CHANGELOG.md

Changelog

v1.11.0 (2023-01-09)

• 59bc50f7 feat: add helm upgrade e2e (#2222)
• 25f89737 fix: now route with connected/static will all be sync (#2231)
• c2467d21 add enable-metrics arg to disable metrics (#2232)
• 67024ec5 add u2o test case (#2203)
• f5d80110 add more args to break test server
• f5b9eef8 add release-1.8/1.9/1.10 to scheduled e2e (#2224)
• ab5a2c82 cni-server: fix waiting for routed annotation (#2225)
• 6fd9ea0c build(deps): bump golang.org/x/sys from 0.3.0 to 0.4.0 (#2223)
• cbde65e2 feature: detect ipv4 address conflict in underlay (#2208)
• 64d6f24f fix git ref name in e2e (#2218)
• b0cd45c6 fix e2e for v1.8 (#2216)
• 5843892b some fixes for e2e testing (#2207)
• b6a11789 build(deps): bump github.com/osrg/gobgp/v3 from 3.9.0 to 3.10.0 (#2209)
• 4f08d941 distinguish ippool process for dualstack and normal ippool situation (#2204)
• 098a8212 u2o feature (#2189)
• c0d76fd8 ovn nb and sb can't bind lan ip in ssl (#2200)
• 1489b65c build(deps): bump sigs.k8s.io/controller-runtime from 0.14.0 to 0.14.1 (#2199)
• 16002a28 local ip bind to service (#2195)
• 1407eba2 refactor e2e testing (#2078)
• 86fab667 fix: ovs gc just for pod if (#2187)
• 1a43c6de update docs link in install.sh (#2196)
• 02feb9a9 fix lr policy for default subnet with logical gateway enabled (#2177)
• 3e129fe1 sync delete pod process from release-1.9 (#2190)
• b6e50706 fix: update helm 1.11.0 (#2182)
• 3fb825c8 reserve pod eip static route when update vpc (#2185)
• 159fd9f0 ignore conflict check for pod ip crd (#2188)
• 4d6ad644 remove unused subnet status fields (#2178)
• 484fe97a fix:react leader elect (#2167)
• c914fe78 fix base/windows build (#2172)
• 6a8fc2f3 add metric interface_rx_multicast_packets (#2156)
• 2b5e28ff build(deps): bump github.com/onsi/gomega from 1.24.1 to 1.24.2 (#2168)
• 0992f36f update wechat link
• d45a0440 build(deps): bump github.com/Microsoft/hcsshim from 0.9.5 to 0.9.6 (#2161)
• adecee76 ci: refactor previous push multi arch (#2164)
• 5e4955c9 security: we should check all the vulnerabilities that can be fixed (#2163)
• 502a25bf An error occurred when netpol was added in double-stack mode (#2160)
• dbbbddc1 add process for delete networkpolicy start with number (#2157)
• 26f407fc security remove private key (#2159)
• 57457bd4 add scheduled e2e testing (#2144)
• 5444126a northd: fix race condition in health check (#2154)
• 755a46a6 add check for subnet cidr (#2153)
• c627468a delete nc cmd in image (#2148)
• 207a52cd bump k8s to v1.26 (#2152)
• a4a8b5ad add benchmark test for ipam (#2123)
• 4b1e78c2 update: add YuDong Wang into MAINTAINERS (#2147)
• 39ee1e7c build(deps): bump k8s.io/sample-controller from 0.25.4 to 0.25.5 (#2146)
• 7aa9bdbc delete nc in base image (#2141)
• aab79cb8 update go modules (#2142)
• fa32177d delete ip crd base on podName (#2143)
• 4072eb76 fix vpc spec external not true after init external gw (#2140)
• 51907e02 refactor ipam unit test (#2126)
• ad56e98f build(deps): bump github.com/k8snetworkplumbingwg/network-attachment-definition-client (#2139)
• 012ab59e some optimization for provider network status update (#2135)
• c410d8b4 simplify iptables eip nat (#2137)
• ef4e7555 kind: support to specify api server address/port (#2134)
• 9bbf5e43 kubectl-ko: fix registry/version (#2133)
• 2156ef0d check if subnet cidr is correct (#2136)
• f58c88fc fix: sometimes alloc ipv6 address failed sometimes ipam.GetStaticAddress return NoAvailableAddress (#2132)
• 27d22b7f fix: delete static route should consider dualstack (#2130)
• 9b38bf7f build(deps): bump github.com/osrg/gobgp/v3 from 3.8.0 to 3.9.0 (#2121)
• f9f63cae build(deps): bump github.com/Wifx/gonetworkmanager from 0.4.0 to 0.5.0 (#2122)
• 67b4dc1b build(deps): bump golang.org/x/time from 0.2.0 to 0.3.0 (#2120)
• 78584b7c fix: vlan gw clean in 2 scene (#2117)
• b8e15e19 optimize provider network (#2099)
• 66e96b8e build(deps): bump golang.org/x/sys from 0.2.0 to 0.3.0 (#2119)
• 625e3173 fix removing default static route in default vpc (#2116)
• 141c4c35 fix: eip deletion (#2118)
• 86f75c83 fix: ecmp route keep delete and recreate (#2083)
• 15fd547b fix policy route for subnets with logical gateway (#2108)
• c7549d41 build(deps): bump github.com/emicklei/go-restful/v3 from 3.9.0 to 3.10.1 (#2113)
• c42dae31 refactor function name isIPAssignedToPod to isIPAssignedToOtherPod (#2096)
• c52f384e build(deps): bump github.com/onsi/gomega from 1.24.0 to 1.24.1 (#2111)
• fc80d592 fix: logical gw underlay gw subnet not clean (#2114)
• 5862b020 build(deps): bump github.com/osrg/gobgp/v3 from 3.6.0 to 3.8.0 (#2110)
• 4b4bdb3c build(deps): bump sigs.k8s.io/controller-runtime from 0.12.3 to 0.13.1 (#2109)
• 684d1c75 fix go mod (#2107)
• 8ac8cc4e build(deps): bump github.com/onsi/ginkgo/v2 from 2.3.1 to 2.5.1 (#2103)
• 12f2f404 build(deps): bump k8s.io/sample-controller from 0.24.4 to 0.25.4 (#2101)
• 5caec703 build(deps): bump github.com/Microsoft/go-winio from 0.5.2 to 0.6.0 (#2104)
• e2eae04c build(deps): bump google.golang.org/grpc from 1.49.0 to 1.51.0 (#2102)
• 8f4bf43a build(deps): bump github.com/Microsoft/hcsshim from 0.9.4 to 0.9.5 (#2100)
• 47fe3eef Create dependabot.yml
• 5bed4af1 replace klog.Fatalf with klog.ErrorS and klog.FlushAndExit (#2093)
• 2652bcfe fix: slow vip finalizer operation (#2092)
• 4486e7fe ko-trace: support ARP request/reply (#2046)
• a659f2e5 fix: cni response missing sandbox field (#2089)
• 88500fa5 check if externalIds map is nil when add node as gw for centralized subnet (#2088)
• 47d3872c fix: del createIPS (#2087)
• d1616385 fix: add opts for ips del (#2079)
• 4da9e4e5 fix ovs bridge not deleted cause by port link not found (#2084)
• 7344578e fix libovsdb issues (#2070)
• 9c292c00 ipset: fix unknown ipset data attribute from kernel (#2086)
• def11081 fix: vpc lrp reset after restart kube-ovn-controller (#2074)
• 0c668432 fix: add del bash for redundant ips (#2063)
• 1c334c8d refactor: add unknown config to logic switch port (#2067)
• 419c385b ovs-dpdk supports adding bond for multi-NICs (#2064)
• aef4cd3a fix OVN LS/LB gc (#2069)
• 8aa724eb fix: vip ipam not recover all (#2071)
• 514b7666 bug-fix: make kind-reload invalid (#2068)
• 657dbf60 remove no need params svcasname (#2057)
• 1fcfbc42 Fix:hybrid-dpdk with vxlan tunnel mode，The OVS node does not create a VXLAN tunnel to the OVS-DPDK node (#2065)
• a7ed4429 update ipv6 address for vpc peer (#2060)
• db4fd629 perf: reduce controller init time (#2054)
• 34f42617 reflactor note (#2053)
• b22e66ad fix: replace replace with add to override existing route (#2052)
• c0874158 refactor Makefile (#1901)
• ea22c1ac pass klog verbosity to libovsdb (#2048)
• 8a29023d ovs: fix reaching resubmit limit in underlay (#2038)
• db796b43 sync crd yamls (#2040)
• f8f5a4c3 add helm and e2e test (#2020)
• 5f40c222 fix: add unitest (#2030)
• 68611051 fix: pod not add finalizer after add iptables fip (#2041)
• 75da1603 feat: ovn eip snat fip (#2029)
• 73075605 fix: vpc and vpc nat gw not clean (#2032)
• 79a5ef34 update CHANGELOG.md
• e7fb2089 fix pinger namespace error (#2034)
• 4abd912f iptables: avoid duplicate logging (#2028)
• 3fb645c9 fix: gateway route should stay still when node is pingable (#2011)
• 92b9c8c3 update np name with character prefix (#2024)
• 39497855 bump kind and node image versions (#2023)
• 56992c86 fix ovn nb/sb health check (#2019)
• bf93c458 fix ovs fdb for the local bridge port (#2014)
• 57830154 fix go version
• ad7cfe87 perf: add debug info for perf trace (#2017)
• 16a95836 fix: not append finalizer (#2012)
• 688fd5e2 do not need to delete pg when update networkpolicy (#1959)
• c4d8a2f3 test: add test-server to collect packet lost during upgrade (#2010)
• f89908e7 support create iptables fip and eip automatically if pod enable fip (#1993)
• ab80fd88 ci: upgrade deprecated actions (#2004)
• de5ef511 fix: make ip deletion the same as creation (#2002)
• bfcc952c fix: Add support for Mellanox NIC (#1999)
• f4c977f1 fix: nat gw not enqueue its resources (#1996)
• 32f65f81 fix: delete fiprule failed at first time (#1998)
• eaa936b3 fix typo (#1994)
• dd3790ac feat: now interface for containerd could be inspected (#1987)
• fee5bfd3 fix: snat conntrack race (#1985)
• e1f7d72c add check of write to ovn sb db for ovn-controller (#1989)
• 892aa759 fix grep matching device in routes (#1986)
• 113f62f6 delete pod after TerminationGracePeriodSeconds (#1984)
• 87996f75 ovs: fix waiting flows in underlay networking (#1983)
• eea78886 feature: support default vpc use nat gw pod as cust vpc (#1979)
• 3d2c7a59 ovn db: recover automatically on startup if db corruption is detected (#1980)
• 9ff3b9c0 fix: modify src route priority (#1973)
• 57c75c1e upgrade ovs-ovn pod by generation version instead of chart version (#1960)
• b9e98e52 avoid concurrent subnet status update (#1976)
• ea854d46 fix metrics name (#1977)
• 15f676f6 add vm pod to ipam by ip when initIPAM (#1974)
• afe06d81 validate nbctl socket path in start-controller.sh (#1971)
• 3796a582 skip CVE-2022-3358 (#1972)
• 80aab2ea fix version mismatch between the Ginkgo CLI and the imported package (#1967)
• b7863bdb ovs: fix mac learning in environments with hairpin enabled (#1943)
• 95939ca4 fix: add default deny acl (#1935)
• de3d65c0 Fix registry for ovn-central container in install.sh (#1951)
• c8d22d2c ovs: add fdb update logging (#1941)
• f1f6642b add chart version check when upgrade ovs-ovn pod (#1942)
• 73fde2ce fix underlay e2e testing (#1929)
• 38956b6c set leader flag when get leader (#1939)
• af6973fe set ovsdb-server vlog level to avoid warnings caused by ovs-vsctl (#1937)
• a3292078 fix: UpdateNatRule will error when logicalIP, externalIP is different protocol; replace : to \: when IPv6 in ovs cli.
• 76541ef1 fix: noAllowLiveMigration port can't sync vips (#7)
• 474206be fix: add pod not update vip virtual port
• 596741bc fix: delete chassis (#1927)
• 395a3554 fix: pod mistaken ls label (#1925)
• 797100ed ignore pod without lsp when add pod to port-group (#1924)
• 1a49e738 add network partition check in ovn probes (#1923)
• 16c0ed9f fix: fip unbind can't take effect immediately when conntrack record exists (#1922)
• 606e6f62 No need to change deivceID to sriov_netdevice. (#1904)
• 76dd9afa update ns annotation when subnet cidr changed (#1921)
• 8d1ce420 fix EIP/SNAT on dynamic Pod annotation (#1918)
• 4882c354 fix: eip and nat crd can delete even if nat gw pod deleted and ipatab… (#1917)
• d8886d13 fix missing crd (#1909)
• 8d2991e3 Nat gw support toleration (#1907)
• b3bbe1d4 Update USERS.md (#1908)
• dbe4ebb3 fix typo (#1897)
• 8d15497a fix: Make the /sys directory in ovs-ovn-dpdk pod writable (#1899)
• 5befab46 fix: failed to add eip (#1898)
• 7fae28ae fix: gatewaynode might be null (#1896)
• 57edfe41 ci: increase golangci-lint timeout (#1894)
• 07f12c2d update Go to version 1.19 (#1892)
• e5878ff9 fix: api rollback (#1895)
• 82db50fe ci: use concurrency to ensure that only a single workflow (#1850)
• 83b867ab kubectl-ko: turn off pipefail for ovn leader check (#1891)
• 959a64dc kubectl-ko: fix trace for KubeVirt VM (#1802)
• 10fd3330 fix duplicate logs for leader election (#1886)
• 13ebb855 fix setting ether dst addr for dnat (#1881)
• b1485035 change the prtocol string to const (#1887)
• 7e56931f refactor iptables rules (#1868)
• 14898dd3 cni should handler unmont volume, when delete pod. (#1873)
• 031ed031 delete and recreate netem qos when update process (#1872)
• dedd5aaa feat: check configuration (#1832)
• 97b41127 security: conform to gosec G114 (#1860)
• 2dfb6e72 update CHANGELOG.md
• b6450b2f e2e: add timeout for waiting resources to be ready (#1871)
• e1656752 upgrade to Ginkgo v2 (#1861)
• 0adecb0c feat: reduce downtime by increasing arp cache timeout
• c24f678b feat: reduce wait time by counting the flow num.
• 05611aa7 fix: missing stop_ovn_daemon args
• 6ab837c4 fix: nat gw pod should set default gw to net1 so that to access public (#1864)
• b08765dc delete log severity for drop acl when update networkpolicy (#1863)
• e13c4ef1 ovs: fix log file descriptor leak in monitor process (#1855)
• 8a235e9e fix: dnat port not use whole words to check (#1854)
• 34e02ebb fix ovs-ovn logging (#1848)
• 2a2a32f9 fix ovn dhcp not work with ovs-dpdk (#1853)
• 44e41250 docs: Update USERS.md (#1851)
• 51f491f2 fix: multus macvlan ipvlan use kube-ovn ipam，but ip not inited in init-ipam (#1843)
• 8ef6c01c fix underlay e2e (#1828)
• c33276fd fix arping error log (#1841)
• 69cf5ca5 ko: fix kube-proxy check (#1842)
• 5012ff3e base: use patch from OVN upstream (#1844)
• 07773cb0 ci: switch environment to ubuntu-20.04 (#1838)
• eded5516 ci: split image builds to speed up jobs (#1807)
• 656bd46c ci: update Go cache to speed up jobs (#1829)
• 57d74bff windows: fix ovs/ovn versions and patches (#1830)
• babd8021 修改 ovs-ovn-dpdk 容器镜像编译打包，解决容器中 ovs 运行不正常：无法添加物理网卡，无法创建 vhostuserclient port 问题 (#1831)
• 0ed5c924 support adding routes in underlay Pods for access to overlay Pods (#1762)
• 013549ab update centralized subnet gateway ready patch operation (#1827)
• 9937ef87 remove pod security policy (#1822)
• 725957a7 fix duplicate log for tunnel interface decision (#1823)
• 2e64133c update ovs/ovn version to fix hardware offload (#1821)
• 9c87d9d1 fix: use full longest word to match full ip about dnat (#1825)
• 385064a0 update centralize subnet gatewayNode until gw is ready (#1814)
• 4944db75 initialize IPAM from IP CR with empty PodType for sts Pods (#1812)
• d41c043d feat: add editable ovn-ic (#1795)
• ddcdfb9e kubectl-ko: fix missing env-check (#1804)
• 8b2df588 kubectl-ko: fix destination mac (#1801)
• e8816e96 fix cilium e2e (#1759)
• bc380415 abort kube-ovn-controller on leader change (#1797)
• 26e77ead avoid invalid ovn-nbctl daemon socket path (#1799)
• e7064062 update CHANGELOG.md
• 70f1b141 Perf/memleak (#1791)
• 225da25e delete htb qos when releated annotation is deleted (#1788)
• 8db05a1f Fix nag gw gc (#1783)
• 277f6f69 fix iptables for services with external traffic policy set to Local (#1773)
• 42812b92 perf: reduce metrics labels (#1784)
• 9ffb9d22 northd: remove lookup_arp_ip actions (#1780)
• 9efd4bb2 fix: 5ms is too short for eip and nats creation (#1781)
• 80425b7c Lb-svc supports custom VPCs (#1779)
• cd00ddb6 fix ovnic e2e (#1763)
• 51bf142f fix iptables for service traffic when external traffic policy set to local (#1728)
• 916600f6 set sysctl variables on cni server startup (#1758)
• c10c7118 fix: add omitempty to subnet spec (#1765)
• 2dd46e69 perf: replace jemalloc to reduce memory usage (#1764)
• 35513157 avoid patch interface deletion & recreation during restart (#1741)
• e7ce68bb feature: support exchange link names of OVS bridge and provider nic in underlay networks (#1736)
• 5254731f dpdk-v2 ，--with-hybrid-dpdk 修改 Dockerfile.base-dpdk 解决 编译安装 ovs-dpdk 正常运行 (#1754)
• 3717c6cb fix: Adjust order for Log and output err when get NatRule faild. (#1751)
• f7358337 only support IPv4 snat in vpc-nat-gw when internal subnet is dual (#1747)
• 99c53d29 update README.md
• 7c4293eb docs: update USERS.md (#1743)
• a8ed4bce style: import group ordering. (#1742)
• bcafb10c enqueue subnets after vpc update (#1722)
• 3af85162 do not add subnet not processed by kube-ovn to vpc (#1735)
• 7ac7b592 dpdk-v2 ，--with-hybrid-dpdk qemu 创建 sock 权限问题 (#1739)
• 96683cb1 fix: const extGw may expired, after subnet updated, so use ipam subne… (#1730)
• 861cf05d fix service not working when a node's IPv6 address is before the IPv4 address (#1724)
• daaddba2 update pr template
• ce40f7ed fix: If pod has snat or eip, also need delete staticRoute when delete pod. (#1731)
• 3ff586ec optimize lrp create for subnet in vpc (#1712)
• f582a11b fix: cancel delete staticroute when it's used by NatRule (#1733)
• 3c7588bf fix: wrong info when update subnet from dual to ipv4 or ipv6. (#1726)
• d1b291ed change: add newline at end of file (#1717)
• 26260c91 add kernel prerequisite for Rocky Linux 8.6 (#1713)
• 2fd8e41e Add CODE_STYLE.md (#1711)
• 3b9111f9 Change system-cluster-critical to system-node-critical to prevent pods of DaemonSet type from being (#1709)
• e8877f1d Develop custom vpc-dns (#1662)
• ac01a603 fix CVE-2022-30065 (#1710)
• 4b13888d fix: add and set ENABLE_KEEP_VM_IP=true to keep vm ip (#1702)
• fe18db30 update CHANGELOG.md
• 1ab55056 fix overlay MTU in vxlan/stt tunnels (#1693)
• c9d9923e fix: response has no gw when create nic without default route (#1703)
• b52655fc add note in install.sh for install --with-hybrid-dpdk(dpdk-v2). (#1699)
• 4530a435 ignore ovsdb-server/compact error: not storing a duplicate snapshot (#1691)
• c4e91cbd Get latest vpc data from apiserver instead of cache (#1684)
• 45bc2f7e support kubernetes v1.24 (#1553)
• 48d914e7 update priority range in htb qos (#1688)
• 41bdcd05 fix: clean vip eip snat dant fip in cleanup.sh (#1690)
• c2cea885 update: add Bingbing Zhang into MAINTAINERS (#1687)
• a38dbb5d fix: move away words that is considered offensive after k8s v1.20.0 (#1682)
• 76edad08 update CHANGELOG.md
• e4575c88 add upgrade-ovs script (#1681)
• b3c32210 fix: change ovn-ic static route to policy (#1670)
• db3b9f7f Delete pod if subnet of the pod's owner(sts/vm) updated (#1678)
• 533859fe Develop switch lb rule (#1656)
• 8cb6e36d do not snat packets only for subnets with distributed gateway when external traffic policy is set to local (#1616)
• 86ecfd2d refactor: extract external routes from eip func, make it the same as … (#1671)
• 62ddfda6 add loadbalancer service (#1611)
• b174b4f4 bgp: consolidate service check and use service const (#1674)
• 24786f48 security: disable pprof by default (#1672)
• 3191d8c8 fix bgp: sync service cache (#1673)
• f1226682 fix iptables for direct routing (#1578)
• 2b615f33 feature: support pod use static vip (#1650)
• d6902485 fix: kubectl-ko does't work when ovn-nb, ovn-sb and ovn-northd master slave Switchover (#1669)
• b4f89010 mount modules for auto load ip6tables moudles (#1665)
• 72fccd7e update docs links
• bcec46a3 fix: subnet failed when create without protocol (#1653)
• eddce759 ignore pod not scheduled when reconcile subnet (#1666)
• a158f8d6 fix libovsdb (#1664)
• 200c5317 fix ovs-ovn not running on newly added nodes (#1661)
• 4616285c fix get security group name by external_ids (#1663)
• 993ae20c fix:can not delete pod with sriov vf (#1654)
• 9a180f59 add policy route when add subnet (#1655)
• a93f211f update CHANGELOG.md
• cf1c2017 fix: no need routed when use v1.multus-cni.io/default-network (#1652)
• bcfbe8c6 docs: add GOVERNANCE.md and SECURITY.md
• c2b9eeb4 fix: should go on check ip after occupied ip (#1649)
• 9d0cefb5 set ether dst addr for dnat on logical switch (#1512)
• a9d5e50d docs: update README.md
• d71d1f69 CI: delete resources in order to avoid a long time waiting for subnet deletions. (#1643)
• fe1ebe06 ci: fix golangci-lint (#1639)
• 89514c9c Update install.sh (#1645)
• 4c8c0a39 fix: make sure pod annotation switch is the first choice to allocate ip, and fix vpc nat sts not delete (#1640)
• ae8bc1b4 docs: update docs link
• 0f91a61e set networkpolicy log default to false (#1633)
• 5c857350 update policy route when join subnet cidr changed (#1638)
• 9ac8797b fix: diskfull may lead to wrong raft status for ovs db (#1635)
• 011eba28 ci: update trivy options (#1637)
• 3d82780e fix no interface report to multus cni, missing in k8s.v1.cni.cncf.io/network[s]-status (#1636)
• c953b8f3 change vp gw pod workload from deployment to statefulset (#1630)
• 6238695f increase initial delay of ovs-ovn liveness probe (#1634)
• de99e826 fix: cleanup should ignore patch failed (#1626)
• 8c946a4c delete "allow" policy route on subnet deletion (#1628)
• 75ece0e0 wait ovn-central pods running before delete ovs-ovn pods (#1627)
• f55e32b3 vip, eip support ipv6 vip count (#1624)
• b458bf78 ci: auto changelog now (#1625)
• fce2cf17 get dbstatus for all ovn-central pod (#1619)
• be66af4b refactor: use ConfigMap resourceVersion to check if ovn-vpc-nat-gw-config changed (#1617)
• c54cafa5 fix controller exit before process pod update event (#1621)
• 0ac7e7b9 docs: update ROADMAP.md
• d6915bd6 fix acl log name too long (exceed 63) (#1612)
• 0b840398 docs: Add High-level design of ovn-spekaer (#1609)
• 7ebf36dd docs: Fix allowed subnets (#1610)
• b2f65cd1 add cni log Prevent "for loop time" approximately health check time (#1606)
• 71af9531 docs:Add Usage of ovn-speaker for passivemode and ebgp-multihop (#1605)
• aa456623 update static ip docs (#1607)
• 1400d5b5 Modify the next hop calculation method for kube-ovn-speaker (#1604)
• bc86ec86 fix static ip error in dual stack (#1598)
• 7fdb4bc6 ci: build amd64 images without avx512 (#1584)
• b7453796 Add ebgp-multihop function for kube-ovn-speaker (#1601)
• 6dd2f0ae monitor dns in cilium e2e (#1597)
• 75cfe414 Add passivemode for kube-ovn-speaker (#1600)
• 05bddc6a Bump github.com/emicklei/go-restful/v3 from 3.7.4 to 3.8.0 (#1599)
• 5d54ade9 docs: fix the kind name (#1593)
• 4053d46b Support CNI VESION command (#1596)
• 34dc29d6 update ovs health check, delete connection to ovn sb db (#1588)
• d891a84b fix ovn-ic doc err (#1590)
• 5507440b fix: all cluster pod will be in podadd queue (#1587)
• 990e291e feat: add args for gc/inspect interval (#1572)
• ea2686bf fix: Do not Recreate Logical_Router_Port when Vpc recreated (#1570)
• c651a2fc optimized initialization and gc for the chassis (#1511)
• f5d5b0be fix pod could not be ready (#1562)
• 337f6e05 Fix incorrect usage info of 'argExternalGatewayNet' (#1567)
• d5535f2b fix: delete pod panic when delete vm or statefulset. (#1565)
• a8330506 fix: clean CRDs introduced by new vpc-nat-gateway (#1563)
• fb1f59b1 do not gc vm pod lsp when vm still exists (#1558) (#1561)
• a4c2ef3a do not delete static routes on controller startup (#1560)
• a13cd1e2 update alpine to v3.16 (#1559)
• 8b9138ae fix VPC document (#1554)
• 308e9ecd replace ovn-nbctl daemon with libovsdb in frequent operations (#1544)
• 43483774 fix exec cmd in vpc nat gateway (#1556)
• 5c17eeaf CNI: do not return route if nic is not eth0 (#1555)
• ed8ed00e do not nat packets for incoming traffic when (#1552)
• 8f8734bd add kubeovn 1.9.2 charts (#1539)
• d0d9f4ea fix: opt kubectl-ko install solution (#1550)
• 9d950f67 always set mac address to sriov vf (#1551)
• 4f1e8121 use leases for leader election (#1529)
• ae56306b fix: fix db-check bug (#1541)
• f6b24444 bump version to v1.11.0 (#1545)
• 24791f45 exit kube-ovn-controller on stopped leading (#1536)
• 39e5f0a1 fix: update check script for restart ovs-ovn after rebuild ovsdb (#1534)
• c84a14c6 tmp cancel cilium external svc test (#1531)
• 5d173010 remove name for default drop acl in networkpolicy (#1522)

Contributors

• Alex Jones
• Chris
• Kaihang Zhang
• KillMaster9
• Mengxin Liu
• Money Liu
• Noah
• ShaPoHun
• Usman Malik
• Wang Bo
• Xiaobo Liu
• bobz965
• carezkh
• changluyi
• dependabot[bot]
• fanriming
• gugu
• halfcrazy
• huangsq
• hzma
• jeffy
• long.wang
• lut777
• pengbinbin1
• runzhliu
• shane
• wangyd1988
• xujunjie-cover
• zhouhui-Corigine
• 刘睿华
• 尚墨
• 张祖建
• 袁又袁

v1.10.8 (2023-01-03)

• d009416a prepare for release 1.10.8
• b5b73429 ci: add publish action
• f44c82b1 ovn nb and sb can't bind lan ip in ssl merge to 1.10 (#2202)
• 7dba66c4 bind local ip release 1.10 (#2198)
• 2cad0351 fix: ovs gc just for pod if (#2187)
• 498706c5 update docs link in install.sh (#2196)
• ea0b77c5 fix lr policy for default subnet with logical gateway enabled (#2177)
• b9085d54 sync delete pod process from release-1.9
• 33da2052 reserve pod eip static route when update vpc (#2185)
• 9bcb2033 ignore conflict check for pod ip crd (#2188)
• a6e512ae fix base/windows build (#2172)
• 48b44cf6 add metric interface_rx_multicast_packets (#2156)
• 4b15aa11 An error occurred when netpol was added in double-stack mode (#2160)
• 0c4a9f1c add process for delete networkpolicy start with number (#2157)
• 0ef78a10 northd: fix race condition in health check (#2154)
• d06f17b8 add check for subnet cidr (#2153)
• 7aa6ca36 delete nc cmd in image (#2148)
• 6182cce5 delete ip crd base on podName (#2143)
• 69ff0eed some optimization for provider network status update (#2135)
• 5c661d4f kind: support to specify api server address/port (#2134)
• e91bfedf kubectl-ko: fix registry/version (#2133)
• c16394bb fix: sometimes alloc ipv6 address failed sometimes ipam.GetStaticAddress return NoAvailableAddress
• e37f63ae fix: delete static route should consider dualstack (#2130)
• d17c4ddd optimize provider network (#2099)
• 3f8687bc fix removing default static route in default vpc (#2116)
• 9ef032b6 fix: cni response missing sandbox field (#2089)
• 20130696 fix: eip deletion (#2118)
• 9d1e526d fix policy route for subnets with logical gateway (#2108)
• 3a8bb12c replace klog.Fatalf with klog.ErrorS and klog.FlushAndExit (#2093)
• c0e6b57c fix: del createIPS (#2087)
• d76976cf check if externalIds map is nil when add node as gw for centralized subnet (#2088)
• 7d2e8eaa fix ovs bridge not deleted cause by port link not found (#2084)
• 22abb8a6 fix libovsdb issues (#2070)
• d916d7b8 ipset: fix unknown ipset data attribute from kernel (#2086)
• 8e068b26 reflactor: add unkown config to lsp
• 0af7ac20 fix OVN LS/LB gc (#2069)
• edc2e645 Fix:hybrid-dpdk with vxlan tunnel mode，The OVS node does not create a VXLAN tunnel to the OVS-DPDK node (#2065)
• e3e79a74 update ipv6 address for vpc peer (#2060)
• 15e544f3 perf: reduce controller init time (#2054)
• 8b06f3f5 fix: replace replace with add to override existing route (#2052)
• fa3c8c9a pass klog verbosity to libovsdb (#2048)
• 70240ff3 use the latest base image
• 97494c73 ovs: fix reaching resubmit limit in underlay (#2038)
• f69ad381 fix: vpc and vpc nat gw not clean (#2032)
• 791d9244 fix: install the latest version (#2036)

Contributors

• Mengxin Liu
• bobz965
• changluyi
• fanriming
• hzma
• lut777
• wangyd1988
• zhangzujian
• 张祖建
• 袁又袁
• 马洪贞

v1.10.7 (2022-11-11)

• 6c2ff6ab set release for 1.10.7
• 0b47ca3d fix: Add support for Mellanox NIC (#1999)
• b2cd4df1 fix pinger namespace error (#2034)
• 7e2c3be7 increase action timeout
• 51dbde5e prepare release for 1.10.7
• 2cab58da fix: gateway route should stay still when node is pingable (#2011)
• f2bdb8ea iptables: avoid duplicate logging (#2028)
• d895b766 update np name with character prefix (#2024)
• 3267b0f5 bump kind and node image versions (#2023)
• 5db54e30 fix ovn nb/sb health check (#2019)
• 0633625b fix ovs fdb for the local bridge port (#2014)
• cf1ffcb2 do not need to delete pg when update networkpolicy (#1959)
• 381882c2 ci: upgrade deprecated actions (#2004)
• 071bebc6 fix: make ip deletion the same as creation (#2002)
• 1bf5fa96 fix: delete fiprule failed at first time (#1998)
• 9e51caaa add check of write to ovn sb db for ovn-controller (#1989)
• ce6536a4 fix grep matching device in routes (#1986)
• 14566316 delete pod after TerminationGracePeriodSeconds (#1984)
• 20ed648d ovs: fix waiting flows in underlay networking (#1983)
• 8c9232ce feature: support default vpc use nat gw pod as cust vpc (#1979)
• e7f3fb56 ovn db: recover automatically on startup if db corruption is detected (#1980)
• e430042f fix: modify src route priority (#1973)
• a62e0740 fix CVE-2022-32149
• d433f257 avoid concurrent subnet status update (#1976)
• 9e249b34 upgrade ovs-ovn pod by generation version instead of chart version (#1960)
• 916ae918 fix metrics name (#1977)
• f56bb0b0 add vm pod to ipam by ip when initIPAM (#1974)
• ffa04989 validate nbctl socket path in start-controller.sh
• 21b4b3f8 skip CVE-2022-3358 (#1972)
• 3f836950 use latest base image
• 2a1074e4 fix: add default deny acl (#1935)
• aa716033 ovs: fix mac learning in environments with hairpin enabled (#1943)
• 77c27d4b Fix registry for ovn-central container in install.sh (#1951)
• 1f1e3c28 ovs: add fdb update logging (#1941)
• eeaf796d add chart version check when upgrade ovs-ovn pod
• b0907efc fix underlay e2e testing (#1929)
• 4a80a485 set leader flag when get leader
• 5ef11cb4 set ovsdb-server vlog level to avoid warnings caused by ovs-vsctl (#1937)
• 122041c1 fix: pod mistaken ls label (#1925)
• 8996131a ignore pod without lsp when add pod to port-group
• ee1c306a add network partition check in ovn probes
• efa8f60d update ns annotation when subnet cidr changed (#1921)
• 3e00aa54 fix CVE-2022-27664
• 98f7bc08 fix EIP/SNAT on dynamic Pod annotation (#1918)
• bcaf1e7c fix: eip and nat crd can delete even if nat gw pod deleted and ipatab… (#1917)
• 95ebe009 fix: failed to add eip (#1898)
• 5e06b367 ci: increase golangci-lint timeout (#1894)
• 72a26074 fix: gatewaynode might be null (#1896)
• 5f5e85f6 fix: api rollback
• 63eb2551 fix: diskfull may lead to wrong raft status for ovs db (#1635)
• 2bc4f03e kubectl-ko: turn off pipefail for ovn leader check (#1891)
• ec0f1e4f update dpdk base image
• 503807e3 kubectl-ko: fix trace for KubeVirt VM (#1802)
• f961605a fix duplicate logs for leader election (#1886)
• 88473e63 fix setting ether dst addr for dnat (#1881)
• 704c179e refactor iptables rules (#1868)
• 7f399adf cni should handler unmont volume, when delete pod. (#1873)
• 3e54d9dd delete and recreate netem qos when update process (#1872)
• e52d3476 feat: check configuration (#1832)
• e92c85fa fix: nat gw pod should set default gw to net1 so that to access public (#1864)

Contributors

• Kaihang Zhang
• Mengxin Liu
• Noah
• bobz965
• hzma
• jeffy
• long.wang
• lut777
• runzhliu
• shane
• zhangzujian
• 张祖建
• 马洪贞

v1.10.6 (2022-08-30)

• 0b9f0c1f set release 1.10.6
• 1510905c feat: reduce downtime by increasing arp cache timeout
• 2b05fd4c feat: reduce wait time by counting the flow num.
• e5378927 fix: missing stop_ovn_daemon args
• 709ede03 delete log severity for drop acl when update networkpolicy
• c1e5be72 refactor: extract external routes from eip func, make it the same as … (#1671)
• 7bcf578e prepare release for 1.10.6
• ed237f9b ovs: fix log file descriptor leak in monitor process (#1855)
• e16667c3 fix ovs-ovn logging (#1848)
• a83ec475 fix: dnat port not use whole words to check (#1854)
• e3b41023 fix ovn dhcp not work with ovs-dpdk (#1853)
• 237e3189 update base image
• 05b27f2d fix: add and set ENABLE_KEEP_VM_IP=true to keep vm ip (#1702)
• a4030de5 fix: multus macvlan ipvlan use kube-ovn ipam，but ip not inited in init-ipam (#1843)
• 80053001 fix underlay e2e (#1828)
• 1a3a1694 fix arping error log (#1841)
• 9447b859 ko: fix kube-proxy check (#1842)
• 774b8d46 base: use patch from OVN upstream (#1844)
• 17d0f5af ci: switch environment to ubuntu-20.04 (#1838)
• 9f0d324a 修改 ovs-ovn-dpdk 容器镜像编译打包，解决容器中 ovs 运行不正常：无法添加物理网卡，无法创建 vhostuserclient port 问题 (#1831)
• 8c533548 windows: fix ovs/ovn versions and patches (#1830)
• d24c5131 update centralized subnet gateway ready patch operation (#1827)
• 02a4caf1 fix duplicate log for tunnel interface decision (#1823)
• b25f58f5 update ovs/ovn version to fix hardware offload (#1821)
• 842d6a34 fix: use full longest word to match full ip about dnat (#1825)
• f12fe0ea update centralize subnet gatewayNode until gw is ready (#1814)
• b9c591f9 initialize IPAM from IP CR with empty PodType for sts Pods (#1812)
• e57021fc kubectl-ko: fix missing env-check (#1804)
• 4c248112 kubectl-ko: fix destination mac (#1801)
• c21c57d1 abort kube-ovn-controller on leader change (#1797)
• d2939e9e avoid invalid ovn-nbctl daemon socket path (#1799)
• aa7b9c8f update vpc-nat-gateway base
• 7674b85f fix: warning for empty chassis fixed (#1787)

Contributors

• bobz965
• hzma
• long.wang
• lut777
• zhangzujian
• 张祖建

v1.10.5 (2022-08-10)

• 88531d50 set release v1.10.5
• 97031bdd prepare for release v1.10.5
• 4a34c5dd delete htb qos when releated annotation is deleted (#1788)
• 66643ba3 perf: fix memory leak
• 84aba41f perf: disable mlockall to reduce memory usage
• 35533738 fix iptables for services with external traffic policy set to Local (#1773)
• 32ee00b6 perf: reduce metrics labels (#1784)
• 93e74c60 northd: remove lookup_arp_ip actions (#1780)
• 6c7f45ef fix install error
• 86173506 fix:can not delete pod with sriov vf (#1654)
• dc77ceb3 dpdk-v2 ，--with-hybrid-dpdk 修改 Dockerfile.base-dpdk 解决 编译安装 ovs-dpdk 正常运行 (#1754)
• 7a1795e6 dpdk-v2 ，--with-hybrid-dpdk qemu 创建 sock 权限问题 (#1739)
• 0541ce98 feature: support exchange link names of OVS bridge and provider nic in underlay networks (#1736)
• 4617d7f7 support kubernetes v1.24 (#1761)
• 29f3d6ed use leases for leader election (#1529)
• f02df1a8 fix iptables for service traffic when external traffic policy set to local (#1728)
• 7f256965 set sysctl variables on cni server startup (#1758)
• 47e39fbf fix: add omitempty to subnet spec
• c9ac0cdf perf: replace jemalloc to reduce memory usage
• 7ffa99e3 avoid patch interface deletion & recreation during restart (#1741)
• 8fa4ca49 only support IPv4 snat in vpc-nat-gw when internal subnet is dual (#1747)
• a46b36d9 enqueue subnets after vpc update (#1722)
• 1bf5dc44 do not add subnet not processed by kube-ovn to vpc (#1735)
• 66d8be9f dpdk-v2 ，--with-hybrid-dpdk qemu 创建 sock 权限问题 (#1739)
• e9c27c60 fix: If pod has snat or eip, also need delete staticRoute when delete pod. (#1731)
• 7841f082 optimize lrp create for subnet in vpc (#1712)
• 994885c8 fix: cancel delete staticroute when it's used by NatRule (#1733)
• f9a84588 fix: wrong info when update subnet from dual to ipv4 or ipv6. (#1726)
• 77988f21 fix overlay MTU in vxlan/stt tunnels (#1693)

Contributors

• Mengxin Liu
• hzma
• long.wang
• xujunjie-cover
• zhouhui-Corigine
• 张祖建

v1.10.4 (2022-07-18)

• 1e4a1959 set release 1.10.4
• 0bbcb389 prepare for release 1.10.4
• fb76c58e fix: response has no gw when create nic without default route (#1703)
• 55b3d508 ignore ovsdb-server/compact error: not storing a duplicate snapshot
• b6084777 Get latest vpc data from apiserver instead of cache (#1684)
• f447a1d5 update priority range in htb qos (#1688)
• bdfdc178 fix: clean vip eip snat dant fip in cleanup.sh (#1690)
• 460f930c add upgrade-ovs script (#1681)

Contributors

• Mengxin Liu
• Wang Bo
• bobz965
• hzma
• xujunjie-cover
• zhangzujian

v1.10.3 (2022-07-13)

• f24ed686 set release 1.10.3
• 02d68f7f prepare for release 1.10.3
• 2c989340 fix: change ovn-ic static route to policy (#1670)
• 1596c9ef fix: Do not Recreate Logical_Router_Port when Vpc recreated (#1570)
• db4f5ad0 Delete pod if subnet of the pod's owner(sts/vm) updated (#1678)
• c41897a0 do not snat packets only for subnets with distributed gateway when external traffic policy is set to local (#1616)
• 8190df3b security: disable pprof by default (#1672)
• 761ddcbc bgp: consolidate service check and use service const (#1674)
• 5cffa97d fix bgp: sync service cache (#1673)
• 874785bf fix iptables for direct routing (#1578)
• f3886af7 fix libovsdb (#1664)
• 662dfa64 mount modules for auto load ip6tables moudles (#1665)
• 1efaeb00 ignore pod not scheduled when reconcile subnet (#1666)
• 4409f6c9 fix ovs-ovn not running on newly added nodes (#1661)
• b5025a6a fix get security group name by external_ids (#1663)
• 4afbaf31 add policy route when add subnet (#1655)

Contributors

• Mengxin Liu
• Money Liu
• Wang Bo
• gugu
• hzma
• lut777
• wangyd1988
• 刘睿华
• 张祖建

v1.10.2 (2022-06-28)

• b1a17c4a set for release 1.10.2
• 4d229555 fix: no need routed when use v1.multus-cni.io/default-network (#1652)
• 40391a03 prepare for release 1.10.2
• 7c4dfe72 fix: subnet failed when create without protocol
• 4b063242 set ether dst addr for dnat on logical switch (#1512)
• 20222e4f CI: delete resources in order to avoid a long time waiting for subnet deletions. (#1643)
• 35e29e16 ci: fix golangci-lint (#1639)
• 4661b76e fix: cleanup should ignore patch failed (#1626)
• 73a53ba7 fix no interface report to multus cni, missing in k8s.v1.cni.cncf.io/network[s]-status (#1636)
• fe5e020e Update install.sh (#1645)
• bd7ff533 set networkpolicy log default to false (#1633)
• 83c9e845 update policy route when join subnet cidr changed (#1638)
• bcf057d1 ci: update trivy options (#1637)
• f93a5273 increase initial delay of ovs-ovn liveness probe (#1634)
• 1a55ce12 wait ovn-central pods running before delete ovs-ovn pods (#1627)
• f8a266d6 get dbstatus for all ovn-central pod (#1619)
• bc838d5a delete "allow" policy route on subnet deletion (#1628)

Contributors

• Mengxin Liu
• ShaPoHun
• halfcrazy
• hzma
• xujunjie-cover
• zhangzujian
• 张祖建

v1.10.1 (2022-06-19)

• 4935fa6a monitor dns in cilium e2e (#1597)
• 3dc29041 prepare for release 1.10.1
• e459688e ci: build amd64 images without avx512 (#1584)
• d7144681 update ovs health check, delete connection to ovn sb db (#1588)
• cfbe55e0 fix: all cluster pod will be in podadd queue (#1587)
• 08ba4215 fix pod could not be ready (#1562)
• c453b7ac fix: delete pod panic when delete vm or statefulset. (#1565)
• 77044e3d fix: clean CRDs introduced by new vpc-nat-gateway (#1563)
• e35f90f1 do not gc vm pod lsp when vm still exists (#1558)
• adabd853 do not delete static routes on controller startup (#1560)
• 4348e58f replace ovn-nbctl daemon with libovsdb in frequent operations (#1544)
• 4cacb4b9 fix exec cmd in vpc nat gateway (#1556)
• 0ed681af CNI: do not return route if nic is not eth0 (#1555)
• 96f232d4 do not nat packets for incoming traffic when service externalTrafficPolicy is Local
• bbb8a697 exit kube-ovn-controller on stopped leading (#1536)
• 4b0bd69e tmp cancel cilium external svc test (#1531)

Contributors

• hzma
• lut777
• xujunjie-cover
• zhangzujian
• 刘睿华
• 张祖建

v1.10.0 (2022-05-15)

• 16d28f75 release 1.10.0
• bcdb3388 use inc-engine/recompute instead of deprecated recompute (#1528)
• 12094766 update kind to v0.13.0 (#1530)
• 673138f2 move dumb-init from base images to kube-ovn image (#1527)
• ad6826d9 fix installing dumb-init in arm64 image (#1525)
• 4eebabc1 optimize ovs request in cni (#1518)
• 7a3f73d5 optimize node port-group check (#1514)
• b7c01d43 logic optimization (#1521)
• 65ee71b4 fix defunct ovn-nbctl daemon (#1523)
• ebe00370 fix arm image (#1524)
• 354d6c3e fix: keep vm's and statefulset's ips when user specified subnet (#1520)
• 6021e528 feature: add doc for tunning packages (#1513)
• 8e72f2e1 add document for windows support (#1515)
• d7ef43b3 reduce ovs-ovn restart downtime (#1516)
• 7b8aa124 finish basic windows support (#1463)
• ecc8268f refactor logical router routes (#1500)
• 51603624 add netem qos when create pod (#1510)
• 5158dd9d handle the case of error node cidr (#1509)
• 1285b039 fix: ovs trace flow always ends with controller action (#1508)
• 69428690 add qos e2e test (#1505)
• f214ee20 optimize IPAM initialization (#1498)
• 367d6b74 test: fix flaky test (#1506)
• 79ad4fcf docs: update README.md
• 85d09ccd synchronize yamls with installation script (#1504)
• 63dc5219 feature: svc of multiple clusters (#1491)
• 011eacf6 use OVS branch-2.17 (#1495)
• afc9ef62 Update USERS.md (#1496)
• b057404b update document for mellanox hardware offload (#1494)
• fb3c3e6e Feature iptables eip nats splits (#1437)
• 0c95402e Update USERS.md (#1493)
• 08a7d5b6 update github actions (#1489)
• ad28dca0 update USER.md (#1492)
• 0db63226 fix: add empty chassis check in ovn db (#1484)
• d631f8f8 feat: lsp forwarding external Layer-2 packets (#1487)
• d4d700ec base: add back kubectl (#1485)
• 59e4ae73 delete ipam record when gc lsp (#1483)
• 73405b2a fix: wrong vpc-nat-gateway arm image (#1482)
• 881622d4 fix pod annotation may override by patch (#1480)
• e772ee95 add acl doc (#1476)
• 6ef72e75 fix: workqueue_depth should show count not rate (#1478)
• 5ba5c526 add delete ovs pods after restore nb db (#1474)
• 73f9d15f delete monitor noexecute toleration (#1473)
• abaebea4 add env-check (#1464)
• 1d6d4653 Support kubevirt vm live migrate for pod static ip (#1468)
• 54cab3aa fix routes for packets from Pods to other nodes
• ba8c5937 add manual compile method for ubuntu20.04 (#1461)
• 7848d71f append metrics (#1465)
• 4f0b1976 Annotation network_type always is geneve
• 6ddba02a masquerade packets from Pods to service IP
• 3d18b8d3 update OVS and OVN for windows
• 39cdfc5c windows support for cni server
• 75d8f4de add kube-ovn-controller switch for EIP and SNAT
• 8ac3e0c0 docs: add USERS.md (#1454)
• 8c214bc9 update topology pic
• cd5c591c feature: add sb/nb db check bash script (#1441)
• fc5f7190 add routed check in circulation (#1446)
• aa756519 modify init ipam by ip crd only for sts pod (#1448)
• 3a5ead6d base: refactor ovn/ovs build (#1444)
• 43051166 log: show the reason if get gw node failed (#1443)
• 8f1e85ae add doc for #1358 (#1440)
• 0c0a0308 prepare windows support for cni server
• 88b07498 modify webhook img to independent image (#1442)
• 3dbfa4de update alpine to fix CVE-2022-1271
• 03af744f fix adding key to delete Pod queue
• 0ea24dcf fix IPAM initialization
• b26a06e7 temporary cancel the external2cluater e2e test for cilium (#1428)
• 94bc2087 ignore all link local unicast addresses/routes
• 9be57346 fix error handling for netlink.AddrDel
• 87164cc9 replace pod name when create ip crd (#1425)
• e7c69ba5 add webhook vaildate the vpc resource whether can be deleted. (#1423)
• c9a58886 We are looking forward to your PR! (#1422)
• 743ce241 support alloc static ip from any subnet after ns supports multi subnets (#1417)
• d3f6431f fix provider-networks status
• 48e0c4ed build ovs/ovn for windows in ci
• 3b4ac99a cilium e2e: deploy k8s without kube-proxy
• 902315ed windows support for CNI
• f2baa2f7 add simple e2e for multus integration
• e3693436 update e2e testing
• 60bf81a3 recover ips CR on IPAM initialization
• 8e1cd468 docs: update ROADMAP.md and MAINTAINERS
• 19ecaeee create ip crd in kube-ovn-controller (#1413)
• 25abbce7 add condition for triggering the deletion of redundant chassises in sbdb (#1411)
• a378fad2 fix: do not recreate port for terminating pods (#1409)
• 9587ad41 update cni version to 1.0
• df83c5fb update underlay environment requirements
• ff695aa3 avoid frequent ipset update
• f475736c add reset for kube-ovn-monitor metrics (#1403)
• 87d6839d fix: The underlay physical gateway config by external-gw-addr when use snat&eip (#1400)
• d36a0d8d add custom acls for subnet (#1395)
• 3206a7a2 check the cidr format whether is correct (#1396)
• a33d519b optimize docs due to frequently asked question. (#1393)
• 7bd25c63 adding IP Protocol enumeration to CRD can reduce the kube-ovn Controller judgment logic (#1391)
• dcc7971a change the wechat qcode
• 677690d5 append vm deletion check (#1390)
• 0d663ebe We should handle the case where the subnet protocol is handled (#1373)
• 7289e87c VIP is decoupled from port security (#1389)
• 12907270 chore: reduce image size (#1388)
• 5e108fe8 docs: update the maintainer and roadmap (#1387)
• fe7cbe1b ci: update kind and k8s
• ea60cdf7 fix external egress gateway
• 22cb15c5 add missing link scope routes in vpc-nat-gateway
• 5571619d update nodeips for restore cmd in ko plugin
• 33180a1c increase memory limit of ovn-central
• aa24894e fix range loop
• 1f24d64d fix probe error
• c621853a update script to add restore plugin cmd
• dd4a5e0d support dpdk (#1317)
• 8ad9e838 Use camel case instead of snake case
• 9f3426ee add detail error when failed to create resource
• 44dae1f7 add restore process for ovn nb db
• c4bb2454 add reset porocess for ovs interface metrics
• 8e8da195 fix SNAT/PR on Pod startup
• e9a4bd5c optimize kube-ovn-monitor yaml
• b11ffa31 Update subnet.go
• 0b43fc80 feat: add webhook to check subnet deletion.
• 21837784 modify ipam v6 release ip problem
• 1264684c skip ping gateway for pods during live migration
• 0da84f83 don't check conflict for migration pod with only static mac
• 89aa2413 add service cidr when init kubeadm
• bfcb0331 docs: add provide and ns spec for multus crd
• 4f987b10 update flag parse in webhook
• 7354d0c3 fix usage of ovn commands
• ffd5c844 add check for pod update process
• fe7a6e03 log: rotate all logs in kube-ovn-cni and add compress
• 024d1684 keep ip for kubevirt pod
• 8c0b358d docs: add integration with Corigine OVS offload
• 07c53120 fix OVS bridge with bond port in mode 6
• baeb3af4 fix: continue of deletion for del pod failed when can't found vpc or subnet (#1335)
• 8e204be4 feat: support DHCP
• 8393f322 Fix usage of ovn commands
• bb7b5e56 resync provider network status periodically
• 62642ea8 Revert "resync provider network status periodically"
• 6ba89e8c use const instead the string
• d8ba8d03 when update gateway info, we should append old to new deploy
• cc124556 resync provider network status periodically
• c53b28b1 fix underlay subnet in custom VPC
• c4a807b1 fix ips update
• 3269bad9 kube-ovn CNI配置文件名字可配置 (#1318)
• 491abaa8 delete the logic of repeated enqueueing
• 31c0b075 add log to file, update upgrade script
• 61c5ebb8 Temporarily comment out the compile and upload of the centos8 compile container.
• aef6595f Revert "Temporarily comment out the compile and upload of the centos8 compile…"
• 79a26873 Temporarily comment out the compile and upload of the centos8 compile container.
• 1fd27d7c feat: add webhook for subnet update validation
• 6ab8e369 optimized decision logic
• af0baa0c Use camel case instead of snake case
• b6764e0b append add cidr and excludeIps annotation for namespace
• a34bb353 feat: vpc peering connection
• 9c5556c8 Remove excess code
• 273eb844 chore: show install options when installing (#1293)
• d5e342c0 feat: update provider network via node annotation
• e9c9b1ce add container compile and insmod
• a90b06a8 add policy route for centralized subnet
• 2a39f793 fix: replace ecmp dp_hash with hash by src_ip (#1289)
• 0fd564e4 Use go to rerimplement ovn-is-leader.sh (#1243)
• 432c4070 fix: only log matched svc with np (#1287)
• cb1a698a feat: Replace command health check with k8s tcpSocket check (#1251)
• b220f0c6 add 'virtual' port for vip (#1278)
• 36c43c48 skip the missing of kube-dns (#1286)
• dad0ef62 fix: check if taint exists before un-taint
• 9365a62d add policy route for distributed subnet in default vpc
• a5ca73c8 ci: add retry to fix flaky test
• 4fdca714 set up tunnel correctly in hybrid mode
• 7f8f322b check static route conflict
• e7bf87b8 fix: kubeovn#1271 (comment)
• 017e5125 transfer IP/route earlier in OVS startup
• ee2ccf1b delete unused constant
• 4022bd57 add metric for ovn nb/sb db status
• fdcc833a add gateway check after update subnet
• f40e26ad we should first see if a condition is not going to be met
• 3ae628cb add judge before use slices index
• 47625c52 prevent multiple namespace reconcile
• 4455c869 prevent multiple namespace reconcile
• 6b60a587 fix: validate statefulset pod by name
• fa02cb21 fix golang and base image versions
• f210b934 add back centralized subnet active-standby mode
• 2557c516 support to add multiple subnets for a namespace
• c230ed8a prepare for next release
• f95a90eb Support only configure static mac_address

Contributors

• Cookie Wang
• Fudankenshin
• Mengxin Liu
• Samuel Liu
• amoy-xuhao
• bob199x
• bobz965
• caohuilong
• chestack
• fanriming
• gongysh2004
• hackeren
• halfcrazy
• hzma
• jyjiangkai
• long.wang
• lut777
• pengbinbin1
• wang_yudong
• wangyd1988
• xujunjie
• xujunjie-cover
• yi.luo
• zhangzujian
• 尚墨
• 张祖建
• 罗云鹤
• 范日明

v1.9.18 (2023-01-03)

• 015c427b ci: add publish action
• cd763391 add netem qos when create pod (#1510)
• 2dcc95ca ovn nb and sb can't bind lan ip in ssl merge to 1.9 (#2201)
• 25281a9f ci: load image to kind for helm install
• 0f3569ca prepare for release v1.9.18
• 39bed325 local ip bind to service merge to release 1.9 (#2197)
• 9ec4b1e7 fix: change condition to conditions
• c69685cd fix: ovs gc just for pod if (#2187)
• 799c824d update docs link in install.sh (#2196)
• ec852551 Release 1.9 (#2181)
• 28c5e0ce ignore conflict check for pod ip crd (#2188)

Contributors

• Mengxin Liu
• changluyi
• hzma
• lut777
• tonyleu
• 马洪贞

v1.9.17 (2022-12-14)

• 4c93a29f An error occurred when netpol was added in double-stack mode (#2160)
• f5b65e3e add process for delete networkpolicy start with number (#2157)
• 37af103c prepare for release 1.9.17
• 6c32c3c8 security: remove private key file
• 0338f7e8 security: fix security issues
• 51828313 update version to v1.9.16 in install.sh
• abaa37bf add check for subnet cidr (#2153)
• b2f78e9a delete nc cmd in image (#2148)
• d2b5b7c3 some optimization for provider network status update (#2135)
• d8d4e913 kind: support to specify api server address/port (#2134)
• 096c82f0 fix: sometimes alloc ipv6 address failed sometimes ipam.GetStaticAddress return NoAvailableAddress
• a15504c3 optimize provider network (#2099)
• 410c8af5 Revert "optimize provider network (#2099)"
• 602901a2 optimize provider network (#2099)

Contributors

• Mengxin Liu
• changluyi
• fanriming
• hzma
• wangyd1988
• zhangzujian
• 张祖建
• 马洪贞

v1.9.16 (2022-12-05)

• 0ea8c26a prepare for release 1.9.16
• aac811b5 fix policy route for subnets with logical gateway (#2108)
• ba632d66 fix lint
• 2319d1ee replace klog.Fatalf with klog.ErrorS and klog.FlushAndExit (#2093)

Contributors

• zhangzujian
• 张祖建

v1.9.15 (2022-11-29)

• 989af9f3 prepare for release v1.9.15
• 1343a908 fix: del createIPS (#2087)
• 524b6d3f check if externalIds map is nil when add node as gw for centralized subnet (#2088)
• 6a392dfa fix ovs bridge not deleted cause by port link not found (#2084)
• 14c9840f fix gosec error
• 1ce4713e bump go version to 1.18
• c52c9f3b fix libovsdb issues (#2070)
• c97b1f1d refactor: add unknown config to lsp (#2076)
• d1bd047b fix: replace replace with add to override existing route (#2061)
• 06d22315 fix OVN LS/LB gc (#2069)
• 3200e272 update ipv6 address for vpc peer (#2060)
• f9024540 perf: reduce controller init time (#2054)
• 7ca28c9d pass klog verbosity to libovsdb (#2048)
• 6872bfd2 use the latest base image
• bcd42d2a ovs: fix reaching resubmit limit in underlay (#2038)
• b45ee71f fix: vpc and vpc nat gw not clean (#2032)

Contributors

• Mengxin Liu
• bobz965
• changluyi
• hzma
• lut777
• zhangzujian
• 张祖建

v1.9.14 (2022-11-11)

• 9581d06b set release for 1.9.14
• 6ba9954f fix pinger namespace error (#2034)
• 0c9fd3f0 prepare release for 1.9.14
• 9cbb07a6 fix: gateway route should stay still when node is pingable (#2011)
• ab2a1f12 update np name with character prefix (#2024)
• ec4fe022 bump kind and node image versions (#2023)
• 5f9dca93 fix ovn nb/sb health check (#2019)
• d7e78b8a fix ovs fdb for the local bridge port (#2014)
• d41c467a do not need to delete pg when update networkpolicy (#1959)
• 52310595 add helm and e2e test (#1992)
• 85b8dd66 add check of write to ovn sb db for ovn-controller (#1989)

Contributors

• Noah
• hzma
• lut777
• zhangzujian
• 张祖建

v1.9.13 (2022-10-26)

• 354d6217 update ovs version to branch-2.16 (#1988)
• 574f31fd fix grep matching device in routes (#1986)
• 8fa0fa34 delete pod after TerminationGracePeriodSeconds (#1984)
• 1f7b58d4 ovs: fix waiting flows in underlay networking (#1983)
• 2506a4df use latest base image
• 1c6ea035 ovn db: recover automatically on startup if db corruption is detected (#1980)
• d7aabe2c prepare for release 1.9.13
• adda63c0 fix CVE-2022-32149
• 6ffaa44f avoid concurrent subnet status update (#1976)
• f0754587 upgrade ovs-ovn pod by generation version instead of chart version (#1960)
• 78d9cfd3 fix metrics name (#1977)
• 1aaa6e48 add vm pod to ipam by ip when initIPAM (#1974)
• d7ac1503 validate nbctl socket path in start-controller.sh
• e6adb1e1 skip CVE-2022-3358 (#1972)
• b4fe883c use latest base image
• b3a1cf65 fix: add default deny acl (#1935)
• 903eff03 ovs: fix mac learning in environments with hairpin enabled (#1943)
• aa50a2ef Fix registry for ovn-central container in install.sh (#1951)
• e9a1af07 ovs: add fdb update logging (#1941)

Contributors

• Mengxin Liu
• hzma
• lut777
• runzhliu
• zhangzujian
• 张祖建
• 马洪贞

v1.9.12 (2022-09-29)

• 42c2a82c add chart version check when upgrade ovs-ovn pod
• 04338c84 fix underlay e2e testing (#1929)
• 6c710acb prepare for release v1.9.12
• 4f2f4058 set leader flag when get leader
• 495e1632 set ovsdb-server vlog level to avoid warnings caused by ovs-vsctl (#1937)
• 5f23adc6 use leases for leader election (#1529)

Contributors

• 张祖建
• 马洪贞

v1.9.11 (2022-09-21)

• 44cee1df prepare release 1.9.11
• 07819218 fix: pod mistaken ls label (#1925)
• ff176b89 ignore pod without lsp when add pod to port-group
• 6df23c2b add network partition check in ovn probes
• 270e9dc3 feat: Replace command health check with k8s tcpSocket check (#1251)
• 64c41a5d fix CVE-2022-27664
• ed8ba4c6 update ns annotation when subnet cidr changed (#1921)

Contributors

• hzma
• lut777
• zhangzujian
• 尚墨
• 马洪贞

v1.9.10 (2022-09-13)

• f7a62ca7 set release 1.9.10
• f9f49266 prepare for release 1.9.10
• 455863a0 fix: gatewaynode might be null (#1896)
• 23756538 fix: api rollback
• 0522d9eb fix: diskfull may lead to wrong raft status for ovs db (#1635)
• 23def0a2 kubectl-ko: turn off pipefail for ovn leader check (#1891)
• 451c88ab fix logrotate issues
• a98cffa4 fix security issues
• 493b42de security: conform to gosec G114 (#1860)
• ceb3855e fix duplicate logs for leader election (#1886)
• 7ae439b0 delete and recreate netem qos when update process (#1872)

Contributors

• Mengxin Liu
• hzma
• lut777
• zhangzujian
• 尚墨
• 张祖建

v1.9.9 (2022-08-30)

• c4701fd2 set release 1.9.9
• 33d027af feat: reduce downtime by increasing arp cache timeout
• b90769f3 feat: reduce wait time by counting the flow num.
• 2afbe408 fix: missing stop_ovn_daemon args
• 37b9f2f8 delete log severity for drop acl when update networkpolicy
• 82026bbd base: use patch from OVN upstream (#1844)
• f9a2d8de prepare release for 1.9.9
• 7138087c ovs: fix log file descriptor leak in monitor process (#1855)
• c6f9565c fix ovs-ovn logging (#1848)
• b3a6998e fix: add and set ENABLE_KEEP_VM_IP=true to keep vm ip (#1702)
• 20ed2329 fix: multus macvlan ipvlan use kube-ovn ipam，but ip not inited in init-ipam (#1843)
• 4c40a20d fix underlay e2e (#1828)
• eb1706bc fix arping error log (#1841)
• 5757b8ec ko: fix kube-proxy check (#1842)
• 2000e996 ci: switch environment to ubuntu-20.04 (#1838)
• 919bb236 update centralized subnet gateway ready patch operation (#1827)
• 1c3b622c fix duplicate log for tunnel interface decision (#1823)
• e4d53217 update centralize subnet gatewayNode until gw is ready (#1814)
• d44de3e0 initialize IPAM from IP CR with empty PodType for sts Pods (#1812)
• 3eb1d1ad kubectl-ko: fix missing env-check (#1804)
• 5613b63c kubectl-ko: fix destination mac (#1801)
• 1284f15d abort kube-ovn-controller on leader change (#1797)
• 5bf8de0f avoid invalid ovn-nbctl daemon socket path (#1799)
• 4680e632 update vpc-nat-gateway base
• 4cce7870 fix: warning for empty chassis fixed (#1786)

Contributors

• Mengxin Liu
• bobz965
• hzma
• lut777
• zhangzujian
• 张祖建

v1.9.8 (2022-08-10)

• 686d913c set release v1.9.8
• 8de35693 prepare for release v1.9.8
• 38ee8301 delete htb qos when releated annotation is deleted (#1788)
• 85bd5f94 perf: fix memory leak
• 46c970d6 perf: disable mlockall to reduce memory usage
• d7fd3793 perf: reduce metrics labels (#1784)
• d7a9f5e9 feature: support exchange link names of OVS bridge and provider nic in underlay networks (#1736)
• b966dd59 perf: replace jemalloc to reduce memory usage (#1764)
• 8bb8b173 fix: add omitempty to subnet spec (#1765)
• fd676437 set sysctl variables on cni server startup (#1758)
• 7c6250f3 avoid patch interface deletion & recreation during restart (#1741)
• a91056a3 enqueue subnets after vpc update (#1722)
• e895c5ff do not add subnet not processed by kube-ovn to vpc (#1735)
• f13f3f46 add logrotate for kube-ovn log (#1740)
• 70246fb9 fix: If pod has snat or eip, also need delete staticRoute when delete pod. (#1731)
• 76e3c670 fix iptables for service traffic when external traffic policy set to local(#1725)
• cee39213 optimize lrp create for subnet in vpc (#1712)
• 21f0b979 fix: cancel delete staticroute when it's used by NatRule (#1733)
• 4c2d0c86 fix: wrong info when update subnet from dual to ipv4 or ipv6. (#1726)
• 417176ed fix: new ovn-ic static route method adapted due to old ovn version (#1718)

Contributors

• Mengxin Liu
• hzma
• lut777
• xujunjie-cover
• zhangzujian
• 张祖建

v1.9.7 (2022-07-18)

• eb412c96 set release 1.9.7
• 07bec2a2 prepare for release 1.9.7
• a798a8c2 Get latest vpc data from apiserver instead of cache (#1684)
• 8bc1b169 update priority range in htb qos (#1688)
• ef4673d2 add upgrade-ovs script (#1681)

Contributors

• Mengxin Liu
• Wang Bo
• hzma

v1.9.6 (2022-07-13)

• 6db04118 set release 1.9.6
• 885e41f6 prepare for release 1.9.6
• 556a2cf8 shim: fix diffs of commits
• 67da728a fix: change ovn-ic static route to policy (#1670)
• a7a11f03 fix: Do not Recreate Logical_Router_Port when Vpc recreated (#1570)
• e2ab703a feat: vpc peering connection
• 7699a34b Delete pod if subnet of the pod's owner(sts/vm) updated (#1678)
• 02e8973a security: disable pprof by default (#1672)
• 0242b9c2 bgp: consolidate service check and use service const (#1674)
• 3401d933 fix bgp: sync service cache (#1673)
• f818ca5c fix libovsdb (#1664)
• a11feff7 mount modules for auto load ip6tables moudles (#1665)
• 2882cafc ignore pod not scheduled when reconcile subnet (#1666)
• 91dfbbf4 fix get security group name by external_ids (#1663)
• e56d581b add policy route when add subnet

Contributors

• Mengxin Liu
• Money Liu
• Wang Bo
• gugu
• hzma
• lut777
• wangyd1988
• 刘睿华
• 张祖建
• 范日明

v1.9.5 (2022-06-28)

• 8a2cc741 set for release 1.9.5
• 9935ab54 fix: no need routed when use v1.multus-cni.io/default-network (#1652)
• 60d33ca9 prepare for release 1.9.5
• a48e64ae CI: delete resources in order to avoid a long time waiting for subnet deletions. (#1643)
• 502a7a00 set networkpolicy log default to false (#1633)
• 0bda2e6f update policy route when join subnet cidr changed (#1638)
• 3cfafe40 ci: update trivy options (#1637)
• 71dba393 increase initial delay of ovs-ovn liveness probe (#1634)
• cf0bbd92 wait ovn-central pods running before delete ovs-ovn pods (#1627)
• 0877c3a7 get dbstatus for all ovn-central pod (#1619)
• 51c409bd fix issues about OVN policy routing
• 637503b4 use policy route instead of static route (#1618)

Contributors

• hzma
• xujunjie-cover
• zhangzujian
• 张祖建

v1.9.4 (2022-06-19)

• c85ab203 ci: disable cilium e2e for release
• 0a841aa1 prepare for release 1.9.4
• f99f4e81 update ovs health check, delete connection to ovn sb db (#1588)
• 82d7dd37 fix: all cluster pod will be in podadd queue (#1587)
• 3c68cb9b fix pod could not be ready (#1562)
• f39ff7a8 fix: delete pod panic when delete vm or statefulset. (#1565)
• 4c60872f fix: keep vm's and statefulset's ips when user specified subnet (#1520)
• 81781a01 do not gc vm pod lsp when vm still exists (#1558)
• 4a28c014 fix exec cmd in vpc nat gateway (#1556)
• 67db2bf3 CNI: do not return route if nic is not eth0 (#1555)
• d5fce51d exit kube-ovn-controller on stopped leading (#1536)
• 05a4b4dc remove name for default drop acl in networkpolicy (#1522)
• 6fcc1975 tmp cancel cilium external svc test (#1531)
• fe3bb3e5 move dumb-init from base images to kube-ovn image

Contributors

• hzma
• lut777
• xujunjie-cover
• 刘睿华
• 张祖建

v1.9.3 (2022-05-13)

• a2ba0c15 release 1.9.3
• 0695d31e fix defunct ovn-nbctl daemon
• f8594a29 optimize ovs request in cni (#1518)
• 08f2961d optimize node port-group check (#1514)
• 9ec4a430 reduce ovs-ovn restart downtime (#1516)
• b55fa987 prepare for release 1.9.3
• e4ba2e6d fix: ovs trace flow always ends with controller action (#1508)
• 2e681af3 optimize IPAM initialization
• 76fe9cef ci: skip some checks
• 51dc9243 delete ipam record and static route when gc lsp (#1490)

Contributors

• Mengxin Liu
• hzma
• zhangzujian

v1.9.2 (2022-04-25)

• 6273d294 release for v1.9.2
• c98322d7 fix: wrong vpc-nat-gateway arm image (#1482)
• bc4f761c add delete ovs pods after restore nb db (#1474)
• 945f2336 delete monitor noexecute toleration (#1473)
• 35ecc687 add env-check (#1464)
• 1f68e12a append metrics (#1465)
• 302156bc masquerade packets from Pods to service IP
• 4faa8831 add kube-ovn-controller switch for EIP and SNAT
• 300a1643 ignore cni cve
• 75383df3 add routed check in circulation (#1446)
• c4f5f4d6 modify init ipam by ip crd only for sts pod (#1448)
• 135798dc log: show the reason if get gw node failed (#1443)
• 9bec51be9 modify webhook img to independent image (#1442)
• e1d6dbf6 support keep-vm-ip and live-migrate at the same time (#1439)
• 613b6ae5 update alpine to fix CVE-2022-1271
• 553bedd2 fix adding key to delete Pod queue
• d899cc97 fix IPAM initialization
• e159443d ignore all link local unicast addresses/routes
• 06bd4f86 fix error handling for netlink.AddrDel
• 71e3f119 replace pod name when create ip crd
• 8e65f6f6 support alloc static ip from any subnet after ns supports multi subnets (#1417)
• 9bc2f96a fix provider-networks status
• 269f819a recover ips CR on IPAM initialization
• dc43dc20 create ip crd in kube-ovn-controller (#1413)
• 41f8e26b add condition for triggering the deletion of redundant chassises in sbdb (#1411)
• 2aedc6ac fix: do not recreate port for terminating pods (#1409)
• d5556404 avoid frequent ipset update
• c86ff85e fix: The underlay physical gateway config by external-gw-addr when use snat&eip (#1400)
• deea9ded add reset for kube-ovn-monitor metrics (#1403)
• 899de6ff check the cidr format whether is correct (#1396)
• b54364b4 update dockerfile to use v1.9.1 base img
• 24190501 append vm deletion check
• 1953712a delete repeat para
• 7c0348a7 update nodeips for restore cmd in ko plugin
• f320ef8f fix external egress gateway
• c3e17d8c add missing link scope routes in vpc-nat-gateway
• 9d9d5878 increase memory limit of ovn-central
• c4092113 fix range loop
• 7397db27 update script to add restore plugin cmd

Contributors

• Mengxin Liu
• hzma
• lut777
• wangyd1988
• xujunjie-cover
• zhangzujian

v1.9.1 (2022-03-09)

• 46eb49ad release update 1.9.1 changelog (#1361)
• 59594fed add restore process for ovn nb db
• de794986 optimize kube-ovn-monitor yaml
• 47a16c38 add reset porocess for ovs interface metrics
• a3618bcd fix SNAT/PR on Pod startup
• 81247723 modify ipam v6 release ip problem
• 0006902b skip ping gateway for pods during live migration
• 092db781 update flag parse in webhook
• 222a1fb6 feat: add webhook for subnet update validation
• 0615254e keep ip for kubevirt pod
• 87bb7f18 add check for pod update process
• 7886467a fix ips update
• ab3f0a6d append htbqos para in crd yaml
• a68a55f9 fix: replace ecmp dp_hash with hash by src_ip (#1289)
• dd08ecab fix OVS bridge with bond port in mode 6
• 5fd56d1e fix: continue of deletion for del pod failed when can't found vpc or subnet (#1335)
• 0d114958 Fix usage of ovn commands
• 621e2b57 resync provider network status periodically
• 10ac8c3a Revert "resync provider network status periodically"
• fadc1316 fix statefulset Pod deletion
• b74eaccc resync provider network status periodically
• 9a0f708f fix underlay subnet in custom VPC
• 69b3d72a append add cidr and excludeIps annotation for namespace
• c63cb106 support to add multiple subnets for a namespace
• 3f818b72 feat: update provider network via node annotation
• 57f16570 fix: only log matched svc with np (#1287)
• 288c5fe9 transfer IP/route earlier in OVS startup
• 4c4390b3 add metric for ovn nb/sb db status
• 92e7b975 check static route conflict
• 67a7d85b set up tunnel correctly in hybrid mode
• eabed9cc fix clusterrole in ovn-ha.yaml
• 65b83219 add gateway check after update subnet
• f3f8c4dc fix: validate statefulset pod by name
• b5544bc3 add back centralized subnet active-standby mode

Contributors

• Mengxin Liu
• chestack
• hzma
• lut777
• xujunjie
• xujunjie-cover
• zhangzujian

v1.9.0 (2022-01-12)

• e4d48df3 prepare for release 1.9.0
• c830594d fix: liveMigration with IPv6
• e52b6897 update networkpolicy port process
• 851ad0ce Add args to configure port ln-ovn-external
• 5d95d628 update check for delete statefulset pod
• 695f4532 ignore hostnetwork pod when initipam
• 4b98d15f kubectl-ko: support trace Pods being created
• 63bc25ea add dnsutils for base image
• 6318d004 Add new arg to configure ns of ExternalGatewayConfig
• 71522920 update scripts for 1.8.2
• 960f02c1 Optimized decision logic
• 8974f6a3 add svc cidr in ovs LB for optimization
• 0192a9ae add doc for gateway pod in default vpc
• 1f9dc754 optimize log for node port-group
• 36d6b00a fix iptables rules and service e2e
• 8dc938d8 add kubectl-ko to docker image
• c4cc8f0d fix: invalid syntax error
• a4f4cb49 fix pod tolerations
• 8611de82 modify pod's process of update for use multus cni as default cni
• 5ab83ba4 fix installation script
• 09ef9be0 add log for ecmp route
• 791b00f4 fix: ipv6 traffic still go into ct
• 55e6a8ca append check for centralized subnet nat process
• 58a44fb2 move chassis judge to the end of node processing
• 9f0c42fa change nbctl args 'wait=sb' to 'no-wait'
• 6f356705 use different ip crd with provider suffix for pod multus nic
• f7b595dc fix service cidr in dual stack cluster
• c510b439 add healthcheck cmd to probe live and ready
• e14bc40c delete frequently log
• bde98e75 support running ovn-ic e2e on macOS
• 727ea53a pinger: fix getting empty PodIPs
• 205a0c02 fix cni deepcopy
• 650ea6d3 add cilium e2e
• 46ba84ee filter used qos when delete qos
• 1de284eb add protocol check when subnet is dual-stack
• 1f4a247d lint: make go-lint happy
• 91f3fa4b some fixes
• d57bc1d7 compatible with OVN 20.06
• 9116425a use multus-cni as default cni to assign ip
• d18323a4 some fixes
• 668c2125 perf: jemalloc and ISA optimization
• 5c08d28d fix: check np switch
• 36571555 fix: port security
• e713bdf0 fix nat rule
• d8e84cf0 When netpol is added to a workload, the workload's POD can be accessed using service
• 51365b41 when update subnet's execpt ip,we should filter repeat ip
• 5aacec59 update wechat image
• 6c8fa978 fix: do not reuse released ip after subnet updated
• e4648cc8 update: update 1.7-1.8 script
• b1f8332c perf: do not send traffic to ct if not designate to svc
• 178cf7b8 fix: add back the leader check
• 7be43c97 fix port_security
• e596c3c4 sync live migration vm port
• e8b1ff5b docs: add f5 ces integration docs
• 7058d568 update Go modules
• 84dbb102 update delete operation for statefulset pod
• e9e2c911 chore: update klog to v2 which embed log rotation
• fafd5555 fix: add kube-ovn-cni prob timeout
• 490590a4 append add db compact for nb and sb db
• 4fb302f5 deleting all chassises which are not nodes
• c49a7404 add db compact for nb and sb db
• 3b7ec06c add vendor param for fix list LR
• ae23d3df fix LB: skip service without cluster IP
• df3d3977 add webhook with cert-manager issued certificate
• 2be11269 security: update base ubuntu image
• eb364717 add pod in default vpc to node port-group
• ea300d2b fix pinger's compatibility for k8s v1.16
• 3837b0a2 check IPv4 gateway by resolving gateway MAC in underlay subnets
• 75604b5d add nodeSelector for vpc-nat-gateway pod
• fac6c725 do not send multicast packets to conntrack
• c3004bbc Revert "support to set NB_Global option mcast_privileged"
• 2802b94d add ip address for lsp
• 28a93927 fix: no need to set address for ls to lr port
• 2048007a add sg acl check when init
• b9abee71 cleanup command flags
• 54a3b913 replace port-group named address-set with port-group since there's no ip set for lsp when create lsp
• 743502cd support to set NB_Global option mcast_privileged
• a5f0256a add networkpolicy support for attachment cni
• 45f64bfa add process for pod attachment nic with subnet in default vpc
• 49e9197e fix security group
• 60e896f8 fix the duplicate call about strings.Split
• c9f5f4b4 deepcopy fix steps
• e0cb19aa fix: do not nat route traffic
• 4e4d95d5 fix: Skip MAC address Settings when PCI addresse is unavailable
• adce05c7 add ovn-ic e2e
• 3b6b5034 other CNI can be used as the default network
• 841f907b fix: move macvlan binary to host
• 52ec0af4 Revert "ci: init kind cluster before build finish"
• a8599325 fix ko trace
• 1dd66a77 add ovn-ic HA deploy
• bc3ce0bb fix node address set name
• cbed2820 update cni init image
• a648bfc6 chore: update kind k8s to 1.22 and remove pre 1.16 support
• a1d56e97 do not set bridge-nf-call-iptables
• 738c7612 use logical router policy for accessing node
• 6719ee24 ci: init kind cluster before build finish
• 61817bf4 reduce qos query with ovs-vsctl cmd
• 1776c447 fix read-only pointer in vlan and provider-network
• 329228d4 fix: trace in custom vpc
• a9c0a4aa fix read-only pointer in vlan and provider-network
• 62df3416 update docs
• a546ba95 fix LB in dual stack cluster
• eb63f72e fix: check allocated annotation in update handler
• 55b8b8ac support using logical gateway in underlay subnet
• ef424d73 docs: optimize cilium integration docs
• a09e84d0 fix: ensure all kube-ovn components deleted before annotate pods
• e7aeb96e fix bug: logical switch ts not ready
• dc4e693f Fix unpopulated CPU charts
• 003723e5 Revert "get default subnet"
• 418feb1b add htbqoses rbac
• 850e4218 feat: pod can use multiple nic with the same subnet
• 5840d509 add error detail
• e6377cae add check switch for default subnet's gateway
• b5b6c326 get default subnet
• fbafca41 remove node chassis annotation on cleanup
• 348eaf36 update: add 1.7 to 1.8 update scripts
• f934613d base: add macvlan to help vpc setup
• cd1dda1e fix: delete vpc-nat-gw deployment
• 50eddac3 ko: check ovsdb storage status
• 20670e87 fix cleanup.sh and uninstall.sh
• b31c4d19 use constant instead a string
• 86f63f26 fix: check and load ip_tables module
• 3bfd82b7 fix: multus-cni subnet allocation
• e5ed1ace docs: add svg
• 17ff6c55 chore: update install
• ce97b94c integrate Cilium into Kube-OVN
• fda0c17b fix kubectl-ko diagnose
• 3f8a2b0e change inspection logic from manually adding lsp to just readding pod queue
• 01ca82f9 fix pinger in dual stack cluster
• 0ba64dea add e2e testing for dual stack underlay
• 7f27a05d fix pinger and monitor in underlay networking
• 6a56f8bb fix kubectl plugin ko
• 2c9fe438 adjust the location of the log
• 86ee933a ci: push vpc-nat-gateway
• f459ca97 replace api for get lsp id by name
• 0a533984 docs：revise vpc.md
• 78847899 grafana: optimize grafana dashboard
• 168a7c97 In netpol egress rules, except rule should be set to != and should not be ==
• d7edf24b ci: add vpc-nat-gateway build
• 5cd32df8 Update OVN to version 21.06
• dd36d61c modify kube-ovn as multus-cni problem
• d17f6151 support to set htb qos priority
• c20e0111 perf: add fastpath module for 4.x kernel
• ff5d3df3 add inspection
• 3e9f9a99 perf: add stt section and update benchmark
• d3842327 feat: optimize log
• 4c6c29a3 fix: init node with wrong ipamkey and lead conflict
• 47255a10 fix installation scripts
• fd745487 fix getting LSP UUID by name
• 1f5719a5 fix StatefulSet down scale
• 5bccd845 fix vpc policy route
• acb82de0 docs: update roadmap
• 87f9b863 refactor: mute ovn0 ping log and add ping details
• a99c4200 fix: wrong link for iptables
• 52b01c01 fix IPAM for StatefulSet
• 51511e63 append externalIds for pod and node when upgrade
• 391f7014 feature: LoadBalancer for custom VPC
• 7fd8cf44 feat: support vip
• 25f634fb fix VPC document
• 97a5b2a3 fix init ipam
• 71fcbf12 fix: gc lb
• 2b154b1a Update prometheus.md
• 1e766f9c feat: support VLAN subnet in VPC
• 4c013a3e ci: push dev image to separate repo
• 39c8a19c fix: kubeclient timeout
• edaf41e0 fix: serialize pod add/delete order
• 78a77f79 perf: increase ovn-nb timeout
• 5937ccbf fix gc lsp statistic for multiple subnet
• c71620ce fix: re-check ns annotation to avoid annotations lost
• d40d5701 perf: do not diagnose external access
• 871c1493 feature: vpc support policy route
• 90b1a2ea reactor: remove ovn ipam options
• 7f43f25c perf: switch's router port's addresses to "router"
• 8dbe8f94 lint: make staticcheck happy
• 8ad46dad fix e2e testing
• 5a126378 prepare for next release
• 5b70c81d fix variable referrence
• 42fed929 fix typos
• f59aff27 refactor: reuse waitNetworkReady to check ovn0 and slightly improve the installation speed
• ea723d6d fix nat-outgoing/policy-routing on pod startup
• 2439c86e feat: suport vm live migration

