- 6c2ff6ab set release for 1.10.7
- 0b47ca3d fix: Add support for Mellanox NIC (#1999)
- b2cd4df1 fix pinger namespace error (#2034)
- 7e2c3be7 increase action timeout
- 51dbde5e prepare release for 1.10.7
- 2cab58da fix: gateway route should stay still when node is pingable (#2011)
- f2bdb8ea iptables: avoid duplicate logging (#2028)
- d895b766 update np name with character prefix (#2024)
- 3267b0f5 bump kind and node image versions (#2023)
- 5db54e30 fix ovn nb/sb health check (#2019)
- 0633625b fix ovs fdb for the local bridge port (#2014)
- cf1ffcb2 do not need to delete pg when update networkpolicy (#1959)
- 381882c2 ci: upgrade deprecated actions (#2004)
- 071bebc6 fix: make ip deletion the same as creation (#2002)
- 1bf5fa96 fix: delete fiprule failed at first time (#1998)
- 9e51caaa add check of write to ovn sb db for ovn-controller (#1989)
- ce6536a4 fix grep matching device in routes (#1986)
- 14566316 delete pod after TerminationGracePeriodSeconds (#1984)
- 20ed648d ovs: fix waiting flows in underlay networking (#1983)
- 8c9232ce feature: support default vpc use nat gw pod as cust vpc (#1979)
- e7f3fb56 ovn db: recover automatically on startup if db corruption is detected (#1980)
- e430042f fix: modify src route priority (#1973)
- a62e0740 fix CVE-2022-32149
- d433f257 avoid concurrent subnet status update (#1976)
- 9e249b34 upgrade ovs-ovn pod by generation version instead of chart version (#1960)
- 916ae918 fix metrics name (#1977)
- f56bb0b0 add vm pod to ipam by ip when initIPAM (#1974)
- ffa04989 validate nbctl socket path in start-controller.sh
- 21b4b3f8 skip CVE-2022-3358 (#1972)
- 3f836950 use latest base image
- 2a1074e4 fix: add default deny acl (#1935)
- aa716033 ovs: fix mac learning in environments with hairpin enabled (#1943)
- 77c27d4b Fix registry for ovn-central container in install.sh (#1951)
- 1f1e3c28 ovs: add fdb update logging (#1941)
- eeaf796d add chart version check when upgrade ovs-ovn pod
- b0907efc fix underlay e2e testing (#1929)
- 4a80a485 set leader flag when get leader
- 5ef11cb4 set ovsdb-server vlog level to avoid warnings caused by ovs-vsctl (#1937)
- 122041c1 fix: pod mistaken ls label (#1925)
- 8996131a ignore pod without lsp when add pod to port-group
- ee1c306a add network partition check in ovn probes
- efa8f60d update ns annotation when subnet cidr changed (#1921)
- 3e00aa54 fix CVE-2022-27664
- 98f7bc08 fix EIP/SNAT on dynamic Pod annotation (#1918)
- bcaf1e7c fix: eip and nat crd can delete even if nat gw pod deleted and ipatab… (#1917)
- 95ebe009 fix: failed to add eip (#1898)
- 5e06b367 ci: increase golangci-lint timeout (#1894)
- 72a26074 fix: gatewaynode might be null (#1896)
- 5f5e85f6 fix: api rollback
- 63eb2551 fix: diskfull may lead to wrong raft status for ovs db (#1635)
- 2bc4f03e kubectl-ko: turn off pipefail for ovn leader check (#1891)
- ec0f1e4f update dpdk base image
- 503807e3 kubectl-ko: fix trace for KubeVirt VM (#1802)
- f961605a fix duplicate logs for leader election (#1886)
- 88473e63 fix setting ether dst addr for dnat (#1881)
- 704c179e refactor iptables rules (#1868)
- 7f399adf cni should handler unmont volume, when delete pod. (#1873)
- 3e54d9dd delete and recreate netem qos when update process (#1872)
- e52d3476 feat: check configuration (#1832)
- e92c85fa fix: nat gw pod should set default gw to net1 so that to access public (#1864)
- Kaihang Zhang
- Mengxin Liu
- Noah
- bobz965
- hzma
- jeffy
- long.wang
- lut777
- runzhliu
- shane
- zhangzujian
- 张祖建
- 马洪贞
- 0b9f0c1f set release 1.10.6
- 1510905c feat: reduce downtime by increasing arp cache timeout
- 2b05fd4c feat: reduce wait time by counting the flow num.
- e5378927 fix: missing stop_ovn_daemon args
- 709ede03 delete log severity for drop acl when update networkpolicy
- c1e5be72 refactor: extract external routes from eip func, make it the same as … (#1671)
- 7bcf578e prepare release for 1.10.6
- ed237f9b ovs: fix log file descriptor leak in monitor process (#1855)
- e16667c3 fix ovs-ovn logging (#1848)
- a83ec475 fix: dnat port not use whole words to check (#1854)
- e3b41023 fix ovn dhcp not work with ovs-dpdk (#1853)
- 237e3189 update base image
- 05b27f2d fix: add and set ENABLE_KEEP_VM_IP=true to keep vm ip (#1702)
- a4030de5 fix: multus macvlan ipvlan use kube-ovn ipam,but ip not inited in init-ipam (#1843)
- 80053001 fix underlay e2e (#1828)
- 1a3a1694 fix arping error log (#1841)
- 9447b859 ko: fix kube-proxy check (#1842)
- 774b8d46 base: use patch from OVN upstream (#1844)
- 17d0f5af ci: switch environment to ubuntu-20.04 (#1838)
- 9f0d324a 修改 ovs-ovn-dpdk 容器镜像编译打包,解决容器中 ovs 运行不正常:无法添加物理网卡,无法创建 vhostuserclient port 问题 (#1831)
- 8c533548 windows: fix ovs/ovn versions and patches (#1830)
- d24c5131 update centralized subnet gateway ready patch operation (#1827)
- 02a4caf1 fix duplicate log for tunnel interface decision (#1823)
- b25f58f5 update ovs/ovn version to fix hardware offload (#1821)
- 842d6a34 fix: use full longest word to match full ip about dnat (#1825)
- f12fe0ea update centralize subnet gatewayNode until gw is ready (#1814)
- b9c591f9 initialize IPAM from IP CR with empty PodType for sts Pods (#1812)
- e57021fc kubectl-ko: fix missing env-check (#1804)
- 4c248112 kubectl-ko: fix destination mac (#1801)
- c21c57d1 abort kube-ovn-controller on leader change (#1797)
- d2939e9e avoid invalid ovn-nbctl daemon socket path (#1799)
- aa7b9c8f update vpc-nat-gateway base
- 7674b85f fix: warning for empty chassis fixed (#1787)
- bobz965
- hzma
- long.wang
- lut777
- zhangzujian
- 张祖建
- 88531d50 set release v1.10.5
- 97031bdd prepare for release v1.10.5
- 4a34c5dd delete htb qos when releated annotation is deleted (#1788)
- 66643ba3 perf: fix memory leak
- 84aba41f perf: disable mlockall to reduce memory usage
- 35533738 fix iptables for services with external traffic policy set to Local (#1773)
- 32ee00b6 perf: reduce metrics labels (#1784)
- 93e74c60 northd: remove lookup_arp_ip actions (#1780)
- 6c7f45ef fix install error
- 86173506 fix:can not delete pod with sriov vf (#1654)
- dc77ceb3 dpdk-v2 ,--with-hybrid-dpdk 修改 Dockerfile.base-dpdk 解决 编译安装 ovs-dpdk 正常运行 (#1754)
- 7a1795e6 dpdk-v2 ,--with-hybrid-dpdk qemu 创建 sock 权限问题 (#1739)
- 0541ce98 feature: support exchange link names of OVS bridge and provider nic in underlay networks (#1736)
- 4617d7f7 support kubernetes v1.24 (#1761)
- 29f3d6ed use leases for leader election (#1529)
- f02df1a8 fix iptables for service traffic when external traffic policy set to local (#1728)
- 7f256965 set sysctl variables on cni server startup (#1758)
- 47e39fbf fix: add omitempty to subnet spec
- c9ac0cdf perf: replace jemalloc to reduce memory usage
- 7ffa99e3 avoid patch interface deletion & recreation during restart (#1741)
- 8fa4ca49 only support IPv4 snat in vpc-nat-gw when internal subnet is dual (#1747)
- a46b36d9 enqueue subnets after vpc update (#1722)
- 1bf5dc44 do not add subnet not processed by kube-ovn to vpc (#1735)
- 66d8be9f dpdk-v2 ,--with-hybrid-dpdk qemu 创建 sock 权限问题 (#1739)
- e9c27c60 fix: If pod has snat or eip, also need delete staticRoute when delete pod. (#1731)
- 7841f082 optimize lrp create for subnet in vpc (#1712)
- 994885c8 fix: cancel delete staticroute when it's used by NatRule (#1733)
- f9a84588 fix: wrong info when update subnet from dual to ipv4 or ipv6. (#1726)
- 77988f21 fix overlay MTU in vxlan/stt tunnels (#1693)
- Mengxin Liu
- hzma
- long.wang
- xujunjie-cover
- zhouhui-Corigine
- 张祖建
- 1e4a1959 set release 1.10.4
- 0bbcb389 prepare for release 1.10.4
- fb76c58e fix: response has no gw when create nic without default route (#1703)
- 55b3d508 ignore ovsdb-server/compact error: not storing a duplicate snapshot
- b6084777 Get latest vpc data from apiserver instead of cache (#1684)
- f447a1d5 update priority range in htb qos (#1688)
- bdfdc178 fix: clean vip eip snat dant fip in cleanup.sh (#1690)
- 460f930c add upgrade-ovs script (#1681)
- Mengxin Liu
- Wang Bo
- bobz965
- hzma
- xujunjie-cover
- zhangzujian
- f24ed686 set release 1.10.3
- 02d68f7f prepare for release 1.10.3
- 2c989340 fix: change ovn-ic static route to policy (#1670)
- 1596c9ef fix: Do not Recreate Logical_Router_Port when Vpc recreated (#1570)
- db4f5ad0 Delete pod if subnet of the pod's owner(sts/vm) updated (#1678)
- c41897a0 do not snat packets only for subnets with distributed gateway when external traffic policy is set to local (#1616)
- 8190df3b security: disable pprof by default (#1672)
- 761ddcbc bgp: consolidate service check and use service const (#1674)
- 5cffa97d fix bgp: sync service cache (#1673)
- 874785bf fix iptables for direct routing (#1578)
- f3886af7 fix libovsdb (#1664)
- 662dfa64 mount modules for auto load ip6tables moudles (#1665)
- 1efaeb00 ignore pod not scheduled when reconcile subnet (#1666)
- 4409f6c9 fix ovs-ovn not running on newly added nodes (#1661)
- b5025a6a fix get security group name by external_ids (#1663)
- 4afbaf31 add policy route when add subnet (#1655)
- Mengxin Liu
- Money Liu
- Wang Bo
- gugu
- hzma
- lut777
- wangyd1988
- 刘睿华
- 张祖建
- b1a17c4a set for release 1.10.2
- 4d229555 fix: no need routed when use v1.multus-cni.io/default-network (#1652)
- 40391a03 prepare for release 1.10.2
- 7c4dfe72 fix: subnet failed when create without protocol
- 4b063242 set ether dst addr for dnat on logical switch (#1512)
- 20222e4f CI: delete resources in order to avoid a long time waiting for subnet deletions. (#1643)
- 35e29e16 ci: fix golangci-lint (#1639)
- 4661b76e fix: cleanup should ignore patch failed (#1626)
- 73a53ba7 fix no interface report to multus cni, missing in k8s.v1.cni.cncf.io/network[s]-status (#1636)
- fe5e020e Update install.sh (#1645)
- bd7ff533 set networkpolicy log default to false (#1633)
- 83c9e845 update policy route when join subnet cidr changed (#1638)
- bcf057d1 ci: update trivy options (#1637)
- f93a5273 increase initial delay of ovs-ovn liveness probe (#1634)
- 1a55ce12 wait ovn-central pods running before delete ovs-ovn pods (#1627)
- f8a266d6 get dbstatus for all ovn-central pod (#1619)
- bc838d5a delete "allow" policy route on subnet deletion (#1628)
- Mengxin Liu
- ShaPoHun
- halfcrazy
- hzma
- xujunjie-cover
- zhangzujian
- 张祖建
- 4935fa6a monitor dns in cilium e2e (#1597)
- 3dc29041 prepare for release 1.10.1
- e459688e ci: build amd64 images without avx512 (#1584)
- d7144681 update ovs health check, delete connection to ovn sb db (#1588)
- cfbe55e0 fix: all cluster pod will be in podadd queue (#1587)
- 08ba4215 fix pod could not be ready (#1562)
- c453b7ac fix: delete pod panic when delete vm or statefulset. (#1565)
- 77044e3d fix: clean CRDs introduced by new vpc-nat-gateway (#1563)
- e35f90f1 do not gc vm pod lsp when vm still exists (#1558)
- adabd853 do not delete static routes on controller startup (#1560)
- 4348e58f replace ovn-nbctl daemon with libovsdb in frequent operations (#1544)
- 4cacb4b9 fix exec cmd in vpc nat gateway (#1556)
- 0ed681af CNI: do not return route if nic is not eth0 (#1555)
- 96f232d4 do not nat packets for incoming traffic when service externalTrafficPolicy is Local
- bbb8a697 exit kube-ovn-controller on stopped leading (#1536)
- 4b0bd69e tmp cancel cilium external svc test (#1531)
- hzma
- lut777
- xujunjie-cover
- zhangzujian
- 刘睿华
- 张祖建
- 16d28f75 release 1.10.0
- bcdb3388 use inc-engine/recompute instead of deprecated recompute (#1528)
- 12094766 update kind to v0.13.0 (#1530)
- 673138f2 move dumb-init from base images to kube-ovn image (#1527)
- ad6826d9 fix installing dumb-init in arm64 image (#1525)
- 4eebabc1 optimize ovs request in cni (#1518)
- 7a3f73d5 optimize node port-group check (#1514)
- b7c01d43 logic optimization (#1521)
- 65ee71b4 fix defunct ovn-nbctl daemon (#1523)
- ebe00370 fix arm image (#1524)
- 354d6c3e fix: keep vm's and statefulset's ips when user specified subnet (#1520)
- 6021e528 feature: add doc for tunning packages (#1513)
- 8e72f2e1 add document for windows support (#1515)
- d7ef43b3 reduce ovs-ovn restart downtime (#1516)
- 7b8aa124 finish basic windows support (#1463)
- ecc8268f refactor logical router routes (#1500)
- 51603624 add netem qos when create pod (#1510)
- 5158dd9d handle the case of error node cidr (#1509)
- 1285b039 fix: ovs trace flow always ends with controller action (#1508)
- 69428690 add qos e2e test (#1505)
- f214ee20 optimize IPAM initialization (#1498)
- 367d6b74 test: fix flaky test (#1506)
- 79ad4fcf docs: update README.md
- 85d09ccd synchronize yamls with installation script (#1504)
- 63dc5219 feature: svc of multiple clusters (#1491)
- 011eacf6 use OVS branch-2.17 (#1495)
- afc9ef62 Update USERS.md (#1496)
- b057404b update document for mellanox hardware offload (#1494)
- fb3c3e6e Feature iptables eip nats splits (#1437)
- 0c95402e Update USERS.md (#1493)
- 08a7d5b6 update github actions (#1489)
- ad28dca0 update USER.md (#1492)
- 0db63226 fix: add empty chassis check in ovn db (#1484)
- d631f8f8 feat: lsp forwarding external Layer-2 packets (#1487)
- d4d700ec base: add back kubectl (#1485)
- 59e4ae73 delete ipam record when gc lsp (#1483)
- 73405b2a fix: wrong vpc-nat-gateway arm image (#1482)
- 881622d4 fix pod annotation may override by patch (#1480)
- e772ee95 add acl doc (#1476)
- 6ef72e75 fix: workqueue_depth should show count not rate (#1478)
- 5ba5c526 add delete ovs pods after restore nb db (#1474)
- 73f9d15f delete monitor noexecute toleration (#1473)
- abaebea4 add env-check (#1464)
- 1d6d4653 Support kubevirt vm live migrate for pod static ip (#1468)
- 54cab3aa fix routes for packets from Pods to other nodes
- ba8c5937 add manual compile method for ubuntu20.04 (#1461)
- 7848d71f append metrics (#1465)
- 4f0b1976 Annotation network_type always is geneve
- 6ddba02a masquerade packets from Pods to service IP
- 3d18b8d3 update OVS and OVN for windows
- 39cdfc5c windows support for cni server
- 75d8f4de add kube-ovn-controller switch for EIP and SNAT
- 8ac3e0c0 docs: add USERS.md (#1454)
- 8c214bc9 update topology pic
- cd5c591c feature: add sb/nb db check bash script (#1441)
- fc5f7190 add routed check in circulation (#1446)
- aa756519 modify init ipam by ip crd only for sts pod (#1448)
- 3a5ead6d base: refactor ovn/ovs build (#1444)
- 43051166 log: show the reason if get gw node failed (#1443)
- 8f1e85ae add doc for #1358 (#1440)
- 0c0a0308 prepare windows support for cni server
- 88b07498 modify webhook img to independent image (#1442)
- 3dbfa4de update alpine to fix CVE-2022-1271
- 03af744f fix adding key to delete Pod queue
- 0ea24dcf fix IPAM initialization
- b26a06e7 temporary cancel the external2cluater e2e test for cilium (#1428)
- 94bc2087 ignore all link local unicast addresses/routes
- 9be57346 fix error handling for netlink.AddrDel
- 87164cc9 replace pod name when create ip crd (#1425)
- e7c69ba5 add webhook vaildate the vpc resource whether can be deleted. (#1423)
- c9a58886 We are looking forward to your PR! (#1422)
- 743ce241 support alloc static ip from any subnet after ns supports multi subnets (#1417)
- d3f6431f fix provider-networks status
- 48e0c4ed build ovs/ovn for windows in ci
- 3b4ac99a cilium e2e: deploy k8s without kube-proxy
- 902315ed windows support for CNI
- f2baa2f7 add simple e2e for multus integration
- e3693436 update e2e testing
- 60bf81a3 recover ips CR on IPAM initialization
- 8e1cd468 docs: update ROADMAP.md and MAINTAINERS
- 19ecaeee create ip crd in kube-ovn-controller (#1413)
- 25abbce7 add condition for triggering the deletion of redundant chassises in sbdb (#1411)
- a378fad2 fix: do not recreate port for terminating pods (#1409)
- 9587ad41 update cni version to 1.0
- df83c5fb update underlay environment requirements
- ff695aa3 avoid frequent ipset update
- f475736c add reset for kube-ovn-monitor metrics (#1403)
- 87d6839d fix: The underlay physical gateway config by external-gw-addr when use snat&eip (#1400)
- d36a0d8d add custom acls for subnet (#1395)
- 3206a7a2 check the cidr format whether is correct (#1396)
- a33d519b optimize docs due to frequently asked question. (#1393)
- 7bd25c63 adding IP Protocol enumeration to CRD can reduce the kube-ovn Controller judgment logic (#1391)
- dcc7971a change the wechat qcode
- 677690d5 append vm deletion check (#1390)
- 0d663ebe We should handle the case where the subnet protocol is handled (#1373)
- 7289e87c VIP is decoupled from port security (#1389)
- 12907270 chore: reduce image size (#1388)
- 5e108fe8 docs: update the maintainer and roadmap (#1387)
- fe7cbe1b ci: update kind and k8s
- ea60cdf7 fix external egress gateway
- 22cb15c5 add missing link scope routes in vpc-nat-gateway
- 5571619d update nodeips for restore cmd in ko plugin
- 33180a1c increase memory limit of ovn-central
- aa24894e fix range loop
- 1f24d64d fix probe error
- c621853a update script to add restore plugin cmd
- dd4a5e0d support dpdk (#1317)
- 8ad9e838 Use camel case instead of snake case
- 9f3426ee add detail error when failed to create resource
- 44dae1f7 add restore process for ovn nb db
- c4bb2454 add reset porocess for ovs interface metrics
- 8e8da195 fix SNAT/PR on Pod startup
- e9a4bd5c optimize kube-ovn-monitor yaml
- b11ffa31 Update subnet.go
- 0b43fc80 feat: add webhook to check subnet deletion.
- 21837784 modify ipam v6 release ip problem
- 1264684c skip ping gateway for pods during live migration
- 0da84f83 don't check conflict for migration pod with only static mac
- 89aa2413 add service cidr when init kubeadm
- bfcb0331 docs: add provide and ns spec for multus crd
- 4f987b10 update flag parse in webhook
- 7354d0c3 fix usage of ovn commands
- ffd5c844 add check for pod update process
- fe7a6e03 log: rotate all logs in kube-ovn-cni and add compress
- 024d1684 keep ip for kubevirt pod
- 8c0b358d docs: add integration with Corigine OVS offload
- 07c53120 fix OVS bridge with bond port in mode 6
- baeb3af4 fix: continue of deletion for del pod failed when can't found vpc or subnet (#1335)
- 8e204be4 feat: support DHCP
- 8393f322 Fix usage of ovn commands
- bb7b5e56 resync provider network status periodically
- 62642ea8 Revert "resync provider network status periodically"
- 6ba89e8c use const instead the string
- d8ba8d03 when update gateway info, we should append old to new deploy
- cc124556 resync provider network status periodically
- c53b28b1 fix underlay subnet in custom VPC
- c4a807b1 fix ips update
- 3269bad9 kube-ovn CNI配置文件名字可配置 (#1318)
- 491abaa8 delete the logic of repeated enqueueing
- 31c0b075 add log to file, update upgrade script
- 61c5ebb8 Temporarily comment out the compile and upload of the centos8 compile container.
- aef6595f Revert "Temporarily comment out the compile and upload of the centos8 compile…"
- 79a26873 Temporarily comment out the compile and upload of the centos8 compile container.
- 1fd27d7c feat: add webhook for subnet update validation
- 6ab8e369 optimized decision logic
- af0baa0c Use camel case instead of snake case
- b6764e0b append add cidr and excludeIps annotation for namespace
- a34bb353 feat: vpc peering connection
- 9c5556c8 Remove excess code
- 273eb844 chore: show install options when installing (#1293)
- d5e342c0 feat: update provider network via node annotation
- e9c9b1ce add container compile and insmod
- a90b06a8 add policy route for centralized subnet
- 2a39f793 fix: replace ecmp dp_hash with hash by src_ip (#1289)
- 0fd564e4 Use go to rerimplement ovn-is-leader.sh (#1243)
- 432c4070 fix: only log matched svc with np (#1287)
- cb1a698a feat: Replace command health check with k8s tcpSocket check (#1251)
- b220f0c6 add 'virtual' port for vip (#1278)
- 36c43c48 skip the missing of kube-dns (#1286)
- dad0ef62 fix: check if taint exists before un-taint
- 9365a62d add policy route for distributed subnet in default vpc
- a5ca73c8 ci: add retry to fix flaky test
- 4fdca714 set up tunnel correctly in hybrid mode
- 7f8f322b check static route conflict
- e7bf87b8 fix: kubeovn#1271 (comment)
- 017e5125 transfer IP/route earlier in OVS startup
- ee2ccf1b delete unused constant
- 4022bd57 add metric for ovn nb/sb db status
- fdcc833a add gateway check after update subnet
- f40e26ad we should first see if a condition is not going to be met
- 3ae628cb add judge before use slices index
- 47625c52 prevent multiple namespace reconcile
- 4455c869 prevent multiple namespace reconcile
- 6b60a587 fix: validate statefulset pod by name
- fa02cb21 fix golang and base image versions
- f210b934 add back centralized subnet active-standby mode
- 2557c516 support to add multiple subnets for a namespace
- c230ed8a prepare for next release
- f95a90eb Support only configure static mac_address
- Cookie Wang
- Fudankenshin
- Mengxin Liu
- Samuel Liu
- amoy-xuhao
- bob199x
- bobz965
- caohuilong
- chestack
- fanriming
- gongysh2004
- hackeren
- halfcrazy
- hzma
- jyjiangkai
- long.wang
- lut777
- pengbinbin1
- wang_yudong
- wangyd1988
- xujunjie
- xujunjie-cover
- yi.luo
- zhangzujian
- 尚墨
- 张祖建
- 罗云鹤
- 范日明
- 9581d06b set release for 1.9.14
- 6ba9954f fix pinger namespace error (#2034)
- 0c9fd3f0 prepare release for 1.9.14
- 9cbb07a6 fix: gateway route should stay still when node is pingable (#2011)
- ab2a1f12 update np name with character prefix (#2024)
- ec4fe022 bump kind and node image versions (#2023)
- 5f9dca93 fix ovn nb/sb health check (#2019)
- d7e78b8a fix ovs fdb for the local bridge port (#2014)
- d41c467a do not need to delete pg when update networkpolicy (#1959)
- 52310595 add helm and e2e test (#1992)
- 85b8dd66 add check of write to ovn sb db for ovn-controller (#1989)
- Noah
- hzma
- lut777
- zhangzujian
- 张祖建
- 354d6217 update ovs version to branch-2.16 (#1988)
- 574f31fd fix grep matching device in routes (#1986)
- 8fa0fa34 delete pod after TerminationGracePeriodSeconds (#1984)
- 1f7b58d4 ovs: fix waiting flows in underlay networking (#1983)
- 2506a4df use latest base image
- 1c6ea035 ovn db: recover automatically on startup if db corruption is detected (#1980)
- d7aabe2c prepare for release 1.9.13
- adda63c0 fix CVE-2022-32149
- 6ffaa44f avoid concurrent subnet status update (#1976)
- f0754587 upgrade ovs-ovn pod by generation version instead of chart version (#1960)
- 78d9cfd3 fix metrics name (#1977)
- 1aaa6e48 add vm pod to ipam by ip when initIPAM (#1974)
- d7ac1503 validate nbctl socket path in start-controller.sh
- e6adb1e1 skip CVE-2022-3358 (#1972)
- b4fe883c use latest base image
- b3a1cf65 fix: add default deny acl (#1935)
- 903eff03 ovs: fix mac learning in environments with hairpin enabled (#1943)
- aa50a2ef Fix registry for ovn-central container in install.sh (#1951)
- e9a1af07 ovs: add fdb update logging (#1941)
- Mengxin Liu
- hzma
- lut777
- runzhliu
- zhangzujian
- 张祖建
- 马洪贞
- 42c2a82c add chart version check when upgrade ovs-ovn pod
- 04338c84 fix underlay e2e testing (#1929)
- 6c710acb prepare for release v1.9.12
- 4f2f4058 set leader flag when get leader
- 495e1632 set ovsdb-server vlog level to avoid warnings caused by ovs-vsctl (#1937)
- 5f23adc6 use leases for leader election (#1529)
- 44cee1df prepare release 1.9.11
- 07819218 fix: pod mistaken ls label (#1925)
- ff176b89 ignore pod without lsp when add pod to port-group
- 6df23c2b add network partition check in ovn probes
- 270e9dc3 feat: Replace command health check with k8s tcpSocket check (#1251)
- 64c41a5d fix CVE-2022-27664
- ed8ba4c6 update ns annotation when subnet cidr changed (#1921)
- hzma
- lut777
- zhangzujian
- 尚墨
- 张祖建
- 马洪贞
- f7a62ca7 set release 1.9.10
- f9f49266 prepare for release 1.9.10
- 455863a0 fix: gatewaynode might be null (#1896)
- 23756538 fix: api rollback
- 0522d9eb fix: diskfull may lead to wrong raft status for ovs db (#1635)
- 23def0a2 kubectl-ko: turn off pipefail for ovn leader check (#1891)
- 451c88ab fix logrotate issues
- a98cffa4 fix security issues
- 493b42de security: conform to gosec G114 (#1860)
- ceb3855e fix duplicate logs for leader election (#1886)
- 7ae439b0 delete and recreate netem qos when update process (#1872)
- Mengxin Liu
- hzma
- lut777
- zhangzujian
- 尚墨
- 张祖建
- c4701fd2 set release 1.9.9
- 33d027af feat: reduce downtime by increasing arp cache timeout
- b90769f3 feat: reduce wait time by counting the flow num.
- 2afbe408 fix: missing stop_ovn_daemon args
- 37b9f2f8 delete log severity for drop acl when update networkpolicy
- 82026bbd base: use patch from OVN upstream (#1844)
- f9a2d8de prepare release for 1.9.9
- 7138087c ovs: fix log file descriptor leak in monitor process (#1855)
- c6f9565c fix ovs-ovn logging (#1848)
- b3a6998e fix: add and set ENABLE_KEEP_VM_IP=true to keep vm ip (#1702)
- 20ed2329 fix: multus macvlan ipvlan use kube-ovn ipam,but ip not inited in init-ipam (#1843)
- 4c40a20d fix underlay e2e (#1828)
- eb1706bc fix arping error log (#1841)
- 5757b8ec ko: fix kube-proxy check (#1842)
- 2000e996 ci: switch environment to ubuntu-20.04 (#1838)
- 919bb236 update centralized subnet gateway ready patch operation (#1827)
- 1c3b622c fix duplicate log for tunnel interface decision (#1823)
- e4d53217 update centralize subnet gatewayNode until gw is ready (#1814)
- d44de3e0 initialize IPAM from IP CR with empty PodType for sts Pods (#1812)
- 3eb1d1ad kubectl-ko: fix missing env-check (#1804)
- 5613b63c kubectl-ko: fix destination mac (#1801)
- 1284f15d abort kube-ovn-controller on leader change (#1797)
- 5bf8de0f avoid invalid ovn-nbctl daemon socket path (#1799)
- 4680e632 update vpc-nat-gateway base
- 4cce7870 fix: warning for empty chassis fixed (#1786)
- Mengxin Liu
- bobz965
- hzma
- lut777
- zhangzujian
- 张祖建
- 686d913c set release v1.9.8
- 8de35693 prepare for release v1.9.8
- 38ee8301 delete htb qos when releated annotation is deleted (#1788)
- 85bd5f94 perf: fix memory leak
- 46c970d6 perf: disable mlockall to reduce memory usage
- d7fd3793 perf: reduce metrics labels (#1784)
- d7a9f5e9 feature: support exchange link names of OVS bridge and provider nic in underlay networks (#1736)
- b966dd59 perf: replace jemalloc to reduce memory usage (#1764)
- 8bb8b173 fix: add omitempty to subnet spec (#1765)
- fd676437 set sysctl variables on cni server startup (#1758)
- 7c6250f3 avoid patch interface deletion & recreation during restart (#1741)
- a91056a3 enqueue subnets after vpc update (#1722)
- e895c5ff do not add subnet not processed by kube-ovn to vpc (#1735)
- f13f3f46 add logrotate for kube-ovn log (#1740)
- 70246fb9 fix: If pod has snat or eip, also need delete staticRoute when delete pod. (#1731)
- 76e3c670 fix iptables for service traffic when external traffic policy set to local(#1725)
- cee39213 optimize lrp create for subnet in vpc (#1712)
- 21f0b979 fix: cancel delete staticroute when it's used by NatRule (#1733)
- 4c2d0c86 fix: wrong info when update subnet from dual to ipv4 or ipv6. (#1726)
- 417176ed fix: new ovn-ic static route method adapted due to old ovn version (#1718)
- Mengxin Liu
- hzma
- lut777
- xujunjie-cover
- zhangzujian
- 张祖建
- eb412c96 set release 1.9.7
- 07bec2a2 prepare for release 1.9.7
- a798a8c2 Get latest vpc data from apiserver instead of cache (#1684)
- 8bc1b169 update priority range in htb qos (#1688)
- ef4673d2 add upgrade-ovs script (#1681)
- Mengxin Liu
- Wang Bo
- hzma
- 6db04118 set release 1.9.6
- 885e41f6 prepare for release 1.9.6
- 556a2cf8 shim: fix diffs of commits
- 67da728a fix: change ovn-ic static route to policy (#1670)
- a7a11f03 fix: Do not Recreate Logical_Router_Port when Vpc recreated (#1570)
- e2ab703a feat: vpc peering connection
- 7699a34b Delete pod if subnet of the pod's owner(sts/vm) updated (#1678)
- 02e8973a security: disable pprof by default (#1672)
- 0242b9c2 bgp: consolidate service check and use service const (#1674)
- 3401d933 fix bgp: sync service cache (#1673)
- f818ca5c fix libovsdb (#1664)
- a11feff7 mount modules for auto load ip6tables moudles (#1665)
- 2882cafc ignore pod not scheduled when reconcile subnet (#1666)
- 91dfbbf4 fix get security group name by external_ids (#1663)
- e56d581b add policy route when add subnet
- Mengxin Liu
- Money Liu
- Wang Bo
- gugu
- hzma
- lut777
- wangyd1988
- 刘睿华
- 张祖建
- 范日明
- 8a2cc741 set for release 1.9.5
- 9935ab54 fix: no need routed when use v1.multus-cni.io/default-network (#1652)
- 60d33ca9 prepare for release 1.9.5
- a48e64ae CI: delete resources in order to avoid a long time waiting for subnet deletions. (#1643)
- 502a7a00 set networkpolicy log default to false (#1633)
- 0bda2e6f update policy route when join subnet cidr changed (#1638)
- 3cfafe40 ci: update trivy options (#1637)
- 71dba393 increase initial delay of ovs-ovn liveness probe (#1634)
- cf0bbd92 wait ovn-central pods running before delete ovs-ovn pods (#1627)
- 0877c3a7 get dbstatus for all ovn-central pod (#1619)
- 51c409bd fix issues about OVN policy routing
- 637503b4 use policy route instead of static route (#1618)
- hzma
- xujunjie-cover
- zhangzujian
- 张祖建
- c85ab203 ci: disable cilium e2e for release
- 0a841aa1 prepare for release 1.9.4
- f99f4e81 update ovs health check, delete connection to ovn sb db (#1588)
- 82d7dd37 fix: all cluster pod will be in podadd queue (#1587)
- 3c68cb9b fix pod could not be ready (#1562)
- f39ff7a8 fix: delete pod panic when delete vm or statefulset. (#1565)
- 4c60872f fix: keep vm's and statefulset's ips when user specified subnet (#1520)
- 81781a01 do not gc vm pod lsp when vm still exists (#1558)
- 4a28c014 fix exec cmd in vpc nat gateway (#1556)
- 67db2bf3 CNI: do not return route if nic is not eth0 (#1555)
- d5fce51d exit kube-ovn-controller on stopped leading (#1536)
- 05a4b4dc remove name for default drop acl in networkpolicy (#1522)
- 6fcc1975 tmp cancel cilium external svc test (#1531)
- fe3bb3e5 move dumb-init from base images to kube-ovn image
- hzma
- lut777
- xujunjie-cover
- 刘睿华
- 张祖建
- a2ba0c15 release 1.9.3
- 0695d31e fix defunct ovn-nbctl daemon
- f8594a29 optimize ovs request in cni (#1518)
- 08f2961d optimize node port-group check (#1514)
- 9ec4a430 reduce ovs-ovn restart downtime (#1516)
- b55fa987 prepare for release 1.9.3
- e4ba2e6d fix: ovs trace flow always ends with controller action (#1508)
- 2e681af3 optimize IPAM initialization
- 76fe9cef ci: skip some checks
- 51dc9243 delete ipam record and static route when gc lsp (#1490)
- Mengxin Liu
- hzma
- zhangzujian
- 6273d294 release for v1.9.2
- c98322d7 fix: wrong vpc-nat-gateway arm image (#1482)
- bc4f761c add delete ovs pods after restore nb db (#1474)
- 945f2336 delete monitor noexecute toleration (#1473)
- 35ecc687 add env-check (#1464)
- 1f68e12a append metrics (#1465)
- 302156bc masquerade packets from Pods to service IP
- 4faa8831 add kube-ovn-controller switch for EIP and SNAT
- 300a1643 ignore cni cve
- 75383df3 add routed check in circulation (#1446)
- c4f5f4d6 modify init ipam by ip crd only for sts pod (#1448)
- 135798dc log: show the reason if get gw node failed (#1443)
- 9bec51be9 modify webhook img to independent image (#1442)
- e1d6dbf6 support keep-vm-ip and live-migrate at the same time (#1439)
- 613b6ae5 update alpine to fix CVE-2022-1271
- 553bedd2 fix adding key to delete Pod queue
- d899cc97 fix IPAM initialization
- e159443d ignore all link local unicast addresses/routes
- 06bd4f86 fix error handling for netlink.AddrDel
- 71e3f119 replace pod name when create ip crd
- 8e65f6f6 support alloc static ip from any subnet after ns supports multi subnets (#1417)
- 9bc2f96a fix provider-networks status
- 269f819a recover ips CR on IPAM initialization
- dc43dc20 create ip crd in kube-ovn-controller (#1413)
- 41f8e26b add condition for triggering the deletion of redundant chassises in sbdb (#1411)
- 2aedc6ac fix: do not recreate port for terminating pods (#1409)
- d5556404 avoid frequent ipset update
- c86ff85e fix: The underlay physical gateway config by external-gw-addr when use snat&eip (#1400)
- deea9ded add reset for kube-ovn-monitor metrics (#1403)
- 899de6ff check the cidr format whether is correct (#1396)
- b54364b4 update dockerfile to use v1.9.1 base img
- 24190501 append vm deletion check
- 1953712a delete repeat para
- 7c0348a7 update nodeips for restore cmd in ko plugin
- f320ef8f fix external egress gateway
- c3e17d8c add missing link scope routes in vpc-nat-gateway
- 9d9d5878 increase memory limit of ovn-central
- c4092113 fix range loop
- 7397db27 update script to add restore plugin cmd
- Mengxin Liu
- hzma
- lut777
- wangyd1988
- xujunjie-cover
- zhangzujian
- 46eb49ad release update 1.9.1 changelog (#1361)
- 59594fed add restore process for ovn nb db
- de794986 optimize kube-ovn-monitor yaml
- 47a16c38 add reset porocess for ovs interface metrics
- a3618bcd fix SNAT/PR on Pod startup
- 81247723 modify ipam v6 release ip problem
- 0006902b skip ping gateway for pods during live migration
- 092db781 update flag parse in webhook
- 222a1fb6 feat: add webhook for subnet update validation
- 0615254e keep ip for kubevirt pod
- 87bb7f18 add check for pod update process
- 7886467a fix ips update
- ab3f0a6d append htbqos para in crd yaml
- a68a55f9 fix: replace ecmp dp_hash with hash by src_ip (#1289)
- dd08ecab fix OVS bridge with bond port in mode 6
- 5fd56d1e fix: continue of deletion for del pod failed when can't found vpc or subnet (#1335)
- 0d114958 Fix usage of ovn commands
- 621e2b57 resync provider network status periodically
- 10ac8c3a Revert "resync provider network status periodically"
- fadc1316 fix statefulset Pod deletion
- b74eaccc resync provider network status periodically
- 9a0f708f fix underlay subnet in custom VPC
- 69b3d72a append add cidr and excludeIps annotation for namespace
- c63cb106 support to add multiple subnets for a namespace
- 3f818b72 feat: update provider network via node annotation
- 57f16570 fix: only log matched svc with np (#1287)
- 288c5fe9 transfer IP/route earlier in OVS startup
- 4c4390b3 add metric for ovn nb/sb db status
- 92e7b975 check static route conflict
- 67a7d85b set up tunnel correctly in hybrid mode
- eabed9cc fix clusterrole in ovn-ha.yaml
- 65b83219 add gateway check after update subnet
- f3f8c4dc fix: validate statefulset pod by name
- b5544bc3 add back centralized subnet active-standby mode
- Mengxin Liu
- chestack
- hzma
- lut777
- xujunjie
- xujunjie-cover
- zhangzujian
- e4d48df3 prepare for release 1.9.0
- c830594d fix: liveMigration with IPv6
- e52b6897 update networkpolicy port process
- 851ad0ce Add args to configure port ln-ovn-external
- 5d95d628 update check for delete statefulset pod
- 695f4532 ignore hostnetwork pod when initipam
- 4b98d15f kubectl-ko: support trace Pods being created
- 63bc25ea add dnsutils for base image
- 6318d004 Add new arg to configure ns of ExternalGatewayConfig
- 71522920 update scripts for 1.8.2
- 960f02c1 Optimized decision logic
- 8974f6a3 add svc cidr in ovs LB for optimization
- 0192a9ae add doc for gateway pod in default vpc
- 1f9dc754 optimize log for node port-group
- 36d6b00a fix iptables rules and service e2e
- 8dc938d8 add kubectl-ko to docker image
- c4cc8f0d fix: invalid syntax error
- a4f4cb49 fix pod tolerations
- 8611de82 modify pod's process of update for use multus cni as default cni
- 5ab83ba4 fix installation script
- 09ef9be0 add log for ecmp route
- 791b00f4 fix: ipv6 traffic still go into ct
- 55e6a8ca append check for centralized subnet nat process
- 58a44fb2 move chassis judge to the end of node processing
- 9f0c42fa change nbctl args 'wait=sb' to 'no-wait'
- 6f356705 use different ip crd with provider suffix for pod multus nic
- f7b595dc fix service cidr in dual stack cluster
- c510b439 add healthcheck cmd to probe live and ready
- e14bc40c delete frequently log
- bde98e75 support running ovn-ic e2e on macOS
- 727ea53a pinger: fix getting empty PodIPs
- 205a0c02 fix cni deepcopy
- 650ea6d3 add cilium e2e
- 46ba84ee filter used qos when delete qos
- 1de284eb add protocol check when subnet is dual-stack
- 1f4a247d lint: make go-lint happy
- 91f3fa4b some fixes
- d57bc1d7 compatible with OVN 20.06
- 9116425a use multus-cni as default cni to assign ip
- d18323a4 some fixes
- 668c2125 perf: jemalloc and ISA optimization
- 5c08d28d fix: check np switch
- 36571555 fix: port security
- e713bdf0 fix nat rule
- d8e84cf0 When netpol is added to a workload, the workload's POD can be accessed using service
- 51365b41 when update subnet's execpt ip,we should filter repeat ip
- 5aacec59 update wechat image
- 6c8fa978 fix: do not reuse released ip after subnet updated
- e4648cc8 update: update 1.7-1.8 script
- b1f8332c perf: do not send traffic to ct if not designate to svc
- 178cf7b8 fix: add back the leader check
- 7be43c97 fix port_security
- e596c3c4 sync live migration vm port
- e8b1ff5b docs: add f5 ces integration docs
- 7058d568 update Go modules
- 84dbb102 update delete operation for statefulset pod
- e9e2c911 chore: update klog to v2 which embed log rotation
- fafd5555 fix: add kube-ovn-cni prob timeout
- 490590a4 append add db compact for nb and sb db
- 4fb302f5 deleting all chassises which are not nodes
- c49a7404 add db compact for nb and sb db
- 3b7ec06c add vendor param for fix list LR
- ae23d3df fix LB: skip service without cluster IP
- df3d3977 add webhook with cert-manager issued certificate
- 2be11269 security: update base ubuntu image
- eb364717 add pod in default vpc to node port-group
- ea300d2b fix pinger's compatibility for k8s v1.16
- 3837b0a2 check IPv4 gateway by resolving gateway MAC in underlay subnets
- 75604b5d add nodeSelector for vpc-nat-gateway pod
- fac6c725 do not send multicast packets to conntrack
- c3004bbc Revert "support to set NB_Global option mcast_privileged"
- 2802b94d add ip address for lsp
- 28a93927 fix: no need to set address for ls to lr port
- 2048007a add sg acl check when init
- b9abee71 cleanup command flags
- 54a3b913 replace port-group named address-set with port-group since there's no ip set for lsp when create lsp
- 743502cd support to set NB_Global option mcast_privileged
- a5f0256a add networkpolicy support for attachment cni
- 45f64bfa add process for pod attachment nic with subnet in default vpc
- 49e9197e fix security group
- 60e896f8 fix the duplicate call about strings.Split
- c9f5f4b4 deepcopy fix steps
- e0cb19aa fix: do not nat route traffic
- 4e4d95d5 fix: Skip MAC address Settings when PCI addresse is unavailable
- adce05c7 add ovn-ic e2e
- 3b6b5034 other CNI can be used as the default network
- 841f907b fix: move macvlan binary to host
- 52ec0af4 Revert "ci: init kind cluster before build finish"
- a8599325 fix ko trace
- 1dd66a77 add ovn-ic HA deploy
- bc3ce0bb fix node address set name
- cbed2820 update cni init image
- a648bfc6 chore: update kind k8s to 1.22 and remove pre 1.16 support
- a1d56e97 do not set bridge-nf-call-iptables
- 738c7612 use logical router policy for accessing node
- 6719ee24 ci: init kind cluster before build finish
- 61817bf4 reduce qos query with ovs-vsctl cmd
- 1776c447 fix read-only pointer in vlan and provider-network
- 329228d4 fix: trace in custom vpc
- a9c0a4aa fix read-only pointer in vlan and provider-network
- 62df3416 update docs
- a546ba95 fix LB in dual stack cluster
- eb63f72e fix: check allocated annotation in update handler
- 55b8b8ac support using logical gateway in underlay subnet
- ef424d73 docs: optimize cilium integration docs
- a09e84d0 fix: ensure all kube-ovn components deleted before annotate pods
- e7aeb96e fix bug: logical switch ts not ready
- dc4e693f Fix unpopulated CPU charts
- 003723e5 Revert "get default subnet"
- 418feb1b add htbqoses rbac
- 850e4218 feat: pod can use multiple nic with the same subnet
- 5840d509 add error detail
- e6377cae add check switch for default subnet's gateway
- b5b6c326 get default subnet
- fbafca41 remove node chassis annotation on cleanup
- 348eaf36 update: add 1.7 to 1.8 update scripts
- f934613d base: add macvlan to help vpc setup
- cd1dda1e fix: delete vpc-nat-gw deployment
- 50eddac3 ko: check ovsdb storage status
- 20670e87 fix cleanup.sh and uninstall.sh
- b31c4d19 use constant instead a string
- 86f63f26 fix: check and load ip_tables module
- 3bfd82b7 fix: multus-cni subnet allocation
- e5ed1ace docs: add svg
- 17ff6c55 chore: update install
- ce97b94c integrate Cilium into Kube-OVN
- fda0c17b fix kubectl-ko diagnose
- 3f8a2b0e change inspection logic from manually adding lsp to just readding pod queue
- 01ca82f9 fix pinger in dual stack cluster
- 0ba64dea add e2e testing for dual stack underlay
- 7f27a05d fix pinger and monitor in underlay networking
- 6a56f8bb fix kubectl plugin ko
- 2c9fe438 adjust the location of the log
- 86ee933a ci: push vpc-nat-gateway
- f459ca97 replace api for get lsp id by name
- 0a533984 docs:revise vpc.md
- 78847899 grafana: optimize grafana dashboard
- 168a7c97 In netpol egress rules, except rule should be set to != and should not be ==
- d7edf24b ci: add vpc-nat-gateway build
- 5cd32df8 Update OVN to version 21.06
- dd36d61c modify kube-ovn as multus-cni problem
- d17f6151 support to set htb qos priority
- c20e0111 perf: add fastpath module for 4.x kernel
- ff5d3df3 add inspection
- 3e9f9a99 perf: add stt section and update benchmark
- d3842327 feat: optimize log
- 4c6c29a3 fix: init node with wrong ipamkey and lead conflict
- 47255a10 fix installation scripts
- fd745487 fix getting LSP UUID by name
- 1f5719a5 fix StatefulSet down scale
- 5bccd845 fix vpc policy route
- acb82de0 docs: update roadmap
- 87f9b863 refactor: mute ovn0 ping log and add ping details
- a99c4200 fix: wrong link for iptables
- 52b01c01 fix IPAM for StatefulSet
- 51511e63 append externalIds for pod and node when upgrade
- 391f7014 feature: LoadBalancer for custom VPC
- 7fd8cf44 feat: support vip
- 25f634fb fix VPC document
- 97a5b2a3 fix init ipam
- 71fcbf12 fix: gc lb
- 2b154b1a Update prometheus.md
- 1e766f9c feat: support VLAN subnet in VPC
- 4c013a3e ci: push dev image to separate repo
- 39c8a19c fix: kubeclient timeout
- edaf41e0 fix: serialize pod add/delete order
- 78a77f79 perf: increase ovn-nb timeout
- 5937ccbf fix gc lsp statistic for multiple subnet
- c71620ce fix: re-check ns annotation to avoid annotations lost
- d40d5701 perf: do not diagnose external access
- 871c1493 feature: vpc support policy route
- 90b1a2ea reactor: remove ovn ipam options
- 7f43f25c perf: switch's router port's addresses to "router"
- 8dbe8f94 lint: make staticcheck happy
- 8ad46dad fix e2e testing
- 5a126378 prepare for next release
- 5b70c81d fix variable referrence
- 42fed929 fix typos
- f59aff27 refactor: reuse waitNetworkReady to check ovn0 and slightly improve the installation speed
- ea723d6d fix nat-outgoing/policy-routing on pod startup
- 2439c86e feat: suport vm live migration
- Mengxin Liu
- MengxinLiu
- azee
- chestack
- feixiang43
- huangjunwei
- hzma
- lhalbert
- liqd
- luoyunhe
- lut777
- pengbinbin1
- vseeker
- wang_yudong
- wangchl01
- zhangzujian
- 范日明
- aec4eaeb fix: get ecmp nodecheck back (#2016)
- b714e057 fix: gateway route should stay still when node is pingable (#2015)
- 898247c0 do not need to delete pg when update networkpolicy (#1959)
- 7adf4ea7 do not set bridge-nf-call-iptables
- d6ddf891 add check of write to ovn sb db for ovn-controller (#1989)
- 4e17fe73 fix grep matching device in routes (#1986)
- eb0cf474 delete pod after TerminationGracePeriodSeconds (#1984)
- 264beb59 ovs: fix waiting flows in underlay networking (#1983)
- 640806d5 use latest base image
- 469b32ae ovn db: recover automatically on startup if db corruption is detected (#1980)
- fd155293 prepare for release 1.8.14
- 4dbefaf2 fix CVE-2022-32149
- 317780a4 avoid concurrent subnet status update (#1976)
- 3d0c5eb6 modify build error
- b65b3de1 fix metrics name (#1977)
- 05011718 add vm pod to ipam by ip when initIPAM (#1974)
- 0890fdf9 validate nbctl socket path in start-controller.sh
- e5c59e5b skip CVE-2022-3358 (#1972)
- 2f4a56a3 use latest base image
- ea03249d fix: add default deny acl (#1935)
- e89ace5e ovs: fix mac learning in environments with hairpin enabled (#1943)
- 62491a53 Fix registry for ovn-central container in install.sh (#1951)
- d96cba57 ovs: add fdb update logging (#1941)
- 433c3b93 prepare for release v1.8.13
- 93e82147 set ovsdb-server vlog level to avoid warnings caused by ovs-vsctl (#1937)
- a03c8064 update Go to v1.17
- 41e697a1 add network partition check in ovn probes
- 78e73937 feat: Replace command health check with k8s tcpSocket check (#1251)
- df29bb2e fix CVE-2022-27664
- b35037d0 update ns annotation when subnet cidr changed (#1921)
- Mengxin Liu
- hzma
- lut777
- runzhliu
- zhangzujian
- 尚墨
- 张祖建
- 范日明
- 马洪贞
- 6e97d651 set release 1.8.12
- 845ee70f prepare release 1.8.12
- c39d51a3 fix: gatewaynode might be null (#1896)
- 08331bae fix: api rollback
- 3f96a632 fix logrotate issues
- fb4ac005 fix security issues
- d289215e security: conform to gosec G114 (#1860)
- 7451d098 fix: diskfull may lead to wrong raft status for ovs db (#1635)
- dd22f682 kubectl-ko: turn off pipefail for ovn leader check (#1891)
- d2be779e fix ip6tables link
- e1034427 fix duplicate logs for leader election (#1886)
- Mengxin Liu
- lut777
- zhangzujian
- 尚墨
- 张祖建
- 9f059091 set release 1.8.11
- 5fa2a8e1 feat: reduce downtime by increasing arp cache timeout
- c18cae4e feat: reduce wait time by counting the flow num.
