[deckhouse] check kernel versions for enabled modules #2709
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
RomanenkoDenys
added
the
area/cluster-and-infrastructure
46 tasks
RomanenkoDenys
requested review from
zuzzas and
konstantin-axenov
as code owners
fl64
reviewed
Oct 14, 2022
fl64
reviewed
Oct 14, 2022
RomanenkoDenys
force-pushed
the
check-kernel-versions
branch
from
b77ffee
to
8fe6056
Compare
yalosev
reviewed
Oct 19, 2022
yalosev
requested changes
Oct 19, 2022
RomanenkoDenys
force-pushed
the
check-kernel-versions
branch
2 times, most recently
from
fd02587
to
a9cb3c0
Compare
|
🟢 Workflow details🟢 |
yalosev
previously approved these changes
Oct 19, 2022
apolovov
reviewed
Oct 19, 2022
|
🔴 Workflow details (1 job failed)🔴 |
RomanenkoDenys
force-pushed
the
check-kernel-versions
branch
from
1f75b54
to
95c08f8
Compare
apolovov
previously approved these changes
Oct 20, 2022
Signed-off-by: Denis Romanenko <denis.romanenko@flant.com>
Signed-off-by: Denis Romanenko <denis.romanenko@flant.com>
Co-authored-by: flsixtyfour <pavel.tishkov@flant.com> Signed-off-by: Denys Romanenko <65756796+RomanenkoDenys@users.noreply.github.com>
Co-authored-by: flsixtyfour <pavel.tishkov@flant.com> Signed-off-by: Denys Romanenko <65756796+RomanenkoDenys@users.noreply.github.com>
Co-authored-by: Andrey Polovov <andrey.polovov@flant.com> Signed-off-by: Denys Romanenko <65756796+RomanenkoDenys@users.noreply.github.com>
Co-authored-by: Andrey Klimentyev <andrey.klimentyev@flant.com> Signed-off-by: Denys Romanenko <65756796+RomanenkoDenys@users.noreply.github.com>
…ernel-requirements.yaml Co-authored-by: Maksim Nabokikh <maksim.nabokikh@flant.com> Signed-off-by: Denys Romanenko <65756796+RomanenkoDenys@users.noreply.github.com>
…ernel-requirements.yaml Co-authored-by: Maksim Nabokikh <maksim.nabokikh@flant.com> Signed-off-by: Denys Romanenko <65756796+RomanenkoDenys@users.noreply.github.com>
…ernel-requirements.yaml Co-authored-by: Maksim Nabokikh <maksim.nabokikh@flant.com> Signed-off-by: Denys Romanenko <65756796+RomanenkoDenys@users.noreply.github.com>
Signed-off-by: Denis Romanenko <denis.romanenko@flant.com>
RomanenkoDenys
force-pushed
the
check-kernel-versions
branch
from
16d72e9
to
9585034
Compare
|
🟢 Workflow details🟢 |
This was referenced Nov 8, 2022
Merged
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Signed-off-by: Denis Romanenko denis.romanenko@flant.com
Description
Check kernel version dependencies for sensitive modules
Why do we need it, and what problem does it solve?
Some modules require special kernel versions for proper work.
For cilium - >= 4.9.17.
For cilium + istio - >= 5.7.
For cilium + openvpn - >= 5.7.
For cilium + node-local-dns - >= 5.7.
To prevent module problems, we need a mechanism that prohibits the use of a module if the kernel requirements are not satisfied.
We will use 2-level checking.
What is the expected result?
Checklist
Changelog entries