You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
As the OCI Helm chart is signed by [Cosign](https://github.com/sigstore/cosign) as part of the release process you can verify the chart before installing it by running the following command.
| additionalClusterRoleRules | list |`[]`| Specifies additional rules for the core ClusterRole. |
45
45
| additionalLabels | object |`{}`| Additional labels to add into metadata. |
46
46
| affinity | object |`{"nodeAffinity":{"requiredDuringSchedulingIgnoredDuringExecution":{"nodeSelectorTerms":[{"matchExpressions":[{"key":"karpenter.sh/nodepool","operator":"DoesNotExist"}]}]}},"podAntiAffinity":{"requiredDuringSchedulingIgnoredDuringExecution":[{"topologyKey":"kubernetes.io/hostname"}]}}`| Affinity rules for scheduling the pod. If an explicit label selector is not provided for pod affinity or pod anti-affinity one will be created from the pod selector labels. |
| podLabels | object |`{}`| Additional labels for the pod. |
74
75
| podSecurityContext | object |`{"fsGroup":65532}`| SecurityContext for the pod. |
75
-
| postInstallHook.image.digest | string |`"sha256:13a2ad1bd37ce42ee2a6f1ab0d30595f42eb7fe4a90d6ec848550524104a1ed6"`| SHA256 digest of the post-install hook image. |
76
-
| postInstallHook.image.repository | string |`"public.ecr.aws/bitnami/kubectl"`| Repository path to the post-install hook. This minimally needs to have `kubectl` installed |
77
-
| postInstallHook.image.tag | string |`"1.30"`| Tag of the post-install hook image. |
78
76
| priorityClassName | string |`"system-cluster-critical"`| PriorityClass name for the pod. |
79
77
| replicas | int |`2`| Number of replicas. |
80
78
| revisionHistoryLimit | int |`10`| The number of old ReplicaSets to retain to allow rollback. |
79
+
| schedulerName | string |`"default-scheduler"`| Specify which Kubernetes scheduler should dispatch the pod. |
80
+
| service.annotations | object |`{}`| Additional annotations for the Service. |
81
81
| serviceAccount.annotations | object |`{}`| Additional annotations for the ServiceAccount. |
82
82
| serviceAccount.create | bool |`true`| Specifies if a ServiceAccount should be created. |
83
83
| serviceAccount.name | string |`""`| The name of the ServiceAccount to use. If not set and create is true, a name is generated using the fullname template. |
84
84
| serviceMonitor.additionalLabels | object |`{}`| Additional labels for the ServiceMonitor. |
85
85
| serviceMonitor.enabled | bool |`false`| Specifies whether a ServiceMonitor should be created. |
86
86
| serviceMonitor.endpointConfig | object |`{}`| Configuration on `http-metrics` endpoint for the ServiceMonitor. Not to be used to add additional endpoints. See the Prometheus operator documentation for configurable fields https://github.com/prometheus-operator/prometheus-operator/blob/main/Documentation/api.md#endpoint|
87
-
| settings | object |`{"batchIdleDuration":"1s","batchMaxDuration":"10s","clusterCABundle":"","clusterEndpoint":"","clusterName":"","featureGates":{"spotToSpotConsolidation":false},"interruptionQueue":"","isolatedVPC":false,"reservedENIs":"0","vmMemoryOverheadPercent":0.075}`| Global Settings to configure Karpenter |
87
+
| settings | object |`{"batchIdleDuration":"1s","batchMaxDuration":"10s","clusterCABundle":"","clusterEndpoint":"","clusterName":"","eksControlPlane":false,"featureGates":{"nodeRepair":false,"spotToSpotConsolidation":false},"interruptionQueue":"","isolatedVPC":false,"reservedENIs":"0","vmMemoryOverheadPercent":0.075}`| Global Settings to configure Karpenter |
88
88
| settings.batchIdleDuration | string |`"1s"`| The maximum amount of time with no new ending pods that if exceeded ends the current batching window. If pods arrive faster than this time, the batching window will be extended up to the maxDuration. If they arrive slower, the pods will be batched separately. |
89
89
| settings.batchMaxDuration | string |`"10s"`| The maximum length of a batch window. The longer this is, the more pods we can consider for provisioning at one time which usually results in fewer but larger nodes. |
90
90
| settings.clusterCABundle | string |`""`| Cluster CA bundle for TLS configuration of provisioned nodes. If not set, this is taken from the controller's TLS configuration for the API server. |
91
91
| settings.clusterEndpoint | string |`""`| Cluster endpoint. If not set, will be discovered during startup (EKS only) |
| settings.featureGates | object |`{"spotToSpotConsolidation":false}`| Feature Gate configuration values. Feature Gates will follow the same graduation process and requirements as feature gates in Kubernetes. More information here https://kubernetes.io/docs/reference/command-line-tools-reference/feature-gates/#feature-gates-for-alpha-or-beta-features|
93
+
| settings.eksControlPlane | bool |`false`| Marking this true means that your cluster is running with an EKS control plane and Karpenter should attempt to discover cluster details from the DescribeCluster API |
94
+
| settings.featureGates | object |`{"nodeRepair":false,"spotToSpotConsolidation":false}`| Feature Gate configuration values. Feature Gates will follow the same graduation process and requirements as feature gates in Kubernetes. More information here https://kubernetes.io/docs/reference/command-line-tools-reference/feature-gates/#feature-gates-for-alpha-or-beta-features|
95
+
| settings.featureGates.nodeRepair | bool |`false`| nodeRepair is ALPHA and is disabled by default. Setting this to true will enable node repair. |
94
96
| settings.featureGates.spotToSpotConsolidation | bool |`false`| spotToSpotConsolidation is ALPHA and is disabled by default. Setting this to true will enable spot replacement consolidation for both single and multi-node consolidation. |
95
97
| settings.interruptionQueue | string |`""`| Interruption queue is the name of the SQS queue used for processing interruption events from EC2 Interruption handling is disabled if not specified. Enabling interruption handling may require additional permissions on the controller service account. Additional permissions are outlined in the docs. |
96
98
| settings.isolatedVPC | bool |`false`| If true then assume we can't reach AWS services which don't have a VPC endpoint This also has the effect of disabling look-ups to the AWS pricing endpoint |
97
99
| settings.reservedENIs | string |`"0"`| Reserved ENIs are not included in the calculations for max-pods or kube-reserved This is most often used in the VPC CNI custom networking setup https://docs.aws.amazon.com/eks/latest/userguide/cni-custom-network.html|
98
-
| settings.vmMemoryOverheadPercent | float |`0.075`| The VM memory overhead as a percent that will be subtracted from the total memory for all instance types |
100
+
| settings.vmMemoryOverheadPercent | float |`0.075`| The VM memory overhead as a percent that will be subtracted from the total memory for all instance types. The value of `0.075` equals to 7.5%.|
99
101
| strategy | object |`{"rollingUpdate":{"maxUnavailable":1}}`| Strategy for updating the pod. |
100
102
| terminationGracePeriodSeconds | string |`nil`| Override the default termination grace period for the pod. |
101
103
| tolerations | list |`[{"key":"CriticalAddonsOnly","operator":"Exists"}]`| Tolerations to allow the pod to be scheduled to nodes with taints. |
102
104
| topologySpreadConstraints | list |`[{"maxSkew":1,"topologyKey":"topology.kubernetes.io/zone","whenUnsatisfiable":"DoNotSchedule"}]`| Topology spread constraints to increase the controller resilience by distributing pods across the cluster zones. If an explicit label selector is not provided one will be created from the pod selector labels. |
103
-
| webhook.enabled | bool |`true`| Whether to enable the webhooks and webhook permissions. |
104
-
| webhook.metrics.port | int |`8001`| The container port to use for webhook metrics. |
105
-
| webhook.port | int |`8443`| The container port to use for the webhook. |
0 commit comments