Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[release/v2.23] Bump github.com/cilium/cilium to 1.13.4 #12478

Merged
merged 2 commits into from
Jul 20, 2023
Merged

[release/v2.23] Bump github.com/cilium/cilium to 1.13.4 #12478

merged 2 commits into from
Jul 20, 2023

Conversation

xrstf
Copy link
Contributor

@xrstf xrstf commented Jul 18, 2023
edited

What this PR does / why we need it:
This fixes Trivy's alert regarding CVE-2023-34242. This PR also contains an explicit upgrade to libcrypto3/libssl3, for which updated versions are available, but not yet included in the latest Alpine 3.17 patch release (3.17.4). I did not want to upgrade everything to Alpine 3.18, which would have also probably fixed the issue.

What type of PR is this?
/kind chore

Does this PR introduce a user-facing change? Then add your Release Note here:

Update Cilium CNI to 1.13.4, marking 113.0 as deprecated but kept 1.13.3 because 1.13.4 breaks IPSec support

Documentation:

NONE

@kubermatic-bot kubermatic-bot added this to the KKP 2.23 milestone Jul 18, 2023
@kubermatic-bot kubermatic-bot added release-note-none Denotes a PR that doesn't merit a release note. do-not-merge/cherry-pick-not-approved Indicates that a PR is not yet approved to merge into a release branch. dco-signoff: yes Denotes that all commits in the pull request have the valid DCO signoff message. kind/chore Updating grunt tasks etc; no production code changes. approved Indicates a PR has been approved by an approver from all required OWNERS files. size/XS Denotes a PR that changes 0-9 lines, ignoring generated files. labels Jul 18, 2023
@xrstf xrstf changed the title bump github.com/cilium/cilium to 1.13.4 WIP - Bump github.com/cilium/cilium to 1.13.4 Jul 18, 2023
@kubermatic-bot kubermatic-bot added the do-not-merge/work-in-progress Indicates that a PR should not merge because it is a work in progress. label Jul 18, 2023
@ahmedwaleedmalik ahmedwaleedmalik changed the title WIP - Bump github.com/cilium/cilium to 1.13.4 WIP - [release/v2.23] Bump github.com/cilium/cilium to 1.13.4 Jul 18, 2023
@kubermatic-bot kubermatic-bot added sig/app-management Denotes a PR or issue as being assigned to SIG App Management. sig/networking Denotes a PR or issue as being assigned to SIG Networking. size/M Denotes a PR that changes 30-99 lines, ignoring generated files. release-note Denotes a PR that will be considered when it comes time to generate release notes. and removed approved Indicates a PR has been approved by an approver from all required OWNERS files. size/XS Denotes a PR that changes 0-9 lines, ignoring generated files. release-note-none Denotes a PR that doesn't merit a release note. labels Jul 19, 2023
@xrstf
Copy link
Contributor Author

xrstf commented Jul 19, 2023

/retest

@xrstf xrstf changed the title WIP - [release/v2.23] Bump github.com/cilium/cilium to 1.13.4 [release/v2.23] Bump github.com/cilium/cilium to 1.13.4 Jul 20, 2023
@kubermatic-bot kubermatic-bot removed the do-not-merge/work-in-progress Indicates that a PR should not merge because it is a work in progress. label Jul 20, 2023
@xrstf xrstf requested a review from mate4st July 20, 2023 08:26
@mate4st
Copy link
Contributor

mate4st commented Jul 20, 2023

/approve

@kubermatic-bot
Copy link
Contributor

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: WeirdMachine, xrstf

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@kubermatic-bot kubermatic-bot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Jul 20, 2023
@mate4st
Copy link
Contributor

mate4st commented Jul 20, 2023

/lgtm

@kubermatic-bot kubermatic-bot added the lgtm Indicates that a PR is ready to be merged. label Jul 20, 2023
@kubermatic-bot
Copy link
Contributor

LGTM label has been added.

Git tree hash: de627e25bec95f306dd7e3eafd02fb03c57f65e7

@xrstf xrstf added cherry-pick-approved Indicates a PR has been approved by release managers. and removed do-not-merge/cherry-pick-not-approved Indicates that a PR is not yet approved to merge into a release branch. labels Jul 20, 2023
@kubermatic-bot kubermatic-bot merged commit dfcf2d5 into kubermatic:release/v2.23 Jul 20, 2023
22 checks passed
@xrstf xrstf deleted the trivy-2.23 branch July 20, 2023 11:12
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mate4st mate4st Awaiting requested review from mate4st

Assignees

@mate4st mate4st

Labels
approved Indicates a PR has been approved by an approver from all required OWNERS files. cherry-pick-approved Indicates a PR has been approved by release managers. dco-signoff: yes Denotes that all commits in the pull request have the valid DCO signoff message. kind/chore Updating grunt tasks etc; no production code changes. lgtm Indicates that a PR is ready to be merged. release-note Denotes a PR that will be considered when it comes time to generate release notes. sig/app-management Denotes a PR or issue as being assigned to SIG App Management. sig/networking Denotes a PR or issue as being assigned to SIG Networking. size/M Denotes a PR that changes 30-99 lines, ignoring generated files.
Projects
None yet
Milestone
KKP 2.23
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@xrstf @mate4st @kubermatic-bot