richard
/
kubespray
mirror of https://github.com/kubernetes-sigs/kubespray.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6466 Commits
33 Branches
82 Tags
153 MiB
Tree: 593359ec77
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '593359ec77'
${ noResults }
kubespray/roles/network_plugin/kube-ovn/templates/cni-ovn.yml.j2

497 lines
12 KiB
Raw Normal View History

add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.1.1 (#6060)
4 years ago
Update kube-ovn to 1.7.1
3 years ago
[kube-ovn]: update kube-ovn version and sync some feature (#8790) * [kube-ovn]: some feature kube-ovn vlan mode ipv6/ipv4 dual stack ... * remove unused env * fix readinessprobe
2 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.1.1 (#6060)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
[kube-ovn]: update kube-ovn version and sync some feature (#8790) * [kube-ovn]: some feature kube-ovn vlan mode ipv6/ipv4 dual stack ... * remove unused env * fix readinessprobe
2 years ago
Update kube-ovn to 1.6.0 (#7240)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.6.0 (#7240)
4 years ago
Update kube-ovn to 1.7.0 (#7686)
3 years ago
[kube-ovn]: update kube-ovn version and sync some feature (#8790) * [kube-ovn]: some feature kube-ovn vlan mode ipv6/ipv4 dual stack ... * remove unused env * fix readinessprobe
2 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.1.1 (#6060)
4 years ago
[kube-ovn]: update kube-ovn version and sync some feature (#8790) * [kube-ovn]: some feature kube-ovn vlan mode ipv6/ipv4 dual stack ... * remove unused env * fix readinessprobe
2 years ago
Update kube-ovn to 1.7.1
3 years ago
Update kube-ovn to 1.8.1
3 years ago
[kube-ovn]: update kube-ovn version and sync some feature (#8790) * [kube-ovn]: some feature kube-ovn vlan mode ipv6/ipv4 dual stack ... * remove unused env * fix readinessprobe
2 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.7.0 (#7686)
3 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.7.0 (#7686)
3 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.1.1 (#6060)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
Update kube-ovn to 1.1.1 (#6060)
4 years ago
[kube-ovn]: update kube-ovn version and sync some feature (#8790) * [kube-ovn]: some feature kube-ovn vlan mode ipv6/ipv4 dual stack ... * remove unused env * fix readinessprobe
2 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.7.0 (#7686)
3 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
[kube-ovn]: update kube-ovn version and sync some feature (#8790) * [kube-ovn]: some feature kube-ovn vlan mode ipv6/ipv4 dual stack ... * remove unused env * fix readinessprobe
2 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.1.1 (#6060)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.1.1 (#6060)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
[kube-ovn]: update kube-ovn version and sync some feature (#8790) * [kube-ovn]: some feature kube-ovn vlan mode ipv6/ipv4 dual stack ... * remove unused env * fix readinessprobe
2 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.1.1 (#6060)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
[kube-ovn]: update kube-ovn version and sync some feature (#8790) * [kube-ovn]: some feature kube-ovn vlan mode ipv6/ipv4 dual stack ... * remove unused env * fix readinessprobe
2 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.6.2
3 years ago
[kube-ovn]: update kube-ovn version and sync some feature (#8790) * [kube-ovn]: some feature kube-ovn vlan mode ipv6/ipv4 dual stack ... * remove unused env * fix readinessprobe
2 years ago
Update kube-ovn to 1.6.2
3 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.1.1 (#6060)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
[kube-ovn]: update kube-ovn version and sync some feature (#8790) * [kube-ovn]: some feature kube-ovn vlan mode ipv6/ipv4 dual stack ... * remove unused env * fix readinessprobe
2 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.6.0 (#7240)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
[kube-ovn]: update kube-ovn version and sync some feature (#8790) * [kube-ovn]: some feature kube-ovn vlan mode ipv6/ipv4 dual stack ... * remove unused env * fix readinessprobe
2 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.5.2 (#6610)
4 years ago
[kube-ovn]: update kube-ovn version and sync some feature (#8790) * [kube-ovn]: some feature kube-ovn vlan mode ipv6/ipv4 dual stack ... * remove unused env * fix readinessprobe
2 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.1.1 (#6060)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
Update kube-ovn to 1.7.0 (#7686)
3 years ago
Update kube-ovn to 1.5.2 (#6610)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.6.0 (#7240)
4 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
[kube-ovn]: update kube-ovn version and sync some feature (#8790) * [kube-ovn]: some feature kube-ovn vlan mode ipv6/ipv4 dual stack ... * remove unused env * fix readinessprobe
2 years ago
Update kube-ovn to 1.5.2 (#6610)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.7.0 (#7686)
3 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
[kube-ovn]: update kube-ovn version and sync some feature (#8790) * [kube-ovn]: some feature kube-ovn vlan mode ipv6/ipv4 dual stack ... * remove unused env * fix readinessprobe
2 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.5.2 (#6610)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.1.1 (#6060)
4 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
Update kube-ovn to 1.7.0 (#7686)
3 years ago
Update kube-ovn to 1.5.2 (#6610)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.1.1 (#6060)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
[kube-ovn]: update kube-ovn version and sync some feature (#8790) * [kube-ovn]: some feature kube-ovn vlan mode ipv6/ipv4 dual stack ... * remove unused env * fix readinessprobe
2 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
[kube-ovn]: update kube-ovn version and sync some feature (#8790) * [kube-ovn]: some feature kube-ovn vlan mode ipv6/ipv4 dual stack ... * remove unused env * fix readinessprobe
2 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
[kube-ovn]: update kube-ovn version and sync some feature (#8790) * [kube-ovn]: some feature kube-ovn vlan mode ipv6/ipv4 dual stack ... * remove unused env * fix readinessprobe
2 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.5.2 (#6610)
4 years ago
[kube-ovn]: update kube-ovn version and sync some feature (#8790) * [kube-ovn]: some feature kube-ovn vlan mode ipv6/ipv4 dual stack ... * remove unused env * fix readinessprobe
2 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
[kube-ovn]: update kube-ovn version and sync some feature (#8790) * [kube-ovn]: some feature kube-ovn vlan mode ipv6/ipv4 dual stack ... * remove unused env * fix readinessprobe
2 years ago
Update kube-router to 1.0.1 and kube-ovn to 1.3.0 (#6479)
4 years ago
[kube-ovn]: update kube-ovn version and sync some feature (#8790) * [kube-ovn]: some feature kube-ovn vlan mode ipv6/ipv4 dual stack ... * remove unused env * fix readinessprobe
2 years ago
Update kube-ovn to 1.5.2 (#6610)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.7.1
3 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.1.1 (#6060)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
[kube-ovn]: update kube-ovn version and sync some feature (#8790) * [kube-ovn]: some feature kube-ovn vlan mode ipv6/ipv4 dual stack ... * remove unused env * fix readinessprobe
2 years ago
Update kube-ovn to 1.7.0 (#7686)
3 years ago
Update kube-ovn to 1.5.2 (#6610)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.7.0 (#7686)
3 years ago
[kube-ovn]: update kube-ovn version and sync some feature (#8790) * [kube-ovn]: some feature kube-ovn vlan mode ipv6/ipv4 dual stack ... * remove unused env * fix readinessprobe
2 years ago
Update kube-ovn to 1.7.0 (#7686)
3 years ago
[kube-ovn]: update kube-ovn version and sync some feature (#8790) * [kube-ovn]: some feature kube-ovn vlan mode ipv6/ipv4 dual stack ... * remove unused env * fix readinessprobe
2 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.5.2 (#6610)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.7.0 (#7686)
3 years ago
[kube-ovn]: update kube-ovn version and sync some feature (#8790) * [kube-ovn]: some feature kube-ovn vlan mode ipv6/ipv4 dual stack ... * remove unused env * fix readinessprobe
2 years ago
Update kube-ovn to 1.7.0 (#7686)
3 years ago
[kube-ovn]: update kube-ovn version and sync some feature (#8790) * [kube-ovn]: some feature kube-ovn vlan mode ipv6/ipv4 dual stack ... * remove unused env * fix readinessprobe
2 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.5.2 (#6610)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
[kube-ovn]: update kube-ovn version and sync some feature (#8790) * [kube-ovn]: some feature kube-ovn vlan mode ipv6/ipv4 dual stack ... * remove unused env * fix readinessprobe
2 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
[kube-ovn]: update kube-ovn version and sync some feature (#8790) * [kube-ovn]: some feature kube-ovn vlan mode ipv6/ipv4 dual stack ... * remove unused env * fix readinessprobe
2 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.7.1
3 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.1.1 (#6060)
4 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Add .editorconfig file (#6307)
4 years ago
[kube-ovn]: update kube-ovn version and sync some feature (#8790) * [kube-ovn]: some feature kube-ovn vlan mode ipv6/ipv4 dual stack ... * remove unused env * fix readinessprobe
2 years ago
Update kube-ovn to 1.7.0 (#7686)
3 years ago
Update kube-ovn to 1.5.2 (#6610)
4 years ago
  1. apiVersion: v1
  2. kind: ConfigMap
  3. metadata:
  4. name: ovn-config
  5. namespace: kube-system
  6. data:
  7. defaultNetworkType: '{{ kube_ovn_network_type }}'
  8. ---
  9. apiVersion: v1
  10. kind: ServiceAccount
  11. metadata:
  12. name: ovn
  13. namespace: kube-system
  14. ---
  15. apiVersion: rbac.authorization.k8s.io/v1
  16. kind: ClusterRole
  17. metadata:
  18. annotations:
  19. rbac.authorization.k8s.io/system-only: "true"
  20. name: system:ovn
  21. rules:
  22. - apiGroups: ['policy']
  23. resources: ['podsecuritypolicies']
  24. verbs: ['use']
  25. resourceNames:
  26. - kube-ovn
  27. - apiGroups:
  28. - "kubeovn.io"
  29. resources:
  30. - vpcs
  31. - vpcs/status
  32. - vpc-nat-gateways
  33. - subnets
  34. - subnets/status
  35. - ips
  36. - vlans
  37. - vlans/status
  38. - provider-networks
  39. - provider-networks/status
  40. - security-groups
  41. - security-groups/status
  42. - htbqoses
  43. verbs:
  44. - "*"
  45. - apiGroups:
  46. - ""
  47. resources:
  48. - pods
  49. - pods/exec
  50. - namespaces
  51. - nodes
  52. - configmaps
  53. verbs:
  54. - create
  55. - get
  56. - list
  57. - watch
  58. - patch
  59. - update
  60. - apiGroups:
  61. - "k8s.cni.cncf.io"
  62. resources:
  63. - network-attachment-definitions
  64. verbs:
  65. - create
  66. - delete
  67. - get
