github/intel-device-plugins-for-kubernetes
7
0
Fork 0
mirror of https://github.com/intel/intel-device-plugins-for-kubernetes.git synced 2025-06-03 03:59:37 +00:00
Code Issues Packages Projects Releases Wiki Activity
NaN Commits 23 Branches 25 Tags 61 MiB
0f076fb71f
Commit Graph

142 Commits

Author SHA1 Message Date
Hyeongju Johannes Lee
b1b03e696e operator, kubebuilder: update to v4 
Signed-off-by: Hyeongju Johannes Lee <hyeongju.lee@intel.com>
 2025-03-13 14:42:00 +02:00
Hyeongju Johannes Lee
b3459a4d17 operator: fix outdated information 
update documentation in DEVEL.md too

Signed-off-by: Hyeongju Johannes Lee <hyeongju.lee@intel.com>
 2025-03-13 14:42:00 +02:00
Hyeongju Johannes Lee
d6ca49bb9d operator: remove residue of scorecard 
Signed-off-by: Hyeongju Johannes Lee <hyeongju.lee@intel.com>
 2025-03-13 14:42:00 +02:00
Tuomas Katila
2cbc3d55dd operator: update images to 0.32.0 
Signed-off-by: Tuomas Katila <tuomas.katila@intel.com>
 2025-01-30 09:56:49 +02:00
Mikko Ylinen
fe3eaeeb0b qat: drop AppArmor annotations 
"unconfined" annotation was needed to get writes to new_id / bind
to succeed on AppArmor enabled OSes.

However, many things have changed:

* new_id should not be used anymore and it was dropped in the plugin.
* QAT initcontainer has assumed the role of HW initialization.
* vfio-pci is the preferred "dpdkDriver" and starting with QAT Gen4, it
is the only available VF driver so unbind isn't necessary.
* k8s AppArmor is "GA" since 1.30 and the annotation is deprecated.

As of now, the initcontainer will take care of binding QAT VFs to vfio-pci
so the plugin does not neeed to set AppArmor at all.

Signed-off-by: Mikko Ylinen <mikko.ylinen@intel.com>
 2025-01-16 13:54:37 +02:00
Mikko Ylinen
ed5d1e6269 make: update controller-gen to v0.17 
Signed-off-by: Mikko Ylinen <mikko.ylinen@intel.com>
 2025-01-02 12:00:34 +02:00
Tuomas Katila
e34355940a operator: drop rbac-proxy in favor of controller-runtime's authz/authn 
rbac-proxy will be deprecated in 2025

Signed-off-by: Tuomas Katila <tuomas.katila@intel.com>
 2024-12-17 10:17:14 +02:00
Tuomas Katila
8e6b3be00a update main with 0.31.1 release changes 
Signed-off-by: Tuomas Katila <tuomas.katila@intel.com>
 2024-10-18 10:38:22 +03:00
Hyeongju Johannes Lee
3a49857fcd operator: change name prefix of controller-manager 
To sync with operator bundle that has been 'intel-deviceplugins-'
since 0.30.0 version, change the name prefix.

Signed-off-by: Hyeongju Johannes Lee <hyeongju.lee@intel.com>
 2024-10-01 14:33:05 +03:00
Tuomas Katila
beac9a3d16 operator: update images to 0.31.0 
Signed-off-by: Tuomas Katila <tuomas.katila@intel.com>
 2024-09-30 13:25:37 +03:00
Tuomas Katila
fedee94609 operator: kube-rbac-proxy to 0.18.1 
Signed-off-by: Tuomas Katila <tuomas.katila@intel.com>
 2024-09-26 13:45:15 +03:00
Tuomas Katila
42c34a74a4 tls: drop additional ciphers 
Signed-off-by: Tuomas Katila <tuomas.katila@intel.com>
 2024-08-21 12:28:02 +03:00
Tuomas Katila
19c2ad2da4 rbac proxy: drop lower quality tls cipher 
Signed-off-by: Tuomas Katila <tuomas.katila@intel.com>
 2024-08-20 11:46:12 +03:00
Mikko Ylinen
ff257cb2d2 operator: move to controller-tools v0.16.1 
Signed-off-by: Mikko Ylinen <mikko.ylinen@intel.com>
 2024-08-15 10:02:39 +03:00
Mikko Ylinen
5a59385a09 qat: drop c6xxvf from defaults 
The devices searched by default are QAT Gen4+ only.

Signed-off-by: Mikko Ylinen <mikko.ylinen@intel.com>
 2024-06-11 07:31:49 +03:00
Tuomas Katila
cd8a911c08 operator: update images to 0.30.0 
Signed-off-by: Tuomas Katila <tuomas.katila@intel.com>
 2024-05-15 11:26:47 +03:00
Mikko Ylinen
dfe843e4b6 operator: update kube-rbac-proxy to v0.16.0 
Signed-off-by: Mikko Ylinen <mikko.ylinen@intel.com>
 2024-05-03 12:57:43 +03:00
Tuomas Katila
05bb8ef156 qat: add support for 420xx driver and its devices (4946) 
Signed-off-by: Tuomas Katila <tuomas.katila@intel.com>
 2024-05-02 11:36:13 +03:00
Tuomas Katila
6a4434bd7f operator: add differentiation label 
Add one device plugin specific label to differentiate our operator
from all the possible operators within same namespace.

Signed-off-by: Tuomas Katila <tuomas.katila@intel.com>
 2024-03-20 10:00:46 +02:00
Tuomas Katila
52be7ed1e9 Add tolerations support to operator and plugin CRDs 
Signed-off-by: Tuomas Katila <tuomas.katila@intel.com>
 2024-03-20 10:00:41 +02:00
Mikko Ylinen
06dc494982 operator: update to controller-gen v0.14 and generate CRDs with it 
Signed-off-by: Mikko Ylinen <mikko.ylinen@intel.com>
 2024-02-12 10:33:53 +02:00
Manish Regmi
0256a91643 privileged is not needed for openshift 
Remove the privileged section as it is not needed for openshift.

Signed-off-by: Manish Regmi <manish.regmi@intel.com>
 2024-01-03 12:34:43 -05:00
Tuomas Katila
ed9189435c operator: update images to 0.29.0 
Signed-off-by: Tuomas Katila <tuomas.katila@intel.com>
 2023-12-20 14:39:13 +02:00
Tuomas Katila
95b7230374 gpu: enable monitoring for the default installations 
Signed-off-by: Tuomas Katila <tuomas.katila@intel.com>
 2023-12-08 08:42:08 +02:00
Mikko Ylinen
fdb376c46c operator: update kube-rbac-proxy to v0.15.0 
Signed-off-by: Mikko Ylinen <mikko.ylinen@intel.com>
 2023-11-16 10:25:44 +02:00
Tuomas Katila
646cee6e12 operator: update to 0.28.0 images 
Signed-off-by: Tuomas Katila <tuomas.katila@intel.com>
 2023-09-25 09:10:20 +03:00
Tuomas Katila
88ae7c83eb sgx & gpu crds: improve comments and note sgx's initimage replacement with NFD rules 
Signed-off-by: Tuomas Katila <tuomas.katila@intel.com>
Co-authored-by: Mikko Ylinen <mikko.ylinen@intel.com>
 2023-09-15 16:06:02 +03:00
Tuomas Katila
691dfc3483 gpu: refactor nfdhook functionality to plugin 
NFD v0.14+ doesn't support binary NFD hooks by default, so there is
a need to move the label creation away from the GPU nfdhook.

Move extended resource label creation to plugin, and drop labels that were
already marked deprecated (platform_gen, media_version etc.).

Drop init-container from deployment files and operator. It is still possible
to use an initcontainer, but the default deployments do not support it.

Signed-off-by: Tuomas Katila <tuomas.katila@intel.com>
 2023-09-12 16:20:33 +03:00
Mikko Ylinen
69f5ccfe66 operator: update controller-gen to v0.13.0 
Signed-off-by: Mikko Ylinen <mikko.ylinen@intel.com>
 2023-09-05 14:30:10 +03:00
Mikko Ylinen
c3a3561cb8 webhooks: stop handling Pod updates 
FPGA and SGX webhooks mutate container resources which
are immutable. Therefore, stop processing pod updates
and act on creation only.

