[jjo] add kube-router support

[jjo]

Fixes cloudnativelabs/kube-router#147.

• add kube-router as another network_plugin choice
• support most used kube-router flags via
  kube_router_foo vars as other plugins
• implement replacing kube-proxy (--run-service-proxy=true) via
  kube_proxy_remove (boolean) fact
• working around kubeadm lack of support for skipping kube-proxy
  daemonset creation (Make kube-proxy optional (default to install) kubernetes/kubeadm#776) by removing it
  after kubeadm run, added a caveat note to doc/kube-router.md
• verified working both on kubeadm_enabled: true|false

[jjo]

/cc @murali-reddy @andrewsykim

[k8s-ci-robot]

@jjo: GitHub didn't allow me to request PR reviews from the following users: murali-reddy, andrewsykim.

Note that only kubernetes-incubator members and repo collaborators can review this PR, and authors cannot review their own PRs.

In response to this:

/cc @murali-reddy @andrewsykim

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[jjo]

FYI I have it working over an openstack deploy, with

kube_network_plugin: kube-router
# [... default settings ...]
kube_proxy_mode: none
kube_router_run_service_proxy: true

Still has some rough edges:

• requiring kube_proxy_mode: none for --run-service-proxy
  (should be set_fact really)
• CI test files done mostly copypasta-ed from other plugins,
  need some knowledgeable review

[woopstar]

The readme file must also be updated with the network plugin and version.

[woopstar]

If this is yet not supported, do a check in the pre-install stage to make sure it does not happen?

[jjo]

Thanks for the suggestion:

• added assertion on not kubeadm_enabled
• added set_fact to override kube_proxy_mode: none if kube-router is set to replace it

[woopstar]

busybox image is in the downloads file too. Please update to ansible var

[jjo]

Done, although I added a busybox_image_repo (_tag)
as I don't feel like using test_image_repo (and _tag) for
critical kube-router pods functionality.

[jjo]

Thanks @woopstar for the thorough review, addressed your comments, PTAL
(fyi had to rebase for some conflicts).

[woopstar]

This is actually a problem. We are about to switch to use kubeadm as default deployment as you can see in #3301

[jjo]

Cool, thanks for the note -- I've reworked logic, and verified ok
also with kubeadm_enabled installs (noting a caveat re: kubeadm
lack of support for skipping kube-proxy deploy).

[jjo]

Thanks again @woopstar for the re^2view, reworked it for kubeadm_enabled
support, PTAL.

[Atoms]

ci check this

[jjo]

Addressed latest @woopstar comments, tnx again.

[ant31]

why are the job allow to failed ?

[methodx]

Hi @jjo
Please, check my PR.

Should be handy for kubernetes version >=v1.12.0

[jjo]

Hi @jjo
Please, check my PR.

Should be handy for kubernetes version >=v1.12.0

Thanks @methodx!, adapted manifest tolerations to match other CNIs,
see 8753a01, leaving feedback
at your PR re: other changes.

[woopstar]

CI tests all good.

Can you squash commits.

And also add PriorityClass to the deployment - see #3361

Think we can merge after that, then.

[ant31]

@woopstar we have autosquash now

[jjo]

@woopstar: added PriorityClass to kube-router DaemonSet,
lemme know if you want me to squash commits, iiuc from @ant31
wouldn't be needed (but obviously fine to do so nevertheless).

[woopstar]

/lgtm
/approve

[k8s-ci-robot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: woopstar

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• OWNERS [woopstar]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment