Created
October 14, 2021 01:51
-
-
Save deanpeterson/181febc398d0be558c32da3193a52b70 to your computer and use it in GitHub Desktop.
tekton-pipeline-webhook
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
kind: Pod | |
apiVersion: v1 | |
metadata: | |
generateName: tekton-pipelines-webhook-744fbfbf89- | |
annotations: | |
k8s.v1.cni.cncf.io/network-status: |- | |
[{ | |
"name": "openshift-sdn", | |
"interface": "eth0", | |
"ips": [ | |
"10.130.0.208" | |
], | |
"default": true, | |
"dns": {} | |
}] | |
k8s.v1.cni.cncf.io/networks-status: |- | |
[{ | |
"name": "openshift-sdn", | |
"interface": "eth0", | |
"ips": [ | |
"10.130.0.208" | |
], | |
"default": true, | |
"dns": {} | |
}] | |
openshift.io/scc: restricted | |
deletionTimestamp: '2021-10-13T06:18:57Z' | |
resourceVersion: '238570944' | |
name: tekton-pipelines-webhook-744fbfbf89-2r7s9 | |
uid: 79a626cf-2802-4f88-a183-91d2bd6171d8 | |
deletionGracePeriodSeconds: 30 | |
creationTimestamp: '2021-10-13T06:18:25Z' | |
managedFields: | |
- manager: kube-controller-manager | |
operation: Update | |
apiVersion: v1 | |
time: '2021-10-13T06:18:25Z' | |
fieldsType: FieldsV1 | |
fieldsV1: | |
'f:metadata': | |
'f:generateName': {} | |
'f:labels': | |
'f:version': {} | |
'f:pod-template-hash': {} | |
'f:app': {} | |
'f:app.kubernetes.io/name': {} | |
.: {} | |
'f:app.kubernetes.io/part-of': {} | |
'f:pipeline.tekton.dev/release': {} | |
'f:app.kubernetes.io/version': {} | |
'f:app.kubernetes.io/instance': {} | |
'f:app.kubernetes.io/component': {} | |
'f:ownerReferences': | |
.: {} | |
'k:{"uid":"d99b4a3c-7690-456a-8122-8db41d9c154a"}': | |
.: {} | |
'f:apiVersion': {} | |
'f:blockOwnerDeletion': {} | |
'f:controller': {} | |
'f:kind': {} | |
'f:name': {} | |
'f:uid': {} | |
'f:spec': | |
'f:volumes': | |
.: {} | |
'k:{"name":"config-service-cabundle-volume"}': | |
.: {} | |
'f:configMap': | |
.: {} | |
'f:defaultMode': {} | |
'f:items': {} | |
'f:name': {} | |
'f:name': {} | |
'k:{"name":"config-trusted-cabundle-volume"}': | |
.: {} | |
'f:configMap': | |
.: {} | |
'f:defaultMode': {} | |
'f:items': {} | |
'f:name': {} | |
'f:name': {} | |
'f:containers': | |
'k:{"name":"webhook"}': | |
'f:image': {} | |
'f:volumeMounts': | |
.: {} | |
'k:{"mountPath":"/tekton-custom-certs/ca-bundle.crt"}': | |
.: {} | |
'f:mountPath': {} | |
'f:name': {} | |
'f:readOnly': {} | |
'f:subPath': {} | |
'k:{"mountPath":"/tekton-custom-certs/service-ca.crt"}': | |
.: {} | |
'f:mountPath': {} | |
'f:name': {} | |
'f:readOnly': {} | |
'f:subPath': {} | |
'f:terminationMessagePolicy': {} | |
.: {} | |
'f:resources': | |
.: {} | |
'f:limits': | |
.: {} | |
'f:cpu': {} | |
'f:memory': {} | |
'f:requests': | |
.: {} | |
'f:cpu': {} | |
'f:memory': {} | |
'f:livenessProbe': | |
.: {} | |
'f:failureThreshold': {} | |
'f:httpGet': | |
.: {} | |
'f:path': {} | |
'f:port': {} | |
'f:scheme': {} | |
'f:initialDelaySeconds': {} | |
'f:periodSeconds': {} | |
'f:successThreshold': {} | |
'f:timeoutSeconds': {} | |
'f:env': | |
.: {} | |
'k:{"name":"CONFIG_LEADERELECTION_NAME"}': | |
.: {} | |
'f:name': {} | |
'f:value': {} | |
