diff --git a/helm-chart/Chart.yaml b/helm-chart/Chart.yaml index 0c3e5d745..cb875706d 100644 --- a/helm-chart/Chart.yaml +++ b/helm-chart/Chart.yaml @@ -1,6 +1,6 @@ apiVersion: v2 name: kubeshark -version: "52.3.95" +version: "52.3.96" description: The API Traffic Analyzer for Kubernetes home: https://kubeshark.co keywords: diff --git a/helm-chart/values.yaml b/helm-chart/values.yaml index d78c531b7..8bf0eef82 100644 --- a/helm-chart/values.yaml +++ b/helm-chart/values.yaml @@ -40,9 +40,7 @@ tap: dns: nameservers: [] searches: [] - options: - - name: ndots - value: "2" + options: [] resources: hub: limits: diff --git a/manifests/complete.yaml b/manifests/complete.yaml index 8ef1fb3da..7f1fd2026 100644 --- a/manifests/complete.yaml +++ b/manifests/complete.yaml @@ -4,10 +4,10 @@ apiVersion: networking.k8s.io/v1 kind: NetworkPolicy metadata: labels: - helm.sh/chart: kubeshark-52.3.95 + helm.sh/chart: kubeshark-52.3.96 app.kubernetes.io/name: kubeshark app.kubernetes.io/instance: kubeshark - app.kubernetes.io/version: "52.3.95" + app.kubernetes.io/version: "52.3.96" app.kubernetes.io/managed-by: Helm annotations: name: kubeshark-hub-network-policy @@ -34,10 +34,10 @@ apiVersion: networking.k8s.io/v1 kind: NetworkPolicy metadata: labels: - helm.sh/chart: kubeshark-52.3.95 + helm.sh/chart: kubeshark-52.3.96 app.kubernetes.io/name: kubeshark app.kubernetes.io/instance: kubeshark - app.kubernetes.io/version: "52.3.95" + app.kubernetes.io/version: "52.3.96" app.kubernetes.io/managed-by: Helm annotations: name: kubeshark-front-network-policy @@ -61,10 +61,10 @@ apiVersion: networking.k8s.io/v1 kind: NetworkPolicy metadata: labels: - helm.sh/chart: kubeshark-52.3.95 + helm.sh/chart: kubeshark-52.3.96 app.kubernetes.io/name: kubeshark app.kubernetes.io/instance: kubeshark - app.kubernetes.io/version: "52.3.95" + app.kubernetes.io/version: "52.3.96" app.kubernetes.io/managed-by: Helm annotations: name: kubeshark-worker-network-policy @@ -90,10 +90,10 @@ apiVersion: v1 kind: ServiceAccount metadata: labels: - helm.sh/chart: kubeshark-52.3.95 + helm.sh/chart: kubeshark-52.3.96 app.kubernetes.io/name: kubeshark app.kubernetes.io/instance: kubeshark - app.kubernetes.io/version: "52.3.95" + app.kubernetes.io/version: "52.3.96" app.kubernetes.io/managed-by: Helm annotations: name: kubeshark-service-account @@ -107,10 +107,10 @@ metadata: namespace: default labels: app.kubeshark.co/app: hub - helm.sh/chart: kubeshark-52.3.95 + helm.sh/chart: kubeshark-52.3.96 app.kubernetes.io/name: kubeshark app.kubernetes.io/instance: kubeshark - app.kubernetes.io/version: "52.3.95" + app.kubernetes.io/version: "52.3.96" app.kubernetes.io/managed-by: Helm stringData: LICENSE: '' @@ -124,10 +124,10 @@ metadata: namespace: default labels: app.kubeshark.co/app: hub - helm.sh/chart: kubeshark-52.3.95 + helm.sh/chart: kubeshark-52.3.96 app.kubernetes.io/name: kubeshark app.kubernetes.io/instance: kubeshark - app.kubernetes.io/version: "52.3.95" + app.kubernetes.io/version: "52.3.96" app.kubernetes.io/managed-by: Helm stringData: AUTH_SAML_X509_CRT: | @@ -140,10 +140,10 @@ metadata: namespace: default labels: app.kubeshark.co/app: hub - helm.sh/chart: kubeshark-52.3.95 + helm.sh/chart: kubeshark-52.3.96 app.kubernetes.io/name: kubeshark app.kubernetes.io/instance: kubeshark - app.kubernetes.io/version: "52.3.95" + app.kubernetes.io/version: "52.3.96" app.kubernetes.io/managed-by: Helm stringData: AUTH_SAML_X509_KEY: | @@ -155,10 +155,10 @@ metadata: name: kubeshark-nginx-config-map namespace: default labels: - helm.sh/chart: kubeshark-52.3.95 + helm.sh/chart: kubeshark-52.3.96 app.kubernetes.io/name: kubeshark app.kubernetes.io/instance: kubeshark - app.kubernetes.io/version: "52.3.95" + app.kubernetes.io/version: "52.3.96" app.kubernetes.io/managed-by: Helm data: default.conf: | @@ -219,10 +219,10 @@ metadata: namespace: default labels: app.kubeshark.co/app: hub - helm.sh/chart: kubeshark-52.3.95 + helm.sh/chart: kubeshark-52.3.96 app.kubernetes.io/name: kubeshark app.kubernetes.io/instance: kubeshark - app.kubernetes.io/version: "52.3.95" + app.kubernetes.io/version: "52.3.96" app.kubernetes.io/managed-by: Helm data: POD_REGEX: '.*' @@ -255,7 +255,7 @@ data: TIMEZONE: ' ' CLOUD_LICENSE_ENABLED: 'true' DUPLICATE_TIMEFRAME: '200ms' - ENABLED_DISSECTORS: 'amqp,dns,http,icmp,kafka,redis,sctp,syscall,ws,ldap,radius' + ENABLED_DISSECTORS: 'amqp,dns,http,icmp,kafka,redis,sctp,syscall,ws,ldap,radius,diameter' CUSTOM_MACROS: '{"https":"tls and (http or http2)"}' DISSECTORS_UPDATING_ENABLED: 'true' DETECT_DUPLICATES: 'false' @@ -263,17 +263,16 @@ data: PCAP_TIME_INTERVAL: '1m' PCAP_MAX_TIME: '1h' PCAP_MAX_SIZE: '500MB' - PCAP_SRC_DIR: 'pcapdump' --- # Source: kubeshark/templates/02-cluster-role.yaml apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRole metadata: labels: - helm.sh/chart: kubeshark-52.3.95 + helm.sh/chart: kubeshark-52.3.96 app.kubernetes.io/name: kubeshark app.kubernetes.io/instance: kubeshark - app.kubernetes.io/version: "52.3.95" + app.kubernetes.io/version: "52.3.96" app.kubernetes.io/managed-by: Helm annotations: name: kubeshark-cluster-role-default @@ -318,10 +317,10 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: ClusterRoleBinding metadata: labels: - helm.sh/chart: kubeshark-52.3.95 + helm.sh/chart: kubeshark-52.3.96 app.kubernetes.io/name: kubeshark app.kubernetes.io/instance: kubeshark - app.kubernetes.io/version: "52.3.95" + app.kubernetes.io/version: "52.3.96" app.kubernetes.io/managed-by: Helm annotations: name: kubeshark-cluster-role-binding-default @@ -340,10 +339,10 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: Role metadata: labels: - helm.sh/chart: kubeshark-52.3.95 + helm.sh/chart: kubeshark-52.3.96 app.kubernetes.io/name: kubeshark app.kubernetes.io/instance: kubeshark - app.kubernetes.io/version: "52.3.95" + app.kubernetes.io/version: "52.3.96" app.kubernetes.io/managed-by: Helm annotations: name: kubeshark-self-config-role @@ -370,10 +369,10 @@ apiVersion: rbac.authorization.k8s.io/v1 kind: RoleBinding metadata: labels: - helm.sh/chart: kubeshark-52.3.95 + helm.sh/chart: kubeshark-52.3.96 app.kubernetes.io/name: kubeshark app.kubernetes.io/instance: kubeshark - app.kubernetes.io/version: "52.3.95" + app.kubernetes.io/version: "52.3.96" app.kubernetes.io/managed-by: Helm annotations: name: kubeshark-self-config-role-binding @@ -393,10 +392,10 @@ kind: Service metadata: labels: app.kubeshark.co/app: hub - helm.sh/chart: kubeshark-52.3.95 + helm.sh/chart: kubeshark-52.3.96 app.kubernetes.io/name: kubeshark app.kubernetes.io/instance: kubeshark - app.kubernetes.io/version: "52.3.95" + app.kubernetes.io/version: "52.3.96" app.kubernetes.io/managed-by: Helm annotations: name: kubeshark-hub @@ -415,10 +414,10 @@ apiVersion: v1 kind: Service metadata: labels: - helm.sh/chart: kubeshark-52.3.95 + helm.sh/chart: kubeshark-52.3.96 app.kubernetes.io/name: kubeshark app.kubernetes.io/instance: kubeshark - app.kubernetes.io/version: "52.3.95" + app.kubernetes.io/version: "52.3.96" app.kubernetes.io/managed-by: Helm annotations: name: kubeshark-front @@ -437,10 +436,10 @@ kind: Service apiVersion: v1 metadata: labels: - helm.sh/chart: kubeshark-52.3.95 + helm.sh/chart: kubeshark-52.3.96 app.kubernetes.io/name: kubeshark app.kubernetes.io/instance: kubeshark - app.kubernetes.io/version: "52.3.95" + app.kubernetes.io/version: "52.3.96" app.kubernetes.io/managed-by: Helm annotations: prometheus.io/scrape: 'true' @@ -450,10 +449,10 @@ metadata: spec: selector: app.kubeshark.co/app: worker - helm.sh/chart: kubeshark-52.3.95 + helm.sh/chart: kubeshark-52.3.96 app.kubernetes.io/name: kubeshark app.kubernetes.io/instance: kubeshark - app.kubernetes.io/version: "52.3.95" + app.kubernetes.io/version: "52.3.96" app.kubernetes.io/managed-by: Helm ports: - name: metrics @@ -466,10 +465,10 @@ kind: Service apiVersion: v1 metadata: labels: - helm.sh/chart: kubeshark-52.3.95 + helm.sh/chart: kubeshark-52.3.96 app.kubernetes.io/name: kubeshark app.kubernetes.io/instance: kubeshark - app.kubernetes.io/version: "52.3.95" + app.kubernetes.io/version: "52.3.96" app.kubernetes.io/managed-by: Helm annotations: prometheus.io/scrape: 'true' @@ -479,10 +478,10 @@ metadata: spec: selector: app.kubeshark.co/app: hub - helm.sh/chart: kubeshark-52.3.95 + helm.sh/chart: kubeshark-52.3.96 app.kubernetes.io/name: kubeshark app.kubernetes.io/instance: kubeshark - app.kubernetes.io/version: "52.3.95" + app.kubernetes.io/version: "52.3.96" app.kubernetes.io/managed-by: Helm ports: - name: metrics @@ -497,10 +496,10 @@ metadata: labels: app.kubeshark.co/app: worker sidecar.istio.io/inject: "false" - helm.sh/chart: kubeshark-52.3.95 + helm.sh/chart: kubeshark-52.3.96 app.kubernetes.io/name: kubeshark app.kubernetes.io/instance: kubeshark - app.kubernetes.io/version: "52.3.95" + app.kubernetes.io/version: "52.3.96" app.kubernetes.io/managed-by: Helm annotations: name: kubeshark-worker-daemon-set @@ -515,10 +514,10 @@ spec: metadata: labels: app.kubeshark.co/app: worker - helm.sh/chart: kubeshark-52.3.95 + helm.sh/chart: kubeshark-52.3.96 app.kubernetes.io/name: kubeshark app.kubernetes.io/instance: kubeshark - app.kubernetes.io/version: "52.3.95" + app.kubernetes.io/version: "52.3.96" app.kubernetes.io/managed-by: Helm name: kubeshark-worker-daemon-set namespace: kubeshark @@ -528,7 +527,7 @@ spec: - /bin/sh - -c - mkdir -p /sys/fs/bpf && mount | grep -q '/sys/fs/bpf' || mount -t bpf bpf /sys/fs/bpf - image: 'docker.io/kubeshark/worker:v52.3.95' + image: 'docker.io/kubeshark/worker:v52.3.96' imagePullPolicy: Always name: check-bpf securityContext: @@ -540,7 +539,7 @@ spec: - command: - ./tracer - -init-bpf - image: 'docker.io/kubeshark/worker:v52.3.95' + image: 'docker.io/kubeshark/worker:v52.3.96' imagePullPolicy: Always name: init-bpf securityContext: @@ -570,7 +569,7 @@ spec: - 'auto' - -staletimeout - '30' - image: 'docker.io/kubeshark/worker:v52.3.95' + image: 'docker.io/kubeshark/worker:v52.3.96' imagePullPolicy: Always name: sniffer ports: @@ -656,7 +655,7 @@ spec: - -disable-tls-log # - -loglevel # - 'warning' - image: 'docker.io/kubeshark/worker:v52.3.95' + image: 'docker.io/kubeshark/worker:v52.3.96' imagePullPolicy: Always name: tracer env: @@ -758,10 +757,10 @@ kind: Deployment metadata: labels: app.kubeshark.co/app: hub - helm.sh/chart: kubeshark-52.3.95 + helm.sh/chart: kubeshark-52.3.96 app.kubernetes.io/name: kubeshark app.kubernetes.io/instance: kubeshark - app.kubernetes.io/version: "52.3.95" + app.kubernetes.io/version: "52.3.96" app.kubernetes.io/managed-by: Helm annotations: name: kubeshark-hub @@ -777,10 +776,10 @@ spec: metadata: labels: app.kubeshark.co/app: hub - helm.sh/chart: kubeshark-52.3.95 + helm.sh/chart: kubeshark-52.3.96 app.kubernetes.io/name: kubeshark app.kubernetes.io/instance: kubeshark - app.kubernetes.io/version: "52.3.95" + app.kubernetes.io/version: "52.3.96" app.kubernetes.io/managed-by: Helm spec: dnsPolicy: ClusterFirstWithHostNet @@ -810,7 +809,7 @@ spec: value: 'https://api.kubeshark.co' - name: PROFILING_ENABLED value: 'false' - image: 'docker.io/kubeshark/hub:v52.3.95' + image: 'docker.io/kubeshark/hub:v52.3.96' imagePullPolicy: Always readinessProbe: periodSeconds: 10 @@ -843,6 +842,15 @@ spec: - name: saml-x509-volume mountPath: "/etc/saml/x509" readOnly: true + affinity: + nodeAffinity: + requiredDuringSchedulingIgnoredDuringExecution: + nodeSelectorTerms: + - matchExpressions: + - key: kubernetes.io/os + operator: In + values: + - linux volumes: - name: saml-x509-volume projected: @@ -864,10 +872,10 @@ kind: Deployment metadata: labels: app.kubeshark.co/app: front - helm.sh/chart: kubeshark-52.3.95 + helm.sh/chart: kubeshark-52.3.96 app.kubernetes.io/name: kubeshark app.kubernetes.io/instance: kubeshark - app.kubernetes.io/version: "52.3.95" + app.kubernetes.io/version: "52.3.96" app.kubernetes.io/managed-by: Helm annotations: name: kubeshark-front @@ -883,10 +891,10 @@ spec: metadata: labels: app.kubeshark.co/app: front - helm.sh/chart: kubeshark-52.3.95 + helm.sh/chart: kubeshark-52.3.96 app.kubernetes.io/name: kubeshark app.kubernetes.io/instance: kubeshark - app.kubernetes.io/version: "52.3.95" + app.kubernetes.io/version: "52.3.96" app.kubernetes.io/managed-by: Helm spec: containers: @@ -921,7 +929,7 @@ spec: value: 'false' - name: REACT_APP_SENTRY_ENVIRONMENT value: 'production' - image: 'docker.io/kubeshark/front:v52.3.95' + image: 'docker.io/kubeshark/front:v52.3.96' imagePullPolicy: Always name: kubeshark-front livenessProbe: @@ -951,6 +959,15 @@ spec: mountPath: /etc/nginx/conf.d/default.conf subPath: default.conf readOnly: true + affinity: + nodeAffinity: + requiredDuringSchedulingIgnoredDuringExecution: + nodeSelectorTerms: + - matchExpressions: + - key: kubernetes.io/os + operator: In + values: + - linux volumes: - name: nginx-config configMap: