Unify production branches#140
Draft
matilote wants to merge 41 commits into
Draft
Conversation
* feat: add lodestar (#56) * feat: add lodestar validator * refactor: remove hpa * fix: remove autoscaling * refactor: change bash to sh * feat: add http port and fix probes * feat: add rest for checks * chore: remove probes * Add envFrom to execution container (#67) * Add envFrom to execution container in case we have externalSecrets enabled * Set seq as part of the charts and not as a extraflag * clean up seq and mining extraData on nethermind execution charts * Remove space on charts * Fix peers not set propertly on statefulset for execution-beacon (#72) * Fix peers not set propertly on statefulset for execution-beacon * Switch to targetPeers * remove teku prune option * define upperbound peers for neku * add min targetPeers for teku lower bound --------- Signed-off-by: Mateusz Jędrzejewski <33068017+matilote@users.noreply.github.com> Co-authored-by: Denis Policastro <denis.policastro@gmail.com> Co-authored-by: Marcos Antonio Maceo <35319980+stdevMac@users.noreply.github.com>
* QS Audit, see PR for details/impacts * fix reference * fix configmap * revert chown on init due to init-nimbus issues * TWI-10 fixes * Added restrictions for dirk/vouch * Added more missing restrictions for containers * Taking updated configmap from cleanup-prep * Including changes from latest in cleanup-prep * changing to global * add staking-prefix to secrets * move security ctx to global in values, and move pod sctx to higher level * add defaults to init * fix values.yml * change defaults * move fsGroup to podSecurityContext level * move capabilities to the container level * remove root fs from pod level ctx * remove read only fs from w3s container * update mevboost stx * update stx for exec and beacon * add missing stx * change init.sh * check if chown is required * remove root fs from execution container * fix promrules * remove rootfs from beacon containers * add additonal default rules for nimbus and lodestar * use el flag instead * remove default sa from vals * fix sa * add stx to validators * fix values * use global * fixes * fix pubkeys * fix perms --------- Signed-off-by: Mateusz Jędrzejewski <33068017+matilote@users.noreply.github.com> Co-authored-by: Mark Liu <mark@prove.com.au>
* trying out chiseled nm * fix execution commands and args * fix ends * fix env-nodeport * try static envs * fix variable scope * fix extra brackets * Add ingress (#78) * Add ingress to execution-beacon * Set Service Type configurable * Add global.ingress values and test template generation * fix envFrom - redundant * Fix init container when p2p type is LoadBalancer (#79) * Fix init container when p2p type is LoadBalancer * Remove extra dash in POD_PREFIX_NAME variable * Fix syntax errors (#80) * Add support for externalTrafficPolicy on execution-beacon svc (#82) * Fix erigon's metrics flags indentation * Generate non-nethermind extra flags when nethermind is not chosen * Remove quotes from Nethermind's extra flags --------- Signed-off-by: Mateusz Jędrzejewski <33068017+matilote@users.noreply.github.com> Signed-off-by: Miguel Tenorio <46824157+AntiD2ta@users.noreply.github.com> Co-authored-by: Miguel Tenorio <46824157+AntiD2ta@users.noreply.github.com> Co-authored-by: AntiD2ta <mtpotro41@gmail.com>
This reverts commit 7149531.
* Update statefulset.yaml Signed-off-by: Mateusz Jędrzejewski <33068017+matilote@users.noreply.github.com> * Update values.yaml Signed-off-by: Mateusz Jędrzejewski <33068017+matilote@users.noreply.github.com> --------- Signed-off-by: Mateusz Jędrzejewski <33068017+matilote@users.noreply.github.com>
Signed-off-by: Mateusz Jędrzejewski <33068017+matilote@users.noreply.github.com>
Signed-off-by: Mateusz Jędrzejewski <33068017+matilote@users.noreply.github.com>
Signed-off-by: Mateusz Jędrzejewski <33068017+matilote@users.noreply.github.com>
Signed-off-by: Mateusz Jędrzejewski <33068017+matilote@users.noreply.github.com>
Signed-off-by: Mateusz Jędrzejewski <33068017+matilote@users.noreply.github.com>
Signed-off-by: Mateusz Jędrzejewski <33068017+matilote@users.noreply.github.com>
Signed-off-by: Mateusz Jędrzejewski <33068017+matilote@users.noreply.github.com>
Signed-off-by: Mateusz Jędrzejewski <33068017+matilote@users.noreply.github.com>
Signed-off-by: Mateusz Jędrzejewski <33068017+matilote@users.noreply.github.com>
Signed-off-by: Mateusz Jędrzejewski <33068017+matilote@users.noreply.github.com>
* Rename env vars * Add admin-ips * Test new format * Update admin IPs --------- Co-authored-by: Aivaras Ko <aivaras.ko@gmail.com>
* Update statefulset.yaml Signed-off-by: Mateusz Jędrzejewski <33068017+matilote@users.noreply.github.com> * Update values.yaml Signed-off-by: Mateusz Jędrzejewski <33068017+matilote@users.noreply.github.com> --------- Signed-off-by: Mateusz Jędrzejewski <33068017+matilote@users.noreply.github.com>
Signed-off-by: Mateusz Jędrzejewski <33068017+matilote@users.noreply.github.com>
Signed-off-by: Mateusz Jędrzejewski <33068017+matilote@users.noreply.github.com>
Signed-off-by: Mateusz Jędrzejewski <33068017+matilote@users.noreply.github.com>
Signed-off-by: Mateusz Jędrzejewski <33068017+matilote@users.noreply.github.com>
* add balval helm chart * remove redundant * fix version * add hostname to ch * fix hostname * fix network * configmap and volumes * add Chart.lock * add clickhouse from bitnami * remove clickhouse and use official * update lock file * add init image values * hardcode service type * not using eso env for init * use busybox for init * fix stx * read custom yaml * try all perms * revert * values fix * add yarn cache volume * remove alertlabels * fix path service monitor * add prom rules * fix template
* Add gasLimit option * Add gasLimit to validator
* Initial multi instance Vouch setup * Add topologySpreadConstraints * Update Vouch multiinstance configuration * Rename inactive to fallback
* Fix hardcoded securityContext * Drop podSecurityContext * Update securityContext for init containers * Change init containers user * init-nimbus user 1000 * Separate Pod and Containers level securityContext * Make runAsUser configurable
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
No description provided.