-
Notifications
You must be signed in to change notification settings - Fork 2.7k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Conflict with istio-cni-node when cilium is the main CNI plugin #26760
Comments
cilium sysdump attached |
As far as I can understand, the behavior has changed recently through #24389 |
@squeed sounds like right down your alley - any pointers? :) |
Interesting; it looks like both Cilium and Istio both want to own this configuration file. My proposal would be to fix this by adding a new Helm value, |
Aha, that sounds like a use-case the code failed to anticipate. I think it would be reasonable to disable the CNI file watcher if It will get backported, but might not make v1.14.0. |
Filed #26773 to disable the file-watcher when |
Thanks for handling this. Do you have a build that I can test ? |
@demikl it's not exactly production grade, but you can pull the CI image built in this action from |
Is there an existing issue for this?
What happened?
Cilium overwrites the configuration that istio-cni wants to append to the cilium cni config file.
Cilium Version
v1.14.0-rc.0
Kernel Version
Linux ip-100-89-14-191.eu-west-3.compute.internal 5.10.184-175.731.amzn2.x86_64 #1 SMP Tue Jun 27 21:48:55 UTC 2023 x86_64 x86_64 x86_64 GNU/Linux
Kubernetes Version
Server Version: version.Info{Major:"1", Minor:"24+", GitVersion:"v1.24.14-eks-c12679a", GitCommit:"05d192f0de17608d98e17761ad3cffa9a6407f2f", GitTreeState:"clean", BuildDate:"2023-05-22T23:41:27Z", GoVersion:"go1.19.9", Compiler:"gc", Platform:"linux/amd64"}
Sysdump
No response
Relevant log output
Anything else?
istio-cni appends its configuration to
/etc/cni/net.d/05-cilium.conflist
:but cilium immediately reverts it back.
Using
cni-exclusive: false
does not change this behavior.Code of Conduct
The text was updated successfully, but these errors were encountered: