Add Wireguard-based K8s pod networking This adds a pod networking runnable based on Wireguard which watches all nodes and adds their K8s IPAM allocations as routes into the kernel & WireGuard. It only depends on K8s and only performs direct routing. Test Plan: Manually tested by spinning up a two-node cluster and running two Alpine pods pinging eachother. Can be covered by E2E tests once we can do image preseeding for the test infra (T793). Bug: T487 X-Origin-Diff: phab/D573 GitOrigin-RevId: ba3fc36f421fd75002f6cf8bea25ed6f1eb457b0

commit: f042e6f95bb7dc771bf79f309dbdf0b34da933da [log] [tgz]
author: Lorenz Brun <lorenz@nexantic.com> Wed Jun 24 16:46:09 2020 +0200
committer: Lorenz Brun <lorenz@nexantic.com> Wed Jun 24 16:46:09 2020 +0200
tree: f18c60fb92202ce2d5ec7041c85579865a81509d
parent: b876fc31f12628562a51c70668b318b9fc50478b [diff] [blame]
diff --git a/core/BUILD b/core/BUILD
index 23cb537..5328671 100644
--- a/core/BUILD
+++ b/core/BUILD

@@ -36,8 +36,7 @@
         # Containerd config files
         "//core/internal/containerd:runsc.toml": "/containerd/conf/runsc.toml",
         "//core/internal/containerd:config.toml": "/containerd/conf/config.toml",
-        "//core/internal/containerd:loopback.json": "/containerd/conf/cni/99-loopback.conf",
-        "//core/internal/containerd:ptp.json": "/containerd/conf/cni/10-ptp.conf",
+        "//core/internal/containerd:cnispec.gojson": "/containerd/conf/cnispec.gojson",
 
         # CNI Plugins
         "@com_github_containernetworking_plugins//plugins/main/loopback": "/containerd/bin/cni/loopback",
commit	f042e6f95bb7dc771bf79f309dbdf0b34da933da	[log] [tgz]
author	Lorenz Brun <lorenz@nexantic.com>	Wed Jun 24 16:46:09 2020 +0200
committer	Lorenz Brun <lorenz@nexantic.com>	Wed Jun 24 16:46:09 2020 +0200
tree	f18c60fb92202ce2d5ec7041c85579865a81509d
parent	b876fc31f12628562a51c70668b318b9fc50478b [diff] [blame]