From 6329a2750cf0e21f206d16d5e73dbc3b88cb7607 Mon Sep 17 00:00:00 2001 From: Mengxin Liu Date: Sat, 9 Oct 2021 11:34:12 +0800 Subject: [PATCH] release: prepare for 1.7.3 --- CHANGELOG.md | 27 +++++++++++++++++++++++++++ VERSION | 2 +- dist/images/generate-ssl-docker.sh | 2 +- dist/images/install-pre-1.16.sh | 2 +- dist/images/install.sh | 2 +- dist/images/ovn-ic-db-docker.sh | 2 +- docs/OpenStackK8sInterconnection.md | 2 +- docs/cluster-interconnection.md | 4 ++-- docs/high-available.md | 2 +- docs/install.md | 2 +- docs/vpc.md | 2 +- yamls/kube-ovn-ipv6.yaml | 8 ++++---- yamls/kube-ovn.yaml | 10 +++++----- yamls/ovn-dpdk.yaml | 2 +- yamls/ovn-ha.yaml | 4 ++-- yamls/ovn.yaml | 4 ++-- yamls/speaker.yaml | 2 +- 17 files changed, 53 insertions(+), 26 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index ee7d38b1b2f..5de9a10f044 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,5 +1,32 @@ # CHANGELOG +## 1.7.3 -- 2021/10/09 +### Performance +- switch's router port's addresses to "router" +- do not diagnose external access +- increase ovn-nb timeout + +### Bugfix +- fix nat-outgoing/policy-routing on pod startup +- fix variable reference +- fix e2e testing +- fix gc lsp statistic for multiple subnet +- re-check ns annotation to avoid annotations lost +- append externalIds for pod and node when upgrade +- fix IPAM for StatefulSet +- wrong link for iptables +- fix StatefulSet down scale +- fix getting LSP UUID by name +- fix installation scripts +- init node with wrong ipamkey and lead conflict +- serialize pod add/delete order +- kubeclient timeout +- update base image + +### Refactor +- remove ovn ipam option +- mute ovn0 ping log and add ping details + ## 1.7.2 -- 2021/09/02 ### Feature diff --git a/VERSION b/VERSION index 3b34d22941f..5f152d81a50 100644 --- a/VERSION +++ b/VERSION @@ -1 +1 @@ -v1.7.2 +v1.7.3 diff --git a/dist/images/generate-ssl-docker.sh b/dist/images/generate-ssl-docker.sh index 6d4b0ce29c0..951945482b6 100644 --- a/dist/images/generate-ssl-docker.sh +++ b/dist/images/generate-ssl-docker.sh @@ -2,7 +2,7 @@ set -euo pipefail exist=$(kubectl get secret -n kube-system kube-ovn-tls --ignore-not-found) if [[ $exist == "" ]];then - docker run --rm -v $PWD:/etc/ovn kubeovn/kube-ovn:v1.7.2 bash generate-ssl.sh + docker run --rm -v $PWD:/etc/ovn kubeovn/kube-ovn:v1.7.3 bash generate-ssl.sh kubectl create secret generic -n kube-system kube-ovn-tls --from-file=cacert=cacert.pem --from-file=cert=ovn-cert.pem --from-file=key=ovn-privkey.pem rm -rf cacert.pem ovn-cert.pem ovn-privkey.pem ovn-req.pem fi diff --git a/dist/images/install-pre-1.16.sh b/dist/images/install-pre-1.16.sh index 8a33c8080b3..5486d6648c3 100644 --- a/dist/images/install-pre-1.16.sh +++ b/dist/images/install-pre-1.16.sh @@ -11,7 +11,7 @@ CNI_CONF_DIR="/etc/cni/net.d" CNI_BIN_DIR="/opt/cni/bin" REGISTRY="kubeovn" -VERSION="v1.7.2" +VERSION="v1.7.3" IMAGE_PULL_POLICY="IfNotPresent" POD_CIDR="10.16.0.0/16" # Do NOT overlap