hetzner: Update CCM to v1.16.0

pkg/model/components/hetznercloudcontrollermanager.go

@@ -48,12 +48,14 @@ func (b *HetznerCloudControllerManagerOptionsBuilder) BuildOptions(o interface{}
 		LeaderElect: fi.PtrTo(false),
 	}
 
-	eccm.ClusterCIDR = clusterSpec.Networking.NonMasqueradeCIDR
+	if eccm.ClusterCIDR == "" {
+		eccm.ClusterCIDR = clusterSpec.Networking.PodCIDR
+	}
 	eccm.AllocateNodeCIDRs = fi.PtrTo(true)
 	eccm.ConfigureCloudRoutes = fi.PtrTo(false)
 
 	if eccm.Image == "" {
-		eccm.Image = "hetznercloud/hcloud-cloud-controller-manager:v1.15.0"
+		eccm.Image = "hetznercloud/hcloud-cloud-controller-manager:v1.16.0"
 	}
 
 	return nil

upup/models/cloudup/resources/addons/hcloud-cloud-controller.addons.k8s.io/k8s-1.22.yaml.template

@@ -1,4 +1,5 @@
-# Pulled and modified from: https://github.com/hetznercloud/hcloud-cloud-controller-manager/releases/latest/download/ccm-networks.yaml
+# Pulled and modified using: kustomize build https://github.com/hetznercloud/hcloud-cloud-controller-manager.git/deploy
+
 ---
 apiVersion: v1
 kind: Secret
@@ -6,8 +7,8 @@ metadata:
   name: hcloud
   namespace: kube-system
 stringData:
-  token: "{{ HCLOUD_TOKEN }}"
   network: "{{ HCLOUD_NETWORK }}"
+  token: "{{ HCLOUD_TOKEN }}"
 ---
 apiVersion: v1
 kind: ServiceAccount
@@ -15,8 +16,8 @@ metadata:
   name: cloud-controller-manager
   namespace: kube-system
 ---
-kind: ClusterRoleBinding
 apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
 metadata:
   name: system:cloud-controller-manager
 roleRef:
@@ -24,9 +25,9 @@ roleRef:
   kind: ClusterRole
   name: cluster-admin
 subjects:
-  - kind: ServiceAccount
+- kind: ServiceAccount
-    name: cloud-controller-manager
+  name: cloud-controller-manager
-    namespace: kube-system
+  namespace: kube-system
 ---
 apiVersion: apps/v1
 kind: Deployment
@@ -44,51 +45,50 @@ spec:
       labels:
         app: hcloud-cloud-controller-manager
     spec:
-      serviceAccountName: cloud-controller-manager
-      dnsPolicy: Default
-      tolerations:
-        # this taint is set by all kubelets running `--cloud-provider=external`
-        # so we should tolerate it to schedule the cloud controller manager
-        - key: "node.cloudprovider.kubernetes.io/uninitialized"
-          value: "true"
-          effect: "NoSchedule"
-        - key: "CriticalAddonsOnly"
-          operator: "Exists"
-        # cloud controller manages should be able to run on masters
-        - key: "node-role.kubernetes.io/master"
-          effect: NoSchedule
-          operator: Exists
-        - key: "node-role.kubernetes.io/control-plane"
-          effect: NoSchedule
-          operator: Exists
-        - key: "node.kubernetes.io/not-ready"
-          effect: "NoSchedule"
-      hostNetwork: true
       containers:
-        - image: "{{ .ExternalCloudControllerManager.Image }}"
+      - command:
-          name: hcloud-cloud-controller-manager
+        - /bin/hcloud-cloud-controller-manager
-          command:
+        {{- range $arg := CloudControllerConfigArgv }}
-            - "/bin/hcloud-cloud-controller-manager"
+        - "{{ $arg }}"
-            {{- range $arg := CloudControllerConfigArgv }}
+        {{- end }}
-            - "{{ $arg }}"
+        env:
-            {{- end }}
+        - name: NODE_NAME
-          resources:
+          valueFrom:
-            requests:
+            fieldRef:
-              cpu: 100m
+              fieldPath: spec.nodeName
-              memory: 50Mi
+        - name: HCLOUD_TOKEN
-          env:
+          valueFrom:
-            - name: NODE_NAME
+            secretKeyRef:
-              valueFrom:
+              key: token
-                fieldRef:
+              name: hcloud
-                  fieldPath: spec.nodeName
+        - name: HCLOUD_NETWORK
-            - name: HCLOUD_TOKEN
+          valueFrom:
-              valueFrom:
+            secretKeyRef:
-                secretKeyRef:
+              key: network
-                  name: hcloud
+              name: hcloud
-                  key: token
+        image: '{{ .ExternalCloudControllerManager.Image }}'
-            - name: HCLOUD_NETWORK
+        name: hcloud-cloud-controller-manager
-              valueFrom:
+        ports:
-                secretKeyRef:
+        - containerPort: 8233
-                  name: hcloud
+          name: metrics
-                  key: network
+        resources:
-      priorityClassName: system-cluster-critical
+          requests:
+            cpu: 100m
+            memory: 50Mi
+      dnsPolicy: Default
+      priorityClassName: system-cluster-critical
+      serviceAccountName: cloud-controller-manager
+      tolerations:
+      - effect: NoSchedule
+        key: node.cloudprovider.kubernetes.io/uninitialized
+        value: "true"
+      - key: CriticalAddonsOnly
+        operator: Exists
+      - effect: NoSchedule
+        key: node-role.kubernetes.io/master
+        operator: Exists
+      - effect: NoSchedule
+        key: node-role.kubernetes.io/control-plane
+        operator: Exists
+      - effect: NoExecute
+        key: node.kubernetes.io/not-ready

upup/models/cloudup/resources/addons/hcloud-csi-driver.addons.k8s.io/k8s-1.22.yaml.template

@@ -1,4 +1,4 @@
-# Pulled and modified from: https://raw.githubusercontent.com/hetznercloud/csi-driver/main/deploy/kubernetes/hcloud-csi.yml
+# Pulled and modified using: kustomize build https://github.com/hetznercloud/csi-driver.git/deploy
 ---
 apiVersion: v1
 kind: Secret