richard
/
kubespray
mirror of https://github.com/kubernetes-sigs/kubespray.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
5763 Commits
33 Branches
82 Tags
153 MiB
Tree: ae3a1d7c01
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'ae3a1d7c01'
${ noResults }
kubespray/roles/network_plugin/kube-ovn/templates/cni-kube-ovn.yml.j2

357 lines
9.4 KiB
Raw Normal View History

add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.1.1 (#6060)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.5.2 (#6610)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.5.2 (#6610)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.5.2 (#6610)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.6.0 (#7240)
4 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.5.2 (#6610)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.6.0 (#7240)
4 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
Update kube-ovn to 1.1.1 (#6060)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.5.2 (#6610)
4 years ago
Update kube-ovn to 1.6.0 (#7240)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
Update kube-ovn to 1.5.2 (#6610)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.1.1 (#6060)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.6.0 (#7240)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-router to 1.0.1 and kube-ovn to 1.3.0 (#6479)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.5.2 (#6610)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Update kube-ovn to 1.5.2 (#6610)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
add Kube-OVN cni to kubespray (#5020)
5 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
Update kube-ovn to 1.1.1 (#6060)
4 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
Support all taints in network plugins manifests (#6208) flannel, ovn and multus network plugins did not support all taint keys. This update changes the tolerations to support them all. According to the documentation: ``` There are two special cases: An empty key with operator Exists matches all keys, values and effects which means this will tolerate everything. An empty effect matches all effects with key key. ``` Usage of the empty `key` and `effect` ensures the network plugin daemonset will be deployed on every nodes (ex: in case of custom taints, or NoExecute effect)
4 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
Fix ImagePullPolicy missing variable usage (#6091)
4 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
Update kube-ovn to 1.5.2 (#6610)
4 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
Update kube-ovn to 1.5.2 (#6610)
4 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
Update kube-ovn to 1.5.2 (#6610)
4 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
Update kube-ovn to 1.1.1 (#6060)
4 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
Update kube-ovn to 1.1.1 (#6060)
4 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
Update kube-ovn to 1.1.1 (#6060)
4 years ago
Upgrade kube-ovn to v1.1.0 and move test from centos7 to centos8 (#5852)
4 years ago
Support all taints in network plugins manifests (#6208) flannel, ovn and multus network plugins did not support all taint keys. This update changes the tolerations to support them all. According to the documentation: ``` There are two special cases: An empty key with operator Exists matches all keys, values and effects which means this will tolerate everything. An empty effect matches all effects with key key. ``` Usage of the empty `key` and `effect` ensures the network plugin daemonset will be deployed on every nodes (ex: in case of custom taints, or NoExecute effect)
4 years ago
  1. ---
  2. kind: Deployment
  3. apiVersion: apps/v1
  4. metadata:
  5. name: kube-ovn-controller
  6. namespace: kube-system
  7. annotations:
  8. kubernetes.io/description: |
  9. kube-ovn controller
  10. spec:
  11. replicas: 1
  12. selector:
  13. matchLabels:
  14. app: kube-ovn-controller
  15. strategy:
  16. rollingUpdate:
  17. maxSurge: 0%
  18. maxUnavailable: 100%
  19. type: RollingUpdate
  20. template:
  21. metadata:
  22. labels:
  23. app: kube-ovn-controller
  24. component: network
  25. type: infra
  26. spec:
  27. tolerations:
  28. - operator: Exists
  29. effect: NoSchedule
  30. affinity:
  31. podAntiAffinity:
  32. requiredDuringSchedulingIgnoredDuringExecution:
  33. - labelSelector:
  34. matchLabels:
  35. app: kube-ovn-controller
  36. topologyKey: kubernetes.io/hostname
  37. priorityClassName: system-cluster-critical
  38. serviceAccountName: ovn
  39. hostNetwork: true
  40. containers:
  41. - name: kube-ovn-controller
  42. image: {{ kube_ovn_container_image_repo }}:{{ kube_ovn_container_image_tag }}
  43. imagePullPolicy: {{ k8s_image_pull_policy }}
  44. command:
  45. - /kube-ovn/start-controller.sh
  46. args:
  47. - --default-cidr={{ kube_pods_subnet }}
  48. env:
  49. - name: ENABLE_SSL
  50. value: "false"
  51. - name: POD_NAME
  52. valueFrom:
  53. fieldRef:
  54. fieldPath: metadata.name
  55. - name: KUBE_NAMESPACE
  56. valueFrom:
  57. fieldRef:
  58. fieldPath: metadata.namespace
  59. - name: KUBE_NODE_NAME
  60. valueFrom:
  61. fieldRef:
  62. fieldPath: spec.nodeName
  63. volumeMounts:
  64. - mountPath: /var/run/tls
  65. name: kube-ovn-tls
  66. readinessProbe:
  67. exec:
  68. command:
  69. - bash
  70. - /kube-ovn/kube-ovn-controller-healthcheck.sh
  71. periodSeconds: 3
  72. timeoutSeconds: 45
  73. livenessProbe:
  74. exec:
  75. command:
  76. - bash
  77. - /kube-ovn/kube-ovn-controller-healthcheck.sh
  78. initialDelaySeconds: 300
  79. periodSeconds: 7
  80. failureThreshold: 5
  81. timeoutSeconds: 45
  82. resources:
  83. requests:
  84. cpu: {{ kube_ovn_controller_cpu_request }}
  85. memory: {{ kube_ovn_controller_memory_request }}
  86. limits:
  87. cpu: {{ kube_ovn_controller_cpu_limit }}
  88. memory: {{ kube_ovn_controller_memory_limit }}
  89. nodeSelector:
  90. kubernetes.io/os: "linux"
  91. volumes:
  92. - name: kube-ovn-tls
  93. secret:
  94. optional: true
  95. secretName: kube-ovn-tls
  96. ---
  97. kind: DaemonSet
  98. apiVersion: apps/v1
  99. metadata:
  100. name: kube-ovn-cni
  101. namespace: kube-system
  102. annotations:
  103. kubernetes.io/description: |
  104. This daemon set launches the kube-ovn cni daemon.
  105. spec:
  106. selector:
  107. matchLabels:
  108. app: kube-ovn-cni
  109. template:
  110. metadata:
  111. labels:
  112. app: kube-ovn-cni
  113. component: network
  114. type: infra
  115. spec:
  116. tolerations:
  117. - operator: Exists
  118. priorityClassName: system-cluster-critical
  119. serviceAccountName: ovn
  120. hostNetwork: true
  121. hostPID: true
  122. initContainers:
  123. - name: install-cni
  124. image: {{ kube_ovn_container_image_repo }}:{{ kube_ovn_container_image_tag }}
  125. imagePullPolicy: {{ k8s_image_pull_policy }}
  126. command: ["/kube-ovn/install-cni.sh"]
  127. securityContext:
  128. runAsUser: 0
  129. privileged: true
  130. volumeMounts:
  131. - mountPath: /opt/cni/bin
  132. name: cni-bin
  133. containers:
  134. - name: cni-server
  135. image: {{ kube_ovn_container_image_repo }}:{{ kube_ovn_container_image_tag }}
  136. imagePullPolicy: {{ k8s_image_pull_policy }}
  137. command:
  138. - bash
  139. - /kube-ovn/start-cniserver.sh
  140. args:
  141. - --enable-mirror={{ traffic_mirror }}
  142. - --encap-checksum={{ encap_checksum }}
  143. - --service-cluster-ip-range={{ kube_service_addresses }}
  144. securityContext:
  145. runAsUser: 0
  146. privileged: true
  147. env:
  148. - name: ENABLE_SSL
  149. value: "false"
  150. - name: POD_IP
  151. valueFrom:
  152. fieldRef:
  153. fieldPath: status.podIP
  154. - name: KUBE_NODE_NAME
  155. valueFrom:
  156. fieldRef:
  157. fieldPath: spec.nodeName
  158. volumeMounts:
  159. - mountPath: /etc/cni/net.d
  160. name: cni-conf
  161. - mountPath: /run/openvswitch
  162. name: host-run-ovs
  163. - mountPath: /run/ovn
  164. name: host-run-ovn
  165. - mountPath: /var/run/netns
  166. name: host-ns
  167. mountPropagation: HostToContainer
  168. readinessProbe:
  169. exec:
  170. command:
  171. - nc
  172. - -z
  173. - -w3
  174. - 127.0.0.1
  175. - "10665"
  176. periodSeconds: 3
  177. livenessProbe:
  178. exec:
  179. command:
  180. - nc
  181. - -z
  182. - -w3
  183. - 127.0.0.1
  184. - "10665"
  185. initialDelaySeconds: 30
  186. periodSeconds: 7
  187. failureThreshold: 5
  188. nodeSelector:
  189. kubernetes.io/os: "linux"
  190. volumes:
  191. - name: host-run-ovs
  192. hostPath:
  193. path: /run/openvswitch
  194. - name: host-run-ovn
  195. hostPath:
  196. path: /run/ovn
  197. - name: cni-conf
  198. hostPath:
  199. path: /etc/cni/net.d
  200. - name: cni-bin
  201. hostPath:
  202. path: /opt/cni/bin
  203. - name: host-ns
  204. hostPath:
  205. path: /var/run/netns
  207. ---
  208. kind: DaemonSet
  209. apiVersion: apps/v1
  210. metadata:
  211. name: kube-ovn-pinger
  212. namespace: kube-system
  213. annotations:
  214. kubernetes.io/description: |
  215. This daemon set launches the openvswitch daemon.
  216. spec:
  217. selector:
  218. matchLabels:
  219. app: kube-ovn-pinger
  220. updateStrategy:
  221. type: RollingUpdate
  222. template:
  223. metadata:
  224. labels:
  225. app: kube-ovn-pinger
  226. component: network
  227. type: infra
  228. spec:
  229. tolerations:
  230. - operator: Exists
  231. serviceAccountName: ovn
  232. hostPID: true
  233. containers:
  234. - name: pinger
  235. image: {{ kube_ovn_container_image_repo }}:{{ kube_ovn_container_image_tag }}
  236. imagePullPolicy: {{ k8s_image_pull_policy }}
  237. command: ["/kube-ovn/kube-ovn-pinger", "--external-address=114.114.114.114"]
  238. securityContext:
  239. runAsUser: 0
  240. privileged: false
  241. env:
  242. - name: ENABLE_SSL
  243. value: "false"
  244. - name: POD_IP
  245. valueFrom:
  246. fieldRef:
  247. fieldPath: status.podIP
  248. - name: HOST_IP
  249. valueFrom:
  250. fieldRef:
  251. fieldPath: status.hostIP
  252. - name: POD_NAME
  253. valueFrom:
  254. fieldRef:
  255. fieldPath: metadata.name
  256. - name: NODE_NAME
  257. valueFrom:
  258. fieldRef:
  259. fieldPath: spec.nodeName
  260. volumeMounts:
  261. - mountPath: /lib/modules
  262. name: host-modules
  263. readOnly: true
  264. - mountPath: /run/openvswitch
  265. name: host-run-ovs
  266. - mountPath: /var/run/openvswitch
  267. name: host-run-ovs
  268. - mountPath: /var/run/ovn
  269. name: host-run-ovn
  270. - mountPath: /sys
  271. name: host-sys
  272. readOnly: true
  273. - mountPath: /etc/openvswitch
  274. name: host-config-openvswitch
  275. - mountPath: /var/log/openvswitch
  276. name: host-log-ovs
  277. - mountPath: /var/log/ovn
  278. name: host-log-ovn
  279. - mountPath: /var/run/tls
  280. name: kube-ovn-tls
  281. resources:
  282. requests:
  283. cpu: {{ kube_ovn_pinger_cpu_request }}
  284. memory: {{ kube_ovn_pinger_memory_request }}
  285. limits:
  286. cpu: {{ kube_ovn_pinger_cpu_limit }}
  287. memory: {{ kube_ovn_pinger_memory_limit }}
  288. nodeSelector:
  289. kubernetes.io/os: "linux"
  290. volumes:
  291. - name: host-modules
  292. hostPath:
  293. path: /lib/modules
  294. - name: host-run-ovs
  295. hostPath:
  296. path: /run/openvswitch
  297. - name: host-run-ovn
  298. hostPath:
  299. path: /run/ovn
  300. - name: host-sys
  301. hostPath:
  302. path: /sys
  303. - name: host-config-openvswitch
  304. hostPath:
  305. path: /etc/origin/openvswitch
  306. - name: host-log-ovs
  307. hostPath:
  308. path: /var/log/openvswitch
  309. - name: host-log-ovn
  310. hostPath:
  311. path: /var/log/ovn
  312. - name: kube-ovn-tls
  313. secret:
  314. optional: true
  315. secretName: kube-ovn-tls
  316. ---
  317. kind: Service
  318. apiVersion: v1
  319. metadata:
  320. name: kube-ovn-pinger
  321. namespace: kube-system
  322. labels:
  323. app: kube-ovn-pinger
  324. spec:
  325. selector:
  326. app: kube-ovn-pinger
  327. ports:
  328. - port: 8080
  329. name: metrics
  330. ---
  331. kind: Service
  332. apiVersion: v1
  333. metadata:
  334. name: kube-ovn-controller
  335. namespace: kube-system
  336. labels:
  337. app: kube-ovn-controller
  338. spec:
  339. selector:
  340. app: kube-ovn-controller
  341. ports:
  342. - port: 10660
  343. name: metrics
  344. ---
  345. kind: Service
  346. apiVersion: v1
  347. metadata:
  348. name: kube-ovn-cni
  349. namespace: kube-system
  350. labels:
  351. app: kube-ovn-cni
  352. spec:
  353. selector:
  354. app: kube-ovn-cni
  355. ports:
  356. - port: 10665
  357. name: metrics