Skip to content
Snippets Groups Projects
Select Git revision
  • b1a9781accabfe40334c93ef54d04967dd2a1ba5
  • master default protected
  • enable_fossa
  • release-0.7
  • v0.16.3 protected
  • v0.16.2 protected
  • v0.16.1 protected
  • v0.16.0 protected
  • v0.15.3 protected
  • v0.15.2 protected
  • v0.15.1 protected
  • v0.15.0 protected
  • v0.15.0-rc2 protected
  • v0.15.0-rc1 protected
  • v0.14.2 protected
  • v0.14.1 protected
  • v0.14.0 protected
  • v0.14.0-rc4 protected
  • v0.14.0-rc3 protected
  • v0.14.0-rc2 protected
  • v0.14.0-rc1 protected
  • v0.13.4 protected
  • v0.13.3 protected
  • v0.13.2 protected
24 results

linux-kernel-aws.yaml

Blame
    • user avatar
    Bump to wrangler v1.1.1 / Kubernetes 1.25 / ginkgo 2
    Brad Davidson authored and Brad Davidson committed 
    Signed-off-by: default avatarBrad Davidson <brad.davidson@rancher.com>
    9e7e45c1
    History
    user avatar 9e7e45c1
    History
    linux-kernel-aws.yaml 2.74 KiB 
    ---
apiVersion: v1
kind: Secret
metadata:
  name: kernel
  namespace: system-upgrade
type: Opaque
stringData:
  version: 4.15.0.1060.61
  upgrade.sh: |
    #!/bin/sh
    set -e
    export DEBIAN_FRONTEND=noninteractive
    secrets=$(dirname $0)
    apt-get update
    apt-get -o Dpkg::Options::="--force-confdef" -o Dpkg::Options::="--force-confold" install -yq \
      linux-aws=$(cat $secrets/version) \
      linux-headers-aws=$(cat $secrets/version) \
      linux-image-aws=$(cat $secrets/version)
    if [ -f /run/reboot-required ]; then
      cat /run/reboot-required
      reboot
    fi
---
apiVersion: upgrade.cattle.io/v1
kind: Plan
metadata:
  name: kernel
  namespace: system-upgrade
spec:
  # The maximum number of concurrent nodes to apply this update on.
  concurrency: 1

  # Select which nodes this plan can be applied to.
  nodeSelector:
    matchExpressions:
      - {key: plan.upgrade.cattle.io/kernel, operator: Exists}

  # The service account for the pod to use. As with normal pods, if not specified the `default` service account from the namespace will be assigned.
  # See https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/
  serviceAccountName: system-upgrade

  # Link to secrets that will be mounted into all containers in job pods.
  # Secrets are calculated as part of the `.status.latestHash`. This means that changing
  # the secrets profile for a plan or changing the secrets that a plan refers to will
  # trigger application.
  secrets:
    - name: kernel
      # optional: default=/run/system-upgrade/secrets/{name}
      path: /host/run/system-upgrade/secrets/kernel

  # The value for `channel` is assumed to be a URL that returns HTTP 302 with the last path element of the value
  # returned in the Location header assumed to be an image tag.
  #channel: https://canonical.example.com/ubuntu/lts

  # Providing a value for `version` will prevent polling/resolution of the `channel` if specified.  
  version: bionic

  # The prepare init container is run before cordon/drain which is run before the upgrade container.
  # Shares the same format as the `upgrade` container
  #prepare:
  #  image: alpine:3.18
  #  command: [sh, -c]
  #  args: [" echo '### ENV ###'; env | sort; echo '### RUN ###'; find /run/system-upgrade | sort"]

  # See https://kubernetes.io/docs/tasks/administer-cluster/safely-drain-node/#use-kubectl-drain-to-remove-a-node-from-service
  drain:
    # deleteLocalData: true
    # ignoreDaemonSets: true
    force: true