jahanson/theshire
1
0
Fork 0
Code Issues 1 Pull requests 5 Projects Releases Packages Wiki Activity Actions

Update Helm release cilium to v1.15.3 #159

Merged
jahanson merged 1 commit from renovate/patch-cilium into main 2024-03-30 09:56:56 -05:00
Conversation 0 Commits 1 Files changed 2 +2 -2
smeagol-help commented 2024-03-26 13:01:14 -05:00
Collaborator
Copy link

This PR contains the following updates:

Package Update Change
cilium (source) patch 1.15.2 -> 1.15.3

Release Notes

cilium/cilium (cilium)

v1.15.3: 1.15.3

Compare Source

We are pleased to release Cilium v1.15.3.

Security Advisories

This release addresses a security vulnerability. For more information, see https://github.com/cilium/cilium/security/advisories/GHSA-pwqm-x5x6-5586.

Summary of Changes

Minor Changes:

Bugfixes:

CI Changes:

Misc Changes:

Other Changes:

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about these updates again.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Renovate Bot.

This PR contains the following updates: | Package | Update | Change | |---|---|---| | [cilium](https://cilium.io/) ([source](https://github.com/cilium/cilium)) | patch | `1.15.2` -> `1.15.3` | --- ### Release Notes <details> <summary>cilium/cilium (cilium)</summary> ### [`v1.15.3`](https://github.com/cilium/cilium/releases/tag/v1.15.3): 1.15.3 [Compare Source](https://github.com/cilium/cilium/compare/1.15.2...1.15.3) We are pleased to release Cilium v1.15.3. ## Security Advisories This release addresses a security vulnerability. For more information, see https://github.com/cilium/cilium/security/advisories/GHSA-pwqm-x5x6-5586. ## Summary of Changes **Minor Changes:** - bgpv1: BGP Control Plane metrics (Backport PR [#&#8203;31568](https://github.com/cilium/cilium/issues/31568), Upstream PR [#&#8203;31469](https://github.com/cilium/cilium/issues/31469), [@&#8203;YutaroHayakawa](https://github.com/YutaroHayakawa)) - cni: use default logger with timestamps. (Backport PR [#&#8203;31342](https://github.com/cilium/cilium/issues/31342), Upstream PR [#&#8203;31014](https://github.com/cilium/cilium/issues/31014), [@&#8203;tommyp1ckles](https://github.com/tommyp1ckles)) - Introduce `cilium-dbg encrypt flush --stale` flag to remove XFRM states and policies with stale node IDs. (Backport PR [#&#8203;31342](https://github.com/cilium/cilium/issues/31342), Upstream PR [#&#8203;31159](https://github.com/cilium/cilium/issues/31159), [@&#8203;pchaigno](https://github.com/pchaigno)) **Bugfixes:** - \[v1.15 - Author backport] envoy: enable k8s secret watch even if only CEC is enabled ([#&#8203;31451](https://github.com/cilium/cilium/issues/31451), [@&#8203;mhofstetter](https://github.com/mhofstetter)) - cni: Use batch endpoint deletion API in chaining plugin (Backport PR [#&#8203;31515](https://github.com/cilium/cilium/issues/31515), Upstream PR [#&#8203;31456](https://github.com/cilium/cilium/issues/31456), [@&#8203;sayboras](https://github.com/sayboras)) - Fix a bug in the StateDB library that may have caused stale read after write. This may have potentially affected the L2 announcements feature and the node address selection. (Backport PR [#&#8203;31342](https://github.com/cilium/cilium/issues/31342), Upstream PR [#&#8203;31164](https://github.com/cilium/cilium/issues/31164), [@&#8203;joamaki](https://github.com/joamaki)) - Fix a bug where pod label updates are not reflected in endpoint labels in presence of filtered labels. (Backport PR [#&#8203;31473](https://github.com/cilium/cilium/issues/31473), Upstream PR [#&#8203;31395](https://github.com/cilium/cilium/issues/31395), [@&#8203;tklauser](https://github.com/tklauser)) - Fixed issue with assigning 0 nodeID when corresponding bpf map run out of space. Potentially it could have impacted connectivity in large clusters (>4k nodes) with IPSec or Mutual Auth enabled. Otherwise, it was merely generating unnecessary error log messages. (Backport PR [#&#8203;31490](https://github.com/cilium/cilium/issues/31490), Upstream PR [#&#8203;31380](https://github.com/cilium/cilium/issues/31380), [@&#8203;marseel](https://github.com/marseel)) - gateway-api: Retrieve LB service from same namespace (Backport PR [#&#8203;31490](https://github.com/cilium/cilium/issues/31490), Upstream PR [#&#8203;31271](https://github.com/cilium/cilium/issues/31271), [@&#8203;sayboras](https://github.com/sayboras)) - Handle InvalidParameterValue as well for PD fallback (Backport PR [#&#8203;31490](https://github.com/cilium/cilium/issues/31490), Upstream PR [#&#8203;31016](https://github.com/cilium/cilium/issues/31016), [@&#8203;hemanthmalla](https://github.com/hemanthmalla)) - helm: Update pod affinity for cilium-envoy (Backport PR [#&#8203;31490](https://github.com/cilium/cilium/issues/31490), Upstream PR [#&#8203;31150](https://github.com/cilium/cilium/issues/31150), [@&#8203;sayboras](https://github.com/sayboras)) - hubble/relay: Fix certificate reloading in PeerManager (Backport PR [#&#8203;31568](https://github.com/cilium/cilium/issues/31568), Upstream PR [#&#8203;31376](https://github.com/cilium/cilium/issues/31376), [@&#8203;glrf](https://github.com/glrf)) - Hubble: fix traffic direction and is reply when IPSec is enabled (Backport PR [#&#8203;31568](https://github.com/cilium/cilium/issues/31568), Upstream PR [#&#8203;31211](https://github.com/cilium/cilium/issues/31211), [@&#8203;kaworu](https://github.com/kaworu)) - k8s/utils: correctly filter out labels in StripPodSpecialLabels (Backport PR [#&#8203;31473](https://github.com/cilium/cilium/issues/31473), Upstream PR [#&#8203;31421](https://github.com/cilium/cilium/issues/31421), [@&#8203;tklauser](https://github.com/tklauser)) - metrics: Disable prometheus metrics by default (Backport PR [#&#8203;31342](https://github.com/cilium/cilium/issues/31342), Upstream PR [#&#8203;31144](https://github.com/cilium/cilium/issues/31144), [@&#8203;joestringer](https://github.com/joestringer)) - operator: fix errors/warnings metric. (Backport PR [#&#8203;31490](https://github.com/cilium/cilium/issues/31490), Upstream PR [#&#8203;31214](https://github.com/cilium/cilium/issues/31214), [@&#8203;tommyp1ckles](https://github.com/tommyp1ckles)) **CI Changes:** - \[v1.15] test: Remove duplicate Cilium deployments in some datapath config tests ([#&#8203;31520](https://github.com/cilium/cilium/issues/31520), [@&#8203;qmonnet](https://github.com/qmonnet)) - Additionally test host firewall + KPR disabled in E2E tests (Backport PR [#&#8203;31342](https://github.com/cilium/cilium/issues/31342), Upstream PR [#&#8203;30914](https://github.com/cilium/cilium/issues/30914), [@&#8203;giorio94](https://github.com/giorio94)) - AKS: avoid overlapping pod and service CIDRs (Backport PR [#&#8203;31568](https://github.com/cilium/cilium/issues/31568), Upstream PR [#&#8203;31504](https://github.com/cilium/cilium/issues/31504), [@&#8203;bimmlerd](https://github.com/bimmlerd)) - bgpv1: avoid object tracker vs informer race (Backport PR [#&#8203;31490](https://github.com/cilium/cilium/issues/31490), Upstream PR [#&#8203;31010](https://github.com/cilium/cilium/issues/31010), [@&#8203;bimmlerd](https://github.com/bimmlerd)) - bgpv1: fix Test_PodIPPoolAdvert flakiness (Backport PR [#&#8203;31490](https://github.com/cilium/cilium/issues/31490), Upstream