Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Merge branch 'main' from github.com/containernetworking/plugins into 'master' #40

Merged
merged 374 commits into from
Jan 24, 2025
Merged

Merge branch 'main' from github.com/containernetworking/plugins into 'master' #40

merged 374 commits into from
Jan 24, 2025

Conversation

coutinhop
Copy link
Member

No description provided.

dcbw and others added 30 commits February 20, 2023 10:58
@dcbw
Merge pull request containernetworking#812 from liornoy/ginkgov2
36e1e16 
Update ginkgo to v2
@mmorel-35
ci(lint): setup yamllint linter
6223674 
Signed-off-by: Matthieu MOREL <[email protected]>
@squeed
Merge pull request containernetworking#836 from mmorel-35/yamllint
86e39cf 
ci(lint): setup yamllint linter
@mmorel-35
ci(lint): setup golangci-lint
d12b81d 
Signed-off-by: Matthieu MOREL <[email protected]>
@mmorel-35
enable staticcheck linter
177e0bf 
Signed-off-by: Matthieu MOREL <[email protected]>
@mmorel-35
enable contextcheck linter
16ba422 
Signed-off-by: Matthieu MOREL <[email protected]>
@mmorel-35
enable ineffassign linter
3a04eb0 
Signed-off-by: Matthieu MOREL <[email protected]>
@mmorel-35
enable nonamedreturns linter
709e775 
Signed-off-by: Matthieu MOREL <[email protected]>
@mmorel-35
enable gosimple linter
5a7619c 
Signed-off-by: Matthieu MOREL <[email protected]>
@mmorel-35
enable gocritic linter
79f5246 
Signed-off-by: Matthieu MOREL <[email protected]>
@mmorel-35
enable revive linter
a02bf4b 
Signed-off-by: Matthieu MOREL <[email protected]>
@squeed
Merge pull request containernetworking#843 from mmorel-35/golangci-lint
d3ee71f 
ci(lint): setup golangci-lint
@mmorel-35
enable ginkgolinter linter
09f36a2 
Signed-off-by: Matthieu MOREL <[email protected]>
@mmorel-35
remove govet and gofmt from test_linux.sh
c0fe3b7 
Signed-off-by: Matthieu MOREL <[email protected]>
@squeed
Merge pull request containernetworking#854 from mmorel-35/clean-linters
3bc0001 
remove govet and gofmt from test_linux.sh
@mmorel-35
enable durationcheck, predeclared, unconvert, unused and wastedassign…
2fb0efe 
… linters

Signed-off-by: Matthieu MOREL <[email protected]>
@dependabot
build(deps): bump actions/setup-go from 3 to 4
00e0d3b 
Bumps [actions/setup-go](https://github.com/actions/setup-go) from 3 to 4.
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](actions/setup-go@v3...v4)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
@mlguerrero12
Fix revive linter errors
d71d0f2 
Golangci-lint is now running version 1.52.1. This introduced some errors.

Signed-off-by: Marcelo Guerrero Viveros <[email protected]>
@dependabot
build(deps): bump actions/stale from 7 to 8
086f7eb 
Bumps [actions/stale](https://github.com/actions/stale) from 7 to 8.
- [Release notes](https://github.com/actions/stale/releases)
- [Changelog](https://github.com/actions/stale/blob/main/CHANGELOG.md)
- [Commits](actions/stale@v7...v8)

---
updated-dependencies:
- dependency-name: actions/stale
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
@dcbw
Merge pull request containernetworking#867 from mlguerrero12/fixlinters
16d05ec 
Fix revive linter errors
@dcbw
Merge pull request containernetworking#855 from mmorel-35/linters
8813bfe 
enable durationcheck,  predeclared, unconvert, unused and wastedassign linters
@mlguerrero12
Fix wastedassign linter errors
6c0d73e 
Signed-off-by: Marcelo Guerrero Viveros <[email protected]>
@squeed
Merge pull request containernetworking#871 from mlguerrero12/fixwaste…
6f6345c 
…dassignlinter

Fix wastedassign linter errors
@squeed
Merge pull request containernetworking#853 from mmorel-35/ginkgolinter
deec687 
enable ginkgolinter linter
@maiqueb
linter: fix ginkgolinter errors
7bbd4d1 
Use:
- `BeEmpty` instead of `HaveLen(0)`
- `Expect(x).To(BeZero())` instead of `Expect(x == 0).To(BeTrue())`

Signed-off-by: Miguel Duarte Barroso <[email protected]>
@squeed
Merge pull request containernetworking#878 from maiqueb/fix-ginkgo-li…
63235a2 
…nter-warnings

linter: fix ginkgolinter errors
@squeed
Merge pull request containernetworking#870 from containernetworking/d…
68a6619 
…ependabot/github_actions/actions/stale-8

build(deps): bump actions/stale from 7 to 8
@squeed
Merge pull request containernetworking#861 from containernetworking/d…
47a4319 
…ependabot/github_actions/actions/setup-go-4

build(deps): bump actions/setup-go from 3 to 4
@squeed
go.mod: bump all deps
bc5f3de 
Bump all transitive and direct dependencies.

Signed-off-by: Casey Callendrello <[email protected]>
@maiqueb
bridge, spoof check: remove drop rule index
cac8230 
Rules are appendend by default, thus using an index is redundant.
Using an index also requires the full NFT cache, which causes a CNI ADD
to be extremely slow.

Signed-off-by: Miguel Duarte Barroso <[email protected]>
dependabot bot and others added 21 commits October 7, 2024 04:57
@dependabot @squeed
build(deps): bump the golang group across 1 directory with 2 updates
8324a2e 
Bumps the golang group with 1 update in the / directory: [github.com/Microsoft/hcsshim](https://github.com/Microsoft/hcsshim).


Updates `github.com/Microsoft/hcsshim` from 0.12.6 to 0.12.7
- [Release notes](https://github.com/Microsoft/hcsshim/releases)
- [Commits](microsoft/hcsshim@v0.12.6...v0.12.7)

Updates `golang.org/x/sys` from 0.24.0 to 0.25.0
- [Commits](golang/sys@v0.24.0...v0.25.0)

---
updated-dependencies:
- dependency-name: github.com/Microsoft/hcsshim
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: golang
- dependency-name: golang.org/x/sys
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: golang
...

Signed-off-by: dependabot[bot] <[email protected]>
@h0nIg @squeed
resolve merge conflicts
8ad0361 
Signed-off-by: h0nIg <[email protected]>
@h0nIg @squeed
Revert "Merge pull request containernetworking#921 from oOraph/dev/ex…
d44bbf2 
…clude_subnets_from_traffic_shapping2"

This reverts commit ef076af, reversing
changes made to 5974089.

Signed-off-by: h0nIg <[email protected]>
@h0nIg @squeed
make test working again
24b0bf9 
Signed-off-by: h0nIg <[email protected]>
@h0nIg @squeed
add problem hint
c52e02b 
Signed-off-by: h0nIg <[email protected]>
@LionelJouin @squeed
VRF: Wait for the local/host routes to be added
93d197c 
Without waiting for the local/host routes to be added
by the kernel after the IP address is being added to
an interface. The routes requiring the local/host routes
may failed. This caused flaky e2e tests, but could also
happen during the execution of the VRF plugin when the
IPv6 addresses were being re-added to the interface and
when the route were being moved to the VRF table.

Signed-off-by: Lionel Jouin <[email protected]>
@dependabot @squeed
build(deps): bump golang.org/x/sys in the golang group
e495072 
Bumps the golang group with 1 update: [golang.org/x/sys](https://github.com/golang/sys).


Updates `golang.org/x/sys` from 0.25.0 to 0.26.0
- [Commits](golang/sys@v0.25.0...v0.26.0)

---
updated-dependencies:
- dependency-name: golang.org/x/sys
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: golang
...

Signed-off-by: dependabot[bot] <[email protected]>
@lisongmin @squeed
fix(dhcp): can not renew an ip address
d61e7e5 
The dhcp server is systemd-networkd, and the dhcp
plugin can request an ip but can not renew it.
The systemd-networkd just ignore the renew request.

```
2024/09/14 21:46:00 no DHCP packet received within 10s
2024/09/14 21:46:00 retrying in 31.529038 seconds
2024/09/14 21:46:42 no DHCP packet received within 10s
2024/09/14 21:46:42 retrying in 63.150490 seconds
2024/09/14 21:47:45 98184616c91f15419f5cacd012697f85afaa2daeb5d3233e28b0ec21589fb45a/iot/eth1: no more tries
2024/09/14 21:47:45 98184616c91f15419f5cacd012697f85afaa2daeb5d3233e28b0ec21589fb45a/iot/eth1: renewal time expired, rebinding
2024/09/14 21:47:45 Link "eth1" down. Attempting to set up
2024/09/14 21:47:45 98184616c91f15419f5cacd012697f85afaa2daeb5d3233e28b0ec21589fb45a/iot/eth1: lease rebound, expiration is 2024-09-14 22:47:45.309270751 +0800 CST m=+11730.048516519
```

Follow the https://datatracker.ietf.org/doc/html/rfc2131#section-4.3.6,
following options must not be sent in renew

- Requested IP Address
- Server Identifier

Since the upstream code has been inactive for 6 years,
we should switch to another dhcpv4 library.
The new selected one is https://github.com/insomniacslk/dhcp.

Signed-off-by: Songmin Li <[email protected]>
@lisongmin @squeed
feat(dhcp): Cancel backoff retry on stop
a4fc6f9 
Signed-off-by: Songmin Li <[email protected]>
@LionelJouin @squeed
Pass status along ipam update
fec2d62 
Signed-off-by: Lionel Jouin <[email protected]>
@champtar @squeed
portmap: fix nftables backend
9296c5f 
We can't use dnat from the input hook,
depending on nftables (and kernel ?) version we get
"Error: Could not process rule: Operation not supported"
iptables backend also uses prerouting.

Also 'ip6 protocol tcp' is invalid, so rework / simplify the rules

Fixes 01a94e1

Signed-off-by: Etienne Champetier <[email protected]>
@champtar @squeed
ipmasq: fix nftables backend
6de8a98 
Rename
SetupIPMasqForNetwork -> SetupIPMasqForNetworks
TeardownIPMasqForNetwork -> TeardownIPMasqForNetworks
and have them take []*net.IPNet instead of *net.IPNet.

This allow the nftables backend to cleanup stale rules and recreate all
needed rules in a single transaction, where previously the stale rules
cleanup was breaking all but the last IPNet.

Fixes 61d0786

Signed-off-by: Etienne Champetier <[email protected]>
@dependabot @squeed
build(deps): bump the golang group across 1 directory with 7 updates
3ffc42c 
Bumps the golang group with 6 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [github.com/Microsoft/hcsshim](https://github.com/Microsoft/hcsshim) | `0.12.7` | `0.12.9` |
| [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo) | `2.20.2` | `2.22.0` |
| [github.com/onsi/gomega](https://github.com/onsi/gomega) | `1.34.2` | `1.36.0` |
| [github.com/opencontainers/selinux](https://github.com/opencontainers/selinux) | `1.11.0` | `1.11.1` |
| [github.com/safchain/ethtool](https://github.com/safchain/ethtool) | `0.4.1` | `0.5.9` |
| [sigs.k8s.io/knftables](https://github.com/kubernetes-sigs/knftables) | `0.0.17` | `0.0.18` |



Updates `github.com/Microsoft/hcsshim` from 0.12.7 to 0.12.9
- [Release notes](https://github.com/Microsoft/hcsshim/releases)
- [Commits](microsoft/hcsshim@v0.12.7...v0.12.9)

Updates `github.com/onsi/ginkgo/v2` from 2.20.2 to 2.22.0
- [Release notes](https://github.com/onsi/ginkgo/releases)
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md)
- [Commits](onsi/ginkgo@v2.20.2...v2.22.0)

Updates `github.com/onsi/gomega` from 1.34.2 to 1.36.0
- [Release notes](https://github.com/onsi/gomega/releases)
- [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md)
- [Commits](onsi/gomega@v1.34.2...v1.36.0)

Updates `github.com/opencontainers/selinux` from 1.11.0 to 1.11.1
- [Release notes](https://github.com/opencontainers/selinux/releases)
- [Commits](opencontainers/selinux@v1.11.0...v1.11.1)

Updates `github.com/safchain/ethtool` from 0.4.1 to 0.5.9
- [Release notes](https://github.com/safchain/ethtool/releases)
- [Commits](safchain/ethtool@v0.4.1...v0.5.9)

Updates `golang.org/x/sys` from 0.26.0 to 0.27.0
- [Commits](golang/sys@v0.26.0...v0.27.0)

Updates `sigs.k8s.io/knftables` from 0.0.17 to 0.0.18
- [Changelog](https://github.com/kubernetes-sigs/knftables/blob/master/CHANGELOG.md)
- [Commits](kubernetes-sigs/knftables@v0.0.17...v0.0.18)

---
updated-dependencies:
- dependency-name: github.com/Microsoft/hcsshim
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: golang
- dependency-name: github.com/onsi/ginkgo/v2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: golang
- dependency-name: github.com/onsi/gomega
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: golang
- dependency-name: github.com/opencontainers/selinux
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: golang
- dependency-name: github.com/safchain/ethtool
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: golang
- dependency-name: golang.org/x/sys
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: golang
- dependency-name: sigs.k8s.io/knftables
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: golang
...

Signed-off-by: dependabot[bot] <[email protected]>
@champtar @squeed
portmap: fix iptables conditions detection
7f756b4 
As show in the docs, iptables conditions can also start with '!'

Fixes 01a94e1

Signed-off-by: Etienne Champetier <[email protected]>
@jingyuanliang
Bump Go version to 1.23 in scripts/release.sh (containernetworking#1123)
ba8bc7d 
Signed-off-by: Jingyuan Liang <[email protected]>
@squeed
test: enable unpriv user namespaces
e8c7d9b 
These are disabled by default in some distros; we would like to test
rootless, however.

Signed-off-by: Casey Callendrello <[email protected]>
@dependabot @squeed
build(deps): bump alpine in /.github/actions/retest-action
41d5485 
Bumps alpine from 3.20 to 3.21.

---
updated-dependencies:
- dependency-name: alpine
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot @squeed
build(deps): bump the golang group across 1 directory with 3 updates
eded0af 
Bumps the golang group with 1 update in the / directory: [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo).


Updates `github.com/onsi/ginkgo/v2` from 2.22.0 to 2.22.2
- [Release notes](https://github.com/onsi/ginkgo/releases)
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md)
- [Commits](onsi/ginkgo@v2.22.0...v2.22.2)

Updates `github.com/onsi/gomega` from 1.36.0 to 1.36.2
- [Release notes](https://github.com/onsi/gomega/releases)
- [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md)
- [Commits](onsi/gomega@v1.36.0...v1.36.2)

Updates `golang.org/x/sys` from 0.27.0 to 0.28.0
- [Commits](golang/sys@v0.27.0...v0.28.0)

---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: golang
- dependency-name: github.com/onsi/gomega
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: golang
- dependency-name: golang.org/x/sys
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: golang
...

Signed-off-by: dependabot[bot] <[email protected]>
@s1061123
Remove scripts/release.sh because of no longer used (containernetwork…
abfac4a 
…ing#1137)

scripts/release.sh is used for release plugins manually (by
maintainer's hand), previously. Now we introduced automated release
process by github action, hence it is no longer used and no longer
maintained. This change removes this file. Thanks, release.sh for a
long time!

Signed-off-by: Tomofumi Hayashi <[email protected]>
@squeed
build: split CI and go.mod version
e4ca66b 
Downstream users would like to lower the minimum required go version,
but it would be nice to test and release with the latest go. So, use a
placeholder go version file for CI.

Signed-off-by: Casey Callendrello <[email protected]>
@coutinhop
Merge branch 'main' from github.com/containernetworking/plugins into …
b08eec6 
…'master'
@coutinhop coutinhop self-assigned this Jan 22, 2025
@CLAassistant
Copy link

CLAassistant commented Jan 22, 2025
edited
Loading

CLA assistant check
Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you all sign our Contributor License Agreement before we can accept your contribution.
1 out of 12 committers have signed the CLA.

✅ coutinhop
❌ MikeZappa87
❌ squeed
❌ champtar
❌ dependabot[bot]
❌ lisongmin
❌ gudmundur
❌ LionelJouin
❌ h0nIg
❌ danwinship
❌ jingyuanliang
❌ s1061123
You have signed the CLA already but the status is still pending? Let us recheck it.

@matthewdupre matthewdupre merged commit 56432a2 into projectcalico:master Jan 24, 2025
5 of 6 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@matthewdupre matthewdupre matthewdupre approved these changes

@fasaxc fasaxc Awaiting requested review from fasaxc

@caseydavenport caseydavenport Awaiting requested review from caseydavenport

@rene-dekker rene-dekker Awaiting requested review from rene-dekker

@aaaaaaaalex aaaaaaaalex Awaiting requested review from aaaaaaaalex

Assignees

@coutinhop coutinhop

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.