-
Notifications
You must be signed in to change notification settings - Fork 2.8k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
iptables: Remove leading zeroes #16817
iptables: Remove leading zeroes #16817
Conversation
Remove leading zeroes from marks, as 'iptables' is not formatting them. This allows proper matching of existing rules and avoids appending duplicate rules. Signed-off-by: Jarno Rajahalme <jarno@isovalent.com>
test-me-please |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
This was found by observing duplicate rules in a deployed environment right? Is there a way to detect this kind of problem in future?
This PR needs to be rebased to catch #16767. |
known flake #14598 in test-1.21-4.9 |
None of the test fails are due to this PR, and this PR being a regression fix I'll mark this ready-to-merge without further re-testing. |
In that case, shouldn't the release-note label say "bug"? |
Merging this, since the |
@jrajahalme I believe that the backports were already done for this PR for both v1.9 and v1.8, can you confirm? |
Remove leading zeroes from marks, as 'iptables' is not formatting
them. This allows proper matching of existing rules and avoids
appending duplicate rules.
Backports of the iptables change in #16391 for 1.9 and 1.8 already contain this fix.
Fixes: #16391
Signed-off-by: Jarno Rajahalme jarno@isovalent.com