From d37de1d7d982f7b64118e1752992e374af6a3741 Mon Sep 17 00:00:00 2001
From: actions <actions@github.com>
Date: Thu, 5 Aug 2021 23:32:02 +0000
Subject: [PATCH] Bump versions for v1.20.9-rke2r2-build20210805

Signed-off-by: Brad Davidson <brad.davidson@rancher.com>
---
 ...e-proxy-v1.20.9-rke2r2-build2021080501.tgz | Bin 0 -> 4336 bytes
 .../v1.20.9-rke2r2-build2021080501/Chart.yaml |  12 ++
 .../templates/NOTES.txt                       |   2 +
 .../templates/_helpers.tpl                    |  21 +++
 .../templates/config.yaml                     |  69 +++++++++
 .../templates/daemonset.yaml                  |  78 ++++++++++
 .../templates/rbac.yaml                       |  12 ++
 .../templates/serviceaccount.yaml             |   5 +
 .../values.yaml                               | 142 ++++++++++++++++++
 index.yaml                                    |  16 ++
 10 files changed, 357 insertions(+)
 create mode 100755 assets/rke2-kube-proxy-1.20/rke2-kube-proxy-v1.20.9-rke2r2-build2021080501.tgz
 create mode 100755 charts/rke2-kube-proxy-1.20/rke2-kube-proxy/v1.20.9-rke2r2-build2021080501/Chart.yaml
 create mode 100755 charts/rke2-kube-proxy-1.20/rke2-kube-proxy/v1.20.9-rke2r2-build2021080501/templates/NOTES.txt
 create mode 100755 charts/rke2-kube-proxy-1.20/rke2-kube-proxy/v1.20.9-rke2r2-build2021080501/templates/_helpers.tpl
 create mode 100755 charts/rke2-kube-proxy-1.20/rke2-kube-proxy/v1.20.9-rke2r2-build2021080501/templates/config.yaml
 create mode 100755 charts/rke2-kube-proxy-1.20/rke2-kube-proxy/v1.20.9-rke2r2-build2021080501/templates/daemonset.yaml
 create mode 100755 charts/rke2-kube-proxy-1.20/rke2-kube-proxy/v1.20.9-rke2r2-build2021080501/templates/rbac.yaml
 create mode 100755 charts/rke2-kube-proxy-1.20/rke2-kube-proxy/v1.20.9-rke2r2-build2021080501/templates/serviceaccount.yaml
 create mode 100755 charts/rke2-kube-proxy-1.20/rke2-kube-proxy/v1.20.9-rke2r2-build2021080501/values.yaml

diff --git a/assets/rke2-kube-proxy-1.20/rke2-kube-proxy-v1.20.9-rke2r2-build2021080501.tgz b/assets/rke2-kube-proxy-1.20/rke2-kube-proxy-v1.20.9-rke2r2-build2021080501.tgz
new file mode 100755
index 0000000000000000000000000000000000000000..365386047da949badd6fc4572e3368f4e09d3566
GIT binary patch
literal 4336
zcmV<M5D)JkiwG0|00000|0w_~VMtOiV@ORlOnEsqVl!4SWK%V1T2nbTPgYhoO;>Dc
zVQyr3R8em|NM&qo0PH+#bK5qy{mfr+Cg~m9b4`kpUoB^|a~&t?dfFtqcG`aEbTSZm
zB%uNU1^{Jiz4`BV4nR^QCE01y&Cc#MI#Wx)dEwx^@KE#uN8zHJU|48%yBb`~nYPi2
z<>IS9t;KO1pB^8(zi}M*|Hj9o_^aXZFg}XUMn|XdSMl(8I6C_Z;y+J>-K{j1>969?
z=GC9vze!^S{|U9>N+z%z2COJrU!zeReH)UA=uwcNNi{F58@rUoG9lpma)K}>%ZY*o
zu5OghOcI2!wx}RyTw2B@YBz#8<065S?9BX+W-^_lj#8Be0FvdHz?JWVAK1hMzN=@Y
zfl;MS(b1b*TbN`pm~lHVCq!sa5gj-z&nQ@KpH(<1xyVNGXc&JJpTxu9U%eh*y7m2k
z$wZ0f&kX?g`~UE0bT;by|Iyj$qyK-27KULEJO!S!8NyU)=egd=Twf9ZXe^ZBR_Rp&
zwQtRt&QN0JY)4D9XaWGsX7_s-@p?B$xEuq^GL6PKrgo0tn1VsQL=9H?PoN|OPhsDn
zrM|s5a{ui)EDAuE<K;1MX;DvEiUyd>U@u8J0H-a0gJ8mCcJ6s6P|+i?E~j91iI56p
zvMhiXmQ6%Ok{3$@x~#wAEw@onK_*bo>f-Xn6=`UOpr%l$%m9~ea;YedMIF&(ex9R*
zRLLoyl^U}{u$oP$JOzW&&62@2>LpJbG*Z`8s~l8m4bKqloSTYK@Dy&i5HLZ=nfXwn
zW*KHq$_`zJ??fUF67bfdmP`<V9~8@;Gr?r)dDR3nt}(Tk5em&hqbV@8eA$tVOJk8`
zLDfY{NMIO8$0JhhV0c=qr(kwold9*>D4)QT3ycEa=hgW)bpvW@TbimMX&OX;6}++)
zQUy*mnmJ|>ye^F;*=HIV325g`LR=HSUdeQfnyV~<;Yl8wfCi-1EM1VPKZV!qmgi*-
zvdkx_X&v93zat?e&0I;RKL-y5YPcBx2&vKt`!Nj&WJ`4N37&Hc%!ItMpqV7FhFh3(
zc@PBvIlCRBzEBzyI2xUue&fa9vL{A^2`H`R=oeB5l`@NmpmD}@Cdi}Oz+ujA!vb~a
zg(N@PKK5+4{9a5h6Br&1<Fk<ykhEfXj;gfI*WO)>J6fs?|Kf+Y*Dv4ye17>3jAa%n
zNTkI(k9Z-J!Jiqo2@K~ktp-uP%mj8wqajb^w7wf`+G_X0b~wCTqb4vq_Dq7O@LG`<
zDJYHmlcB}b0_jrJZWH*<AE=MOy<MIIsZdQ}fvaaOSwg|MHe_cOe2p|gm?E>KMwl^+
zriw+yoDJ}{K+SWMmWdk3BtiA*JAz(^lU9(t;dTy%(zXegb7aEKA)RBo*b+6j1kGd^
zk4{b>2%Wzq$*)@gJ0UcJYqWrQVOLIh+)$v50x#0vpKl4Uo+M3dj-qH1O;yfOpP%;S
z6r_@&qkZV(kXs^(cgAWiXTS{b45j5$p8A+j1t3}#7a3ApG68dCELD$DP=9*6M6J1B
z$vV1wr@x#+X^6N>M6_^C^mh^-!Zq1DDWelqmwa2SHn8smmWrG$&y^G_kcb&(2hQQ^
zFnumW0-q=V4NSPLCpo>znO=Y?Sn4d;eJfbHKuh89L&=@8oY-VM>%d6gD(CbW<d^sm
zj)uQR9nqdUr#yDTkuBy`JaT5RWP;?FH!+%sH3IuInKDV-n#fG+hB7M@m)6^w@rpCF
z7a%$IF`7lNcVhMqVQ-kz|3~xDDBr8&Pdj+81*_uqcENf=G2NEv9)>&92!LrxaYWIC
zY6EXZ=We-KXs}?KQQ{QbxFw^cxM$#I&eM6Nt)*XDjvCBdl_GQYVpW;W;l`B+R9?^`
zmIYjnf4cT_AQA936=jAOJku5DPhFzrmtG#n(xh|DN<nH|73gQ@%e|c9FgFg2bXx=Z
zS-q6Bc+T-t3+Gp3m{5git&0P?cwZ$|t6=D4ramU6Dy8=dN>v{FTo=E?XqNv>gQ<mR
zr#MbI&n<E<!5u<B!9@?O#5(!4Cfw$=jSa9V39T_jzI57!SC?<9fbxfAm~vT*v0I8C
zUySRZ_4}EWSu@cf2vWgO+KXmN2~^E-e_m>1>x6$Z=Tu=Zv7ni{)VkiqtP9Hk=(EG5
zde+goP|~_8o$OdmU8F^0&AN84u_KROA-r1^==Jcw<Lloq$A`isaN_XCRS`{)zNU56
zvqxv8oh!}%UgyQB(z*Y<Z=Kn@4CP8j2Vh(^Gg(1vbSl`)>37W`fx(jLf#8$Q*~);;
zP})JWV~o}quEyG^qz#Q`1}1245G4pTgQ+OZ98Dn9>=k`{<y0!uRRSj_2<lp>E`+M|
z_x)N==i|$|{@GVmhNlR&0$-kS*_z2g;Ai=XMOKa!Jj^HVN~y>>{`M0KtRCPe6<C!x
zodRn(I&<8Io@iC0`claVDooVWYobm+w1?wUzvk7{{bqt}l0<r=G8`*yjoYsN<Z*Mh
zqVTq4f@h?(iBRdnR4zJ<M$u6e4@Sp_)#u~E(dZy@8qRRaN>R_JBijBizaBu2Og8*U
z9li{2M2iBcGNg4mue*|Z^_0p(L)({-WxrJm-YqUE(WGch)J$Y&9TX1ZI6egW|F3~k
z`85$f&wfiF{Px>#+h+tQo7!y31<i*l!5f^cSCMRFkm0194GIE-Ig^>7xX>UaLEuF6
zf#GMjIIXnkHIl$yX;8aDZx8mB$WR}E(y&+8HhZu?bw*uxFU?-ml$8^~<l?ZZq7f!&
zY{-_33zu3wyZyA(8l@GhreHc)Q|J_T9>E0;;m!v7JI}egIfO}R9hzAgi}{}Mv=-#D
zf`n|yRmZYE(Q;`@s;w!IANrb~i5s>uFl9m*n9%08IzMQ1;w5q=2yN1Wr*Kstz);=q
z{Mo?%1ZP~5QHLlq`g;geZ<7kh;gyC4;=k2&YAEY*Ni{uR;sN=A+u&7RkSb})95V_o
zN@qSatPilrw5xrBbD_&A?3dE}9VeB=hr}@s;{%$Etc0wOT{M%K%Eb!OxiTneZUo@w
z)mVO^amiKLsL+|cckq=e;fDEqWT>o}^DIMIM>8kVTiTP@Hl3VHr5kG8IKSj_HZ8>=
zC_6{pgb|XHiq(npS9OC~R7vF%4q^W#XTK@^*XS>f?q3gq0!0FQ!)SQA=L17g>OvXx
zF`b(ha?Td+WXsS_h^8~Ik0n$=swgG*p;0PJ%I4lmCEi-lD3BSXNmI<tGETXUiF*2n
zL|8L7Ay=eL&;_JY7n&Q)e0gf;xN=5Wpw5}}&Y>|^OTX&=ILveMwG-J#6p+6E=G6V#
zvwNj<eWOyJYY9aKmh?p*l|bu4tg(Rw78X>2vMz!~CvooTppl_+lk)5KiqkJGD+<9=
z=i_7;&Nf5xkY|nO1g!!J9C;FOtT}CLYcpt-5R|??l-#cGQmT;XoaIJy>zAmG_uYfL
z%66Rl(ppo^vOY?6*cT4rol1h4P!lE+S3FY$dErT3;fx!rR|!0M^8fCp=AYC0_dgc%
zLNJSF@aFBim)DWKwV%!7q5I$XxPSk9a{74x`(@hq>q2SHs4_=?p2mcrsQ&0>|KV-7
z|G%H3C{UZo7N2<){DA)thbLz}|35uB8a?{|muPo)Ath`s5uW&5`@YKG?{$@JpFsHW
zV?cm>3X$JMMLt7EThns`Ur;SEg(v@I22Xw;CJKYimnUlpP-a^{*Ha*KexEVR-e+9j
zCpZDVV3xh$dW*Ol(ryFq%DDA}<kJOj4pH8(4=et-{P&#9{QjwJQ%nD}t;OKpDgUd@
z{jv4h?)dLl^Urt*^g#SSIXddsf2T)BkMDoJNDIR-=)D1?@JU;*$^ht30{;jD0C%F@
zfUcuU1-bafL|hG)LwDCbbO@c-Hg|VT0BQBZKj1^DEW*c+4rSvcKkx_nEKRYntpoKg
z#f^}(3E$@gF!87R_mOcRYmBsYpnor33viQf`)vL0&Yv`8JJUe4Nx<C*+{gYyVc_FO
zs5IJonR9mssbT_6iv3j3f@=|8_w^TQ<4H|hpx$5$Y5m-WTKoM=7vIB0Yk>9i-D{NX
z&|I#;Y+5vLOq!#Pt!P^yH<fPFqV=HUL4upGeUckbOj@LRV|`SA1U+uflG~`gu^MID
z`-~RW=5U|q=0l1$dT+3g+<tN4*S+%$qD85Oj5;8##qYjSxF7R5Z#gfy+H?za`|`SD
zWIK%eA<VlwSMfC8%>!i2295erfm`b8y8rUUmFeLxP1GLUG}-=)mw#xsyRkNA+T7r8
zP*}eL*pRZiqrVz&!K#NoL7U5Mn%t@bn-;H{3+j%8ue&#i@4)KoU^~BU%<kj#N7$@S
zbk|_*Q{FzCZSY+-3of(7UAMYd{uk{tT?er3PO`;jbGX0yc|Y*^nj+s4^JH}~xxNPk
zSqkCCI`?%gYOVg7%=$8AlWjBB=Y8M7ew)laaD9?xR$OKRx2;ZVVR}fNr-FfBu&}zp
zgs&I4I)tzNJ!tZ*A=gIgtTZ9O$B&M8g;ovMySD1<4VV7<t_eym$Go_{N?^)_!Kz!L
zy-|Ac#{F#L$&=b+-S0Ji;)Uz;Hswv}H7kM~Evt)8!6qoGiLs(c+Rp^*ABb#px$BIo
z-=8ZyZZto!?cV=o409z7e*Uk)9@zgK#~Z)@IEzmn&;PziYj5aSQJBGUSo!A*xBk~?
