Donavan Fritz
a1222f13cc
Build flock Image / build (push) Has been cancelled
BIRD2's protocol kernel does not import kernel routes by default; the import filter on the channel is just for what BIRD has already learned. Added `learn;` so the kernel-installed blackholes (from the agent's SummaryRoutes) are picked up. Also added explicit `protocol static static6/static4` with one `route <cidr> blackhole;` per NodeConfig CIDR. This is belt-and- suspenders: even if `learn` doesn't capture the kernel blackhole, BIRD has the route directly and exports it via the BGP filter. Co-Authored-By: Claude Sonnet 4.6 (1M context) <noreply@anthropic.com>
flock
Kubernetes CNI for sjc001. Per-pod IPv4 opt-in, IID embedding, Ready-gated anycast via BGP.
Design doc: k8s-manager/dfritz-cni.md (in the operator's k8s-manager repo).
Status: M1 scaffold. Not functional. See milestones table in the design doc.
Layout
cmd/flock— CNI plugin binary (kubelet-invoked)cmd/flock-agent— DaemonSet binarypkg/api/v1alpha1—NodeConfigCRD typespkg/cni— CNI plugin internals + RPC clientpkg/agent— agent server, IPAM, state file, anycast, NetworkPolicypkg/embed—ip-algoIID embedding (pure)pkg/routing/{bird,ospf}— routing backendsdeploy/— CRDs, RBAC, DaemonSet manifests
License
Apache 2.0.