Contributors

• Mengxin Liu
• MengxinLiu
• azee
• chestack
• feixiang43
• huangjunwei
• hzma
• lhalbert
• liqd
• luoyunhe
• lut777
• pengbinbin1
• vseeker
• wang_yudong
• wangchl01
• zhangzujian
• 范日明

v1.8.14 (2022-11-04)

• aec4eaeb fix: get ecmp nodecheck back (#2016)
• b714e057 fix: gateway route should stay still when node is pingable (#2015)
• 898247c0 do not need to delete pg when update networkpolicy (#1959)
• 7adf4ea7 do not set bridge-nf-call-iptables
• d6ddf891 add check of write to ovn sb db for ovn-controller (#1989)
• 4e17fe73 fix grep matching device in routes (#1986)
• eb0cf474 delete pod after TerminationGracePeriodSeconds (#1984)
• 264beb59 ovs: fix waiting flows in underlay networking (#1983)
• 640806d5 use latest base image
• 469b32ae ovn db: recover automatically on startup if db corruption is detected (#1980)
• fd155293 prepare for release 1.8.14
• 4dbefaf2 fix CVE-2022-32149
• 317780a4 avoid concurrent subnet status update (#1976)
• 3d0c5eb6 modify build error
• b65b3de1 fix metrics name (#1977)
• 05011718 add vm pod to ipam by ip when initIPAM (#1974)
• 0890fdf9 validate nbctl socket path in start-controller.sh
• e5c59e5b skip CVE-2022-3358 (#1972)
• 2f4a56a3 use latest base image
• ea03249d fix: add default deny acl (#1935)
• e89ace5e ovs: fix mac learning in environments with hairpin enabled (#1943)
• 62491a53 Fix registry for ovn-central container in install.sh (#1951)
• d96cba57 ovs: add fdb update logging (#1941)
• 433c3b93 prepare for release v1.8.13
• 93e82147 set ovsdb-server vlog level to avoid warnings caused by ovs-vsctl (#1937)
• a03c8064 update Go to v1.17
• 41e697a1 add network partition check in ovn probes
• 78e73937 feat: Replace command health check with k8s tcpSocket check (#1251)
• df29bb2e fix CVE-2022-27664
• b35037d0 update ns annotation when subnet cidr changed (#1921)

Contributors

• Mengxin Liu
• hzma
• lut777
• runzhliu
• zhangzujian
• 尚墨
• 张祖建
• 范日明
• 马洪贞

v1.8.12 (2022-09-13)

• 6e97d651 set release 1.8.12
• 845ee70f prepare release 1.8.12
• c39d51a3 fix: gatewaynode might be null (#1896)
• 08331bae fix: api rollback
• 3f96a632 fix logrotate issues
• fb4ac005 fix security issues
• d289215e security: conform to gosec G114 (#1860)
• 7451d098 fix: diskfull may lead to wrong raft status for ovs db (#1635)
• dd22f682 kubectl-ko: turn off pipefail for ovn leader check (#1891)
• d2be779e fix ip6tables link
• e1034427 fix duplicate logs for leader election (#1886)

Contributors

• Mengxin Liu
• lut777
• zhangzujian
• 尚墨
• 张祖建

v1.8.11 (2022-08-30)

• 9f059091 set release 1.8.11
• 5fa2a8e1 feat: reduce downtime by increasing arp cache timeout
• c18cae4e feat: reduce wait time by counting the flow num.
• c8e36b5e fix: missing stop_ovn_daemon args
• e5735c20 delete log severity for drop acl when update networkpolicy (#1862)
• 4bcfb373 prepare release for 1.8.11
• 9d7f0a59 ovs: fix log file descriptor leak in monitor process (#1855)
• 446ee6a2 fix ovs-ovn logging (#1848)
• 63b218c6 fix: multus macvlan ipvlan use kube-ovn ipam，but ip not inited in init-ipam (#1843)
• 95c8ca4f ko: fix kube-proxy check (#1842)
• b7b7d26d avoid patch interface deletion & recreation during restart
• 2746a195 ci: switch environment to ubuntu-20.04 (#1838)
• cacb1ec4 fix base failure
• 3941595b update base image
• 2938daaa fix base build failure
• 122754aa update centralized subnet gateway ready patch operation
• c3f23af3 fix duplicate log for tunnel interface decision (#1823)
• 3d966bff update version to v1.8.10 (#1819)
• dfc89924 do not check static route conflict (#1817)
• a6403f0e update centralize subnet gatewayNode until gw is ready (#1814)
• 7103aae8 initialize IPAM from IP CR with empty PodType for sts Pods (#1812)
• b669c673 abort kube-ovn-controller on leader change (#1797)
• 0e0ea3c7 avoid invalid ovn-nbctl daemon socket path (#1799)
• a7f499dd do not wait dynamic address for pod (#1800)
• 2b34fd58 update vpc-nat-gateway base
• 8d2d0b1e append delete static route for sts pod (#1798)
• 9dc6e15e perf: fix memory leak
• 14beb484 perf: disable mlockall to reduce memory usage
• e6eace89 set sysctl variables on cni server startup (#1758)
• 020b20de fix: add omitempty to subnet spec (#1765)
• 3e77c51c fix CVE-2022-21698
• c5212982 add logrotate for kube-ovn log (#1740)
• ef275cc1 fix: cancel delete staticroute when it's used by NatRule (#1733)
• 513a30b5 fix: wrong info when update subnet from dual to ipv4 or ipv6. (#1726)
• aef889ae Get latest vpc data from apiserver instead of cache (#1684)

Contributors

• Mengxin Liu
• Wang Bo
• bobz965
• hzma
• xujunjie-cover
• zhangzujian
• 张祖建

v1.8.9 (2022-07-13)

• 9050b22d set release 1.8.9
• c42900d6 prepare for release 1.8.9
• ff928386 [PATCH] Delete pod if subnet of the pod's owner(sts/vm) updated (#1678)
• f216a2f5 security: disable pprof by default (#1672)
• a984c913 update ovs health check, delete connection to ovn sb db (#1588)

Contributors

• Mengxin Liu
• Wang Bo
• hzma

v1.8.8 (2022-06-28)

• 0fbefff5 set release 1.8.8
• 37df8e76 prepare for release 1.8.8
• bf873330 CI: delete resources in order to avoid a long time waiting for subnet deletions. (#1643)
• de117356 add ovn-ic HA deploy
• 1dcf9a43 set networkpolicy log default to false

Contributors

• hzma
• lut777
• 张祖建

v1.8.7 (2022-06-19)

• 46987551 prepare for release 1.8.7
• b6796d09 cni handler: do not wait routed annotation for net1 (#1586)
• f5c3ed3f fix adding static route after LSP deletion (#1571)
• f7ee860b fix duplicate netns parameter (#1580)
• 0a3468b1 do not gc vm pod lsp when vm still exists (#1558)
• d453add3 fix exec cmd in vpc nat gateway (#1556)
• 8303ace0 CNI: do not return route if nic is not eth0 (#1555)
• bc758245 exit kube-ovn-controller on stopped leading (#1536)
• c51b09e8 remove name for default drop acl in networkpolicy (#1522)
• 9fe8cfcd move dumb-init from base images to kube-ovn image
• 2a8a45a1 fix defunct ovn-nbctl daemon

Contributors

• hzma
• zhangzujian
• 张祖建

v1.8.6 (2022-05-13)

• 56bf06df release 1.8.6
• 9e5b2b28 reduce ovs-ovn restart downtime (#1516)
• e4d6cc2f prepare for release 1.8.6
• 60aa8913 fix: ovs trace flow always ends with controller action (#1508)
• 2a074c6f optimize IPAM initialization

Contributors

• Mengxin Liu
• zhangzujian

v1.8.5 (2022-04-27)

• 9b96bacf ci: skip some checks
• e20cf4a2 delete ipam record and static route when gc lsp (#1490)
• 035f5072 CVE-2022-27191 (#1479)
• e898c96e add delete ovs pods after restore nb db (#1474)
• 89d7471c delete monitor noexecute toleration (#1473)
• 4b012aa6 add env-check (#1464)
• 3d0448b4 append metrics (#1465)
• a0e2404c add kube-ovn-controller switch for EIP and SNAT
• ca2ca1a1 add routed check in circulation (#1446)
• c9dfa5bb modify init ipam by ip crd only for sts pod (#1448)
• 8b5ce74a ignore cni cve
• 22fe8fbe log: show the reason if get gw node failed (#1443)
• 8570e286 update alpine to fix CVE-2022-1271
• 6aa6b0a9 fix adding key to delete Pod queue
• bf12ea0e fix IPAM initialization
• 5e005884 ignore all link local unicast addresses/routes
• 63248040 fix error handling for netlink.AddrDel
• aa7c3b8d replace pod name when create ip crd
• f0bb2769 support alloc static ip from any subnet after ns supports multi subnets
• 7a67a213 fix provider-networks status
• 8529bf8b recover ips CR on IPAM initialization

Contributors

• Mengxin Liu
• hzma
• zhangzujian

v1.8.4 (2022-03-29)

• 48eb70a4 release update 1.8.4 changelog (#1414)
• 2fe7fff2 create ip crd in kube-ovn-controller (#1412)
• 01163c1c fix: add condition for triggering the deletion of redundant chassises in sbdb (#1411)
• c262bdcf fix: do not recreate port for terminating pods (#1409)
• bf167a60 avoid frequent ipset update
• b44bbc5d fix: The underlay physical gateway config by external-gw-addr when use snat&eip (#1400)
• ffdd1967 add reset for kube-ovn-monitor metrics (#1403)
• eda71b3c check the cidr format whether is correct (#1396)
• 62695032 update dockerfile to use v1.8.3 base img
• c15afc54 append vm deletion check
• 9faf2a10 update nodeips for restore cmd in ko plugin
• 621a37f0 fix external egress gateway
• 27af3335 update ip assigned check
• 4d88bea5 add missing link scope routes in vpc-nat-gateway
• bf8026ed increase memory limit of ovn-central
• 5a52041b fix range loop

Contributors

• hzma
• lut777
• wangyd1988
• xujunjie-cover
• zhangzujian

v1.8.3 (2022-03-09)

• 37937fcf release update 1.8.3 changelog (#1360)
• 014ecc87 add restore process for ovn nb db
• dbf4774d optimize kube-ovn-monitor yaml
• ce8087d7 add reset porocess for ovs interface metrics
• 62938245 deepcopy fix steps
• 118f1299 fix SNAT/PR on Pod startup
• 9fa2c792 add check for pod update process
• f053f2a2 fix ips update
• fe9532d4 fix cni deepcopy
• c76e9b01 fix: replace ecmp dp_hash with hash by src_ip (#1289)
• f3922ba9 keep ip for kubevirt pod
• f6628902 fix OVS bridge with bond port in mode 6
• a421d9f8 fix: continue of deletion for del pod failed when can't found vpc or subnet (#1335)
• cf7f4bd9 Fix usage of ovn commands
• 586a0764 ignore cilint
• e083a2ba resync provider network status periodically
• dcb3e82d Revert "resync provider network status periodically"
• 18740e5c fix statefulset Pod deletion
• 85c15cb4 resync provider network status periodically
• 172c1733 feat: optimize log
• 136aedf9 optimize log for node port-group
• 0869e621 append add cidr and excludeIps annotation for namespace
• e04eaf7a support to add multiple subnets for a namespace
• ae201ef5 feat: update provider network via node annotation
• 5cf005e2 fix: only log matched svc with np (#1287)
• 6ef52c22 transfer IP/route earlier in OVS startup
• 75157be8 add metric for ovn nb/sb db status
• 4b23c84c check static route conflict
• 0832f5ef set up tunnel correctly in hybrid mode
• 175d54d1 fix clusterrole in ovn-ha.yaml
• 457475f2 add gateway check after update subnet
• 45787fb7 add back centralized subnet active-standby mode
• a737e196 update networkpolicy port process
• ff6bf6fa update check for delete statefulset pod

Contributors

• chestack
• hzma
• lut777
• xujunjie-cover
• zhangzujian

v1.8.2 (2022-01-05)

• 5acf9586 release: update 1.8.2 changelog
• 49b2ae40 add log for ecmp route
• 798d0bb9 fix pod tolerations
• c5f4c8e6 fix installation script
• 270d28e4 append check for centralized subnet nat process
• ee691fb5 change nbctl args 'wait=sb' to 'no-wait'
• c4956ac3 move chassis judge to the end of node processing
• 636b946a use different ip crd with provider suffix for pod multus nic
• a03a858c use multus-cni as default cni to assign ip
• 3205b88e fix: do not reuse released ip after subnet updated
• 7de6afb8 delete frequently log
• efefc20b pinger: fix getting empty PodIPs
• d98fab8d add protocol check when subnet is dual-stack
• 0a48f6a6 filter used qos when delete qos
• 26f239aa fix: check np switch
• 4187a329 When netpol is added to a workload, the workload's POD can be accessed using service
• e7c50077 when update subnet's execpt ip,we should filter repeat ip
• 86020295 fix: add back the leader check
• dfa1a3a8 security: upadate base image
• 7f1e9354 update delete operation for statefulset pod
• 17301ee2 chore: update klog to v2 which embed log rotation
• 7cfeee1e fix: add kube-ovn-cni prob timeout
• 88a92ac9 append add db compact for nb and sb db
• 9496e386 add vendor param for fix list LR
• 641dcdde deleting all chassises which are not nodes
• ad0bc1b7 add db compact for nb and sb db
• b50da0e1 fix pinger's compatibility for k8s v1.16
• 723ec5c3 fix LB: skip service without cluster IP
• d412c780 security: update base ubuntu image
• b96b7056 add pod in default vpc to node port-group
• e1dfa7b1 add sg acl check when init
• c8692dfb fix: no need to set address for ls to lr port
• ef0e3b95 fix ko trace
• 7231a6f2 fix read-only pointer in vlan and provider-network
• 01e30a42 fix read-only pointer in vlan and provider-network
• 72cf31dd fix: trace in custom vpc
• 03639a4a fix: multus-cni subnet allocation
• 1857130e fix LB in dual stack cluster
• 3773bedf prepare for release 1.8.2
• 45316125 fix: check allocated annotation in update handler
• 79be0cde fix bug: logical switch ts not ready
• e3581cf1 fix: ensure all kube-ovn components deleted before annotate pods
• 9847a1b6 Revert "add check switch for default subnet's gateway"
• c106afa6 add check switch for default subnet's gateway
• bdf5b0e2 remove node chassis annotation on cleanup
• 31a5da22 fix: delete vpc-nat-gw deployment
• 765ede7b fix: serialize pod add/delete order
• 78dc1fbf change inspection logic from manually adding lsp to just readding pod queue
• 986f8b4e add inspection
• 15ea6ab8 fix: check and load ip_tables module
• 9bb0cfc2 fix cleanup.sh and uninstall.sh
• da422ff9 fix kubectl-ko diagnose
• cc8a4da0 fix pinger in dual stack cluster
• 9364d2a2 add e2e testing for dual stack underlay
• ecf4e011 fix pinger and monitor in underlay networking
• 91a32d41 fix kubectl plugin ko
• 259f8d6a replace api for get lsp id by name
• 7e775fa6 In netpol egress rules, except rule should be set to "!=" and should not be "=="
• 0a09e055 modify kube-ovn as multus-cni problem

Contributors

• Mengxin Liu
• hzma
• lut777
• wang_yudong
• zhangzujian
• 范日明

v1.8.1 (2021-10-09)

• 31f53094 release: prepare for 1.8.1
• fa66c5f8 fix: init node with wrong ipamkey and lead conflict
• fa17c3d6 fix installation scripts
• c7d050b9 fix getting LSP UUID by name
• f0bebbec fix StatefulSet down scale
• 4c189b7f refactor: mute ovn0 ping log and add ping details
• c208cd51 fix: wrong link for iptables
• b4faf60b fix IPAM for StatefulSet
• d0525957 append externalIds for pod and node when upgrade
• 34ba16ea perf: increase ovn-nb timeout
• f844a2bc fix: re-check ns annotation to avoid annotations lost
• f7214195 perf: do not diagnose external access
• 6232c73b reactor: remove ovn ipam options
• 651ab41e perf: switch's router port's addresses to "router"
• f5997a87 fix gc lsp statistic for multiple subnet
• da43e21b fix e2e testing
• 5e3c1507 fix variable referrence
• bc95b5d3 fix nat-outgoing/policy-routing on pod startup

Contributors

• Mengxin Liu
• hzma
• lut777
• zhangzujian

v1.8.0 (2021-09-08)

• 7c5fed65 fix adding OVN routes in dual stack Kubernetes
• 80a037ee release: prepare for 1.8
• f59bfb86 add update process and adding label to ls/lsp/lr
• e09d99b3 fix: VLAN CIDR conflict check
• e6b8341e security: update base image
• 29422965 update provider network CRD
• 25b151c8 fix external-vpc
• 44a8b4f6 perf: use link alias to filter packet
• e9984fe0 security: fix CVE-2021-3538
• d41c5e9b add print columns for subnet/vpc/vpc-nat-gw crd
• 730e4f17 improve support for dual-stack
• c148a5ac initialize ipsets on cni server startup
• 10613e87 delete residual ovs internal ports
• 361d4bbe simplify vlan implement
• 6fde0a56 fix: ovn-northd svc flip flop
• b1106056 add container run command for runtime containerd
• 42e212ca fix subnet conflict check for node address
• 3d2c6eb9 feat: read interface in installation from environment
• 35acf424 update encap ip by node annotation periodic
• 13b2080a fix ipset on pod creation/deletion
• f415b1ba add ready status for provider network
• 09283849 avoid Pod IP to be the same with node internal IP
• 70fbbecc remove subnet's spec.underlayGateway field
• 96b0c118 add support for custom routes
• 45aafca2 Add missing metadata directive in VpcNatGateway example
• 0380d64c use util.hostNameEnv instead KUBE_NODE_NAME
• 38e04f34 chore: change wechat image
• 5df9fdd4 fix typo
• 4a7dd734 perf: add fastpath and tuning guide
• 3d8cdb6c update node labels and provider network's status.readyNodes when provider network is not initialized successfully in a node
• 8596ddc9 fix issues in underlay networking
• 7724990d add external vpc switch
• ffef618d update versions in docs and yamls
• 6e8d5c80 update Go to version 1.16
• 3deb5770 fix IPv6-related issues
• 2e4922d5 ci: use stable version
• dcda11d6 fix: bad udp checksum when access nodeport
• f12e5ee5 fix port-security, address parameters should be merged into one
• f03d4350 docs: optimize description
• b5b5bdb8 ensure provider nic is up
• b5bbed38 fix uninstall.sh
• 3ba5168c some optimizations
• 9ae0b3c3 fix gofmt lint
• 410d9329 fix multi-nic.md
• 5e9e41ac fix dual stack cluster created by kind
• 386d6160 remove external egress gateway from additionalPrinterColumns
• 70ae50ef fix default bind socket of cni server
• 56025ede if the string of ip is empty,program will die
• 9492f63f if the string of ip is empty,program will die
• 324dce2e fix underlay networking on node reboot
• f7077d58 add judge before use the index about cidrBlocks and ips
• f25b1ae2 add validation check function
• bda102a7 docs: add wechat qcode
• 14ccbeb3 feat: security group
• 992a09d3 delete subnet AvailableIPs and UsingIPs para
• 057ade92 fix: panic when node has nil annotations
• 59869daa append pod/exec resource for vpc nat gw
• 3ed2fe26 update comment for SetInterfaceBandwidth
• e1caa594 update qos process
• 80e5e2ba fix LoadBalancer in custom VPCs
• bb1146ee Support Pod annotations control port mirroring
• 4c4b0900 fix docs
• a04d964d externalOvnRouters is ok with 0
• 9524c93f delete attachment ips
• 6dd6a51d fix external_ids:pod_netns
• cbe8ae68 add switch for network policy support
• dc56d238 fix subnet e2e
• e3daee83 ignore empty strings when counting lbs
• 81ce45c2 fix iptables
• e9ea6a0f fix issue #944
• 1cb57358 fix openstackonkubernetes doc bugs
• fcdb0106 add switch for gateway connectivity check
• 4dc4624f fix cleanup.sh
• 4fb97407 security: fix CVE-2021-33910
• 41b6429c delete ecmp route when node is deleted
• 5bd96ac7 fix: if nftables not exists do no exit
• 6c5efbc3 update wechat contract method
• e449b8ea delete overlapped var subnet
• 2427a4b3 add designative nat ip process for centralized subnet
• 1595eac5 fix ipsets
• 7e24e7d6 update underlay e2e testing
• 27c649a5 match chassis until timeout
• df76038a fix CRD provider-networks.kubeovn.io
• d1c7a2ee fix: set vf mac
• 949c28c2 update qos ingress_policing_burst
• 8a05bdc8 add field defaultNetworkType in configmap ovn-config
• 1810dfc3 keep subnet's vlan empty if not specified
• 4e28600d delete ecmp route when node is not ready
• d145f575 add del learned routes when remove ovnic
• 6499e585 [kubectl-ko] support trace in underlay networking
• 23d84f0a fix subnet available IPs
• eced6bac fix bug for deleting ovn-ic lrp failed
• a4abbb2e add node internal ip into ovn-ic advertise blacklist
• 2ec0aa74 underlay/vlan network refactoring
• ead2c65f chore: update ovn to 21.03
• 651a634d security: fix CVE-2021-3121
• 8cff6851 list ls with label to avoid listing ts failure
• 3fd9c7ac Update log error
• 0fe67258 delete the process of ip crd delete in cni delete request
• 9049fc72 update networkpolicy process
• a5b22a21 modify func name Additonal to Additional
• 0cd5dcfe fix uninstall.sh execution in OVS pods
• b4ce83a2 perf: enable tx offload again as upstream already fix it
• 9ca47b65 label lr, ls and lsp, and add label filter when gc
• 37a045a3 security: add go build security options
• bdf91846 feat: ko support cluster operations status/kick/backup
• efdce464 docs: update docs about vlan/internal-port/kubeconfig
• ced43405 add judge before use slices's index
• 3d98d762 update kind to version v0.11.1
• e1e63cfa adapt to vfio-pci driver
• 205f5712 fix IP/route transfer on node reboot
• a3cac539 add master check when a node adding to a cluster and config sb/nb address
• b98afeef update installation scripts
• 2d750cbf enable hw-offload
• 64b9abae do not delete statefulset pod when update pod
• 4359c198 fix: node route should filter out 'vpc'
• 744e6577 feat: lb switch
• 7ec2f994 docs: show openstack docs and docker image status
• 5484387f fix: clean up gateway chassis list for external gw
• acc95f1d add doc for openstack/kubernetes hybrid deploy
• e2973c4f configure OVS internal port after dummy interface
• 8608b7e5 some fixes in vlan initialization
• 872340c8 clean up vpc service
• fde89914 feat: vpc load balancer
• 8ed91be4 fix: lsp may lost when server pressure is high
• 42fbe86e fix: check crds when controller start
• a5fef59b start evpc ph1
• 31ee8c10 start evpc ph1
• 44db142e ci: retry arm build when failed
• 96c13985 update ecmp notes
• 8c169322 add interface name in cni response
• aa88e2a2 add nicType for offload
• eb387428 1.Support to specify node nic name 2.Delete extra blank lines
• cb8cc645 ignore update pod nic annotation when is not nil
• 3a4347b9 set default UnderlayGateway to true in vlan mode
• a0d78920 unify logical entity list funcs (#863)
• 9e563d84 ci: remove dpdk ci
• e48a0894 correct vlan e2e testing
• f690085d fix: remove rollout check
• 2b2df3dc adapt internal tcpdump
• 2531779a update docker buildx install method
• eef1b0aa fix: remove wait ovn sb
• 2e59e81c fix: ci issues
• df47c489 fix: cleanup kube-ovn-monitor resource
• 598cffdd fix multi-nic.md
• f4b75bd0 fix: acl overlay issues
• 2fe4fe1d ci: split ovn/ovs into base image
• db2b7b06 add judge before use slices's index
• 3e259ae9 update version to v1.7 in docs
• eb54dc03 update master version to v1.8.0

Contributors

• Mengxin Liu
• Ruijian Zhang
• Tobias
• feixiang43
• hzma
• lhalbert
• lut777
• pengbinbin
• pengbinbin1
• wang_yudong
• xieyanker
• xuhao
• zhang.zujian
• zhangzujian
• 范日明
• 马洪贞

v1.7.3 (2021-10-09)

• 6329a275 release: prepare for 1.7.3
• a17dd60d fix: disable periodically gc
• 26a355d9 fix installation scripts
• be8b5ea7 fix StatefulSet down scale
• 506e95d5 fix: init node with wrong ipamkey and lead conflict
• 7fed7ee3 refactor: mute ovn0 ping log and add ping details
• 9110bcef fix: wrong alias for iptables
• 18053abd fix: northd probe issues
• 698d92c6 fix IPAM for StatefulSet
• 0c1baacb append externalIds for pod and node when upgrade
• 905b789f security: update base image
• 7d86e2c5 fix gc lsp statistic for multiple subnet
• 6ce5cd8b fix: kubeclient timeout
• c3b72cff fix: serialize pod add/delete order
• 530a3dd0 refactor: reuse waitNetworkReady to check ovn0 and slightly improve the installation speed
• 121c9a41 perf: increase ovn-nb timeout
• 1f97edcc fix: re-check ns annotation to avoid annotations lost
• c79244fc perf: do not diagnose external access
• 6bc241fc reactor: remove ovn ipam options
• 74ab9aa1 perf: switch's router port's addresses to "router"
• a5791a01 fix e2e testing
• 6505e2e4 fix variable referrence
• d1f14509 fix nat-outgoing/policy-routing on pod startup

Contributors

• Mengxin Liu
• hzma
• lut777
• zhangzujian

v1.7.2 (2021-09-08)

• cd650db4 fix: VLAN CIDR conflict check
• 4cabb12c perf: use link alias to filter packet
• af4a1983 security: fix CVE-2021-3538
• c6daff2a prepare for release v1.7.2
• 18241707 initialize ipsets on cni server startup
• cf32ab1e delete residual ovs internal ports
• 7d94413f fix: ovn-northd svc flip flop
• 316d141e fix subnet conflict check for node address
• d44273e9 update comment for SetInterfaceBandwidth
• 06810be2 update encap ip by node annotation periodic
• 99ec3d4a delete subnet AvailableIPs and UsingIPs para
• c57c6dbc fix ipset on pod creation/deletion
• ef9dbc5b add ready status for provider network
• 8906e457 avoid Pod IP to be the same with node internal IP
• 85b57239 update node labels and provider network's status.readyNodes when provider network is not initialized successfully in a node
• 078c0c8b fix issues in underlay networking
• 2919288a fix IPv6-related issues
• aaf56e65 ci: use stable version
• 25609873 fix: bad udp checksum when access nodeport
• 78077f34 ensure provider nic is up
• 154f21c3 fix uninstall.sh
• 7a4c5a59 fix gofmt lint
• 169a3256 if the string of ip is empty,program will die
• 1065c8e4 fix dual stack cluster created by kind
• dd756c05 fix default bind socket of cni server
• 6ebbbbf4 update kind to v0.11.1
• ad2b08ec fix underlay networking on node reboot
• 2ba31cc1 append pod/exec resource for vpc nat gw
• 7831f803 fix: panic when node has nil annotations
• 554cc044 update qos process
• a47d9297 delete attachment ips
• b633ab3c fix external_ids:pod_netns
• b3190ef8 fix subnet e2e
• ae3cc954 ignore empty strings when counting lbs
• a9bee809 fix iptables
• 5cd1b14e fix image version
• a93e2dec fix cleanup.sh
• 0e3c1cbc security: fix CVE-2021-33910
• 50da96ae delete ecmp route when node is deleted
• 851dd303 fix: if nftables not exists do no exit
• e48c985b delete overlapped var subnet
• 1dfcf6df match chassis until timeout
• 4f09a0d5 update qos ingress_policing_burst
• a63de27a fix ipsets
• cc51be3d update underlay e2e testing
• 7cd02fef fix CRD provider-networks.kubeovn.io

Contributors

• Mengxin Liu
• Ruijian Zhang
• feixiang43
• hzma
• lut777
• zhangzujian
• 范日明

v1.7.1 (2021-07-15)

• 1b289a22 ready for release v1.7.1
• 795fbdf0 add field defaultNetworkType in configmap ovn-config
• dc440c76 keep subnet's vlan empty if not specified
• 7b7eef98 update ecmp notes
• d26850de delete ecmp route when node is not ready
• 72a73fb6 delete the process of ip crd delete in cni delete request
• 22a296e5 fix subnet available IPs
• b6076028 [kubectl-ko] support trace in underlay networking
• 0b877b96 underlay/vlan network refactoring
• 7c529a18 adapt internal tcpdump
• 10481d9b fix bug for deleting ovn-ic lrp failed
• 1adb788f add node internal ip into ovn-ic advertise blacklist
• f9d542ee security: fix CVE-2021-3121
• 498c7dd1 feat: ko support cluster operations status/kick/backup
• d812c746 fix uninstall.sh execution in OVS pods
• fd512511 perf: enable tx offload again as upstream already fix it
• f41d5742 security: add go build security options
• feedaca8 fix IP/route transfer on node reboot
• 5406d701 add master check when a node adding to a cluster and config sb/nb address
• 136ead43 do not delete statefulset pod when update pod
• 1ef87e13 fix: node route should filter out 'vpc'
• 0761fe7a some fixes in vlan initialization
• 63122eb8 fix: clean up gateway chassis list for external gw
• 96e22451 ci: remove dpdk ci
• 7003890e correct vlan e2e testing
• dcdf75a3 configure OVS internal port after dummy interface
• 9b70842a fix: lsp may lost when server pressure is high
• 1f48f9fd 1.Support to specify node nic name 2.Delete extra blank lines
• 8c37d4b9 ignore update pod nic annotation when is not nil
• 00e2e009 set default UnderlayGateway to true in vlan mode
• f11cdf94 fix: remove rollout check
• 2d67471d fix: remove wait ovn sb
• ba7d6553 fix: cleanup kube-ovn-monitor resource
• 1e1da5a5 fix: acl overlay issues
• 00681fb0 update version to v1.7 in docs

Contributors

• Mengxin Liu
• Ruijian Zhang
• hzma
• lut777
• xuhao
• zhangzujian
• 范日明
• 马洪贞

v1.7.0 (2021-06-03)

• 907b34d2 prepare for release v1.7.0
• ab727c98 diagnose: check sa related resource
• 9bd2e9f8 fix: do not nat route traffic
• 3bd14945 fix: release ip addresses even if pods not found
• f4794183 fix typo
• 2a2160d0 docs: add description of custom kubeconfig
• 3dd99a79 fix: add address_set to avoid error message
• ba40fd67 optimize Makefile
• cb95f4e6 update vlan document
• 31a96f21 add label to avoid deleting other
• 6cd6b34b delete unused log
• 34734010 add ovs internal-port for pod network interface
• 9e715623 support underlay mode with single nic
• d6c96d07 support underlay mode with single nic
• c1d3fc3c fix: add node to pod allow acl
• ed49cd49 traffic rate for multus nic
• 1b00190f add ovs internal-port for pod network interface
• 775aec6c Add maintainers
• 59847bc1 add e2e tests for external egress gateway
• a0006ebf fix e2e testing on macOS
• 0ff3d6bb ci: fix lint and scan error
• 33e0ec27 fix: check if provider network exists
• 9e53d4cc update subnet document
• a2e4fec4 rename ExternalGateway to ExternalEgressGateway
• 1ccaec9a fix installation doc
• 34fb4759 fix: forward policy to accept
• bbbd091f ci: fix lint error
• 28cf4cc2 traffic rate for multus nic
• 0dcf6930 refactor: optimize service.go and subnet.go
• 7719fc2a Check and Fetch all ValidatePodNetwork errors
• 123ead48 add judge about nic address
• 17fe2302 implement new feature: external gateway
• 01686e3e start_ic should run regardless of ts port
• c733c7e4 add judge before use index
• ba709afb specify ovs ops on diff nodes
• 07089205 fix mss rule
• 4458a4d7 Get node info from listerv1.NodeLister(index)
• 19a7aed9 Clean up the wrong log
• 27fe348a refactor: optimize subnet.go
• ddfd06b2 Optimise the redundancy code
• bd55c104 Handler the parse config error before used
• bd3f13dc ci: remove 3-master e2e
• 9e827e7b Remove the unnecessary rm command
• 587bbcdb Use localtime when the kube-ovn installed
• a52a38d0 Fix the different time from container and host
• 436e788b add issue template
• 5fc3cfb1 add bgp doc
• f16fcb9a support afisafis
• d94af379 feat: support graceful restart
• 26a02725 fix: del might panic if duplicate delete
• 41226d86 fix: lr-route for eip using nic-ip, and not external gateway addr.
• d176dac7 feat: support announce service ip
• 136571d1 Fix some minor nits for docs
• 2781a47b add bpg options in bgp.md
• 1b788902 add Opstk&K8s ic doc
• cc843816 add holdtime function
• b9e96339 fix: do not re-generate ts port
• 610f132b fix: ignore root path doc ci
• bd1e0975 fix: do not gc learned routes
• be2048be feat: add vxlan in README.md
• cbb2ddd4 fix: get_leader_ip always return fist node ip
• 03f597ce fix: remove tty error notification
• cc353bbc fix ovn nb reconnect
• af2709df add docs for 'multus ovn network'
• ffc20a91 add vpc nat gateway docs
• a1ae937a fix: static route for default multus network
• 0489a72a feat: support vxlan tunnel
• 77f65449 append delete ovn-monitor in ovn.yaml
• c5ee49e8 split ovn-central and ovn-monitor
• e0890f72 Fix mount the systemid path
• fc92fbc2 handle update deployment vpc-nat-gw
• 686681ef refactor: remove function genNatGwDeployment's return error
• 064c3851 Update crd vpc-nat-gateways.kubeovn.io for pre-1.16
• a0dfea1b fix incorrect method for gateway node judgement
• 86c99c37 Fix the 'multus how to use' link
• 1acb4992 fix multi nic
• 9c5ca0a0 fix duplicate imports
• b4750853 fix: compatible with JSON format
• 2a2cd27a fix: leader may change during startup, use cluster connection to set options.
• aad81548 fix SNAT on pod startup
• 388119a7 fix development guide
• 2efdac9a fix gofmt
• c264bec1 fix: configure nic failed when ifname empty
• 763f8bcf fix: port does not support vlan tag update
• a60764ea fix build dev image
• faa7bc6a support hybrid mode for geneve and vlan
• d8472ba7 remove extra space
• f9c836b6 fix: compatible with no norhtd svc
• bbed09d3 fix chassis check for node
• dfdf5f8b optimization for ovn/ovs status metric
• 9e82ca3d fix: release norhtd lock when power off
• 1fbfad52 add single node e2e
• f9ae6258 fix get pod attachment net
• 0632e253 support ovn defautl attach net
• 2c1a8aa6 add network-attachment-definitions clusterRole
• 808a3a93 feat: multus ovn nic
• 28e14188 update node ip when upgrade to dualstack
• 0265747d add details for prerequisite
• 3e42f684 Add Ecmp Static Route for centralized gateway
• b72e9d50 fix: disable offload if geneve port exists
• f4e665b9 disable offload for genev_sys_6081
• acade01b refactor: optimize ovn command when error exists
• 5251c272 add net-attach-def ClusterRole
• 5126aedd add lsp with external_id
• ec7f7425 feat: multus ovn nic
• 19e23d14 fix: check ovn0 status
• c02afc00 livenessprobe fail if ovn nb/ovn sb not running
• 983831e0 fix: disable checksum offload for ovn0 to prevent kernel issue
• d9f166b7 ignore ip6tabels check for v4 hostIP
• 680802d6 improve the code style of [import group ordering]
• 8e38a79d fix wrong sequence
• 1e0d77c3 update arm64 build
• 638a03ac fix: restart ovn-controller to force update flows
• 14784fbb fix: disable checksum validation
• a04dcfb6 Use public network effective image
• 24095d7f update usingips check when update finalizer for subnet
• 54ef1af2 fix dependency
• 717688d6 Update vendor.
• 496fc4dd trim space the port_binding's output
• 00fdac83 refactor: remove unnecessary config logic
• b06dad21 update maintainers
• e5d9584e docs: deprecated webhook
• 92cc4ed3 fix: add missing ovn-ic binary
• c0349e4f chore: change action name
• 1a448ecc chore update artworks
• 537588c3 fix: delete chassis_private when delete node
• a50fb181 Add 'kubectl ko trace' command's default namespace
• fad9473d Add 'kubectl ko trace' command's default namespace
• 77c92ca8 perf: reclaim heap memory after compaction.
• f3df58ae remove the old script
• b69f389c docs: add CNCF description
• 08b95e74 fix: gc not exist node error
• 9f661461 perf: use new option to decrease ovn-sb size
• 9dc06908 fix: return err
• 8bd44608 docs: add faq section
• 482e6f71 add vpc nat gateway Dockerfile
• b0e983f0 feat: vpc nat gateway
• 951e31ea add node address allocate check when init
• 215c8f45 update upgrade for ovn-default and join subnet
• a537985d fix: lint error
• d0d3e89c fix: add missing ovn-ic-db schema
• 98651014 update subnet ip num calculate
• d6bb03bd fix: masq traffic to ovn0 from other nodes
• 0a7024f9 refactor: reduce duplicated GetNodeInternalIP function
• ac294669 chore: update go version
• 0e9c717d chore: move build dependency from alauda to kubeovn
• 64fac57a feat: support set default gateway in install script
• ca71de3c docs: fix typos
• 582cb9ce Update install-pre-1.16.sh
• 62fc20ef Update install.sh
• 87859ac1 go import repo change to kubeovn
• 1152744e feat: vpc nat gateway
• 298138e4 Resolving typo.
• 4701fcb3 filter repeat exclude ips
• e3931f0e modify ip count for dual
• a4ddb360 docs: add ARCHITECTURE.MD
• 9eee6f93 refactor: reduce duplicated function
• a7b687a0 fix: add dpdk pod name
• d32b423b Update cleanup.sh
• 9faaff57 Update cleanup.sh
• df065f94 test: add service e2e
• 60e49f5a modify test problem
• 2dbcb76f fix: kube-proxy check
• 512044cb ovn-central: set default db addr same with leader node to fix nb and sb error 'bind: Address already in use'
• c755ef23 fix: reset ovn0 addr
• a168c282 tests: add e2e for ofctl/dpctl/appctl
• f6dc58a5 ci: replace image
• b1d03370 docs: clarify dpdk usage scenario
• 21d9940b ci: update kind version and set timeout
• 8b833ee5 Update install-pre-1.16.sh
• 4b6f0eed Update install.sh
• f6f88501 refactor: remove duplicated call
• 473cdc48 Update kubectl-ko
• 1ca17686 Fix missing square brackets in curl ipv6
• 136336b2 Modify the health check for kube-proxy port, compatible with ipv6
• 98a56dec Update controller.go
• c52c067b Fix: remove IsNotFound when get configmap external gateway
• 74fa7729 Fix: check kube-proxy's 10256 port healthz
• d594554d fix: ip6tables check error
• b17f2373 Add MAINTAINERS file
• 2783c134 add vpcs && vpcs/status clusterRole
• 31e1226e Update install-pre-1.16.sh
• f1efaa7f delete connect to ovsdb for ovn-monitor
• f69ae44b cni-bin-dir,cni-conf-dir configurable Fix kubeovn#655
• f5999b3b Update install.sh
• e13448aa Error: unknown command "ko" for "kubectl"
• 7d56483a Fix: wrong split in FindLoadbalancer function
• 34776b8a vlan nic support regex
• f23093c4 fix underlay gateway flood logs
• 4a9901aa fix: check required module before start
• 8d4694f8 docs: add underlay docs
• 3713b253 chore: update ovn to 20.12 and ovs to 2.15
• 1ab87130 prepare for next release
• a94803d3 fix: make sure northd leader change
• 03487cf2 fix: make sure ovn-central is updated one by one
• 9d3b78a3 fix: restart when init ping failed
• 6e09c77d fix: increase raft timer to avoid leader flap
• 87aa15cb pass golangci-lint
• 134ea89d add golangci-lint to github actions
• d325e7e0 fix pod terminating not recycle ip when controller not ready
• 87af4ca9 fix: add new iptable cleanup commands
• d287063b modify static gw changed problem
• fcf3be19 Fix wait pod network ready take long time
• 0b4e4458 fix: when address is empty, skip route/nat deletion
• ed0e9ba2 fix: update ipam cidr when subnet changed
• 06816efb modify test problem for dual-stack upgrade

Contributors

• Amye Scavarda Perrin
• JinLin Fu
• Mengxin Liu
• Wan Junjie
• Yan Wei
• Yan Zhu
• caoyingjun
• chestack
• cmj
• danieldin95
• halfcrazy
• hzma
• luoyunhe1
• lut777
• pengbinbin1
• sayicui
• wangyudong
• withlin
• xieyanker
• zhangzujian
• 范日明
• 马洪贞

v1.6.3 (2021-06-03)

• 8e28e139 prepare release for v1.6.3
• 2818eb86 fix: do not nat route traffic
• be20533b fix: release ip addresses even if pods not found
• 1bdff344 security: fix crypto CVE
• f29958db fix: add address_set to avoid error message
• 04fc67f8 fix: add node to pod allow acl
• 91d43e01 Handler the parse config error before used
• 634f672b fix: del might panic if duplicate delete
• 7795b519 fix: do not re-generate ts port
• 37ed257f fix: get_leader_ip always return fist node ip
• 548a5c55 fix: do not gc learned routes
• 4e8a7c99 fix: remove tty error notification
• 9e060882 fix ovn nb reconnect
• 1b35390f perf: reclaim heap memory after compaction.
• 703174a8 fix: leader may change during startup, use cluster connection to set options.
• 14de53e7 fix SNAT on pod startup

Contributors

• Mengxin Liu
• Yan Zhu
• caoyingjun
• chestack
• zhangzujian
• 马洪贞

v1.6.2 (2021-04-18)

• 2f421181 release 1.6.2
• 23c9240d fix: configure nic failed when ifname empty
• 6574447f remove extra space
• b65d41ad fix chassis check for node
• bec0d0f4 fix: compatible with no norhtd svc
• ef76fcc0 fix: release norhtd lock when power off
• fefcff27 fix: disable offload if geneve port exists
• a1679923 disable offload for genev_sys_6081
• 12e6b0b1 rebuild to fix openssl cve
• a5862310 fix: check ovn0 status
• 03956f1f ignore ip6tabels check for v4 hostIP
• 35f06495 livenessprobe fail if ovn nb/ovn sb not running
• 3f15c923 fix: disable checksum offload for ovn0 to prevent kernel issue
• 54f5102d add node address allocate check when init
• 07bea935 update arm64 build
• 995022e6 fix: restart ovn-controller to force update flows
• 21c312c0 fix: disable checksum validation
• 73bb2d83 update usingips check when update finalizer for subnet

Contributors

• Mengxin Liu
• danieldin95
• halfcrazy
• hzma
• lut777

v1.6.1 (2021-03-09)

• 87e11481 fix: add missing ovn-ic binary
• dbf53f6e release for 1.6.1
• 2dcd7584 fix: delete chassis_private when delete node
• f8aeb887 chore: update ovn to 20.12 ovs to 2.15
• 35190e1c refactor: reduce duplicated function
• afe9a9f0 fix: masq traffic to ovn0 from other nodes
• 96880905 ovn-central: set default db addr same with leader node to fix nb and sb error 'bind: Address already in use'
• cce2bb4d fix: reset ovn0 addr
• 8152bdf5 Fix: wrong split in FindLoadbalancer function
• 33b0e186 fix underlay gateway flood logs
• 9a8e7870 fix: check required module before start
• b70f6103 fix: make sure northd leader change
• ecbd43e2 fix: restart when init ping failed
• 4b752988 fix pod terminating not recycle ip when controller not ready
• 0e794679 fix: add new iptable cleanup commands
• cf725882 Fix wait pod network ready take long time
• bbb7edc6 fix: when address is empty, skip route/nat deletion
• 7121fa80 fix: update ipam cidr when subnet changed
• 99d8981f prepare for 1.6.1
• 8559014f move build dependency from alauda to kubeovn
• 9184aa93 update upgrade for ovn-default and join subnet
• f11c6b3c update subnet ip num calculate
• e5e6e302 fix: ip6tables check error
• 23dcd2a3 delete unused import packet
• 5ead6b1d filter repeat exclude ips
• 30217437 modify ip count for dual
• b4560b99 modify test problem
• b4b55581 add vpcs && vpcs/status clusterRole
• d6f14147 delete connect to ovsdb for ovn-monitor
• 98859f9b modify static gw changed problem
• 255e20c6 modify test problem for dual-stack upgrade

Contributors

• Mengxin Liu
• Wan Junjie
• Yan Zhu
• cmj
• hzma
• wangyudong
• xieyanker

v1.6.0 (2021-01-04)

• d47ccb67 release: 1.6.0
• b8f221bf docs: add docs for vpc
• 12cf140b fix typo
• b13cb7bf ci: update go version to 1.15
• 7f9eefed Fix: replace the command to run the script via 'sh' with 'bash'
• 076ab28f Fix the default mtu parameter's describe
• 8e608667 modify network policy process
• 171dcff6 upgrade for subnet from single protocol to dual-stack
• bbc68577 add network policy adapt for dual-stack
• c01766cf feat: update ovn to 20.09
• 315831aa docs: prepare docs for 1.6.0 release
• a1e7974f perf: add pprof to pinger
• 627956e9 doc for dual-stack
• 02751bf4 Update the container nic name use the CNI_IFNAME parameter which passed by kubelet
• 14f36814 ci: enable docker experimental feature
• 9a785fc9 ci: build multi arch image
• 03ff96e6 (np) fix mulit np rule and gateway bug
• 20f3fcb1 fix start-db.sh echo message
• 52b39d76 fix: iface check error
• 072870b1 fix: add missing ping due to deb build
• efdd3913 fix: find iface by full match first then regex match
• f922ef75 fix: livenessProb/readinessProb might conflict when run logrotate at same time
• f1fe2b2e modify subnet and ip crds
• a2d76df7 modify service vip parse error
• 8aa5d0a4 update vendor
• 44381c74 update client-go
• 96c1c100 fix: np with multiple rules
• 87e6ded0 modify loop error for get metrics
• 1e2a7477 diagnose: add more diagnose info
• aea12bae ci: trigger action when yamls change
• 7bd6bf39 fix: ha e2e failed
• 56774aaf fix: allow traffic to gateway
• a78c2661 fix: cni-server default encap ip use right interface ip
• 7d31e617 feat: change default build image to ubuntu
• e2cd7871 add build for dualstack
• ddda6332 feat: distributed eip
• a6fef94a Add CNI modify for dualstack
• a54bfc28 Debian: Add debian docker image support
• 8a01cb1c Add adaption for dualstack, part of daemon process.
• 9738af18 chore: reduce binary size
• 6483d6e3 modify build problem
• dab50b33 Append ip monitor to document
• 34428819 license: fix felix dir
• 2ef66568 feat: support advertise subnet route
• ecbd01a6 Add IP Num Alert
• d64e6931 Add adaption for dualstack, part of controller process.
• 7246037b convert ip to string
• 2aecb3d9 add pod static ip validate
• b58e01b6 chore: add COC and roadmap
• 7bbdc00f fix: move felix to self repo to remove bird license
• d2b570cf Add license scan report and status
• 86584b95 fix: default network
• ccea68bf release for 1.5.2
• 07347501 fix: ovn-ic support ssl
• 4d8b186a fix: nat rules can be modified
• f535460f fix: remove svc cidr routes
• e3082cd7 ci: specify ubuntu version to make github action happy
• f6cce9a0 fix: specify exec container to mute warning message
• 2215c05f feat: remove cluster ip dependency for ovn/ovs components
• a9747b31 fix: add resources limits to avoid eviction
• 00571196 fix: vpc static route manage
• 8deb5d8d fix: validate vpc subnet
• 256ac6c5 Fix external-address config description
• ccda611a Fix the problem of confusion between old and new versions of crd
• f2f64801 fix: ovn-central check if it exits in NODE_IPS
• 5b973a89 fix: check ipv6 requirement before start
• 86941a8a feat: add ovs/ovn log rotation
• ef41733c add node ping total count metric
• 5e6bd911 diagnose: add ovs-vsctl show to diagnose results
• 7301e992 fix: nat rules
• 6026028a fix: masq other nodes to local pod to avoid nodrport triangle traffic
• d41110ec Update install.sh to allow dpdk limits configuration (#546)
• a128d7fc format
• b6ad17b5 test: e2e uses IPVS cluster by default
• f6951cf5 chore: update go version to 1.15
• 1f703c3d fix: tolerate all taints
• f8ace73c feature: add vpc static route
• f62cb4eb fix: cleanup script error
• 3bac21f7 docs: modify eip config description
• 1f07d96b security: remove sqlite to mute cve warning
• 015bc625 test: add e2e for kubectl-ko
• aa86e406 feat: pinger can return exit code when failed
• 2cf855ec fix: nat traffic that from host to svc
• cbe0ad55 docs: new feat for disable-ic, regex iface and pod bind subnet
• 5dbaf2d3 sync the default subnet of ns by vpc's status
• dd2234f4 fix: devault vpc lb/dns
• 32c49c1b fix: shutdown vpc workqueue
• 67076d62 fix: subnet CIDRConflict
• d5b819b0 fix: subnet bind to ns
• 921190ef feature: add vpc crd
• b5ecac95 Release and gc the resources in vpc
• 15eca9dc fix: gc logic router
• 91fec563 gc and clean vpc
• 7a0e28b9 Remove the VPC while removing the default subnet
• 99217cec feature: support custom vpc
• 9d821bce chore: refactor log
• 240cd800 feat: iface support regexp
• 94b6b1b5 feat: support disable interconnection for specific subnet
• 652190c3 modify review problems
• 7285581a docs: v1.5.1 changelog
• 47f0acbb perf: accelerate ic and ex gw update
• bafac87e fix: missing version date
• 8ef12007 fix: check multicast and loopback subnet
• 3b20abb0 monitor: refactor grafana dashboard
• f9cbaea5 docs: do not allow install to namespace other than kube-system
• 559e2cd8 update review problems for ovn_monitor
• 1c356a36 monitor: add more dashboard
• aa7b20d7 chore: add vendor
• 97d64f93 Updated Dockerfile.dpdk1911 to use Centos8 and DPDK19.11.4
• b4aa989d fix: CodeQL scan warning
• a27e1760 fix: ipt wrong order and add cluster route
• 9eb96dd7 opt: only allow specifies default subnet
• 0da634e8 chore: reduce image size
• 93bf5423 feature: Support for namespace binding multiple subnets
• e37159c2 docs: fix multi nic subnet options
• c35a159b docs: add pinger/controller/cni metrics
• 7f5b4237 fix: add default ssl var for compatibility
• 59b70696 Add monitor doc
• bb130cac fix: ipv6 network format when update subnet
• dc62d105 fix: ipv6 len mismatch
• 6088851d chore: add version info
• 88001376 metrics: add ovs client latency metrics
• 3cafd5f8 Add OVN/OVS Monitor
• 89567776 docs: performance test method
• 0c975e34 fix: wrong port porto for udp
• f3759b78 docs: add descriptions of local files
• b46acd6c ci: add github code scan
• 2444d51a fix: do not adv join cidr when enable ovn-ic
• 292bf4ca perf: remove default acl rules
• 20e82c39 prepare for next release
• 9324491c fix: use internal IP when node connect pod
• c1870c1a ci: change to docker buildx action
• a1976650 fix: delete pod when marked with deletionTimestamp
• c3c4f1c5 fix: remove not alive pod in pg

Contributors

• Emma Kenny
• Mengxin Liu
• MengxinLiu
• Wan Junjie
• emmakenny
• feixiang
• fossabot
• hzma
• luoyunhe1
• wiwen
• xieyanker
• 范日明

v1.5.2 (2020-12-01)

• 498d74d7 release for 1.5.2
• 271c07bd fix: nat rules can be modified
• 21a5edbd fix: add resources limits to avoid eviction
• 762f1c21 ci: specify ubuntu version to make github action happy
• bd4019dd fix: remove svc cidr routes
• 93a89753 Fix the problem of confusion between old and new versions of crd
• 031f5436 Fix external-address config description
• 3371ce4c fix: ovn-central check if it exits in NODE_IPS
• cf4c4127 fix: check ipv6 requirement before start
• 186d90cd feat: add ovs/ovn log rotation
• b5dfc1c6 diagnose: add ovs-vsctl show to diagnose results
• 37cbb713 add node ping total count metric
• 6ed020c2 fix: tolerate all taints
• 1a4f48a0 chore: update go version to 1.15
• e0fc3331 fix: masq other nodes to local pod to avoid nodrport triangle traffic
• f6ff2780 Update install.sh to allow dpdk limits configuration (#546)
• 96636386 prepare for 1.5.2
• 06d8b374 fix: cleanup script error
• 5ddf72b2 security: remove sqlite to mute cve warning
• 1fe42677 chore: refactor log
• 0f1b74dc fix: nat traffic that from host to svc
• 24b97cb0 feat: iface support regexp

Contributors

• Mengxin Liu
• emmakenny
• hzma
• xieyanker

v1.5.1 (2020-10-26)

• bf860e26 release 1.5.1
• cf96d6db opt: only allow specifies default subnet
• 99e393ec feature: Support for namespace binding multiple subnets
• fa4006c0 perf: accelerate ic and ex gw update
• c327535a fix: check multicast and loopback subnet
• d74e2078 fix: CodeQL scan warning
• df8530a3 fix: ipt wrong order and add cluster route
• 33afdd18 fix: add default ssl var for compatibility
• f14155e4 fix: broken rpm link
• a99ecbee fix: ipv6 network format when update subnet
• 5fbb92b0 fix: ipv6 len mismatch
• bbda6a80 fix: wrong port porto for udp
• 42b7aa12 fix: do not adv join cidr when enable ovn-ic
• 34952c80 perf: remove default acl rules
• 2ad71107 fix: use internal IP when node connect pod
• c42d42f1 ci: change to docker buildx action
• ba401065 fix: delete pod when marked with deletionTimestamp
• f8a4e656 fix: remove not alive pod in pg

Contributors

• Mengxin Liu
• 范日明

v1.5.0 (2020-09-28)

• c0a34b84 release: prepare for release 1.5.0
• 95548457 perf: use podLister to optimize k8s calls
• 6635f930 chore: enable ssl to default ci tests
• 5f29fc30 security: change ovsdb file access to 600
• 0e0a6887 docs: improve hw-offload
• a1a215dc feat: support db ssl communication
• e7a88c11 diagnose: show nb/sb/node info
• 090624fd fix: pinger diagnose should use cmd args
• fae393e3 fix: ipv6 get portmap failed again
• b74189fe fix: ipv6 get portmap failed
• f1c2f995 fix: delay mv cni conf to when cniserver is ready
• 98bb7510 chore: update kind and kube-ovn-cni updateStrategy
• 64640421 monitor: add cni grafana dashboard
• 38adc18f monitor: add more kube-ovn-cni metrics
• 36e9091d feat: update pinger dashboard
• ab736d8f fix: issues with vlan underlay gateway
• 2e5f0ecb feat: set more metadata to interface external_ids
• 77c4a5f2 feat: grace stop ovn-controller
• ebfc1530 refactor: fix bridge-mappings and refactor vlan code
• 729ed3c7 fix: allow mirror config update
• 84bb3c83 fix: cleanup v6 iptables and ipset
• da493717 docs: add gateway docs and optimize others
• ece4219f feat: integrate ovn sfc
• 2b2e7a9a feat: support pod snat
• 7a60b569 prepare for next release
• e9933619 fix: ovn-ic-db restart failed
• 115c1266 fix: stop ovn-ic when disabled
• e9861444 fix: use nodeName as chassis hostname

Contributors

• Mengxin Liu

v1.4.0 (2020-09-01)

• 0f973a5a prepare for 1.4 release
• 78ab9b1e fix: do not gc learned routes
• 3ddb9614 chore: add psp
• f847e5be perf: apply udp improvement
• a8f0d228 chore: sync pre-1.16 install.sh
• 0918e9a2 ci: use go 1.15
• f43a1027 fix: add prob timeout to wait script finish
• c5ca0b1b resolve review problem
• 28d5a8aa chore: suppress verbose logs
• df54b0d1 fix: do not gc ic logical_switch
• b9ab4d66 fix: only gc VIF type logical_switch_port
• 731fef99 docs: update docs
• e9ae40a9 chore: add back lflow reduction optimization
• 022c7903 chore: update ovs to 2.14.0
• 8e93c054 fix: remove duplicated gcLogicalSwitch
• c3b7457a fix: modify src-ip route priority
• e0096f9b fix: missing session lb to logical switch
• 6fbcc198 feat: ovn-ic integration
• 0ea62c16 fix:resolve gosec check problem
• b2d0393b feat: do not perform masq on external traffic
• 4e1ad126 chore: fix patch failure
• a7c460a4 fix: subnet acl might conflict if allowSubnets and subnet cidr cover each other
• 0dd85e46 feat: acl log drop packets
• 6d048632 chore: remove juju log dependency
• 9535c26b feat: gw switch from overlay to underlay
• 4b095580 chore: prepare for 1.4 release
• c9d07e1d fix: prevent update failed logs
• a98ec5bd fix: ko use external-ids to find related nic
• 1cad39ce fix: forward accept rules

Contributors

• Mengxin Liu
• hzma

v1.3.0 (2020-07-31)

• 45d30713 chore: add build date
• c9953234 release: update 1.3.0 docs
• 34627a66 fix: call appendMssRule function to resolved mss according problem
• bb961ae5 dpdk: add kmod, pdump and proc-info tools
• cf47ee1b fix: ci image tags
• 46768179 chore: optimize dpdk build
• 5c107687 docs: add hw-offload docs and resolve some issues
• e64c6132 fix: if sriov device, do not delete the host nic
• f55c3fba fix: use keymutex to serialize pod add/delete operation
• d438574d feat: assign a pod as the gw
• 1806a572 ci: add arm build to normal ci process
• 5aed1ef1 ci: add unfixed cve
• 19201a36 ci: arm64 build accelerate
• 63fbc008 chore: add logs to sriov interface
• 82140c93 ci: add ipv6 install e2e
• c3814c72 feat: recycle lsp at runtime
• 3f9d7c92 fix: qos error
• e460541d fix: variable error
• de9493f2 ci: modify cache usage
• 1994e5c3 ci: save ci time
• 5c4d5a3c chore: use j2 to render different kind.yaml
• d1a184ef fix: set qlen for ovn0
• a2d969e8 prepare for 1.3 release
• 3a018a86 chore: update build.sh
• be7c68f2 fix: log error
• 31723f66 chore: check ovn-sb connectivity from ovn-ovs probe
• d017f1f2 fix: available ips calculation issues
• 309c8080 perf: add hw offload
• 4b8faede docs: add gateway qos doc
• 32a9af2b ci: remove master taint
• 3865220d chore: update cni dependencies
• 8e032392 feat: session service
• 34b7cba7 Revert "perf: use policy-route to replace src-ip route"
• 1d13d5c3 Revert "fix: ipv6 policy route"
• 65813640 Revert "fix: reset address_set when delete subnet"
• e6817a65 fix: reset address_set when delete subnet
• dbc968ca test: statefulset without ippool
• 9440a11f match apps/* statefulset
• ca122027 fix: ipv6 policy route
• 54acd0c3 feat: support gw qos
• b8f03248 perf: use policy-route to replace src-ip route
• 83dc420e Solve the problem of non-standard statefulset creation mode
• 32e6d572 fix: arm64 build missing env
• c93f0d84 action: use commit as image tag
• 732b240c Add libatomic to docker image
• 9d5294bb chore: save disk space when building
• 4b1f5244 chore: change crd form v1beta1 to v1
• e6fb0fcb kubectl-ko: add ovs-tracing info
• 61aa3ba2 pinger: add metrics to resolve external address
• ef0f3b27 chore: update ovn to 20.06
• 961f5f1a update changelog
• 85f2e0e0 fix some version in docs
• f989bdd8 fix: rename variable
• 990bf983 fix: minor fix
• 8d7045b3 feat: use never used address first to reduce conflict
• db2516c2 ci: use tmpfs to accelerate e2e
• 79272376 fix: create/delete order might lead ip conflict
• b27d7545 ci: do not push image when pr
• a1f53e67 clean up all white noise
• a4f40370 security: update yum repo
• 270c825c fix node's annottaions overwrited incorrectly
• 5adc5a44 Fix typo in multi-nic.md
• 3ac92a15 Userspace-CNI updates in dpdk.md
• 76e72b7e Remove empty lines from DPDK Dockerfile
• 9b5c018a security: update loopback to fix CVE
• bd1f2acf Make OVS-DPDK start script more robust
• 3bfc39f8 Reduce DPDK image size
• 4917afe9 fix: add back privilege for ipv6
• 8121afd6 Config support for OVS-DPDK
• ad30e687 security: add trivy scan and fix image CVEs
• 06256a09 docs: modify arm build
• 9d2e64a4 docs: update development
• bd975768 refactor: use ovs.Exec replace raw command
• 32024ba8 chore: add gosec to audit code security
• 1db9046d prepare for next release
• aa72ba6c fix: arm build
• 628f5c5e fix: change version in install.sh

Contributors

• Gary
• Haocheng Liu
• Mengxin Liu
• MengxinLiu
• Patryk Strusiewicz-Surmacki
• Xiang Dai
• ckji
• laik
• linruichao

v1.2.1 (2020-06-22)

• 755f57bc release 1.2.1
• 88b847ca fix: create/delete order might lead ip conflict
• 0656f63c fix node's annottaions overwrited incorrectly
• 86e20a09 security: update loopback to fix CVE
• b1ea8a36 fix: add back privilege for ipv6
• 2a877530 fix: arm build
• 8ec2c159 fix: change version in install.sh

Contributors

• Mengxin Liu
• MengxinLiu
• ckji

v1.2.0 (2020-05-30)

