v1.13 backports 2023-06-02 #25855
Merged
v1.13 backports 2023-06-02 #25855
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
sayboras
added
kind/backports
sayboras
requested review from
bimmlerd,
julianwiedmann,
michi-covalent,
pchaigno,
ti-mo and
tommyp1ckles
sayboras
force-pushed
the
pr/v1.13-backport-2023-06-02
branch
from
d11258e
to
e5a79d9
Compare
|
/test-backport-1.13 |
pchaigno
approved these changes
Jun 2, 2023
julianwiedmann
approved these changes
Jun 2, 2023
|
/test-runtime |
sayboras
added
the
release-blocker/1.13
[ upstream commit e93fdd8 ] Once we have a sysdump in the test artifacts a lot of files we collect will become duplicates. This commit however doesn't remove all those duplicate files from the test artifacts. Let's wait a bit and confirm the sysdump collection always work before cleaning things up. The sysdump collection was tested by making a test fail on purpose. Signed-off-by: Paul Chaignon <paul@cilium.io> Signed-off-by: Tam Mach <tam.mach@cilium.io>
[ upstream commit 37ae7d9 ] This really should be a semicolon ... Signed-off-by: Julian Wiedmann <jwi@isovalent.com> Signed-off-by: Tam Mach <tam.mach@cilium.io>
[ upstream commit 8531c5a ] The Cilium agent has been throwing the 'Auto-disabling "enable-bpf-clock-probe" feature since kernel doesn't expose /proc/timer_list' warning for a while now. Since /proc/timer_list is not available under the default k8s SecurityContext and Docker also masks the file by default, read it from /proc/schedstat instead. Reuse the existing parsing code from probes.KernelHZ to obtain the value. Signed-off-by: Timo Beckers <timo@isovalent.com> Signed-off-by: Tam Mach <tam.mach@cilium.io>
[ upstream commit 5c9b66c ] Upgrading this image is not automated yet. Ref: cilium#25773 Ref: cilium/image-tools#218 Ref: https://quay.io/repository/cilium/startup-script?tab=tags Signed-off-by: Michi Mutsuzaki <michi@isovalent.com> Signed-off-by: Tam Mach <tam.mach@cilium.io>
[ upstream commit c05e6a4 ] Change introduced 0e20d30 in order to provide workaround fix for flake can panic depending on the order which tests are run if the deploymentManager is not setup with a kubectl object. k8s/services already deploys Cilium with the hostfirewall enabled, so this moves installing Cilium out of the host-few preparation step and defers that to the caller (such as in datapath_configuration). As well, this was causing failures with hostfw K8sServices test because the deploymentManager Cilium install procedure is more strict regarding the ensure the liveness of Agents health endpoints. Signed-off-by: Tom Hadlaw <tom.hadlaw@isovalent.com> Signed-off-by: Tam Mach <tam.mach@cilium.io>
[ upstream commit 6c81859 ] It's currently possible to enable BPF Host Routing with KPR=partial if masquerading is disabled. If masquerading is enabled, then we will require it to be BPF masquerading, which itself requires KPR. But if masquerading is disabled, then we currently don't have a check that prevents KPR=partial from being enabled at the same time as BPF Host Routing. Signed-off-by: Paul Chaignon <paul.chaignon@gmail.com> Signed-off-by: Tam Mach <tam.mach@cilium.io>
sayboras
force-pushed
the
pr/v1.13-backport-2023-06-02
branch
from
e5a79d9
to
2154233
Compare
|
/test-backport-1.13 |
This was referenced Jun 6, 2023
|
The conflict is very minimal #25795, most of the reviews are in, CIs are green as well ✔️. Marking this ready to merge. |
sayboras
added
the
ready-to-merge
This was referenced Jun 9, 2023
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Skipped due to major conflicts:
Slim down Node handler interface #25450 -- Slim down Node handler interface (@bimmlerd)wireguard, linuxnodehandler: untangle WireGuard agent from the linux node handler #25419 -- wireguard, linuxnodehandler: untangle WireGuard agent from the linux node handler (@bimmlerd)Once this PR is merged, you can update the PR labels via: