New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
option,helm: Add a flag enable-k8s-networkpolicy #23127
Conversation
baf5c76
to
7c82b37
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Thanks! I am curious, what's the use case for this? Overall I think Helm and flags look fine, I left a bit of feedback regarding the naming and description.
7c82b37
to
799a360
Compare
@gandro Thanks for the review!
We are working on installing Cilium on existing kubernetes production clusters, we don't want to break anything in the production, so need to enable Cilium features little by little. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
The Go linter also failed with a legitimate error:
Error: /home/runner/work/cilium/cilium/src/github.com/cilium/cilium/pkg/k8s/watchers/watcher_test.go:196:3: cannot use &(fakeWatcherConfiguration literal) (value of type *fakeWatcherConfiguration) as WatcherConfiguration value in argument to NewK8sWatcher: *fakeWatcherConfiguration does not implement WatcherConfiguration (missing method K8sNetworkPolicyEnabled)
799a360
to
fb95dee
Compare
Doc lint and Travis failures are also legitimate: Docs:
Travis (this is related to #23127 (comment) )
|
fb95dee
to
44064db
Compare
44064db
to
b914ab8
Compare
@ChengyuanLiCY Please do not remove the assignees that were automatically requested to give a review. Those people are assigned for each code owner (e.g. docs, cli, k8s) to also give a review. Only once all code owners have approved this PR will it be merged. |
e03f25f
to
ff01ea5
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Looks good, thank you!
TravicCI failure looks like this flake: #23314 |
@ChengyuanLiCY Please, stop removing review assignees without stating a reason. I see @gandro already asked. (Or is it by accident? But I'd be curious to understand what happens, in that case.) |
/test |
ff01ea5
to
f950eac
Compare
This flag is for Cilium to support K8s NetworkPolicy. By default the value is true. User can set "enable-k8s-networkpolicy = false" to disable it. Signed-off-by: Li Chengyuan <chengyuanli@hotmail.com>
f950eac
to
64982b2
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Thanks!
This comment was marked as outdated.
This comment was marked as outdated.
This CI job is new because we just removed 4.9 and shifted some CI jobs around. See message in Slack #testing channel. |
Thanks @pchaigno ! |
This flag is for cilium agent to watch K8s NetworkPolicy. By default the value is true. User can set "enable-k8s-networkpolicy = false" to disable it.