richard
/
kubespray
mirror of https://github.com/kubernetes-sigs/kubespray.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
5416 Commits
29 Branches
81 Tags
147 MiB
Tree: 91f1edbdd4
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '91f1edbdd4'
${ noResults }
kubespray/roles/network_plugin/kube-ovn/templates/cni-kube-ovn.yml.j2

331 lines
8.5 KiB
Raw Normal View History

add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.1.1 (#6060)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
Update kube-ovn to 1.1.1 (#6060)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.1.1 (#6060)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-router to 1.0.1 and kube-ovn to 1.3.0 (#6479)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
Update kube-ovn to 1.1.1 (#6060)
4 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
Support all taints in network plugins manifests (#6208) flannel, ovn and multus network plugins did not support all taint keys. This update changes the tolerations to support them all. According to the documentation: ``` There are two special cases: An empty key with operator Exists matches all keys, values and effects which means this will tolerate everything. An empty effect matches all effects with key key. ``` Usage of the empty `key` and `effect` ensures the network plugin daemonset will be deployed on every nodes (ex: in case of custom taints, or NoExecute effect)
4 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
Fix ImagePullPolicy missing variable usage (#6091)
4 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
Update kube-ovn to 1.1.1 (#6060)
4 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
Update kube-ovn to 1.1.1 (#6060)
4 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
Update kube-ovn to 1.1.1 (#6060)
4 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
Support all taints in network plugins manifests (#6208) flannel, ovn and multus network plugins did not support all taint keys. This update changes the tolerations to support them all. According to the documentation: ``` There are two special cases: An empty key with operator Exists matches all keys, values and effects which means this will tolerate everything. An empty effect matches all effects with key key. ``` Usage of the empty `key` and `effect` ensures the network plugin daemonset will be deployed on every nodes (ex: in case of custom taints, or NoExecute effect)
4 years ago
  1. ---
  2. kind: Deployment
  3. apiVersion: apps/v1
  4. metadata:
  5. name: kube-ovn-controller
  6. namespace: kube-system
  7. annotations:
  8. kubernetes.io/description: |
  9. kube-ovn controller
  10. spec:
  11. replicas: 2
  12. selector:
  13. matchLabels:
  14. app: kube-ovn-controller
  15. strategy:
  16. rollingUpdate:
  17. maxSurge: 0%
  18. maxUnavailable: 100%
  19. type: RollingUpdate
  20. template:
  21. metadata:
  22. labels:
  23. app: kube-ovn-controller
  24. component: network
  25. type: infra
  26. spec:
  27. tolerations:
  28. - operator: Exists
  29. effect: NoSchedule
  30. affinity:
  31. podAntiAffinity:
  32. requiredDuringSchedulingIgnoredDuringExecution:
  33. - labelSelector:
  34. matchLabels:
  35. app: kube-ovn-controller
  36. topologyKey: kubernetes.io/hostname
  37. priorityClassName: system-cluster-critical
  38. serviceAccountName: ovn
  39. hostNetwork: true
  40. containers:
  41. - name: kube-ovn-controller
  42. image: {{ kube_ovn_container_image_repo }}:{{ kube_ovn_container_image_tag }}
  43. imagePullPolicy: {{ k8s_image_pull_policy }}
  44. command:
  45. - /kube-ovn/start-controller.sh
  46. args:
  47. - --default-cidr={{ kube_pods_subnet }}
  48. env:
  49. - name: POD_NAME
  50. valueFrom:
  51. fieldRef:
  52. fieldPath: metadata.name
  53. - name: KUBE_NAMESPACE
  54. valueFrom:
  55. fieldRef:
  56. fieldPath: metadata.namespace
  57. - name: KUBE_NODE_NAME
  58. valueFrom:
  59. fieldRef:
  60. fieldPath: spec.nodeName
  61. readinessProbe:
  62. exec:
  63. command:
  64. - sh
  65. - /kube-ovn/kube-ovn-controller-healthcheck.sh
  66. periodSeconds: 3
  67. livenessProbe:
  68. exec:
  69. command:
  70. - sh
  71. - /kube-ovn/kube-ovn-controller-healthcheck.sh
  72. initialDelaySeconds: 300
  73. periodSeconds: 7
  74. failureThreshold: 5
  75. nodeSelector:
  76. kubernetes.io/os: "linux"
  78. ---
  79. kind: DaemonSet
  80. apiVersion: apps/v1
  81. metadata:
  82. name: kube-ovn-cni
  83. namespace: kube-system
  84. annotations:
  85. kubernetes.io/description: |
  86. This daemon set launches the kube-ovn cni daemon.
  87. spec:
  88. selector:
  89. matchLabels:
  90. app: kube-ovn-cni
  91. updateStrategy:
  92. type: OnDelete
  93. template:
  94. metadata:
  95. labels:
  96. app: kube-ovn-cni
  97. component: network
  98. type: infra
  99. spec:
  100. tolerations:
  101. - operator: Exists
  102. priorityClassName: system-cluster-critical
  103. serviceAccountName: ovn
  104. hostNetwork: true
  105. hostPID: true
  106. initContainers:
  107. - name: install-cni
  108. image: {{ kube_ovn_container_image_repo }}:{{ kube_ovn_container_image_tag }}
  109. imagePullPolicy: {{ k8s_image_pull_policy }}
  110. command: ["/kube-ovn/install-cni.sh"]
  111. securityContext:
  112. runAsUser: 0
  113. privileged: true
  114. volumeMounts:
  115. - mountPath: /etc/cni/net.d
  116. name: cni-conf
  117. - mountPath: /opt/cni/bin
  118. name: cni-bin
  119. containers:
  120. - name: cni-server
  121. image: {{ kube_ovn_container_image_repo }}:{{ kube_ovn_container_image_tag }}
  122. imagePullPolicy: {{ k8s_image_pull_policy }}
  123. command:
  124. - sh
  125. - /kube-ovn/start-cniserver.sh
  126. args:
  127. - --enable-mirror={{ traffic_mirror }}
  128. - --encap-checksum={{ encap_checksum }}
  129. - --service-cluster-ip-range={{ kube_service_addresses }}
  130. securityContext:
  131. runAsUser: 0
  132. privileged: true
  133. env:
  134. - name: POD_IP
  135. valueFrom:
  136. fieldRef:
  137. fieldPath: status.podIP
  138. - name: KUBE_NODE_NAME
  139. valueFrom:
  140. fieldRef:
  141. fieldPath: spec.nodeName
  142. volumeMounts:
  143. - mountPath: /run/openvswitch
  144. name: host-run-ovs
  145. - mountPath: /run/ovn
  146. name: host-run-ovn
  147. - mountPath: /var/run/netns
  148. name: host-ns
  149. mountPropagation: HostToContainer
  150. readinessProbe:
  151. exec:
  152. command:
  153. - nc
  154. - -z
  155. - -w3
  156. - 127.0.0.1
  157. - "10665"
  158. periodSeconds: 3
  159. livenessProbe:
  160. exec:
  161. command:
  162. - nc
  163. - -z
  164. - -w3
  165. - 127.0.0.1
  166. - "10665"
  167. initialDelaySeconds: 30
  168. periodSeconds: 7
  169. failureThreshold: 5
  170. nodeSelector:
  171. kubernetes.io/os: "linux"
  172. volumes:
  173. - name: host-run-ovs
  174. hostPath:
  175. path: /run/openvswitch
  176. - name: host-run-ovn
  177. hostPath:
  178. path: /run/ovn
  179. - name: cni-conf
  180. hostPath:
  181. path: /etc/cni/net.d
  182. - name: cni-bin
  183. hostPath:
  184. path: /opt/cni/bin
  185. - name: host-ns
  186. hostPath:
  187. path: /var/run/netns
  189. ---
  190. kind: DaemonSet
  191. apiVersion: apps/v1
  192. metadata:
  193. name: kube-ovn-pinger
  194. namespace: kube-system
  195. annotations:
