05f4a6c47e937a5a6348a22613ab4 +DOCKER_IMAGE_TAG=202504142133 +LINTER_IMAGE_DIGEST=0129dd524203f95a25f4343ec4499919db4434752375624a4cdbd51d463acdaf +DEV_IMAGE_DIGEST=f669bf0bc9db3ce03a48365a41e87de1a8e3e9be01bc5a1e10816412c671665e +DEV_IMAGE_WITH_EXTRAS_DIGEST=65535207f2fb805d45bb7997cf0a71abbd756cf8763db02c57838f8ee18f0c66 diff --git a/k8s/operator/crd/base/px.dev_viziers.yaml b/k8s/operator/crd/base/px.dev_viziers.yaml index b25d7b59240..3786548e125 100644 --- a/k8s/operator/crd/base/px.dev_viziers.yaml +++ b/k8s/operator/crd/base/px.dev_viziers.yaml @@ -1,11 +1,9 @@ - --- apiVersion: apiextensions.k8s.io/v1 kind: CustomResourceDefinition metadata: annotations: - controller-gen.kubebuilder.io/version: v0.4.1 - creationTimestamp: null + controller-gen.kubebuilder.io/version: v0.17.2 name: viziers.px.dev spec: group: px.dev @@ -22,14 +20,19 @@ spec: description: Vizier is the Schema for the viziers API properties: apiVersion: - description: 'APIVersion defines the versioned schema of this representation - of an object. Servers should convert recognized schemas to the latest - internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources' + description: |- + APIVersion defines the versioned schema of this representation of an object. + Servers should convert recognized schemas to the latest internal value, and + may reject unrecognized values. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources type: string kind: - description: 'Kind is a string value representing the REST resource this - object represents. Servers may infer this from the endpoint the client - submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds' + description: |- + Kind is a string value representing the REST resource this object represents. + Servers may infer this from the endpoint the client submits requests to. + Cannot be updated. + In CamelCase. + More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds type: string metadata: type: object @@ -51,18 +54,18 @@ spec: Vizier should be pointing to. type: string clusterName: - description: ClusterName is a name for the Vizier instance, usually - specifying which cluster the Vizier is deployed to. If not specified, - a random name will be generated. + description: |- + ClusterName is a name for the Vizier instance, usually specifying which cluster the Vizier is + deployed to. If not specified, a random name will be generated. type: string customDeployKeySecret: description: CustomDeployKeySecret is the name of the secret where the deploy key is stored. type: string dataAccess: - description: DataAccess defines the level of data that may be accesssed - when executing a script on the cluster. If none specified, assumes - full data access. + description: |- + DataAccess defines the level of data that may be accesssed when executing a script on the cluster. If none specified, + assumes full data access. enum: - Full - Restricted @@ -78,9 +81,9 @@ spec: to the PEM via environment variables. type: object datastreamBufferSize: - description: DatastreamBufferSize is the data buffer size per - connection. Default size is 1 Mbyte. For high-throughput applications, - try increasing this number if experiencing data loss. + description: |- + DatastreamBufferSize is the data buffer size per connection. + Default size is 1 Mbyte. For high-throughput applications, try increasing this number if experiencing data loss. format: int32 type: integer datastreamBufferSpikeSize: @@ -90,15 +93,15 @@ spec: type: integer type: object deployKey: - description: DeployKey is the deploy key associated with the Vizier - instance. This is used to link the Vizier to a specific user/org. - This is required unless specifying a CustomDeployKeySecret. + description: |- + DeployKey is the deploy key associated with the Vizier instance. This is used to link the Vizier to a + specific user/org. This is required unless specifying a CustomDeployKeySecret. type: string devCloudNamespace: - description: 'DevCloudNamespace should be specified only for dev versions - of Pixie cloud which have no ingress to help redirect traffic to - the correct service. The DevCloudNamespace is the namespace that - the dev Pixie cloud is running on, for example: "plc-dev".' + description: |- + DevCloudNamespace should be specified only for dev versions of Pixie cloud which have no ingress to help + redirect traffic to the correct service. The DevCloudNamespace is the namespace that the dev Pixie cloud is + running on, for example: "plc-dev". type: string disableAutoUpdate: description: DisableAutoUpdate specifies whether auto update should @@ -109,28 +112,28 @@ spec: for the K8s leaderships elections which Vizier uses manage pod leadership. properties: electionPeriodMs: - description: ElectionPeriodMs defines how frequently Vizier attempts - to run a K8s leader election, in milliseconds. The period also - determines how long Vizier waits for a leader election response - back from the K8s API. If the K8s API is slow to respond, consider - increasing this number. + description: |- + ElectionPeriodMs defines how frequently Vizier attempts to run a K8s leader election, in milliseconds. The period + also determines how long Vizier waits for a leader election response back from the K8s API. If the K8s API is + slow to respond, consider increasing this number. format: int64 type: integer type: object patches: additionalProperties: type: string - description: Patches defines patches that should be applied to Vizier - resources. The key of the patch should be the name of the resource - that is patched. The value of the patch is the patch, encoded as - a string which follow the "strategic merge patch" rules for K8s. + description: |- + Patches defines patches that should be applied to Vizier resources. + The key of the patch should be the name of the resource that is patched. The value of the patch is the patch, + encoded as a string which follow the "strategic merge patch" rules for K8s. type: object pemMemoryLimit: description: PemMemoryLimit is a memory limit applied specifically to PEM pods. type: string pemMemoryRequest: - description: PemMemoryRequest is a memory request applied specifically + description: |- + PemMemoryRequest is a memory request applied specifically to PEM pods. It will automatically use the value of pemMemoryLimit if not specified. type: string @@ -152,29 +155,34 @@ spec: nodeSelector: additionalProperties: type: string - description: 'NodeSelector is a selector which must be true for - the pod to fit on a node. Selector which must match a node''s - labels for the pod to be scheduled on that node. More info: - https://kubernetes.io/docs/concepts/configuration/assign-pod-node/ - This field cannot be updated once the cluster is created.' + description: |- + NodeSelector is a selector which must be true for the pod to fit on a node. + Selector which must match a node's labels for the pod to be scheduled on that node. + More info: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/ + This field cannot be updated once the cluster is created. type: object resources: - description: Resources is the resource requirements for a container. + description: |- + Resources is the resource requirements for a container. This field cannot be updated once the cluster is created. properties: claims: - description: "Claims lists the names of resources, defined - in spec.resourceClaims, that are used by this container. - \n This is an alpha field and requires enabling the DynamicResourceAllocation - feature gate. \n This field is immutable." + description: |- + Claims lists the names of resources, defined in spec.resourceClaims, + that are used by this container. + + This is an alpha field and requires enabling the + DynamicResourceAllocation feature gate. + + This field is immutable. items: description: ResourceClaim references one entry in PodSpec.ResourceClaims. properties: name: - description: Name must match the name of one entry in - pod.spec.resourceClaims of the Pod where this field - is used. It makes that resource available inside a - container. + description: |- + Name must match the name of one entry in pod.spec.resourceClaims of + the Pod where this field is used. It makes that resource available + inside a container. type: string required: - name @@ -190,8 +198,9 @@ spec: - type: string pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ x-kubernetes-int-or-string: true - description: 'Limits describes the maximum amount of compute - resources allowed. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/' + description: |- + Limits describes the maximum amount of compute resources allowed. + More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/ type: object requests: additionalProperties: @@ -200,21 +209,22 @@ spec: - type: string pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ x-kubernetes-int-or-string: true - description: 'Requests describes the minimum amount of compute - resources required. If Requests is omitted for a container, - it defaults to Limits if that is explicitly specified, otherwise - to an implementation-defined value. More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/' + description: |- + Requests describes the minimum amount of compute resources required. + If Requests is omitted for a container, it defaults to Limits if that is explicitly specified, + otherwise to an implementation-defined value. + More info: https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/ type: object type: object securityContext: - description: The securityContext which should be set on non-privileged - pods. All pods which require privileged permissions will still - require a privileged securityContext. + description: |- + The securityContext which should be set on non-privileged pods. All pods which require privileged permissions + will still require a privileged securityContext. properties: enabled: - description: Whether a securityContext should be set on the - pod. In cases where no PSPs are applied to the cluster, - this is not necessary. + description: |- + Whether a securityContext should be set on the pod. In cases where no PSPs are applied to the cluster, this is + not necessary. type: boolean fsGroup: description: A special supplemental group that applies to @@ -233,54 +243,53 @@ spec: type: integer type: object tolerations: - description: 'Tolerations allows scheduling pods on nodes with - matching taints. More info: https://kubernetes.io/docs/concepts/scheduling-eviction/taint-and-toleration/: - This field cannot be updated once the cluster is created.' + description: |- + Tolerations allows scheduling pods on nodes with matching taints. + More info: https://kubernetes.io/docs/concepts/scheduling-eviction/taint-and-toleration/: + This field cannot be updated once the cluster is created. items: - description: The pod this Toleration is attached to tolerates - any taint that matches the triple using - the matching operator . + description: |- + The pod this Toleration is attached to tolerates any taint that matches + the triple using the matching operator . properties: effect: - description: Effect indicates the taint effect to match. - Empty means match all taint effects. When specified, allowed - values are NoSchedule, PreferNoSchedule and NoExecute. + description: |- + Effect indicates the taint effect to match. Empty means match all taint effects. + When specified, allowed values are NoSchedule, PreferNoSchedule and NoExecute. type: string key: - description: Key is the taint key that the toleration applies - to. Empty means match all taint keys. If the key is empty, - operator must be Exists; this combination means to match - all values and all keys. + description: |- + Key is the taint key that the toleration applies to. Empty means match all taint keys. + If the key is empty, operator must be Exists; this combination means to match all values and all keys. type: string operator: - description: Operator represents a key's relationship to - the value. Valid operators are Exists and Equal. Defaults - to Equal. Exists is equivalent to wildcard for value, - so that a pod can tolerate all taints of a particular - category. + description: |- + Operator represents a key's relationship to the value. + Valid operators are Exists and Equal. Defaults to Equal. + Exists is equivalent to wildcard for value, so that a pod can + tolerate all taints of a particular category. type: string tolerationSeconds: - description: TolerationSeconds represents the period of - time the toleration (which must be of effect NoExecute, - otherwise this field is ignored) tolerates the taint. - By default, it is not set, which means tolerate the taint - forever (do not evict). Zero and negative values will - be treated as 0 (evict immediately) by the system. + description: |- + TolerationSeconds represents the period of time the toleration (which must be + of effect NoExecute, otherwise this field is ignored) tolerates the taint. By default, + it is not set, which means tolerate the taint forever (do not evict). Zero and + negative values will be treated as 0 (evict immediately) by the system. format: int64 type: integer value: - description: Value is the taint value the toleration matches - to. If the operator is Exists, the value should be empty, - otherwise just a regular string. + description: |- + Value is the taint value the toleration matches to. + If the operator is Exists, the value should be empty, otherwise just a regular string. type: string type: object type: array type: object registry: - description: 'Registry specifies the image registry to use rather - than Pixie''s default registry (gcr.io). We expect any forward slashes - in Pixie''s image paths are replaced with a "-". For example: "gcr.io/pixie-oss/pixie-dev/vizier/metadata_server_image:latest" - should be pushed to "$registry/gcr.io-pixie-oss-pixie-dev-vizier-metadata_server_image:latest".' + description: |- + Registry specifies the image registry to use rather than Pixie's default registry (gcr.io). We expect any forward slashes in + Pixie's image paths are replaced with a "-". For example: "gcr.io/pixie-oss/pixie-dev/vizier/metadata_server_image:latest" + should be pushed to "$registry/gcr.io-pixie-oss-pixie-dev-vizier-metadata_server_image:latest". type: string useEtcdOperator: description: UseEtcdOperator specifies whether the metadata service @@ -294,9 +303,9 @@ spec: description: VizierStatus defines the observed state of Vizier properties: checksum: - description: A checksum of the last reconciled Vizier spec. If this - checksum does not match the checksum of the current vizier spec, - reconciliation should be performed. + description: |- + A checksum of the last reconciled Vizier spec. If this checksum does not match the checksum + of the current vizier spec, reconciliation should be performed. format: byte type: string lastReconciliationPhaseTime: @@ -313,9 +322,9 @@ spec: instance. type: string reconciliationPhase: - description: ReconciliationPhase describes the state the Reconciler - is in for this Vizier. See the documentation above the ReconciliationPhase - type for more information. + description: |- + ReconciliationPhase describes the state the Reconciler is in for this Vizier. See the + documentation above the ReconciliationPhase type for more information. type: string sentryDSN: description: SentryDSN is key for Viziers that is used to send errors @@ -329,9 +338,9 @@ spec: is in its lifecycle. type: string vizierReason: - description: VizierReason is a short, machine understandable string - that gives the reason for the transition into the Vizier's current - status. + description: |- + VizierReason is a short, machine understandable string that gives the reason + for the transition into the Vizier's current status. type: string type: object type: object @@ -339,9 +348,3 @@ spec: storage: true subresources: status: {} -status: - acceptedNames: - kind: "" - plural: "" - conditions: [] - storedVersions: [] diff --git a/src/operator/apis/px.dev/v1alpha1/vizier_types.go b/src/operator/apis/px.dev/v1alpha1/vizier_types.go index 8956b75374e..51232a5bf35 100644 --- a/src/operator/apis/px.dev/v1alpha1/vizier_types.go +++ b/src/operator/apis/px.dev/v1alpha1/vizier_types.go @@ -19,7 +19,7 @@ // Generate the code for deep-copying the CRD in go. //go:generate controller-gen object // Generate the CRD YAMLs. -//go:generate controller-gen crd:trivialVersions=true rbac:roleName=operator-role webhook output:crd:artifacts:config=crd output:crd:dir:=../../../../../k8s/operator/crd/base +//go:generate controller-gen crd rbac:roleName=operator-role webhook output:crd:artifacts:config=crd output:crd:dir:=../../../../../k8s/operator/crd/base // Generate the clientset. //go:generate client-gen --input=px.dev/v1alpha1 --clientset-name=versioned --go-header-file=/dev/null --input-base=px.dev/pixie/src/operator/apis --output-package=px.dev/pixie/src/operator/client diff --git a/src/operator/apis/px.dev/v1alpha1/zz_generated.deepcopy.go b/src/operator/apis/px.dev/v1alpha1/zz_generated.deepcopy.go index d64a8011688..c60295643b2 100644 --- a/src/operator/apis/px.dev/v1alpha1/zz_generated.deepcopy.go +++ b/src/operator/apis/px.dev/v1alpha1/zz_generated.deepcopy.go @@ -1,5 +1,4 @@ //go:build !ignore_autogenerated -// +build !ignore_autogenerated // Code generated by controller-gen. DO NOT EDIT. diff --git a/tools/chef/base_image_version.txt b/tools/chef/base_image_version.txt index e66673e1750..f8fcc96b15e 100644 --- a/tools/chef/base_image_version.txt +++ b/tools/chef/base_image_version.txt @@ -1 +1 @@ -202502242123 +202503281433 diff --git a/tools/chef/cookbooks/px_dev/recipes/golang.rb b/tools/chef/cookbooks/px_dev/recipes/golang.rb index 0d2ea5d9a53..d03c3281b11 100644 --- a/tools/chef/cookbooks/px_dev/recipes/golang.rb +++ b/tools/chef/cookbooks/px_dev/recipes/golang.rb @@ -42,7 +42,7 @@ execute 'install go binaries' do ENV['GOPATH'] = "/opt/px_dev/gopath" command %(go install github.com/golang/mock/mockgen@v1.5.0 && \ - go install sigs.k8s.io/controller-tools/cmd/controller-gen@v0.4.1 && \ + go install sigs.k8s.io/controller-tools/cmd/controller-gen@v0.17.2 && \ go install k8s.io/code-generator/cmd/client-gen@v0.20.6 && \ go install github.com/go-bindata/go-bindata/go-bindata@v3.1.2+incompatible && \ go install github.com/google/go-containerregistry/cmd/crane@v0.15.2 && \