zclzhz8xwwxkD3BgcgN?R5-9Dd=FFz^A6jg7F{({9sq;`HBsI~Yu!{yjEkw09X@05Z
zdqV%BQ)X*IAq+~R2kw!|V8Z2~N6^EBq2B;KYt98*PS)C4cTnmQI;`I@J^On9&D$3*
z-@iG3{qmpzMY(K?;}zb(H6!5fTwiIGC#_C^DMyiA;k4V^-P|vSy+MaGW_F%9l|__`
zDatos{^vrJNa}^T=R`Szk00B`2;oNS-x*O#+8DNMw$5D@zi}zVSP7o461becQFg4+
zptKFt7Hh0h5~ii*cID0oZf#o^h2~2xaE4jpp8GUIOC`!2U#n7D(_Vp`dc1D7EO(3Y
zPH8$cIx6g)Xp`dn>Fx$uf~;QOt%o$S?5z~5-b}hO>rxJGtF4Go>0*O)H5hgVyEJId
zxuW{sY@iE12{*^Kik3-Jujhq7d3eROsV7Sg^2S#f9V{}&>rNDb>X5}h5{$SSC_{qC
z@-}EzSvdm`%oty<cykSjT9|5XdCEjk3rl&z*0P<ucS-#{kEc>ud)Rab+bs_6nhlMA
zGjyJ&q|hw}(gk?4-HI&goJ&`kf2UcBej9Y{-&`he6xVP{pfBKCVQzt>@oLWJS*E0+
zwP|#z3c^u3ftR=3SkoZx81SyrVn9phOr`B;f6UyiJ9}%2%boTgRwq=iS&@8-6Ydze
zPxkv<$BX%j3w*0D+#8)9r!8J}FR$$`wnH0TpDT-uS-iHIS)8prZLNgha`vMeYMsXY
zD4X|z3HUVNd0e#-9xLqsh_<`_*AtfhIllvc_}_o%*Z(JHXD5&K|Cea(n$N9x=O+Z~
zE1i1N?sM{$68N0UjLTVPcd!n`iA$o@51az61XcwnEBJR>mBl^mg8JC0#jPRkb99%y
zDJQ>SYW=@F;V`c|3G?yfU}xLy|5eSwyb3=j5<KMp!=s-6kK$oGeDwb>(YCrvZzH(r
e;g5dw*dE(sdu;#i?f(J*0RR7nUUOUkP5=Ow;f_xL

literal 0
HcmV?d00001

diff --git a/charts/rke2-kube-proxy-1.20/rke2-kube-proxy/v1.20.9-rke2r2-build2021080501/Chart.yaml b/charts/rke2-kube-proxy-1.20/rke2-kube-proxy/v1.20.9-rke2r2-build2021080501/Chart.yaml
new file mode 100755
index 0000000..24f1414
--- /dev/null
+++ b/charts/rke2-kube-proxy-1.20/rke2-kube-proxy/v1.20.9-rke2r2-build2021080501/Chart.yaml
@@ -0,0 +1,12 @@
+apiVersion: v1
+appVersion: v1.20.9-rke2r2
+description: Install Kube Proxy.
+keywords:
+- kube-proxy
+maintainers:
+- email: charts@rancher.com
+  name: Rancher Labs
+name: rke2-kube-proxy
+sources:
+- https://github.com/rancher/rke2-charts
+version: v1.20.9-rke2r2-build2021080501
diff --git a/charts/rke2-kube-proxy-1.20/rke2-kube-proxy/v1.20.9-rke2r2-build2021080501/templates/NOTES.txt b/charts/rke2-kube-proxy-1.20/rke2-kube-proxy/v1.20.9-rke2r2-build2021080501/templates/NOTES.txt
new file mode 100755
index 0000000..2da0e24
--- /dev/null
+++ b/charts/rke2-kube-proxy-1.20/rke2-kube-proxy/v1.20.9-rke2r2-build2021080501/templates/NOTES.txt
@@ -0,0 +1,2 @@
+Kube-proxy has been installed.
+
diff --git a/charts/rke2-kube-proxy-1.20/rke2-kube-proxy/v1.20.9-rke2r2-build2021080501/templates/_helpers.tpl b/charts/rke2-kube-proxy-1.20/rke2-kube-proxy/v1.20.9-rke2r2-build2021080501/templates/_helpers.tpl
new file mode 100755
index 0000000..cb64d1f
--- /dev/null
+++ b/charts/rke2-kube-proxy-1.20/rke2-kube-proxy/v1.20.9-rke2r2-build2021080501/templates/_helpers.tpl
@@ -0,0 +1,21 @@
+{{- define "system_default_registry" -}}
+{{- if .Values.global.systemDefaultRegistry -}}
+{{- printf "%s/" .Values.global.systemDefaultRegistry -}}
+{{- else -}}
+{{- "" -}}
+{{- end -}}
+{{- end -}}
+{{- define "rke2_data_dir" -}}
+{{- if .Values.global.rke2DataDir -}}
+{{- printf "%s" .Values.global.rke2DataDir -}}
+{{- else -}}
+{{- "/var/lib/rancher/rke2" -}}
+{{- end -}}
+{{- end -}}
+{{- define "kubeproxy_kubeconfig" -}}
+{{- if .Values.global.rke2DataDir -}}
+{{- printf "%s/agent/kubeproxy.kubeconfig" .Values.global.rke2DataDir -}}
+{{- else -}}
+{{- printf "%s" .Values.clientConnection.kubeconfig -}}
+{{- end -}}
+{{- end -}}
diff --git a/charts/rke2-kube-proxy-1.20/rke2-kube-proxy/v1.20.9-rke2r2-build2021080501/templates/config.yaml b/charts/rke2-kube-proxy-1.20/rke2-kube-proxy/v1.20.9-rke2r2-build2021080501/templates/config.yaml
new file mode 100755
index 0000000..f8bb5cc
--- /dev/null
+++ b/charts/rke2-kube-proxy-1.20/rke2-kube-proxy/v1.20.9-rke2r2-build2021080501/templates/config.yaml
@@ -0,0 +1,69 @@
+---
+apiVersion: v1
+data:
+  config.conf: |-
+    apiVersion: kubeproxy.config.k8s.io/v1alpha1
+    bindAddress: {{ .Values.bindAddress | quote }}
+    clientConnection:
+      acceptContentTypes: {{ .Values.clientConnection.acceptContentTypes | quote }}
+      burst: {{ .Values.clientConnection.burst }}
+      contentType: {{ .Values.clientConnection.contentType | quote }}
+      kubeconfig: {{ include "kubeproxy_kubeconfig" . | quote }}
+      qps: {{ .Values.clientConnection.qps }} 
+    clusterCIDR: {{ coalesce .Values.global.clusterCIDR .Values.clusterCIDR | quote }}
+    configSyncPeriod: {{ .Values.configSyncPeriod }}
+    conntrack:
+      maxPerCore: {{ .Values.conntrack.maxPerCore }}
+      min: {{ .Values.conntrack.min }}
+      tcpCloseWaitTimeout: {{ .Values.conntrack.tcpCloseWaitTimeout | quote }}
+      tcpEstablishedTimeout: {{ .Values.conntrack.tcpEstablishedTimeout | quote }}
+    detectLocalMode: {{ .Values.detectLocalMode | quote }}
+    enableProfiling: {{ .Values.enableProfiling }}
+    healthzBindAddress: {{ .Values.healthzBindAddress | quote }}
+    hostnameOverride: {{ .Values.hostnameOverride | quote }}
+    iptables:
+      masqueradeAll: {{ .Values.iptables.masqueradeAll }}
+      masqueradeBit: {{ .Values.iptables.masqueradeBit }}
+      {{ if .Values.iptables.minSyncPeriod }}
+      minSyncPeriod: {{ .Values.iptables.minSyncPeriod }}
+      {{ end }}
+      syncPeriod: {{ .Values.iptables.syncPeriod }}
+    ipvs:
+      excludeCIDRs: {{ .Values.ipvs.excludeCIDRs | quote }}
+      {{ if .Values.ipvs.minSyncPeriod }}
+      minSyncPeriod: {{ .Values.ipvs.minSyncPeriod }}
+      {{ end }}
+      scheduler: {{ .Values.ipvs.scheduler | quote }}
+      strictARP: {{ .Values.ipvs.strictARP }}
+      syncPeriod: {{ .Values.ipvs.syncPeriod }}
+      {{ if .Values.ipvs.tcpFinTimeout }}
+      tcpFinTimeout: {{ .Values.ipvs.tcpFinTimeout }}
+      {{ end }}
+      {{ if .Values.ipvs.tcpTimeout }}
+      tcpTimeout: {{ .Values.ipvs.tcpTimeout }}
+      {{ end }}
+      {{ if .Values.ipvs.udpTimeout }}
+      udpTimeout: {{ .Values.ipvs.udpTimeout }}
+      {{ end }}
+    kind: KubeProxyConfiguration
+    metricsBindAddress: {{ .Values.metricsBindAddress | quote }}
+    mode: {{ .Values.proxy.mode | quote }}
