Skip to content

Commit

Permalink
AppliedTo Per Rule for Antrea-native Policies (#1396)
Browse files Browse the repository at this point in the history 
* Add appliedTo field in rules and update validationWebook

* Add appliedTo per rule handling in controller and agent

* Add omitempty to appliedTo fields and address test failures

* Add testcases for appliedTo per rule

* Address comments
  • Loading branch information
@Dyanngg @antoninbas
Dyanngg authored and antoninbas committed Dec 23, 2020
1 parent 0f2f9f2 commit 9318aa1
Show file tree
Hide file tree
Showing 32 changed files with 1,057 additions and 275 deletions.
36 changes: 34 additions & 2 deletions build/yamls/antrea-aks.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -109,6 +109,15 @@ spec:
- Allow
- Drop
type: string
appliedTo:
items:
properties:
namespaceSelector:
x-kubernetes-preserve-unknown-fields: true
podSelector:
x-kubernetes-preserve-unknown-fields: true
type: object
type: array
enableLogging:
type: boolean
name:
Expand Down Expand Up @@ -149,6 +158,15 @@ spec:
- Allow
- Drop
type: string
appliedTo:
items:
properties:
namespaceSelector:
x-kubernetes-preserve-unknown-fields: true
podSelector:
x-kubernetes-preserve-unknown-fields: true
type: object
type: array
enableLogging:
type: boolean
from:
Expand Down Expand Up @@ -189,7 +207,6 @@ spec:
tier:
type: string
required:
- appliedTo
- priority
type: object
status:
Expand Down Expand Up @@ -327,6 +344,14 @@ spec:
- Allow
- Drop
type: string
appliedTo:
items:
properties:
podSelector:
type: object
x-kubernetes-preserve-unknown-fields: true
type: object
type: array
enableLogging:
type: boolean
name:
Expand Down Expand Up @@ -369,6 +394,14 @@ spec:
- Allow
- Drop
type: string
appliedTo:
items:
properties:
podSelector:
type: object
x-kubernetes-preserve-unknown-fields: true
type: object
type: array
enableLogging:
type: boolean
from:
Expand Down Expand Up @@ -411,7 +444,6 @@ spec:
tier:
type: string
required:
- appliedTo
- priority
type: object
status:
Expand Down
36 changes: 34 additions & 2 deletions build/yamls/antrea-eks.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -109,6 +109,15 @@ spec:
- Allow
- Drop
type: string
appliedTo:
items:
properties:
namespaceSelector:
x-kubernetes-preserve-unknown-fields: true
podSelector:
x-kubernetes-preserve-unknown-fields: true
type: object
type: array
enableLogging:
type: boolean
name:
Expand Down Expand Up @@ -149,6 +158,15 @@ spec:
- Allow
- Drop
type: string
appliedTo:
items:
properties:
namespaceSelector:
x-kubernetes-preserve-unknown-fields: true
podSelector:
x-kubernetes-preserve-unknown-fields: true
type: object
type: array
enableLogging:
type: boolean
from:
Expand Down Expand Up @@ -189,7 +207,6 @@ spec:
tier:
type: string
required:
- appliedTo
- priority
type: object
status:
Expand Down Expand Up @@ -327,6 +344,14 @@ spec:
- Allow
- Drop
type: string
appliedTo:
items:
properties:
podSelector:
type: object
x-kubernetes-preserve-unknown-fields: true
type: object
type: array
enableLogging:
type: boolean
name:
Expand Down Expand Up @@ -369,6 +394,14 @@ spec:
- Allow
- Drop
type: string
appliedTo:
items:
properties:
podSelector:
type: object
x-kubernetes-preserve-unknown-fields: true
type: object
type: array
enableLogging:
type: boolean
from:
Expand Down Expand Up @@ -411,7 +444,6 @@ spec:
tier:
type: string
required:
- appliedTo
- priority
type: object
status:
Expand Down
36 changes: 34 additions & 2 deletions build/yamls/antrea-gke.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -109,6 +109,15 @@ spec:
- Allow
- Drop
type: string
appliedTo:
items:
properties:
namespaceSelector:
x-kubernetes-preserve-unknown-fields: true
podSelector:
x-kubernetes-preserve-unknown-fields: true
type: object
type: array
enableLogging:
type: boolean
name:
Expand Down Expand Up @@ -149,6 +158,15 @@ spec:
- Allow
- Drop
type: string
appliedTo:
items:
properties:
namespaceSelector:
x-kubernetes-preserve-unknown-fields: true
podSelector:
x-kubernetes-preserve-unknown-fields: true
type: object
type: array
enableLogging:
type: boolean
from:
Expand Down Expand Up @@ -189,7 +207,6 @@ spec:
tier:
type: string
required:
- appliedTo
- priority
type: object
status:
Expand Down Expand Up @@ -327,6 +344,14 @@ spec:
- Allow
- Drop
type: string
appliedTo:
items:
properties:
podSelector:
type: object
x-kubernetes-preserve-unknown-fields: true
type: object
type: array
enableLogging:
type: boolean
name:
Expand Down Expand Up @@ -369,6 +394,14 @@ spec:
- Allow
- Drop
type: string
appliedTo:
items:
properties:
podSelector:
type: object
x-kubernetes-preserve-unknown-fields: true
type: object
type: array
enableLogging:
type: boolean
from:
Expand Down Expand Up @@ -411,7 +444,6 @@ spec:
tier:
type: string
required:
- appliedTo
- priority
type: object
status:
Expand Down
36 changes: 34 additions & 2 deletions build/yamls/antrea-ipsec.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -109,6 +109,15 @@ spec:
- Allow
- Drop
type: string
appliedTo:
items:
properties:
namespaceSelector:
x-kubernetes-preserve-unknown-fields: true
podSelector:
x-kubernetes-preserve-unknown-fields: true
type: object
type: array
enableLogging:
type: boolean
name:
Expand Down Expand Up @@ -149,6 +158,15 @@ spec:
- Allow
- Drop
type: string
appliedTo:
items:
properties:
namespaceSelector:
x-kubernetes-preserve-unknown-fields: true
podSelector:
x-kubernetes-preserve-unknown-fields: true
type: object
type: array
enableLogging:
type: boolean
from:
Expand Down Expand Up @@ -189,7 +207,6 @@ spec:
tier:
type: string
required:
- appliedTo
- priority
type: object
status:
Expand Down Expand Up @@ -327,6 +344,14 @@ spec:
- Allow
- Drop
type: string
appliedTo:
items:
properties:
podSelector:
type: object
x-kubernetes-preserve-unknown-fields: true
type: object
type: array
enableLogging:
type: boolean
name:
Expand Down Expand Up @@ -369,6 +394,14 @@ spec:
- Allow
- Drop
type: string
appliedTo:
items:
properties:
podSelector:
type: object
x-kubernetes-preserve-unknown-fields: true
type: object
type: array
enableLogging:
type: boolean
from:
Expand Down Expand Up @@ -411,7 +444,6 @@ spec:
tier:
type: string
required:
- appliedTo
- priority
type: object
status:
Expand Down
36 changes: 34 additions & 2 deletions build/yamls/antrea.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -109,6 +109,15 @@ spec:
- Allow
- Drop
type: string
appliedTo:
items:
properties:
namespaceSelector:
x-kubernetes-preserve-unknown-fields: true
podSelector:
x-kubernetes-preserve-unknown-fields: true
type: object
type: array
enableLogging:
type: boolean
name:
Expand Down Expand Up @@ -149,6 +158,15 @@ spec:
- Allow
- Drop
type: string
appliedTo:
items:
properties:
namespaceSelector:
x-kubernetes-preserve-unknown-fields: true
podSelector:
x-kubernetes-preserve-unknown-fields: true
type: object
type: array
enableLogging:
type: boolean
from:
Expand Down Expand Up @@ -189,7 +207,6 @@ spec:
tier:
type: string
required:
- appliedTo
- priority
type: object
status:
Expand Down Expand Up @@ -327,6 +344,14 @@ spec:
- Allow
- Drop
type: string
appliedTo:
items:
properties:
podSelector:
type: object
x-kubernetes-preserve-unknown-fields: true
type: object
type: array
enableLogging:
type: boolean
name:
Expand Down Expand Up @@ -369,6 +394,14 @@ spec:
- Allow
- Drop
type: string
appliedTo:
items:
properties:
podSelector:
type: object
x-kubernetes-preserve-unknown-fields: true
type: object
type: array
enableLogging:
type: boolean
from:
Expand Down Expand Up @@ -411,7 +444,6 @@ spec:
tier:
type: string
required:
- appliedTo
- priority
type: object
status:
Expand Down
Loading

0 comments on commit 9318aa1

Please sign in to comment.