Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

egressgw: init gatewayIP to 0.0.0.0 #24646

Merged
merged 1 commit into from
Apr 3, 2023
Merged

egressgw: init gatewayIP to 0.0.0.0 #24646

merged 1 commit into from
Apr 3, 2023

Conversation

MrFreezeex
Copy link
Member

@MrFreezeex MrFreezeex commented Mar 30, 2023
edited by jibi

Please ensure your pull request adheres to the following guidelines:

  • For first time contributors, read Submitting a pull request
  • All code is covered by unit and/or runtime tests where feasible.
  • All commits contain a well written commit description including a title,
    description and a Fixes: #XXX line if the commit addresses a particular
    GitHub issue.
  • If your commit description contains a Fixes: <commit-id> tag, then
    please add the commit author[s] as reviewer[s] to this issue.
  • All commits are signed off. See the section Developer’s Certificate of Origin
  • Provide a title or release-note blurb suitable for the release notes.
  • Are you a user of Cilium? Please add yourself to the Users doc
  • Thanks for contributing!

Always init gatewayIP to 0.0.0.0 by default instead of the previous nil value. Before this commit the rules that didn't match any node where added in addMissingEgressRules and removed right after in removeUnusedEgressRules. The egressmap auto convert nil to 0.0.0.0 and removeUnusedEgressRules doesn't do anything to match nil and 0.0.0.0.

Prevent egress gateway from adding and then immediately removing BPF policy entries for policies that don't match any gateway node

@MrFreezeex MrFreezeex requested a review from a team as a code owner March 30, 2023 08:58
@maintainer-s-little-helper maintainer-s-little-helper bot added the dont-merge/needs-release-note-label The author needs to describe the release impact of these changes. label Mar 30, 2023
@github-actions github-actions bot added the kind/community-contribution This was a contribution made by a community member. label Mar 30, 2023
@MrFreezeex MrFreezeex mentioned this pull request Mar 30, 2023
Merged
8 tasks
@jibi jibi added kind/bug This is a bug in the Cilium logic. release-note/bug This PR fixes an issue in a previous release of Cilium. feature/egress-gateway Impacts the egress IP gateway feature. labels Mar 30, 2023
@maintainer-s-little-helper maintainer-s-little-helper bot removed the dont-merge/needs-release-note-label The author needs to describe the release impact of these changes. label Mar 30, 2023
jibi
jibi reviewed Mar 30, 2023
View reviewed changes
pkg/egressgateway/policy.go Outdated Show resolved Hide resolved
@jibi jibi added the needs-backport/1.13 This PR / issue needs backporting to the v1.13 branch label Mar 30, 2023
@maintainer-s-little-helper maintainer-s-little-helper bot added this to Needs backport from master in 1.13.2 Mar 30, 2023
@MrFreezeex
egressgw: init gatewayIP to 0.0.0.0
0196205 
Always init gatewayIP to 0.0.0.0 by default instead of the previous nil
value. Before this commit the rules that didn't match any node where
added in addMissingEgressRules and removed right after in
removeUnusedEgressRules. The egressmap auto convert nil to 0.0.0.0
and removeUnusedEgressRules doesn't do anything to match nil and 0.0.0.0.

Signed-off-by: Arthur Outhenin-Chalandre <arthur@cri.epita.fr>
@jibi
Copy link
Member

jibi commented Mar 30, 2023

/test

@jibi
Copy link
Member

jibi commented Mar 31, 2023
edited by maintainer-s-little-helper bot

/test-1.26-net-next

Job 'Cilium-PR-K8s-1.26-kernel-net-next' failed:

Click to show.

Test Name

K8sDatapathServicesTest Checks E/W loadbalancing (ClusterIP, NodePort from inside cluster, etc) Checks in-cluster KPR Tests HealthCheckNodePort

Failure Output

FAIL: Found 1 io.cilium/app=operator logs matching list of errors that must be investigated:

If it is a flake and a GitHub issue doesn't already exist to track it, comment /mlh new-flake Cilium-PR-K8s-1.26-kernel-net-next so I can create one.

@jibi
Copy link
Member

jibi commented Mar 31, 2023

(looks like net-next is hitting #24667)

@jibi
Copy link
Member

jibi commented Apr 3, 2023

/mlh new-flake Cilium-PR-K8s-1.26-kernel-net-next

@jibi
Copy link
Member

jibi commented Apr 3, 2023

net-next failure looks like an unrelated flake, marking as ready

@jibi jibi added the ready-to-merge This PR has passed all tests and received consensus from code owners to merge. label Apr 3, 2023
@pchaigno
Copy link
Member

pchaigno commented Apr 3, 2023

@jibi Note I don't think MLH managed to create the flake issue.

@pchaigno pchaigno removed the ready-to-merge This PR has passed all tests and received consensus from code owners to merge. label Apr 3, 2023
@pchaigno
Copy link
Member

pchaigno commented Apr 3, 2023

We're also missing an approving review.

@jibi
Copy link
Member

jibi commented Apr 3, 2023

We're also missing an approving review.

I thought I had already approved it

@jibi jibi added the ready-to-merge This PR has passed all tests and received consensus from code owners to merge. label Apr 3, 2023
@squeed squeed merged commit edf15f1 into cilium:master Apr 3, 2023
42 checks passed
@jibi jibi mentioned this pull request Apr 3, 2023
Merged
11 tasks
@jibi jibi removed the needs-backport/1.13 This PR / issue needs backporting to the v1.13 branch label Apr 3, 2023
@jibi jibi added the backport-pending/1.13 The backport for Cilium 1.13.x for this PR is in progress. label Apr 3, 2023
@maintainer-s-little-helper maintainer-s-little-helper bot moved this from Needs backport from master to Backport pending to v1.13 in 1.13.2 Apr 3, 2023
@maintainer-s-little-helper maintainer-s-little-helper bot moved this from Needs backport from master to Backport pending to v1.13 in 1.13.2 Apr 3, 2023
@jibi jibi added backport-done/1.13 The backport for Cilium 1.13.x for this PR is done. and removed backport-pending/1.13 The backport for Cilium 1.13.x for this PR is in progress. labels Apr 7, 2023
@maintainer-s-little-helper maintainer-s-little-helper bot moved this from Backport pending to v1.13 to Backport done to v1.13 in 1.13.2 Apr 7, 2023
@gentoo-root gentoo-root mentioned this pull request Apr 14, 2023
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jibi jibi jibi approved these changes

@ldelossa ldelossa Awaiting requested review from ldelossa ldelossa was automatically assigned from cilium/sig-datapath

Assignees
No one assigned
Labels
backport-done/1.13 The backport for Cilium 1.13.x for this PR is done. feature/egress-gateway Impacts the egress IP gateway feature. kind/bug This is a bug in the Cilium logic. kind/community-contribution This was a contribution made by a community member. ready-to-merge This PR has passed all tests and received consensus from code owners to merge. release-note/bug This PR fixes an issue in a previous release of Cilium.
Projects
No open projects
1.13.2
Backport done to v1.13
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
4 participants
@MrFreezeex @jibi @pchaigno @squeed