PR [#&#8203;31365](https://github.com/cilium/cilium/issues/31365), [@&#8203;rastislavs](https://github.com/rastislavs)) - bpf: fix go testdata check in ci (Backport PR [#&#8203;31554](https://github.com/cilium/cilium/issues/31554), Upstream PR [#&#8203;31419](https://github.com/cilium/cilium/issues/31419), [@&#8203;mhofstetter](https://github.com/mhofstetter)) - Centralize configuration of kind version/image in GitHub Action workflows (Backport PR [#&#8203;31191](https://github.com/cilium/cilium/issues/31191), Upstream PR [#&#8203;30916](https://github.com/cilium/cilium/issues/30916), [@&#8203;giorio94](https://github.com/giorio94)) - Checkout the target branch, instead of the default one, on pull_request based GHA test workflows (Backport PR [#&#8203;31191](https://github.com/cilium/cilium/issues/31191), Upstream PR [#&#8203;31198](https://github.com/cilium/cilium/issues/31198), [@&#8203;giorio94](https://github.com/giorio94)) - ci-e2e: Add matrix for bpf.tproxy and ingress-controller (Backport PR [#&#8203;31490](https://github.com/cilium/cilium/issues/31490), Upstream PR [#&#8203;31272](https://github.com/cilium/cilium/issues/31272), [@&#8203;sayboras](https://github.com/sayboras)) - ci: Bump lvh-kind ssh-startup-wait-retries (Backport PR [#&#8203;31490](https://github.com/cilium/cilium/issues/31490), Upstream PR [#&#8203;31387](https://github.com/cilium/cilium/issues/31387), [@&#8203;YutaroHayakawa](https://github.com/YutaroHayakawa)) - controlplane: fix mechanism for ensuring watchers (Backport PR [#&#8203;31490](https://github.com/cilium/cilium/issues/31490), Upstream PR [#&#8203;31030](https://github.com/cilium/cilium/issues/31030), [@&#8203;bimmlerd](https://github.com/bimmlerd)) - Fix bug preventing consistent symbols between ELF and BTF for eBPF unit tests. (Backport PR [#&#8203;31342](https://github.com/cilium/cilium/issues/31342), Upstream PR [#&#8203;30610](https://github.com/cilium/cilium/issues/30610), [@&#8203;learnitall](https://github.com/learnitall)) - gateway-api: Enable GRPCRoute conformance tests (Backport PR [#&#8203;31342](https://github.com/cilium/cilium/issues/31342), Upstream PR [#&#8203;31055](https://github.com/cilium/cilium/issues/31055), [@&#8203;sayboras](https://github.com/sayboras)) - gha: disable fail-fast on integration tests (Backport PR [#&#8203;31490](https://github.com/cilium/cilium/issues/31490), Upstream PR [#&#8203;31420](https://github.com/cilium/cilium/issues/31420), [@&#8203;giorio94](https://github.com/giorio94)) - gha: drop unused check_url environment variable (Backport PR [#&#8203;31191](https://github.com/cilium/cilium/issues/31191), Upstream PR [#&#8203;30928](https://github.com/cilium/cilium/issues/30928), [@&#8203;giorio94](https://github.com/giorio94)) - introduce ARM github workflows (Backport PR [#&#8203;31342](https://github.com/cilium/cilium/issues/31342), Upstream PR [#&#8203;31196](https://github.com/cilium/cilium/issues/31196), [@&#8203;aanm](https://github.com/aanm)) - ipam: deepcopy interface resource correctly. (Backport PR [#&#8203;31490](https://github.com/cilium/cilium/issues/31490), Upstream PR [#&#8203;26998](https://github.com/cilium/cilium/issues/26998), [@&#8203;tommyp1ckles](https://github.com/tommyp1ckles)) - k8s_install.sh: specify the CNI version (Backport PR [#&#8203;31342](https://github.com/cilium/cilium/issues/31342), Upstream PR [#&#8203;31182](https://github.com/cilium/cilium/issues/31182), [@&#8203;aanm](https://github.com/aanm)) - loader: fix issue where errors cancelled compile cause error logs. (Backport PR [#&#8203;31342](https://github.com/cilium/cilium/issues/31342), Upstream PR [#&#8203;30988](https://github.com/cilium/cilium/issues/30988), [@&#8203;tommyp1ckles](https://github.com/tommyp1ckles)) - Reduce flakiness of controlplane tests (Backport PR [#&#8203;31490](https://github.com/cilium/cilium/issues/31490), Upstream PR [#&#8203;30906](https://github.com/cilium/cilium/issues/30906), [@&#8203;bimmlerd](https://github.com/bimmlerd)) - slices: don't modify missed input slice in test (Backport PR [#&#8203;31490](https://github.com/cilium/cilium/issues/31490), Upstream PR [#&#8203;31119](https://github.com/cilium/cilium/issues/31119), [@&#8203;bimmlerd](https://github.com/bimmlerd)) **Misc Changes:** - Add monitor aggregation for all events related to packets ingressing to the network-facing device. (Backport PR [#&#8203;31342](https://github.com/cilium/cilium/issues/31342), Upstream PR [#&#8203;31015](https://github.com/cilium/cilium/issues/31015), [@&#8203;learnitall](https://github.com/learnitall)) - Address race condition in TestGetIdentity (Backport PR [#&#8203;31541](https://github.com/cilium/cilium/issues/31541), Upstream PR [#&#8203;30885](https://github.com/cilium/cilium/issues/30885), [@&#8203;bimmlerd](https://github.com/bimmlerd)) - bgpv1: Adjust ConnectionRetryTimeSeconds to 1 in component tests (Backport PR [#&#8203;31342](https://github.com/cilium/cilium/issues/31342), Upstream PR [#&#8203;31218](https://github.com/cilium/cilium/issues/31218), [@&#8203;YutaroHayakawa](https://github.com/YutaroHayakawa)) - chore(deps): update all github action dependencies (v1.15) ([#&#8203;31480](https://github.com/cilium/cilium/issues/31480), [@&#8203;renovate](https://github.com/renovate)\[bot]) - chore(deps): update all github action dependencies (v1.15) ([#&#8203;31582](https://github.com/cilium/cilium/issues/31582), [@&#8203;renovate](https://github.com/renovate)\[bot]) - chore(deps): update dependency cilium/cilium-cli to v0.16.3 (v1.15) ([#&#8203;31464](https://github.com/cilium/cilium/issues/31464), [@&#8203;renovate](https://github.com/renovate)\[bot]) - chore(deps): update docker.io/library/golang:1.21.8 docker digest to [`8560736`](https://github.com/cilium/cilium/commit/8560736) (v1.15) ([#&#8203;31450](https://github.com/cilium/cilium/issues/31450), [@&#8203;renovate](https://github.com/renovate)\[bot]) - chore(deps): update gcr.io/distroless/static-debian11:nonroot docker digest to [`55c6361`](https://github.com/cilium/cilium/commit/55c6361) (v1.15) ([#&#8203;31453](https://github.com/cilium/cilium/issues/31453), [@&#8203;renovate](https://github.com/renovate)\[bot]) - chore: update json-mock image source in examples (Backport PR [#&#8203;31568](https://github.com/cilium/cilium/issues/31568), Upstream PR [#&#8203;31373](https://github.com/cilium/cilium/issues/31373), [@&#8203;loomkoom](https://github.com/loomkoom)) - cilium-dbg: listing load-balancing configurations displays L7LB proxy port (Backport PR [#&#8203;31568](https://github.com/cilium/cilium/issues/31568), Upstream PR [#&#8203;31503](https://github.com/cilium/cilium/issues/31503), [@&#8203;mhofstetter](https://github.com/mhofstetter)) - datapath, bpf: Remove unnecessary IPsec code (Backport PR [#&#8203;31490](https://github.com/cilium/cilium/issues/31490), Upstream PR [#&#8203;31344](https://github.com/cilium/cilium/issues/31344), [@&#8203;pchaigno](https://github.com/pchaigno)) - doc: Clarified GwAPI KPR prerequisites (Backport PR [#&#8203;31490](https://github.com/cilium/cilium/issues/31490), Upstream PR [#&#8203;31366](https://github.com/cilium/cilium/issues/31366), [@&#8203;PhilipSchmid](https://github.com/PhilipSchmid)) - docs: Warn on key rotations