Add support for IP aliases for pod IPs (GCP alpha feature) #42147
Conversation
k8s-ci-robot
added
the
cncf-cla: yes
|
This change is |
k8s-github-robot
added
kind/api-change
| glog.V(3).Infof("Node %v has PodCIDR %v", node.Name, podCIDR) | ||
| return nil | ||
| } | ||
| glog.Errorf("PodCIDR cannot be reassigned, node %v spec has %v, but cloud provider has assigned %v", |
There was a problem hiding this comment.
Should here return error? According to the error info, it seems yes.
But according to the logic below, the PodCIDR should update to CIDR assigned by cloud provider. So IMO here may need to be modified to something like:
glog.V(3).Infof("PodCIDR will be reassigned, node %v spec has %v, but cloud provider has assigned %v",
node.Name, node.Spec.PodCIDR, podCIDR)
There was a problem hiding this comment.
We do not support reassignment of PodCIDRs once they have been assigned.
There was a problem hiding this comment.
Then we should return error here, otherwise PodCIDR will be reassigned to cidr[0] in line #L110, right? Hopefully I understand correctly:)
There was a problem hiding this comment.
The range_allocator.go code logs an error, but continues with setting the node spec. This basically copies the current behavior, I'll add a comment to be more clear. This is somewhat of a unhandled state for the system, as the underlying layers will ignore the CIDR update.
There was a problem hiding this comment.
Thanks for the explanation!
bowei
force-pushed
the
ip-alias-2
branch
8 times, most recently
from
cc18de2
to
3d90228
Compare
k8s-github-robot
added
the
needs-rebase
|
@k8s-bot kubemark e2e test this |
k8s-github-robot
added
needs-rebase
k8s-github-robot
removed
the
needs-rebase
bowei
force-pushed
the
ip-alias-2
branch
2 times, most recently
from
2a3520e
to
bc60716
Compare
k8s-github-robot
added
the
needs-rebase
k8s-github-robot
removed
the
needs-rebase
|
I only looked at the shell code. By the way, why is this change in 7 commits? |
|
@roberthbailey -- commits are grouped in a way to make it easy to review / rebase |
|
@k8s-bot test this |
|
@bowei: The following test(s) failed:
Full PR test history. Your PR dashboard. Please help us cut down on flakes by linking to an open issue when you hit one in your PR. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here. |
bowei
force-pushed
the
ip-alias-2
branch
2 times, most recently
from
fa09323
to
96298b8
Compare
bowei
changed the title
bowei
changed the title
KUBE_GCE_ENABLE_IP_ALIASES=true will enable allocation of PodCIDR ips using the ip alias mechanism rather than using routes. NODE_IP_RANGE will control the node instance IP cidr KUBE_GCE_IP_ALIAS_SIZE controls the size of each podCIDR IP_ALIAS_SUBNETWORK controls the name of the subnet created for the cluster
If CIDRAllocatorType is set to `CloudCIDRAllocator`, then allocation of CIDR allocation instead is done by the external cloud provider and the node controller is only responsible for reflecting the allocation into the node spec. - Splits off the rangeAllocator from the cidr_allocator.go file. - Adds cloudCIDRAllocator, which is used when the cloud provider allocates the CIDR ranges externally. (GCE support only) - Updates RBAC permission for node controller to include PATCH
I also sorted the file, it was almost sorted with a few exceptions.
|
@thockin -- there will be follow on commits mostly likely as I get the e2e testing running through in ip alias mode. |
|
/lgtm since @roberthbailey is ooo |
|
/lgtm |
k8s-ci-robot
added
the
lgtm
|
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: bowei, thockin
Needs approval from an approver in each of these OWNERS Files:
You can indicate your approval by writing |
|
Automatic merge from submit-queue |
Automatic merge from submit-queue Clean up CHANGELOG.md There was extra stuff inside the `release-note` block for #42147 that messed up the formatting for CHANGELOG.md. I edited the PR to fix it, but the CHANGELOG.md had already been pushed.
Adds KUBE_GCE_ENABLE_IP_ALIASES flag to the cluster up scripts (
kube-{up,down}.sh).KUBE_GCE_ENABLE_IP_ALIASES=true will enable allocation of PodCIDR ips
using the ip alias mechanism rather than using routes. This feature is currently
only available on GCE.
Usage
$ CLUSTER_IP_RANGE=10.100.0.0/16 KUBE_GCE_ENABLE_IP_ALIASES=true bash -x cluster/kube-up.sh
Adds CloudAllocator to the node CIDR allocator (kubernetes-controller manager).
If CIDRAllocatorType is set to
CloudCIDRAllocator, then allocationof CIDR allocation instead is done by the external cloud provider and
the node controller is only responsible for reflecting the allocation
into the node spec.
the CIDR ranges externally. (GCE support only)