with NODE/SVC/JOIN CIDR POD_GATEWAY="10.16.0.1" diff --git a/dist/images/install.sh b/dist/images/install.sh index 59b0fadc0f2..794b1c95444 100755 --- a/dist/images/install.sh +++ b/dist/images/install.sh @@ -14,7 +14,7 @@ CNI_CONF_DIR="/etc/cni/net.d" CNI_BIN_DIR="/opt/cni/bin" REGISTRY="kubeovn" -VERSION="v1.7.2" +VERSION="v1.7.3" IMAGE_PULL_POLICY="IfNotPresent" POD_CIDR="10.16.0.0/16" # Do NOT overlap with NODE/SVC/JOIN CIDR POD_GATEWAY="10.16.0.1" diff --git a/dist/images/ovn-ic-db-docker.sh b/dist/images/ovn-ic-db-docker.sh index c50b2fd2b04..9939e6d1141 100644 --- a/dist/images/ovn-ic-db-docker.sh +++ b/dist/images/ovn-ic-db-docker.sh @@ -1 +1 @@ -docker run -d --network=host -v /etc/ovn/:/etc/ovn -v /var/run/ovn:/var/run/ovn -v /var/log/ovn:/var/log/ovn kubeovn/kube-ovn:v1.7.2 bash start-ic-db.sh +docker run -d --network=host -v /etc/ovn/:/etc/ovn -v /var/run/ovn:/var/run/ovn -v /var/log/ovn:/var/log/ovn kubeovn/kube-ovn:v1.7.3 bash start-ic-db.sh diff --git a/docs/OpenStackK8sInterconnection.md b/docs/OpenStackK8sInterconnection.md index 9f8e7b6fee0..c12cb88d0d7 100644 --- a/docs/OpenStackK8sInterconnection.md +++ b/docs/OpenStackK8sInterconnection.md @@ -17,7 +17,7 @@ This document is based on Openstack *Victoria* and Kube-OVN *1.7* #### 1. Run Interconnection Controller in a Kubernetes node which can be accessed by an Openstack gateway node. ```shell -$ docker run --name=ovn-ic-db -d --network=host -v /etc/ovn/:/etc/ovn -v /var/run/ovn:/var/run/ovn -v /var/log/ovn:/var/log/ovn kubeovn/kube-ovn:v1.7.2 bash start-ic-db.sh +$ docker run --name=ovn-ic-db -d --network=host -v /etc/ovn/:/etc/ovn -v /var/run/ovn:/var/run/ovn -v /var/log/ovn:/var/log/ovn kubeovn/kube-ovn:v1.7.3 bash start-ic-db.sh ``` #### 2. Create `ovn-ic-config` for kubernetes cluster in `kube-system` namespace. diff --git a/docs/cluster-interconnection.md b/docs/cluster-interconnection.md index d389851cbe3..660935db8ab 100644 --- a/docs/cluster-interconnection.md +++ b/docs/cluster-interconnection.md @@ -13,7 +13,7 @@ only L3 connectivity for gateway nodes is required. ## Auto Route Step 1. Run Interconnection Controller in a region that can be accessed by other cluster ```bash -docker run --name=ovn-ic-db -d --network=host -v /etc/ovn/:/etc/ovn -v /var/run/ovn:/var/run/ovn -v /var/log/ovn:/var/log/ovn kubeovn/kube-ovn:v1.7.2 bash start-ic-db.sh +docker run --name=ovn-ic-db -d --network=host -v /etc/ovn/:/etc/ovn -v /var/run/ovn:/var/run/ovn -v /var/log/ovn:/var/log/ovn kubeovn/kube-ovn:v1.7.3 bash start-ic-db.sh ``` 2. Create `ovn-ic-config` ConfigMap in each cluster `kube-system` namespace. Edit and apply the yaml below in each cluster. ```yaml @@ -85,7 +85,7 @@ For manually adding routes, you need to find the ## Manually Route Step 1. Same as AutoRoute step 1,run Interconnection Controller in a region that can be accessed by other cluster ```bash -docker run --name=ovn-ic-db -d --network=host -v /etc/ovn/:/etc/ovn -v /var/run/ovn:/var/run/ovn -v /var/log/ovn:/var/log/ovn kubeovn/kube-ovn:v1.7.2 bash start-ic-db.sh +docker run --name=ovn-ic-db -d --network=host -v /etc/ovn/:/etc/ovn -v /var/run/ovn:/var/run/ovn -v /var/log/ovn:/var/log/ovn kubeovn/kube-ovn:v1.7.3 bash start-ic-db.sh ``` 2. Create `ic-config` ConfigMap in each cluster. Edit and apply the yaml below in each cluster. Note that `auto-route` is set to `false` ```yaml diff --git a/docs/high-available.md b/docs/high-available.md index 6fbb84588d3..d504448aae8 100644 --- a/docs/high-available.md +++ b/docs/high-available.md @@ -8,7 +8,7 @@ Change the replicas to 3, and add NODE_IPS environment var points to node that h replicas: 3 containers: - name: ovn-central - image: "kubeovn/kube-ovn:v1.7.2" + image: "kubeovn/kube-ovn:v1.7.3" imagePullPolicy: Always env: - name: POD_IP diff --git a/docs/install.md b/docs/install.md index ea82f62c915..e14c92962ac 100644 --- a/docs/install.md +++ b/docs/install.md @@ -41,7 +41,7 @@ If you want to try the latest developing Kube-OVN, try the script below JOIN_CIDR="100.64.0.0/16" # Do NOT overlap with NODE/POD/SVC CIDR LABEL="node-role.kubernetes.io/master" # The node label to deploy OVN DB IFACE="" # The nic to support container network can be a nic name or a group of regex separated by comma, if empty will use the nic that the default route use - VERSION="v1.7.2" + VERSION="v1.7.3" ``` After v1.6.0 `IFACE` support regex, e.g. `IFACE=enp6s0f0,eth.*` diff --git a/docs/vpc.md b/docs/vpc.md index 64f099b9861..c2b03859a53 100644 --- a/docs/vpc.md +++ b/docs/vpc.md @@ -161,4 +161,4 @@ spec: ## Custom VPC limitation - Custom VPC can not access host network -- Not support DNS/Service/Loadbalancer \ No newline at end of file +- Not support DNS/Service/Loadbalancer diff --git a/yamls/kube-ovn-ipv6.yaml b/yamls/kube-ovn-ipv6.yaml index f0a2b1e18a2..8e422c6e5c8 100644 --- a/yamls/kube-ovn-ipv6.yaml +++ b/yamls/kube-ovn-ipv6.yaml @@ -38,7 +38,7 @@ spec: hostNetwork: true containers: - name: kube-ovn-controller - image: "kubeovn/kube-ovn:v1.7.2" + image: "kubeovn/kube-ovn:v1.7.3" imagePullPolicy: IfNotPresent command: - /kube-ovn/start-controller.sh @@ -117,7 +117,7 @@ spec: hostPID: true initContainers: - name: install-cni - image: "kubeovn/kube-ovn:v1.7.2" + image: "kubeovn/kube-ovn:v1.7.3" imagePullPolicy: IfNotPresent command: ["/kube-ovn/install-cni.sh"] securityContext: @@ -128,7 +128,7 @@ spec: name: cni-bin containers: - name: cni-server - image: "kubeovn/kube-ovn:v1.7.2" + image: "kubeovn/kube-ovn:v1.7.3" imagePullPolicy: IfNotPresent command: - bash @@ -236,7 +236,7 @@ spec: hostPID: true containers: - name: pinger - image: "kubeovn/kube-ovn:v1.7.2" + image: "kubeovn/kube-ovn:v1.7.3" command: - /kube-ovn/kube-ovn-pinger - --external-address=2400:3200::1 diff --git a/yamls/kube-ovn.yaml b/yamls/kube-ovn.yaml index a9cf70679c6..6d307312e03 100644 --- a/yamls/kube-ovn.yaml +++ b/yamls/kube-ovn.yaml @@ -38,7 +38,7 @@ spec: hostNetwork: true containers: - name: kube-ovn-controller - image: "kubeovn/kube-ovn:v1.7.2" + image: "kubeovn/kube-ovn:v1.7.3" imagePullPolicy: IfNotPresent command: - /kube-ovn/start-controller.sh @@ -133,7 +133,7 @@ spec: hostPID: true initContainers: - name: install-cni - image: "kubeovn/kube-ovn:v1.7.2" + image: "kubeovn/kube-ovn:v1.7.3" imagePullPolicy: IfNotPresent command: ["/kube-ovn/install-cni.sh"] securityContext: @@ -144,7 +144,7 @@ spec: name: cni-bin containers: - name: cni-server - image: "kubeovn/kube-ovn:v1.7.2" + image: "kubeovn/kube-ovn:v1.7.3" imagePullPolicy: IfNotPresent command: - bash @@ -264,7 +264,7 @@ spec: hostPID: true containers: - name: pinger - image: "kubeovn/kube-ovn:v1.7.2" + image: "kubeovn/kube-ovn:v1.7.3" command: - /kube-ovn/kube-ovn-pinger - --external-address=114.114.114.114 @@ -392,7 +392,7 @@ spec: serviceAccountName: ovn containers: - name: kube-ovn-monitor - image: "kubeovn/kube-ovn:v1.7.2" + image: "kubeovn/kube-ovn:v1.7.3" imagePullPolicy: IfNotPresent command: ["/kube-ovn/start-ovn-monitor.sh"] securityContext: diff --git a/yamls/ovn-dpdk.yaml b/yamls/ovn-dpdk.yaml index c446f62b417..5002dad9c2e 100644 --- a/yamls/ovn-dpdk.yaml +++ b/yamls/ovn-dpdk.yaml @@ -194,7 +194,7 @@ spec: hostNetwork: true containers: - name: ovn-central - image: "kubeovn/kube-ovn:v1.7.2" + image: "kubeovn/kube-ovn:v1.7.3" imagePullPolicy: IfNotPresent command: ["/kube-ovn/start-db.sh"] securityContext: diff --git a/yamls/ovn-ha.yaml b/yamls/ovn-ha.yaml index 1019216ddd5..d7a464fd6f5 100644 --- a/yamls/ovn-ha.yaml +++ b/yamls/ovn-ha.yaml @@ -209,7 +209,7 @@ spec: hostNetwork: true containers: - name: ovn-central - image: "kubeovn/kube-ovn:v1.7.2" + image: "kubeovn/kube-ovn:v1.7.3" imagePullPolicy: IfNotPresent command: ["/kube-ovn/start-db.sh"] securityContext: @@ -332,7 +332,7 @@ spec: hostPID: true containers: - name: openvswitch - image: "kubeovn/kube-ovn:v1.7.2" + image: "kubeovn/kube-ovn:v1.7.3" imagePullPolicy: IfNotPresent command: ["/kube-ovn/start-ovs.sh"] securityContext: diff --git a/yamls/ovn.yaml b/yamls/ovn.yaml index 8a2f014470d..2b61ccbce9b 100644 --- a/yamls/ovn.yaml +++ b/yamls/ovn.yaml @@ -226,7 +226,7 @@ spec: hostNetwork: true containers: - name: ovn-central - image: "kubeovn/kube-ovn:v1.7.2" + image: "kubeovn/kube-ovn:v1.7.3" imagePullPolicy: IfNotPresent command: ["/kube-ovn/start-db.sh"] securityContext: @@ -354,7 +354,7 @@ spec: hostPID: true containers: - name: openvswitch - image: "kubeovn/kube-ovn:v1.7.2" + image: "kubeovn/kube-ovn:v1.7.3" imagePullPolicy: IfNotPresent command: ["/kube-ovn/start-ovs.sh"] securityContext: diff --git a/yamls/speaker.yaml b/yamls/speaker.yaml index 670ac950738..c83abe6f185 100644 --- a/yamls/speaker.yaml +++ b/yamls/speaker.yaml @@ -29,7 +29,7 @@ spec: hostNetwork: true containers: - name: ovn-central - image: "kubeovn/kube-ovn:v1.7.2" + image: "kubeovn/kube-ovn:v1.7.3" imagePullPolicy: IfNotPresent command: - /kube-ovn/kube-ovn-speaker