WIP: A new version of gitlab (14.3.0) is available
current diff:
--- current-deployment.yaml
+++ future-deployment.yaml
@@ -7,7 +7,7 @@
namespace: gitlab
labels:
app: gitaly
- chart: gitaly-5.2.2
+ chart: gitaly-5.3.0
release: gitlab-test
heritage: Helm
@@ -28,7 +28,7 @@
namespace: gitlab
labels:
app: gitlab-shell
- chart: gitlab-shell-5.2.2
+ chart: gitlab-shell-5.3.0
release: gitlab-test
heritage: Helm
@@ -47,7 +47,7 @@
namespace: gitlab
labels:
app: praefect
- chart: praefect-5.2.2
+ chart: praefect-5.3.0
release: gitlab-test
heritage: Helm
@@ -66,7 +66,7 @@
namespace: gitlab
labels:
app: sidekiq
- chart: sidekiq-5.2.2
+ chart: sidekiq-5.3.0
release: gitlab-test
heritage: Helm
@@ -87,7 +87,7 @@
namespace: gitlab
labels:
app: webservice
- chart: webservice-5.2.2
+ chart: webservice-5.3.0
release: gitlab-test
heritage: Helm
gitlab.com/webservice-name: default
@@ -350,7 +350,7 @@
namespace: gitlab
labels:
app: gitaly
- chart: gitaly-5.2.2
+ chart: gitaly-5.3.0
release: gitlab-test
heritage: Helm
@@ -428,7 +428,7 @@
namespace: gitlab
labels:
app: gitlab-exporter
- chart: gitlab-exporter-5.2.2
+ chart: gitlab-exporter-5.3.0
release: gitlab-test
heritage: Helm
@@ -518,7 +518,7 @@
namespace: gitlab
labels:
app: gitlab-shell
- chart: gitlab-shell-5.2.2
+ chart: gitlab-shell-5.3.0
release: gitlab-test
heritage: Helm
@@ -611,7 +611,7 @@
#UseLogin no
#PermitUserEnvironment no
#Compression delayed
- ClientAliveInterval 0
+ ClientAliveInterval 0
#ClientAliveCountMax 3
#UseDNS no
PidFile /srv/sshd/sshd.pid
@@ -656,10 +656,10 @@
# Enable the use of Git protcol v2
AcceptEnv GIT_PROTOCOL
-
+
# Hard disable all forwarding
DisableForwarding yes
-
+
# Specifies the maximum number of concurrent unauthenticated connections to the SSH daemon.
# See `man sshd_config(5)`
@@ -678,7 +678,7 @@
namespace: gitlab
labels:
app: gitlab-shell
- chart: gitlab-shell-5.2.2
+ chart: gitlab-shell-5.3.0
release: gitlab-test
heritage: Helm
@@ -738,7 +738,7 @@
namespace: gitlab
labels:
app: gitlab-shell
- chart: gitlab-shell-5.2.2
+ chart: gitlab-shell-5.3.0
release: gitlab-test
heritage: Helm
@@ -753,7 +753,7 @@
namespace: gitlab
labels:
app: migrations
- chart: migrations-5.2.2
+ chart: migrations-5.3.0
release: gitlab-test
heritage: Helm
@@ -846,7 +846,7 @@
namespace: gitlab
labels:
app: praefect
- chart: praefect-5.2.2
+ chart: praefect-5.3.0
release: gitlab-test
heritage: Helm
@@ -908,7 +908,7 @@
namespace: gitlab
labels:
app: sidekiq
- chart: sidekiq-5.2.2
+ chart: sidekiq-5.3.0
release: gitlab-test
heritage: Helm
@@ -1105,6 +1105,9 @@
path_style: true
aws_access_key_id: "<%= File.read('/etc/gitlab/minio/accesskey').strip.dump[1..-2] %>"
aws_secret_access_key: "<%= File.read('/etc/gitlab/minio/secretkey').strip.dump[1..-2] %>"
+ local_store:
+ enabled: false
+ path:
mattermost:
enabled: false
## Registry Integration
@@ -1192,7 +1195,7 @@
namespace: gitlab
labels:
app: task-runner
- chart: task-runner-5.2.2
+ chart: task-runner-5.3.0
release: gitlab-test
heritage: Helm
@@ -1374,6 +1377,9 @@
path_style: true
aws_access_key_id: "<%= File.read('/etc/gitlab/minio/accesskey').strip.dump[1..-2] %>"
aws_secret_access_key: "<%= File.read('/etc/gitlab/minio/secretkey').strip.dump[1..-2] %>"
+ local_store:
+ enabled: false
+ path:
mattermost:
enabled: false
## Registry Integration
@@ -1467,7 +1473,7 @@
namespace: gitlab
labels:
app: webservice
- chart: webservice-5.2.2
+ chart: webservice-5.3.0
release: gitlab-test
heritage: Helm
@@ -1651,6 +1657,9 @@
path_style: true
aws_access_key_id: "<%= File.read('/etc/gitlab/minio/accesskey').strip.dump[1..-2] %>"
aws_secret_access_key: "<%= File.read('/etc/gitlab/minio/secretkey').strip.dump[1..-2] %>"
+ local_store:
+ enabled: false
+ path:
mattermost:
enabled: false
gitlab_ci:
@@ -1749,7 +1758,7 @@
namespace: gitlab
labels:
app: webservice
- chart: webservice-5.2.2
+ chart: webservice-5.3.0
release: gitlab-test
heritage: Helm
@@ -2120,8 +2129,9 @@
data:
add-headers: gitlab/gitlab-test-nginx-ingress-custom-add-headers
- hsts: "false"
+ hsts: "true"
hsts-include-subdomains: "false"
+ hsts-max-age: "63072000"
log-format-stream: $remote_addr - [$time_local] TCP
log-format-upstream: $remote_addr - $remote_user [$time_local] "$request" $status $body_bytes_sent "$http_referer" "$http_user_agent" $request_length $request_time [$proxy_upstream_name] [$proxy_upstream_name] $upstream_addr $upstream_response_length $upstream_response_time $upstream_status $req_id
server-name-hash-bucket-size: "256"
@@ -2599,13 +2609,13 @@
namespace: gitlab
labels:
app: gitlab
- chart: gitlab-5.2.2
+ chart: gitlab-5.3.0
release: gitlab-test
heritage: Helm
data:
- gitlabVersion: "14.2.2"
- gitlabChartVersion: "5.2.2"
+ gitlabVersion: "14.3.0"
+ gitlabChartVersion: "5.3.0"
---
# Source: gitlab/templates/initdb-configmap.yaml
apiVersion: v1
@@ -2615,7 +2625,7 @@
namespace: gitlab
labels:
app: gitlab
- chart: gitlab-5.2.2
+ chart: gitlab-5.3.0
release: gitlab-test
heritage: Helm
@@ -17764,7 +17774,7 @@
namespace: gitlab
labels:
app: gitaly
- chart: gitaly-5.2.2
+ chart: gitaly-5.3.0
release: gitlab-test
heritage: Helm
@@ -17778,7 +17788,7 @@
ports:
- port: 8075
name: gitaly
- targetPort: 8075
+ targetPort: grcp-gitaly
selector:
app: gitaly
release: gitlab-test
@@ -17792,7 +17802,7 @@
namespace: gitlab
labels:
app: gitlab-exporter
- chart: gitlab-exporter-5.2.2
+ chart: gitlab-exporter-5.3.0
release: gitlab-test
heritage: Helm
@@ -17818,7 +17828,7 @@
namespace: gitlab
labels:
app: gitlab-shell
- chart: gitlab-shell-5.2.2
+ chart: gitlab-shell-5.3.0
release: gitlab-test
heritage: Helm
@@ -17844,7 +17854,7 @@
namespace: gitlab
labels:
app: praefect
- chart: praefect-5.2.2
+ chart: praefect-5.3.0
release: gitlab-test
heritage: Helm
@@ -17879,7 +17889,7 @@
namespace: gitlab
labels:
app: webservice
- chart: webservice-5.2.2
+ chart: webservice-5.3.0
release: gitlab-test
heritage: Helm
@@ -18481,7 +18491,7 @@
namespace: gitlab
labels:
app: gitlab-exporter
- chart: gitlab-exporter-5.2.2
+ chart: gitlab-exporter-5.3.0
release: gitlab-test
heritage: Helm
@@ -18498,13 +18508,13 @@
metadata:
labels:
app: gitlab-exporter
- chart: gitlab-exporter-5.2.2
+ chart: gitlab-exporter-5.3.0
release: gitlab-test
heritage: Helm
annotations:
- checksum/config: 24d53e283ce86d3fdc2681f62a781785b4df44d7d17e691466380ac367c43bdf
+ checksum/config: ff217a55fae7839de9b1f8980d67bd31efcf1fb1cc3d158cd44b54dc5aa5979c
gitlab.com/prometheus_path: /metrics
gitlab.com/prometheus_port: "9168"
gitlab.com/prometheus_scrape: "true"
@@ -18665,7 +18675,7 @@
namespace: gitlab
labels:
app: gitlab-shell
- chart: gitlab-shell-5.2.2
+ chart: gitlab-shell-5.3.0
release: gitlab-test
heritage: Helm
@@ -18681,14 +18691,14 @@
metadata:
labels:
app: gitlab-shell
- chart: gitlab-shell-5.2.2
+ chart: gitlab-shell-5.3.0
release: gitlab-test
heritage: Helm
annotations:
- checksum/config: 5b152be24ac152dbde60c5c9f343cfc6c239fb886742a1b067a3d1ae789c3408
- checksum/config-sshd: 8af5b7882eeaaaba81e831955c254d488c7d98aaa0978390f013ca7f39d7152d
+ checksum/config: b62ea185f27f521e4f5c1fd384a48fb585d35b2f6d12ebad7ca83c36fbb45f8a
+ checksum/config-sshd: 0dbc3903df3e4e82fa0db9d2031df1a6fd231ac32b48dec260970ac18c68027b
cluster-autoscaler.kubernetes.io/safe-to-evict: "true"
spec:
initContainers:
@@ -18741,7 +18751,7 @@
containers:
- name: gitlab-shell
- image: "registry.gitlab.com/gitlab-org/build/cng/gitlab-shell:v13.19.1"
+ image: "registry.gitlab.com/gitlab-org/build/cng/gitlab-shell:v13.21.0"
ports:
- containerPort: 2222
name: ssh
@@ -18828,7 +18838,7 @@
namespace: gitlab
labels:
app: sidekiq
- chart: sidekiq-5.2.2
+ chart: sidekiq-5.3.0
release: gitlab-test
heritage: Helm
@@ -18846,14 +18856,14 @@
metadata:
labels:
app: sidekiq
- chart: sidekiq-5.2.2
+ chart: sidekiq-5.3.0
release: gitlab-test
heritage: Helm
queue-pod-name: native-chart
annotations:
- checksum/configmap: bf17fa11c4b43298b6354cf76c6c60efdb3afa8b6b94f46b43a999944905a85d
+ checksum/configmap: 63e1d606558bd2ac6bbb99bd4dedfcbc14306711d08287356defe76b3aff242d
cluster-autoscaler.kubernetes.io/safe-to-evict: "true"
co.elastic.logs/json.add_error_key: "true"
co.elastic.logs/json.keys_under_root: "false"
@@ -18914,7 +18924,7 @@
requests:
cpu: 50m
- name: dependencies
- image: "registry.gitlab.com/gitlab-org/build/cng/gitlab-sidekiq-ce:v14.2.2"
+ image: "registry.gitlab.com/gitlab-org/build/cng/gitlab-sidekiq-ce:v14.3.0"
args:
- /scripts/wait-for-deps
env:
@@ -18950,7 +18960,7 @@
containers:
- name: sidekiq
- image: "registry.gitlab.com/gitlab-org/build/cng/gitlab-sidekiq-ce:v14.2.2"
+ image: "registry.gitlab.com/gitlab-org/build/cng/gitlab-sidekiq-ce:v14.3.0"
env:
- name: prometheus_multiproc_dir
value: /metrics
@@ -19133,7 +19143,7 @@
namespace: gitlab
labels:
app: task-runner
- chart: task-runner-5.2.2
+ chart: task-runner-5.3.0
release: gitlab-test
heritage: Helm
@@ -19152,13 +19162,13 @@
metadata:
labels:
app: task-runner
- chart: task-runner-5.2.2
+ chart: task-runner-5.3.0
release: gitlab-test
heritage: Helm
annotations:
- checksum/config: ba4d95c5efe8fa296282cf08649306166787840d28986a0870a46c64cde8618e
+ checksum/config: d3da2c58a63c0cf2a6453f767ba9b1aa33528a814bc5e7d3a597fb4b9edca34a
cluster-autoscaler.kubernetes.io/safe-to-evict: "true"
spec:
securityContext:
@@ -19216,7 +19226,7 @@
- /bin/bash
- -c
- sh /var/opt/gitlab/templates/configure-gsutil && while sleep 3600; do :; done
- image: "registry.gitlab.com/gitlab-org/build/cng/gitlab-toolbox-ce:v14.2.2"
+ image: "registry.gitlab.com/gitlab-org/build/cng/gitlab-toolbox-ce:v14.3.0"
env:
- name: ARTIFACTS_BUCKET_NAME
value: gitlab-artifacts
@@ -19384,7 +19394,7 @@
namespace: gitlab
labels:
app: webservice
- chart: webservice-5.2.2
+ chart: webservice-5.3.0
release: gitlab-test
heritage: Helm
gitlab.com/webservice-name: default
@@ -19392,7 +19402,8 @@
annotations:
spec:
- replicas: 8
+ # Don't provide replicas when HPA are present
+ # replicas: 8
selector:
matchLabels:
app: webservice
@@ -19404,7 +19415,7 @@
metadata:
labels:
app: webservice
- chart: webservice-5.2.2
+ chart: webservice-5.3.0
release: gitlab-test
heritage: Helm
gitlab.com/webservice-name: default
@@ -19412,7 +19423,7 @@
annotations:
- checksum/config: ad5b61c7424678aa703cd85b0e473e5277ce379a6c653ae24599dd65e2ce512b
+ checksum/config: 93443a2716931f4bbd40605d64dc2d7bd78387c8bb804d379890ac92959d1ee0
cluster-autoscaler.kubernetes.io/safe-to-evict: "true"
co.elastic.logs/json.add_error_key: "true"
co.elastic.logs/json.keys_under_root: "false"
@@ -19485,7 +19496,7 @@
requests:
cpu: 50m
- name: dependencies
- image: registry.gitlab.com/gitlab-org/build/cng/gitlab-webservice-ce:v14.2.2
+ image: registry.gitlab.com/gitlab-org/build/cng/gitlab-webservice-ce:v14.3.0
args:
- /scripts/wait-for-deps
env:
@@ -19517,7 +19528,7 @@
containers:
- name: webservice
- image: registry.gitlab.com/gitlab-org/build/cng/gitlab-webservice-ce:v14.2.2
+ image: registry.gitlab.com/gitlab-org/build/cng/gitlab-webservice-ce:v14.3.0
ports:
- containerPort: 8080
name: webservice
@@ -19553,8 +19564,6 @@
- name: SHUTDOWN_BLACKOUT_SECONDS
value: "10"
- - name: GITLAB_TRACING_URL
- value: ""
- name: WORKHORSE_ARCHIVE_CACHE_DISABLED
value: "true"
@@ -19612,7 +19621,7 @@
cpu: 300m
memory: 2.5G
- name: gitlab-workhorse
- image: "registry.gitlab.com/gitlab-org/build/cng/gitlab-workhorse-ce:v14.2.2"
+ image: "registry.gitlab.com/gitlab-org/build/cng/gitlab-workhorse-ce:v14.3.0"
ports:
- containerPort: 8181
name: workhorse
@@ -20179,7 +20188,8 @@
annotations:
spec:
- replicas: 4
+ # Don't provide replicas when HPA are present
+ # replicas: 4
selector:
matchLabels:
app: registry
@@ -20239,7 +20249,7 @@
containers:
- name: registry
- image: "registry.gitlab.com/gitlab-org/build/cng/gitlab-container-registry:v3.9.0-gitlab"
+ image: "registry.gitlab.com/gitlab-org/build/cng/gitlab-container-registry:v3.11.0-gitlab"
env:
volumeMounts:
@@ -20309,7 +20319,7 @@
namespace: gitlab
labels:
app: gitlab-shell
- chart: gitlab-shell-5.2.2
+ chart: gitlab-shell-5.3.0
release: gitlab-test
heritage: Helm
@@ -20334,7 +20344,7 @@
namespace: gitlab
labels:
app: sidekiq
- chart: sidekiq-5.2.2
+ chart: sidekiq-5.3.0
release: gitlab-test
heritage: Helm
@@ -20359,7 +20369,7 @@
namespace: gitlab
labels:
app: webservice
- chart: webservice-5.2.2
+ chart: webservice-5.3.0
release: gitlab-test
heritage: Helm
gitlab.com/webservice-name: default
@@ -20410,7 +20420,7 @@
namespace: gitlab
labels:
app: gitaly
- chart: gitaly-5.2.2
+ chart: gitaly-5.3.0
release: gitlab-test
heritage: Helm
@@ -20430,13 +20440,13 @@
labels:
storage: default
app: gitaly
- chart: gitaly-5.2.2
+ chart: gitaly-5.3.0
release: gitlab-test
heritage: Helm
annotations:
- checksum/config: 6206683fb497314831a9da4274c0d6771d0ece7102f23366085c0ccd45befd65
+ checksum/config: 9a83b792774f64d6e2682dbde0c62075b0bc01de6b7af200d414ab9bf652a855
co.elastic.logs/json.add_error_key: "true"
co.elastic.logs/json.keys_under_root: "false"
gitlab.com/prometheus_scrape: "true"
@@ -20496,10 +20506,12 @@
containers:
- name: gitaly
- image: "registry.gitlab.com/gitlab-org/build/cng/gitaly:v14.2.2"
+ image: "registry.gitlab.com/gitlab-org/build/cng/gitaly:v14.3.0"
ports:
- containerPort: 8075
+ name: grcp-gitaly
- containerPort: 9236
+ name: metrics
env:
- name: CONFIG_TEMPLATE_DIRECTORY
value: '/etc/gitaly/templates'
@@ -20509,8 +20521,6 @@
value: '/etc/gitaly/config.toml'
- name: SSL_CERT_DIR
value: '/etc/ssl/certs'
- - name: GITALY_PROMETHEUS_LISTEN_ADDR
- value: ':9236'
volumeMounts:
@@ -20597,7 +20607,7 @@
namespace: gitlab
labels:
app: praefect
- chart: praefect-5.2.2
+ chart: praefect-5.3.0
release: gitlab-test
heritage: Helm
@@ -20606,7 +20616,7 @@
matchLabels:
app: praefect
release: gitlab-test
-
+
serviceName: gitlab-test-praefect
replicas: 2
podManagementPolicy: Parallel
@@ -20614,13 +20624,13 @@
metadata:
labels:
app: praefect
- chart: praefect-5.2.2
+ chart: praefect-5.3.0
release: gitlab-test
heritage: Helm
annotations:
- checksum/config: 16a71308ddf4f7731387c20510a3daec675a1e76a91fd35c746160e1f39fede5
+ checksum/config: abfd488a448a5d0148b5fbb74b1017fd035cf37ec7765a6dfd082a44d1123b75
spec:
affinity:
podAntiAffinity:
@@ -20670,7 +20680,7 @@
containers:
- name: praefect
- image: "registry.gitlab.com/gitlab-org/build/cng/gitaly:v14.2.2"
+ image: "registry.gitlab.com/gitlab-org/build/cng/gitaly:v14.3.0"
ports:
- containerPort: 8075
- containerPort: 9236
@@ -21106,7 +21116,7 @@
namespace: gitlab
labels:
app: migrations
- chart: migrations-5.2.2
+ chart: migrations-5.3.0
release: gitlab-test
heritage: Helm
@@ -21117,7 +21127,7 @@
metadata:
labels:
app: migrations
- chart: migrations-5.2.2
+ chart: migrations-5.3.0
release: gitlab-test
heritage: Helm
@@ -21165,7 +21175,7 @@
containers:
- name: migrations
- image: "registry.gitlab.com/gitlab-org/build/cng/gitlab-toolbox-ce:v14.2.2"
+ image: "registry.gitlab.com/gitlab-org/build/cng/gitlab-toolbox-ce:v14.3.0"
args:
- /scripts/wait-for-deps
- /scripts/db-migrate
@@ -21247,7 +21257,7 @@
