v1.12 backports 2023-11-02 #28948

derailed · 2023-11-02T14:37:17Z

labels: Use slices.Sort instead of sort.Strings #28649 -- labels: Use slices.Sort instead of sort.Strings (@pippolo84)
labels/cidr: On the fly char replacement for IPv6 #28647 -- labels/cidr: On the fly char replacement for IPv6 (@pippolo84)
ipsec: Improve logging #28642 -- ipsec: Improve logging (@pchaigno)
gh/workflows: Dump Cilium LB node logs in case of failure #28808 -- gh/workflows: Dump Cilium LB node logs in case of failure (@brb)
bpf: lb: fix missing drop reason in reverse_map_l4_port() #28884 -- bpf: lb: fix missing drop reason in reverse_map_l4_port() (@julianwiedmann)
Metrics associated with a deleted node should not be reported #28382 -- Metrics associated with a deleted node should not be reported (@derailed)

Once this PR is merged, you can update the PR labels via:

$ for pr in 28649 28647 28642 28808 28884; do contrib/backporting/set-labels.py $pr done 1.12; done

pchaigno

Something went wrong here. There's a single commit in this PR 😱

derailed · 2023-11-02T18:23:14Z

Thank you for the heads up Paul!
No idea where I went wrong??

[ upstream commit e27730b ] This is useful for XFRM states which do not have a built-in direction field. Instead, we encode the direction in the packet mark and can therefore rely on that when logging. The same function can be used for XFRM policies, even though they do have a built-in Dir field as well. Signed-off-by: Paul Chaignon <paul.chaignon@gmail.com> Signed-off-by: Fernand Galiana <fernand.galiana@isovalent.com>

[ upstream commit 89626bc ] The SPI and the source and destination IP addresses (or CIDRs for XFRM policies) are not enough anymore to uniquely identify XFRM states and policies. We additionally need the node ID. This commit therefore ensures that we always log the five contextual information bits whenever possible: SPI, source, destination, direction, and node ID. Signed-off-by: Paul Chaignon <paul.chaignon@gmail.com> Signed-off-by: Fernand Galiana <fernand.galiana@isovalent.com>

[ upstream commit 4506c76 ] The node ID is reported in hexadecimal format in the XFRM states and policies, as well as in the node ID map dump. To make it easier to match the node ID across different sources, we should also dump it in hex format in the agent logs. Signed-off-by: Paul Chaignon <paul.chaignon@gmail.com> Signed-off-by: Fernand Galiana <fernand.galiana@isovalent.com>

[ upstream commit 904ceb3 ] The Cilium standalone LB does not run as a K8s pod, so the regular Cilium's sysdump collection does not work. Instead, just show docker container logs of the LB. Suggested-by: Sebastian Wicki <sebastian@isovalent.com> Signed-off-by: Martynas Pumputis <m@lambda.lt> Signed-off-by: Fernand Galiana <fernand.galiana@isovalent.com>

[ upstream commit 28a3cb7 ] l4_load_port() is just a thin wrapper around ctx_load_bytes(), which returns raw kernel errnos. Translate these to a Cilium-internal drop reason before returning to the caller. Signed-off-by: Julian Wiedmann <jwi@isovalent.com> Signed-off-by: Fernand Galiana <fernand.galiana@isovalent.com>

…er reported. [ upstream commit e9f97cd ] When a node is deleted from a cluster, metrics associated with that node are still being exported to prometheus. Short of restarting the agent, we want to dynamically delete these metrics when a node is removed from the cluster. This PR ensures node_connectivity_status and node_connectivity_latency no longer report metrics for nodes that are no longer present on the cluster. [ Backporter's notes: Original PR was adapted! ] The original PR depends (mainly!) on 2 other PRs that haven't been backported and are fairly substential. Given this, I've opted to adapt the original implementation to surface the fix while minimizing impact with these updates: 1. pkg/metrics/interfaces did not introduce pkg/metrics/metric wrappers as of this release. Hence adapted deletableVec to use the current implementation. (Referring to commit: 84ea383) 2. pkg/node/manager/manager was adapted to provide for metrics deletion when a node is deleted. Subsequent PR refactored the manager metrics structure which the original PR used. (Referring to commit: c49ef45) 3. In order to pickup prom metrics vec delete feature github.com/prometheus/client_golang dep was bumped to v1.14.0 Signed-off-by: Fernand Galiana <fernand.galiana@isovalent.com>

derailed · 2023-11-02T22:16:43Z

@pchaigno I think I've got it in the right shape now??
The pb now is golint chokes since errors.Join on one of your bps ;(
Not sure what the protocol is to upgrade go rev?

pippolo84 · 2023-11-03T09:16:32Z

My PRs (#28647 and #28649) have already been backported here, so you can drop them.

derailed · 2023-11-03T18:37:05Z

Looks like I've made a mistake on this backport. Closing

derailed requested a review from a team as a code owner November 2, 2023 14:37

derailed added kind/backports This PR provides functionality previously merged into master. backport/1.12 labels Nov 2, 2023

derailed requested review from brb, julianwiedmann, pchaigno and pippolo84 November 2, 2023 14:37

derailed force-pushed the pr/v1.12-backport-2023-11-02 branch from 471effb to 2afdb0c Compare November 2, 2023 14:57

pchaigno requested changes Nov 2, 2023

View reviewed changes

pchaigno and others added 6 commits November 2, 2023 20:54

derailed force-pushed the pr/v1.12-backport-2023-11-02 branch from 2afdb0c to b3eb74a Compare November 2, 2023 21:35

derailed requested review from a team as code owners November 2, 2023 21:35

derailed closed this Nov 3, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

v1.12 backports 2023-11-02 #28948

v1.12 backports 2023-11-02 #28948

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

v1.12 backports 2023-11-02 #28948

v1.12 backports 2023-11-02 #28948

Uh oh!

Conversation

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!