Skip to content

Instantly share code, notes, and snippets.

View maelvls's full-sized avatar

Maël Valais maelvls

View GitHub Profile
@maelvls
maelvls / README.md
Last active June 22, 2022 07:27
Cilium ingress controller with cert-manager

Tutorial: Cilium ingress controller with cert-manager

👉 This tutorial is also visible in the Cilium Service Mesh official documentation here.

With this tutorial, you will install Cilium Service Mesh on Kind with TLS with certificates created by cert-manager. It is inspired by the TLS example on the Cilium website.

This was written on 18 Feb 2022 during the beta of the Cilium Service Mesh. A lot probably changed since then.

Prerequisites:

  • helm v3.7 and above,
@maelvls
maelvls / README.md
Last active January 26, 2022 17:05
testing-ingress-controllers

Understanding cert-manager upgrade issues to 1.7

When upgrading from 0.16.1 to v1.6.1

Users will start seeing errors whenever a client tries to apply or create a v1alpha2 resource:

TODO paste the error here
@maelvls
maelvls / glib-gobject-introspection-0.045.diff
Last active December 4, 2021 14:31
gobject-introspection-1.70.0-to-d4d5fb294a89c5c25f966f5e8407d335c315b1c1.diff
diff --git a/GObjectIntrospection.xs b/GObjectIntrospection.xs
index 58fe26f..4a56855 100644
--- a/GObjectIntrospection.xs
+++ b/GObjectIntrospection.xs
@@ -928,7 +928,7 @@ _use_generic_signal_marshaller_for (class, const gchar *package, const gchar *si
"ClosureMarshal");
g_assert (closure_marshal_info);
cif = g_new0 (ffi_cif, 1);
- closure = g_callable_info_prepare_closure (closure_marshal_info,
+ closure = g_callable_info_create_closure (closure_marshal_info,
@maelvls
maelvls / grafana-crc.md
Last active November 30, 2021 18:12
CodeReady Containers (local OpenShift) tips

CodeReady Containers (local openshift) tips

Use Grafana with CodeReady Containers

https://grafana.com/orgs/maelvls/api-keys

 kubectl create secret generic kubepromsecret \
  --from-literal=username=maelvls\
  --from-literal=password= \
@maelvls
maelvls / README.md
Last active November 16, 2021 13:50
Getting started using cert-manager with the sig-network Gateway API
@maelvls
maelvls / DEBUG.md
Last active November 16, 2021 13:50
Debug a broken cert-manager-webhook

Minimal working example for the hot-looping issue with Vault

Following Irbe's instructions cert-manager/cert-manager#3897 (comment):

Same issue here on Slack, I was not able to reproduce this then, but seem to be able to reproduce it now with cert-manager v1.3.1.

To reproduce follow steps here except for:

  1. Deploy a newer version of cert-manager and use v1 not v1alpha2 api when creating cert-manager resources
  2. Set max_ttl to 720h (30d) when creating the Vault role that `cert-manager will use
@maelvls
maelvls / cert-manager-upgrade-test
Last active June 9, 2021 09:39
Test an upgrade of cert-manager using k3s instead of kind (a tiny bit faster to bootstrap a cluster).
#! /usr/bin/env bash
set -ueo pipefail
FROM=
TO=
MODE=helm-without-crds
help() {
cat <<EOF
The cert-manager teams does upgrade tests with various upgrade modes.
@maelvls
maelvls / whatdidido
Last active June 14, 2021 08:13
whatdidido, the CLI for finding out what I was doing on a given day across all my git repos. I often use this to help me fill my Clockify entries (https://maelvls.dev/clockidup/)
#! /bin/bash
help() {
cat <<EOF
I often need to remember what I was doing on a certain day. So I built
this tool to help me find that out. Note that it requires GNU date.
To configure which repositories are looked into, edit the EOF block at
the end of the source of this tool.