diff --git a/upup/models/cloudup/resources/addons/networking.amazon-vpc-routed-eni/k8s-1.10.yaml.template b/upup/models/cloudup/resources/addons/networking.amazon-vpc-routed-eni/k8s-1.10.yaml.template index b20e32377c327..cfb651dbe2dcd 100644 --- a/upup/models/cloudup/resources/addons/networking.amazon-vpc-routed-eni/k8s-1.10.yaml.template +++ b/upup/models/cloudup/resources/addons/networking.amazon-vpc-routed-eni/k8s-1.10.yaml.template @@ -1,13 +1,21 @@ -# Vendored from https://github.com/aws/amazon-vpc-cni-k8s/blob/release-1.0/config/v1.0/aws-k8s-cni.yaml +# Vendored from https://github.com/aws/amazon-vpc-cni-k8s/blob/v1.2.0/config/v1.2/aws-k8s-cni.yaml apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: name: aws-node rules: +- apiGroups: + - crd.k8s.amazonaws.com + resources: + - "*" + - namespaces + verbs: + - "*" - apiGroups: [""] resources: - pods + - nodes - namespaces verbs: ["list", "watch", "get"] - apiGroups: ["extensions"] @@ -67,7 +75,10 @@ spec: - key: CriticalAddonsOnly operator: Exists containers: - - image: "{{- or .Networking.AmazonVPC.ImageName "602401143452.dkr.ecr.us-west-2.amazonaws.com/amazon-k8s-cni:1.0.0" }}" + - image: "{{- or .Networking.AmazonVPC.ImageName "602401143452.dkr.ecr.us-west-2.amazonaws.com/amazon-k8s-cni:1.2.1" }}" + ports: + - containerPort: 60000 + name: metrics name: aws-node env: - name: AWS_VPC_K8S_CNI_LOGLEVEL @@ -76,6 +87,10 @@ spec: valueFrom: fieldRef: fieldPath: spec.nodeName + - name: WATCH_NAMESPACE + valueFrom: + fieldRef: + fieldPath: metadata.namespace resources: requests: cpu: 10m @@ -104,3 +119,17 @@ spec: hostPath: path: /var/run/docker.sock +--- +apiVersion: apiextensions.k8s.io/v1beta1 +kind: CustomResourceDefinition +metadata: + name: eniconfigs.crd.k8s.amazonaws.com +spec: + scope: Cluster + group: crd.k8s.amazonaws.com + version: v1alpha1 + names: + scope: Cluster + plural: eniconfigs + singuar: eniconfig + kind: ENIConfig diff --git a/upup/models/cloudup/resources/addons/networking.amazon-vpc-routed-eni/k8s-1.7.yaml.template b/upup/models/cloudup/resources/addons/networking.amazon-vpc-routed-eni/k8s-1.7.yaml.template index 6bd26b71561de..422832539a65c 100644 --- a/upup/models/cloudup/resources/addons/networking.amazon-vpc-routed-eni/k8s-1.7.yaml.template +++ b/upup/models/cloudup/resources/addons/networking.amazon-vpc-routed-eni/k8s-1.7.yaml.template @@ -1,13 +1,21 @@ -# Vendored from https://github.com/aws/amazon-vpc-cni-k8s/blob/release-1.0/config/v1.0/aws-k8s-cni.yaml +# Vendored from https://github.com/aws/amazon-vpc-cni-k8s/blob/v1.2.0/config/v1.2/aws-k8s-cni.yaml apiVersion: rbac.authorization.k8s.io/v1beta1 kind: ClusterRole metadata: name: aws-node rules: +- apiGroups: + - crd.k8s.amazonaws.com + resources: + - "*" + - namespaces + verbs: + - "*" - apiGroups: [""] resources: - pods + - nodes - namespaces verbs: ["list", "watch", "get"] - apiGroups: ["extensions"] @@ -69,7 +77,10 @@ spec: - key: CriticalAddonsOnly operator: Exists containers: - - image: "{{- or .Networking.AmazonVPC.ImageName "602401143452.dkr.ecr.us-west-2.amazonaws.com/amazon-k8s-cni:1.0.0" }}" + - image: "{{- or .Networking.AmazonVPC.ImageName "602401143452.dkr.ecr.us-west-2.amazonaws.com/amazon-k8s-cni:1.2.1" }}" + ports: + - containerPort: 60000 + name: metrics name: aws-node env: - name: AWS_VPC_K8S_CNI_LOGLEVEL @@ -78,6 +89,10 @@ spec: valueFrom: fieldRef: fieldPath: spec.nodeName + - name: WATCH_NAMESPACE + valueFrom: + fieldRef: + fieldPath: metadata.namespace resources: requests: cpu: 10m @@ -106,6 +121,21 @@ spec: hostPath: path: /var/run/docker.sock +--- +apiVersion: apiextensions.k8s.io/v1beta1 +kind: CustomResourceDefinition +metadata: + name: eniconfigs.crd.k8s.amazonaws.com +spec: + scope: Cluster + group: crd.k8s.amazonaws.com + version: v1alpha1 + names: + scope: Cluster + plural: eniconfigs + singuar: eniconfig + kind: ENIConfig + --- kind: ClusterRole diff --git a/upup/models/cloudup/resources/addons/networking.amazon-vpc-routed-eni/k8s-1.8.yaml.template b/upup/models/cloudup/resources/addons/networking.amazon-vpc-routed-eni/k8s-1.8.yaml.template index e6ca53e7c5a40..bfecc229fbc29 100644 --- a/upup/models/cloudup/resources/addons/networking.amazon-vpc-routed-eni/k8s-1.8.yaml.template +++ b/upup/models/cloudup/resources/addons/networking.amazon-vpc-routed-eni/k8s-1.8.yaml.template @@ -1,13 +1,21 @@ -# Vendored from https://github.com/aws/amazon-vpc-cni-k8s/blob/release-1.0/config/v1.0/aws-k8s-cni.yaml +# Vendored from https://github.com/aws/amazon-vpc-cni-k8s/blob/v1.2.0/config/v1.2/aws-k8s-cni.yaml apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: name: aws-node rules: +- apiGroups: + - crd.k8s.amazonaws.com + resources: + - "*" + - namespaces + verbs: + - "*" - apiGroups: [""] resources: - pods + - nodes - namespaces verbs: ["list", "watch", "get"] - apiGroups: ["extensions"] @@ -67,7 +75,10 @@ spec: - key: CriticalAddonsOnly operator: Exists containers: - - image: "{{- or .Networking.AmazonVPC.ImageName "602401143452.dkr.ecr.us-west-2.amazonaws.com/amazon-k8s-cni:1.0.0" }}" + - image: "{{- or .Networking.AmazonVPC.ImageName "602401143452.dkr.ecr.us-west-2.amazonaws.com/amazon-k8s-cni:1.2.1" }}" + ports: + - containerPort: 60000 + name: metrics name: aws-node env: - name: AWS_VPC_K8S_CNI_LOGLEVEL @@ -76,6 +87,10 @@ spec: valueFrom: fieldRef: fieldPath: spec.nodeName + - name: WATCH_NAMESPACE + valueFrom: + fieldRef: + fieldPath: metadata.namespace resources: requests: cpu: 10m @@ -104,6 +119,21 @@ spec: hostPath: path: /var/run/docker.sock +--- +apiVersion: apiextensions.k8s.io/v1beta1 +kind: CustomResourceDefinition +metadata: + name: eniconfigs.crd.k8s.amazonaws.com +spec: + scope: Cluster + group: crd.k8s.amazonaws.com + version: v1alpha1 + names: + scope: Cluster + plural: eniconfigs + singuar: eniconfig + kind: ENIConfig + --- kind: ClusterRole