-
Notifications
You must be signed in to change notification settings - Fork 6.5k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Fix kube-proxy post deployment removal #5554
Fix kube-proxy post deployment removal #5554
Conversation
/retest |
@MrFreezeex: Cannot trigger testing until a trusted user reviews the PR and leaves an In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
70b1e1d
to
e5ef43f
Compare
31cb023
to
23993ff
Compare
/assign @ant31 |
23993ff
to
f3871c1
Compare
I just rebased my PR, any chance to have this reviewed ? Deploying kubespray without kube-proxy is not possible without it... |
f3871c1
to
584d5ac
Compare
I added a check to skip kube-proxy init phase only if kubernetes version is >= to 1.16.0. |
584d5ac
to
fe33d81
Compare
I removed the check on Kubernetes 1.16 as It now required by kubespray as a minimum... |
Is there any CI job testing this? |
fe33d81
to
b5fd6c6
Compare
@Miouge1 just added a test that enables kube-router to run with service proxy mode. It will add
|
kube-router is not the only network plugin that can do without kube-proxy, cilium also has a no-kube-proxy mode. The best approach would be to have |
I may have misunderstood your point but regarding "default removals" this PR just fixes a bug because multiple defaults are conflicting (kubespray-defaults with others roles). I am not fully aware of cillium installation but I don't see any reference to this variable in cillium playbook and kubespray-defaults... Also |
I see the goal of your PR, I just wanted to think out loud of a better solution moving forward.
That's because kubespray doesn't support this mode yet. Like I said, this mode is opt-in
Sorry I meant |
* Fix unwanted skipped task for kube-proxy * Fix kube_proxy_remove default Signed-off-by: Arthur Outhenin-Chalandre <[email protected]>
Signed-off-by: Arthur Outhenin-Chalandre <[email protected]>
b5fd6c6
to
dc47ff8
Compare
I reduced the scope of the PR (not introducing changes to kubeadm init anymore)... |
I ran the kube-router job with kube-proxy removal to see how it goes |
The Gitlab pipeline is all green now 👀 |
/ok-to-test |
Is there anything one can help to speed up things here? |
/approve |
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: Miouge1, MrFreezeex The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
* 'master' of https://github.com/kubernetes-sigs/kubespray: Add a way to deploy cilium alongside another CNI (kubernetes-sigs#6373) Cleanup old build-cephfs-provisioner.yml playbook (kubernetes-sigs#6418) Always enable GitLab CI artifacts for cluster-dump (kubernetes-sigs#6412) Remove allow-release-candidate-upgrades already include in experimental-upgrades flag (kubernetes-sigs#6349) add calico-node selinux (kubernetes-sigs#6359) Add oomichi to reviwers of MetalLB addon (kubernetes-sigs#6393) Respect kube_override_hostname during removal/upgrade (kubernetes-sigs#6347) Fixed fedora modular repos activation for fcos (kubernetes-sigs#6300) Fix kube-proxy post deployment removal (kubernetes-sigs#5554) Remove old csi-attacher flag and fix RBAC for Cinder CSI (kubernetes-sigs#6358) Update cilium minimum kernel preinstall check (kubernetes-sigs#6376) Add readiness probe to dns-autoscaler (kubernetes-sigs#6382) Add Fedora CoreOS kubevirt image for tests (kubernetes-sigs#6337) allow kubeadm to upgrade etcd (kubernetes-sigs#6345) crio: harden downloads with retry (kubernetes-sigs#6374) Add workaround with include_task for mitogen (kubernetes-sigs#6312)
* Fix kube-proxy removal * Fix unwanted skipped task for kube-proxy * Fix kube_proxy_remove default Signed-off-by: Arthur Outhenin-Chalandre <[email protected]> * Add test for kube-router svc proxy Signed-off-by: Arthur Outhenin-Chalandre <[email protected]>
What type of PR is this?
/kind bug
/kind feature
What this PR does / why we need it:
kube_proxy_remove: false
indefaults
sections as the default is already sets inkubespray-defaults
.Which issue(s) this PR fixes:
Fixes #5552
Does this PR introduce a user-facing change?: