cluster/kube: bump nginx-ingress-controller, backport openssl 1.1.1k This fixes CVE-2021-3450 and CVE-2021-3449. Deployed on prod: $ kubectl -n nginx-system exec nginx-ingress-controller-5c69c5cb59-2f8v4 -- openssl version OpenSSL 1.1.1k 25 Mar 2021 Change-Id: I7115fd2367cca7b687c555deb2134b22d19a291a

commit: 2e8d24b84a52b775a55a68efcff1b9af66c3ed75 [log] [tgz]
author: Serge Bazanski <q3k@hackerspace.pl> Thu Mar 25 18:39:52 2021 +0100
committer: Serge Bazanski <q3k@hackerspace.pl> Thu Mar 25 18:16:13 2021 +0000
tree: ce9fedcd0d604c0340f5bc68837e14dd2b508b88
parent: 1632aaee04d7e26c6515f975da1e2a858d84e760 [diff] [blame]
diff --git a/cluster/kube/k0-nginx-ingress-controller.jsonnet b/cluster/kube/k0-nginx-ingress-controller.jsonnet
new file mode 100644
index 0000000..a3a608e
--- /dev/null
+++ b/cluster/kube/k0-nginx-ingress-controller.jsonnet

@@ -0,0 +1,7 @@
+// Only the NGINX Ingress Controller.
+
+local k0 = (import "k0.libsonnet").k0;
+
+{
+    nginx: k0.cluster.nginx,
+}
commit	2e8d24b84a52b775a55a68efcff1b9af66c3ed75	[log] [tgz]
author	Serge Bazanski <q3k@hackerspace.pl>	Thu Mar 25 18:39:52 2021 +0100
committer	Serge Bazanski <q3k@hackerspace.pl>	Thu Mar 25 18:16:13 2021 +0000
tree	ce9fedcd0d604c0340f5bc68837e14dd2b508b88
parent	1632aaee04d7e26c6515f975da1e2a858d84e760 [diff] [blame]