+    nodePortAddresses: null
+    oomScoreAdj: {{ .Values.oomScoreAdj }}
+    portRange: {{ .Values.proxy.portRange | quote }}
+    showHiddenMetricsForVersion: {{ .Values.showHiddenMetricsForVersion | quote }}
+    udpIdleTimeout: {{ .Values.udpTimeout | quote }}
+    featureGates:
+    {{- range  $key, $value := .Values.featureGates }}
+      {{ $key }}: {{ $value }}
+    {{- end }}
+    winkernel:
+      enableDSR: false
+      networkName: ""
+      sourceVip: ""
+kind: ConfigMap
+metadata:
+  labels:
+    app: kube-proxy
+  name: kube-proxy
+  namespace: kube-system
diff --git a/charts/rke2-kube-proxy-1.20/rke2-kube-proxy/v1.20.9-rke2r2-build2021080501/templates/daemonset.yaml b/charts/rke2-kube-proxy-1.20/rke2-kube-proxy/v1.20.9-rke2r2-build2021080501/templates/daemonset.yaml
new file mode 100755
index 0000000..1267df8
--- /dev/null
+++ b/charts/rke2-kube-proxy-1.20/rke2-kube-proxy/v1.20.9-rke2r2-build2021080501/templates/daemonset.yaml
@@ -0,0 +1,78 @@
+apiVersion: apps/v1
+kind: DaemonSet
+metadata:
+  labels:
+    k8s-app: kube-proxy
+  name: kube-proxy
+  namespace: kube-system
+spec:
+  selector:
+    matchLabels:
+      k8s-app: kube-proxy
+  template:
+    metadata:
+      labels:
+        k8s-app: kube-proxy
+    spec:
+      containers:
+      - command:
+        - /usr/local/bin/kube-proxy
+        - --config=/var/lib/kube-proxy/config.conf
+        - --hostname-override=$(NODE_NAME)
+        env:
+        - name: NODE_NAME
+          valueFrom:
+            fieldRef:
+              apiVersion: v1
+              fieldPath: spec.nodeName
+        image: {{ template "system_default_registry" . }}{{ .Values.image.repository }}:{{ .Values.image.tag }}
+        imagePullPolicy: IfNotPresent
+        name: kube-proxy
+        securityContext:
+          privileged: true
+        volumeMounts:
+        - mountPath: /var/lib/kube-proxy
+          name: kube-proxy
+        - mountPath: {{ template "rke2_data_dir" . }}/agent
+          name: rke2config
+          readOnly: true
+        - mountPath: /run/xtables.lock
+          name: xtables-lock
+        - mountPath: /lib/modules
+          name: lib-modules
+          readOnly: true
+      dnsPolicy: ClusterFirst
+      hostNetwork: true
+      nodeSelector:
+        kubernetes.io/os: linux
+      priorityClassName: system-node-critical
+      restartPolicy: Always
+      schedulerName: default-scheduler
+      securityContext: {}
+      serviceAccount: kube-proxy
+      serviceAccountName: kube-proxy
+      terminationGracePeriodSeconds: 30
+      tolerations:
+      - key: CriticalAddonsOnly
+        operator: Exists
+      - operator: Exists
+      volumes:
+      - hostPath:
+          path: {{ template "rke2_data_dir" . }}/agent
+          type: ""
+        name: rke2config
+      - configMap:
+          name: kube-proxy
+        name: kube-proxy
+      - hostPath:
+          path: /run/xtables.lock
+          type: FileOrCreate
+        name: xtables-lock
+      - hostPath:
+          path: /lib/modules
+          type: ""
+        name: lib-modules
+  updateStrategy:
+    rollingUpdate:
+      maxUnavailable: 1
+    type: RollingUpdate
diff --git a/charts/rke2-kube-proxy-1.20/rke2-kube-proxy/v1.20.9-rke2r2-build2021080501/templates/rbac.yaml b/charts/rke2-kube-proxy-1.20/rke2-kube-proxy/v1.20.9-rke2r2-build2021080501/templates/rbac.yaml
new file mode 100755
index 0000000..d98f84c
--- /dev/null
+++ b/charts/rke2-kube-proxy-1.20/rke2-kube-proxy/v1.20.9-rke2r2-build2021080501/templates/rbac.yaml
@@ -0,0 +1,12 @@
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  name: rke2:node-proxier
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: system:node-proxier
+subjects:
+- kind: ServiceAccount
+  name: kube-proxy
+  namespace: kube-system
diff --git a/charts/rke2-kube-proxy-1.20/rke2-kube-proxy/v1.20.9-rke2r2-build2021080501/templates/serviceaccount.yaml b/charts/rke2-kube-proxy-1.20/rke2-kube-proxy/v1.20.9-rke2r2-build2021080501/templates/serviceaccount.yaml
new file mode 100755
index 0000000..59408a2
--- /dev/null
+++ b/charts/rke2-kube-proxy-1.20/rke2-kube-proxy/v1.20.9-rke2r2-build2021080501/templates/serviceaccount.yaml
@@ -0,0 +1,5 @@
+kind: ServiceAccount
+apiVersion: v1
+metadata:
+  name: kube-proxy
+  namespace: kube-system
diff --git a/charts/rke2-kube-proxy-1.20/rke2-kube-proxy/v1.20.9-rke2r2-build2021080501/values.yaml b/charts/rke2-kube-proxy-1.20/rke2-kube-proxy/v1.20.9-rke2r2-build2021080501/values.yaml
new file mode 100755
index 0000000..86a1c68
--- /dev/null
+++ b/charts/rke2-kube-proxy-1.20/rke2-kube-proxy/v1.20.9-rke2r2-build2021080501/values.yaml
@@ -0,0 +1,142 @@
+---
+
+# image for kubeproxy
+image:
+  repository: rancher/hardened-kubernetes
+  tag: v1.20.9-rke2r2-build20210805
+
+# The IP address for the proxy server to serve on 
+# (set to '0.0.0.0' for all IPv4 interfaces and '::' for all IPv6 interfaces)
+bindAddress: 0.0.0.0
+
+# If true cleanup iptables and ipvs rules and exit.
+cleanup: 
+
+# The CIDR range of pods in the cluster. 
+# When configured, traffic sent to a Service cluster IP from outside this range 
+# will be masqueraded and traffic sent from pods to an external 
+# LoadBalancer IP will be directed to the respective cluster IP instead
+clusterCIDR: 10.42.0.0/16
+
+# The path to the configuration file.
+config: 
+
+# How often configuration from the apiserver is refreshed. Must be greater than 0.
+configSyncPeriod: 15m0s
+
+conntrack:
+  # Maximum number of NAT connections to track per CPU core (0 to leave the limit as-is and ignore conntrack-min).
+  maxPerCore: 32768
+  # Minimum number of conntrack entries to allocate, regardless of conntrack-max-per-core (set conntrack-max-per-core=0 to leave the limit as-is).
+  min: 131072
+  # NAT timeout for TCP connections in the CLOSE_WAIT state
+  tcpTimeoutCloseWait: 1h0m0s
+  # Idle timeout for established TCP connections (0 to leave as-is)
+  tcpTimeoutEstablished: 24h0m0s
+
+# Mode to use to detect local traffic
+detectLocalMode: 
+
+# A set of key=value pairs that describe feature gates for alpha/experimental features:
+featureGates: 
+
+# The IP address with port for the health check server to serve on
+# (set to '0.0.0.0:10256' for all IPv4 interfaces and '[::]:10256' for all IPv6 interfaces). Set empty to disable.
+healthzBindAddress: 0.0.0.0:10256
+
+# help for kube-proxy
+help: 
+
+# If non-empty, will use this string as identification instead of the actual hostname.
+hostnameOverride: 
+
+iptables:
+  # If using the pure iptables proxy, SNAT all traffic sent via Service cluster IPs (this not commonly needed)
+  masqueradeAll: 
+  # If using the pure iptables proxy, the bit of the fwmark space to mark packets requiring SNAT with. Must be within the range [0, 31].
+  masqueradeBit: 14
+  # The minimum interval of how often the iptables rules can be refreshed as endpoints and services change (e.g. '5s', '1m', '2h22m').
+  minSyncPeriod: 
+  # The maximum interval of how often iptables rules are refreshed (e.g. '5s', '1m', '2h22m'). Must be greater than 0.
+  syncPeriod: 30s
+
+ipvs:
+  # A comma-separated list of CIDR's which the ipvs proxier should not touch when cleaning up IPVS rules.
+  excludeCidrs:
+  # The minimum interval of how often the ipvs rules can be refreshed as endpoints and services change (e.g. '5s', '1m', '2h22m').
