Remove the pod reference in v1beta1 AddressGroup

[tnqn]

To be backwards compatible, AddressGroup v1beta1 must not include
PodReferences in its members, otherwise the agents that use v1beta1 will
think the members have changed and will add new IPs to the openflow
entries of relevant NetworkPolicies and delete old IPs from them, while
the old IPs and new IPs are actually the same. In current
implementation, deleting old IPs is executed after adding new IPs, so it
leads to some IPs missing in the openflow entries.

Fixes #1587

[antrea-bot]

Thanks for your PR.
Unit tests and code linters are run automatically every time the PR is updated.
E2e, conformance and network policy tests can only be triggered by a member of the vmware-tanzu organization. Regular contributors to the project should join the org.

The following commands are available:

• /test-e2e: to trigger e2e tests.
• /skip-e2e: to skip e2e tests.
• /test-conformance: to trigger conformance tests.
• /skip-conformance: to skip conformance tests.
• /test-all-features-conformance: to trigger conformance tests with all alpha features enabled.
• /skip-all-features-conformance: to skip conformance tests with all alpha features enabled.
• /test-whole-conformance: to trigger all conformance tests on linux.
• /skip-whole-conformance: to skip all conformance tests on linux.
• /test-networkpolicy: to trigger networkpolicy tests.
• /skip-networkpolicy: to skip networkpolicy tests.
• /test-windows-conformance: to trigger windows conformance tests.
• /skip-windows-conformance: to skip windows conformance tests.
• /test-windows-networkpolicy: to trigger windows networkpolicy tests.
• /skip-windows-networkpolicy: to skip windows networkpolicy tests.
• /test-hw-offload: to trigger ovs hardware offload test.
• /skip-hw-offload: to skip ovs hardware offload test.
• /test-all: to trigger all tests (except whole conformance).
• /skip-all: to skip all tests (except whole conformance).

[codecov-io]

Codecov Report

Merging #1586 (66c523a) into master (9d3d10b) will increase coverage by 0.69%.
The diff coverage is 52.94%.

@@            Coverage Diff             @@
##           master    #1586      +/-   ##
==========================================
+ Coverage   63.31%   64.01%   +0.69%     
==========================================
  Files         170      181      +11     
  Lines       14250    15556    +1306     
==========================================
+ Hits         9023     9958     +935     
- Misses       4292     4547     +255     
- Partials      935     1051     +116     

Flag	Coverage Δ
e2e-tests	45.81% <35.79%> (?)
kind-e2e-tests	52.70% <45.37%> (-2.68%)	⬇️
unit-tests	40.44% <16.48%> (-0.84%)	⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

Impacted Files	Coverage Δ
cmd/antrea-agent/agent.go	0.00% <0.00%> (ø)
cmd/antrea-agent/options.go	21.69% <0.00%> (+0.97%)	⬆️
pkg/agent/config/node_config.go	100.00% <ø> (ø)
pkg/agent/stats/collector.go	97.72% <ø> (ø)
pkg/controller/networkpolicy/tier.go	90.00% <ø> (ø)
pkg/features/antrea_features.go	16.66% <ø> (ø)
pkg/ovs/openflow/ofctrl_builder.go	60.58% <0.00%> (-1.59%)	⬇️
pkg/ovs/openflow/ofctrl_group.go	48.57% <0.00%> (-4.56%)	⬇️
pkg/ovs/openflow/ofctrl_action.go	68.90% <17.14%> (+7.55%)	⬆️
pkg/agent/proxy/proxier_linux.go	33.33% <33.33%> (+8.33%)	⬆️
... and 70 more

[tnqn]

/test-all

[tnqn]

/test-all

[tnqn]

/test-windows-conformance

[tnqn]

/test-all

[tnqn]

Not sure if it's changing the podSelector to "MatchExpressions" caused the networkpolicy takes a little more time to realize. The test now has a chance to fail without the sleep, I can confirm it's not because of the conversion function change as it also failed when I just changed the test code in this PR: https://github.com/vmware-tanzu/antrea/runs/1431829031?check_suite_focus=true

[tnqn]

/test-all

[antoninbas]

/test-e2e

[antoninbas]

LGTM - I will merge if it passes the test and kick off the v0.11.1 release process

[antoninbas]

could have been a private function?

[tnqn]

Definitely can be private, I kept its name as it was as code in this file doesn't follow normal go style anyway.
Do you prefer it to be private?

[antoninbas]

BTW, is there any advantage to having conversion functions for non resources registered to the schema? I understand why Convert_controlplane_AddressGroup_To_v1beta1_AddressGroup needs to be registered, but it seems conversion functions for non resources will only be called indirectly by other conversion functions. Is it for auto-generated conversion functions?

[tnqn]

Good question, I wondered this as well, haven't found answer so blindly followed what K8s code does.
I can take a look what it would affect later and see if we could remove them. Created #1616 to track it.