• 280a1bd3 chore: prepare for release 1.2
• 4342187d chore: prepare for release 1.2
• 4a52bb43 DPDK doc update and small image reduction
• b055cc68 Add OVS-DPDK support, for issue 104
• f7fdd2dc fix: pod get deleted between configure nb and patch pod
• e13dc5ac fix: native vlan and delete subnet issues
• 44b5a6a7 fix: trigger github action when dist dir change
• 3a2ee051 fix: update ovn patch
• 6e1589cc chore: improve log
• 00f98489 fix: gc lsp for pod that not alive
• 701e9efd feat: support underlay without vlan encap
• 83ad499f chore: optimize kube-ovn-cni log
• 84b6cdcf fix: gc node lsp
• 7aafd944 chore: remove vagrant
• 92ccf729 fix: dst route policy might be empty
• 6c89a046 feat: in vlan mode if physical gateway exists, no need to create a virtual one
• 1d5c6958 perf: add amd64 compile flags back
• b0f0947d fix: init ipam before gc, other wise routes will be deleted
• dbc23c5e fix: patch ovn to lower src-ip route priority to work with ovn-ic
• 5a763820 fix: return early if allocation is not ready
• b03c3768 chore: remove networks crd
• 2853438c perf: remove more stale lflow
• 0665f2e8 ci: run ut and e2e in github action
• e71b68c0 fix: check svc and endpoint protocol
• 508eb7a2 perf: reduce lflow count
• 5f8b9b40 fix: when podName or namespace contains dot, lsp cannot be deleted correctly
• 27c72560 fix: wrong subnet status
• f0b17a69 feat: change pod route when update gateway type
• 13283daf feat: refactor subnet and allow cidr change
• 23821d6c fix: use kubectl to avoid tls handshake error
• e647cc6c chore: reduce logs
• aef4336d feat: only show error log of kube-ovn-controller
• a9ab0bc2 fix: map concurrent panic
• 2dd13b23 fix: ipv6 related issues
• 86c443e7 fix: validate if subnet cidr conflicts with svc ip
• eb4cb1b3 fix: validate if node address conflict with subnet cidr
• 7f595ee0 feat: github action
• 1046b572 fix: wait node annotations ready before handle pods
• 7a0151cc fix: check ovn-nbctl socket in new dir
• 0dc76768 fix: error log found in scale test
• 04715943 fix: concurrent panic
• da14eaeb feat: use bgp to announce pod ip
• 909b5a00 release 1.1.1
• ab834b5a fix: labels might be nil
• 0c0824db fix: ping output format
• ce27fb31 monitor: make graph more sensitive to changes
• 9b05fccf docs: update vlan docs
• d0544d89 docs: update docs
• 28aef840 feat: improve install/uninstall
• 8d853656 refactor: refactor cni-server
• d99ffff0 refactor: controller refactor
• 8f1f0135 feat: modify install.sh for vlan type network
• cfe9d276 feat(vlan): vlan network type
• edd0ea81 feat(vlan): vlan network type
• c63accf4 fix: yaml indent and ovn central dir
• 5bc84d7b docs: chinese wechat info
• feaec4dd fix: fork go-ping and apply patches
• 58f73b33 chore: update kind node to 1.18 and ginkgo
• d274a979 docs: add arm build steps
• d061fc3c fix: mount etc/origin/ovn to ovs-ovn
• f8d6fd5c add support for multi-arch build
• 953f5be7 docs: change the cidr to avoid misunderstanding
• 5c5b9e08 feat: diagnose check if dns/kubernetes svc exist
• 7c6d6784 OVS local interface table mac_in_use row is lower case, but pod annotation store mac in Upper case.
• b53a2153 prepare for 1.2
• 0d60df32 fix: separate log for no address and wrong address
• a4106b2d docs: format docs

Contributors

• Gary
• Mengxin Liu
• MengxinLiu
• Yan Zhu
• fangtian
• linruichao

v1.1.1 (2020-04-27)

• 08f39db7 release 1.1.1
• 95d479f5 fix: labels might be nil
• eb9c9fd6 monitor: make graph more sensitive to changes
• 7e9b3661 fix: ping output format
• ae53bf57 fix: yaml indent and ovn central dir
• 82128d2f fix: fork go-ping and apply patches
• 14247939 fix: mount etc/origin/ovn to ovs-ovn
• 83f3a920 fix: use legacy iptables

Contributors

• MengxinLiu

v1.1.0 (2020-04-07)

• de9b003d release 1.1.0
• 4511a16b feat: use buildx to reduce image size
• 370689e7 test: check host route when add/del a subnet
• 0df863b6 [DO NOT REVIEW] vendor update: introduce klogr and do some tidy
• eeba4c01 [webhook] init logger for controller-runtime
• ae187152 test: add node test
• e1038d22 fix: acl and qos issues
• a4c81ba7 feat: expose iface in install.sh
• b6967f57 fix: remove auto checksums
• dbc85075 perf: offload udp checksum if possible
• bdb23691 release v1.0.1
• cdf4de3f perf: add x86 optimization CFLAGS
• 131181c2 chore: add scripts to build ovs
• 2b5dd72b fix: lost route when subnet add and is not ready
• 9032ac84 fix: ip prefix might be empty
• d1654e15 chore: reduce image size
• 464e991e chore: modify nodeSelector label to support k8s 1.17
• 2814a1d5 fix: use ovn-appctl to do recompute
• 0eaedd99 docs: multi nic
• dd1923c3 feat: ip cr support multi-nic
• b2ce6f08 fix: update in svc 1.1.1.1 may del svc 1.1.1.10
• 20bb7a78 feat: add cni side logical to support ipam for multi-nic
• 1319eb5d feat: add basic allocation function for multus-cni
• 8f6997a9 fix: only delete pod that restart policy is Always
• 3a2de9cd perf: only enqueue updatePod when needed
• 0f7b9d4c fix: add iptables to accept container traffic
• bdd021c0 feat: check kube-proxy and coredns in diagnose
• 502f18cf feat: add label param in install script
• 5a1cf371 perf: recycle ip and lsp for pod that in failed or succeeded phase
• d1968584 fix: add inactivity_probe back
• 417a001b feat: check if crds exist in diagnose
• e65a9d09 fix: gc static routes
• 91829d24 fix: still delete lsp if pod not in ipam
• 7d22430d fix: delete chassis from sb when delete node
• 5f5df34e fix: missing label selector
• 9822dba9 feat: add one script installer
• 479437a3 fix: cleanup in offline environment
• e707eb96 feat: diagnose check ds/deployment status
• 3c786f57 refactor: the ipam now has lock itself no need for ippool queue
• 9211486b fix: if pod is evicted, recycle address
• 2546deaf fix: use uuid to fetch vip
• 51f06bd6 refactor ipam
• 2336dc75 release 1.0.0
• 7d918f56 refactor pod controller
• 866db995 merge images into one
• 8296a9e7 fix:enablebash alias option in Dockerfile CMD scripts
• 68d87ec2 webhook: use global variables to avoid repeated map constructing
• cf2784ad remove useless fields in webhook.yaml
• 657b5a29 remove leader-election for webhook manager
• 2bcf0d28 feat: update to 20.03.0 ovn

Contributors

• Bruce Ma
• MengxinLiu
• Your Name

v1.0.1 (2020-03-31)

• 706cdfc3 release v1.0.1
• a51a672a fix: lost route when subnet add and is not ready
• 576cf776 fix: ip prefix might be empty
• 0e1670bf fix: update in svc 1.1.1.1 may del svc 1.1.1.10
• 63f05e5a fix: add inactivity_probe back
• bad0c43f fix: use uuid to fetch vip

Contributors

• MengxinLiu

v1.0.0 (2020-02-27)

• f40ce553 release 1.0.0
• 28238794 prepare for 1.0
• a036b37b fix: add back missing lsp gc
• 44d53c24 fix: delete lb if it has no backend
• b8498a83 metrics: expose cni operation metrics
• a75f9991 refactor: refactor server.go
• c88221ee fix: disable ovn-nb inactivity_probe
• 957654f9 fix: wait for container network ready before cni return
• 870d20b0 refactor: refactor controller.go
• 2885419d ovn: pick upstream performance patch
• 11598739 docs: add the development guide and fix the lint
• 0be25516 docs: add companies using kube-ovn section
• d56552b8 docs: add community information
• 8edd0225 fix: alleviate ping lost
• 632bbc5e refactor: refactor ovn-nbctl.go
• 8aafa415 docs: modify the readme
• 60ce7659 fix: pinger percentage error
• 276a28cf fix: add kube-ovn types to default scheme
• 998a9e63 refactor: cniserver
• a5d339b2 docs: update docs
• dc92afa3 fix: add a periodically recompute to ovn-controller to avoid inconsistency
• 8488ae2a fix: add timeout to pinger access ovs/ovn
• ff1ff145 fix: when subnet cidr conflict requeue the subnet
• e31a08ec fix: add runGateway to wait.Until
• 18239073 fix: restart nbctl-daemon if not response
• 839308e0 feat: display controller log in kubectl-ko diagnose
• 8e6c3d62 refactor: separate normal check and ovn specific check
• c9783181 fix: do not return not found err
• f19e5596 fix: move components to kube-system ns and add priorityClass
• a5d298db feat: cniserver check allocated annotation before configure pod network
• 8f72b7eb fix: set ovn-openflow-probe-interval
• 3838a46d pinger: add port binds check between local ovs and ovn-sb
• f8248cec fix: if cidr block not ends with zero, reformat it
• dff1d648 fix: resync iptables
• 40fab55f update version
• 920053c5 pinger: add timeout for dns resolve
• 513d2bd9 e2e: add basic framework and tests for e2e

Contributors

• Bruce Ma
• Mengxin Liu
• MengxinLiu
• withlin

v0.10.2 (2020-01-09)

• c5f49f24 release 0.10.2
• 61b7dded fix: add a periodically recompute to ovn-controller to avoid inconsistency
• 9de9d0b5 fix: when subnet cidr conflict requeue the subnet
• dca15914 fix: add runGateway to wait.Until
• f16209b4 fix: restart nbctl-daemon if not response

Contributors

• Mengxin Liu

v0.10.1 (2020-01-02)

• 09e27cea release: v0.10.1
• fafa5607 fix: do not return not found err
• 858d3331 fix: set ovn-openflow-probe-interval
• 641d6f86 pinger: add port binds check between local ovs and ovn-sb
• 8435a335 fix: if cidr block not ends with zero, reformat it
• 1f5df246 fix: resync iptables

Contributors

• Mengxin Liu

v0.10.0 (2019-12-23)

• 9747d540 docs: update changelog
• adf5071e fix: address in ep might be empty
• 182bb151 fix: cniserver wait ovs ready
• 518c0a78 fix: wrong deletion in gc lb and portgroup
• 2492a166 ovn: add memory patch to slow down memory increase
• d0bd71fd fix: wait default and node logical switch ready
• 23cad463 fix: podSelector in networkpolicy should only consider pods in the same ns
• ca5539f0 fix: do not add unallocated pod to port-group
• d5ed1ee7 release 0.10.0
• 3c62ea29 ovn: pick up commit from upstream
• 4c966c37 feat: pinger support check an address out of cluster.
• f0096078 chore: double quote shell variables
• 83364b52 fix: cluster mode db will generate lots listen error log
• d9e1cd1c fix: gc logical_switch_port form listing pods and nodes
• a5dc8bb9 fix: some init and cleanup bugs
• a5eb5e7f fix: ovn-cluster mode
• a6f0dd14 feat: exclude_ips can be changed dynamically
• d9c59434 update ovn to 2.12.0-1
• 06eceb3b feat: use label to select leader to avoid pod status misleading
• aa53c7dd fix: ip conflict when use ippool
• 59044330 docs: add v0.9.1 changelog
• 5efbea9f fix: block subnet deletion when there any ip in use
• a1dc8c11 plugin: kubectl plugin now expose ovs-vsctl to each node
• d3c6a71c fix: nbctl need timeout to avoid hang infinitely
• 77e58903 perf: as lr-route-add with --may-exist will replace exist route, no need for another delete
• d4a51bdc perf: when controller restart skip pod already create lsp
• 7617fa79 fix: when delete node recycle related ip/route resource
• f4e87476 fix typo in start-ovs.sh
• 9b88e084 perf: skip evicted pod when enqueueAddPod and enqueueUpdatePod
• e4818624 fix: use ep.subset.port.name to infer target port number
• 0d8ae20c fix: if no available address delete pod might failed related to #155
• bbd4257d kind: support reload kube-ovn component in kind cluster
• d0479e90 perf: filter pod in informer list-watch and disable resync
• 61a7a7b9 fix: index out of range err when create lsp
• 623661ef prepare for next release
• 1643c7f0 kind: support to install kube-ovn in kind
• 9611599f fix: mount /var/run/netns that kind will use it to store network ns files

Contributors

• Mengxin Liu
• qsyqian

v0.9.1 (2019-12-02)

• 5d4714c1 release v0.9.1
• 847ef8b0 fix: block subnet deletion when there any ip in use
• e0fbfea6 fix: nbctl need timeout to avoid hang infinitely
• dd63c5a4 fix: when delete node recycle related ip/route resource
• 4d0ad6c7 fix typo in start-ovs.sh
• 646a177c fix: use ep.subset.port.name to infer target port number
• 9ae58a81 fix image tag
• 3b793d4a fix: mount /var/run/netns that kind will use it to store network ns files
• 093770dd fix: index out of range err when create lsp

Contributors

• Mengxin Liu
• qsyqian

v0.9.0 (2019-11-22)

• 53db261a release: v0.9.0
• 1984cbe8 feat: when use nodelocaldns do not nat the address
• 446999f4 docs: add description about relation of cidr and static ip allocation
• 6f1854f9 Check the short name of kubernetes services which is independant of the cluster domain name.
• c6f8efeb fix: some grafana modification
• 40144160 fix: add missing cap
• 7c464d69 chore: update ovn and other minor fix
• ac537152 fix re-annotate namespaces when subnet deleted
• fe2f2612 fix: add ingress_policing_burst to accurate limit ingress bandwidth
• 20b2c83d fix: network unreachable when add egress qos for pod
• 758dbc1c fix: err when add egress qos
• bdfd351d fix: remove privilege=true from long run container
• 0859da1f perf: optimize pod add
• 3718851d fix: add keepalive to ovn-controller
• 6ad98106 feat: add controller metrics
• b87ed0ee If pod have not a status.PodIP skip add/del static route
• b9108fba fix: ippool pod static route might lost during leader election
• a2e24de6 fix: static route might lost during leader election
• 8202a188 feat: add grafana config and modify metrics.
• cae0ef27 fix: only keep the last iface-id
• f3528f23 fix: add missing gc
• 3791ba29 fix: gc resource when start controller
• f970615b fix: watch will break if timeout is set
• ef285b21 feat: pinger add apiserver check metrics
• d33685e6 fix: avoid conflict when init

Contributors

• Mengxin Liu
• QIANSHUANGYANG [钱双洋]
• Sébastien BERNARD
• Yan Zhu

v0.8.0 (2019-10-08)

• 6b57f61b release v0.8.0
• 6ed722f9 fix: loss might be negative number
• 7c0517b5 feat: pinger prometheus support
• e23bd552 feat: support pinger
• d837aa12 chore: update ovs/ovn
• 4246cb74 feat: gateway ha
• e27c9e54 chore: remove ovs-ipsec and update go to 1.13
• ba3084eb feat: add kubectl plugin
• 54a465d1 docs: add comparison
• 38be68d6 fix: pod should be accessed from node when acl applied
• e62f0ab0 enable portmap by default to support hostport
• 80de8e58 feat: add port security to pod port
• 4849f056 feat: add node switch allocated ip cr
• 34e8406e prepare for next release

Contributors

• Mengxin Liu
• MengxinLiu
• Yan Zhu

v0.7.0 (2019-08-21)

• 933fd8d2 release: bump v0.7.0
• 7e2bdf52 fix: add default excludeIps and check kern version
• 31544abb fix: deal with ipv6 connection str
• 0f8f2aad fix missing condition when subnet is private
• d37da1bc add subnet status
• 4a5c5498 fix: acl related issues
• 62a395e6 Revert "add subnet status field"
• b8f1d9ef add missing subnets/status operation permission
• 6c119ad1 Update cleanup.sh
• b08ece4f feat: add exclude_ips annotation to namespace
• a2774ed0 fix: use pg-del to remove pg and acl, check if ports is empty before set pg
• 422c6dc0 add subnet status
• fde683ea feat: add subnet annotation to ns and automatically unbind ns from subnet.
• 948e1306 docs: add cn docs link
• 5278e105 feat: add default values to subnet
• ea451a1a write back subnet name to ip label
• 1c7121db chore: enable mirror in yaml and modify docs
• db9783a3 fix: duplicate import in network_policy.go
• 8a57747e fix: improve cni-conf name priority
• 5f1436be fix: wait subnet ready before start worker.
• 661387ef fix: check ls exists before handle it
• 9e05f533 docs: add more installation tools.
• dccb93c7 docs: add support os and notes.
• c6a160b3 Update subnet.md
• 31ad00bd feat: add ip info to ip crd
• ad7b5c2f feat: update logo
• 44c3077c feat: add logo
• 55d7fd6f feat: reserve vport for statefulset pod
• 7a3c8a6a docs: add crd installation
• aa016c1b fix: modify default header length
• 85b40690 fix: do not create exist logical switch
• 36294366 chore: prepare for next release

Contributors

• MengxinLiu
• Yan Zhu
• ftiannew
• halfcrazy
• shuangyang.qian

v0.6.0 (2019-07-22)

• 463d6253 docs: add crd/ipv6 docs and bump version 0.6.0
• 103c23af fix build error
• 9d173ba0 feat: support ipv6-only mode
• 05566017 add webhook docs
• 766cec9b add admission webhook for static ip
• 2abeacb4 docs: add support platform version
• ed7264ea feat: use subnet crd to manage logical switch
• 1e5c9f6c Use k8s hostname, fix #60
• 87367295 fix: remove dependency on cluster-admin
• e0864a03 chore: use go mod to replace dep
• 96ec620d docs: update mirror feature to readme
• 855d834f feat: support traffic mirror
• d1c3ea85 prepare for next release

Contributors

• MengxinLiu
• Yan Zhu

v0.5.0 (2019-06-07)

• 782e04be chore: bump v0.5.0
• a27f8339 fix: wrong mtu
• 44707167 feat: support user define iface and mtu
• f8d8e186 fix: remove mask field from ip annotation
• 55090404 feat: auto assign gw for controller config and expose more cmd args
• 48da0fe1 feat: add pprof and use it as probe
• 8984c90b feat: set kernel args when start cniserver
• 208a1dfc feat: support network policy
• c8d208fb prepare for next release

Contributors

• MengxinLiu

v0.4.1 (2019-05-27)

• 5a2cb093 bump version to v0.4.1
• f8e8b001 fix: manual static ip allocation and automatic allocation should use different ip validation
• 031924d1 Fix json: cannot unmarshal string into Go value of type request.PodResponse kubeovn#33
• 24259dbf fix: use ovsdb-client to get leader info
• 3541b6cf fix: use default-gw as default-exclude-ips and expose args to docs
• 69c48538 to cleanup all created resources, not only kube-ovn namespace.
• 9361bb43 prepare for next release

Contributors

• MengxinLiu
• Yan Zhu
• fanbin

v0.4.0 (2019-05-16)

• 509bf4a4 feat: bump version to 0.4.0
• 2e414519 feat: support expose pod ip to external network
• 8992bbe3 fix: check conflict subnet cidr
• 0f9d1e4b fix: start informer when controller is leader
• 71c15d65 feat: validate namespace/pod annotations
• 89491b57 fix: wait node-gw info ready
• 0d86393d fix: use ovn/ovs-ctl to health check
• 278ccfe5 feat: remove finalizer dependency improve svc performance
• 8f962673 fix: reuse node ip and mac annotation
• b8f85143 Add ha for ovn dbs and simplify makefile
• 3c617451 feat: merge ovn-nbctl request
• b5ac7da4 feat: separate ip pool pod and add parallelism to workers
• ce105dff Mute logrus log for ipset Dont need to change the vendored code.
• 657470c8 Fix klog cant use V module The side affect of this commit is glog's V module not work.
• 5429f51b feat: use ovn macam to allocate mac for static ip pod
• 5a8958cd feat: update ovn to 2.11.1
• ca036f9e Add vagrantfile
• 660c0570 fix: use tag version yaml url
• bc66671c chore: fix go-report golint issues
• 12a4bec9 ha for kube-ovn-controller
• b7d0f599 cleanup unused code
• 756831d7 docs: add network topology
• c0559487 chore: Minor updates to gateway.md
• 21e34e9f chore: Gateway documentation touch-ups
• aa0b2b7c chore: QoS documentation touch-ups
• 3ec0098a chore: Subnet Isolation documentation touch-ups
• 524845e9 chore: Static IP documentation touch-up
• b510016c chore: Subnet documentation touch-ups
• 524f7d3f chore: Installation Guide touch-ups
• a1995d03 chore: README touch-up.

Contributors

• Kai Chen
• MengxinLiu
• Yan Zhu

v0.3.0 (2019-04-19)

• 79c0642e docs: bump version
• cb2f50da fix: acl rule error
• 1a6f492a fix: init node gw before run controller
• 75c514a1 fix: external dns issues
• 13068892 feat: use daemon ovn-nbctl to improve performance and cleanup unused dns code
• 24cda418 Implement centralized gateway.
• 890934f4 chore: migrate from bitbucket to github

Contributors

• MengxinLiu
• Yan Zhu

v0.2.0 (2019-04-15)

• adf655cb remove dns from ls and bump new version
• ca21c6cb make filter table forward chain default accept
• cd0ddf10 ipset exclude cluster service ip range
• 1d753c8e fix: lb bugs
• cb91d984 read cidr from ns annotation
• e9998332 fix: remove dns table from nodeswitch and remove unused other_config:namespace
• 049cab2c fix pod has no ip
• 170c3c63 Distributed gateway implement
• cebb8dfd fix: clean lost interface.
• 4367ba07 feat: support subnet isolation
• 1fe8c916 feat: support dynamic qos
• e04bc093 fix: ovn restart issues
• 014f1dcf fix: ovn restart issues
• 3e78ddc3 fix: validate namespace switch annotations
• 44eafc50 fix lint && add docker build
• cb3e01a4 feat: update yaml, add readiness/liveness probe, add pass shell args
• 004deefd feat: support qos
• d37264e4 feat: add simple gateway implementation

Contributors

• Mengxin Liu
• MengxinLiu
• Yan Zhu