Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add validation for MTU, update ANNOTATE_POD_IP README #2798

Merged
merged 1 commit into from Feb 22, 2024
Merged

Add validation for MTU, update ANNOTATE_POD_IP README #2798

merged 1 commit into from Feb 22, 2024

Conversation

jdn5126
Copy link
Contributor

@jdn5126 jdn5126 commented Feb 19, 2024

What type of PR is this?
enhancement

Which issue does this PR fix:
N/A

What does this PR do / Why do we need it:
This PR adds validation for the ENI and Pod MTU during aws-node container initialization. The validation is specific to the IP address family.

This PR also updates the documentation for ANNOTATE_POD_IP to warn on the increased security scope of adding the patch permission.

If an issue # is not available please add repro steps and logs from IPAMD/CNI showing the issue:
N/A

Testing done on this change:
Added unit test coverage for MTU validation during aws-node container initialization. All unit tests pass.

Ran integration test and validated that all pass, including those in the cni test suite that cover MTU modification.

Will this PR introduce any new dependencies?:
No

Will this break upgrades or downgrades? Has updating a running cluster been tested?:
No, Yes

Does this change require updates to the CNI daemonset config files to work?:
No

Does this PR introduce any user-facing change?:
No

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.

@jdn5126 jdn5126 requested a review from a team as a code owner February 19, 2024 20:55
@jdn5126 jdn5126 force-pushed the mtu_docs branch 2 times, most recently from a685c9b to 5142223 Compare February 20, 2024 20:53
jchen6585
jchen6585 previously approved these changes Feb 20, 2024
View reviewed changes
Copy link
Contributor

@jchen6585 jchen6585 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

jchen6585
jchen6585 approved these changes Feb 21, 2024
View reviewed changes
Copy link
Contributor

@jchen6585 jchen6585 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@jdn5126 jdn5126 merged commit 190fad2 into aws:master Feb 22, 2024
6 checks passed
@jdn5126 jdn5126 deleted the mtu_docs branch February 22, 2024 16:00
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jchen6585 jchen6585 jchen6585 approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@jdn5126 @jchen6585