'k:{"name":"CONFIG_LOGGING_NAME"}': | |
.: {} | |
'f:name': {} | |
'f:value': {} | |
'k:{"name":"CONFIG_OBSERVABILITY_NAME"}': | |
.: {} | |
'f:name': {} | |
'f:value': {} | |
'k:{"name":"METRICS_DOMAIN"}': | |
.: {} | |
'f:name': {} | |
'f:value': {} | |
'k:{"name":"SYSTEM_NAMESPACE"}': | |
.: {} | |
'f:name': {} | |
'f:valueFrom': | |
.: {} | |
'f:fieldRef': | |
.: {} | |
'f:apiVersion': {} | |
'f:fieldPath': {} | |
'k:{"name":"WEBHOOK_SECRET_NAME"}': | |
.: {} | |
'f:name': {} | |
'f:value': {} | |
'k:{"name":"WEBHOOK_SERVICE_NAME"}': | |
.: {} | |
'f:name': {} | |
'f:value': {} | |
'f:readinessProbe': | |
.: {} | |
'f:failureThreshold': {} | |
'f:httpGet': | |
.: {} | |
'f:path': {} | |
'f:port': {} | |
'f:scheme': {} | |
'f:initialDelaySeconds': {} | |
'f:periodSeconds': {} | |
'f:successThreshold': {} | |
'f:timeoutSeconds': {} | |
'f:securityContext': | |
.: {} | |
'f:allowPrivilegeEscalation': {} | |
'f:capabilities': | |
.: {} | |
'f:drop': {} | |
'f:runAsGroup': {} | |
'f:terminationMessagePath': {} | |
'f:imagePullPolicy': {} | |
'f:ports': | |
.: {} | |
'k:{"containerPort":8008,"protocol":"TCP"}': | |
.: {} | |
'f:containerPort': {} | |
'f:name': {} | |
'f:protocol': {} | |
'k:{"containerPort":8080,"protocol":"TCP"}': | |
.: {} | |
'f:containerPort': {} | |
'f:name': {} | |
'f:protocol': {} | |
'k:{"containerPort":8443,"protocol":"TCP"}': | |
.: {} | |
'f:containerPort': {} | |
'f:name': {} | |
'f:protocol': {} | |
'k:{"containerPort":9090,"protocol":"TCP"}': | |
.: {} | |
'f:containerPort': {} | |
'f:name': {} | |
'f:protocol': {} | |
'f:name': {} | |
'f:dnsPolicy': {} | |
'f:serviceAccount': {} | |
'f:restartPolicy': {} | |
'f:schedulerName': {} | |
'f:terminationGracePeriodSeconds': {} | |
'f:serviceAccountName': {} | |
'f:enableServiceLinks': {} | |
'f:securityContext': | |
.: {} | |
'f:fsGroup': {} | |
'f:seLinuxOptions': | |
'f:level': {} | |
'f:affinity': | |
.: {} | |
'f:nodeAffinity': | |
.: {} | |
'f:requiredDuringSchedulingIgnoredDuringExecution': | |
.: {} | |
'f:nodeSelectorTerms': {} | |
'f:podAntiAffinity': | |
.: {} | |
'f:preferredDuringSchedulingIgnoredDuringExecution': {} | |
- manager: kubelet | |
operation: Update | |
apiVersion: v1 | |
time: '2021-10-13T06:18:25Z' | |
fieldsType: FieldsV1 | |
fieldsV1: | |
'f:status': | |
'f:conditions': | |
'k:{"type":"ContainersReady"}': | |
.: {} | |
'f:lastProbeTime': {} | |
'f:lastTransitionTime': {} | |
'f:message': {} | |
'f:reason': {} | |
'f:status': {} | |
'f:type': {} | |
'k:{"type":"Initialized"}': | |
.: {} | |
'f:lastProbeTime': {} | |
'f:lastTransitionTime': {} | |
'f:status': {} | |
'f:type': {} | |
'k:{"type":"Ready"}': | |
.: {} | |
'f:lastProbeTime': {} | |
'f:lastTransitionTime': {} | |
'f:message': {} | |
'f:reason': {} | |
'f:status': {} | |
'f:type': {} | |
'f:containerStatuses': {} | |
'f:hostIP': {} | |
'f:startTime': {} | |
- manager: multus | |
operation: Update | |
apiVersion: v1 | |
time: '2021-10-13T06:18:28Z' | |
fieldsType: FieldsV1 | |
fieldsV1: | |
'f:metadata': | |
'f:annotations': | |
'f:k8s.v1.cni.cncf.io/network-status': {} | |
'f:k8s.v1.cni.cncf.io/networks-status': {} | |
namespace: openshift-pipelines | |
ownerReferences: | |
- apiVersion: apps/v1 | |
kind: ReplicaSet | |
name: tekton-pipelines-webhook-744fbfbf89 | |
uid: d99b4a3c-7690-456a-8122-8db41d9c154a | |
controller: true | |
blockOwnerDeletion: true | |
labels: | |
app: tekton-pipelines-webhook | |
app.kubernetes.io/part-of: tekton-pipelines | |
app.kubernetes.io/instance: default | |
pipeline.tekton.dev/release: v0.24.3 | |
app.kubernetes.io/version: v0.24.3 | |
app.kubernetes.io/component: webhook | |
version: v0.24.3 | |
app.kubernetes.io/name: webhook | |
pod-template-hash: 744fbfbf89 | |
spec: | |
restartPolicy: Always | |
serviceAccountName: tekton-pipelines-webhook | |
imagePullSecrets: | |
- name: tekton-pipelines-webhook-dockercfg-scr2l | |
priority: 0 | |
schedulerName: default-scheduler | |
enableServiceLinks: true | |
affinity: | |
nodeAffinity: | |
requiredDuringSchedulingIgnoredDuringExecution: | |
nodeSelectorTerms: | |
- matchExpressions: | |
- key: kubernetes.io/os | |
operator: NotIn | |
values: | |
- windows | |
podAntiAffinity: | |
preferredDuringSchedulingIgnoredDuringExecution: | |
- weight: 100 | |
podAffinityTerm: | |
labelSelector: | |
matchLabels: | |
app.kubernetes.io/component: webhook | |
app.kubernetes.io/instance: default | |
app.kubernetes.io/name: webhook | |
app.kubernetes.io/part-of: tekton-pipelines | |
topologyKey: kubernetes.io/hostname | |
terminationGracePeriodSeconds: 30 | |
preemptionPolicy: PreemptLowerPriority | |
nodeName: master3 | |
securityContext: | |
seLinuxOptions: | |
level: 's0:c28,c2' | |
fsGroup: 1000760000 | |
containers: | |
- resources: | |
limits: | |
cpu: 500m | |
memory: 500Mi | |
requests: | |
cpu: 100m | |
memory: 100Mi | |
readinessProbe: | |
httpGet: | |
path: /readiness | |
port: probes | |
scheme: HTTP | |
initialDelaySeconds: 5 | |
timeoutSeconds: 5 | |
periodSeconds: 10 | |
successThreshold: 1 | |
failureThreshold: 3 | |
terminationMessagePath: /dev/termination-log | |
name: webhook | |
livenessProbe: | |
httpGet: | |
path: /health | |
port: probes | |
scheme: HTTP | |
initialDelaySeconds: 5 | |
timeoutSeconds: 5 | |
periodSeconds: 10 | |
successThreshold: 1 | |
failureThreshold: 3 | |
env: | |
- name: CONFIG_LEADERELECTION_NAME | |
value: config-leader-election | |
- name: CONFIG_LOGGING_NAME | |
value: config-logging | |
- name: CONFIG_OBSERVABILITY_NAME | |
value: config-observability | |
- name: METRICS_DOMAIN | |
value: tekton.dev/pipeline | |
- name: SYSTEM_NAMESPACE | |
valueFrom: | |
fieldRef: | |
apiVersion: v1 | |
fieldPath: metadata.namespace | |
- name: WEBHOOK_SECRET_NAME | |
value: webhook-certs | |
- name: WEBHOOK_SERVICE_NAME | |
value: tekton-pipelines-webhook | |
securityContext: | |
capabilities: | |
drop: | |
- KILL | |
- MKNOD | |
- SETGID | |
- SETUID | |
- all | |
runAsUser: 1000760000 | |
runAsGroup: 65532 | |
allowPrivilegeEscalation: false | |
ports: | |
- name: metrics | |
containerPort: 9090 | |
protocol: TCP | |
- name: profiling | |
containerPort: 8008 | |
protocol: TCP | |
- name: https-webhook | |
containerPort: 8443 | |
protocol: TCP | |
- name: probes | |
containerPort: 8080 | |
protocol: TCP | |
imagePullPolicy: IfNotPresent | |
volumeMounts: | |
- name: config-trusted-cabundle-volume | |
readOnly: true | |
mountPath: /tekton-custom-certs/ca-bundle.crt | |
subPath: ca-bundle.crt | |
- name: config-service-cabundle-volume | |
readOnly: true | |
mountPath: /tekton-custom-certs/service-ca.crt | |
subPath: service-ca.crt | |
- name: kube-api-access-2r2n5 | |
readOnly: true | |
mountPath: /var/run/secrets/kubernetes.io/serviceaccount | |
terminationMessagePolicy: File | |
image: >- | |
registry.redhat.io/openshift-pipelines/pipelines-webhook-rhel8@sha256:37e57661af221a3b98d63da11d5c4182a97ae5dc3e9a7202758034e3a7717273 | |
serviceAccount: tekton-pipelines-webhook | |
volumes: | |
- name: config-trusted-cabundle-volume | |
configMap: | |
name: config-trusted-cabundle | |
items: | |
- key: ca-bundle.crt | |
path: ca-bundle.crt | |
defaultMode: 420 | |
- name: config-service-cabundle-volume | |
configMap: | |
name: config-service-cabundle | |
items: | |
- key: service-ca.crt | |
path: service-ca.crt | |
defaultMode: 420 | |
- name: kube-api-access-2r2n5 | |
projected: | |
sources: | |
- serviceAccountToken: | |
expirationSeconds: 3607 | |
path: token | |
- configMap: | |
name: kube-root-ca.crt | |
items: | |
- key: ca.crt | |
path: ca.crt | |
- downwardAPI: | |
items: | |
- path: namespace | |
fieldRef: | |
apiVersion: v1 | |
fieldPath: metadata.namespace | |
- configMap: | |
name: openshift-service-ca.crt | |
items: | |
- key: service-ca.crt | |
path: service-ca.crt | |
defaultMode: 420 | |
dnsPolicy: ClusterFirst | |
tolerations: | |
- key: node.kubernetes.io/not-ready | |
operator: Exists | |
effect: NoExecute | |
tolerationSeconds: 300 | |
- key: node.kubernetes.io/unreachable | |
operator: Exists | |
effect: NoExecute | |
tolerationSeconds: 300 | |
- key: node.kubernetes.io/memory-pressure | |
operator: Exists | |
effect: NoSchedule | |
status: | |
phase: Pending | |
conditions: | |
- type: Initialized | |
status: 'True' | |
lastProbeTime: null | |
lastTransitionTime: '2021-10-13T06:18:25Z' | |
- type: Ready | |
status: 'False' | |
lastProbeTime: null | |
lastTransitionTime: '2021-10-13T06:18:25Z' | |
reason: ContainersNotReady | |
message: 'containers with unready status: [webhook]' | |
- type: ContainersReady | |
status: 'False' | |
lastProbeTime: null | |
lastTransitionTime: '2021-10-13T06:18:25Z' | |
reason: ContainersNotReady | |
message: 'containers with unready status: [webhook]' | |
- type: PodScheduled | |
status: 'True' | |
lastProbeTime: null | |
lastTransitionTime: '2021-10-13T06:18:25Z' | |
hostIP: 192.168.1.72 | |
startTime: '2021-10-13T06:18:25Z' | |
containerStatuses: | |
- name: webhook | |
state: | |
waiting: | |
reason: ContainerCreating | |
lastState: {} | |
ready: false | |
restartCount: 0 | |
image: >- | |
registry.redhat.io/openshift-pipelines/pipelines-webhook-rhel8@sha256:37e57661af221a3b98d63da11d5c4182a97ae5dc3e9a7202758034e3a7717273 | |
imageID: '' | |
started: false | |
qosClass: Burstable |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment