mirror of
https://github.com/kubeshark/kubeshark.git
synced 2026-03-03 18:20:32 +00:00
Compare commits
4 Commits
master
...
cloud-stor
| Author | SHA1 | Date | |
|---|---|---|---|
|
81dcb8778f | ||
|
|
1031c08c0a | ||
|
|
ba9da99e34 | ||
|
|
5be6cd757a |
@@ -308,11 +308,22 @@ type RawCaptureConfig struct {
|
|||||||
StorageSize string `yaml:"storageSize" json:"storageSize" default:"1Gi"`
|
StorageSize string `yaml:"storageSize" json:"storageSize" default:"1Gi"`
|
||||||
}
|
}
|
||||||
|
|
||||||
type SnapshotsConfig struct {
|
type SnapshotsLocalConfig struct {
|
||||||
StorageClass string `yaml:"storageClass" json:"storageClass" default:""`
|
StorageClass string `yaml:"storageClass" json:"storageClass" default:""`
|
||||||
StorageSize string `yaml:"storageSize" json:"storageSize" default:"20Gi"`
|
StorageSize string `yaml:"storageSize" json:"storageSize" default:"20Gi"`
|
||||||
}
|
}
|
||||||
|
|
||||||
|
type SnapshotsCloudConfig struct {
|
||||||
|
Provider string `yaml:"provider" json:"provider" default:""`
|
||||||
|
ConfigMaps []string `yaml:"configMaps" json:"configMaps" default:"[]"`
|
||||||
|
Secrets []string `yaml:"secrets" json:"secrets" default:"[]"`
|
||||||
|
}
|
||||||
|
|
||||||
|
type SnapshotsConfig struct {
|
||||||
|
Local SnapshotsLocalConfig `yaml:"local" json:"local"`
|
||||||
|
Cloud SnapshotsCloudConfig `yaml:"cloud" json:"cloud"`
|
||||||
|
}
|
||||||
|
|
||||||
type DelayedDissectionConfig struct {
|
type DelayedDissectionConfig struct {
|
||||||
CPU string `yaml:"cpu" json:"cpu" default:"1"`
|
CPU string `yaml:"cpu" json:"cpu" default:"1"`
|
||||||
Memory string `yaml:"memory" json:"memory" default:"4Gi"`
|
Memory string `yaml:"memory" json:"memory" default:"4Gi"`
|
||||||
|
|||||||
@@ -143,8 +143,11 @@ Example for overriding image names:
|
|||||||
| `tap.capture.raw.enabled` | Enable raw capture of packets and syscalls to disk for offline analysis | `true` |
|
| `tap.capture.raw.enabled` | Enable raw capture of packets and syscalls to disk for offline analysis | `true` |
|
||||||
| `tap.capture.raw.storageSize` | Maximum storage size for raw capture files (supports K8s quantity format: `1Gi`, `500Mi`, etc.) | `1Gi` |
|
| `tap.capture.raw.storageSize` | Maximum storage size for raw capture files (supports K8s quantity format: `1Gi`, `500Mi`, etc.) | `1Gi` |
|
||||||
| `tap.capture.dbMaxSize` | Maximum size for capture database (e.g., `4Gi`, `2000Mi`). When empty, automatically uses 80% of allocated storage (`tap.storageLimit`). | `""` |
|
| `tap.capture.dbMaxSize` | Maximum size for capture database (e.g., `4Gi`, `2000Mi`). When empty, automatically uses 80% of allocated storage (`tap.storageLimit`). | `""` |
|
||||||
| `tap.snapshots.storageClass` | Storage class for snapshots volume. When empty, uses `emptyDir`. When set, creates a PVC with this storage class | `""` |
|
| `tap.snapshots.local.storageClass` | Storage class for local snapshots volume. When empty, uses `emptyDir`. When set, creates a PVC with this storage class | `""` |
|
||||||
| `tap.snapshots.storageSize` | Storage size for snapshots volume (supports K8s quantity format: `1Gi`, `500Mi`, etc.) | `10Gi` |
|
| `tap.snapshots.local.storageSize` | Storage size for local snapshots volume (supports K8s quantity format: `1Gi`, `500Mi`, etc.) | `20Gi` |
|
||||||
|
| `tap.snapshots.cloud.provider` | Cloud storage provider for snapshots (e.g. `s3`). Empty string disables cloud storage. | `""` |
|
||||||
|
| `tap.snapshots.cloud.configMaps` | Names of ConfigMaps containing cloud storage environment variables | `[]` |
|
||||||
|
| `tap.snapshots.cloud.secrets` | Names of Secrets containing cloud storage credentials | `[]` |
|
||||||
| `tap.release.repo` | URL of the Helm chart repository | `https://helm.kubeshark.com` |
|
| `tap.release.repo` | URL of the Helm chart repository | `https://helm.kubeshark.com` |
|
||||||
| `tap.release.name` | Helm release name | `kubeshark` |
|
| `tap.release.name` | Helm release name | `kubeshark` |
|
||||||
| `tap.release.namespace` | Helm release namespace | `default` |
|
| `tap.release.namespace` | Helm release namespace | `default` |
|
||||||
|
|||||||
@@ -61,12 +61,24 @@ spec:
|
|||||||
{{- end }}
|
{{- end }}
|
||||||
- -cloud-api-url
|
- -cloud-api-url
|
||||||
- '{{ .Values.cloudApiUrl }}'
|
- '{{ .Values.cloudApiUrl }}'
|
||||||
{{- if .Values.tap.secrets }}
|
{{- if .Values.tap.snapshots.cloud.provider }}
|
||||||
|
- -cloud-storage-provider
|
||||||
|
- '{{ .Values.tap.snapshots.cloud.provider }}'
|
||||||
|
{{- end }}
|
||||||
|
{{- if or .Values.tap.secrets .Values.tap.snapshots.cloud.configMaps .Values.tap.snapshots.cloud.secrets }}
|
||||||
envFrom:
|
envFrom:
|
||||||
{{- range .Values.tap.secrets }}
|
{{- range .Values.tap.secrets }}
|
||||||
- secretRef:
|
- secretRef:
|
||||||
name: {{ . }}
|
name: {{ . }}
|
||||||
{{- end }}
|
{{- end }}
|
||||||
|
{{- range .Values.tap.snapshots.cloud.configMaps }}
|
||||||
|
- configMapRef:
|
||||||
|
name: {{ . }}
|
||||||
|
{{- end }}
|
||||||
|
{{- range .Values.tap.snapshots.cloud.secrets }}
|
||||||
|
- secretRef:
|
||||||
|
name: {{ . }}
|
||||||
|
{{- end }}
|
||||||
{{- end }}
|
{{- end }}
|
||||||
env:
|
env:
|
||||||
- name: POD_NAME
|
- name: POD_NAME
|
||||||
@@ -188,10 +200,10 @@ spec:
|
|||||||
- key: AUTH_SAML_X509_KEY
|
- key: AUTH_SAML_X509_KEY
|
||||||
path: kubeshark.key
|
path: kubeshark.key
|
||||||
- name: snapshots-volume
|
- name: snapshots-volume
|
||||||
{{- if .Values.tap.snapshots.storageClass }}
|
{{- if .Values.tap.snapshots.local.storageClass }}
|
||||||
persistentVolumeClaim:
|
persistentVolumeClaim:
|
||||||
claimName: {{ include "kubeshark.name" . }}-snapshots-pvc
|
claimName: {{ include "kubeshark.name" . }}-snapshots-pvc
|
||||||
{{- else }}
|
{{- else }}
|
||||||
emptyDir:
|
emptyDir:
|
||||||
sizeLimit: {{ .Values.tap.snapshots.storageSize }}
|
sizeLimit: {{ .Values.tap.snapshots.local.storageSize }}
|
||||||
{{- end }}
|
{{- end }}
|
||||||
|
|||||||
@@ -1,5 +1,5 @@
|
|||||||
---
|
---
|
||||||
{{- if .Values.tap.snapshots.storageClass }}
|
{{- if .Values.tap.snapshots.local.storageClass }}
|
||||||
apiVersion: v1
|
apiVersion: v1
|
||||||
kind: PersistentVolumeClaim
|
kind: PersistentVolumeClaim
|
||||||
metadata:
|
metadata:
|
||||||
@@ -16,7 +16,7 @@ spec:
|
|||||||
- ReadWriteOnce
|
- ReadWriteOnce
|
||||||
resources:
|
resources:
|
||||||
requests:
|
requests:
|
||||||
storage: {{ .Values.tap.snapshots.storageSize }}
|
storage: {{ .Values.tap.snapshots.local.storageSize }}
|
||||||
storageClassName: {{ .Values.tap.snapshots.storageClass }}
|
storageClassName: {{ .Values.tap.snapshots.local.storageClass }}
|
||||||
status: {}
|
status: {}
|
||||||
{{- end }}
|
{{- end }}
|
||||||
|
|||||||
@@ -38,8 +38,13 @@ tap:
|
|||||||
cpu: "1"
|
cpu: "1"
|
||||||
memory: 4Gi
|
memory: 4Gi
|
||||||
snapshots:
|
snapshots:
|
||||||
storageClass: ""
|
local:
|
||||||
storageSize: 20Gi
|
storageClass: ""
|
||||||
|
storageSize: 20Gi
|
||||||
|
cloud:
|
||||||
|
provider: "" # cloud storage provider: "s3" (empty = disabled)
|
||||||
|
configMaps: [] # names of ConfigMaps with cloud storage env vars
|
||||||
|
secrets: [] # names of Secrets with cloud storage credentials
|
||||||
release:
|
release:
|
||||||
repo: https://helm.kubeshark.com
|
repo: https://helm.kubeshark.com
|
||||||
name: kubeshark
|
name: kubeshark
|
||||||
|
|||||||
Reference in New Issue
Block a user