  196. kubernetes.io/description: |
  197. This daemon set launches the openvswitch daemon.
  198. spec:
  199. selector:
  200. matchLabels:
  201. app: kube-ovn-pinger
  202. updateStrategy:
  203. type: RollingUpdate
  204. template:
  205. metadata:
  206. labels:
  207. app: kube-ovn-pinger
  208. component: network
  209. type: infra
  210. spec:
  211. tolerations:
  212. - operator: Exists
  213. serviceAccountName: ovn
  214. hostPID: true
  215. containers:
  216. - name: pinger
  217. image: {{ kube_ovn_container_image_repo }}:{{ kube_ovn_container_image_tag }}
  218. imagePullPolicy: {{ k8s_image_pull_policy }}
  219. command: ["/kube-ovn/kube-ovn-pinger", "--external-address=114.114.114.114"]
  220. securityContext:
  221. runAsUser: 0
  222. privileged: false
  223. env:
  224. - name: POD_IP
  225. valueFrom:
  226. fieldRef:
  227. fieldPath: status.podIP
  228. - name: HOST_IP
  229. valueFrom:
  230. fieldRef:
  231. fieldPath: status.hostIP
  232. - name: POD_NAME
  233. valueFrom:
  234. fieldRef:
  235. fieldPath: metadata.name
  236. - name: NODE_NAME
  237. valueFrom:
  238. fieldRef:
  239. fieldPath: spec.nodeName
  240. volumeMounts:
  241. - mountPath: /lib/modules
  242. name: host-modules
  243. readOnly: true
  244. - mountPath: /run/openvswitch
  245. name: host-run-ovs
  246. - mountPath: /var/run/openvswitch
  247. name: host-run-ovs
  248. - mountPath: /var/run/ovn
  249. name: host-run-ovn
  250. - mountPath: /sys
  251. name: host-sys
  252. readOnly: true
  253. - mountPath: /etc/openvswitch
  254. name: host-config-openvswitch
  255. - mountPath: /var/log/openvswitch
  256. name: host-log-ovs
  257. - mountPath: /var/log/ovn
  258. name: host-log-ovn
  259. resources:
  260. requests:
  261. cpu: {{ kube_ovn_pinger_cpu_request }}
  262. memory: {{ kube_ovn_pinger_memory_request }}
  263. limits:
  264. cpu: {{ kube_ovn_pinger_cpu_limit }}
  265. memory: {{ kube_ovn_pinger_memory_limit }}
  266. nodeSelector:
  267. kubernetes.io/os: "linux"
  268. volumes:
  269. - name: host-modules
  270. hostPath:
  271. path: /lib/modules
  272. - name: host-run-ovs
  273. hostPath:
  274. path: /run/openvswitch
  275. - name: host-run-ovn
  276. hostPath:
  277. path: /run/ovn
  278. - name: host-sys
  279. hostPath:
  280. path: /sys
  281. - name: host-config-openvswitch
  282. hostPath:
  283. path: /etc/origin/openvswitch
  284. - name: host-log-ovs
  285. hostPath:
  286. path: /var/log/openvswitch
  287. - name: host-log-ovn
  288. hostPath:
  289. path: /var/log/ovn
  290. ---
  291. kind: Service
  292. apiVersion: v1
  293. metadata:
  294. name: kube-ovn-pinger
  295. namespace: kube-system
  296. labels:
  297. app: kube-ovn-pinger
  298. spec:
  299. selector:
  300. app: kube-ovn-pinger
  301. ports:
  302. - port: 8080
  303. name: metrics
  304. ---
  305. kind: Service
  306. apiVersion: v1
  307. metadata:
  308. name: kube-ovn-controller
  309. namespace: kube-system
  310. labels:
  311. app: kube-ovn-controller
  312. spec:
  313. selector:
  314. app: kube-ovn-controller
  315. ports:
  316. - port: 10660
  317. name: metrics
  318. ---
  319. kind: Service
  320. apiVersion: v1
  321. metadata:
  322. name: kube-ovn-cni
  323. namespace: kube-system
  324. labels:
  325. app: kube-ovn-cni
  326. spec:
  327. selector:
  328. app: kube-ovn-cni
  329. ports:
  330. - port: 10665
  331. name: metrics