Kube Subnet Manager

This release introduces a new experimental feature. The Kubernetes API server can now be used as a datastore instead of etcd. This makes deployment easier as flannel no longer directly relies on the presence of an etcd server. To use it, pass the -kube-subnet-mgr option to the flannel daemon.

This release also contains a large number of merged PRs (thanks everyone for all your contributions, please keep them coming) and some other build, documentation and other minor improvements.

Key PRs merged

kubernetes API server as datastore
#483 add a subnet manager backed by the kubernetes apiserver
#564 Improve kube subnet lease handling
#518 Fix the kube-flannel.yaml in order to work

AWS backend
#540 AWS VPC backend fixes and cleanups
#523 aws-vpc: Fix crash when route has vpc-endpoints
#524 aws-vpc: remove "blackholes"
#507 Update aws-vpc-backend.md

Key Bug fixes
#522 Fixed #521: flanneld hang on at initialEvtsBatch := <-evts because of…
#495 The docker daemon syntax change addressed
#576: backend/vxlan: Set the netmask of the IP used for the vxlan device

Logging
#565 network manager: Improve logging
#555 vxlan logging verbosity
#574: backend/vxlan: Improve the comments and logging

Testing
#490 Add functional (end-to-end) testing
#503 Run e2e tests on travis

Fix logging issue

This is a small point release that fixes a logging issue.

For a complete list of changes v0.6.1...v0.6.2

Now with more pthread

This is a small point release that adds the pthread library to the busybox-based deploy images.

For a complete list of changes v0.6.0...v0.6.1

Bug fix and refactoring release

This is the first release in a while so it's rolling up a large number of small improvements and bug fixes.

• small docs changes
• overhaul of the build system
  • experimental support for arm and PPC. The images on quay.io are tagged with the version and architecture. This may change in future so the architecture becomes part of the image name.
  • image tags have a v prefix so they match the reported version and git tag name.
• improvements to stability and UX tweaks
• refactoring mainly driven by reservation support
• some new features
  • #455 Support VXLAN GBP
  • #409 Add cli args for etcd basic auth
  • #369 Add reservations to admin control subnet allocs
  • #356 Ability to revoke lease

For a complete list of changes v0.5.5...v0.6.0

NOTE: The deploy images for this version are broken - use version 0.6.1 instead

Bug fix release

• Bug fix: out of memory crash when vxlan used with bonded interfaces.

Maintenance release

While we're waiting for 0.6.0, this release picks few bug fixes and small improvements from master.

• Use official AWS api libs. Makes flannel work with eu-central-1. Thanks, @kdomanski
• In server mode, notify systemd of readiness once the server is listening. Thanks, @ingvagabund
• Masquerade host to flannel traffic
• Bug fix: close http connection during watch in client mode. Thanks, @jonboulle

Maintenance release

This release brings bug fixes, a missing feature needed for CNI integration and internal improvements.

New features:

• FLANNEL_NETWORK will be printed to subnet.env with the CIDR value of the whole network. Makes CNI integration possible.
• Add logos to docs

Bug fixes:

• Don't propagate own lease notifications to backends.
• Eliminate race in http request cancellations in the tests.
• Fix for kernels that report "special" ARP entries with nil IP that caused VXLAN to not work
• mk-docker-opts.sh -- -m options was not processed

Internal improvements:

• Switch to new etcd client lib
• Switch to using go-iptables lib
• Switch to using flagutils lib

NAT support and client/server TLS

New features:

• --public-ip allows specifying IP to publish in etcd. This helps with NAT traversal. Note that there's still no encryption so going across the WAN is risky without application level encryption. Thank you, @cusspvz
• Communication between client and server (for client/server mode) can optionally be encrypted by TLS. Also supports auth via client side certs.
• Docs for aws-vpc and gce. Thanks @robszumski and @MohdAhmad

Bug fixes:

• Ignore route to local ext IP in hostgw mode. Thank you, @lvlv
• Fix seg fault when aws subnet linked to main route table

Maintenance release

• aws-vpc -- flannel will disable Source/Dest IP check if granted ec2:ModifyInstanceAttribute permission. Thank, @MohdAhmad
• aws-vpc -- flannel won't complain about active route being deleted on flannel restart
• alloc - fix nil pointer deference bug
• Socket activation support added to server mode
• Better build instructions. Thank you, @kayrus

GCE backend, client/server and multi-network modes

New features:

• GCE backend -- analogous to AWS-VPC backend, this manipulates the GCE routes to provide no-encapsulation data plane. Thank you, @MohdAhmad
• Client/Server mode (experimental) -- ability to isolate etcd from nodes by proxying their requests through a server.
• Multi-network mode (experimental) -- run multiple networks at the same time with a single flannel daemon

Bug fixes and improvements:

• Error on start if extraneous args are passed in. Thank you, @jayunit100
• Do not reuse lease if config has changed and is incompatible with the lease.
• AWS-VPC: Auto-detect route table ID if DescribeInstances permission is granted. Thank you, @MohdAhmad
• VXLAN: Statically configure FDB entries. This fixes the first packet dropped issue. Thank you, @titanous and @MohdAhmad