  68. - list
  69. - update
  70. - apiGroups:
  71. - ""
  72. - networking.k8s.io
  73. - apps
  74. - extensions
  75. resources:
  76. - networkpolicies
  77. - services
  78. - endpoints
  79. - statefulsets
  80. - daemonsets
  81. - deployments
  82. - deployments/scale
  83. verbs:
  84. - create
  85. - delete
  86. - update
  87. - patch
  88. - get
  89. - list
  90. - watch
  91. - apiGroups:
  92. - ""
  93. resources:
  94. - events
  95. verbs:
  96. - create
  97. - patch
  98. - update
  99. - apiGroups:
  100. - "k8s.cni.cncf.io"
  101. resources:
  102. - network-attachment-definitions
  103. verbs:
  104. - create
  105. - delete
  106. - get
  107. - list
  108. - update
  109. - apiGroups:
  110. - "kubevirt.io"
  111. resources:
  112. - virtualmachines
  113. - virtualmachineinstances
  114. verbs:
  115. - get
  116. - list
  117. ---
  118. apiVersion: rbac.authorization.k8s.io/v1
  119. kind: ClusterRoleBinding
  120. metadata:
  121. name: ovn
  122. roleRef:
  123. name: system:ovn
  124. kind: ClusterRole
  125. apiGroup: rbac.authorization.k8s.io
  126. subjects:
  127. - kind: ServiceAccount
  128. name: ovn
  129. namespace: kube-system
  130. ---
  131. kind: Service
  132. apiVersion: v1
  133. metadata:
  134. name: ovn-nb
  135. namespace: kube-system
  136. spec:
  137. ports:
  138. - name: ovn-nb
  139. protocol: TCP
  140. port: 6641
  141. targetPort: 6641
  142. type: ClusterIP
  143. {% if enable_dual_stack_networks %}
  144. ipFamilyPolicy: PreferDualStack
  145. {% endif %}
  146. selector:
  147. app: ovn-central
  148. ovn-nb-leader: "true"
  149. sessionAffinity: None
  150. ---
  151. kind: Service
  152. apiVersion: v1
  153. metadata:
  154. name: ovn-sb
  155. namespace: kube-system
  156. spec:
  157. ports:
  158. - name: ovn-sb
  159. protocol: TCP
  160. port: 6642
  161. targetPort: 6642
  162. type: ClusterIP
  163. {% if enable_dual_stack_networks %}
  164. ipFamilyPolicy: PreferDualStack
  165. {% endif %}
  166. selector:
  167. app: ovn-central
  168. ovn-sb-leader: "true"
  169. sessionAffinity: None
  170. ---
  171. kind: Service
  172. apiVersion: v1
  173. metadata:
  174. name: ovn-northd
  175. namespace: kube-system
  176. spec:
  177. ports:
  178. - name: ovn-northd
  179. protocol: TCP
  180. port: 6643
  181. targetPort: 6643
  182. type: ClusterIP
  183. {% if enable_dual_stack_networks %}
  184. ipFamilyPolicy: PreferDualStack
  185. {% endif %}
  186. selector:
  187. app: ovn-central
  188. ovn-northd-leader: "true"
  189. sessionAffinity: None
  190. ---
  191. kind: Deployment
  192. apiVersion: apps/v1
  193. metadata:
  194. name: ovn-central
  195. namespace: kube-system
  196. annotations:
  197. kubernetes.io/description: |
  198. OVN components: northd, nb and sb.
  199. spec:
  200. replicas: {{ kube_ovn_central_replics }}
  201. strategy:
  202. rollingUpdate:
  203. maxSurge: 0
  204. maxUnavailable: 1
  205. type: RollingUpdate
  206. selector:
  207. matchLabels:
  208. app: ovn-central
  209. template:
  210. metadata:
  211. labels:
  212. app: ovn-central
  213. component: network
  214. type: infra
  215. spec:
  216. tolerations:
  217. - operator: Exists
  218. affinity:
  219. podAntiAffinity:
  220. requiredDuringSchedulingIgnoredDuringExecution:
  221. - labelSelector:
  222. matchLabels:
  223. app: ovn-central
  224. topologyKey: kubernetes.io/hostname
  225. priorityClassName: system-cluster-critical
  226. serviceAccountName: ovn
  227. hostNetwork: true
  228. containers:
  229. - name: ovn-central
  230. image: {{ kube_ovn_container_image_repo }}:{{ kube_ovn_container_image_tag }}
  231. imagePullPolicy: {{ k8s_image_pull_policy }}
  232. command: ["/kube-ovn/start-db.sh"]
  233. securityContext:
  234. capabilities:
  235. add: ["SYS_NICE"]
  236. env:
  237. - name: ENABLE_SSL
  238. value: "{{ kube_ovn_enable_ssl | lower }}"
  239. - name: POD_IP
  240. valueFrom:
  241. fieldRef:
  242. fieldPath: status.podIP
  243. - name: POD_NAME
  244. valueFrom:
  245. fieldRef:
  246. fieldPath: metadata.name
  247. - name: POD_NAMESPACE
  248. valueFrom:
  249. fieldRef:
  250. fieldPath: metadata.namespace
  251. resources:
  252. requests:
  253. cpu: {{ kube_ovn_db_cpu_request }}
  254. memory: {{ kube_ovn_db_memory_request }}
  255. limits:
  256. cpu: {{ kube_ovn_db_cpu_limit }}
  257. memory: {{ kube_ovn_db_memory_limit }}
  258. volumeMounts:
  259. - mountPath: /var/run/openvswitch
  260. name: host-run-ovs
  261. - mountPath: /var/run/ovn
  262. name: host-run-ovn
  263. - mountPath: /sys
  264. name: host-sys
  265. readOnly: true
  266. - mountPath: /etc/openvswitch
  267. name: host-config-openvswitch
  268. - mountPath: /etc/ovn
  269. name: host-config-ovn
  270. - mountPath: /var/log/openvswitch
  271. name: host-log-ovs
  272. - mountPath: /var/log/ovn
  273. name: host-log-ovn
  274. - mountPath: /etc/localtime
  275. name: localtime
  276. - mountPath: /var/run/tls
  277. name: kube-ovn-tls
  278. readinessProbe:
  279. exec:
  280. command:
  281. - bash
  282. - /kube-ovn/ovn-is-leader.sh
  283. periodSeconds: 15
  284. timeoutSeconds: 45
  285. livenessProbe:
  286. exec:
  287. command:
  288. - bash
  289. - /kube-ovn/ovn-healthcheck.sh
  290. initialDelaySeconds: 30
  291. periodSeconds: 15
  292. failureThreshold: 5
  293. timeoutSeconds: 45
  294. nodeSelector:
  295. kubernetes.io/os: "linux"
  296. kube-ovn/role: "master"
  297. volumes:
  298. - name: host-run-ovs
  299. hostPath:
  300. path: /run/openvswitch
  301. - name: host-run-ovn
  302. hostPath:
  303. path: /run/ovn
  304. - name: host-sys
  305. hostPath:
  306. path: /sys
  307. - name: host-config-openvswitch
  308. hostPath:
  309. path: /etc/origin/openvswitch
  310. - name: host-config-ovn
  311. hostPath:
  312. path: /etc/origin/ovn
  313. - name: host-log-ovs
  314. hostPath:
  315. path: /var/log/openvswitch
  316. - name: host-log-ovn
  317. hostPath:
  318. path: /var/log/ovn
  319. - name: localtime
  320. hostPath:
  321. path: /etc/localtime
  322. - name: kube-ovn-tls
  323. secret:
  324. optional: true
  325. secretName: kube-ovn-tls
  326. ---
  327. kind: DaemonSet
  328. apiVersion: apps/v1
  329. metadata:
  330. name: ovs-ovn
  331. namespace: kube-system
  332. annotations:
  333. kubernetes.io/description: |
  334. This daemon set launches the openvswitch daemon.
  335. spec:
  336. selector:
  337. matchLabels:
  338. app: ovs
  339. updateStrategy:
  340. type: OnDelete
  341. template:
  342. metadata:
  343. labels:
  344. app: ovs
  345. component: network
  346. type: infra
  347. spec:
  348. tolerations:
  349. - operator: Exists
  350. priorityClassName: system-cluster-critical
  351. serviceAccountName: ovn
  352. hostNetwork: true
  353. hostPID: true
  354. containers:
  355. - name: openvswitch
  356. image: {% if kube_ovn_dpdk_enabled %}{{ kube_ovn_dpdk_container_image_repo }}:{{ kube_ovn_dpdk_container_image_tag }}{% else %}{{ kube_ovn_container_image_repo }}:{{ kube_ovn_container_image_tag }}{% endif %}
  358. imagePullPolicy: {{ k8s_image_pull_policy }}
  359. command: [{% if kube_ovn_dpdk_enabled %}"/kube-ovn/start-ovs-dpdk.sh"{% else %}"/kube-ovn/start-ovs.sh"{% endif %}]
  360. securityContext:
  361. runAsUser: 0
  362. privileged: true
  363. env:
  364. - name: ENABLE_SSL
  365. value: "{{ kube_ovn_enable_ssl | lower }}"
  366. - name: POD_IP
  367. valueFrom:
  368. fieldRef:
  369. fieldPath: status.podIP
  370. {% if not kube_ovn_dpdk_enabled %}
  371. - name: HW_OFFLOAD
  372. value: "{{ kube_ovn_hw_offload }}"
  373. - name: TUNNEL_TYPE
  374. value: "{{ kube_ovn_tunnel_type }}"
  375. {% endif %}
  376. - name: KUBE_NODE_NAME
  377. valueFrom:
  378. fieldRef:
  379. fieldPath: spec.nodeName
  380. volumeMounts:
  381. - mountPath: /lib/modules
  382. name: host-modules
  383. readOnly: true
  384. - mountPath: /var/run/openvswitch
  385. name: host-run-ovs
  386. - mountPath: /var/run/ovn
  387. name: host-run-ovn
  388. - mountPath: /sys
  389. name: host-sys
  390. readOnly: true
  391. - mountPath: /etc/cni/net.d
  392. name: cni-conf
  393. - mountPath: /etc/openvswitch
  394. name: host-config-openvswitch
  395. - mountPath: /etc/ovn
  396. name: host-config-ovn
  397. - mountPath: /var/log/openvswitch
  398. name: host-log-ovs
  399. - mountPath: /var/log/ovn
  400. name: host-log-ovn
  401. {% if kube_ovn_dpdk_enabled %}
  402. - mountPath: /opt/ovs-config
  403. name: host-config-ovs
  404. - mountPath: /dev/hugepages
  405. name: hugepage
  406. {% endif %}
  407. - mountPath: /etc/localtime
  408. name: localtime
  409. - mountPath: /var/run/tls
  410. name: kube-ovn-tls
  411. readinessProbe:
  412. exec:
  413. command:
  414. - bash
  415. {% if kube_ovn_dpdk_enabled %}
  416. - /kube-ovn/ovs-dpdk-healthcheck.sh
  417. {% else %}
  418. - /kube-ovn/ovs-healthcheck.sh
  419. {% endif %}
  420. periodSeconds: 5
  421. timeoutSeconds: 45
  422. livenessProbe:
  423. exec:
  424. command:
  425. - bash
  426. {% if kube_ovn_dpdk_enabled %}
  427. - /kube-ovn/ovs-dpdk-healthcheck.sh
  428. {% else %}
  429. - /kube-ovn/ovs-healthcheck.sh
  430. {% endif %}
  431. initialDelaySeconds: 10
  432. periodSeconds: 5
  433. failureThreshold: 5
  434. timeoutSeconds: 45
  435. resources:
  436. {% if kube_ovn_dpdk_enabled %}
  437. requests:
  438. cpu: {{ kube_ovn_dpdk_node_cpu_request }}
  439. memory: {{ kube_ovn_dpdk_node_memory_request }}
  440. limits:
  441. cpu: {{ kube_ovn_dpdk_node_cpu_limit }}
  442. memory: {{ kube_ovn_dpdk_node_memory_limit }}
  443. hugepages-1Gi: 1Gi
  444. {% else %}
  445. requests:
  446. cpu: {{ kube_ovn_node_cpu_request }}
  447. memory: {{ kube_ovn_node_memory_request }}
  448. limits:
  449. cpu: {{ kube_ovn_node_cpu_limit }}
  450. memory: {{ kube_ovn_node_memory_limit }}
  451. {% endif %}
  452. nodeSelector:
  453. kubernetes.io/os: "linux"
  454. volumes:
  455. - name: host-modules
  456. hostPath:
  457. path: /lib/modules
  458. - name: host-run-ovs
  459. hostPath:
  460. path: /run/openvswitch
  461. - name: host-run-ovn
  462. hostPath:
  463. path: /run/ovn
  464. - name: host-sys
  465. hostPath:
  466. path: /sys
  467. - name: cni-conf
  468. hostPath:
  469. path: /etc/cni/net.d
  470. - name: host-config-openvswitch
  471. hostPath:
  472. path: /etc/origin/openvswitch
  473. - name: host-config-ovn
  474. hostPath:
  475. path: /etc/origin/ovn
  476. - name: host-log-ovs
  477. hostPath:
  478. path: /var/log/openvswitch
  479. - name: host-log-ovn
  480. hostPath:
  481. path: /var/log/ovn
  482. {% if kube_ovn_dpdk_enabled %}
  483. - name: host-config-ovs
  484. hostPath:
  485. path: /opt/ovs-config
  486. type: DirectoryOrCreate
  487. - name: hugepage
  488. emptyDir:
  489. medium: HugePages
  490. {% endif %}
  491. - name: localtime
  492. hostPath:
  493. path: /etc/localtime
  494. - name: kube-ovn-tls
  495. secret:
  496. optional: true
  497. secretName: kube-ovn-tls