Signed-off-by: Mikko Ylinen <mikko.ylinen@intel.com>
 2023-08-14 15:18:51 +03:00
Tuomas Katila
e92b752d75 deployments: move from 'vars' to 'replacements' 
Signed-off-by: Tuomas Katila <tuomas.katila@intel.com>
 2023-08-03 10:37:44 +03:00
Tuomas Katila
cb04ca0deb deployments: move from 'patchesStrategicMerge' to 'patches' 
Signed-off-by: Tuomas Katila <tuomas.katila@intel.com>
 2023-08-03 10:37:44 +03:00
Tuomas Katila
ec2930b331 deployments: move from 'bases' to 'resources' 
Signed-off-by: Tuomas Katila <tuomas.katila@intel.com>
 2023-08-03 10:37:44 +03:00
Mikko Ylinen
89986b9972
Merge pull request #1477 from hj-johannes-lee/PR-2023-023 
Makefile: update versions & FPGA: fix naked return error from linter
 2023-07-20 18:33:57 +03:00
Hyeongju Johannes Lee
bf286c689d update version of controller gen to v0.12.1 
Signed-off-by: Hyeongju Johannes Lee <hyeongju.lee@intel.com>
 2023-07-20 10:17:44 +03:00
Mikko Ylinen
34baf982b8 operator: add missing IaaDevicePlugin finalizers RBAC 
Signed-off-by: Mikko Ylinen <mikko.ylinen@intel.com>
 2023-07-18 08:25:19 +03:00
Tuomas Katila
20c5bf97ff operator: update sample versions to 0.27.1 
Signed-off-by: Tuomas Katila <tuomas.katila@intel.com>
 2023-06-26 16:13:53 +03:00
Tuomas Katila
967a043ca2 operator: update samples to 0.27.0 version 
Signed-off-by: Tuomas Katila <tuomas.katila@intel.com>
 2023-06-05 09:06:28 +03:00
Tuomas Katila
13097ac78d operator: increase memory resources to 100/120Mi 
Fixes: #1416

Signed-off-by: Tuomas Katila <tuomas.katila@intel.com>
 2023-05-22 08:42:40 +03:00
Mikko Ylinen
e428cd6c19 go.mod: update to k8s 1.27.1 and controller runtime 0.15.x 
k8s 1.27.x triggers build errors on controller-runtime 0.14.x
so we will need to update to 0.15.x at the same time.

Changes include:

* k8s e2e framework moved to use Ginkgo context so we add
  test context to all our test nodes.
* adapt Ginkgo parameter modifications.
* adapt SGX admissionwebhook to InjectDecoder removal.
* adapt deviceplugins and FPGA CRDs to controller-runtime
  API changes.

Signed-off-by: Mikko Ylinen <mikko.ylinen@intel.com>
 2023-05-09 14:49:24 +03:00
Mikko Ylinen
16724043b2 operator: move to controller-tools v0.12.0 
Signed-off-by: Mikko Ylinen <mikko.ylinen@intel.com>
 2023-05-05 15:02:36 +03:00
Hyeongju Lee
ed08d11aa3
Merge pull request #1392 from mythi/PR-2023-019 
sgx: stop using local source hooks for EPC registration
 2023-05-02 12:26:12 +03:00
Mikko Ylinen
6b5e65a137 operator: update kube-rbac-proxy image to v0.14.1 
Signed-off-by: Mikko Ylinen <mikko.ylinen@intel.com>
 2023-05-02 09:16:24 +03:00
Mikko Ylinen
3a4c0e574f sgx: stop using local source hooks for EPC registration 
Signed-off-by: Mikko Ylinen <mikko.ylinen@intel.com>
 2023-04-28 14:59:41 +03:00
Tuomas Katila
974829ff7c gpu: try to fetch PodList from kubelet API 
In large clusters and with resource management, the load
from gpu-plugins can become heavy for the api-server.
This change will start fetching pod listings from kubelet
and use api-server as a backup. Any other error than timeout
will also move the logic back to using api-server.

Signed-off-by: Tuomas Katila <tuomas.katila@intel.com>
 2023-03-30 12:43:02 +03:00
Mikko Ylinen
eb632f625a deployments: remove unused deviceplugins RBAC rules 
Signed-off-by: Mikko Ylinen <mikko.ylinen@intel.com>
 2023-02-21 20:14:03 +02:00
Mikko Ylinen
5c6e60eeb1 operator: move to controller-tools v0.11.3 
Signed-off-by: Mikko Ylinen <mikko.ylinen@intel.com>
 2023-02-21 20:14:03 +02:00
Mikko Ylinen
c65d4ab896 operator: update to 0.26.0 images 
Signed-off-by: Mikko Ylinen <mikko.ylinen@intel.com>
 2023-01-20 11:49:51 +02:00
Mikko Ylinen
10a26b8fd8
Merge pull request #1234 from hj-johannes-lee/qat-cfgServices 
qat: add configuration of cfgServices to qat initcontainer
 2022-12-13 08:26:13 +02:00
Hyeongju Johannes Lee
a6037eae3c
qat: add configuration of cfgServices to qat initcontainer 
Signed-off-by: Hyeongju Johannes Lee <hyeongju.lee@intel.com>
 2022-12-12 21:48:21 +02:00