This got decided at the PTG. The code is old, not maintained, not tested
and most likely doesn't work anymore. Moreover it gave us a hard
dependency on grpcio and protobuf, which is fairly problematic in Python
and gave us all sorts of headaches.
Change-Id: I0c8c91cdd3e1284e7a3c1e9fe04b4c0fbbde7e45
There are some of the mentions of KuryrNetPolicy around our code. In
this patch we are removing it (with one exception - the spec for
originally designed CRD for network policy handling), just to avoid
confusion with currently used KuryrNetworkPolicy.
Change-Id: Ie9bb46467a249e1c0ada3a9810c4fff59fd57757
CRD KuryrNet was already replaced by KuryrNetwork, although there are
some spots, where it is mentioned - mostly docs and log messages. In
this commit we get rid of it once and for all.
Change-Id: I20345a1f4d4288534d620f0bd2196fc77ee795e9
The implementation have some difference with the description of
blueprint. For more strict isolation, we only get project id from
namespace annotaion or configure option. The other resources's
project id inherit it's project or get from configiure option.
Implements: blueprint specify-project-by-annotation
Change-Id: Ia82cce6b211226599b4e1ca0d10416ed5e519ea2
In some places of which network environment was limited, kubeadm
can't pull images from k8s.gcr.io. This patch add a variable
`KURYR_KUBEADMIN_IMAGE_REPOSITORY` in order to the developer who
located in these places can set the kubeadm to pull container images
from repository that they can access.
Change-Id: Id966747d8c09ea14bb37880f8fb37447591564b5
As part of the work to reduce OpenStack resource usage
the Namespace is only now handled when a Pod on Pods
Network is created in it. This new behavior also affects when
the ports pool prepopulation happens requiring update to
the docs.
Change-Id: Iac9d366b14e9e69d1a98da112ee53f97026c2f9d
We have seen issues that the Neutron Server was not
able to respond in time during the creation of Ports
in bulk. In order to avoid this type of failures and
improve time taken for Pods to be created, this commit
includes a lock that will only allow one population to
happen at time for a specific pool, instead of controling
all the pools population with the frequency setting.
Change-Id: I76f5d08e744b7bbc64093ab1a54084a1f97d4aa7
Reflect reality to the docs regarding devstack deployment.
Also, there were changes to refresh docs for vagrant, updated
Vagrantfile, and removed outdated Opendaylight docs.
Change-Id: Ic038967547ebf748c5b41ad598e8553c4a6bebad
This commit includes the kuryrnetwork handler to the docs
of Enabling Network Policy to correctly handle Nampespaces
creation with the Namespace handler.
Change-Id: Ia23b703c0e49838d37e46bd589ac4a138f772ebc
With the new docker download rate limitation, we should update Kuryr-kubernetes documentation to move from celebdor/kuryr-demo container image to quay.io/kuryr/demo.
closes-bug: 1920022
Change-Id: I93bbe01c156bb3d77f9155d5db34be4bc2faa9fe
The timeout-client-data and timeout-member-data configurations
for Octavia listeners default to 50 seconds for load balancers
created by Kuryr. This patch allows the creation and modification
of load balancers handled by Kuryr with different timeouts values.
Implements: blueprint configure-lb-listeners-timeout
Change-Id: I99016001c2263023d1fa2637d7b5aeb23b3b2d9d
This commit deprecates `[pod_vif_nested]worker_nodes_subnet` in favor of
`[pod_vif_nested]worker_nodes_subnets` that will accept a list instead.
All the code using the deprecated options is updated to expect a list
and iterate over possible nodes subnets.
Change-Id: I7671fb06863d58b58905bec43555d8f21626f640
Also, selfLink occurrences in unit tests has been removed (besides
those, which actually make sense), and documentation.
Implements: blueprint selflink
Change-Id: Ib0bcc9f5cb6c4cdc27c3393dcb3f665b21cb64ac
Details about Kuryr support for OVN Octavia driver are included in the
Kubernetes services networking documentation. This change, also adds an
extra section about how to enable ovn-octavia driver usage on Kuryr for
DevStack.
Change-Id: Idf73dbfdd776be443bd8272eaf8e24bf47aaab39
Closes-Bug: #1899295
Change documentation and tests from 'demo/kuryr' which by default will
use docker registry to 'quay.io/demo/kuryr' which will hint about
quay.io registry.
Change-Id: I7edc6bd8fed2943acf78ce2b66c44c91b1c33114
updates the documentation about enabling the network policy
support to include the option to set enforce_sg_rules to false.
Change-Id: Ic7247718d7d179e87ea84bbc21a022791091c439
Closes-Bug: #1901097
The same ServiceAccount was used for kuryr-controller and kuryr-cni.
This change splits the ServiceAccount, generates two ServiceAccounts,
controller_service_account.yaml and cni_service_account.yaml and
applies them.The documentation, Kuryr installation as kubernetes addon
network addon was also updated to reflect this change.
Change-Id: I567aaa38f5498af4641e06002b808915dd467aec
Closes-Bug: #1764783
I've removed the outdated ENV variable KURYR_K8S_LBAAS_USE_OCTAVIA
reference from the documentation. As this was misleading and not been
enforced anywhere.
Closes-Bug: #1901081
Change-Id: I7b114de5913eeeb9e0caa4bebef39ca5038d6dc4
The kuryr-cni.conf file was removed and is no longer provided in the ConfigMap
(kuryr-config). The only file present in the ConfigMap is the kuryr.conf file.
The Kuryr-Kubernetes documentation for containerized installation and how to
enable ports pool support was updated to reflect this change.
Change-Id: I1afbd1db9e90727b2f3dbed3a1341f99550b3a2b
Closes-Bug: #1900723
The lbaasv2 haproxy driver was removed and deprecated,
and the only supported option at the moment is octavia.
The Kuryr-Kubernetes documentation for Kubernetes services networking was
updated to reflect this change.
Change-Id: I72811ae0b9d15c781a7cce567d29c8189832fcb7
Closes-Bug: #1899284
The handlers that need to be enabled to correctly handle
Kubernetes Services events are (endpoints,service,kuryrloadbalancer)
and not (lb,lbaasspec) as placed in most of the docs.
This was due to the recent movement to KuryrLoadBalancer custom
resources definitions (CRD).
Change-Id: I0eff3b68839a659d39650e2cb22956e30d2c7332
Closes-Bug: #1899013
removes kuryr_kubernetes_ingress_design from doc,
because the feature kuryr_kubernetes_ingress_design
was deprecated and removed
Change-Id: Id7b8cdda8f534971b99c7bef7d8536744b1e714e
With the new default Kubernetes 1.18 version used by Kuryr,
the command "kubectl run" does not create a Kubernetes Deployment
anymore, but instead creates a Pod.
The Kuryr docs should get updated to still support a
Deployment creation with the command "kubectl create deployment"
Change-Id: I8df10e64d71cc224e08825987d538693df1719f3
Closes-Bug: #1897391
Apparently Barbican is Octavia requirements only if we're doing TLS
offload on the LB. As we're just doing HTTPS passthrough it shouldn't be
required for our use case and should be safe to remove.
Change-Id: Ic2f6297691cd6bfe9def6d5d6ba0dea24579bfcc