+  minSyncPeriod: 
+  # The ipvs scheduler type when proxy mode is ipvs
+  scheduler:
+  # Enable strict ARP by setting arp_ignore to 1 and arp_announce to 2
+  strictArp: 
+  # The maximum interval of how often ipvs rules are refreshed (e.g. '5s', '1m', '2h22m'). Must be greater than 0.
+  syncPeriod: 30s
+  # The timeout for idle IPVS TCP connections, 0 to leave as-is. (e.g. '5s', '1m', '2h22m').
+  tcpTimeout: 
+  # The timeout for IPVS TCP connections after receiving a FIN packet, 0 to leave as-is. (e.g. '5s', '1m', '2h22m').
+  tcpfinTimeout:
+  # The timeout for IPVS UDP packets, 0 to leave as-is. (e.g. '5s', '1m', '2h22m').
+  udpTimeout:
+
+
+clientConnection:        
+  # Burst to use while talking with kubernetes apiserver
+  apiBurst: 10
+  # Content type of requests sent to apiserver.
+  apiContentType:
+  # QPS to use while talking with kubernetes apiserver
+  qps: 5
+  # Path to kubeconfig file with authorization information (the master location is set by the master flag).
+  kubeconfig: /var/lib/rancher/rke2/agent/kubeproxy.kubeconfig
+
+# Maximum number of seconds between log flushes
+logFlushFrequency: 5s
+
+
+
+# The address of the Kubernetes API server (overrides any value in kubeconfig)
+master: 
+
+# The IP address with port for the metrics server to serve on 
+# (set to '0.0.0.0:10249' for all IPv4 interfaces and '[::]:10249' for all IPv6 interfaces). Set empty to disable.
+metricsBindAddress: 127.0.0.1:10249
+
+# A string slice of values which specify the addresses to use for NodePorts. 
+# Values may be valid IP blocks (e.g. 1.2.3.0/24, 1.2.3.4/32). The default empty string slice ([]) means to use all local addresses.
+nodeportAddresses:
+
+# The oom-score-adj value for kube-proxy process. Values must be within the range [-1000, 1000]
+oomScoreAdj: -999
+
+# If true enables profiling via web interface on /debug/pprof handler.
+profiling:
+
+proxy:
+  # Which proxy mode to use: 'userspace' (older) or 'iptables' (faster) or 'ipvs'. 
+  # If blank, use the best-available proxy (currently iptables). 
+  # If the iptables proxy is selected, regardless of how, but the system's 
+  # kernel or iptables versions are insufficient, this always falls back to the userspace proxy.
+  mode:
+# Range of host ports (beginPort-endPort, single port or beginPort+offset, inclusive) 
+# that may be consumed in order to proxy service traffic. 
+# If (unspecified, 0, or 0-0) then ports will be randomly chosen.
+  portRange:
+
+# The previous version for which you want to show hidden metrics. 
+# Only the previous minor version is meaningful, other values will not be allowed.
+# The format is <major>.<minor>, e.g.: '1.16'. The purpose of this format is make 
+# sure you have the opportunity to notice if the next release hides additional metrics, 
+# rather than being surprised when they are permanently removed in the release after that.
+showHiddenMetricsForVersion:
+
+# How long an idle UDP connection will be kept open (e.g. '250ms', '2s'). 
+# Must be greater than 0. Only applicable for proxy-mode=userspace
+udpTimeout: 250ms
+
+# Print version information and quit
+version: 
+
+# If set, write the default configuration values to this file and exit.
+writeConfigTo:
+global:
+  systemDefaultRegistry: ""
diff --git a/index.yaml b/index.yaml
index aa913d3..2317110 100755
--- a/index.yaml
+++ b/index.yaml
@@ -1268,6 +1268,22 @@ entries:
     urls:
     - assets/rke2-kube-proxy/rke2-kube-proxy-v1.21.0-build2021041301.tgz
     version: v1.21.0-build2021041301
+  - apiVersion: v1
+    appVersion: v1.20.9-rke2r2
+    created: "2021-08-05T23:32:02.443345266Z"
+    description: Install Kube Proxy.
+    digest: 5281b7efa1b547ab6bdf034912d00359ad07ffedb0823d98f76713cb9accfce6
+    keywords:
+    - kube-proxy
+    maintainers:
+    - email: charts@rancher.com
+      name: Rancher Labs
+    name: rke2-kube-proxy
+    sources:
+    - https://github.com/rancher/rke2-charts
+    urls:
+    - assets/rke2-kube-proxy-1.20/rke2-kube-proxy-v1.20.9-rke2r2-build2021080501.tgz
+    version: v1.20.9-rke2r2-build2021080501
   - apiVersion: v1
     appVersion: v1.20.9-rke2r1
     created: "2021-07-21T17:51:08.708736965Z"