Skip to content
This repository has been archived by the owner on Sep 30, 2020. It is now read-only.

Calico 3.1.x support #1396

Closed
cknowles opened this issue Jul 8, 2018 · 1 comment · Fixed by #1397
Closed

Calico 3.1.x support #1396

cknowles opened this issue Jul 8, 2018 · 1 comment · Fixed by #1397
Assignees

Comments

@cknowles
Copy link
Contributor

cknowles commented Jul 8, 2018

Calico 3.1 supports HostEndpoint support for Kubernetes API datastore.

Calico now supports configuration of host endpoints when using the Kubernetes API datastore. This allows you to seamlessly apply network policy to Kubernetes host machines and Kubernetes pods alike using Calico global network policies.

Ref https://docs.projectcalico.org/v3.1/releases/

It will require updates to cloud-config-controller. I have the changes for this locally, just checking it runs ok before submitting.

@cknowles cknowles self-assigned this Jul 8, 2018
@mumoshu
Copy link
Contributor

mumoshu commented Jul 9, 2018

Good to know! I have dreamed about such feature, so that I could perhaps allow pods to access 169.254.169.254 only when the iam.amazonaws.com/role annotation is set. I'll review your PR asap

mumoshu pushed a commit that referenced this issue Jul 9, 2018
- Bump calico images for self hosted Calico
- Include latest CRDs and RBAC for canal from https://docs.projectcalico.org/v3.1/getting-started/kubernetes/installation/flannel
- Correct the self hosted flannel images to self hosted config (previously unused)
- Mount calico dirs in canal and kubelet to fix pod init issue, ref projectcalico/calico#1795 (comment)

Fixes #1396

Changelog:

* Self hosted calico v3.1.3

- Bump calico images for self hosted Calico (non-self hosted is EOL)
- Include latest CRDs and RBAC for canal from https://docs.projectcalico.org/v3.1/getting-started/kubernetes/installation/flannel

* Link self hosted flannel images to self hosted config

Previously the older flannel config was used and the self hosted config in cluster.yaml did nothing

* Update canal comment to a reference

Our config is dynamic so would change anyway if a user configures the versions differently

* Mount calico dirs in canal and kubelet

Fixes pod init issue similar to projectcalico/calico#1795 (comment):
```
Failed create pod sandbox: rpc error: code = Unknown desc = NetworkPlugin cni failed to set up pod "xxxx" network: stat /var/lib/calico/nodename: no such file or directory: check that the calico/node container is running and has mounted /var/lib/calico/
```
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
None yet
Projects
None yet
Development

Successfully merging a pull request may close this issue.

2 participants