Skip to content

Latest commit

 

History

History
3023 lines (2754 loc) · 308 KB

CHANGELOG.md

File metadata and controls

3023 lines (2754 loc) · 308 KB

Changelog

v1.10.7 (2022-11-11)

  • 6c2ff6ab set release for 1.10.7
  • 0b47ca3d fix: Add support for Mellanox NIC (#1999)
  • b2cd4df1 fix pinger namespace error (#2034)
  • 7e2c3be7 increase action timeout
  • 51dbde5e prepare release for 1.10.7
  • 2cab58da fix: gateway route should stay still when node is pingable (#2011)
  • f2bdb8ea iptables: avoid duplicate logging (#2028)
  • d895b766 update np name with character prefix (#2024)
  • 3267b0f5 bump kind and node image versions (#2023)
  • 5db54e30 fix ovn nb/sb health check (#2019)
  • 0633625b fix ovs fdb for the local bridge port (#2014)
  • cf1ffcb2 do not need to delete pg when update networkpolicy (#1959)
  • 381882c2 ci: upgrade deprecated actions (#2004)
  • 071bebc6 fix: make ip deletion the same as creation (#2002)
  • 1bf5fa96 fix: delete fiprule failed at first time (#1998)
  • 9e51caaa add check of write to ovn sb db for ovn-controller (#1989)
  • ce6536a4 fix grep matching device in routes (#1986)
  • 14566316 delete pod after TerminationGracePeriodSeconds (#1984)
  • 20ed648d ovs: fix waiting flows in underlay networking (#1983)
  • 8c9232ce feature: support default vpc use nat gw pod as cust vpc (#1979)
  • e7f3fb56 ovn db: recover automatically on startup if db corruption is detected (#1980)
  • e430042f fix: modify src route priority (#1973)
  • a62e0740 fix CVE-2022-32149
  • d433f257 avoid concurrent subnet status update (#1976)
  • 9e249b34 upgrade ovs-ovn pod by generation version instead of chart version (#1960)
  • 916ae918 fix metrics name (#1977)
  • f56bb0b0 add vm pod to ipam by ip when initIPAM (#1974)
  • ffa04989 validate nbctl socket path in start-controller.sh
  • 21b4b3f8 skip CVE-2022-3358 (#1972)
  • 3f836950 use latest base image
  • 2a1074e4 fix: add default deny acl (#1935)
  • aa716033 ovs: fix mac learning in environments with hairpin enabled (#1943)
  • 77c27d4b Fix registry for ovn-central container in install.sh (#1951)
  • 1f1e3c28 ovs: add fdb update logging (#1941)
  • eeaf796d add chart version check when upgrade ovs-ovn pod
  • b0907efc fix underlay e2e testing (#1929)
  • 4a80a485 set leader flag when get leader
  • 5ef11cb4 set ovsdb-server vlog level to avoid warnings caused by ovs-vsctl (#1937)
  • 122041c1 fix: pod mistaken ls label (#1925)
  • 8996131a ignore pod without lsp when add pod to port-group
  • ee1c306a add network partition check in ovn probes
  • efa8f60d update ns annotation when subnet cidr changed (#1921)
  • 3e00aa54 fix CVE-2022-27664
  • 98f7bc08 fix EIP/SNAT on dynamic Pod annotation (#1918)
  • bcaf1e7c fix: eip and nat crd can delete even if nat gw pod deleted and ipatab… (#1917)
  • 95ebe009 fix: failed to add eip (#1898)
  • 5e06b367 ci: increase golangci-lint timeout (#1894)
  • 72a26074 fix: gatewaynode might be null (#1896)
  • 5f5e85f6 fix: api rollback
  • 63eb2551 fix: diskfull may lead to wrong raft status for ovs db (#1635)
  • 2bc4f03e kubectl-ko: turn off pipefail for ovn leader check (#1891)
  • ec0f1e4f update dpdk base image
  • 503807e3 kubectl-ko: fix trace for KubeVirt VM (#1802)
  • f961605a fix duplicate logs for leader election (#1886)
  • 88473e63 fix setting ether dst addr for dnat (#1881)
  • 704c179e refactor iptables rules (#1868)
  • 7f399adf cni should handler unmont volume, when delete pod. (#1873)
  • 3e54d9dd delete and recreate netem qos when update process (#1872)
  • e52d3476 feat: check configuration (#1832)
  • e92c85fa fix: nat gw pod should set default gw to net1 so that to access public (#1864)

Contributors

  • Kaihang Zhang
  • Mengxin Liu
  • Noah
  • bobz965
  • hzma
  • jeffy
  • long.wang
  • lut777
  • runzhliu
  • shane
  • zhangzujian
  • 张祖建
  • 马洪贞

v1.10.6 (2022-08-30)

  • 0b9f0c1f set release 1.10.6
  • 1510905c feat: reduce downtime by increasing arp cache timeout
  • 2b05fd4c feat: reduce wait time by counting the flow num.
  • e5378927 fix: missing stop_ovn_daemon args
  • 709ede03 delete log severity for drop acl when update networkpolicy
  • c1e5be72 refactor: extract external routes from eip func, make it the same as … (#1671)
  • 7bcf578e prepare release for 1.10.6
  • ed237f9b ovs: fix log file descriptor leak in monitor process (#1855)
  • e16667c3 fix ovs-ovn logging (#1848)
  • a83ec475 fix: dnat port not use whole words to check (#1854)
  • e3b41023 fix ovn dhcp not work with ovs-dpdk (#1853)
  • 237e3189 update base image
  • 05b27f2d fix: add and set ENABLE_KEEP_VM_IP=true to keep vm ip (#1702)
  • a4030de5 fix: multus macvlan ipvlan use kube-ovn ipam,but ip not inited in init-ipam (#1843)
  • 80053001 fix underlay e2e (#1828)
  • 1a3a1694 fix arping error log (#1841)
  • 9447b859 ko: fix kube-proxy check (#1842)
  • 774b8d46 base: use patch from OVN upstream (#1844)
  • 17d0f5af ci: switch environment to ubuntu-20.04 (#1838)
  • 9f0d324a 修改 ovs-ovn-dpdk 容器镜像编译打包,解决容器中 ovs 运行不正常:无法添加物理网卡,无法创建 vhostuserclient port 问题 (#1831)
  • 8c533548 windows: fix ovs/ovn versions and patches (#1830)
  • d24c5131 update centralized subnet gateway ready patch operation (#1827)
  • 02a4caf1 fix duplicate log for tunnel interface decision (#1823)
  • b25f58f5 update ovs/ovn version to fix hardware offload (#1821)
  • 842d6a34 fix: use full longest word to match full ip about dnat (#1825)
  • f12fe0ea update centralize subnet gatewayNode until gw is ready (#1814)
  • b9c591f9 initialize IPAM from IP CR with empty PodType for sts Pods (#1812)
  • e57021fc kubectl-ko: fix missing env-check (#1804)
  • 4c248112 kubectl-ko: fix destination mac (#1801)
  • c21c57d1 abort kube-ovn-controller on leader change (#1797)
  • d2939e9e avoid invalid ovn-nbctl daemon socket path (#1799)
  • aa7b9c8f update vpc-nat-gateway base
  • 7674b85f fix: warning for empty chassis fixed (#1787)

Contributors

  • bobz965
  • hzma
  • long.wang
  • lut777
  • zhangzujian
  • 张祖建

v1.10.5 (2022-08-10)

  • 88531d50 set release v1.10.5
  • 97031bdd prepare for release v1.10.5
  • 4a34c5dd delete htb qos when releated annotation is deleted (#1788)
  • 66643ba3 perf: fix memory leak
  • 84aba41f perf: disable mlockall to reduce memory usage
  • 35533738 fix iptables for services with external traffic policy set to Local (#1773)
  • 32ee00b6 perf: reduce metrics labels (#1784)
  • 93e74c60 northd: remove lookup_arp_ip actions (#1780)
  • 6c7f45ef fix install error
  • 86173506 fix:can not delete pod with sriov vf (#1654)
  • dc77ceb3 dpdk-v2 ,--with-hybrid-dpdk 修改 Dockerfile.base-dpdk 解决 编译安装 ovs-dpdk 正常运行 (#1754)
  • 7a1795e6 dpdk-v2 ,--with-hybrid-dpdk qemu 创建 sock 权限问题 (#1739)
  • 0541ce98 feature: support exchange link names of OVS bridge and provider nic in underlay networks (#1736)
  • 4617d7f7 support kubernetes v1.24 (#1761)
  • 29f3d6ed use leases for leader election (#1529)
  • f02df1a8 fix iptables for service traffic when external traffic policy set to local (#1728)
  • 7f256965 set sysctl variables on cni server startup (#1758)
  • 47e39fbf fix: add omitempty to subnet spec
  • c9ac0cdf perf: replace jemalloc to reduce memory usage
  • 7ffa99e3 avoid patch interface deletion & recreation during restart (#1741)
  • 8fa4ca49 only support IPv4 snat in vpc-nat-gw when internal subnet is dual (#1747)
  • a46b36d9 enqueue subnets after vpc update (#1722)
  • 1bf5dc44 do not add subnet not processed by kube-ovn to vpc (#1735)
  • 66d8be9f dpdk-v2 ,--with-hybrid-dpdk qemu 创建 sock 权限问题 (#1739)
  • e9c27c60 fix: If pod has snat or eip, also need delete staticRoute when delete pod. (#1731)
  • 7841f082 optimize lrp create for subnet in vpc (#1712)
  • 994885c8 fix: cancel delete staticroute when it's used by NatRule (#1733)
  • f9a84588 fix: wrong info when update subnet from dual to ipv4 or ipv6. (#1726)
  • 77988f21 fix overlay MTU in vxlan/stt tunnels (#1693)

Contributors

  • Mengxin Liu
  • hzma
  • long.wang
  • xujunjie-cover
  • zhouhui-Corigine
  • 张祖建

v1.10.4 (2022-07-18)

  • 1e4a1959 set release 1.10.4
  • 0bbcb389 prepare for release 1.10.4
  • fb76c58e fix: response has no gw when create nic without default route (#1703)
  • 55b3d508 ignore ovsdb-server/compact error: not storing a duplicate snapshot
  • b6084777 Get latest vpc data from apiserver instead of cache (#1684)
  • f447a1d5 update priority range in htb qos (#1688)
  • bdfdc178 fix: clean vip eip snat dant fip in cleanup.sh (#1690)
  • 460f930c add upgrade-ovs script (#1681)

Contributors

  • Mengxin Liu
  • Wang Bo
  • bobz965
  • hzma
  • xujunjie-cover
  • zhangzujian

v1.10.3 (2022-07-13)

  • f24ed686 set release 1.10.3
  • 02d68f7f prepare for release 1.10.3
  • 2c989340 fix: change ovn-ic static route to policy (#1670)
  • 1596c9ef fix: Do not Recreate Logical_Router_Port when Vpc recreated (#1570)
  • db4f5ad0 Delete pod if subnet of the pod's owner(sts/vm) updated (#1678)
  • c41897a0 do not snat packets only for subnets with distributed gateway when external traffic policy is set to local (#1616)
  • 8190df3b security: disable pprof by default (#1672)
  • 761ddcbc bgp: consolidate service check and use service const (#1674)
  • 5cffa97d fix bgp: sync service cache (#1673)
  • 874785bf fix iptables for direct routing (#1578)
  • f3886af7 fix libovsdb (#1664)
  • 662dfa64 mount modules for auto load ip6tables moudles (#1665)
  • 1efaeb00 ignore pod not scheduled when reconcile subnet (#1666)
  • 4409f6c9 fix ovs-ovn not running on newly added nodes (#1661)
  • b5025a6a fix get security group name by external_ids (#1663)
  • 4afbaf31 add policy route when add subnet (#1655)

Contributors

  • Mengxin Liu
  • Money Liu
  • Wang Bo
  • gugu
  • hzma
  • lut777
  • wangyd1988
  • 刘睿华
  • 张祖建

v1.10.2 (2022-06-28)

  • b1a17c4a set for release 1.10.2
  • 4d229555 fix: no need routed when use v1.multus-cni.io/default-network (#1652)
  • 40391a03 prepare for release 1.10.2
  • 7c4dfe72 fix: subnet failed when create without protocol
  • 4b063242 set ether dst addr for dnat on logical switch (#1512)
  • 20222e4f CI: delete resources in order to avoid a long time waiting for subnet deletions. (#1643)
  • 35e29e16 ci: fix golangci-lint (#1639)
  • 4661b76e fix: cleanup should ignore patch failed (#1626)
  • 73a53ba7 fix no interface report to multus cni, missing in k8s.v1.cni.cncf.io/network[s]-status (#1636)
  • fe5e020e Update install.sh (#1645)
  • bd7ff533 set networkpolicy log default to false (#1633)
  • 83c9e845 update policy route when join subnet cidr changed (#1638)
  • bcf057d1 ci: update trivy options (#1637)
  • f93a5273 increase initial delay of ovs-ovn liveness probe (#1634)
  • 1a55ce12 wait ovn-central pods running before delete ovs-ovn pods (#1627)
  • f8a266d6 get dbstatus for all ovn-central pod (#1619)
  • bc838d5a delete "allow" policy route on subnet deletion (#1628)

Contributors

  • Mengxin Liu
  • ShaPoHun
  • halfcrazy
  • hzma
  • xujunjie-cover
  • zhangzujian
  • 张祖建

v1.10.1 (2022-06-19)

  • 4935fa6a monitor dns in cilium e2e (#1597)
  • 3dc29041 prepare for release 1.10.1
  • e459688e ci: build amd64 images without avx512 (#1584)
  • d7144681 update ovs health check, delete connection to ovn sb db (#1588)
  • cfbe55e0 fix: all cluster pod will be in podadd queue (#1587)
  • 08ba4215 fix pod could not be ready (#1562)
  • c453b7ac fix: delete pod panic when delete vm or statefulset. (#1565)
  • 77044e3d fix: clean CRDs introduced by new vpc-nat-gateway (#1563)
  • e35f90f1 do not gc vm pod lsp when vm still exists (#1558)
  • adabd853 do not delete static routes on controller startup (#1560)
  • 4348e58f replace ovn-nbctl daemon with libovsdb in frequent operations (#1544)
  • 4cacb4b9 fix exec cmd in vpc nat gateway (#1556)
  • 0ed681af CNI: do not return route if nic is not eth0 (#1555)
  • 96f232d4 do not nat packets for incoming traffic when service externalTrafficPolicy is Local
  • bbb8a697 exit kube-ovn-controller on stopped leading (#1536)
  • 4b0bd69e tmp cancel cilium external svc test (#1531)

Contributors

  • hzma
  • lut777
  • xujunjie-cover
  • zhangzujian
  • 刘睿华
  • 张祖建

v1.10.0 (2022-05-15)