path: migrations/initial_root_password
- secret:
name: "gitlab-test-gitlab-runner-secret"
- items:
+ items:
- key: runner-registration-token
path: migrations/gitlab_shared_runners_registration_token
- name: migrations-secrets
@@ -21318,7 +21328,7 @@
namespace: gitlab
labels:
app: webservice
- chart: webservice-5.2.2
+ chart: webservice-5.3.0
release: gitlab-test
heritage: Helm
gitlab.com/webservice-name: default
@@ -21343,10 +21353,6 @@
backend:
serviceName: gitlab-test-webservice-default
servicePort: 8181
- - path: /admin/sidekiq/
- backend:
- serviceName: gitlab-test-webservice-default
- servicePort: 8080
tls:
- hosts:
- gitlab.test.freedesktop.org
@@ -21513,7 +21519,7 @@
namespace: gitlab
labels:
app: gitlab
- chart: gitlab-5.2.2
+ chart: gitlab-5.3.0
release: gitlab-test
heritage: Helm
@@ -21530,7 +21536,7 @@
namespace: gitlab
labels:
app: gitlab
- chart: gitlab-5.2.2
+ chart: gitlab-5.3.0
release: gitlab-test
heritage: Helm
@@ -21569,7 +21575,7 @@
kubectl --namespace=$namespace label \
--overwrite \
- secret $secret_name app=gitlab chart=gitlab-5.2.2 release=gitlab-test heritage=Helm
+ secret $secret_name app=gitlab chart=gitlab-5.3.0 release=gitlab-test heritage=Helm
}
# Args: secretname, args
@@ -21726,7 +21732,7 @@
namespace: gitlab
labels:
app: gitlab
- chart: gitlab-5.2.2
+ chart: gitlab-5.3.0
release: gitlab-test
heritage: Helm
@@ -21821,7 +21827,7 @@
namespace: gitlab
labels:
app: shared-secrets
- chart: shared-secrets-5.2.2
+ chart: shared-secrets-5.3.0
release: gitlab-test
heritage: Helm
@@ -21842,7 +21848,7 @@
namespace: gitlab
labels:
app: shared-secrets
- chart: shared-secrets-5.2.2
+ chart: shared-secrets-5.3.0
release: gitlab-test
heritage: Helm
@@ -21863,7 +21869,7 @@
apiVersion: v1
kind: Pod
metadata:
- name: gitlab-test-webservice-test-runner-lemic
+ name: gitlab-test-webservice-test-runner-1s7cy
namespace: gitlab
annotations:
"helm.sh/hook": test
@@ -21871,7 +21877,7 @@
spec:
containers:
- name: test-runner
- image: registry.gitlab.com/gitlab-org/build/cng/gitlab-webservice-ce:v14.2.2
+ image: registry.gitlab.com/gitlab-org/build/cng/gitlab-webservice-ce:v14.3.0
command: ['sh', '/tests/test_login']
volumeMounts:
- name: tests
@@ -21896,11 +21902,11 @@
apiVersion: batch/v1
kind: Job
metadata:
- name: gitlab-test-shared-secrets-1-4gv
+ name: gitlab-test-shared-secrets-1-3df
namespace: gitlab
labels:
app: gitlab
- chart: gitlab-5.2.2
+ chart: gitlab-5.3.0
release: gitlab-test
heritage: Helm
@@ -21912,7 +21918,7 @@
metadata:
labels:
app: gitlab
- chart: gitlab-5.2.2
+ chart: gitlab-5.3.0
release: gitlab-test
heritage: Helm
@@ -21953,7 +21959,7 @@
namespace: gitlab
labels:
app: gitlab
- chart: gitlab-5.2.2
+ chart: gitlab-5.3.0
release: gitlab-test
heritage: Helm
@@ -21981,9 +21987,9 @@
command: ['/bin/sh', '/scripts/runcheck']
env:
- name: GITLAB_VERSION
- value: '14.2.2'
+ value: '14.3.0'
- name: CHART_VERSION
- value: '5.2.2'
+ value: '5.3.0'
volumeMounts:
- name: chart-info
mountPath: /chart-info