- c8e36b5e fix: missing stop_ovn_daemon args
- e5735c20 delete log severity for drop acl when update networkpolicy (#1862)
- 4bcfb373 prepare release for 1.8.11
- 9d7f0a59 ovs: fix log file descriptor leak in monitor process (#1855)
- 446ee6a2 fix ovs-ovn logging (#1848)
- 63b218c6 fix: multus macvlan ipvlan use kube-ovn ipam,but ip not inited in init-ipam (#1843)
- 95c8ca4f ko: fix kube-proxy check (#1842)
- b7b7d26d avoid patch interface deletion & recreation during restart
- 2746a195 ci: switch environment to ubuntu-20.04 (#1838)
- cacb1ec4 fix base failure
- 3941595b update base image
- 2938daaa fix base build failure
- 122754aa update centralized subnet gateway ready patch operation
- c3f23af3 fix duplicate log for tunnel interface decision (#1823)
- 3d966bff update version to v1.8.10 (#1819)
- dfc89924 do not check static route conflict (#1817)
- a6403f0e update centralize subnet gatewayNode until gw is ready (#1814)
- 7103aae8 initialize IPAM from IP CR with empty PodType for sts Pods (#1812)
- b669c673 abort kube-ovn-controller on leader change (#1797)
- 0e0ea3c7 avoid invalid ovn-nbctl daemon socket path (#1799)
- a7f499dd do not wait dynamic address for pod (#1800)
- 2b34fd58 update vpc-nat-gateway base
- 8d2d0b1e append delete static route for sts pod (#1798)
- 9dc6e15e perf: fix memory leak
- 14beb484 perf: disable mlockall to reduce memory usage
- e6eace89 set sysctl variables on cni server startup (#1758)
- 020b20de fix: add omitempty to subnet spec (#1765)
- 3e77c51c fix CVE-2022-21698
- c5212982 add logrotate for kube-ovn log (#1740)
- ef275cc1 fix: cancel delete staticroute when it's used by NatRule (#1733)
- 513a30b5 fix: wrong info when update subnet from dual to ipv4 or ipv6. (#1726)
- aef889ae Get latest vpc data from apiserver instead of cache (#1684)
- Mengxin Liu
- Wang Bo
- bobz965
- hzma
- xujunjie-cover
- zhangzujian
- 张祖建
- 9050b22d set release 1.8.9
- c42900d6 prepare for release 1.8.9
- ff928386 [PATCH] Delete pod if subnet of the pod's owner(sts/vm) updated (#1678)
- f216a2f5 security: disable pprof by default (#1672)
- a984c913 update ovs health check, delete connection to ovn sb db (#1588)
- Mengxin Liu
- Wang Bo
- hzma
- 0fbefff5 set release 1.8.8
- 37df8e76 prepare for release 1.8.8
- bf873330 CI: delete resources in order to avoid a long time waiting for subnet deletions. (#1643)
- de117356 add ovn-ic HA deploy
- 1dcf9a43 set networkpolicy log default to false
- hzma
- lut777
- 张祖建
- 46987551 prepare for release 1.8.7
- b6796d09 cni handler: do not wait routed annotation for net1 (#1586)
- f5c3ed3f fix adding static route after LSP deletion (#1571)
- f7ee860b fix duplicate netns parameter (#1580)
- 0a3468b1 do not gc vm pod lsp when vm still exists (#1558)
- d453add3 fix exec cmd in vpc nat gateway (#1556)
- 8303ace0 CNI: do not return route if nic is not eth0 (#1555)
- bc758245 exit kube-ovn-controller on stopped leading (#1536)
- c51b09e8 remove name for default drop acl in networkpolicy (#1522)
- 9fe8cfcd move dumb-init from base images to kube-ovn image
- 2a8a45a1 fix defunct ovn-nbctl daemon
- hzma
- zhangzujian
- 张祖建
- 56bf06df release 1.8.6
- 9e5b2b28 reduce ovs-ovn restart downtime (#1516)
- e4d6cc2f prepare for release 1.8.6
- 60aa8913 fix: ovs trace flow always ends with controller action (#1508)
- 2a074c6f optimize IPAM initialization
- Mengxin Liu
- zhangzujian
- 9b96bacf ci: skip some checks
- e20cf4a2 delete ipam record and static route when gc lsp (#1490)
- 035f5072 CVE-2022-27191 (#1479)
- e898c96e add delete ovs pods after restore nb db (#1474)
- 89d7471c delete monitor noexecute toleration (#1473)
- 4b012aa6 add env-check (#1464)
- 3d0448b4 append metrics (#1465)
- a0e2404c add kube-ovn-controller switch for EIP and SNAT
- ca2ca1a1 add routed check in circulation (#1446)
- c9dfa5bb modify init ipam by ip crd only for sts pod (#1448)
- 8b5ce74a ignore cni cve
- 22fe8fbe log: show the reason if get gw node failed (#1443)
- 8570e286 update alpine to fix CVE-2022-1271
- 6aa6b0a9 fix adding key to delete Pod queue
- bf12ea0e fix IPAM initialization
- 5e005884 ignore all link local unicast addresses/routes
- 63248040 fix error handling for netlink.AddrDel
- aa7c3b8d replace pod name when create ip crd
- f0bb2769 support alloc static ip from any subnet after ns supports multi subnets
- 7a67a213 fix provider-networks status
- 8529bf8b recover ips CR on IPAM initialization
- Mengxin Liu
- hzma
- zhangzujian
- 48eb70a4 release update 1.8.4 changelog (#1414)
- 2fe7fff2 create ip crd in kube-ovn-controller (#1412)
- 01163c1c fix: add condition for triggering the deletion of redundant chassises in sbdb (#1411)
- c262bdcf fix: do not recreate port for terminating pods (#1409)
- bf167a60 avoid frequent ipset update
- b44bbc5d fix: The underlay physical gateway config by external-gw-addr when use snat&eip (#1400)
- ffdd1967 add reset for kube-ovn-monitor metrics (#1403)
- eda71b3c check the cidr format whether is correct (#1396)
- 62695032 update dockerfile to use v1.8.3 base img
- c15afc54 append vm deletion check
- 9faf2a10 update nodeips for restore cmd in ko plugin
- 621a37f0 fix external egress gateway
- 27af3335 update ip assigned check
- 4d88bea5 add missing link scope routes in vpc-nat-gateway
- bf8026ed increase memory limit of ovn-central
- 5a52041b fix range loop
- hzma
- lut777
- wangyd1988
- xujunjie-cover
- zhangzujian
- 37937fcf release update 1.8.3 changelog (#1360)
- 014ecc87 add restore process for ovn nb db
- dbf4774d optimize kube-ovn-monitor yaml
- ce8087d7 add reset porocess for ovs interface metrics
- 62938245 deepcopy fix steps
- 118f1299 fix SNAT/PR on Pod startup
- 9fa2c792 add check for pod update process
- f053f2a2 fix ips update
- fe9532d4 fix cni deepcopy
- c76e9b01 fix: replace ecmp dp_hash with hash by src_ip (#1289)
- f3922ba9 keep ip for kubevirt pod
- f6628902 fix OVS bridge with bond port in mode 6
- a421d9f8 fix: continue of deletion for del pod failed when can't found vpc or subnet (#1335)
- cf7f4bd9 Fix usage of ovn commands
- 586a0764 ignore cilint
- e083a2ba resync provider network status periodically
- dcb3e82d Revert "resync provider network status periodically"
- 18740e5c fix statefulset Pod deletion
- 85c15cb4 resync provider network status periodically
- 172c1733 feat: optimize log
- 136aedf9 optimize log for node port-group
- 0869e621 append add cidr and excludeIps annotation for namespace
- e04eaf7a support to add multiple subnets for a namespace
- ae201ef5 feat: update provider network via node annotation
- 5cf005e2 fix: only log matched svc with np (#1287)
- 6ef52c22 transfer IP/route earlier in OVS startup
- 75157be8 add metric for ovn nb/sb db status
- 4b23c84c check static route conflict
- 0832f5ef set up tunnel correctly in hybrid mode
- 175d54d1 fix clusterrole in ovn-ha.yaml
- 457475f2 add gateway check after update subnet
- 45787fb7 add back centralized subnet active-standby mode
- a737e196 update networkpolicy port process
- ff6bf6fa update check for delete statefulset pod
- chestack
- hzma
- lut777
- xujunjie-cover
- zhangzujian
- 5acf9586 release: update 1.8.2 changelog
- 49b2ae40 add log for ecmp route
- 798d0bb9 fix pod tolerations
- c5f4c8e6 fix installation script
- 270d28e4 append check for centralized subnet nat process
- ee691fb5 change nbctl args 'wait=sb' to 'no-wait'
- c4956ac3 move chassis judge to the end of node processing
- 636b946a use different ip crd with provider suffix for pod multus nic
- a03a858c use multus-cni as default cni to assign ip
- 3205b88e fix: do not reuse released ip after subnet updated
- 7de6afb8 delete frequently log
- efefc20b pinger: fix getting empty PodIPs
- d98fab8d add protocol check when subnet is dual-stack
- 0a48f6a6 filter used qos when delete qos
- 26f239aa fix: check np switch
- 4187a329 When netpol is added to a workload, the workload's POD can be accessed using service
- e7c50077 when update subnet's execpt ip,we should filter repeat ip
- 86020295 fix: add back the leader check
- dfa1a3a8 security: upadate base image
- 7f1e9354 update delete operation for statefulset pod
- 17301ee2 chore: update klog to v2 which embed log rotation
- 7cfeee1e fix: add kube-ovn-cni prob timeout
- 88a92ac9 append add db compact for nb and sb db
- 9496e386 add vendor param for fix list LR
- 641dcdde deleting all chassises which are not nodes
- ad0bc1b7 add db compact for nb and sb db
- b50da0e1 fix pinger's compatibility for k8s v1.16
- 723ec5c3 fix LB: skip service without cluster IP
- d412c780 security: update base ubuntu image
- b96b7056 add pod in default vpc to node port-group
- e1dfa7b1 add sg acl check when init
- c8692dfb fix: no need to set address for ls to lr port
- ef0e3b95 fix ko trace
- 7231a6f2 fix read-only pointer in vlan and provider-network
- 01e30a42 fix read-only pointer in vlan and provider-network
- 72cf31dd fix: trace in custom vpc
- 03639a4a fix: multus-cni subnet allocation
- 1857130e fix LB in dual stack cluster
- 3773bedf prepare for release 1.8.2
- 45316125 fix: check allocated annotation in update handler
- 79be0cde fix bug: logical switch ts not ready
- e3581cf1 fix: ensure all kube-ovn components deleted before annotate pods
- 9847a1b6 Revert "add check switch for default subnet's gateway"
- c106afa6 add check switch for default subnet's gateway
- bdf5b0e2 remove node chassis annotation on cleanup
- 31a5da22 fix: delete vpc-nat-gw deployment
- 765ede7b fix: serialize pod add/delete order
- 78dc1fbf change inspection logic from manually adding lsp to just readding pod queue
- 986f8b4e add inspection
- 15ea6ab8 fix: check and load ip_tables module
- 9bb0cfc2 fix cleanup.sh and uninstall.sh
- da422ff9 fix kubectl-ko diagnose
- cc8a4da0 fix pinger in dual stack cluster
- 9364d2a2 add e2e testing for dual stack underlay
- ecf4e011 fix pinger and monitor in underlay networking
- 91a32d41 fix kubectl plugin ko
- 259f8d6a replace api for get lsp id by name
- 7e775fa6 In netpol egress rules, except rule should be set to "!=" and should not be "=="
- 0a09e055 modify kube-ovn as multus-cni problem
- Mengxin Liu
- hzma
- lut777
- wang_yudong
- zhangzujian
- 范日明
- 31f53094 release: prepare for 1.8.1
- fa66c5f8 fix: init node with wrong ipamkey and lead conflict
- fa17c3d6 fix installation scripts
- c7d050b9 fix getting LSP UUID by name
- f0bebbec fix StatefulSet down scale
- 4c189b7f refactor: mute ovn0 ping log and add ping details
- c208cd51 fix: wrong link for iptables
- b4faf60b fix IPAM for StatefulSet
- d0525957 append externalIds for pod and node when upgrade
- 34ba16ea perf: increase ovn-nb timeout
- f844a2bc fix: re-check ns annotation to avoid annotations lost
- f7214195 perf: do not diagnose external access
- 6232c73b reactor: remove ovn ipam options
- 651ab41e perf: switch's router port's addresses to "router"
- f5997a87 fix gc lsp statistic for multiple subnet
- da43e21b fix e2e testing
- 5e3c1507 fix variable referrence
- bc95b5d3 fix nat-outgoing/policy-routing on pod startup
- Mengxin Liu
- hzma
- lut777
- zhangzujian
- 7c5fed65 fix adding OVN routes in dual stack Kubernetes
- 80a037ee release: prepare for 1.8
- f59bfb86 add update process and adding label to ls/lsp/lr
- e09d99b3 fix: VLAN CIDR conflict check
- e6b8341e security: update base image
- 29422965 update provider network CRD
- 25b151c8 fix external-vpc
- 44a8b4f6 perf: use link alias to filter packet
- e9984fe0 security: fix CVE-2021-3538
- d41c5e9b add print columns for subnet/vpc/vpc-nat-gw crd
- 730e4f17 improve support for dual-stack
- c148a5ac initialize ipsets on cni server startup
- 10613e87 delete residual ovs internal ports
- 361d4bbe simplify vlan implement
- 6fde0a56 fix: ovn-northd svc flip flop
- b1106056 add container run command for runtime containerd
- 42e212ca fix subnet conflict check for node address
- 3d2c6eb9 feat: read interface in installation from environment
- 35acf424 update encap ip by node annotation periodic
- 13b2080a fix ipset on pod creation/deletion
- f415b1ba add ready status for provider network
- 09283849 avoid Pod IP to be the same with node internal IP
- 70fbbecc remove subnet's
spec.underlayGateway
field - 96b0c118 add support for custom routes
- 45aafca2 Add missing metadata directive in VpcNatGateway example
- 0380d64c use util.hostNameEnv instead KUBE_NODE_NAME
- 38e04f34 chore: change wechat image
- 5df9fdd4 fix typo
- 4a7dd734 perf: add fastpath and tuning guide
- 3d8cdb6c update node labels and provider network's status.readyNodes when provider network is not initialized successfully in a node
- 8596ddc9 fix issues in underlay networking
- 7724990d add external vpc switch
- ffef618d update versions in docs and yamls
- 6e8d5c80 update Go to version 1.16
- 3deb5770 fix IPv6-related issues
- 2e4922d5 ci: use stable version
- dcda11d6 fix: bad udp checksum when access nodeport
- f12e5ee5 fix port-security, address parameters should be merged into one
- f03d4350 docs: optimize description
- b5b5bdb8 ensure provider nic is up
- b5bbed38 fix uninstall.sh
- 3ba5168c some optimizations
- 9ae0b3c3 fix gofmt lint
- 410d9329 fix multi-nic.md
- 5e9e41ac fix dual stack cluster created by kind
- 386d6160 remove external egress gateway from additionalPrinterColumns
- 70ae50ef fix default bind socket of cni server
- 56025ede if the string of ip is empty,program will die
- 9492f63f if the string of ip is empty,program will die
- 324dce2e fix underlay networking on node reboot
- f7077d58 add judge before use the index about cidrBlocks and ips
- f25b1ae2 add validation check function
- bda102a7 docs: add wechat qcode
- 14ccbeb3 feat: security group
- 992a09d3 delete subnet AvailableIPs and UsingIPs para
- 057ade92 fix: panic when node has nil annotations
- 59869daa append pod/exec resource for vpc nat gw
- 3ed2fe26 update comment for SetInterfaceBandwidth
- e1caa594 update qos process
- 80e5e2ba fix LoadBalancer in custom VPCs
- bb1146ee Support Pod annotations control port mirroring
- 4c4b0900 fix docs
- a04d964d externalOvnRouters is ok with 0
- 9524c93f delete attachment ips
- 6dd6a51d fix external_ids:pod_netns
- cbe8ae68 add switch for network policy support
- dc56d238 fix subnet e2e
- e3daee83 ignore empty strings when counting lbs
- 81ce45c2 fix iptables
- e9ea6a0f fix issue #944
- 1cb57358 fix openstackonkubernetes doc bugs
- fcdb0106 add switch for gateway connectivity check
- 4dc4624f fix cleanup.sh
- 4fb97407 security: fix CVE-2021-33910
- 41b6429c delete ecmp route when node is deleted
- 5bd96ac7 fix: if nftables not exists do no exit
- 6c5efbc3 update wechat contract method
- e449b8ea delete overlapped var subnet
- 2427a4b3 add designative nat ip process for centralized subnet
- 1595eac5 fix ipsets
- 7e24e7d6 update underlay e2e testing
- 27c649a5 match chassis until timeout
- df76038a fix CRD provider-networks.kubeovn.io
- d1c7a2ee fix: set vf mac
- 949c28c2 update qos ingress_policing_burst
- 8a05bdc8 add field defaultNetworkType in configmap ovn-config
- 1810dfc3 keep subnet's vlan empty if not specified
- 4e28600d delete ecmp route when node is not ready
- d145f575 add del learned routes when remove ovnic
- 6499e585 [kubectl-ko] support trace in underlay networking
- 23d84f0a fix subnet available IPs
- eced6bac fix bug for deleting ovn-ic lrp failed
- a4abbb2e add node internal ip into ovn-ic advertise blacklist
- 2ec0aa74 underlay/vlan network refactoring
- ead2c65f chore: update ovn to 21.03
- 651a634d security: fix CVE-2021-3121
- 8cff6851 list ls with label to avoid listing ts failure
- 3fd9c7ac Update log error
- 0fe67258 delete the process of ip crd delete in cni delete request
- 9049fc72 update networkpolicy process
- a5b22a21 modify func name Additonal to Additional
- 0cd5dcfe fix uninstall.sh execution in OVS pods
- b4ce83a2 perf: enable tx offload again as upstream already fix it
- 9ca47b65 label lr, ls and lsp, and add label filter when gc
- 37a045a3 security: add go build security options
- bdf91846 feat: ko support cluster operations status/kick/backup
- efdce464 docs: update docs about vlan/internal-port/kubeconfig
- ced43405 add judge before use slices's index
- 3d98d762 update kind to version v0.11.1
- e1e63cfa adapt to vfio-pci driver
- 205f5712 fix IP/route transfer on node reboot
- a3cac539 add master check when a node adding to a cluster and config sb/nb address
- b98afeef update installation scripts
- 2d750cbf enable hw-offload
- 64b9abae do not delete statefulset pod when update pod
- 4359c198 fix: node route should filter out 'vpc'
- 744e6577 feat: lb switch
- 7ec2f994 docs: show openstack docs and docker image status
- 5484387f fix: clean up gateway chassis list for external gw
- acc95f1d add doc for openstack/kubernetes hybrid deploy
- e2973c4f configure OVS internal port after dummy interface
- 8608b7e5 some fixes in vlan initialization
- 872340c8 clean up vpc service
- fde89914 feat: vpc load balancer
- 8ed91be4 fix: lsp may lost when server pressure is high
- 42fbe86e fix: check crds when controller start
- a5fef59b start evpc ph1
- 31ee8c10 start evpc ph1
- 44db142e ci: retry arm build when failed
- 96c13985 update ecmp notes
- 8c169322 add interface name in cni response
- aa88e2a2 add nicType for offload
- eb387428 1.Support to specify node nic name 2.Delete extra blank lines
- cb8cc645 ignore update pod nic annotation when is not nil
- 3a4347b9 set default UnderlayGateway to true in vlan mode
- a0d78920 unify logical entity list funcs (#863)
- 9e563d84 ci: remove dpdk ci
- e48a0894 correct vlan e2e testing
- f690085d fix: remove rollout check
- 2b2df3dc adapt internal tcpdump
- 2531779a update docker buildx install method
- eef1b0aa fix: remove wait ovn sb
- 2e59e81c fix: ci issues
- df47c489 fix: cleanup kube-ovn-monitor resource
- 598cffdd fix multi-nic.md
- f4b75bd0 fix: acl overlay issues
- 2fe4fe1d ci: split ovn/ovs into base image
- db2b7b06 add judge before use slices's index
- 3e259ae9 update version to v1.7 in docs
- eb54dc03 update master version to v1.8.0
- Mengxin Liu
- Ruijian Zhang
- Tobias
- feixiang43
- hzma
- lhalbert
- lut777
- pengbinbin
- pengbinbin1
- wang_yudong
- xieyanker
- xuhao
- zhang.zujian
- zhangzujian
- 范日明
- 马洪贞
- 6329a275 release: prepare for 1.7.3
- a17dd60d fix: disable periodically gc
- 26a355d9 fix installation scripts
- be8b5ea7 fix StatefulSet down scale
- 506e95d5 fix: init node with wrong ipamkey and lead conflict
- 7fed7ee3 refactor: mute ovn0 ping log and add ping details
- 9110bcef fix: wrong alias for iptables
- 18053abd fix: northd probe issues
- 698d92c6 fix IPAM for StatefulSet
- 0c1baacb append externalIds for pod and node when upgrade
- 905b789f security: update base image
- 7d86e2c5 fix gc lsp statistic for multiple subnet
- 6ce5cd8b fix: kubeclient timeout
- c3b72cff fix: serialize pod add/delete order
- 530a3dd0 refactor: reuse waitNetworkReady to check ovn0 and slightly improve the installation speed
- 121c9a41 perf: increase ovn-nb timeout
- 1f97edcc fix: re-check ns annotation to avoid annotations lost
- c79244fc perf: do not diagnose external access
- 6bc241fc reactor: remove ovn ipam options
- 74ab9aa1 perf: switch's router port's addresses to "router"
- a5791a01 fix e2e testing
- 6505e2e4 fix variable referrence
- d1f14509 fix nat-outgoing/policy-routing on pod startup
- Mengxin Liu
- hzma
- lut777
- zhangzujian
- cd650db4 fix: VLAN CIDR conflict check
- 4cabb12c perf: use link alias to filter packet
- af4a1983 security: fix CVE-2021-3538
- c6daff2a prepare for release v1.7.2
- 18241707 initialize ipsets on cni server startup
- cf32ab1e delete residual ovs internal ports
- 7d94413f fix: ovn-northd svc flip flop
- 316d141e fix subnet conflict check for node address
- d44273e9 update comment for SetInterfaceBandwidth
- 06810be2 update encap ip by node annotation periodic
- 99ec3d4a delete subnet AvailableIPs and UsingIPs para
- c57c6dbc fix ipset on pod creation/deletion
- ef9dbc5b add ready status for provider network
- 8906e457 avoid Pod IP to be the same with node internal IP
- 85b57239 update node labels and provider network's status.readyNodes when provider network is not initialized successfully in a node
- 078c0c8b fix issues in underlay networking
- 2919288a fix IPv6-related issues
- aaf56e65 ci: use stable version
- 25609873 fix: bad udp checksum when access nodeport
- 78077f34 ensure provider nic is up
- 154f21c3 fix uninstall.sh
- 7a4c5a59 fix gofmt lint
- 169a3256 if the string of ip is empty,program will die
- 1065c8e4 fix dual stack cluster created by kind
- dd756c05 fix default bind socket of cni server
- 6ebbbbf4 update kind to v0.11.1
- ad2b08ec fix underlay networking on node reboot
- 2ba31cc1 append pod/exec resource for vpc nat gw
- 7831f803 fix: panic when node has nil annotations
- 554cc044 update qos process
- a47d9297 delete attachment ips
- b633ab3c fix external_ids:pod_netns
- b3190ef8 fix subnet e2e
- ae3cc954 ignore empty strings when counting lbs
- a9bee809 fix iptables
- 5cd1b14e fix image version
- a93e2dec fix cleanup.sh
- 0e3c1cbc security: fix CVE-2021-33910
- 50da96ae delete ecmp route when node is deleted
- 851dd303 fix: if nftables not exists do no exit
- e48c985b delete overlapped var subnet
- 1dfcf6df match chassis until timeout
- 4f09a0d5 update qos ingress_policing_burst
- a63de27a fix ipsets
- cc51be3d update underlay e2e testing
- 7cd02fef fix CRD provider-networks.kubeovn.io
- Mengxin Liu
- Ruijian Zhang
- feixiang43
- hzma
- lut777
- zhangzujian
- 范日明
- 1b289a22 ready for release v1.7.1
- 795fbdf0 add field defaultNetworkType in configmap ovn-config
- dc440c76 keep subnet's vlan empty if not specified
- 7b7eef98 update ecmp notes
- d26850de delete ecmp route when node is not ready
- 72a73fb6 delete the process of ip crd delete in cni delete request
- 22a296e5 fix subnet available IPs
- b6076028 [kubectl-ko] support trace in underlay networking
- 0b877b96 underlay/vlan network refactoring
- 7c529a18 adapt internal tcpdump
- 10481d9b fix bug for deleting ovn-ic lrp failed
- 1adb788f add node internal ip into ovn-ic advertise blacklist
- f9d542ee security: fix CVE-2021-3121
- 498c7dd1 feat: ko support cluster operations status/kick/backup
- d812c746 fix uninstall.sh execution in OVS pods
- fd512511 perf: enable tx offload again as upstream already fix it
- f41d5742 security: add go build security options
- feedaca8 fix IP/route transfer on node reboot
- 5406d701 add master check when a node adding to a cluster and config sb/nb address
- 136ead43 do not delete statefulset pod when update pod
- 1ef87e13 fix: node route should filter out 'vpc'
- 0761fe7a some fixes in vlan initialization
- 63122eb8 fix: clean up gateway chassis list for external gw
- 96e22451 ci: remove dpdk ci
- 7003890e correct vlan e2e testing
- dcdf75a3 configure OVS internal port after dummy interface
- 9b70842a fix: lsp may lost when server pressure is high
- 1f48f9fd 1.Support to specify node nic name 2.Delete extra blank lines
- 8c37d4b9 ignore update pod nic annotation when is not nil
- 00e2e009 set default UnderlayGateway to true in vlan mode
- f11cdf94 fix: remove rollout check
- 2d67471d fix: remove wait ovn sb
- ba7d6553 fix: cleanup kube-ovn-monitor resource
- 1e1da5a5 fix: acl overlay issues
- 00681fb0 update version to v1.7 in docs
- Mengxin Liu
- Ruijian Zhang
- hzma
- lut777
- xuhao
- zhangzujian
- 范日明
- 马洪贞
- 907b34d2 prepare for release v1.7.0
- ab727c98 diagnose: check sa related resource
- 9bd2e9f8 fix: do not nat route traffic
- 3bd14945 fix: release ip addresses even if pods not found
- f4794183 fix typo
- 2a2160d0 docs: add description of custom kubeconfig
- 3dd99a79 fix: add address_set to avoid error message
- ba40fd67 optimize Makefile
- cb95f4e6 update vlan document
- 31a96f21 add label to avoid deleting other
- 6cd6b34b delete unused log
- 34734010 add ovs internal-port for pod network interface
- 9e715623 support underlay mode with single nic
- d6c96d07 support underlay mode with single nic
- c1d3fc3c fix: add node to pod allow acl
- ed49cd49 traffic rate for multus nic
- 1b00190f add ovs internal-port for pod network interface
- 775aec6c Add maintainers
- 59847bc1 add e2e tests for external egress gateway
- a0006ebf fix e2e testing on macOS
- 0ff3d6bb ci: fix lint and scan error
- 33e0ec27 fix: check if provider network exists
- 9e53d4cc update subnet document
- a2e4fec4 rename ExternalGateway to ExternalEgressGateway
- 1ccaec9a fix installation doc
- 34fb4759 fix: forward policy to accept
- bbbd091f ci: fix lint error
- 28cf4cc2 traffic rate for multus nic
- 0dcf6930 refactor: optimize service.go and subnet.go
- 7719fc2a Check and Fetch all ValidatePodNetwork errors
- 123ead48 add judge about nic address
- 17fe2302 implement new feature: external gateway
- 01686e3e start_ic should run regardless of ts port
- c733c7e4 add judge before use index
- ba709afb specify ovs ops on diff nodes
- 07089205 fix mss rule
- 4458a4d7 Get node info from listerv1.NodeLister(index)
- 19a7aed9 Clean up the wrong log
- 27fe348a refactor: optimize subnet.go
- ddfd06b2 Optimise the redundancy code
- bd55c104 Handler the parse config error before used
- bd3f13dc ci: remove 3-master e2e
- 9e827e7b Remove the unnecessary rm command
- 587bbcdb Use localtime when the kube-ovn installed
- a52a38d0 Fix the different time from container and host
- 436e788b add issue template
- 5fc3cfb1 add bgp doc
- f16fcb9a support afisafis
- d94af379 feat: support graceful restart
- 26a02725 fix: del might panic if duplicate delete
- 41226d86 fix: lr-route for eip using nic-ip, and not external gateway addr.
- d176dac7 feat: support announce service ip
- 136571d1 Fix some minor nits for docs
- 2781a47b add bpg options in bgp.md
- 1b788902 add Opstk&K8s ic doc
- cc843816 add holdtime function
- b9e96339 fix: do not re-generate ts port
- 610f132b fix: ignore root path doc ci
- bd1e0975 fix: do not gc learned routes
- be2048be feat: add vxlan in README.md
- cbb2ddd4 fix: get_leader_ip always return fist node ip
- 03f597ce fix: remove tty error notification
- cc353bbc fix ovn nb reconnect
- af2709df add docs for 'multus ovn network'
- ffc20a91 add vpc nat gateway docs
- a1ae937a fix: static route for default multus network
- 0489a72a feat: support vxlan tunnel
- 77f65449 append delete ovn-monitor in ovn.yaml
- c5ee49e8 split ovn-central and ovn-monitor
- e0890f72 Fix mount the systemid path
- fc92fbc2 handle update deployment vpc-nat-gw
- 686681ef refactor: remove function genNatGwDeployment's return error
- 064c3851 Update crd vpc-nat-gateways.kubeovn.io for pre-1.16
- a0dfea1b fix incorrect method for gateway node judgement
- 86c99c37 Fix the 'multus how to use' link
- 1acb4992 fix multi nic
- 9c5ca0a0 fix duplicate imports
- b4750853 fix: compatible with JSON format
- 2a2cd27a fix: leader may change during startup, use cluster connection to set options.
- aad81548 fix SNAT on pod startup
- 388119a7 fix development guide
- 2efdac9a fix gofmt
- c264bec1 fix: configure nic failed when ifname empty
- 763f8bcf fix: port does not support vlan tag update
- a60764ea fix build dev image
- faa7bc6a support hybrid mode for geneve and vlan
- d8472ba7 remove extra space
- f9c836b6 fix: compatible with no norhtd svc
- bbed09d3 fix chassis check for node
- dfdf5f8b optimization for ovn/ovs status metric
- 9e82ca3d fix: release norhtd lock when power off
- 1fbfad52 add single node e2e
- f9ae6258 fix get pod attachment net
- 0632e253 support ovn defautl attach net
- 2c1a8aa6 add network-attachment-definitions clusterRole
- 808a3a93 feat: multus ovn nic
- 28e14188 update node ip when upgrade to dualstack
- 0265747d add details for prerequisite
- 3e42f684 Add Ecmp Static Route for centralized gateway
- b72e9d50 fix: disable offload if geneve port exists
- f4e665b9 disable offload for genev_sys_6081
- acade01b refactor: optimize ovn command when error exists
- 5251c272 add net-attach-def ClusterRole
- 5126aedd add lsp with external_id
- ec7f7425 feat: multus ovn nic
- 19e23d14 fix: check ovn0 status
- c02afc00 livenessprobe fail if ovn nb/ovn sb not running
- 983831e0 fix: disable checksum offload for ovn0 to prevent kernel issue
- d9f166b7 ignore ip6tabels check for v4 hostIP
- 680802d6 improve the code style of [import group ordering]
- 8e38a79d fix wrong sequence
- 1e0d77c3 update arm64 build
- 638a03ac fix: restart ovn-controller to force update flows
- 14784fbb fix: disable checksum validation
- a04dcfb6 Use public network effective image
- 24095d7f update usingips check when update finalizer for subnet
- 54ef1af2 fix dependency
- 717688d6 Update vendor.
- 496fc4dd trim space the port_binding's output
- 00fdac83 refactor: remove unnecessary config logic
- b06dad21 update maintainers
- e5d9584e docs: deprecated webhook
- 92cc4ed3 fix: add missing ovn-ic binary
- c0349e4f chore: change action name
- 1a448ecc chore update artworks
- 537588c3 fix: delete chassis_private when delete node
- a50fb181 Add 'kubectl ko trace' command's default namespace
- fad9473d Add 'kubectl ko trace' command's default namespace
- 77c92ca8 perf: reclaim heap memory after compaction.
- f3df58ae remove the old script
- b69f389c docs: add CNCF description
- 08b95e74 fix: gc not exist node error
- 9f661461 perf: use new option to decrease ovn-sb size
- 9dc06908 fix: return err
- 8bd44608 docs: add faq section
- 482e6f71 add vpc nat gateway Dockerfile
- b0e983f0 feat: vpc nat gateway
- 951e31ea add node address allocate check when init
- 215c8f45 update upgrade for ovn-default and join subnet
- a537985d fix: lint error
- d0d3e89c fix: add missing ovn-ic-db schema
- 98651014 update subnet ip num calculate
- d6bb03bd fix: masq traffic to ovn0 from other nodes
- 0a7024f9 refactor: reduce duplicated GetNodeInternalIP function
- ac294669 chore: update go version
- 0e9c717d chore: move build dependency from alauda to kubeovn
- 64fac57a feat: support set default gateway in install script
- ca71de3c docs: fix typos
- 582cb9ce Update install-pre-1.16.sh
- 62fc20ef Update install.sh
- 87859ac1 go import repo change to kubeovn
- 1152744e feat: vpc nat gateway
- 298138e4 Resolving typo.
- 4701fcb3 filter repeat exclude ips
- e3931f0e modify ip count for dual
- a4ddb360 docs: add ARCHITECTURE.MD
- 9eee6f93 refactor: reduce duplicated function
- a7b687a0 fix: add dpdk pod name
- d32b423b Update cleanup.sh
- 9faaff57 Update cleanup.sh
- df065f94 test: add service e2e
- 60e49f5a modify test problem
- 2dbcb76f fix: kube-proxy check
- 512044cb ovn-central: set default db addr same with leader node to fix nb and sb error 'bind: Address already in use'
- c755ef23 fix: reset ovn0 addr
- a168c282 tests: add e2e for ofctl/dpctl/appctl
- f6dc58a5 ci: replace image
- b1d03370 docs: clarify dpdk usage scenario
- 21d9940b ci: update kind version and set timeout
- 8b833ee5 Update install-pre-1.16.sh
- 4b6f0eed Update install.sh
- f6f88501 refactor: remove duplicated call
- 473cdc48 Update kubectl-ko
- 1ca17686 Fix missing square brackets in curl ipv6
- 136336b2 Modify the health check for kube-proxy port, compatible with ipv6
- 98a56dec Update controller.go
- c52c067b Fix: remove IsNotFound when get configmap external gateway
- 74fa7729 Fix: check kube-proxy's 10256 port healthz
- d594554d fix: ip6tables check error
- b17f2373 Add MAINTAINERS file
- 2783c134 add vpcs && vpcs/status clusterRole
- 31e1226e Update install-pre-1.16.sh
- f1efaa7f delete connect to ovsdb for ovn-monitor
- f69ae44b cni-bin-dir,cni-conf-dir configurable Fix kubeovn#655
- f5999b3b Update install.sh
- e13448aa Error: unknown command "ko" for "kubectl"
- 7d56483a Fix: wrong split in FindLoadbalancer function
- 34776b8a vlan nic support regex
- f23093c4 fix underlay gateway flood logs
- 4a9901aa fix: check required module before start
- 8d4694f8 docs: add underlay docs
- 3713b253 chore: update ovn to 20.12 and ovs to 2.15
- 1ab87130 prepare for next release
- a94803d3 fix: make sure northd leader change
- 03487cf2 fix: make sure ovn-central is updated one by one
- 9d3b78a3 fix: restart when init ping failed
- 6e09c77d fix: increase raft timer to avoid leader flap
- 87aa15cb pass golangci-lint
- 134ea89d add golangci-lint to github actions
- d325e7e0 fix pod terminating not recycle ip when controller not ready
- 87af4ca9 fix: add new iptable cleanup commands
- d287063b modify static gw changed problem
- fcf3be19 Fix wait pod network ready take long time
- 0b4e4458 fix: when address is empty, skip route/nat deletion
- ed0e9ba2 fix: update ipam cidr when subnet changed
- 06816efb modify test problem for dual-stack upgrade
- Amye Scavarda Perrin
- JinLin Fu
- Mengxin Liu
- Wan Junjie
- Yan Wei
- Yan Zhu
- caoyingjun
- chestack
- cmj
- danieldin95
- halfcrazy
- hzma
- luoyunhe1
- lut777
- pengbinbin1
- sayicui
- wangyudong
- withlin
- xieyanker
- zhangzujian
- 范日明
- 马洪贞
- 8e28e139 prepare release for v1.6.3
- 2818eb86 fix: do not nat route traffic
- be20533b fix: release ip addresses even if pods not found
- 1bdff344 security: fix crypto CVE
- f29958db fix: add address_set to avoid error message
- 04fc67f8 fix: add node to pod allow acl
- 91d43e01 Handler the parse config error before used
- 634f672b fix: del might panic if duplicate delete
- 7795b519 fix: do not re-generate ts port
- 37ed257f fix: get_leader_ip always return fist node ip
- 548a5c55 fix: do not gc learned routes
- 4e8a7c99 fix: remove tty error notification
- 9e060882 fix ovn nb reconnect
- 1b35390f perf: reclaim heap memory after compaction.
- 703174a8 fix: leader may change during startup, use cluster connection to set options.
- 14de53e7 fix SNAT on pod startup
- Mengxin Liu
- Yan Zhu
- caoyingjun
- chestack
- zhangzujian
- 马洪贞
- 2f421181 release 1.6.2
- 23c9240d fix: configure nic failed when ifname empty
- 6574447f remove extra space
- b65d41ad fix chassis check for node
- bec0d0f4 fix: compatible with no norhtd svc
- ef76fcc0 fix: release norhtd lock when power off
- fefcff27 fix: disable offload if geneve port exists
- a1679923 disable offload for genev_sys_6081
- 12e6b0b1 rebuild to fix openssl cve
- a5862310 fix: check ovn0 status
- 03956f1f ignore ip6tabels check for v4 hostIP
- 35f06495 livenessprobe fail if ovn nb/ovn sb not running
- 3f15c923 fix: disable checksum offload for ovn0 to prevent kernel issue
- 54f5102d add node address allocate check when init
- 07bea935 update arm64 build
- 995022e6 fix: restart ovn-controller to force update flows
- 21c312c0 fix: disable checksum validation
- 73bb2d83 update usingips check when update finalizer for subnet
- Mengxin Liu
- danieldin95
- halfcrazy
- hzma
- lut777
- 87e11481 fix: add missing ovn-ic binary
- dbf53f6e release for 1.6.1
- 2dcd7584 fix: delete chassis_private when delete node
- f8aeb887 chore: update ovn to 20.12 ovs to 2.15
- 35190e1c refactor: reduce duplicated function
- afe9a9f0 fix: masq traffic to ovn0 from other nodes
- 96880905 ovn-central: set default db addr same with leader node to fix nb and sb error 'bind: Address already in use'
- cce2bb4d fix: reset ovn0 addr
- 8152bdf5 Fix: wrong split in FindLoadbalancer function
- 33b0e186 fix underlay gateway flood logs
- 9a8e7870 fix: check required module before start
- b70f6103 fix: make sure northd leader change
- ecbd43e2 fix: restart when init ping failed
- 4b752988 fix pod terminating not recycle ip when controller not ready
- 0e794679 fix: add new iptable cleanup commands
- cf725882 Fix wait pod network ready take long time
- bbb7edc6 fix: when address is empty, skip route/nat deletion
- 7121fa80 fix: update ipam cidr when subnet changed
- 99d8981f prepare for 1.6.1
- 8559014f move build dependency from alauda to kubeovn
- 9184aa93 update upgrade for ovn-default and join subnet
- f11c6b3c update subnet ip num calculate
- e5e6e302 fix: ip6tables check error
- 23dcd2a3 delete unused import packet
- 5ead6b1d filter repeat exclude ips
- 30217437 modify ip count for dual
- b4560b99 modify test problem
- b4b55581 add vpcs && vpcs/status clusterRole
- d6f14147 delete connect to ovsdb for ovn-monitor
- 98859f9b modify static gw changed problem
- 255e20c6 modify test problem for dual-stack upgrade
- Mengxin Liu
- Wan Junjie
- Yan Zhu
- cmj
- hzma
- wangyudong
- xieyanker
- d47ccb67 release: 1.6.0
- b8f221bf docs: add docs for vpc
- 12cf140b fix typo
- b13cb7bf ci: update go version to 1.15
- 7f9eefed Fix: replace the command to run the script via 'sh' with 'bash'
- 076ab28f Fix the default mtu parameter's describe
- 8e608667 modify network policy process
- 171dcff6 upgrade for subnet from single protocol to dual-stack
- bbc68577 add network policy adapt for dual-stack
- c01766cf feat: update ovn to 20.09
- 315831aa docs: prepare docs for 1.6.0 release
- a1e7974f perf: add pprof to pinger
- 627956e9 doc for dual-stack
- 02751bf4 Update the container nic name use the CNI_IFNAME parameter which passed by kubelet
- 14f36814 ci: enable docker experimental feature
- 9a785fc9 ci: build multi arch image
- 03ff96e6 (np) fix mulit np rule and gateway bug
- 20f3fcb1 fix start-db.sh echo message
- 52b39d76 fix: iface check error
- 072870b1 fix: add missing ping due to deb build
- efdd3913 fix: find iface by full match first then regex match
- f922ef75 fix: livenessProb/readinessProb might conflict when run logrotate at same time
- f1fe2b2e modify subnet and ip crds
- a2d76df7 modify service vip parse error
- 8aa5d0a4 update vendor
- 44381c74 update client-go
- 96c1c100 fix: np with multiple rules
- 87e6ded0 modify loop error for get metrics
- 1e2a7477 diagnose: add more diagnose info
- aea12bae ci: trigger action when yamls change
- 7bd6bf39 fix: ha e2e failed
- 56774aaf fix: allow traffic to gateway
- a78c2661 fix: cni-server default encap ip use right interface ip
- 7d31e617 feat: change default build image to ubuntu
- e2cd7871 add build for dualstack
- ddda6332 feat: distributed eip
- a6fef94a Add CNI modify for dualstack
- a54bfc28 Debian: Add debian docker image support
- 8a01cb1c Add adaption for dualstack, part of daemon process.
- 9738af18 chore: reduce binary size
- 6483d6e3 modify build problem
- dab50b33 Append ip monitor to document
- 34428819 license: fix felix dir
- 2ef66568 feat: support advertise subnet route
- ecbd01a6 Add IP Num Alert
- d64e6931 Add adaption for dualstack, part of controller process.
- 7246037b convert ip to string
- 2aecb3d9 add pod static ip validate
- b58e01b6 chore: add COC and roadmap
- 7bbdc00f fix: move felix to self repo to remove bird license
- d2b570cf Add license scan report and status
- 86584b95 fix: default network
- ccea68bf release for 1.5.2
- 07347501 fix: ovn-ic support ssl
- 4d8b186a fix: nat rules can be modified
- f535460f fix: remove svc cidr routes
- e3082cd7 ci: specify ubuntu version to make github action happy
- f6cce9a0 fix: specify exec container to mute warning message
- 2215c05f feat: remove cluster ip dependency for ovn/ovs components
- a9747b31 fix: add resources limits to avoid eviction
- 00571196 fix: vpc static route manage
- 8deb5d8d fix: validate vpc subnet
- 256ac6c5 Fix external-address config description
- ccda611a Fix the problem of confusion between old and new versions of crd
- f2f64801 fix: ovn-central check if it exits in NODE_IPS
- 5b973a89 fix: check ipv6 requirement before start
- 86941a8a feat: add ovs/ovn log rotation
- ef41733c add node ping total count metric
- 5e6bd911 diagnose: add ovs-vsctl show to diagnose results
- 7301e992 fix: nat rules
- 6026028a fix: masq other nodes to local pod to avoid nodrport triangle traffic
- d41110ec Update install.sh to allow dpdk limits configuration (#546)
- a128d7fc format
- b6ad17b5 test: e2e uses IPVS cluster by default
- f6951cf5 chore: update go version to 1.15
- 1f703c3d fix: tolerate all taints
- f8ace73c feature: add vpc static route
- f62cb4eb fix: cleanup script error
- 3bac21f7 docs: modify eip config description
- 1f07d96b security: remove sqlite to mute cve warning
- 015bc625 test: add e2e for kubectl-ko
- aa86e406 feat: pinger can return exit code when failed
- 2cf855ec fix: nat traffic that from host to svc
- cbe0ad55 docs: new feat for disable-ic, regex iface and pod bind subnet
- 5dbaf2d3 sync the default subnet of ns by vpc's status
- dd2234f4 fix: devault vpc lb/dns
- 32c49c1b fix: shutdown vpc workqueue
- 67076d62 fix: subnet CIDRConflict
- d5b819b0 fix: subnet bind to ns
- 921190ef feature: add vpc crd
- b5ecac95 Release and gc the resources in vpc
- 15eca9dc fix: gc logic router
- 91fec563 gc and clean vpc
- 7a0e28b9 Remove the VPC while removing the default subnet
- 99217cec feature: support custom vpc
- 9d821bce chore: refactor log
- 240cd800 feat: iface support regexp
- 94b6b1b5 feat: support disable interconnection for specific subnet
- 652190c3 modify review problems
- 7285581a docs: v1.5.1 changelog
- 47f0acbb perf: accelerate ic and ex gw update
- bafac87e fix: missing version date
- 8ef12007 fix: check multicast and loopback subnet
- 3b20abb0 monitor: refactor grafana dashboard
- f9cbaea5 docs: do not allow install to namespace other than kube-system
- 559e2cd8 update review problems for ovn_monitor
- 1c356a36 monitor: add more dashboard
- aa7b20d7 chore: add vendor
- 97d64f93 Updated Dockerfile.dpdk1911 to use Centos8 and DPDK19.11.4
- b4aa989d fix: CodeQL scan warning
- a27e1760 fix: ipt wrong order and add cluster route
- 9eb96dd7 opt: only allow specifies default subnet
- 0da634e8 chore: reduce image size
- 93bf5423 feature: Support for namespace binding multiple subnets
- e37159c2 docs: fix multi nic subnet options
- c35a159b docs: add pinger/controller/cni metrics
- 7f5b4237 fix: add default ssl var for compatibility
- 59b70696 Add monitor doc
- bb130cac fix: ipv6 network format when update subnet
- dc62d105 fix: ipv6 len mismatch
- 6088851d chore: add version info
- 88001376 metrics: add ovs client latency metrics
- 3cafd5f8 Add OVN/OVS Monitor
- 89567776 docs: performance test method
- 0c975e34 fix: wrong port porto for udp
- f3759b78 docs: add descriptions of local files
- b46acd6c ci: add github code scan
- 2444d51a fix: do not adv join cidr when enable ovn-ic
- 292bf4ca perf: remove default acl rules
- 20e82c39 prepare for next release
- 9324491c fix: use internal IP when node connect pod
- c1870c1a ci: change to docker buildx action
- a1976650 fix: delete pod when marked with deletionTimestamp
- c3c4f1c5 fix: remove not alive pod in pg
- Emma Kenny
- Mengxin Liu
- MengxinLiu
- Wan Junjie
- emmakenny
- feixiang
- fossabot
- hzma
- luoyunhe1
- wiwen
- xieyanker
- 范日明
- 498d74d7 release for 1.5.2
- 271c07bd fix: nat rules can be modified
- 21a5edbd fix: add resources limits to avoid eviction
- 762f1c21 ci: specify ubuntu version to make github action happy
- bd4019dd fix: remove svc cidr routes
- 93a89753 Fix the problem of confusion between old and new versions of crd
- 031f5436 Fix external-address config description
- 3371ce4c fix: ovn-central check if it exits in NODE_IPS
- cf4c4127 fix: check ipv6 requirement before start
- 186d90cd feat: add ovs/ovn log rotation
- b5dfc1c6 diagnose: add ovs-vsctl show to diagnose results
- 37cbb713 add node ping total count metric
- 6ed020c2 fix: tolerate all taints
- 1a4f48a0 chore: update go version to 1.15
- e0fc3331 fix: masq other nodes to local pod to avoid nodrport triangle traffic
- f6ff2780 Update install.sh to allow dpdk limits configuration (#546)
- 96636386 prepare for 1.5.2
- 06d8b374 fix: cleanup script error
- 5ddf72b2 security: remove sqlite to mute cve warning
- 1fe42677 chore: refactor log
- 0f1b74dc fix: nat traffic that from host to svc
- 24b97cb0 feat: iface support regexp
- Mengxin Liu
- emmakenny
- hzma
- xieyanker
- bf860e26 release 1.5.1
- cf96d6db opt: only allow specifies default subnet
- 99e393ec feature: Support for namespace binding multiple subnets
- fa4006c0 perf: accelerate ic and ex gw update
- c327535a fix: check multicast and loopback subnet
- d74e2078 fix: CodeQL scan warning
- df8530a3 fix: ipt wrong order and add cluster route
- 33afdd18 fix: add default ssl var for compatibility
- f14155e4 fix: broken rpm link
- a99ecbee fix: ipv6 network format when update subnet
- 5fbb92b0 fix: ipv6 len mismatch
- bbda6a80 fix: wrong port porto for udp
- 42b7aa12 fix: do not adv join cidr when enable ovn-ic
- 34952c80 perf: remove default acl rules
- 2ad71107 fix: use internal IP when node connect pod
- c42d42f1 ci: change to docker buildx action
- ba401065 fix: delete pod when marked with deletionTimestamp
- f8a4e656 fix: remove not alive pod in pg
- Mengxin Liu
- 范日明
- c0a34b84 release: prepare for release 1.5.0
- 95548457 perf: use podLister to optimize k8s calls
- 6635f930 chore: enable ssl to default ci tests
- 5f29fc30 security: change ovsdb file access to 600
- 0e0a6887 docs: improve hw-offload
- a1a215dc feat: support db ssl communication
- e7a88c11 diagnose: show nb/sb/node info
- 090624fd fix: pinger diagnose should use cmd args
- fae393e3 fix: ipv6 get portmap failed again
- b74189fe fix: ipv6 get portmap failed
- f1c2f995 fix: delay mv cni conf to when cniserver is ready
- 98bb7510 chore: update kind and kube-ovn-cni updateStrategy
- 64640421 monitor: add cni grafana dashboard
- 38adc18f monitor: add more kube-ovn-cni metrics
- 36e9091d feat: update pinger dashboard
- ab736d8f fix: issues with vlan underlay gateway
- 2e5f0ecb feat: set more metadata to interface external_ids
- 77c4a5f2 feat: grace stop ovn-controller
- ebfc1530 refactor: fix bridge-mappings and refactor vlan code
- 729ed3c7 fix: allow mirror config update
- 84bb3c83 fix: cleanup v6 iptables and ipset
- da493717 docs: add gateway docs and optimize others
- ece4219f feat: integrate ovn sfc
- 2b2e7a9a feat: support pod snat
- 7a60b569 prepare for next release
- e9933619 fix: ovn-ic-db restart failed
- 115c1266 fix: stop ovn-ic when disabled
- e9861444 fix: use nodeName as chassis hostname
- Mengxin Liu
- 0f973a5a prepare for 1.4 release
- 78ab9b1e fix: do not gc learned routes
- 3ddb9614 chore: add psp
- f847e5be perf: apply udp improvement
- a8f0d228 chore: sync pre-1.16 install.sh
- 0918e9a2 ci: use go 1.15
- f43a1027 fix: add prob timeout to wait script finish
- c5ca0b1b resolve review problem
- 28d5a8aa chore: suppress verbose logs
- df54b0d1 fix: do not gc ic logical_switch
- b9ab4d66 fix: only gc VIF type logical_switch_port
- 731fef99 docs: update docs
- e9ae40a9 chore: add back lflow reduction optimization
- 022c7903 chore: update ovs to 2.14.0
- 8e93c054 fix: remove duplicated gcLogicalSwitch
- c3b7457a fix: modify src-ip route priority
- e0096f9b fix: missing session lb to logical switch
- 6fbcc198 feat: ovn-ic integration
- 0ea62c16 fix:resolve gosec check problem
- b2d0393b feat: do not perform masq on external traffic
- 4e1ad126 chore: fix patch failure
- a7c460a4 fix: subnet acl might conflict if allowSubnets and subnet cidr cover each other
- 0dd85e46 feat: acl log drop packets
- 6d048632 chore: remove juju log dependency
- 9535c26b feat: gw switch from overlay to underlay
- 4b095580 chore: prepare for 1.4 release
- c9d07e1d fix: prevent update failed logs
- a98ec5bd fix: ko use external-ids to find related nic
- 1cad39ce fix: forward accept rules
- Mengxin Liu
- hzma
- 45d30713 chore: add build date
- c9953234 release: update 1.3.0 docs
- 34627a66 fix: call appendMssRule function to resolved mss according problem
- bb961ae5 dpdk: add kmod, pdump and proc-info tools
- cf47ee1b fix: ci image tags
- 46768179 chore: optimize dpdk build
- 5c107687 docs: add hw-offload docs and resolve some issues
- e64c6132 fix: if sriov device, do not delete the host nic
- f55c3fba fix: use keymutex to serialize pod add/delete operation
- d438574d feat: assign a pod as the gw
- 1806a572 ci: add arm build to normal ci process
- 5aed1ef1 ci: add unfixed cve
- 19201a36 ci: arm64 build accelerate
- 63fbc008 chore: add logs to sriov interface
- 82140c93 ci: add ipv6 install e2e
- c3814c72 feat: recycle lsp at runtime
- 3f9d7c92 fix: qos error
- e460541d fix: variable error
- de9493f2 ci: modify cache usage
- 1994e5c3 ci: save ci time
- 5c4d5a3c chore: use j2 to render different kind.yaml
- d1a184ef fix: set qlen for ovn0
- a2d969e8 prepare for 1.3 release
- 3a018a86 chore: update build.sh
- be7c68f2 fix: log error
- 31723f66 chore: check ovn-sb connectivity from ovn-ovs probe
- d017f1f2 fix: available ips calculation issues
- 309c8080 perf: add hw offload
- 4b8faede docs: add gateway qos doc
- 32a9af2b ci: remove master taint
- 3865220d chore: update cni dependencies
- 8e032392 feat: session service
- 34b7cba7 Revert "perf: use policy-route to replace src-ip route"
- 1d13d5c3 Revert "fix: ipv6 policy route"
- 65813640 Revert "fix: reset address_set when delete subnet"
- e6817a65 fix: reset address_set when delete subnet
- dbc968ca test: statefulset without ippool
- 9440a11f match apps/* statefulset
- ca122027 fix: ipv6 policy route
- 54acd0c3 feat: support gw qos
- b8f03248 perf: use policy-route to replace src-ip route
- 83dc420e Solve the problem of non-standard statefulset creation mode
- 32e6d572 fix: arm64 build missing env
- c93f0d84 action: use commit as image tag
- 732b240c Add libatomic to docker image
- 9d5294bb chore: save disk space when building
- 4b1f5244 chore: change crd form v1beta1 to v1
- e6fb0fcb kubectl-ko: add ovs-tracing info
- 61aa3ba2 pinger: add metrics to resolve external address
- ef0f3b27 chore: update ovn to 20.06
- 961f5f1a update changelog
- 85f2e0e0 fix some version in docs
- f989bdd8 fix: rename variable
- 990bf983 fix: minor fix
- 8d7045b3 feat: use never used address first to reduce conflict
- db2516c2 ci: use tmpfs to accelerate e2e
- 79272376 fix: create/delete order might lead ip conflict
- b27d7545 ci: do not push image when pr
- a1f53e67 clean up all white noise
- a4f40370 security: update yum repo
- 270c825c fix node's annottaions overwrited incorrectly
- 5adc5a44 Fix typo in multi-nic.md
- 3ac92a15 Userspace-CNI updates in dpdk.md
- 76e72b7e Remove empty lines from DPDK Dockerfile
- 9b5c018a security: update loopback to fix CVE
- bd1f2acf Make OVS-DPDK start script more robust
- 3bfc39f8 Reduce DPDK image size
- 4917afe9 fix: add back privilege for ipv6
- 8121afd6 Config support for OVS-DPDK
- ad30e687 security: add trivy scan and fix image CVEs
- 06256a09 docs: modify arm build
- 9d2e64a4 docs: update development
- bd975768 refactor: use ovs.Exec replace raw command
- 32024ba8 chore: add gosec to audit code security
- 1db9046d prepare for next release
- aa72ba6c fix: arm build
- 628f5c5e fix: change version in install.sh
- Gary
- Haocheng Liu
- Mengxin Liu
- MengxinLiu
- Patryk Strusiewicz-Surmacki
- Xiang Dai
- ckji
- laik
- linruichao
- 755f57bc release 1.2.1
- 88b847ca fix: create/delete order might lead ip conflict
- 0656f63c fix node's annottaions overwrited incorrectly
- 86e20a09 security: update loopback to fix CVE
- b1ea8a36 fix: add back privilege for ipv6
- 2a877530 fix: arm build
- 8ec2c159 fix: change version in install.sh
- Mengxin Liu
- MengxinLiu
- ckji
- 280a1bd3 chore: prepare for release 1.2
- 4342187d chore: prepare for release 1.2
- 4a52bb43 DPDK doc update and small image reduction
- b055cc68 Add OVS-DPDK support, for issue 104
- f7fdd2dc fix: pod get deleted between configure nb and patch pod
- e13dc5ac fix: native vlan and delete subnet issues
- 44b5a6a7 fix: trigger github action when dist dir change
- 3a2ee051 fix: update ovn patch
- 6e1589cc chore: improve log
- 00f98489 fix: gc lsp for pod that not alive
- 701e9efd feat: support underlay without vlan encap
- 83ad499f chore: optimize kube-ovn-cni log
- 84b6cdcf fix: gc node lsp
- 7aafd944 chore: remove vagrant
- 92ccf729 fix: dst route policy might be empty
- 6c89a046 feat: in vlan mode if physical gateway exists, no need to create a virtual one
- 1d5c6958 perf: add amd64 compile flags back
- b0f0947d fix: init ipam before gc, other wise routes will be deleted
- dbc23c5e fix: patch ovn to lower src-ip route priority to work with ovn-ic
- 5a763820 fix: return early if allocation is not ready
- b03c3768 chore: remove networks crd
- 2853438c perf: remove more stale lflow
- 0665f2e8 ci: run ut and e2e in github action
- e71b68c0 fix: check svc and endpoint protocol
- 508eb7a2 perf: reduce lflow count
- 5f8b9b40 fix: when podName or namespace contains dot, lsp cannot be deleted correctly
- 27c72560 fix: wrong subnet status
- f0b17a69 feat: change pod route when update gateway type
- 13283daf feat: refactor subnet and allow cidr change
- 23821d6c fix: use kubectl to avoid tls handshake error
- e647cc6c chore: reduce logs
- aef4336d feat: only show error log of kube-ovn-controller
- a9ab0bc2 fix: map concurrent panic
- 2dd13b23 fix: ipv6 related issues
- 86c443e7 fix: validate if subnet cidr conflicts with svc ip
- eb4cb1b3 fix: validate if node address conflict with subnet cidr
- 7f595ee0 feat: github action
- 1046b572 fix: wait node annotations ready before handle pods
- 7a0151cc fix: check ovn-nbctl socket in new dir
- 0dc76768 fix: error log found in scale test
- 04715943 fix: concurrent panic
- da14eaeb feat: use bgp to announce pod ip
- 909b5a00 release 1.1.1
- ab834b5a fix: labels might be nil
- 0c0824db fix: ping output format
- ce27fb31 monitor: make graph more sensitive to changes
- 9b05fccf docs: update vlan docs
- d0544d89 docs: update docs
- 28aef840 feat: improve install/uninstall
- 8d853656 refactor: refactor cni-server
- d99ffff0 refactor: controller refactor
- 8f1f0135 feat: modify install.sh for vlan type network
- cfe9d276 feat(vlan): vlan network type
- edd0ea81 feat(vlan): vlan network type
- c63accf4 fix: yaml indent and ovn central dir
- 5bc84d7b docs: chinese wechat info
- feaec4dd fix: fork go-ping and apply patches
- 58f73b33 chore: update kind node to 1.18 and ginkgo
- d274a979 docs: add arm build steps
- d061fc3c fix: mount etc/origin/ovn to ovs-ovn
- f8d6fd5c add support for multi-arch build
- 953f5be7 docs: change the cidr to avoid misunderstanding
- 5c5b9e08 feat: diagnose check if dns/kubernetes svc exist
- 7c6d6784 OVS local interface table mac_in_use row is lower case, but pod annotation store mac in Upper case.
- b53a2153 prepare for 1.2
- 0d60df32 fix: separate log for no address and wrong address
- a4106b2d docs: format docs
- Gary
- Mengxin Liu
- MengxinLiu
- Yan Zhu
- fangtian
- linruichao
- 08f39db7 release 1.1.1
- 95d479f5 fix: labels might be nil
- eb9c9fd6 monitor: make graph more sensitive to changes
- 7e9b3661 fix: ping output format
- ae53bf57 fix: yaml indent and ovn central dir
- 82128d2f fix: fork go-ping and apply patches
- 14247939 fix: mount etc/origin/ovn to ovs-ovn
- 83f3a920 fix: use legacy iptables
- MengxinLiu
- de9b003d release 1.1.0
- 4511a16b feat: use buildx to reduce image size
- 370689e7 test: check host route when add/del a subnet
- 0df863b6 [DO NOT REVIEW] vendor update: introduce klogr and do some tidy
- eeba4c01 [webhook] init logger for controller-runtime
- ae187152 test: add node test
- e1038d22 fix: acl and qos issues
- a4c81ba7 feat: expose iface in install.sh
- b6967f57 fix: remove auto checksums
- dbc85075 perf: offload udp checksum if possible
- bdb23691 release v1.0.1
- cdf4de3f perf: add x86 optimization CFLAGS
- 131181c2 chore: add scripts to build ovs
- 2b5dd72b fix: lost route when subnet add and is not ready
- 9032ac84 fix: ip prefix might be empty
- d1654e15 chore: reduce image size
- 464e991e chore: modify nodeSelector label to support k8s 1.17
- 2814a1d5 fix: use ovn-appctl to do recompute
- 0eaedd99 docs: multi nic
- dd1923c3 feat: ip cr support multi-nic
- b2ce6f08 fix: update in svc 1.1.1.1 may del svc 1.1.1.10
- 20bb7a78 feat: add cni side logical to support ipam for multi-nic
- 1319eb5d feat: add basic allocation function for multus-cni
- 8f6997a9 fix: only delete pod that restart policy is Always
- 3a2de9cd perf: only enqueue updatePod when needed
- 0f7b9d4c fix: add iptables to accept container traffic
- bdd021c0 feat: check kube-proxy and coredns in diagnose
- 502f18cf feat: add label param in install script
- 5a1cf371 perf: recycle ip and lsp for pod that in failed or succeeded phase
- d1968584 fix: add inactivity_probe back
- 417a001b feat: check if crds exist in diagnose
- e65a9d09 fix: gc static routes
- 91829d24 fix: still delete lsp if pod not in ipam
- 7d22430d fix: delete chassis from sb when delete node
- 5f5df34e fix: missing label selector
- 9822dba9 feat: add one script installer
- 479437a3 fix: cleanup in offline environment
- e707eb96 feat: diagnose check ds/deployment status
- 3c786f57 refactor: the ipam now has lock itself no need for ippool queue
- 9211486b fix: if pod is evicted, recycle address
- 2546deaf fix: use uuid to fetch vip
- 51f06bd6 refactor ipam
- 2336dc75 release 1.0.0
- 7d918f56 refactor pod controller
- 866db995 merge images into one
- 8296a9e7 fix:enablebash alias option in Dockerfile CMD scripts
- 68d87ec2 webhook: use global variables to avoid repeated map constructing
- cf2784ad remove useless fields in webhook.yaml
- 657b5a29 remove leader-election for webhook manager
- 2bcf0d28 feat: update to 20.03.0 ovn
- Bruce Ma
- MengxinLiu
- Your Name
- 706cdfc3 release v1.0.1
- a51a672a fix: lost route when subnet add and is not ready
- 576cf776 fix: ip prefix might be empty
- 0e1670bf fix: update in svc 1.1.1.1 may del svc 1.1.1.10
- 63f05e5a fix: add inactivity_probe back
- bad0c43f fix: use uuid to fetch vip
- MengxinLiu
- f40ce553 release 1.0.0
- 28238794 prepare for 1.0
- a036b37b fix: add back missing lsp gc
- 44d53c24 fix: delete lb if it has no backend
- b8498a83 metrics: expose cni operation metrics
- a75f9991 refactor: refactor server.go
- c88221ee fix: disable ovn-nb inactivity_probe
- 957654f9 fix: wait for container network ready before cni return
- 870d20b0 refactor: refactor controller.go
- 2885419d ovn: pick upstream performance patch
- 11598739 docs: add the development guide and fix the lint
- 0be25516 docs: add companies using kube-ovn section
- d56552b8 docs: add community information
- 8edd0225 fix: alleviate ping lost
- 632bbc5e refactor: refactor ovn-nbctl.go
- 8aafa415 docs: modify the readme
- 60ce7659 fix: pinger percentage error
- 276a28cf fix: add kube-ovn types to default scheme
- 998a9e63 refactor: cniserver
- a5d339b2 docs: update docs
- dc92afa3 fix: add a periodically recompute to ovn-controller to avoid inconsistency
- 8488ae2a fix: add timeout to pinger access ovs/ovn
- ff1ff145 fix: when subnet cidr conflict requeue the subnet
- e31a08ec fix: add runGateway to wait.Until
- 18239073 fix: restart nbctl-daemon if not response
- 839308e0 feat: display controller log in kubectl-ko diagnose
- 8e6c3d62 refactor: separate normal check and ovn specific check
- c9783181 fix: do not return not found err
- f19e5596 fix: move components to kube-system ns and add priorityClass
- a5d298db feat: cniserver check allocated annotation before configure pod network
- 8f72b7eb fix: set ovn-openflow-probe-interval
- 3838a46d pinger: add port binds check between local ovs and ovn-sb
- f8248cec fix: if cidr block not ends with zero, reformat it
- dff1d648 fix: resync iptables
- 40fab55f update version
- 920053c5 pinger: add timeout for dns resolve
- 513d2bd9 e2e: add basic framework and tests for e2e
- Bruce Ma
- Mengxin Liu
- MengxinLiu
- withlin
- c5f49f24 release 0.10.2
- 61b7dded fix: add a periodically recompute to ovn-controller to avoid inconsistency
- 9de9d0b5 fix: when subnet cidr conflict requeue the subnet
- dca15914 fix: add runGateway to wait.Until
- f16209b4 fix: restart nbctl-daemon if not response
- Mengxin Liu
- 09e27cea release: v0.10.1
- fafa5607 fix: do not return not found err
- 858d3331 fix: set ovn-openflow-probe-interval
- 641d6f86 pinger: add port binds check between local ovs and ovn-sb
- 8435a335 fix: if cidr block not ends with zero, reformat it
- 1f5df246 fix: resync iptables
- Mengxin Liu
- 9747d540 docs: update changelog
- adf5071e fix: address in ep might be empty
- 182bb151 fix: cniserver wait ovs ready
- 518c0a78 fix: wrong deletion in gc lb and portgroup
- 2492a166 ovn: add memory patch to slow down memory increase
- d0bd71fd fix: wait default and node logical switch ready
- 23cad463 fix: podSelector in networkpolicy should only consider pods in the same ns
- ca5539f0 fix: do not add unallocated pod to port-group
- d5ed1ee7 release 0.10.0
- 3c62ea29 ovn: pick up commit from upstream
- 4c966c37 feat: pinger support check an address out of cluster.
- f0096078 chore: double quote shell variables
- 83364b52 fix: cluster mode db will generate lots listen error log
- d9e1cd1c fix: gc logical_switch_port form listing pods and nodes
- a5dc8bb9 fix: some init and cleanup bugs
- a5eb5e7f fix: ovn-cluster mode
- a6f0dd14 feat: exclude_ips can be changed dynamically
- d9c59434 update ovn to 2.12.0-1
- 06eceb3b feat: use label to select leader to avoid pod status misleading
- aa53c7dd fix: ip conflict when use ippool
- 59044330 docs: add v0.9.1 changelog
- 5efbea9f fix: block subnet deletion when there any ip in use
- a1dc8c11 plugin: kubectl plugin now expose ovs-vsctl to each node
- d3c6a71c fix: nbctl need timeout to avoid hang infinitely
- 77e58903 perf: as lr-route-add with --may-exist will replace exist route, no need for another delete
- d4a51bdc perf: when controller restart skip pod already create lsp
- 7617fa79 fix: when delete node recycle related ip/route resource
- f4e87476 fix typo in start-ovs.sh
- 9b88e084 perf: skip evicted pod when enqueueAddPod and enqueueUpdatePod
- e4818624 fix: use ep.subset.port.name to infer target port number
- 0d8ae20c fix: if no available address delete pod might failed related to #155
- bbd4257d kind: support reload kube-ovn component in kind cluster
- d0479e90 perf: filter pod in informer list-watch and disable resync
- 61a7a7b9 fix: index out of range err when create lsp
- 623661ef prepare for next release
- 1643c7f0 kind: support to install kube-ovn in kind
- 9611599f fix: mount /var/run/netns that kind will use it to store network ns files
- Mengxin Liu
- qsyqian
- 5d4714c1 release v0.9.1
- 847ef8b0 fix: block subnet deletion when there any ip in use
- e0fbfea6 fix: nbctl need timeout to avoid hang infinitely
- dd63c5a4 fix: when delete node recycle related ip/route resource
- 4d0ad6c7 fix typo in start-ovs.sh
- 646a177c fix: use ep.subset.port.name to infer target port number
- 9ae58a81 fix image tag
- 3b793d4a fix: mount /var/run/netns that kind will use it to store network ns files
- 093770dd fix: index out of range err when create lsp
- Mengxin Liu
- qsyqian
- 53db261a release: v0.9.0
- 1984cbe8 feat: when use nodelocaldns do not nat the address
- 446999f4 docs: add description about relation of cidr and static ip allocation
- 6f1854f9 Check the short name of kubernetes services which is independant of the cluster domain name.
- c6f8efeb fix: some grafana modification
- 40144160 fix: add missing cap
- 7c464d69 chore: update ovn and other minor fix
- ac537152 fix re-annotate namespaces when subnet deleted
- fe2f2612 fix: add ingress_policing_burst to accurate limit ingress bandwidth
- 20b2c83d fix: network unreachable when add egress qos for pod
- 758dbc1c fix: err when add egress qos
- bdfd351d fix: remove privilege=true from long run container
- 0859da1f perf: optimize pod add
- 3718851d fix: add keepalive to ovn-controller
- 6ad98106 feat: add controller metrics
- b87ed0ee If pod have not a status.PodIP skip add/del static route
- b9108fba fix: ippool pod static route might lost during leader election
- a2e24de6 fix: static route might lost during leader election
- 8202a188 feat: add grafana config and modify metrics.
- cae0ef27 fix: only keep the last iface-id
- f3528f23 fix: add missing gc
- 3791ba29 fix: gc resource when start controller
- f970615b fix: watch will break if timeout is set
- ef285b21 feat: pinger add apiserver check metrics
- d33685e6 fix: avoid conflict when init
- Mengxin Liu
- QIANSHUANGYANG [钱双洋]
- Sébastien BERNARD
- Yan Zhu
- 6b57f61b release v0.8.0
- 6ed722f9 fix: loss might be negative number
- 7c0517b5 feat: pinger prometheus support
- e23bd552 feat: support pinger
- d837aa12 chore: update ovs/ovn
- 4246cb74 feat: gateway ha
- e27c9e54 chore: remove ovs-ipsec and update go to 1.13
- ba3084eb feat: add kubectl plugin
- 54a465d1 docs: add comparison
- 38be68d6 fix: pod should be accessed from node when acl applied
- e62f0ab0 enable portmap by default to support hostport
- 80de8e58 feat: add port security to pod port
- 4849f056 feat: add node switch allocated ip cr
- 34e8406e prepare for next release
- Mengxin Liu
- MengxinLiu
- Yan Zhu
- 933fd8d2 release: bump v0.7.0
- 7e2bdf52 fix: add default excludeIps and check kern version
- 31544abb fix: deal with ipv6 connection str
- 0f8f2aad fix missing condition when subnet is private
- d37da1bc add subnet status
- 4a5c5498 fix: acl related issues
- 62a395e6 Revert "add subnet status field"
- b8f1d9ef add missing subnets/status operation permission
- 6c119ad1 Update cleanup.sh
- b08ece4f feat: add exclude_ips annotation to namespace
- a2774ed0 fix: use pg-del to remove pg and acl, check if ports is empty before set pg
- 422c6dc0 add subnet status
- fde683ea feat: add subnet annotation to ns and automatically unbind ns from subnet.
- 948e1306 docs: add cn docs link
- 5278e105 feat: add default values to subnet
- ea451a1a write back subnet name to ip label
- 1c7121db chore: enable mirror in yaml and modify docs
- db9783a3 fix: duplicate import in network_policy.go
- 8a57747e fix: improve cni-conf name priority
- 5f1436be fix: wait subnet ready before start worker.
- 661387ef fix: check ls exists before handle it
- 9e05f533 docs: add more installation tools.
- dccb93c7 docs: add support os and notes.
- c6a160b3 Update subnet.md
- 31ad00bd feat: add ip info to ip crd
- ad7b5c2f feat: update logo
- 44c3077c feat: add logo
- 55d7fd6f feat: reserve vport for statefulset pod
- 7a3c8a6a docs: add crd installation
- aa016c1b fix: modify default header length
- 85b40690 fix: do not create exist logical switch
- 36294366 chore: prepare for next release
- MengxinLiu
- Yan Zhu
- ftiannew
- halfcrazy
- shuangyang.qian
- 463d6253 docs: add crd/ipv6 docs and bump version 0.6.0
- 103c23af fix build error
- 9d173ba0 feat: support ipv6-only mode
- 05566017 add webhook docs
- 766cec9b add admission webhook for static ip
- 2abeacb4 docs: add support platform version
- ed7264ea feat: use subnet crd to manage logical switch
- 1e5c9f6c Use k8s hostname, fix #60
- 87367295 fix: remove dependency on cluster-admin
- e0864a03 chore: use go mod to replace dep
- 96ec620d docs: update mirror feature to readme
- 855d834f feat: support traffic mirror
- d1c3ea85 prepare for next release
- MengxinLiu
- Yan Zhu
- 782e04be chore: bump v0.5.0
- a27f8339 fix: wrong mtu
- 44707167 feat: support user define iface and mtu
- f8d8e186 fix: remove mask field from ip annotation
- 55090404 feat: auto assign gw for controller config and expose more cmd args
- 48da0fe1 feat: add pprof and use it as probe
- 8984c90b feat: set kernel args when start cniserver
- 208a1dfc feat: support network policy
- c8d208fb prepare for next release
- MengxinLiu
- 5a2cb093 bump version to v0.4.1
- f8e8b001 fix: manual static ip allocation and automatic allocation should use different ip validation
- 031924d1 Fix json: cannot unmarshal string into Go value of type request.PodResponse kubeovn#33
- 24259dbf fix: use ovsdb-client to get leader info
- 3541b6cf fix: use default-gw as default-exclude-ips and expose args to docs
- 69c48538 to cleanup all created resources, not only kube-ovn namespace.
- 9361bb43 prepare for next release
- MengxinLiu
- Yan Zhu
- fanbin
- 509bf4a4 feat: bump version to 0.4.0
- 2e414519 feat: support expose pod ip to external network
- 8992bbe3 fix: check conflict subnet cidr
- 0f9d1e4b fix: start informer when controller is leader
- 71c15d65 feat: validate namespace/pod annotations
- 89491b57 fix: wait node-gw info ready
- 0d86393d fix: use ovn/ovs-ctl to health check
- 278ccfe5 feat: remove finalizer dependency improve svc performance
- 8f962673 fix: reuse node ip and mac annotation
- b8f85143 Add ha for ovn dbs and simplify makefile
- 3c617451 feat: merge ovn-nbctl request
- b5ac7da4 feat: separate ip pool pod and add parallelism to workers
- ce105dff Mute logrus log for ipset Dont need to change the vendored code.
- 657470c8 Fix klog cant use V module The side affect of this commit is glog's V module not work.
- 5429f51b feat: use ovn macam to allocate mac for static ip pod
- 5a8958cd feat: update ovn to 2.11.1
- ca036f9e Add vagrantfile
- 660c0570 fix: use tag version yaml url
- bc66671c chore: fix go-report golint issues
- 12a4bec9 ha for kube-ovn-controller
- b7d0f599 cleanup unused code
- 756831d7 docs: add network topology
- c0559487 chore: Minor updates to gateway.md
- 21e34e9f chore: Gateway documentation touch-ups
- aa0b2b7c chore: QoS documentation touch-ups
- 3ec0098a chore: Subnet Isolation documentation touch-ups
- 524845e9 chore: Static IP documentation touch-up
- b510016c chore: Subnet documentation touch-ups
- 524f7d3f chore: Installation Guide touch-ups
- a1995d03 chore: README touch-up.
- Kai Chen
- MengxinLiu
- Yan Zhu
- 79c0642e docs: bump version
- cb2f50da fix: acl rule error
- 1a6f492a fix: init node gw before run controller
- 75c514a1 fix: external dns issues
- 13068892 feat: use daemon ovn-nbctl to improve performance and cleanup unused dns code
- 24cda418 Implement centralized gateway.
- 890934f4 chore: migrate from bitbucket to github
- MengxinLiu
- Yan Zhu
- adf655cb remove dns from ls and bump new version
- ca21c6cb make filter table forward chain default accept
- cd0ddf10 ipset exclude cluster service ip range
- 1d753c8e fix: lb bugs
- cb91d984 read cidr from ns annotation
- e9998332 fix: remove dns table from nodeswitch and remove unused other_config:namespace
- 049cab2c fix pod has no ip
- 170c3c63 Distributed gateway implement
- cebb8dfd fix: clean lost interface.
- 4367ba07 feat: support subnet isolation
- 1fe8c916 feat: support dynamic qos
- e04bc093 fix: ovn restart issues
- 014f1dcf fix: ovn restart issues
- 3e78ddc3 fix: validate namespace switch annotations
- 44eafc50 fix lint && add docker build
- cb3e01a4 feat: update yaml, add readiness/liveness probe, add pass shell args
- 004deefd feat: support qos
- d37264e4 feat: add simple gateway implementation
- Mengxin Liu
- MengxinLiu
- Yan Zhu