-
Notifications
You must be signed in to change notification settings - Fork 109
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[deckhouse] check kernel versions for enabled modules #2709
Conversation
b77ffee
to
8fe6056
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Move monitoring rules please
fd02587
to
a9cb3c0
Compare
🟢 Workflow details🟢 |
🔴 Workflow details (1 job failed)🔴 |
1f75b54
to
95c08f8
Compare
Signed-off-by: Denis Romanenko <denis.romanenko@flant.com>
Signed-off-by: Denis Romanenko <denis.romanenko@flant.com>
Co-authored-by: flsixtyfour <pavel.tishkov@flant.com> Signed-off-by: Denys Romanenko <65756796+RomanenkoDenys@users.noreply.github.com>
Co-authored-by: flsixtyfour <pavel.tishkov@flant.com> Signed-off-by: Denys Romanenko <65756796+RomanenkoDenys@users.noreply.github.com>
Co-authored-by: Andrey Polovov <andrey.polovov@flant.com> Signed-off-by: Denys Romanenko <65756796+RomanenkoDenys@users.noreply.github.com>
Co-authored-by: Andrey Klimentyev <andrey.klimentyev@flant.com> Signed-off-by: Denys Romanenko <65756796+RomanenkoDenys@users.noreply.github.com>
…ernel-requirements.yaml Co-authored-by: Maksim Nabokikh <maksim.nabokikh@flant.com> Signed-off-by: Denys Romanenko <65756796+RomanenkoDenys@users.noreply.github.com>
…ernel-requirements.yaml Co-authored-by: Maksim Nabokikh <maksim.nabokikh@flant.com> Signed-off-by: Denys Romanenko <65756796+RomanenkoDenys@users.noreply.github.com>
…ernel-requirements.yaml Co-authored-by: Maksim Nabokikh <maksim.nabokikh@flant.com> Signed-off-by: Denys Romanenko <65756796+RomanenkoDenys@users.noreply.github.com>
Signed-off-by: Denis Romanenko <denis.romanenko@flant.com>
16d72e9
to
9585034
Compare
🟢 Workflow details🟢 |
Signed-off-by: Denis Romanenko denis.romanenko@flant.com
Description
Check kernel version dependencies for sensitive modules
Why do we need it, and what problem does it solve?
Some modules require special kernel versions for proper work.
For cilium - >= 4.9.17.
For cilium + istio - >= 5.7.
For cilium + openvpn - >= 5.7.
For cilium + node-local-dns - >= 5.7.
To prevent module problems, we need a mechanism that prohibits the use of a module if the kernel requirements are not satisfied.
We will use 2-level checking.
What is the expected result?
Checklist
Changelog entries