during upgrades (Backport PR [#&#8203;31490](https://github.com/cilium/cilium/issues/31490), Upstream PR [#&#8203;31437](https://github.com/cilium/cilium/issues/31437), [@&#8203;pchaigno](https://github.com/pchaigno)) - Don't emit an error message on namespace termination due to Ingress reconciliation (Backport PR [#&#8203;31342](https://github.com/cilium/cilium/issues/31342), Upstream PR [#&#8203;30808](https://github.com/cilium/cilium/issues/30808), [@&#8203;giorio94](https://github.com/giorio94)) - Downgrade L2 Neighbor Discovery failure log to Debug (Backport PR [#&#8203;31342](https://github.com/cilium/cilium/issues/31342), Upstream PR [#&#8203;31179](https://github.com/cilium/cilium/issues/31179), [@&#8203;YutaroHayakawa](https://github.com/YutaroHayakawa)) - endpointmanager: Improve health reporter messages when stopped (Backport PR [#&#8203;31342](https://github.com/cilium/cilium/issues/31342), Upstream PR [#&#8203;31231](https://github.com/cilium/cilium/issues/31231), [@&#8203;christarazi](https://github.com/christarazi)) - hive/cell/health: don't warn when reporting on stopped reporter. (Backport PR [#&#8203;31490](https://github.com/cilium/cilium/issues/31490), Upstream PR [#&#8203;31262](https://github.com/cilium/cilium/issues/31262), [@&#8203;tommyp1ckles](https://github.com/tommyp1ckles)) - ingress: Update docs with network policy example (Backport PR [#&#8203;31342](https://github.com/cilium/cilium/issues/31342), Upstream PR [#&#8203;31060](https://github.com/cilium/cilium/issues/31060), [@&#8203;sayboras](https://github.com/sayboras)) - job: avoid a race condition in TestTimer_ExitOnCloseFnCtx (Backport PR [#&#8203;31490](https://github.com/cilium/cilium/issues/31490), Upstream PR [#&#8203;30929](https://github.com/cilium/cilium/issues/30929), [@&#8203;bimmlerd](https://github.com/bimmlerd)) - loader: add message if error is ENOTSUP (Backport PR [#&#8203;31490](https://github.com/cilium/cilium/issues/31490), Upstream PR [#&#8203;31413](https://github.com/cilium/cilium/issues/31413), [@&#8203;kkourt](https://github.com/kkourt)) - policy: Fix missing labels from SelectorCache selectors (Backport PR [#&#8203;31490](https://github.com/cilium/cilium/issues/31490), Upstream PR [#&#8203;31358](https://github.com/cilium/cilium/issues/31358), [@&#8203;christarazi](https://github.com/christarazi)) - Replaced `declare_tailcall_if` with logic in the loader (Backport PR [#&#8203;31554](https://github.com/cilium/cilium/issues/31554), Upstream PR [#&#8203;30467](https://github.com/cilium/cilium/issues/30467), [@&#8203;dylandreimerink](https://github.com/dylandreimerink)) **Other Changes:** - install: Update image digests for v1.15.2 ([#&#8203;31378](https://github.com/cilium/cilium/issues/31378), [@&#8203;jrajahalme](https://github.com/jrajahalme)) - v1.15: IPsec Fixes ([#&#8203;31610](https://github.com/cilium/cilium/issues/31610), [@&#8203;pchaigno](https://github.com/pchaigno)) </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about these updates again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy4yNTIuMCIsInVwZGF0ZWRJblZlciI6IjM3LjI1Mi4wIiwidGFyZ2V0QnJhbmNoIjoibWFpbiJ9-->
smeagol-help added 1 commit 2024-03-26 13:01:14 -05:00
jahanson merged commit 27b0ad6015 into main 2024-03-30 09:56:56 -05:00
jahanson deleted branch renovate/patch-cilium 2024-03-30 09:56:56 -05:00
Sign in to join this conversation.
Reviewers
No reviewers
Labels
Clear labels
No items
No labels
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: jahanson/theshire#159
No description provided.
Delete branch "renovate/patch-cilium"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?