Package Calico as a Helm chart #717
Comments
|
Last I checked there was a dependency on networking in order to use helm - the tiller Pod needed networking installed in order to work, which meant installing networking wasn't possible through Helm. This was many months ago, so may have changed since! |
|
Helm now allows running the tiller Pod using host networking, but we're still currently blocked on this: kubernetes/kubernetes#45717 |
|
The kubernetes/kubernetes#45717 has been closed due to the feature of TaintNodeByCondition in K8S 1.9. The ticket is unblocked, I think. |
|
@luckyfengyong thanks for the heads up! Looks like it's an alpha feature, so would be good for us to try it out and see if it meets our needs. |
|
Here is aws helm chart for calico in case anyone is looking for it. Still needs some values restructuring, but its a first stab at it. |
Prevent customers from downloading ansible from an Open Source branch
|
I'll test this and get back to you . Thanks @mhobotpplnet . |
|
@caseydavenport do you have a preference for where this lives ?
|
|
Is there any update of this issue? |
|
Currently, the core Calico team is not really able to be in the business of maintaining a Calico helm chart. There are a lot of different ways to configure and package Kubernetes applications and we can't maintain and test all of those ourselves, so we need to rely on others to do that packaging. I think there are some third-party helm charts for Calico out there in the wild, though. |
|
@caseydavenport, understood: a supported Helm chart cannot be maintained without great expense and will only work for specific conditions. A link to a minimal chart used for system testing is useful: there is one in the code and an "in the wild" link already provided in this issue. It should suffice for further development. |
|
I also published Calico helm chart recently, as it is used by my project during cluster bootstrapping. It's available via It would be great if Calico team could maintain that, as with Helm 3, it's very easy to use Helm for managing Calico deployment. |
Yup. Thanks for the discussion. :)
👍
Hmm... yes and no. I wasn't scoping all of Calico into my statement but I guess I did not state that. I was more referring to the packaging. If I can quickly audit the deployment scripts, I know roughly what box the software under deployment is restricted to. I can quickly look at the rendered templates and see what its going to do. With an operator, you can't see what it always will do, just what its done after the fact. So the best you can do is look at the operator's rbac rules and guess. That does relate to previous concern, which would be better when tightened. So will be less of a problem later.
I guess I might have been mixing concerns a little bit here. If you were to deploy the operator using the OLM, I think you run into bad bootstrapping dependencies. If simply using helm to deploy the operator, its not a problem. Without something like the olm, I'm not sure how much helm installing the operator vs just helm installing calico directly buys you for the extra complexity.
Ok, yeah. So once permissions are tightened up, I think the main trade off I see, is more obscurity on the deployment for sysadmins because its harder to see the manifests before the operator generates them vs the ability for the operator to do complex lifecycle operations on Calico to save the sysadmins work? So work for an sysadmin doing some verification vs work for a sysadmin doing more complicated upgrades. I think the canal -> calico upgrade procedure was more complicated then just a helm upgrade, but was a one time thing and even with the few extra steps wasn't a huge deal. Do you envision much need for more complicated upgrade procedures beyond what a simple helm upgrade could do?
Yeah, me too. Thanks again for the discussion/thought. |
|
Can we just get this packaged up as a helm chart? https://github.com/projectcalico/calico/tree/master/_includes/charts/calico |
|
@cabrinha please see my earlier comments on this - that chart is for internal website rendering purposes only.
|
@kfox1111 Yes, this is certainly part of the benefits it brings (handling complex lifecycle operations). But like you said, those scenarios are relatively rare. There are other, perhaps more subtle, benefits as well, that it brings to every release.
Of course, some of these things are achievable via a helm chart. But also some of them are not. |
|
Now that latest helm does not have tiller, does it work without CNI? If so, calico can have helm charts and can be installed by helm? Thoughts? |
|
It works without cni. |
|
Would love an official helm chart |
|
Any reason there are no official helm charts to install calico or calico operator? Docs say we need to create the manifests (calico.yaml or tigera-operator.yaml) using Looking at the manifests, it looks like:
Can these manifests be converted to |
Thanks. I made helm charts for calico by adding So, yes, helm does work without CNI. I'm using helm |
|
How about getting this packaged up as a helm chart? https://docs.projectcalico.org/manifests/calico-vxlan.yaml |
|
@invidian -> as you already maintain the calico non-operator charts in your helm repo (#717 (comment)), can you add also the operator one (https://github.com/projectcalico/calico/tree/master/_includes/charts/tigera-operator ) along with a values.yaml ? |
|
@ReSearchITEng I'm not actively using |
|
Any updates? Is there any guide, how to install |
|
This issue has been open since 2017. Can we get a helm chart made for calico please? |
|
@caseydavenport so I made some changes to the helm chart and added values.yaml file and a README.md. It is after pushing it to my Github I realized values.yaml files are ignored for charts. Is there a reason why this can't be allowed? This along with the readme will help others to download and use this chart locally at least. I can create a pull request if you are fine with the approach. |
|
CC @ozdanborne and @lwr20 who are currently working on a helm3 chart, and know better than I. |
|
@ozdanborne @lwr20 can you guys take a look at this and see if this can be packaged as a helm chart. I changed it to helm 3, added |
|
For the benefit of those watching along, the helm3 charts work has progressed to the point that you can build helm3 charts from this repo: and the charts tgz will be built and can be found in /bin/ This works for Work is still ongoing on adding automated testing for the resulting helm bundle and on the machinery to actually add a helm charts bundle as a release artifact. |
|
Helm chart bundles are now being added to the release artifacts. e.g. |
|
How do i need to configure helm to fetch those bundles? Normally you you need a helm repo. Is it planned to publish them as helm repo or do we need to create our own repo for it? 😕 |
|
There's no need for a helm repo: But I can see that it would make finding the latest chart easier. I'll raise an issue to track that. |
|
Raised #4514 Please add comments to that to explain why this would be a good thing to have so that this work can be prioritised appropriately. |
tigera-operator installs Calico. (It can also be used to install Calico Enterprise, but that's not relevant here). |
|
I've never used tiger-operator and I thought it's only for calico enterprise, but now everything is clear for me, thanks :) |
See https://github.com/kubernetes/helm/blob/master/docs/charts.md
The text was updated successfully, but these errors were encountered: