Skip to content

Commit

Permalink
📂 Update openshift specific files.
Browse files Browse the repository at this point in the history
  • Loading branch information
serverless-qe committed Dec 27, 2024
1 parent f45d284 commit 364f595
Show file tree
Hide file tree
Showing 85 changed files with 13,374 additions and 108 deletions.
2 changes: 1 addition & 1 deletion .ko.yaml
Original file line number Diff line number Diff line change
@@ -1,2 +1,2 @@
# Use :nonroot base image for all containers
defaultBaseImage: gcr.io/distroless/static:nonroot
defaultBaseImage: registry.access.redhat.com/ubi8/ubi-minimal:latest
78 changes: 78 additions & 0 deletions Makefile
Original file line number Diff line number Diff line change
@@ -0,0 +1,78 @@
# This file is needed by kubebuilder but all functionality should exist inside
# the hack/ files.

CGO_ENABLED=0
GOOS=linux
# Ignore errors if there are no images.
CONTROL_PLANE_IMAGES=./control-plane/cmd/kafka-controller ./control-plane/cmd/webhook-kafka ./control-plane/cmd/post-install
TEST_IMAGES=$(shell find ./test/cmd ./test/test_images ./vendor/knative.dev/reconciler-test/cmd ./vendor/knative.dev/eventing/test/test_images -mindepth 1 -maxdepth 1 -type d 2> /dev/null)
BRANCH=
TEST=
IMAGE=
TEST_IMAGE_TAG ?= latest

# Guess location of openshift/release repo. NOTE: override this if it is not correct.
OPENSHIFT=${CURDIR}/../../github.com/openshift/release

# Build and install commands.
install:
for img in $(CONTROL_PLANE_IMAGES); do \
go install $$img ; \
done
.PHONY: install

test-install:
for img in $(TEST_IMAGES); do \
go install $$img ; \
done
.PHONY: test-install

test-e2e:
openshift/e2e-tests.sh
.PHONY: test-e2e

test-conformance:
openshift/e2e-conformance-tests.sh
.PHONY: test-conformance

test-reconciler:
openshift/e2e-rekt-tests.sh
.PHONY: test-reconciler

test-reconciler-keda:
INSTALL_KEDA="true" openshift/e2e-rekt-tests.sh
.PHONY: test-reconciler-keda

test-reconciler-encryption-auth:
openshift/e2e-rekt-encryption-auth-tests.sh
.PHONY: test-reconciler

# Requires ko 0.2.0 or newer.
# Target used by github actions.
test-images:
for img in $(TEST_IMAGES); do \
KO_DOCKER_REPO=$(DOCKER_REPO_OVERRIDE) ko build --tags=$(TEST_IMAGE_TAG) $(KO_FLAGS) -B $$img || \
KO_DOCKER_REPO=$(DOCKER_REPO_OVERRIDE) ko resolve --tags=$(TEST_IMAGE_TAG) $(KO_FLAGS) -RBf $$img || exit $?; \
done
.PHONY: test-images

test-image-single:
KO_DOCKER_REPO=$(DOCKER_REPO_OVERRIDE) ko build --tags=$(TEST_IMAGE_TAG) $(KO_FLAGS) -B test/test_images/$(IMAGE) || \
KO_DOCKER_REPO=$(DOCKER_REPO_OVERRIDE) ko resolve --tags=$(TEST_IMAGE_TAG) $(KO_FLAGS) -RBf test/test_images/$(IMAGE)
.PHONY: test-image-single

# Run make DOCKER_REPO_OVERRIDE=<your_repo> test-e2e-local if test images are available
# in the given repository. Make sure you first build and push them there by running `make test-images`.
# Run make BRANCH=<ci_promotion_name> test-e2e-local if test images from the latest CI
# build for this branch should be used. Example: `make BRANCH=knative-v0.14.2 test-e2e-local`.
# If neither DOCKER_REPO_OVERRIDE nor BRANCH are defined the tests will use test images
# from the last nightly build.
# If TEST is defined then only the single test will be run.
test-e2e-local:
./openshift/e2e-tests-local.sh $(TEST)
.PHONY: test-e2e-local

# Generate an aggregated knative release yaml file, as well as a CI file with replaced image references
generate-release:
./openshift/release/generate-release.sh $(RELEASE)
.PHONY: generate-release
25 changes: 15 additions & 10 deletions OWNERS
Original file line number Diff line number Diff line change
@@ -1,13 +1,18 @@
# Sponsored by the Event Delivery WG
# At least one WG lead from https://github.com/knative/community/blob/master/working-groups/WORKING-GROUPS.md#event-delivery
# must be in the "approvers" list.
# The OWNERS file is used by prow to automatically merge approved PRs.

approvers:
- technical-oversight-committee
- knative-release-leads
- eventing-writers
- eventing-kafka-broker-approvers
- alanfx
- aliok
- creydr
- lberk
- matzew
- mgencur
- pierDipi
- warrenvw

reviewers:
- eventing-writers
- eventing-kafka-broker-approvers
- eventing-kafka-broker-reviewers
- aliok
- creydr
- lberk
- matzew
- pierDipi

This file was deleted.

Original file line number Diff line number Diff line change
Expand Up @@ -195,6 +195,4 @@ spec:
capabilities:
drop:
- ALL
seccompProfile:
type: RuntimeDefault
restartPolicy: Always
Original file line number Diff line number Diff line change
Expand Up @@ -89,8 +89,6 @@ spec:
capabilities:
drop:
- ALL
seccompProfile:
type: RuntimeDefault

ports:
- name: https-webhook
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -112,6 +112,4 @@ spec:
capabilities:
drop:
- ALL
seccompProfile:
type: RuntimeDefault
restartPolicy: Always
2 changes: 0 additions & 2 deletions control-plane/config/post-install/500-post-install-job.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -51,5 +51,3 @@ spec:
capabilities:
drop:
- ALL
seccompProfile:
type: RuntimeDefault
Original file line number Diff line number Diff line change
Expand Up @@ -51,5 +51,3 @@ spec:
capabilities:
drop:
- ALL
seccompProfile:
type: RuntimeDefault
1 change: 1 addition & 0 deletions control-plane/pkg/reconciler/broker/namespaced_broker.go
Original file line number Diff line number Diff line change
Expand Up @@ -412,6 +412,7 @@ func (r *NamespacedReconciler) configMapsFromSystemNamespace(broker *eventing.Br
"config-tracing",
"config-features",
"kafka-config-logging",
"config-openshift-trusted-cabundle",
}
resources := make([]unstructured.Unstructured, 0, len(configMaps))
for _, name := range configMaps {
Expand Down
7 changes: 1 addition & 6 deletions data-plane/config/broker/500-dispatcher.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -121,16 +121,13 @@ spec:
- name: WAIT_STARTUP_SECONDS
value: "8"
- name: JAVA_TOOL_OPTIONS
value: "-XX:+CrashOnOutOfMemoryError -XX:InitialRAMPercentage=70.0 -XX:MinRAMPercentage=70.0 -XX:MaxRAMPercentage=70.0"
value: "-XX:+CrashOnOutOfMemoryError"

resources:
requests:
cpu: 1000m
# 600Mi for virtual replicas + 100Mi overhead
memory: 700Mi
limits:
cpu: 2000m
memory: 1000Mi

livenessProbe:
failureThreshold: 3
Expand Down Expand Up @@ -158,8 +155,6 @@ spec:
capabilities:
drop:
- ALL
seccompProfile:
type: RuntimeDefault
volumes:
- name: config-kafka-broker-data-plane
configMap:
Expand Down
2 changes: 0 additions & 2 deletions data-plane/config/broker/500-receiver.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -165,8 +165,6 @@ spec:
capabilities:
drop:
- ALL
seccompProfile:
type: RuntimeDefault
volumes:
- name: kafka-broker-brokers-triggers
configMap:
Expand Down
7 changes: 1 addition & 6 deletions data-plane/config/channel/500-dispatcher.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -121,16 +121,13 @@ spec:
- name: WAIT_STARTUP_SECONDS
value: "8"
- name: JAVA_TOOL_OPTIONS
value: "-XX:+CrashOnOutOfMemoryError -XX:InitialRAMPercentage=70.0 -XX:MinRAMPercentage=70.0 -XX:MaxRAMPercentage=70.0"
value: "-XX:+CrashOnOutOfMemoryError"

resources:
requests:
cpu: 1000m
# 600Mi for virtual replicas + 100Mi overhead
memory: 700Mi
limits:
cpu: 2000m
memory: 1000Mi

livenessProbe:
failureThreshold: 3
Expand Down Expand Up @@ -158,8 +155,6 @@ spec:
capabilities:
drop:
- ALL
seccompProfile:
type: RuntimeDefault
volumes:
- name: config-kafka-channel-data-plane
configMap:
Expand Down
2 changes: 0 additions & 2 deletions data-plane/config/channel/500-receiver.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -166,8 +166,6 @@ spec:
capabilities:
drop:
- ALL
seccompProfile:
type: RuntimeDefault
volumes:
- name: kafka-channel-channels-subscriptions
configMap:
Expand Down
2 changes: 0 additions & 2 deletions data-plane/config/sink/500-receiver.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -165,8 +165,6 @@ spec:
capabilities:
drop:
- ALL
seccompProfile:
type: RuntimeDefault
volumes:
- name: kafka-sink-sinks
configMap:
Expand Down
7 changes: 1 addition & 6 deletions data-plane/config/source/500-dispatcher.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -121,16 +121,13 @@ spec:
- name: WAIT_STARTUP_SECONDS
value: "8"
- name: JAVA_TOOL_OPTIONS
value: "-XX:+CrashOnOutOfMemoryError -XX:InitialRAMPercentage=70.0 -XX:MinRAMPercentage=70.0 -XX:MaxRAMPercentage=70.0"
value: "-XX:+CrashOnOutOfMemoryError"

resources:
requests:
cpu: 1000m
# 600Mi for virtual replicas + 100Mi overhead
memory: 700Mi
limits:
cpu: 2000m
memory: 1000Mi

livenessProbe:
failureThreshold: 3
Expand Down Expand Up @@ -158,8 +155,6 @@ spec:
capabilities:
drop:
- ALL
seccompProfile:
type: RuntimeDefault
volumes:
- name: config-kafka-source-data-plane
configMap:
Expand Down
1 change: 0 additions & 1 deletion hack/update-checksums.sh
Original file line number Diff line number Diff line change
Expand Up @@ -26,7 +26,6 @@ fi

source $(dirname $0)/../vendor/knative.dev/hack/library.sh

go run "${REPO_ROOT_DIR}/vendor/knative.dev/pkg/configmap/hash-gen" "${REPO_ROOT_DIR}"/control-plane/config/eventing-kafka-broker/200-controller/100-config-tracing.yaml
go run "${REPO_ROOT_DIR}/vendor/knative.dev/pkg/configmap/hash-gen" "${REPO_ROOT_DIR}"/control-plane/config/eventing-kafka-broker/200-controller/100-config-logging.yaml
go run "${REPO_ROOT_DIR}/vendor/knative.dev/pkg/configmap/hash-gen" "${REPO_ROOT_DIR}"/control-plane/config/eventing-kafka-broker/200-controller/100-config-kafka-leader-election.yaml
go run "${REPO_ROOT_DIR}/vendor/knative.dev/pkg/configmap/hash-gen" "${REPO_ROOT_DIR}"/control-plane/config/eventing-kafka-broker/200-controller/100-config-kafka-features.yaml
Expand Down
26 changes: 26 additions & 0 deletions openshift/ci-operator/build-image/Dockerfile
Original file line number Diff line number Diff line change
@@ -0,0 +1,26 @@
# DO NOT EDIT! Generated Dockerfile.

FROM registry.ci.openshift.org/ocp/4.17:cli-artifacts as tools

# Dockerfile to bootstrap build and test in openshift-ci
FROM registry.ci.openshift.org/openshift/release:rhel-8-release-golang-1.22-openshift-4.17 as builder

ARG TARGETARCH

COPY --from=tools /usr/share/openshift/linux_$TARGETARCH/oc.rhel8 /usr/bin/oc

RUN ln -s /usr/bin/oc /usr/bin/kubectl

RUN yum install -y httpd-tools

RUN wget https://raw.githubusercontent.com/helm/helm/main/scripts/get-helm-3 && \
chmod 700 ./get-helm-3

RUN ./get-helm-3 --version v3.11.3 --no-sudo && helm version

RUN GOFLAGS='' go install github.com/mikefarah/yq/v3@latest
RUN GOFLAGS='' go install -tags="exclude_graphdriver_btrfs containers_image_openpgp" github.com/containers/skopeo/cmd/[email protected]

# go install creates $GOPATH/.cache with root permissions, we delete it here
# to avoid permission issues with the runtime users
RUN rm -rf $GOPATH/.cache
35 changes: 35 additions & 0 deletions openshift/ci-operator/knative-images/event_display/Dockerfile
Original file line number Diff line number Diff line change
@@ -0,0 +1,35 @@
# DO NOT EDIT! Generated Dockerfile for vendor/knative.dev/eventing/cmd/event_display.
ARG GO_BUILDER=registry.ci.openshift.org/openshift/release:rhel-8-release-golang-1.22-openshift-4.17
ARG GO_RUNTIME=registry.access.redhat.com/ubi8/ubi-minimal

FROM $GO_BUILDER as builder

WORKDIR /workspace
COPY . .

ENV CGO_ENABLED=1
ENV GOEXPERIMENT=strictfipsruntime

RUN go build -tags strictfipsruntime -o /usr/bin/main ./vendor/knative.dev/eventing/cmd/event_display

FROM $GO_RUNTIME

ARG VERSION=knative-nightly

COPY --from=builder /usr/bin/main /usr/bin/event_display
COPY LICENSE /licenses/

USER 65532

LABEL \
com.redhat.component="openshift-serverless-1-eventing-kafka-broker-event-display-rhel8-container" \
name="openshift-serverless-1/eventing-kafka-broker-event-display-rhel8" \
version=$VERSION \
summary="Red Hat OpenShift Serverless 1 Eventing Kafka Broker Event Display" \
maintainer="[email protected]" \
description="Red Hat OpenShift Serverless 1 Eventing Kafka Broker Event Display" \
io.k8s.display-name="Red Hat OpenShift Serverless 1 Eventing Kafka Broker Event Display" \
io.k8s.description="Red Hat OpenShift Serverless Eventing Kafka Broker Event Display" \
io.openshift.tags="event-display"

ENTRYPOINT ["/usr/bin/event_display"]
Loading

0 comments on commit 364f595

Please sign in to comment.