  • 16d28f75 release 1.10.0
  • bcdb3388 use inc-engine/recompute instead of deprecated recompute (#1528)
  • 12094766 update kind to v0.13.0 (#1530)
  • 673138f2 move dumb-init from base images to kube-ovn image (#1527)
  • ad6826d9 fix installing dumb-init in arm64 image (#1525)
  • 4eebabc1 optimize ovs request in cni (#1518)
  • 7a3f73d5 optimize node port-group check (#1514)
  • b7c01d43 logic optimization (#1521)
  • 65ee71b4 fix defunct ovn-nbctl daemon (#1523)
  • ebe00370 fix arm image (#1524)
  • 354d6c3e fix: keep vm's and statefulset's ips when user specified subnet (#1520)
  • 6021e528 feature: add doc for tunning packages (#1513)
  • 8e72f2e1 add document for windows support (#1515)
  • d7ef43b3 reduce ovs-ovn restart downtime (#1516)
  • 7b8aa124 finish basic windows support (#1463)
  • ecc8268f refactor logical router routes (#1500)
  • 51603624 add netem qos when create pod (#1510)
  • 5158dd9d handle the case of error node cidr (#1509)
  • 1285b039 fix: ovs trace flow always ends with controller action (#1508)
  • 69428690 add qos e2e test (#1505)
  • f214ee20 optimize IPAM initialization (#1498)
  • 367d6b74 test: fix flaky test (#1506)
  • 79ad4fcf docs: update README.md
  • 85d09ccd synchronize yamls with installation script (#1504)
  • 63dc5219 feature: svc of multiple clusters (#1491)
  • 011eacf6 use OVS branch-2.17 (#1495)
  • afc9ef62 Update USERS.md (#1496)
  • b057404b update document for mellanox hardware offload (#1494)
  • fb3c3e6e Feature iptables eip nats splits (#1437)
  • 0c95402e Update USERS.md (#1493)
  • 08a7d5b6 update github actions (#1489)
  • ad28dca0 update USER.md (#1492)
  • 0db63226 fix: add empty chassis check in ovn db (#1484)
  • d631f8f8 feat: lsp forwarding external Layer-2 packets (#1487)
  • d4d700ec base: add back kubectl (#1485)
  • 59e4ae73 delete ipam record when gc lsp (#1483)
  • 73405b2a fix: wrong vpc-nat-gateway arm image (#1482)
  • 881622d4 fix pod annotation may override by patch (#1480)
  • e772ee95 add acl doc (#1476)
  • 6ef72e75 fix: workqueue_depth should show count not rate (#1478)
  • 5ba5c526 add delete ovs pods after restore nb db (#1474)
  • 73f9d15f delete monitor noexecute toleration (#1473)
  • abaebea4 add env-check (#1464)
  • 1d6d4653 Support kubevirt vm live migrate for pod static ip (#1468)
  • 54cab3aa fix routes for packets from Pods to other nodes
  • ba8c5937 add manual compile method for ubuntu20.04 (#1461)
  • 7848d71f append metrics (#1465)
  • 4f0b1976 Annotation network_type always is geneve
  • 6ddba02a masquerade packets from Pods to service IP
  • 3d18b8d3 update OVS and OVN for windows
  • 39cdfc5c windows support for cni server
  • 75d8f4de add kube-ovn-controller switch for EIP and SNAT
  • 8ac3e0c0 docs: add USERS.md (#1454)
  • 8c214bc9 update topology pic
  • cd5c591c feature: add sb/nb db check bash script (#1441)
  • fc5f7190 add routed check in circulation (#1446)
  • aa756519 modify init ipam by ip crd only for sts pod (#1448)
  • 3a5ead6d base: refactor ovn/ovs build (#1444)
  • 43051166 log: show the reason if get gw node failed (#1443)
  • 8f1e85ae add doc for #1358 (#1440)
  • 0c0a0308 prepare windows support for cni server
  • 88b07498 modify webhook img to independent image (#1442)
  • 3dbfa4de update alpine to fix CVE-2022-1271
  • 03af744f fix adding key to delete Pod queue
  • 0ea24dcf fix IPAM initialization
  • b26a06e7 temporary cancel the external2cluater e2e test for cilium (#1428)
  • 94bc2087 ignore all link local unicast addresses/routes
  • 9be57346 fix error handling for netlink.AddrDel
  • 87164cc9 replace pod name when create ip crd (#1425)
  • e7c69ba5 add webhook vaildate the vpc resource whether can be deleted. (#1423)
  • c9a58886 We are looking forward to your PR! (#1422)
  • 743ce241 support alloc static ip from any subnet after ns supports multi subnets (#1417)
  • d3f6431f fix provider-networks status
  • 48e0c4ed build ovs/ovn for windows in ci
  • 3b4ac99a cilium e2e: deploy k8s without kube-proxy
  • 902315ed windows support for CNI
  • f2baa2f7 add simple e2e for multus integration
  • e3693436 update e2e testing
  • 60bf81a3 recover ips CR on IPAM initialization
  • 8e1cd468 docs: update ROADMAP.md and MAINTAINERS
  • 19ecaeee create ip crd in kube-ovn-controller (#1413)
  • 25abbce7 add condition for triggering the deletion of redundant chassises in sbdb (#1411)
  • a378fad2 fix: do not recreate port for terminating pods (#1409)
  • 9587ad41 update cni version to 1.0
  • df83c5fb update underlay environment requirements
  • ff695aa3 avoid frequent ipset update
  • f475736c add reset for kube-ovn-monitor metrics (#1403)
  • 87d6839d fix: The underlay physical gateway config by external-gw-addr when use snat&eip (#1400)
  • d36a0d8d add custom acls for subnet (#1395)
  • 3206a7a2 check the cidr format whether is correct (#1396)
  • a33d519b optimize docs due to frequently asked question. (#1393)
  • 7bd25c63 adding IP Protocol enumeration to CRD can reduce the kube-ovn Controller judgment logic (#1391)
  • dcc7971a change the wechat qcode
  • 677690d5 append vm deletion check (#1390)
  • 0d663ebe We should handle the case where the subnet protocol is handled (#1373)
  • 7289e87c VIP is decoupled from port security (#1389)
  • 12907270 chore: reduce image size (#1388)
  • 5e108fe8 docs: update the maintainer and roadmap (#1387)
  • fe7cbe1b ci: update kind and k8s
  • ea60cdf7 fix external egress gateway
  • 22cb15c5 add missing link scope routes in vpc-nat-gateway
  • 5571619d update nodeips for restore cmd in ko plugin
  • 33180a1c increase memory limit of ovn-central
  • aa24894e fix range loop
  • 1f24d64d fix probe error
  • c621853a update script to add restore plugin cmd
  • dd4a5e0d support dpdk (#1317)
  • 8ad9e838 Use camel case instead of snake case
  • 9f3426ee add detail error when failed to create resource
  • 44dae1f7 add restore process for ovn nb db
  • c4bb2454 add reset porocess for ovs interface metrics
  • 8e8da195 fix SNAT/PR on Pod startup
  • e9a4bd5c optimize kube-ovn-monitor yaml
  • b11ffa31 Update subnet.go
  • 0b43fc80 feat: add webhook to check subnet deletion.
  • 21837784 modify ipam v6 release ip problem
  • 1264684c skip ping gateway for pods during live migration
  • 0da84f83 don't check conflict for migration pod with only static mac
  • 89aa2413 add service cidr when init kubeadm
  • bfcb0331 docs: add provide and ns spec for multus crd
  • 4f987b10 update flag parse in webhook
  • 7354d0c3 fix usage of ovn commands
  • ffd5c844 add check for pod update process
  • fe7a6e03 log: rotate all logs in kube-ovn-cni and add compress
  • 024d1684 keep ip for kubevirt pod
  • 8c0b358d docs: add integration with Corigine OVS offload
  • 07c53120 fix OVS bridge with bond port in mode 6
  • baeb3af4 fix: continue of deletion for del pod failed when can't found vpc or subnet (#1335)
  • 8e204be4 feat: support DHCP
  • 8393f322 Fix usage of ovn commands
  • bb7b5e56 resync provider network status periodically
  • 62642ea8 Revert "resync provider network status periodically"
  • 6ba89e8c use const instead the string
  • d8ba8d03 when update gateway info, we should append old to new deploy
  • cc124556 resync provider network status periodically
  • c53b28b1 fix underlay subnet in custom VPC
  • c4a807b1 fix ips update
  • 3269bad9 kube-ovn CNI配置文件名字可配置 (#1318)
  • 491abaa8 delete the logic of repeated enqueueing
  • 31c0b075 add log to file, update upgrade script
  • 61c5ebb8 Temporarily comment out the compile and upload of the centos8 compile container.
  • aef6595f Revert "Temporarily comment out the compile and upload of the centos8 compile…"
  • 79a26873 Temporarily comment out the compile and upload of the centos8 compile container.
  • 1fd27d7c feat: add webhook for subnet update validation
  • 6ab8e369 optimized decision logic
  • af0baa0c Use camel case instead of snake case
  • b6764e0b append add cidr and excludeIps annotation for namespace
  • a34bb353 feat: vpc peering connection
  • 9c5556c8 Remove excess code
  • 273eb844 chore: show install options when installing (#1293)
  • d5e342c0 feat: update provider network via node annotation
  • e9c9b1ce add container compile and insmod
  • a90b06a8 add policy route for centralized subnet
  • 2a39f793 fix: replace ecmp dp_hash with hash by src_ip (#1289)
  • 0fd564e4 Use go to rerimplement ovn-is-leader.sh (#1243)
  • 432c4070 fix: only log matched svc with np (#1287)
  • cb1a698a feat: Replace command health check with k8s tcpSocket check (#1251)
  • b220f0c6 add 'virtual' port for vip (#1278)
  • 36c43c48 skip the missing of kube-dns (#1286)
  • dad0ef62 fix: check if taint exists before un-taint
  • 9365a62d add policy route for distributed subnet in default vpc
  • a5ca73c8 ci: add retry to fix flaky test
  • 4fdca714 set up tunnel correctly in hybrid mode
  • 7f8f322b check static route conflict
  • e7bf87b8 fix: kubeovn#1271 (comment)
  • 017e5125 transfer IP/route earlier in OVS startup
  • ee2ccf1b delete unused constant
  • 4022bd57 add metric for ovn nb/sb db status
  • fdcc833a add gateway check after update subnet
  • f40e26ad we should first see if a condition is not going to be met
  • 3ae628cb add judge before use slices index
  • 47625c52 prevent multiple namespace reconcile
  • 4455c869 prevent multiple namespace reconcile
  • 6b60a587 fix: validate statefulset pod by name
  • fa02cb21 fix golang and base image versions
  • f210b934 add back centralized subnet active-standby mode
  • 2557c516 support to add multiple subnets for a namespace
  • c230ed8a prepare for next release
  • f95a90eb Support only configure static mac_address

Contributors

  • Cookie Wang
  • Fudankenshin
  • Mengxin Liu
  • Samuel Liu
  • amoy-xuhao
  • bob199x
  • bobz965
  • caohuilong
  • chestack
  • fanriming
  • gongysh2004
  • hackeren
  • halfcrazy
  • hzma
  • jyjiangkai
  • long.wang
  • lut777
  • pengbinbin1
  • wang_yudong
  • wangyd1988
  • xujunjie
  • xujunjie-cover
  • yi.luo
  • zhangzujian
  • 尚墨
  • 张祖建
  • 罗云鹤
  • 范日明

v1.9.14 (2022-11-11)

  • 9581d06b set release for 1.9.14
  • 6ba9954f fix pinger namespace error (#2034)
  • 0c9fd3f0 prepare release for 1.9.14
  • 9cbb07a6 fix: gateway route should stay still when node is pingable (#2011)
  • ab2a1f12 update np name with character prefix (#2024)
  • ec4fe022 bump kind and node image versions (#2023)
  • 5f9dca93 fix ovn nb/sb health check (#2019)
  • d7e78b8a fix ovs fdb for the local bridge port (#2014)
  • d41c467a do not need to delete pg when update networkpolicy (#1959)
  • 52310595 add helm and e2e test (#1992)
  • 85b8dd66 add check of write to ovn sb db for ovn-controller (#1989)

Contributors

  • Noah
  • hzma
  • lut777
  • zhangzujian
  • 张祖建

v1.9.13 (2022-10-26)

  • 354d6217 update ovs version to branch-2.16 (#1988)
  • 574f31fd fix grep matching device in routes (#1986)
  • 8fa0fa34 delete pod after TerminationGracePeriodSeconds (#1984)
  • 1f7b58d4 ovs: fix waiting flows in underlay networking (#1983)
  • 2506a4df use latest base image
  • 1c6ea035 ovn db: recover automatically on startup if db corruption is detected (#1980)
  • d7aabe2c prepare for release 1.9.13
  • adda63c0 fix CVE-2022-32149
  • 6ffaa44f avoid concurrent subnet status update (#1976)
  • f0754587 upgrade ovs-ovn pod by generation version instead of chart version (#1960)
  • 78d9cfd3 fix metrics name (#1977)
  • 1aaa6e48 add vm pod to ipam by ip when initIPAM (#1974)
  • d7ac1503 validate nbctl socket path in start-controller.sh
  • e6adb1e1 skip CVE-2022-3358 (#1972)
  • b4fe883c use latest base image
  • b3a1cf65 fix: add default deny acl (#1935)
  • 903eff03 ovs: fix mac learning in environments with hairpin enabled (#1943)
  • aa50a2ef Fix registry for ovn-central container in install.sh (#1951)
  • e9a1af07 ovs: add fdb update logging (#1941)

Contributors

  • Mengxin Liu
  • hzma
  • lut777
  • runzhliu
  • zhangzujian
  • 张祖建
  • 马洪贞

v1.9.12 (2022-09-29)

  • 42c2a82c add chart version check when upgrade ovs-ovn pod
  • 04338c84 fix underlay e2e testing (#1929)
  • 6c710acb prepare for release v1.9.12
  • 4f2f4058 set leader flag when get leader
  • 495e1632 set ovsdb-server vlog level to avoid warnings caused by ovs-vsctl (#1937)
  • 5f23adc6 use leases for leader election (#1529)
  • 44cee1df prepare release 1.9.11
  • 07819218 fix: pod mistaken ls label (#1925)
  • ff176b89 ignore pod without lsp when add pod to port-group
  • 6df23c2b add network partition check in ovn probes
  • 270e9dc3 feat: Replace command health check with k8s tcpSocket check (#1251)
  • 64c41a5d fix CVE-2022-27664
  • ed8ba4c6 update ns annotation when subnet cidr changed (#1921)

Contributors

  • hzma
  • lut777
  • zhangzujian
  • 尚墨
  • 张祖建
  • 马洪贞

v1.9.10 (2022-09-13)

  • f7a62ca7 set release 1.9.10
  • f9f49266 prepare for release 1.9.10
  • 455863a0 fix: gatewaynode might be null (#1896)
  • 23756538 fix: api rollback
  • 0522d9eb fix: diskfull may lead to wrong raft status for ovs db (#1635)
  • 23def0a2 kubectl-ko: turn off pipefail for ovn leader check (#1891)
  • 451c88ab fix logrotate issues
  • a98cffa4 fix security issues
  • 493b42de security: conform to gosec G114 (#1860)
  • ceb3855e fix duplicate logs for leader election (#1886)
  • 7ae439b0 delete and recreate netem qos when update process (#1872)

Contributors

  • Mengxin Liu
  • hzma
  • lut777
  • zhangzujian
  • 尚墨
  • 张祖建

v1.9.9 (2022-08-30)

  • c4701fd2 set release 1.9.9
  • 33d027af feat: reduce downtime by increasing arp cache timeout
  • b90769f3 feat: reduce wait time by counting the flow num.
  • 2afbe408 fix: missing stop_ovn_daemon args
  • 37b9f2f8 delete log severity for drop acl when update networkpolicy
  • 82026bbd base: use patch from OVN upstream (#1844)
  • f9a2d8de prepare release for 1.9.9
  • 7138087c ovs: fix log file descriptor leak in monitor process (#1855)
  • c6f9565c fix ovs-ovn logging (#1848)
  • b3a6998e fix: add and set ENABLE_KEEP_VM_IP=true to keep vm ip (#1702)
  • 20ed2329 fix: multus macvlan ipvlan use kube-ovn ipam,but ip not inited in init-ipam (#1843)
  • 4c40a20d fix underlay e2e (#1828)
  • eb1706bc fix arping error log (#1841)
  • 5757b8ec ko: fix kube-proxy check (#1842)
  • 2000e996 ci: switch environment to ubuntu-20.04 (#1838)
  • 919bb236 update centralized subnet gateway ready patch operation (#1827)
  • 1c3b622c fix duplicate log for tunnel interface decision (#1823)
  • e4d53217 update centralize subnet gatewayNode until gw is ready (#1814)
  • d44de3e0 initialize IPAM from IP CR with empty PodType for sts Pods (#1812)
  • 3eb1d1ad kubectl-ko: fix missing env-check (#1804)
  • 5613b63c kubectl-ko: fix destination mac (#1801)
  • 1284f15d abort kube-ovn-controller on leader change (#1797)
  • 5bf8de0f avoid invalid ovn-nbctl daemon socket path (#1799)
  • 4680e632 update vpc-nat-gateway base
  • 4cce7870 fix: warning for empty chassis fixed (#1786)

Contributors

  • Mengxin Liu
  • bobz965
  • hzma
  • lut777
  • zhangzujian
  • 张祖建

v1.9.8 (2022-08-10)

  • 686d913c set release v1.9.8
  • 8de35693 prepare for release v1.9.8
  • 38ee8301 delete htb qos when releated annotation is deleted (#1788)
  • 85bd5f94 perf: fix memory leak
  • 46c970d6 perf: disable mlockall to reduce memory usage
  • d7fd3793 perf: reduce metrics labels (#1784)
  • d7a9f5e9 feature: support exchange link names of OVS bridge and provider nic in underlay networks (#1736)
  • b966dd59 perf: replace jemalloc to reduce memory usage (#1764)
  • 8bb8b173 fix: add omitempty to subnet spec (#1765)
  • fd676437 set sysctl variables on cni server startup (#1758)
  • 7c6250f3 avoid patch interface deletion & recreation during restart (#1741)
  • a91056a3 enqueue subnets after vpc update (#1722)
  • e895c5ff do not add subnet not processed by kube-ovn to vpc (#1735)
  • f13f3f46 add logrotate for kube-ovn log (#1740)
  • 70246fb9 fix: If pod has snat or eip, also need delete staticRoute when delete pod. (#1731)
  • 76e3c670 fix iptables for service traffic when external traffic policy set to local(#1725)
  • cee39213 optimize lrp create for subnet in vpc (#1712)
  • 21f0b979 fix: cancel delete staticroute when it's used by NatRule (#1733)
  • 4c2d0c86 fix: wrong info when update subnet from dual to ipv4 or ipv6. (#1726)
  • 417176ed fix: new ovn-ic static route method adapted due to old ovn version (#1718)

Contributors

  • Mengxin Liu
  • hzma
  • lut777
  • xujunjie-cover
  • zhangzujian
  • 张祖建

v1.9.7 (2022-07-18)

  • eb412c96 set release 1.9.7
  • 07bec2a2 prepare for release 1.9.7
  • a798a8c2 Get latest vpc data from apiserver instead of cache (#1684)
  • 8bc1b169 update priority range in htb qos (#1688)
  • ef4673d2 add upgrade-ovs script (#1681)

Contributors

  • Mengxin Liu
  • Wang Bo
  • hzma

v1.9.6 (2022-07-13)

  • 6db04118 set release 1.9.6
  • 885e41f6 prepare for release 1.9.6
  • 556a2cf8 shim: fix diffs of commits
  • 67da728a fix: change ovn-ic static route to policy (#1670)
  • a7a11f03 fix: Do not Recreate Logical_Router_Port when Vpc recreated (#1570)
  • e2ab703a feat: vpc peering connection
  • 7699a34b Delete pod if subnet of the pod's owner(sts/vm) updated (#1678)
  • 02e8973a security: disable pprof by default (#1672)
  • 0242b9c2 bgp: consolidate service check and use service const (#1674)
  • 3401d933 fix bgp: sync service cache (#1673)
  • f818ca5c fix libovsdb (#1664)
  • a11feff7 mount modules for auto load ip6tables moudles (#1665)
  • 2882cafc ignore pod not scheduled when reconcile subnet (#1666)
  • 91dfbbf4 fix get security group name by external_ids (#1663)
  • e56d581b add policy route when add subnet

Contributors

  • Mengxin Liu
  • Money Liu
  • Wang Bo
  • gugu
  • hzma
  • lut777
  • wangyd1988
  • 刘睿华
  • 张祖建
  • 范日明

v1.9.5 (2022-06-28)

  • 8a2cc741 set for release 1.9.5
  • 9935ab54 fix: no need routed when use v1.multus-cni.io/default-network (#1652)
  • 60d33ca9 prepare for release 1.9.5
  • a48e64ae CI: delete resources in order to avoid a long time waiting for subnet deletions. (#1643)
  • 502a7a00 set networkpolicy log default to false (#1633)
  • 0bda2e6f update policy route when join subnet cidr changed (#1638)
  • 3cfafe40 ci: update trivy options (#1637)
  • 71dba393 increase initial delay of ovs-ovn liveness probe (#1634)
  • cf0bbd92 wait ovn-central pods running before delete ovs-ovn pods (#1627)
  • 0877c3a7 get dbstatus for all ovn-central pod (#1619)
  • 51c409bd fix issues about OVN policy routing
  • 637503b4 use policy route instead of static route (#1618)

Contributors

  • hzma
  • xujunjie-cover
  • zhangzujian
  • 张祖建

v1.9.4 (2022-06-19)

  • c85ab203 ci: disable cilium e2e for release
  • 0a841aa1 prepare for release 1.9.4
  • f99f4e81 update ovs health check, delete connection to ovn sb db (#1588)
  • 82d7dd37 fix: all cluster pod will be in podadd queue (#1587)
  • 3c68cb9b fix pod could not be ready (#1562)
  • f39ff7a8 fix: delete pod panic when delete vm or statefulset. (#1565)
  • 4c60872f fix: keep vm's and statefulset's ips when user specified subnet (#1520)
  • 81781a01 do not gc vm pod lsp when vm still exists (#1558)
  • 4a28c014 fix exec cmd in vpc nat gateway (#1556)
  • 67db2bf3 CNI: do not return route if nic is not eth0 (#1555)
  • d5fce51d exit kube-ovn-controller on stopped leading (#1536)
  • 05a4b4dc remove name for default drop acl in networkpolicy (#1522)
  • 6fcc1975 tmp cancel cilium external svc test (#1531)
  • fe3bb3e5 move dumb-init from base images to kube-ovn image

Contributors

  • hzma
  • lut777
  • xujunjie-cover
  • 刘睿华
  • 张祖建

v1.9.3 (2022-05-13)

  • a2ba0c15 release 1.9.3
  • 0695d31e fix defunct ovn-nbctl daemon
  • f8594a29 optimize ovs request in cni (#1518)
  • 08f2961d optimize node port-group check (#1514)
  • 9ec4a430 reduce ovs-ovn restart downtime (#1516)
  • b55fa987 prepare for release 1.9.3
  • e4ba2e6d fix: ovs trace flow always ends with controller action (#1508)
  • 2e681af3 optimize IPAM initialization
  • 76fe9cef ci: skip some checks
  • 51dc9243 delete ipam record and static route when gc lsp (#1490)

Contributors

  • Mengxin Liu
  • hzma
  • zhangzujian

v1.9.2 (2022-04-25)

  • 6273d294 release for v1.9.2
  • c98322d7 fix: wrong vpc-nat-gateway arm image (#1482)
  • bc4f761c add delete ovs pods after restore nb db (#1474)
  • 945f2336 delete monitor noexecute toleration (#1473)
  • 35ecc687 add env-check (#1464)
  • 1f68e12a append metrics (#1465)
  • 302156bc masquerade packets from Pods to service IP
  • 4faa8831 add kube-ovn-controller switch for EIP and SNAT
  • 300a1643 ignore cni cve
  • 75383df3 add routed check in circulation (#1446)
  • c4f5f4d6 modify init ipam by ip crd only for sts pod (#1448)
  • 135798dc log: show the reason if get gw node failed (#1443)
  • 9bec51be9 modify webhook img to independent image (#1442)
  • e1d6dbf6 support keep-vm-ip and live-migrate at the same time (#1439)
  • 613b6ae5 update alpine to fix CVE-2022-1271
  • 553bedd2 fix adding key to delete Pod queue
  • d899cc97 fix IPAM initialization
  • e159443d ignore all link local unicast addresses/routes
  • 06bd4f86 fix error handling for netlink.AddrDel
  • 71e3f119 replace pod name when create ip crd
  • 8e65f6f6 support alloc static ip from any subnet after ns supports multi subnets (#1417)
  • 9bc2f96a fix provider-networks status
  • 269f819a recover ips CR on IPAM initialization
  • dc43dc20 create ip crd in kube-ovn-controller (#1413)
  • 41f8e26b add condition for triggering the deletion of redundant chassises in sbdb (#1411)
  • 2aedc6ac fix: do not recreate port for terminating pods (#1409)
  • d5556404 avoid frequent ipset update
  • c86ff85e fix: The underlay physical gateway config by external-gw-addr when use snat&eip (#1400)
  • deea9ded add reset for kube-ovn-monitor metrics (#1403)
  • 899de6ff check the cidr format whether is correct (#1396)
  • b54364b4 update dockerfile to use v1.9.1 base img
  • 24190501 append vm deletion check
  • 1953712a delete repeat para
  • 7c0348a7 update nodeips for restore cmd in ko plugin
  • f320ef8f fix external egress gateway
  • c3e17d8c add missing link scope routes in vpc-nat-gateway
  • 9d9d5878 increase memory limit of ovn-central
  • c4092113 fix range loop
  • 7397db27 update script to add restore plugin cmd

Contributors

  • Mengxin Liu
  • hzma
  • lut777
  • wangyd1988
  • xujunjie-cover
  • zhangzujian

v1.9.1 (2022-03-09)

  • 46eb49ad release update 1.9.1 changelog (#1361)
  • 59594fed add restore process for ovn nb db
  • de794986 optimize kube-ovn-monitor yaml
  • 47a16c38 add reset porocess for ovs interface metrics
  • a3618bcd fix SNAT/PR on Pod startup
  • 81247723 modify ipam v6 release ip problem
  • 0006902b skip ping gateway for pods during live migration
  • 092db781 update flag parse in webhook
  • 222a1fb6 feat: add webhook for subnet update validation
  • 0615254e keep ip for kubevirt pod
  • 87bb7f18 add check for pod update process
  • 7886467a fix ips update
  • ab3f0a6d append htbqos para in crd yaml
  • a68a55f9 fix: replace ecmp dp_hash with hash by src_ip (#1289)
  • dd08ecab fix OVS bridge with bond port in mode 6
  • 5fd56d1e fix: continue of deletion for del pod failed when can't found vpc or subnet (#1335)
  • 0d114958 Fix usage of ovn commands
  • 621e2b57 resync provider network status periodically
  • 10ac8c3a Revert "resync provider network status periodically"
  • fadc1316 fix statefulset Pod deletion
  • b74eaccc resync provider network status periodically
  • 9a0f708f fix underlay subnet in custom VPC
  • 69b3d72a append add cidr and excludeIps annotation for namespace
  • c63cb106 support to add multiple subnets for a namespace
  • 3f818b72 feat: update provider network via node annotation
  • 57f16570 fix: only log matched svc with np (#1287)
  • 288c5fe9 transfer IP/route earlier in OVS startup
  • 4c4390b3 add metric for ovn nb/sb db status
  • 92e7b975 check static route conflict
  • 67a7d85b set up tunnel correctly in hybrid mode
  • eabed9cc fix clusterrole in ovn-ha.yaml
  • 65b83219 add gateway check after update subnet
  • f3f8c4dc fix: validate statefulset pod by name
  • b5544bc3 add back centralized subnet active-standby mode

Contributors

  • Mengxin Liu
  • chestack
  • hzma
  • lut777
  • xujunjie
  • xujunjie-cover
  • zhangzujian

v1.9.0 (2022-01-12)

  • e4d48df3 prepare for release 1.9.0
  • c830594d fix: liveMigration with IPv6
  • e52b6897 update networkpolicy port process
  • 851ad0ce Add args to configure port ln-ovn-external
  • 5d95d628 update check for delete statefulset pod
  • 695f4532 ignore hostnetwork pod when initipam
  • 4b98d15f kubectl-ko: support trace Pods being created
  • 63bc25ea add dnsutils for base image
  • 6318d004 Add new arg to configure ns of ExternalGatewayConfig
  • 71522920 update scripts for 1.8.2
  • 960f02c1 Optimized decision logic
  • 8974f6a3 add svc cidr in ovs LB for optimization
  • 0192a9ae add doc for gateway pod in default vpc
  • 1f9dc754 optimize log for node port-group
  • 36d6b00a fix iptables rules and service e2e
  • 8dc938d8 add kubectl-ko to docker image
  • c4cc8f0d fix: invalid syntax error
  • a4f4cb49 fix pod tolerations
  • 8611de82 modify pod's process of update for use multus cni as default cni
  • 5ab83ba4 fix installation script
  • 09ef9be0 add log for ecmp route
  • 791b00f4 fix: ipv6 traffic still go into ct
  • 55e6a8ca append check for centralized subnet nat process
  • 58a44fb2 move chassis judge to the end of node processing
  • 9f0c42fa change nbctl args 'wait=sb' to 'no-wait'
  • 6f356705 use different ip crd with provider suffix for pod multus nic
  • f7b595dc fix service cidr in dual stack cluster
  • c510b439 add healthcheck cmd to probe live and ready
  • e14bc40c delete frequently log
  • bde98e75 support running ovn-ic e2e on macOS
  • 727ea53a pinger: fix getting empty PodIPs
  • 205a0c02 fix cni deepcopy
  • 650ea6d3 add cilium e2e
  • 46ba84ee filter used qos when delete qos
  • 1de284eb add protocol check when subnet is dual-stack
  • 1f4a247d lint: make go-lint happy
  • 91f3fa4b some fixes
  • d57bc1d7 compatible with OVN 20.06
  • 9116425a use multus-cni as default cni to assign ip
  • d18323a4 some fixes
  • 668c2125 perf: jemalloc and ISA optimization
  • 5c08d28d fix: check np switch
  • 36571555 fix: port security
  • e713bdf0 fix nat rule
  • d8e84cf0 When netpol is added to a workload, the workload's POD can be accessed using service
  • 51365b41 when update subnet's execpt ip,we should filter repeat ip
  • 5aacec59 update wechat image
  • 6c8fa978 fix: do not reuse released ip after subnet updated
  • e4648cc8 update: update 1.7-1.8 script
  • b1f8332c perf: do not send traffic to ct if not designate to svc
  • 178cf7b8 fix: add back the leader check
  • 7be43c97 fix port_security
  • e596c3c4 sync live migration vm port
  • e8b1ff5b docs: add f5 ces integration docs
  • 7058d568 update Go modules
  • 84dbb102 update delete operation for statefulset pod
  • e9e2c911 chore: update klog to v2 which embed log rotation
  • fafd5555 fix: add kube-ovn-cni prob timeout
  • 490590a4 append add db compact for nb and sb db
  • 4fb302f5 deleting all chassises which are not nodes
  • c49a7404 add db compact for nb and sb db
  • 3b7ec06c add vendor param for fix list LR
  • ae23d3df fix LB: skip service without cluster IP
  • df3d3977 add webhook with cert-manager issued certificate
  • 2be11269 security: update base ubuntu image
  • eb364717 add pod in default vpc to node port-group
  • ea300d2b fix pinger's compatibility for k8s v1.16
  • 3837b0a2 check IPv4 gateway by resolving gateway MAC in underlay subnets
  • 75604b5d add nodeSelector for vpc-nat-gateway pod
  • fac6c725 do not send multicast packets to conntrack
  • c3004bbc Revert "support to set NB_Global option mcast_privileged"
  • 2802b94d add ip address for lsp
  • 28a93927 fix: no need to set address for ls to lr port
  • 2048007a add sg acl check when init
  • b9abee71 cleanup command flags
  • 54a3b913 replace port-group named address-set with port-group since there's no ip set for lsp when create lsp
  • 743502cd support to set NB_Global option mcast_privileged
  • a5f0256a add networkpolicy support for attachment cni
  • 45f64bfa add process for pod attachment nic with subnet in default vpc
  • 49e9197e fix security group
  • 60e896f8 fix the duplicate call about strings.Split
  • c9f5f4b4 deepcopy fix steps
  • e0cb19aa fix: do not nat route traffic
  • 4e4d95d5 fix: Skip MAC address Settings when PCI addresse is unavailable
  • adce05c7 add ovn-ic e2e
  • 3b6b5034 other CNI can be used as the default network
  • 841f907b fix: move macvlan binary to host
  • 52ec0af4 Revert "ci: init kind cluster before build finish"
  • a8599325 fix ko trace
  • 1dd66a77 add ovn-ic HA deploy
  • bc3ce0bb fix node address set name
  • cbed2820 update cni init image
  • a648bfc6 chore: update kind k8s to 1.22 and remove pre 1.16 support
  • a1d56e97 do not set bridge-nf-call-iptables
  • 738c7612 use logical router policy for accessing node
  • 6719ee24 ci: init kind cluster before build finish
  • 61817bf4 reduce qos query with ovs-vsctl cmd
  • 1776c447 fix read-only pointer in vlan and provider-network
  • 329228d4 fix: trace in custom vpc
  • a9c0a4aa fix read-only pointer in vlan and provider-network
  • 62df3416 update docs
  • a546ba95 fix LB in dual stack cluster
  • eb63f72e fix: check allocated annotation in update handler
  • 55b8b8ac support using logical gateway in underlay subnet
  • ef424d73 docs: optimize cilium integration docs
  • a09e84d0 fix: ensure all kube-ovn components deleted before annotate pods
  • e7aeb96e fix bug: logical switch ts not ready
  • dc4e693f Fix unpopulated CPU charts
  • 003723e5 Revert "get default subnet"
  • 418feb1b add htbqoses rbac
  • 850e4218 feat: pod can use multiple nic with the same subnet
  • 5840d509 add error detail
  • e6377cae add check switch for default subnet's gateway
  • b5b6c326 get default subnet
  • fbafca41 remove node chassis annotation on cleanup
  • 348eaf36 update: add 1.7 to 1.8 update scripts
  • f934613d base: add macvlan to help vpc setup
  • cd1dda1e fix: delete vpc-nat-gw deployment
  • 50eddac3 ko: check ovsdb storage status
  • 20670e87 fix cleanup.sh and uninstall.sh
  • b31c4d19 use constant instead a string
  • 86f63f26 fix: check and load ip_tables module
  • 3bfd82b7 fix: multus-cni subnet allocation
  • e5ed1ace docs: add svg
  • 17ff6c55 chore: update install
  • ce97b94c integrate Cilium into Kube-OVN
  • fda0c17b fix kubectl-ko diagnose
  • 3f8a2b0e change inspection logic from manually adding lsp to just readding pod queue
  • 01ca82f9 fix pinger in dual stack cluster
  • 0ba64dea add e2e testing for dual stack underlay
  • 7f27a05d fix pinger and monitor in underlay networking
  • 6a56f8bb fix kubectl plugin ko
  • 2c9fe438 adjust the location of the log
  • 86ee933a ci: push vpc-nat-gateway
  • f459ca97 replace api for get lsp id by name
  • 0a533984 docs:revise vpc.md
  • 78847899 grafana: optimize grafana dashboard
  • 168a7c97 In netpol egress rules, except rule should be set to != and should not be ==
  • d7edf24b ci: add vpc-nat-gateway build
  • 5cd32df8 Update OVN to version 21.06
  • dd36d61c modify kube-ovn as multus-cni problem
  • d17f6151 support to set htb qos priority
  • c20e0111 perf: add fastpath module for 4.x kernel
  • ff5d3df3 add inspection
  • 3e9f9a99 perf: add stt section and update benchmark
  • d3842327 feat: optimize log
  • 4c6c29a3 fix: init node with wrong ipamkey and lead conflict
  • 47255a10 fix installation scripts
  • fd745487 fix getting LSP UUID by name
  • 1f5719a5 fix StatefulSet down scale
  • 5bccd845 fix vpc policy route
  • acb82de0 docs: update roadmap
  • 87f9b863 refactor: mute ovn0 ping log and add ping details
  • a99c4200 fix: wrong link for iptables
  • 52b01c01 fix IPAM for StatefulSet
  • 51511e63 append externalIds for pod and node when upgrade
  • 391f7014 feature: LoadBalancer for custom VPC
  • 7fd8cf44 feat: support vip
  • 25f634fb fix VPC document
  • 97a5b2a3 fix init ipam
  • 71fcbf12 fix: gc lb
  • 2b154b1a Update prometheus.md
  • 1e766f9c feat: support VLAN subnet in VPC
  • 4c013a3e ci: push dev image to separate repo
  • 39c8a19c fix: kubeclient timeout
  • edaf41e0 fix: serialize pod add/delete order
  • 78a77f79 perf: increase ovn-nb timeout
  • 5937ccbf fix gc lsp statistic for multiple subnet
  • c71620ce fix: re-check ns annotation to avoid annotations lost
  • d40d5701 perf: do not diagnose external access
  • 871c1493 feature: vpc support policy route
  • 90b1a2ea reactor: remove ovn ipam options
  • 7f43f25c perf: switch's router port's addresses to "router"
  • 8dbe8f94 lint: make staticcheck happy
  • 8ad46dad fix e2e testing
  • 5a126378 prepare for next release
  • 5b70c81d fix variable referrence
  • 42fed929 fix typos
  • f59aff27 refactor: reuse waitNetworkReady to check ovn0 and slightly improve the installation speed
  • ea723d6d fix nat-outgoing/policy-routing on pod startup
  • 2439c86e feat: suport vm live migration

Contributors

  • Mengxin Liu
  • MengxinLiu
  • azee
  • chestack
  • feixiang43
  • huangjunwei
  • hzma
  • lhalbert
  • liqd
  • luoyunhe
  • lut777
  • pengbinbin1
  • vseeker
  • wang_yudong
  • wangchl01
  • zhangzujian
  • 范日明

v1.8.14 (2022-11-04)

  • aec4eaeb fix: get ecmp nodecheck back (#2016)
  • b714e057 fix: gateway route should stay still when node is pingable (#2015)
  • 898247c0 do not need to delete pg when update networkpolicy (#1959)
  • 7adf4ea7 do not set bridge-nf-call-iptables
  • d6ddf891 add check of write to ovn sb db for ovn-controller (#1989)
  • 4e17fe73 fix grep matching device in routes (#1986)
  • eb0cf474 delete pod after TerminationGracePeriodSeconds (#1984)
  • 264beb59 ovs: fix waiting flows in underlay networking (#1983)
  • 640806d5 use latest base image
  • 469b32ae ovn db: recover automatically on startup if db corruption is detected (#1980)
  • fd155293 prepare for release 1.8.14
  • 4dbefaf2 fix CVE-2022-32149
  • 317780a4 avoid concurrent subnet status update (#1976)
  • 3d0c5eb6 modify build error
  • b65b3de1 fix metrics name (#1977)
  • 05011718 add vm pod to ipam by ip when initIPAM (#1974)
  • 0890fdf9 validate nbctl socket path in start-controller.sh
  • e5c59e5b skip CVE-2022-3358 (#1972)
  • 2f4a56a3 use latest base image
  • ea03249d fix: add default deny acl (#1935)
  • e89ace5e ovs: fix mac learning in environments with hairpin enabled (#1943)
  • 62491a53 Fix registry for ovn-central container in install.sh (#1951)
  • d96cba57 ovs: add fdb update logging (#1941)
  • 433c3b93 prepare for release v1.8.13
  • 93e82147 set ovsdb-server vlog level to avoid warnings caused by ovs-vsctl (#1937)
  • a03c8064 update Go to v1.17
  • 41e697a1 add network partition check in ovn probes
  • 78e73937 feat: Replace command health check with k8s tcpSocket check (#1251)
  • df29bb2e fix CVE-2022-27664
  • b35037d0 update ns annotation when subnet cidr changed (#1921)

Contributors

  • Mengxin Liu
  • hzma
  • lut777
  • runzhliu
  • zhangzujian
  • 尚墨
  • 张祖建
  • 范日明
  • 马洪贞

v1.8.12 (2022-09-13)

  • 6e97d651 set release 1.8.12
  • 845ee70f prepare release 1.8.12
  • c39d51a3 fix: gatewaynode might be null (#1896)
  • 08331bae fix: api rollback
  • 3f96a632 fix logrotate issues
  • fb4ac005 fix security issues
  • d289215e security: conform to gosec G114 (#1860)
  • 7451d098 fix: diskfull may lead to wrong raft status for ovs db (#1635)
  • dd22f682 kubectl-ko: turn off pipefail for ovn leader check (#1891)
  • d2be779e fix ip6tables link
  • e1034427 fix duplicate logs for leader election (#1886)

Contributors

  • Mengxin Liu
  • lut777
  • zhangzujian
  • 尚墨
  • 张祖建

v1.8.11 (2022-08-30)

  • 9f059091 set release 1.8.11
  • 5fa2a8e1 feat: reduce downtime by increasing arp cache timeout
  • c18cae4e feat: reduce wait time by counting the flow num.
  • c8e36b5e fix: missing stop_ovn_daemon args
  • e5735c20 delete log severity for drop acl when update networkpolicy (#1862)
  • 4bcfb373 prepare release for 1.8.11
  • 9d7f0a59 ovs: fix log file descriptor leak in monitor process (#1855)
  • 446ee6a2 fix ovs-ovn logging (#1848)
  • 63b218c6 fix: multus macvlan ipvlan use kube-ovn ipam,but ip not inited in init-ipam (#1843)
  • 95c8ca4f ko: fix kube-proxy check (#1842)
  • b7b7d26d avoid patch interface deletion & recreation during restart
  • 2746a195 ci: switch environment to ubuntu-20.04 (#1838)
  • cacb1ec4 fix base failure
  • 3941595b update base image
  • 2938daaa fix base build failure
  • 122754aa update centralized subnet gateway ready patch operation
  • c3f23af3 fix duplicate log for tunnel interface decision (#1823)
  • 3d966bff update version to v1.8.10 (#1819)
  • dfc89924 do not check static route conflict (#1817)
  • a6403f0e update centralize subnet gatewayNode until gw is ready (#1814)
  • 7103aae8 initialize IPAM from IP CR with empty PodType for sts Pods (#1812)
  • b669c673 abort kube-ovn-controller on leader change (#1797)
  • 0e0ea3c7 avoid invalid ovn-nbctl daemon socket path (#1799)
  • a7f499dd do not wait dynamic address for pod (#1800)
  • 2b34fd58 update vpc-nat-gateway base
  • 8d2d0b1e append delete static route for sts pod (#1798)
  • 9dc6e15e perf: fix memory leak
  • 14beb484 perf: disable mlockall to reduce memory usage
  • e6eace89 set sysctl variables on cni server startup (#1758)
  • 020b20de fix: add omitempty to subnet spec (#1765)
  • 3e77c51c fix CVE-2022-21698
  • c5212982 add logrotate for kube-ovn log (#1740)
  • ef275cc1 fix: cancel delete staticroute when it's used by NatRule (#1733)
  • 513a30b5 fix: wrong info when update subnet from dual to ipv4 or ipv6. (#1726)
  • aef889ae Get latest vpc data from apiserver instead of cache (#1684)

Contributors

  • Mengxin Liu
  • Wang Bo
  • bobz965
  • hzma
  • xujunjie-cover
  • zhangzujian
  • 张祖建

v1.8.9 (2022-07-13)

  • 9050b22d set release 1.8.9
  • c42900d6 prepare for release 1.8.9
  • ff928386 [PATCH] Delete pod if subnet of the pod's owner(sts/vm) updated (#1678)
  • f216a2f5 security: disable pprof by default (#1672)
  • a984c913 update ovs health check, delete connection to ovn sb db (#1588)

Contributors

  • Mengxin Liu
  • Wang Bo
  • hzma

v1.8.8 (2022-06-28)

  • 0fbefff5 set release 1.8.8
  • 37df8e76 prepare for release 1.8.8
  • bf873330 CI: delete resources in order to avoid a long time waiting for subnet deletions. (#1643)
  • de117356 add ovn-ic HA deploy
  • 1dcf9a43 set networkpolicy log default to false

Contributors

  • hzma
  • lut777
  • 张祖建

v1.8.7 (2022-06-19)

  • 46987551 prepare for release 1.8.7
  • b6796d09 cni handler: do not wait routed annotation for net1 (#1586)
  • f5c3ed3f fix adding static route after LSP deletion (#1571)
  • f7ee860b fix duplicate netns parameter (#1580)
  • 0a3468b1 do not gc vm pod lsp when vm still exists (#1558)
  • d453add3 fix exec cmd in vpc nat gateway (#1556)
  • 8303ace0 CNI: do not return route if nic is not eth0 (#1555)
  • bc758245 exit kube-ovn-controller on stopped leading (#1536)
  • c51b09e8 remove name for default drop acl in networkpolicy (#1522)
  • 9fe8cfcd move dumb-init from base images to kube-ovn image
  • 2a8a45a1 fix defunct ovn-nbctl daemon

Contributors

  • hzma
  • zhangzujian
  • 张祖建

v1.8.6 (2022-05-13)

  • 56bf06df release 1.8.6
  • 9e5b2b28 reduce ovs-ovn restart downtime (#1516)
  • e4d6cc2f prepare for release 1.8.6
  • 60aa8913 fix: ovs trace flow always ends with controller action (#1508)
  • 2a074c6f optimize IPAM initialization

Contributors

  • Mengxin Liu
  • zhangzujian

v1.8.5 (2022-04-27)

  • 9b96bacf ci: skip some checks
  • e20cf4a2 delete ipam record and static route when gc lsp (#1490)
  • 035f5072 CVE-2022-27191 (#1479)
  • e898c96e add delete ovs pods after restore nb db (#1474)
  • 89d7471c delete monitor noexecute toleration (#1473)
  • 4b012aa6 add env-check (#1464)
  • 3d0448b4 append metrics (#1465)
  • a0e2404c add kube-ovn-controller switch for EIP and SNAT
  • ca2ca1a1 add routed check in circulation (#1446)
  • c9dfa5bb modify init ipam by ip crd only for sts pod (#1448)
  • 8b5ce74a ignore cni cve
  • 22fe8fbe log: show the reason if get gw node failed (#1443)
  • 8570e286 update alpine to fix CVE-2022-1271
  • 6aa6b0a9 fix adding key to delete Pod queue
  • bf12ea0e fix IPAM initialization
  • 5e005884 ignore all link local unicast addresses/routes
  • 63248040 fix error handling for netlink.AddrDel
  • aa7c3b8d replace pod name when create ip crd
  • f0bb2769 support alloc static ip from any subnet after ns supports multi subnets
  • 7a67a213 fix provider-networks status
  • 8529bf8b recover ips CR on IPAM initialization

Contributors

  • Mengxin Liu
  • hzma
  • zhangzujian

v1.8.4 (2022-03-29)

  • 48eb70a4 release update 1.8.4 changelog (#1414)
  • 2fe7fff2 create ip crd in kube-ovn-controller (#1412)
  • 01163c1c fix: add condition for triggering the deletion of redundant chassises in sbdb (#1411)
  • c262bdcf fix: do not recreate port for terminating pods (#1409)
  • bf167a60 avoid frequent ipset update
  • b44bbc5d fix: The underlay physical gateway config by external-gw-addr when use snat&eip (#1400)
  • ffdd1967 add reset for kube-ovn-monitor metrics (#1403)
  • eda71b3c check the cidr format whether is correct (#1396)
  • 62695032 update dockerfile to use v1.8.3 base img
  • c15afc54 append vm deletion check
  • 9faf2a10 update nodeips for restore cmd in ko plugin
  • 621a37f0 fix external egress gateway
  • 27af3335 update ip assigned check
  • 4d88bea5 add missing link scope routes in vpc-nat-gateway
  • bf8026ed increase memory limit of ovn-central
  • 5a52041b fix range loop

Contributors

  • hzma
  • lut777
  • wangyd1988
  • xujunjie-cover
  • zhangzujian

v1.8.3 (2022-03-09)

  • 37937fcf release update 1.8.3 changelog (#1360)
  • 014ecc87 add restore process for ovn nb db
  • dbf4774d optimize kube-ovn-monitor yaml
  • ce8087d7 add reset porocess for ovs interface metrics
  • 62938245 deepcopy fix steps
  • 118f1299 fix SNAT/PR on Pod startup
  • 9fa2c792 add check for pod update process
  • f053f2a2 fix ips update
  • fe9532d4 fix cni deepcopy
  • c76e9b01 fix: replace ecmp dp_hash with hash by src_ip (#1289)
  • f3922ba9 keep ip for kubevirt pod
  • f6628902 fix OVS bridge with bond port in mode 6
  • a421d9f8 fix: continue of deletion for del pod failed when can't found vpc or subnet (#1335)
  • cf7f4bd9 Fix usage of ovn commands
  • 586a0764 ignore cilint
  • e083a2ba resync provider network status periodically
  • dcb3e82d Revert "resync provider network status periodically"
  • 18740e5c fix statefulset Pod deletion
  • 85c15cb4 resync provider network status periodically
  • 172c1733 feat: optimize log
  • 136aedf9 optimize log for node port-group
  • 0869e621 append add cidr and excludeIps annotation for namespace
  • e04eaf7a support to add multiple subnets for a namespace
  • ae201ef5 feat: update provider network via node annotation
  • 5cf005e2 fix: only log matched svc with np (#1287)
  • 6ef52c22 transfer IP/route earlier in OVS startup
  • 75157be8 add metric for ovn nb/sb db status
  • 4b23c84c check static route conflict
  • 0832f5ef set up tunnel correctly in hybrid mode
  • 175d54d1 fix clusterrole in ovn-ha.yaml
  • 457475f2 add gateway check after update subnet
  • 45787fb7 add back centralized subnet active-standby mode
  • a737e196 update networkpolicy port process
  • ff6bf6fa update check for delete statefulset pod

Contributors

  • chestack
  • hzma
  • lut777
  • xujunjie-cover
  • zhangzujian

v1.8.2 (2022-01-05)

  • 5acf9586 release: update 1.8.2 changelog
  • 49b2ae40 add log for ecmp route
  • 798d0bb9 fix pod tolerations
  • c5f4c8e6 fix installation script
  • 270d28e4 append check for centralized subnet nat process
  • ee691fb5 change nbctl args 'wait=sb' to 'no-wait'
  • c4956ac3 move chassis judge to the end of node processing
  • 636b946a use different ip crd with provider suffix for pod multus nic
  • a03a858c use multus-cni as default cni to assign ip
  • 3205b88e fix: do not reuse released ip after subnet updated
  • 7de6afb8 delete frequently log
  • efefc20b pinger: fix getting empty PodIPs
  • d98fab8d add protocol check when subnet is dual-stack
  • 0a48f6a6 filter used qos when delete qos
  • 26f239aa fix: check np switch
  • 4187a329 When netpol is added to a workload, the workload's POD can be accessed using service
  • e7c50077 when update subnet's execpt ip,we should filter repeat ip
  • 86020295 fix: add back the leader check
  • dfa1a3a8 security: upadate base image
  • 7f1e9354 update delete operation for statefulset pod
  • 17301ee2 chore: update klog to v2 which embed log rotation
  • 7cfeee1e fix: add kube-ovn-cni prob timeout
  • 88a92ac9 append add db compact for nb and sb db
  • 9496e386 add vendor param for fix list LR
  • 641dcdde deleting all chassises which are not nodes
  • ad0bc1b7 add db compact for nb and sb db
  • b50da0e1 fix pinger's compatibility for k8s v1.16
  • 723ec5c3 fix LB: skip service without cluster IP
  • d412c780 security: update base ubuntu image
  • b96b7056 add pod in default vpc to node port-group
  • e1dfa7b1 add sg acl check when init
  • c8692dfb fix: no need to set address for ls to lr port
  • ef0e3b95 fix ko trace
  • 7231a6f2 fix read-only pointer in vlan and provider-network
  • 01e30a42 fix read-only pointer in vlan and provider-network
  • 72cf31dd fix: trace in custom vpc
  • 03639a4a fix: multus-cni subnet allocation
  • 1857130e fix LB in dual stack cluster
  • 3773bedf prepare for release 1.8.2
  • 45316125 fix: check allocated annotation in update handler
  • 79be0cde fix bug: logical switch ts not ready
  • e3581cf1 fix: ensure all kube-ovn components deleted before annotate pods
  • 9847a1b6 Revert "add check switch for default subnet's gateway"
  • c106afa6 add check switch for default subnet's gateway
  • bdf5b0e2 remove node chassis annotation on cleanup
  • 31a5da22 fix: delete vpc-nat-gw deployment
  • 765ede7b fix: serialize pod add/delete order
  • 78dc1fbf change inspection logic from manually adding lsp to just readding pod queue
  • 986f8b4e add inspection
  • 15ea6ab8 fix: check and load ip_tables module
  • 9bb0cfc2 fix cleanup.sh and uninstall.sh
  • da422ff9 fix kubectl-ko diagnose
  • cc8a4da0 fix pinger in dual stack cluster
  • 9364d2a2 add e2e testing for dual stack underlay
  • ecf4e011 fix pinger and monitor in underlay networking
  • 91a32d41 fix kubectl plugin ko
  • 259f8d6a replace api for get lsp id by name
  • 7e775fa6 In netpol egress rules, except rule should be set to "!=" and should not be "=="
  • 0a09e055 modify kube-ovn as multus-cni problem

Contributors

  • Mengxin Liu
  • hzma
  • lut777
  • wang_yudong
  • zhangzujian
  • 范日明

v1.8.1 (2021-10-09)

  • 31f53094 release: prepare for 1.8.1
  • fa66c5f8 fix: init node with wrong ipamkey and lead conflict
  • fa17c3d6 fix installation scripts
  • c7d050b9 fix getting LSP UUID by name
  • f0bebbec fix StatefulSet down scale
  • 4c189b7f refactor: mute ovn0 ping log and add ping details
  • c208cd51 fix: wrong link for iptables
  • b4faf60b fix IPAM for StatefulSet
  • d0525957 append externalIds for pod and node when upgrade
  • 34ba16ea perf: increase ovn-nb timeout
  • f844a2bc fix: re-check ns annotation to avoid annotations lost
  • f7214195 perf: do not diagnose external access
  • 6232c73b reactor: remove ovn ipam options
  • 651ab41e perf: switch's router port's addresses to "router"
  • f5997a87 fix gc lsp statistic for multiple subnet
  • da43e21b fix e2e testing
  • 5e3c1507 fix variable referrence
  • bc95b5d3 fix nat-outgoing/policy-routing on pod startup

Contributors

  • Mengxin Liu
  • hzma
  • lut777
  • zhangzujian

v1.8.0 (2021-09-08)

  • 7c5fed65 fix adding OVN routes in dual stack Kubernetes
  • 80a037ee release: prepare for 1.8
  • f59bfb86 add update process and adding label to ls/lsp/lr
  • e09d99b3 fix: VLAN CIDR conflict check
  • e6b8341e security: update base image
  • 29422965 update provider network CRD
  • 25b151c8 fix external-vpc
  • 44a8b4f6 perf: use link alias to filter packet
  • e9984fe0 security: fix CVE-2021-3538
  • d41c5e9b add print columns for subnet/vpc/vpc-nat-gw crd
  • 730e4f17 improve support for dual-stack
  • c148a5ac initialize ipsets on cni server startup
  • 10613e87 delete residual ovs internal ports
  • 361d4bbe simplify vlan implement
  • 6fde0a56 fix: ovn-northd svc flip flop
  • b1106056 add container run command for runtime containerd
  • 42e212ca fix subnet conflict check for node address
  • 3d2c6eb9 feat: read interface in installation from environment
  • 35acf424 update encap ip by node annotation periodic
  • 13b2080a fix ipset on pod creation/deletion
  • f415b1ba add ready status for provider network
  • 09283849 avoid Pod IP to be the same with node internal IP
  • 70fbbecc remove subnet's spec.underlayGateway field
  • 96b0c118 add support for custom routes
  • 45aafca2 Add missing metadata directive in VpcNatGateway example
  • 0380d64c use util.hostNameEnv instead KUBE_NODE_NAME
  • 38e04f34 chore: change wechat image
  • 5df9fdd4 fix typo
  • 4a7dd734 perf: add fastpath and tuning guide
  • 3d8cdb6c update node labels and provider network's status.readyNodes when provider network is not initialized successfully in a node
  • 8596ddc9 fix issues in underlay networking
  • 7724990d add external vpc switch
  • ffef618d update versions in docs and yamls
  • 6e8d5c80 update Go to version 1.16
  • 3deb5770 fix IPv6-related issues
  • 2e4922d5 ci: use stable version
  • dcda11d6 fix: bad udp checksum when access nodeport
  • f12e5ee5 fix port-security, address parameters should be merged into one
  • f03d4350 docs: optimize description
  • b5b5bdb8 ensure provider nic is up
  • b5bbed38 fix uninstall.sh
  • 3ba5168c some optimizations
  • 9ae0b3c3 fix gofmt lint
  • 410d9329 fix multi-nic.md
  • 5e9e41ac fix dual stack cluster created by kind
  • 386d6160 remove external egress gateway from additionalPrinterColumns
  • 70ae50ef fix default bind socket of cni server
  • 56025ede if the string of ip is empty,program will die
  • 9492f63f if the string of ip is empty,program will die
  • 324dce2e fix underlay networking on node reboot
  • f7077d58 add judge before use the index about cidrBlocks and ips
  • f25b1ae2 add validation check function
  • bda102a7 docs: add wechat qcode
  • 14ccbeb3 feat: security group
  • 992a09d3 delete subnet AvailableIPs and UsingIPs para
  • 057ade92 fix: panic when node has nil annotations
  • 59869daa append pod/exec resource for vpc nat gw
  • 3ed2fe26 update comment for SetInterfaceBandwidth
  • e1caa594 update qos process
  • 80e5e2ba fix LoadBalancer in custom VPCs
  • bb1146ee Support Pod annotations control port mirroring
  • 4c4b0900 fix docs
  • a04d964d externalOvnRouters is ok with 0
  • 9524c93f delete attachment ips
  • 6dd6a51d fix external_ids:pod_netns
  • cbe8ae68 add switch for network policy support
  • dc56d238 fix subnet e2e
  • e3daee83 ignore empty strings when counting lbs
  • 81ce45c2 fix iptables
  • e9ea6a0f fix issue #944
  • 1cb57358 fix openstackonkubernetes doc bugs
  • fcdb0106 add switch for gateway connectivity check
  • 4dc4624f fix cleanup.sh
  • 4fb97407 security: fix CVE-2021-33910
  • 41b6429c delete ecmp route when node is deleted
  • 5bd96ac7 fix: if nftables not exists do no exit
  • 6c5efbc3 update wechat contract method
  • e449b8ea delete overlapped var subnet
  • 2427a4b3 add designative nat ip process for centralized subnet
  • 1595eac5 fix ipsets
  • 7e24e7d6 update underlay e2e testing
  • 27c649a5 match chassis until timeout
  • df76038a fix CRD provider-networks.kubeovn.io
  • d1c7a2ee fix: set vf mac
  • 949c28c2 update qos ingress_policing_burst
  • 8a05bdc8 add field defaultNetworkType in configmap ovn-config
  • 1810dfc3 keep subnet's vlan empty if not specified
  • 4e28600d delete ecmp route when node is not ready
  • d145f575 add del learned routes when remove ovnic
  • 6499e585 [kubectl-ko] support trace in underlay networking
  • 23d84f0a fix subnet available IPs
  • eced6bac fix bug for deleting ovn-ic lrp failed
  • a4abbb2e add node internal ip into ovn-ic advertise blacklist
  • 2ec0aa74 underlay/vlan network refactoring
  • ead2c65f chore: update ovn to 21.03
  • 651a634d security: fix CVE-2021-3121
  • 8cff6851 list ls with label to avoid listing ts failure
  • 3fd9c7ac Update log error
  • 0fe67258 delete the process of ip crd delete in cni delete request
  • 9049fc72 update networkpolicy process
  • a5b22a21 modify func name Additonal to Additional
  • 0cd5dcfe fix uninstall.sh execution in OVS pods
  • b4ce83a2 perf: enable tx offload again as upstream already fix it
  • 9ca47b65 label lr, ls and lsp, and add label filter when gc
  • 37a045a3 security: add go build security options
  • bdf91846 feat: ko support cluster operations status/kick/backup
  • efdce464 docs: update docs about vlan/internal-port/kubeconfig
  • ced43405 add judge before use slices's index
  • 3d98d762 update kind to version v0.11.1
  • e1e63cfa adapt to vfio-pci driver
  • 205f5712 fix IP/route transfer on node reboot
  • a3cac539 add master check when a node adding to a cluster and config sb/nb address
  • b98afeef update installation scripts
  • 2d750cbf enable hw-offload
  • 64b9abae do not delete statefulset pod when update pod
  • 4359c198 fix: node route should filter out 'vpc'
  • 744e6577 feat: lb switch
  • 7ec2f994 docs: show openstack docs and docker image status
  • 5484387f fix: clean up gateway chassis list for external gw
  • acc95f1d add doc for openstack/kubernetes hybrid deploy
  • e2973c4f configure OVS internal port after dummy interface
  • 8608b7e5 some fixes in vlan initialization
  • 872340c8 clean up vpc service
  • fde89914 feat: vpc load balancer
  • 8ed91be4 fix: lsp may lost when server pressure is high
  • 42fbe86e fix: check crds when controller start
  • a5fef59b start evpc ph1
  • 31ee8c10 start evpc ph1
  • 44db142e ci: retry arm build when failed
  • 96c13985 update ecmp notes
  • 8c169322 add interface name in cni response
  • aa88e2a2 add nicType for offload
  • eb387428 1.Support to specify node nic name 2.Delete extra blank lines
  • cb8cc645 ignore update pod nic annotation when is not nil
  • 3a4347b9 set default UnderlayGateway to true in vlan mode
  • a0d78920 unify logical entity list funcs (#863)
  • 9e563d84 ci: remove dpdk ci
  • e48a0894 correct vlan e2e testing
  • f690085d fix: remove rollout check
  • 2b2df3dc adapt internal tcpdump
  • 2531779a update docker buildx install method
  • eef1b0aa fix: remove wait ovn sb
  • 2e59e81c fix: ci issues
  • df47c489 fix: cleanup kube-ovn-monitor resource
  • 598cffdd fix multi-nic.md
  • f4b75bd0 fix: acl overlay issues
  • 2fe4fe1d ci: split ovn/ovs into base image
  • db2b7b06 add judge before use slices's index
  • 3e259ae9 update version to v1.7 in docs
  • eb54dc03 update master version to v1.8.0

Contributors

  • Mengxin Liu
  • Ruijian Zhang
  • Tobias
  • feixiang43
  • hzma
  • lhalbert
  • lut777
  • pengbinbin
  • pengbinbin1
  • wang_yudong
  • xieyanker
  • xuhao
  • zhang.zujian
  • zhangzujian
  • 范日明
  • 马洪贞

v1.7.3 (2021-10-09)

  • 6329a275 release: prepare for 1.7.3
  • a17dd60d fix: disable periodically gc
  • 26a355d9 fix installation scripts
  • be8b5ea7 fix StatefulSet down scale
  • 506e95d5 fix: init node with wrong ipamkey and lead conflict
  • 7fed7ee3 refactor: mute ovn0 ping log and add ping details
  • 9110bcef fix: wrong alias for iptables
  • 18053abd fix: northd probe issues
  • 698d92c6 fix IPAM for StatefulSet
  • 0c1baacb append externalIds for pod and node when upgrade
  • 905b789f security: update base image
  • 7d86e2c5 fix gc lsp statistic for multiple subnet
  • 6ce5cd8b fix: kubeclient timeout
  • c3b72cff fix: serialize pod add/delete order
  • 530a3dd0 refactor: reuse waitNetworkReady to check ovn0 and slightly improve the installation speed
  • 121c9a41 perf: increase ovn-nb timeout
  • 1f97edcc fix: re-check ns annotation to avoid annotations lost
  • c79244fc perf: do not diagnose external access
  • 6bc241fc reactor: remove ovn ipam options
  • 74ab9aa1 perf: switch's router port's addresses to "router"
  • a5791a01 fix e2e testing
  • 6505e2e4 fix variable referrence
  • d1f14509 fix nat-outgoing/policy-routing on pod startup

Contributors

  • Mengxin Liu
  • hzma
  • lut777
  • zhangzujian

v1.7.2 (2021-09-08)

  • cd650db4 fix: VLAN CIDR conflict check
  • 4cabb12c perf: use link alias to filter packet
  • af4a1983 security: fix CVE-2021-3538
  • c6daff2a prepare for release v1.7.2
  • 18241707 initialize ipsets on cni server startup
  • cf32ab1e delete residual ovs internal ports
  • 7d94413f fix: ovn-northd svc flip flop
  • 316d141e fix subnet conflict check for node address
  • d44273e9 update comment for SetInterfaceBandwidth
  • 06810be2 update encap ip by node annotation periodic
  • 99ec3d4a delete subnet AvailableIPs and UsingIPs para
  • c57c6dbc fix ipset on pod creation/deletion
  • ef9dbc5b add ready status for provider network
  • 8906e457 avoid Pod IP to be the same with node internal IP
  • 85b57239 update node labels and provider network's status.readyNodes when provider network is not initialized successfully in a node
  • 078c0c8b fix issues in underlay networking
  • 2919288a fix IPv6-related issues
  • aaf56e65 ci: use stable version
  • 25609873 fix: bad udp checksum when access nodeport
  • 78077f34 ensure provider nic is up
  • 154f21c3 fix uninstall.sh
  • 7a4c5a59 fix gofmt lint
  • 169a3256 if the string of ip is empty,program will die
  • 1065c8e4 fix dual stack cluster created by kind
  • dd756c05 fix default bind socket of cni server
  • 6ebbbbf4 update kind to v0.11.1
  • ad2b08ec fix underlay networking on node reboot
  • 2ba31cc1 append pod/exec resource for vpc nat gw
  • 7831f803 fix: panic when node has nil annotations
  • 554cc044 update qos process
  • a47d9297 delete attachment ips
  • b633ab3c fix external_ids:pod_netns
  • b3190ef8 fix subnet e2e
  • ae3cc954 ignore empty strings when counting lbs
  • a9bee809 fix iptables
  • 5cd1b14e fix image version
  • a93e2dec fix cleanup.sh
  • 0e3c1cbc security: fix CVE-2021-33910
  • 50da96ae delete ecmp route when node is deleted
  • 851dd303 fix: if nftables not exists do no exit
  • e48c985b delete overlapped var subnet
  • 1dfcf6df match chassis until timeout
  • 4f09a0d5 update qos ingress_policing_burst
  • a63de27a fix ipsets
  • cc51be3d update underlay e2e testing
  • 7cd02fef fix CRD provider-networks.kubeovn.io

Contributors

  • Mengxin Liu
  • Ruijian Zhang
  • feixiang43
  • hzma
  • lut777
  • zhangzujian
  • 范日明

v1.7.1 (2021-07-15)

  • 1b289a22 ready for release v1.7.1
  • 795fbdf0 add field defaultNetworkType in configmap ovn-config
  • dc440c76 keep subnet's vlan empty if not specified
  • 7b7eef98 update ecmp notes
  • d26850de delete ecmp route when node is not ready
  • 72a73fb6 delete the process of ip crd delete in cni delete request
  • 22a296e5 fix subnet available IPs
  • b6076028 [kubectl-ko] support trace in underlay networking
  • 0b877b96 underlay/vlan network refactoring
  • 7c529a18 adapt internal tcpdump
  • 10481d9b fix bug for deleting ovn-ic lrp failed
  • 1adb788f add node internal ip into ovn-ic advertise blacklist
  • f9d542ee security: fix CVE-2021-3121
  • 498c7dd1 feat: ko support cluster operations status/kick/backup
  • d812c746 fix uninstall.sh execution in OVS pods
  • fd512511 perf: enable tx offload again as upstream already fix it
  • f41d5742 security: add go build security options
  • feedaca8 fix IP/route transfer on node reboot
  • 5406d701 add master check when a node adding to a cluster and config sb/nb address
  • 136ead43 do not delete statefulset pod when update pod
  • 1ef87e13 fix: node route should filter out 'vpc'
  • 0761fe7a some fixes in vlan initialization
  • 63122eb8 fix: clean up gateway chassis list for external gw
  • 96e22451 ci: remove dpdk ci
  • 7003890e correct vlan e2e testing
  • dcdf75a3 configure OVS internal port after dummy interface
  • 9b70842a fix: lsp may lost when server pressure is high
  • 1f48f9fd 1.Support to specify node nic name 2.Delete extra blank lines
  • 8c37d4b9 ignore update pod nic annotation when is not nil
  • 00e2e009 set default UnderlayGateway to true in vlan mode
  • f11cdf94 fix: remove rollout check
  • 2d67471d fix: remove wait ovn sb
  • ba7d6553 fix: cleanup kube-ovn-monitor resource
  • 1e1da5a5 fix: acl overlay issues
  • 00681fb0 update version to v1.7 in docs

Contributors

  • Mengxin Liu
  • Ruijian Zhang
  • hzma
  • lut777
  • xuhao
  • zhangzujian
  • 范日明
  • 马洪贞

v1.7.0 (2021-06-03)

  • 907b34d2 prepare for release v1.7.0
  • ab727c98 diagnose: check sa related resource
  • 9bd2e9f8 fix: do not nat route traffic
  • 3bd14945 fix: release ip addresses even if pods not found
  • f4794183 fix typo
  • 2a2160d0 docs: add description of custom kubeconfig
  • 3dd99a79 fix: add address_set to avoid error message
  • ba40fd67 optimize Makefile
  • cb95f4e6 update vlan document
  • 31a96f21 add label to avoid deleting other
  • 6cd6b34b delete unused log
  • 34734010 add ovs internal-port for pod network interface
  • 9e715623 support underlay mode with single nic
  • d6c96d07 support underlay mode with single nic
  • c1d3fc3c fix: add node to pod allow acl
  • ed49cd49 traffic rate for multus nic
  • 1b00190f add ovs internal-port for pod network interface
  • 775aec6c Add maintainers
  • 59847bc1 add e2e tests for external egress gateway
  • a0006ebf fix e2e testing on macOS
  • 0ff3d6bb ci: fix lint and scan error
  • 33e0ec27 fix: check if provider network exists
  • 9e53d4cc update subnet document
  • a2e4fec4 rename ExternalGateway to ExternalEgressGateway
  • 1ccaec9a fix installation doc
  • 34fb4759 fix: forward policy to accept
  • bbbd091f ci: fix lint error
  • 28cf4cc2 traffic rate for multus nic
  • 0dcf6930 refactor: optimize service.go and subnet.go
  • 7719fc2a Check and Fetch all ValidatePodNetwork errors
  • 123ead48 add judge about nic address
  • 17fe2302 implement new feature: external gateway
  • 01686e3e start_ic should run regardless of ts port
  • c733c7e4 add judge before use index
  • ba709afb specify ovs ops on diff nodes
  • 07089205 fix mss rule
  • 4458a4d7 Get node info from listerv1.NodeLister(index)
  • 19a7aed9 Clean up the wrong log
  • 27fe348a refactor: optimize subnet.go
  • ddfd06b2 Optimise the redundancy code
  • bd55c104 Handler the parse config error before used
  • bd3f13dc ci: remove 3-master e2e
  • 9e827e7b Remove the unnecessary rm command
  • 587bbcdb Use localtime when the kube-ovn installed
  • a52a38d0 Fix the different time from container and host
  • 436e788b add issue template
  • 5fc3cfb1 add bgp doc
  • f16fcb9a support afisafis
  • d94af379 feat: support graceful restart
  • 26a02725 fix: del might panic if duplicate delete
  • 41226d86 fix: lr-route for eip using nic-ip, and not external gateway addr.
  • d176dac7 feat: support announce service ip
  • 136571d1 Fix some minor nits for docs
  • 2781a47b add bpg options in bgp.md
  • 1b788902 add Opstk&K8s ic doc
  • cc843816 add holdtime function
  • b9e96339 fix: do not re-generate ts port
  • 610f132b fix: ignore root path doc ci
  • bd1e0975 fix: do not gc learned routes
  • be2048be feat: add vxlan in README.md
  • cbb2ddd4 fix: get_leader_ip always return fist node ip
  • 03f597ce fix: remove tty error notification
  • cc353bbc fix ovn nb reconnect
  • af2709df add docs for 'multus ovn network'
  • ffc20a91 add vpc nat gateway docs
  • a1ae937a fix: static route for default multus network
  • 0489a72a feat: support vxlan tunnel
  • 77f65449 append delete ovn-monitor in ovn.yaml
  • c5ee49e8 split ovn-central and ovn-monitor
  • e0890f72 Fix mount the systemid path
  • fc92fbc2 handle update deployment vpc-nat-gw
  • 686681ef refactor: remove function genNatGwDeployment's return error
  • 064c3851 Update crd vpc-nat-gateways.kubeovn.io for pre-1.16
  • a0dfea1b fix incorrect method for gateway node judgement
  • 86c99c37 Fix the 'multus how to use' link
  • 1acb4992 fix multi nic
  • 9c5ca0a0 fix duplicate imports
  • b4750853 fix: compatible with JSON format
  • 2a2cd27a fix: leader may change during startup, use cluster connection to set options.
  • aad81548 fix SNAT on pod startup
  • 388119a7 fix development guide
  • 2efdac9a fix gofmt
  • c264bec1 fix: configure nic failed when ifname empty
  • 763f8bcf fix: port does not support vlan tag update
  • a60764ea fix build dev image
  • faa7bc6a support hybrid mode for geneve and vlan
  • d8472ba7 remove extra space
  • f9c836b6 fix: compatible with no norhtd svc
  • bbed09d3 fix chassis check for node
  • dfdf5f8b optimization for ovn/ovs status metric
  • 9e82ca3d fix: release norhtd lock when power off
  • 1fbfad52 add single node e2e
  • f9ae6258 fix get pod attachment net
  • 0632e253 support ovn defautl attach net
  • 2c1a8aa6 add network-attachment-definitions clusterRole
  • 808a3a93 feat: multus ovn nic
  • 28e14188 update node ip when upgrade to dualstack
  • 0265747d add details for prerequisite
  • 3e42f684 Add Ecmp Static Route for centralized gateway
  • b72e9d50 fix: disable offload if geneve port exists
  • f4e665b9 disable offload for genev_sys_6081
  • acade01b refactor: optimize ovn command when error exists
  • 5251c272 add net-attach-def ClusterRole
  • 5126aedd add lsp with external_id
  • ec7f7425 feat: multus ovn nic
  • 19e23d14 fix: check ovn0 status
  • c02afc00 livenessprobe fail if ovn nb/ovn sb not running
  • 983831e0 fix: disable checksum offload for ovn0 to prevent kernel issue
  • d9f166b7 ignore ip6tabels check for v4 hostIP
  • 680802d6 improve the code style of [import group ordering]
  • 8e38a79d fix wrong sequence
  • 1e0d77c3 update arm64 build
  • 638a03ac fix: restart ovn-controller to force update flows
  • 14784fbb fix: disable checksum validation
  • a04dcfb6 Use public network effective image
  • 24095d7f update usingips check when update finalizer for subnet
  • 54ef1af2 fix dependency
  • 717688d6 Update vendor.
  • 496fc4dd trim space the port_binding's output
  • 00fdac83 refactor: remove unnecessary config logic
  • b06dad21 update maintainers
  • e5d9584e docs: deprecated webhook
  • 92cc4ed3 fix: add missing ovn-ic binary
  • c0349e4f chore: change action name
  • 1a448ecc chore update artworks
  • 537588c3 fix: delete chassis_private when delete node
  • a50fb181 Add 'kubectl ko trace' command's default namespace
  • fad9473d Add 'kubectl ko trace' command's default namespace
  • 77c92ca8 perf: reclaim heap memory after compaction.
  • f3df58ae remove the old script
  • b69f389c docs: add CNCF description
  • 08b95e74 fix: gc not exist node error
  • 9f661461 perf: use new option to decrease ovn-sb size
  • 9dc06908 fix: return err
  • 8bd44608 docs: add faq section
  • 482e6f71 add vpc nat gateway Dockerfile
  • b0e983f0 feat: vpc nat gateway
  • 951e31ea add node address allocate check when init
  • 215c8f45 update upgrade for ovn-default and join subnet
  • a537985d fix: lint error
  • d0d3e89c fix: add missing ovn-ic-db schema
  • 98651014 update subnet ip num calculate
  • d6bb03bd fix: masq traffic to ovn0 from other nodes
  • 0a7024f9 refactor: reduce duplicated GetNodeInternalIP function
  • ac294669 chore: update go version
  • 0e9c717d chore: move build dependency from alauda to kubeovn
  • 64fac57a feat: support set default gateway in install script
  • ca71de3c docs: fix typos
  • 582cb9ce Update install-pre-1.16.sh
  • 62fc20ef Update install.sh
  • 87859ac1 go import repo change to kubeovn
  • 1152744e feat: vpc nat gateway
  • 298138e4 Resolving typo.
  • 4701fcb3 filter repeat exclude ips
  • e3931f0e modify ip count for dual
  • a4ddb360 docs: add ARCHITECTURE.MD
  • 9eee6f93 refactor: reduce duplicated function
  • a7b687a0 fix: add dpdk pod name
  • d32b423b Update cleanup.sh
  • 9faaff57 Update cleanup.sh
  • df065f94 test: add service e2e
  • 60e49f5a modify test problem
  • 2dbcb76f fix: kube-proxy check
  • 512044cb ovn-central: set default db addr same with leader node to fix nb and sb error 'bind: Address already in use'
  • c755ef23 fix: reset ovn0 addr
  • a168c282 tests: add e2e for ofctl/dpctl/appctl
  • f6dc58a5 ci: replace image
  • b1d03370 docs: clarify dpdk usage scenario
  • 21d9940b ci: update kind version and set timeout
  • 8b833ee5 Update install-pre-1.16.sh
  • 4b6f0eed Update install.sh
  • f6f88501 refactor: remove duplicated call
  • 473cdc48 Update kubectl-ko
  • 1ca17686 Fix missing square brackets in curl ipv6
  • 136336b2 Modify the health check for kube-proxy port, compatible with ipv6
  • 98a56dec Update controller.go
  • c52c067b Fix: remove IsNotFound when get configmap external gateway
  • 74fa7729 Fix: check kube-proxy's 10256 port healthz
  • d594554d fix: ip6tables check error
  • b17f2373 Add MAINTAINERS file
  • 2783c134 add vpcs && vpcs/status clusterRole
  • 31e1226e Update install-pre-1.16.sh
  • f1efaa7f delete connect to ovsdb for ovn-monitor
  • f69ae44b cni-bin-dir,cni-conf-dir configurable Fix kubeovn#655
  • f5999b3b Update install.sh
  • e13448aa Error: unknown command "ko" for "kubectl"
  • 7d56483a Fix: wrong split in FindLoadbalancer function
  • 34776b8a vlan nic support regex
  • f23093c4 fix underlay gateway flood logs
  • 4a9901aa fix: check required module before start
  • 8d4694f8 docs: add underlay docs
  • 3713b253 chore: update ovn to 20.12 and ovs to 2.15
  • 1ab87130 prepare for next release
  • a94803d3 fix: make sure northd leader change
  • 03487cf2 fix: make sure ovn-central is updated one by one
  • 9d3b78a3 fix: restart when init ping failed
  • 6e09c77d fix: increase raft timer to avoid leader flap
  • 87aa15cb pass golangci-lint
  • 134ea89d add golangci-lint to github actions
  • d325e7e0 fix pod terminating not recycle ip when controller not ready
  • 87af4ca9 fix: add new iptable cleanup commands
  • d287063b modify static gw changed problem
  • fcf3be19 Fix wait pod network ready take long time
  • 0b4e4458 fix: when address is empty, skip route/nat deletion
  • ed0e9ba2 fix: update ipam cidr when subnet changed
  • 06816efb modify test problem for dual-stack upgrade

Contributors

  • Amye Scavarda Perrin
  • JinLin Fu
  • Mengxin Liu
  • Wan Junjie
  • Yan Wei
  • Yan Zhu
  • caoyingjun
  • chestack
  • cmj
  • danieldin95
  • halfcrazy
  • hzma
  • luoyunhe1
  • lut777
  • pengbinbin1
  • sayicui
  • wangyudong
  • withlin
  • xieyanker
  • zhangzujian
  • 范日明
  • 马洪贞

v1.6.3 (2021-06-03)

  • 8e28e139 prepare release for v1.6.3
  • 2818eb86 fix: do not nat route traffic
  • be20533b fix: release ip addresses even if pods not found
  • 1bdff344 security: fix crypto CVE
  • f29958db fix: add address_set to avoid error message
  • 04fc67f8 fix: add node to pod allow acl
  • 91d43e01 Handler the parse config error before used
  • 634f672b fix: del might panic if duplicate delete
  • 7795b519 fix: do not re-generate ts port
  • 37ed257f fix: get_leader_ip always return fist node ip
  • 548a5c55 fix: do not gc learned routes
  • 4e8a7c99 fix: remove tty error notification
  • 9e060882 fix ovn nb reconnect
  • 1b35390f perf: reclaim heap memory after compaction.
  • 703174a8 fix: leader may change during startup, use cluster connection to set options.
  • 14de53e7 fix SNAT on pod startup

Contributors

  • Mengxin Liu
  • Yan Zhu
  • caoyingjun
  • chestack
  • zhangzujian
  • 马洪贞

v1.6.2 (2021-04-18)

  • 2f421181 release 1.6.2
  • 23c9240d fix: configure nic failed when ifname empty
  • 6574447f remove extra space
  • b65d41ad fix chassis check for node
  • bec0d0f4 fix: compatible with no norhtd svc
  • ef76fcc0 fix: release norhtd lock when power off
  • fefcff27 fix: disable offload if geneve port exists
  • a1679923 disable offload for genev_sys_6081
  • 12e6b0b1 rebuild to fix openssl cve
  • a5862310 fix: check ovn0 status
  • 03956f1f ignore ip6tabels check for v4 hostIP
  • 35f06495 livenessprobe fail if ovn nb/ovn sb not running
  • 3f15c923 fix: disable checksum offload for ovn0 to prevent kernel issue
  • 54f5102d add node address allocate check when init
  • 07bea935 update arm64 build
  • 995022e6 fix: restart ovn-controller to force update flows
  • 21c312c0 fix: disable checksum validation
  • 73bb2d83 update usingips check when update finalizer for subnet

Contributors

  • Mengxin Liu
  • danieldin95
  • halfcrazy
  • hzma
  • lut777

v1.6.1 (2021-03-09)

  • 87e11481 fix: add missing ovn-ic binary
  • dbf53f6e release for 1.6.1
  • 2dcd7584 fix: delete chassis_private when delete node
  • f8aeb887 chore: update ovn to 20.12 ovs to 2.15
  • 35190e1c refactor: reduce duplicated function
  • afe9a9f0 fix: masq traffic to ovn0 from other nodes
  • 96880905 ovn-central: set default db addr same with leader node to fix nb and sb error 'bind: Address already in use'
  • cce2bb4d fix: reset ovn0 addr
  • 8152bdf5 Fix: wrong split in FindLoadbalancer function
  • 33b0e186 fix underlay gateway flood logs
  • 9a8e7870 fix: check required module before start
  • b70f6103 fix: make sure northd leader change
  • ecbd43e2 fix: restart when init ping failed
  • 4b752988 fix pod terminating not recycle ip when controller not ready
  • 0e794679 fix: add new iptable cleanup commands
  • cf725882 Fix wait pod network ready take long time
  • bbb7edc6 fix: when address is empty, skip route/nat deletion
  • 7121fa80 fix: update ipam cidr when subnet changed
  • 99d8981f prepare for 1.6.1
  • 8559014f move build dependency from alauda to kubeovn
  • 9184aa93 update upgrade for ovn-default and join subnet
  • f11c6b3c update subnet ip num calculate
  • e5e6e302 fix: ip6tables check error
  • 23dcd2a3 delete unused import packet
  • 5ead6b1d filter repeat exclude ips
  • 30217437 modify ip count for dual
  • b4560b99 modify test problem
  • b4b55581 add vpcs && vpcs/status clusterRole
  • d6f14147 delete connect to ovsdb for ovn-monitor
  • 98859f9b modify static gw changed problem
  • 255e20c6 modify test problem for dual-stack upgrade

Contributors

  • Mengxin Liu
  • Wan Junjie
  • Yan Zhu
  • cmj
  • hzma
  • wangyudong
  • xieyanker

v1.6.0 (2021-01-04)

  • d47ccb67 release: 1.6.0
  • b8f221bf docs: add docs for vpc
  • 12cf140b fix typo
  • b13cb7bf ci: update go version to 1.15
  • 7f9eefed Fix: replace the command to run the script via 'sh' with 'bash'
  • 076ab28f Fix the default mtu parameter's describe
  • 8e608667 modify network policy process
  • 171dcff6 upgrade for subnet from single protocol to dual-stack
  • bbc68577 add network policy adapt for dual-stack
  • c01766cf feat: update ovn to 20.09
  • 315831aa docs: prepare docs for 1.6.0 release
  • a1e7974f perf: add pprof to pinger
  • 627956e9 doc for dual-stack
  • 02751bf4 Update the container nic name use the CNI_IFNAME parameter which passed by kubelet
  • 14f36814 ci: enable docker experimental feature
  • 9a785fc9 ci: build multi arch image
  • 03ff96e6 (np) fix mulit np rule and gateway bug
  • 20f3fcb1 fix start-db.sh echo message
  • 52b39d76 fix: iface check error
  • 072870b1 fix: add missing ping due to deb build
  • efdd3913 fix: find iface by full match first then regex match
  • f922ef75 fix: livenessProb/readinessProb might conflict when run logrotate at same time
  • f1fe2b2e modify subnet and ip crds
  • a2d76df7 modify service vip parse error
  • 8aa5d0a4 update vendor
  • 44381c74 update client-go
  • 96c1c100 fix: np with multiple rules
  • 87e6ded0 modify loop error for get metrics
  • 1e2a7477 diagnose: add more diagnose info
  • aea12bae ci: trigger action when yamls change
  • 7bd6bf39 fix: ha e2e failed
  • 56774aaf fix: allow traffic to gateway
  • a78c2661 fix: cni-server default encap ip use right interface ip
  • 7d31e617 feat: change default build image to ubuntu
  • e2cd7871 add build for dualstack
  • ddda6332 feat: distributed eip
  • a6fef94a Add CNI modify for dualstack
  • a54bfc28 Debian: Add debian docker image support
  • 8a01cb1c Add adaption for dualstack, part of daemon process.
  • 9738af18 chore: reduce binary size
  • 6483d6e3 modify build problem
  • dab50b33 Append ip monitor to document
  • 34428819 license: fix felix dir
  • 2ef66568 feat: support advertise subnet route
  • ecbd01a6 Add IP Num Alert
  • d64e6931 Add adaption for dualstack, part of controller process.
  • 7246037b convert ip to string
  • 2aecb3d9 add pod static ip validate
  • b58e01b6 chore: add COC and roadmap
  • 7bbdc00f fix: move felix to self repo to remove bird license
  • d2b570cf Add license scan report and status
  • 86584b95 fix: default network
  • ccea68bf release for 1.5.2
  • 07347501 fix: ovn-ic support ssl
  • 4d8b186a fix: nat rules can be modified
  • f535460f fix: remove svc cidr routes
  • e3082cd7 ci: specify ubuntu version to make github action happy
  • f6cce9a0 fix: specify exec container to mute warning message
  • 2215c05f feat: remove cluster ip dependency for ovn/ovs components
  • a9747b31 fix: add resources limits to avoid eviction
  • 00571196 fix: vpc static route manage
  • 8deb5d8d fix: validate vpc subnet
  • 256ac6c5 Fix external-address config description
  • ccda611a Fix the problem of confusion between old and new versions of crd
  • f2f64801 fix: ovn-central check if it exits in NODE_IPS
  • 5b973a89 fix: check ipv6 requirement before start
  • 86941a8a feat: add ovs/ovn log rotation
  • ef41733c add node ping total count metric
  • 5e6bd911 diagnose: add ovs-vsctl show to diagnose results
  • 7301e992 fix: nat rules
  • 6026028a fix: masq other nodes to local pod to avoid nodrport triangle traffic
  • d41110ec Update install.sh to allow dpdk limits configuration (#546)
  • a128d7fc format
  • b6ad17b5 test: e2e uses IPVS cluster by default
  • f6951cf5 chore: update go version to 1.15
  • 1f703c3d fix: tolerate all taints
  • f8ace73c feature: add vpc static route
  • f62cb4eb fix: cleanup script error
  • 3bac21f7 docs: modify eip config description
  • 1f07d96b security: remove sqlite to mute cve warning
  • 015bc625 test: add e2e for kubectl-ko
  • aa86e406 feat: pinger can return exit code when failed
  • 2cf855ec fix: nat traffic that from host to svc
  • cbe0ad55 docs: new feat for disable-ic, regex iface and pod bind subnet
  • 5dbaf2d3 sync the default subnet of ns by vpc's status
  • dd2234f4 fix: devault vpc lb/dns
  • 32c49c1b fix: shutdown vpc workqueue
  • 67076d62 fix: subnet CIDRConflict
  • d5b819b0 fix: subnet bind to ns
  • 921190ef feature: add vpc crd
  • b5ecac95 Release and gc the resources in vpc
  • 15eca9dc fix: gc logic router
  • 91fec563 gc and clean vpc
  • 7a0e28b9 Remove the VPC while removing the default subnet
  • 99217cec feature: support custom vpc
  • 9d821bce chore: refactor log
  • 240cd800 feat: iface support regexp
  • 94b6b1b5 feat: support disable interconnection for specific subnet
  • 652190c3 modify review problems
  • 7285581a docs: v1.5.1 changelog
  • 47f0acbb perf: accelerate ic and ex gw update
  • bafac87e fix: missing version date
  • 8ef12007 fix: check multicast and loopback subnet
  • 3b20abb0 monitor: refactor grafana dashboard
  • f9cbaea5 docs: do not allow install to namespace other than kube-system
  • 559e2cd8 update review problems for ovn_monitor
  • 1c356a36 monitor: add more dashboard
  • aa7b20d7 chore: add vendor
  • 97d64f93 Updated Dockerfile.dpdk1911 to use Centos8 and DPDK19.11.4
  • b4aa989d fix: CodeQL scan warning
  • a27e1760 fix: ipt wrong order and add cluster route
  • 9eb96dd7 opt: only allow specifies default subnet
  • 0da634e8 chore: reduce image size
  • 93bf5423 feature: Support for namespace binding multiple subnets
  • e37159c2 docs: fix multi nic subnet options
  • c35a159b docs: add pinger/controller/cni metrics
  • 7f5b4237 fix: add default ssl var for compatibility
  • 59b70696 Add monitor doc
  • bb130cac fix: ipv6 network format when update subnet
  • dc62d105 fix: ipv6 len mismatch
  • 6088851d chore: add version info
  • 88001376 metrics: add ovs client latency metrics
  • 3cafd5f8 Add OVN/OVS Monitor
  • 89567776 docs: performance test method
  • 0c975e34 fix: wrong port porto for udp
  • f3759b78 docs: add descriptions of local files
  • b46acd6c ci: add github code scan
  • 2444d51a fix: do not adv join cidr when enable ovn-ic
  • 292bf4ca perf: remove default acl rules
  • 20e82c39 prepare for next release
  • 9324491c fix: use internal IP when node connect pod
  • c1870c1a ci: change to docker buildx action
  • a1976650 fix: delete pod when marked with deletionTimestamp
  • c3c4f1c5 fix: remove not alive pod in pg

Contributors

  • Emma Kenny
  • Mengxin Liu
  • MengxinLiu
  • Wan Junjie
  • emmakenny
  • feixiang
  • fossabot
  • hzma
  • luoyunhe1
  • wiwen
  • xieyanker
  • 范日明

v1.5.2 (2020-12-01)

  • 498d74d7 release for 1.5.2
  • 271c07bd fix: nat rules can be modified
  • 21a5edbd fix: add resources limits to avoid eviction
  • 762f1c21 ci: specify ubuntu version to make github action happy
  • bd4019dd fix: remove svc cidr routes
  • 93a89753 Fix the problem of confusion between old and new versions of crd
  • 031f5436 Fix external-address config description
  • 3371ce4c fix: ovn-central check if it exits in NODE_IPS
  • cf4c4127 fix: check ipv6 requirement before start
  • 186d90cd feat: add ovs/ovn log rotation
  • b5dfc1c6 diagnose: add ovs-vsctl show to diagnose results
  • 37cbb713 add node ping total count metric
  • 6ed020c2 fix: tolerate all taints
  • 1a4f48a0 chore: update go version to 1.15
  • e0fc3331 fix: masq other nodes to local pod to avoid nodrport triangle traffic
  • f6ff2780 Update install.sh to allow dpdk limits configuration (#546)
  • 96636386 prepare for 1.5.2
  • 06d8b374 fix: cleanup script error
  • 5ddf72b2 security: remove sqlite to mute cve warning
  • 1fe42677 chore: refactor log
  • 0f1b74dc fix: nat traffic that from host to svc
  • 24b97cb0 feat: iface support regexp

Contributors

  • Mengxin Liu
  • emmakenny
  • hzma
  • xieyanker

v1.5.1 (2020-10-26)

  • bf860e26 release 1.5.1
  • cf96d6db opt: only allow specifies default subnet
  • 99e393ec feature: Support for namespace binding multiple subnets
  • fa4006c0 perf: accelerate ic and ex gw update
  • c327535a fix: check multicast and loopback subnet
  • d74e2078 fix: CodeQL scan warning
  • df8530a3 fix: ipt wrong order and add cluster route
  • 33afdd18 fix: add default ssl var for compatibility
  • f14155e4 fix: broken rpm link
  • a99ecbee fix: ipv6 network format when update subnet
  • 5fbb92b0 fix: ipv6 len mismatch
  • bbda6a80 fix: wrong port porto for udp
  • 42b7aa12 fix: do not adv join cidr when enable ovn-ic
  • 34952c80 perf: remove default acl rules
  • 2ad71107 fix: use internal IP when node connect pod
  • c42d42f1 ci: change to docker buildx action
  • ba401065 fix: delete pod when marked with deletionTimestamp
  • f8a4e656 fix: remove not alive pod in pg

Contributors

  • Mengxin Liu
  • 范日明

v1.5.0 (2020-09-28)

  • c0a34b84 release: prepare for release 1.5.0
  • 95548457 perf: use podLister to optimize k8s calls
  • 6635f930 chore: enable ssl to default ci tests
  • 5f29fc30 security: change ovsdb file access to 600
  • 0e0a6887 docs: improve hw-offload
  • a1a215dc feat: support db ssl communication
  • e7a88c11 diagnose: show nb/sb/node info
  • 090624fd fix: pinger diagnose should use cmd args
  • fae393e3 fix: ipv6 get portmap failed again
  • b74189fe fix: ipv6 get portmap failed
  • f1c2f995 fix: delay mv cni conf to when cniserver is ready
  • 98bb7510 chore: update kind and kube-ovn-cni updateStrategy
  • 64640421 monitor: add cni grafana dashboard
  • 38adc18f monitor: add more kube-ovn-cni metrics
  • 36e9091d feat: update pinger dashboard
  • ab736d8f fix: issues with vlan underlay gateway
  • 2e5f0ecb feat: set more metadata to interface external_ids
  • 77c4a5f2 feat: grace stop ovn-controller
  • ebfc1530 refactor: fix bridge-mappings and refactor vlan code
  • 729ed3c7 fix: allow mirror config update
  • 84bb3c83 fix: cleanup v6 iptables and ipset
  • da493717 docs: add gateway docs and optimize others
  • ece4219f feat: integrate ovn sfc
  • 2b2e7a9a feat: support pod snat
  • 7a60b569 prepare for next release
  • e9933619 fix: ovn-ic-db restart failed
  • 115c1266 fix: stop ovn-ic when disabled
  • e9861444 fix: use nodeName as chassis hostname

Contributors

  • Mengxin Liu

v1.4.0 (2020-09-01)

  • 0f973a5a prepare for 1.4 release
  • 78ab9b1e fix: do not gc learned routes
  • 3ddb9614 chore: add psp
  • f847e5be perf: apply udp improvement
  • a8f0d228 chore: sync pre-1.16 install.sh
  • 0918e9a2 ci: use go 1.15
  • f43a1027 fix: add prob timeout to wait script finish
  • c5ca0b1b resolve review problem
  • 28d5a8aa chore: suppress verbose logs
  • df54b0d1 fix: do not gc ic logical_switch
  • b9ab4d66 fix: only gc VIF type logical_switch_port
  • 731fef99 docs: update docs
  • e9ae40a9 chore: add back lflow reduction optimization
  • 022c7903 chore: update ovs to 2.14.0
  • 8e93c054 fix: remove duplicated gcLogicalSwitch
  • c3b7457a fix: modify src-ip route priority
  • e0096f9b fix: missing session lb to logical switch
  • 6fbcc198 feat: ovn-ic integration
  • 0ea62c16 fix:resolve gosec check problem
  • b2d0393b feat: do not perform masq on external traffic
  • 4e1ad126 chore: fix patch failure
  • a7c460a4 fix: subnet acl might conflict if allowSubnets and subnet cidr cover each other
  • 0dd85e46 feat: acl log drop packets
  • 6d048632 chore: remove juju log dependency
  • 9535c26b feat: gw switch from overlay to underlay
  • 4b095580 chore: prepare for 1.4 release
  • c9d07e1d fix: prevent update failed logs
  • a98ec5bd fix: ko use external-ids to find related nic
  • 1cad39ce fix: forward accept rules

Contributors

  • Mengxin Liu
  • hzma

v1.3.0 (2020-07-31)

  • 45d30713 chore: add build date
  • c9953234 release: update 1.3.0 docs
  • 34627a66 fix: call appendMssRule function to resolved mss according problem
  • bb961ae5 dpdk: add kmod, pdump and proc-info tools
  • cf47ee1b fix: ci image tags
  • 46768179 chore: optimize dpdk build
  • 5c107687 docs: add hw-offload docs and resolve some issues
  • e64c6132 fix: if sriov device, do not delete the host nic
  • f55c3fba fix: use keymutex to serialize pod add/delete operation
  • d438574d feat: assign a pod as the gw
  • 1806a572 ci: add arm build to normal ci process
  • 5aed1ef1 ci: add unfixed cve
  • 19201a36 ci: arm64 build accelerate
  • 63fbc008 chore: add logs to sriov interface
  • 82140c93 ci: add ipv6 install e2e
  • c3814c72 feat: recycle lsp at runtime
  • 3f9d7c92 fix: qos error
  • e460541d fix: variable error
  • de9493f2 ci: modify cache usage
  • 1994e5c3 ci: save ci time
  • 5c4d5a3c chore: use j2 to render different kind.yaml
  • d1a184ef fix: set qlen for ovn0
  • a2d969e8 prepare for 1.3 release
  • 3a018a86 chore: update build.sh
  • be7c68f2 fix: log error
  • 31723f66 chore: check ovn-sb connectivity from ovn-ovs probe
  • d017f1f2 fix: available ips calculation issues
  • 309c8080 perf: add hw offload
  • 4b8faede docs: add gateway qos doc
  • 32a9af2b ci: remove master taint
  • 3865220d chore: update cni dependencies
  • 8e032392 feat: session service
  • 34b7cba7 Revert "perf: use policy-route to replace src-ip route"
  • 1d13d5c3 Revert "fix: ipv6 policy route"
  • 65813640 Revert "fix: reset address_set when delete subnet"
  • e6817a65 fix: reset address_set when delete subnet
  • dbc968ca test: statefulset without ippool
  • 9440a11f match apps/* statefulset
  • ca122027 fix: ipv6 policy route
  • 54acd0c3 feat: support gw qos
  • b8f03248 perf: use policy-route to replace src-ip route
  • 83dc420e Solve the problem of non-standard statefulset creation mode
  • 32e6d572 fix: arm64 build missing env
  • c93f0d84 action: use commit as image tag
  • 732b240c Add libatomic to docker image
  • 9d5294bb chore: save disk space when building
  • 4b1f5244 chore: change crd form v1beta1 to v1
  • e6fb0fcb kubectl-ko: add ovs-tracing info
  • 61aa3ba2 pinger: add metrics to resolve external address
  • ef0f3b27 chore: update ovn to 20.06
  • 961f5f1a update changelog
  • 85f2e0e0 fix some version in docs
  • f989bdd8 fix: rename variable
  • 990bf983 fix: minor fix
  • 8d7045b3 feat: use never used address first to reduce conflict
  • db2516c2 ci: use tmpfs to accelerate e2e
  • 79272376 fix: create/delete order might lead ip conflict
  • b27d7545 ci: do not push image when pr
  • a1f53e67 clean up all white noise
  • a4f40370 security: update yum repo
  • 270c825c fix node's annottaions overwrited incorrectly
  • 5adc5a44 Fix typo in multi-nic.md
  • 3ac92a15 Userspace-CNI updates in dpdk.md
  • 76e72b7e Remove empty lines from DPDK Dockerfile
  • 9b5c018a security: update loopback to fix CVE
  • bd1f2acf Make OVS-DPDK start script more robust
  • 3bfc39f8 Reduce DPDK image size
  • 4917afe9 fix: add back privilege for ipv6
  • 8121afd6 Config support for OVS-DPDK
  • ad30e687 security: add trivy scan and fix image CVEs
  • 06256a09 docs: modify arm build
  • 9d2e64a4 docs: update development
  • bd975768 refactor: use ovs.Exec replace raw command
  • 32024ba8 chore: add gosec to audit code security
  • 1db9046d prepare for next release
  • aa72ba6c fix: arm build
  • 628f5c5e fix: change version in install.sh

Contributors

  • Gary
  • Haocheng Liu
  • Mengxin Liu
  • MengxinLiu
  • Patryk Strusiewicz-Surmacki
  • Xiang Dai
  • ckji
  • laik
  • linruichao

v1.2.1 (2020-06-22)

  • 755f57bc release 1.2.1
  • 88b847ca fix: create/delete order might lead ip conflict
  • 0656f63c fix node's annottaions overwrited incorrectly
  • 86e20a09 security: update loopback to fix CVE
  • b1ea8a36 fix: add back privilege for ipv6
  • 2a877530 fix: arm build
  • 8ec2c159 fix: change version in install.sh

Contributors

  • Mengxin Liu
  • MengxinLiu
  • ckji

v1.2.0 (2020-05-30)

  • 280a1bd3 chore: prepare for release 1.2
  • 4342187d chore: prepare for release 1.2
  • 4a52bb43 DPDK doc update and small image reduction
  • b055cc68 Add OVS-DPDK support, for issue 104
  • f7fdd2dc fix: pod get deleted between configure nb and patch pod
  • e13dc5ac fix: native vlan and delete subnet issues
  • 44b5a6a7 fix: trigger github action when dist dir change
  • 3a2ee051 fix: update ovn patch
  • 6e1589cc chore: improve log
  • 00f98489 fix: gc lsp for pod that not alive
  • 701e9efd feat: support underlay without vlan encap
  • 83ad499f chore: optimize kube-ovn-cni log
  • 84b6cdcf fix: gc node lsp
  • 7aafd944 chore: remove vagrant
  • 92ccf729 fix: dst route policy might be empty
  • 6c89a046 feat: in vlan mode if physical gateway exists, no need to create a virtual one
  • 1d5c6958 perf: add amd64 compile flags back
  • b0f0947d fix: init ipam before gc, other wise routes will be deleted
  • dbc23c5e fix: patch ovn to lower src-ip route priority to work with ovn-ic
  • 5a763820 fix: return early if allocation is not ready
  • b03c3768 chore: remove networks crd
  • 2853438c perf: remove more stale lflow
  • 0665f2e8 ci: run ut and e2e in github action
  • e71b68c0 fix: check svc and endpoint protocol
  • 508eb7a2 perf: reduce lflow count
  • 5f8b9b40 fix: when podName or namespace contains dot, lsp cannot be deleted correctly
  • 27c72560 fix: wrong subnet status
  • f0b17a69 feat: change pod route when update gateway type
  • 13283daf feat: refactor subnet and allow cidr change
  • 23821d6c fix: use kubectl to avoid tls handshake error
  • e647cc6c chore: reduce logs
  • aef4336d feat: only show error log of kube-ovn-controller
  • a9ab0bc2 fix: map concurrent panic
  • 2dd13b23 fix: ipv6 related issues
  • 86c443e7 fix: validate if subnet cidr conflicts with svc ip
  • eb4cb1b3 fix: validate if node address conflict with subnet cidr
  • 7f595ee0 feat: github action
  • 1046b572 fix: wait node annotations ready before handle pods
  • 7a0151cc fix: check ovn-nbctl socket in new dir
  • 0dc76768 fix: error log found in scale test
  • 04715943 fix: concurrent panic
  • da14eaeb feat: use bgp to announce pod ip
  • 909b5a00 release 1.1.1
  • ab834b5a fix: labels might be nil
  • 0c0824db fix: ping output format
  • ce27fb31 monitor: make graph more sensitive to changes
  • 9b05fccf docs: update vlan docs
  • d0544d89 docs: update docs
  • 28aef840 feat: improve install/uninstall
  • 8d853656 refactor: refactor cni-server
  • d99ffff0 refactor: controller refactor
  • 8f1f0135 feat: modify install.sh for vlan type network
  • cfe9d276 feat(vlan): vlan network type
  • edd0ea81 feat(vlan): vlan network type
  • c63accf4 fix: yaml indent and ovn central dir
  • 5bc84d7b docs: chinese wechat info
  • feaec4dd fix: fork go-ping and apply patches
  • 58f73b33 chore: update kind node to 1.18 and ginkgo
  • d274a979 docs: add arm build steps
  • d061fc3c fix: mount etc/origin/ovn to ovs-ovn
  • f8d6fd5c add support for multi-arch build
  • 953f5be7 docs: change the cidr to avoid misunderstanding
  • 5c5b9e08 feat: diagnose check if dns/kubernetes svc exist
  • 7c6d6784 OVS local interface table mac_in_use row is lower case, but pod annotation store mac in Upper case.
  • b53a2153 prepare for 1.2
  • 0d60df32 fix: separate log for no address and wrong address
  • a4106b2d docs: format docs

Contributors

  • Gary
  • Mengxin Liu
  • MengxinLiu
  • Yan Zhu
  • fangtian
  • linruichao

v1.1.1 (2020-04-27)

Contributors

  • MengxinLiu

v1.1.0 (2020-04-07)

  • de9b003d release 1.1.0
  • 4511a16b feat: use buildx to reduce image size
  • 370689e7 test: check host route when add/del a subnet
  • 0df863b6 [DO NOT REVIEW] vendor update: introduce klogr and do some tidy
  • eeba4c01 [webhook] init logger for controller-runtime
  • ae187152 test: add node test
  • e1038d22 fix: acl and qos issues
  • a4c81ba7 feat: expose iface in install.sh
  • b6967f57 fix: remove auto checksums
  • dbc85075 perf: offload udp checksum if possible
  • bdb23691 release v1.0.1
  • cdf4de3f perf: add x86 optimization CFLAGS
  • 131181c2 chore: add scripts to build ovs
  • 2b5dd72b fix: lost route when subnet add and is not ready
  • 9032ac84 fix: ip prefix might be empty
  • d1654e15 chore: reduce image size
  • 464e991e chore: modify nodeSelector label to support k8s 1.17
  • 2814a1d5 fix: use ovn-appctl to do recompute
  • 0eaedd99 docs: multi nic
  • dd1923c3 feat: ip cr support multi-nic
  • b2ce6f08 fix: update in svc 1.1.1.1 may del svc 1.1.1.10
  • 20bb7a78 feat: add cni side logical to support ipam for multi-nic
  • 1319eb5d feat: add basic allocation function for multus-cni
  • 8f6997a9 fix: only delete pod that restart policy is Always
  • 3a2de9cd perf: only enqueue updatePod when needed
  • 0f7b9d4c fix: add iptables to accept container traffic
  • bdd021c0 feat: check kube-proxy and coredns in diagnose
  • 502f18cf feat: add label param in install script
  • 5a1cf371 perf: recycle ip and lsp for pod that in failed or succeeded phase
  • d1968584 fix: add inactivity_probe back
  • 417a001b feat: check if crds exist in diagnose
  • e65a9d09 fix: gc static routes
  • 91829d24 fix: still delete lsp if pod not in ipam
  • 7d22430d fix: delete chassis from sb when delete node
  • 5f5df34e fix: missing label selector
  • 9822dba9 feat: add one script installer
  • 479437a3 fix: cleanup in offline environment
  • e707eb96 feat: diagnose check ds/deployment status
  • 3c786f57 refactor: the ipam now has lock itself no need for ippool queue
  • 9211486b fix: if pod is evicted, recycle address
  • 2546deaf fix: use uuid to fetch vip
  • 51f06bd6 refactor ipam
  • 2336dc75 release 1.0.0
  • 7d918f56 refactor pod controller
  • 866db995 merge images into one
  • 8296a9e7 fix:enablebash alias option in Dockerfile CMD scripts
  • 68d87ec2 webhook: use global variables to avoid repeated map constructing
  • cf2784ad remove useless fields in webhook.yaml
  • 657b5a29 remove leader-election for webhook manager
  • 2bcf0d28 feat: update to 20.03.0 ovn

Contributors

  • Bruce Ma
  • MengxinLiu
  • Your Name

v1.0.1 (2020-03-31)

  • 706cdfc3 release v1.0.1
  • a51a672a fix: lost route when subnet add and is not ready
  • 576cf776 fix: ip prefix might be empty
  • 0e1670bf fix: update in svc 1.1.1.1 may del svc 1.1.1.10
  • 63f05e5a fix: add inactivity_probe back
  • bad0c43f fix: use uuid to fetch vip

Contributors

  • MengxinLiu

v1.0.0 (2020-02-27)

  • f40ce553 release 1.0.0
  • 28238794 prepare for 1.0
  • a036b37b fix: add back missing lsp gc
  • 44d53c24 fix: delete lb if it has no backend
  • b8498a83 metrics: expose cni operation metrics
  • a75f9991 refactor: refactor server.go
  • c88221ee fix: disable ovn-nb inactivity_probe
  • 957654f9 fix: wait for container network ready before cni return
  • 870d20b0 refactor: refactor controller.go
  • 2885419d ovn: pick upstream performance patch
  • 11598739 docs: add the development guide and fix the lint
  • 0be25516 docs: add companies using kube-ovn section
  • d56552b8 docs: add community information
  • 8edd0225 fix: alleviate ping lost
  • 632bbc5e refactor: refactor ovn-nbctl.go
  • 8aafa415 docs: modify the readme
  • 60ce7659 fix: pinger percentage error
  • 276a28cf fix: add kube-ovn types to default scheme
  • 998a9e63 refactor: cniserver
  • a5d339b2 docs: update docs
  • dc92afa3 fix: add a periodically recompute to ovn-controller to avoid inconsistency
  • 8488ae2a fix: add timeout to pinger access ovs/ovn
  • ff1ff145 fix: when subnet cidr conflict requeue the subnet
  • e31a08ec fix: add runGateway to wait.Until
  • 18239073 fix: restart nbctl-daemon if not response
  • 839308e0 feat: display controller log in kubectl-ko diagnose
  • 8e6c3d62 refactor: separate normal check and ovn specific check
  • c9783181 fix: do not return not found err
  • f19e5596 fix: move components to kube-system ns and add priorityClass
  • a5d298db feat: cniserver check allocated annotation before configure pod network
  • 8f72b7eb fix: set ovn-openflow-probe-interval
  • 3838a46d pinger: add port binds check between local ovs and ovn-sb
  • f8248cec fix: if cidr block not ends with zero, reformat it
  • dff1d648 fix: resync iptables
  • 40fab55f update version
  • 920053c5 pinger: add timeout for dns resolve
  • 513d2bd9 e2e: add basic framework and tests for e2e

Contributors

  • Bruce Ma
  • Mengxin Liu
  • MengxinLiu
  • withlin

v0.10.2 (2020-01-09)

  • c5f49f24 release 0.10.2
  • 61b7dded fix: add a periodically recompute to ovn-controller to avoid inconsistency
  • 9de9d0b5 fix: when subnet cidr conflict requeue the subnet
  • dca15914 fix: add runGateway to wait.Until
  • f16209b4 fix: restart nbctl-daemon if not response

Contributors

  • Mengxin Liu

v0.10.1 (2020-01-02)

  • 09e27cea release: v0.10.1
  • fafa5607 fix: do not return not found err
  • 858d3331 fix: set ovn-openflow-probe-interval
  • 641d6f86 pinger: add port binds check between local ovs and ovn-sb
  • 8435a335 fix: if cidr block not ends with zero, reformat it
  • 1f5df246 fix: resync iptables

Contributors

  • Mengxin Liu

v0.10.0 (2019-12-23)

  • 9747d540 docs: update changelog
  • adf5071e fix: address in ep might be empty
  • 182bb151 fix: cniserver wait ovs ready
  • 518c0a78 fix: wrong deletion in gc lb and portgroup
  • 2492a166 ovn: add memory patch to slow down memory increase
  • d0bd71fd fix: wait default and node logical switch ready
  • 23cad463 fix: podSelector in networkpolicy should only consider pods in the same ns
  • ca5539f0 fix: do not add unallocated pod to port-group
  • d5ed1ee7 release 0.10.0
  • 3c62ea29 ovn: pick up commit from upstream
  • 4c966c37 feat: pinger support check an address out of cluster.
  • f0096078 chore: double quote shell variables
  • 83364b52 fix: cluster mode db will generate lots listen error log
  • d9e1cd1c fix: gc logical_switch_port form listing pods and nodes
  • a5dc8bb9 fix: some init and cleanup bugs
  • a5eb5e7f fix: ovn-cluster mode
  • a6f0dd14 feat: exclude_ips can be changed dynamically
  • d9c59434 update ovn to 2.12.0-1
  • 06eceb3b feat: use label to select leader to avoid pod status misleading
  • aa53c7dd fix: ip conflict when use ippool
  • 59044330 docs: add v0.9.1 changelog
  • 5efbea9f fix: block subnet deletion when there any ip in use
  • a1dc8c11 plugin: kubectl plugin now expose ovs-vsctl to each node
  • d3c6a71c fix: nbctl need timeout to avoid hang infinitely
  • 77e58903 perf: as lr-route-add with --may-exist will replace exist route, no need for another delete
  • d4a51bdc perf: when controller restart skip pod already create lsp
  • 7617fa79 fix: when delete node recycle related ip/route resource
  • f4e87476 fix typo in start-ovs.sh
  • 9b88e084 perf: skip evicted pod when enqueueAddPod and enqueueUpdatePod
  • e4818624 fix: use ep.subset.port.name to infer target port number
  • 0d8ae20c fix: if no available address delete pod might failed related to #155
  • bbd4257d kind: support reload kube-ovn component in kind cluster
  • d0479e90 perf: filter pod in informer list-watch and disable resync
  • 61a7a7b9 fix: index out of range err when create lsp
  • 623661ef prepare for next release
  • 1643c7f0 kind: support to install kube-ovn in kind
  • 9611599f fix: mount /var/run/netns that kind will use it to store network ns files

Contributors

  • Mengxin Liu
  • qsyqian

v0.9.1 (2019-12-02)

  • 5d4714c1 release v0.9.1
  • 847ef8b0 fix: block subnet deletion when there any ip in use
  • e0fbfea6 fix: nbctl need timeout to avoid hang infinitely
  • dd63c5a4 fix: when delete node recycle related ip/route resource
  • 4d0ad6c7 fix typo in start-ovs.sh
  • 646a177c fix: use ep.subset.port.name to infer target port number
  • 9ae58a81 fix image tag
  • 3b793d4a fix: mount /var/run/netns that kind will use it to store network ns files
  • 093770dd fix: index out of range err when create lsp

Contributors

  • Mengxin Liu
  • qsyqian

v0.9.0 (2019-11-22)

  • 53db261a release: v0.9.0
  • 1984cbe8 feat: when use nodelocaldns do not nat the address
  • 446999f4 docs: add description about relation of cidr and static ip allocation
  • 6f1854f9 Check the short name of kubernetes services which is independant of the cluster domain name.
  • c6f8efeb fix: some grafana modification
  • 40144160 fix: add missing cap
  • 7c464d69 chore: update ovn and other minor fix
  • ac537152 fix re-annotate namespaces when subnet deleted
  • fe2f2612 fix: add ingress_policing_burst to accurate limit ingress bandwidth
  • 20b2c83d fix: network unreachable when add egress qos for pod
  • 758dbc1c fix: err when add egress qos
  • bdfd351d fix: remove privilege=true from long run container
  • 0859da1f perf: optimize pod add
  • 3718851d fix: add keepalive to ovn-controller
  • 6ad98106 feat: add controller metrics
  • b87ed0ee If pod have not a status.PodIP skip add/del static route
  • b9108fba fix: ippool pod static route might lost during leader election
  • a2e24de6 fix: static route might lost during leader election
  • 8202a188 feat: add grafana config and modify metrics.
  • cae0ef27 fix: only keep the last iface-id
  • f3528f23 fix: add missing gc
  • 3791ba29 fix: gc resource when start controller
  • f970615b fix: watch will break if timeout is set
  • ef285b21 feat: pinger add apiserver check metrics
  • d33685e6 fix: avoid conflict when init

Contributors

  • Mengxin Liu
  • QIANSHUANGYANG [钱双洋]
  • Sébastien BERNARD
  • Yan Zhu

v0.8.0 (2019-10-08)

  • 6b57f61b release v0.8.0
  • 6ed722f9 fix: loss might be negative number
  • 7c0517b5 feat: pinger prometheus support
  • e23bd552 feat: support pinger
  • d837aa12 chore: update ovs/ovn
  • 4246cb74 feat: gateway ha
  • e27c9e54 chore: remove ovs-ipsec and update go to 1.13
  • ba3084eb feat: add kubectl plugin
  • 54a465d1 docs: add comparison
  • 38be68d6 fix: pod should be accessed from node when acl applied
  • e62f0ab0 enable portmap by default to support hostport
  • 80de8e58 feat: add port security to pod port
  • 4849f056 feat: add node switch allocated ip cr
  • 34e8406e prepare for next release

Contributors

  • Mengxin Liu
  • MengxinLiu
  • Yan Zhu

v0.7.0 (2019-08-21)

  • 933fd8d2 release: bump v0.7.0
  • 7e2bdf52 fix: add default excludeIps and check kern version
  • 31544abb fix: deal with ipv6 connection str
  • 0f8f2aad fix missing condition when subnet is private
  • d37da1bc add subnet status
  • 4a5c5498 fix: acl related issues
  • 62a395e6 Revert "add subnet status field"
  • b8f1d9ef add missing subnets/status operation permission
  • 6c119ad1 Update cleanup.sh
  • b08ece4f feat: add exclude_ips annotation to namespace
  • a2774ed0 fix: use pg-del to remove pg and acl, check if ports is empty before set pg
  • 422c6dc0 add subnet status
  • fde683ea feat: add subnet annotation to ns and automatically unbind ns from subnet.
  • 948e1306 docs: add cn docs link
  • 5278e105 feat: add default values to subnet
  • ea451a1a write back subnet name to ip label
  • 1c7121db chore: enable mirror in yaml and modify docs
  • db9783a3 fix: duplicate import in network_policy.go
  • 8a57747e fix: improve cni-conf name priority
  • 5f1436be fix: wait subnet ready before start worker.
  • 661387ef fix: check ls exists before handle it
  • 9e05f533 docs: add more installation tools.
  • dccb93c7 docs: add support os and notes.
  • c6a160b3 Update subnet.md
  • 31ad00bd feat: add ip info to ip crd
  • ad7b5c2f feat: update logo
  • 44c3077c feat: add logo
  • 55d7fd6f feat: reserve vport for statefulset pod
  • 7a3c8a6a docs: add crd installation
  • aa016c1b fix: modify default header length
  • 85b40690 fix: do not create exist logical switch
  • 36294366 chore: prepare for next release

Contributors

  • MengxinLiu
  • Yan Zhu
  • ftiannew
  • halfcrazy
  • shuangyang.qian

v0.6.0 (2019-07-22)

  • 463d6253 docs: add crd/ipv6 docs and bump version 0.6.0
  • 103c23af fix build error
  • 9d173ba0 feat: support ipv6-only mode
  • 05566017 add webhook docs
  • 766cec9b add admission webhook for static ip
  • 2abeacb4 docs: add support platform version
  • ed7264ea feat: use subnet crd to manage logical switch
  • 1e5c9f6c Use k8s hostname, fix #60
  • 87367295 fix: remove dependency on cluster-admin
  • e0864a03 chore: use go mod to replace dep
  • 96ec620d docs: update mirror feature to readme
  • 855d834f feat: support traffic mirror
  • d1c3ea85 prepare for next release

Contributors

  • MengxinLiu
  • Yan Zhu

v0.5.0 (2019-06-07)

  • 782e04be chore: bump v0.5.0
  • a27f8339 fix: wrong mtu
  • 44707167 feat: support user define iface and mtu
  • f8d8e186 fix: remove mask field from ip annotation
  • 55090404 feat: auto assign gw for controller config and expose more cmd args
  • 48da0fe1 feat: add pprof and use it as probe
  • 8984c90b feat: set kernel args when start cniserver
  • 208a1dfc feat: support network policy
  • c8d208fb prepare for next release

Contributors

  • MengxinLiu

v0.4.1 (2019-05-27)

  • 5a2cb093 bump version to v0.4.1
  • f8e8b001 fix: manual static ip allocation and automatic allocation should use different ip validation
  • 031924d1 Fix json: cannot unmarshal string into Go value of type request.PodResponse kubeovn#33
  • 24259dbf fix: use ovsdb-client to get leader info
  • 3541b6cf fix: use default-gw as default-exclude-ips and expose args to docs
  • 69c48538 to cleanup all created resources, not only kube-ovn namespace.
  • 9361bb43 prepare for next release

Contributors

  • MengxinLiu
  • Yan Zhu
  • fanbin

v0.4.0 (2019-05-16)

  • 509bf4a4 feat: bump version to 0.4.0
  • 2e414519 feat: support expose pod ip to external network
  • 8992bbe3 fix: check conflict subnet cidr
  • 0f9d1e4b fix: start informer when controller is leader
  • 71c15d65 feat: validate namespace/pod annotations
  • 89491b57 fix: wait node-gw info ready
  • 0d86393d fix: use ovn/ovs-ctl to health check
  • 278ccfe5 feat: remove finalizer dependency improve svc performance
  • 8f962673 fix: reuse node ip and mac annotation
  • b8f85143 Add ha for ovn dbs and simplify makefile
  • 3c617451 feat: merge ovn-nbctl request
  • b5ac7da4 feat: separate ip pool pod and add parallelism to workers
  • ce105dff Mute logrus log for ipset Dont need to change the vendored code.
  • 657470c8 Fix klog cant use V module The side affect of this commit is glog's V module not work.
  • 5429f51b feat: use ovn macam to allocate mac for static ip pod
  • 5a8958cd feat: update ovn to 2.11.1
  • ca036f9e Add vagrantfile
  • 660c0570 fix: use tag version yaml url
  • bc66671c chore: fix go-report golint issues
  • 12a4bec9 ha for kube-ovn-controller
  • b7d0f599 cleanup unused code
  • 756831d7 docs: add network topology
  • c0559487 chore: Minor updates to gateway.md
  • 21e34e9f chore: Gateway documentation touch-ups
  • aa0b2b7c chore: QoS documentation touch-ups
  • 3ec0098a chore: Subnet Isolation documentation touch-ups
  • 524845e9 chore: Static IP documentation touch-up
  • b510016c chore: Subnet documentation touch-ups
  • 524f7d3f chore: Installation Guide touch-ups
  • a1995d03 chore: README touch-up.

Contributors

  • Kai Chen
  • MengxinLiu
  • Yan Zhu

v0.3.0 (2019-04-19)

  • 79c0642e docs: bump version
  • cb2f50da fix: acl rule error
  • 1a6f492a fix: init node gw before run controller
  • 75c514a1 fix: external dns issues
  • 13068892 feat: use daemon ovn-nbctl to improve performance and cleanup unused dns code
  • 24cda418 Implement centralized gateway.
  • 890934f4 chore: migrate from bitbucket to github

Contributors

  • MengxinLiu
  • Yan Zhu

v0.2.0 (2019-04-15)

  • adf655cb remove dns from ls and bump new version
  • ca21c6cb make filter table forward chain default accept
  • cd0ddf10 ipset exclude cluster service ip range
  • 1d753c8e fix: lb bugs
  • cb91d984 read cidr from ns annotation
  • e9998332 fix: remove dns table from nodeswitch and remove unused other_config:namespace
  • 049cab2c fix pod has no ip
  • 170c3c63 Distributed gateway implement
  • cebb8dfd fix: clean lost interface.
  • 4367ba07 feat: support subnet isolation
  • 1fe8c916 feat: support dynamic qos
  • e04bc093 fix: ovn restart issues
  • 014f1dcf fix: ovn restart issues
  • 3e78ddc3 fix: validate namespace switch annotations
  • 44eafc50 fix lint && add docker build
  • cb3e01a4 feat: update yaml, add readiness/liveness probe, add pass shell args
  • 004deefd feat: support qos
  • d37264e4 feat: add simple gateway implementation

Contributors

  • Mengxin Liu
  • MengxinLiu
  • Yan Zhu