Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update Cilium for cgroups v2 support #1021

Merged
merged 1 commit into from
Jul 24, 2021
Merged

Update Cilium for cgroups v2 support #1021

merged 1 commit into from
Jul 24, 2021

Conversation

dghubble
Copy link
Member

@dghubble dghubble commented Jul 24, 2021
edited
Loading

  • On Fedora CoreOS, Cilium cross-node service IP load balancing stopped working for a time (first observable as CoreDNS pods located on worker nodes not being able to reach the kubernetes API service 10.3.0.1). This turned out to have two parts:
  • Fedora CoreOS switched to cgroups v2 by default. In our early testing with cgroups v2, Calico (default) was used. With the
    cgroups v2 change, SELinux policy denied some eBPF operations.
    Since fixed in all Fedora CoreOS channels
  • Cilium requires new mounts to support cgroups v2, which are added here

Related:

@dghubble
Update Cilium for cgroups v2 support
f03045f 
* On Fedora CoreOS, Cilium cross-node service IP load balancing
stopped working for a time (first observable as CoreDNS pods
located on worker nodes not being able to reach the kubernetes
API service 10.3.0.1). This turned out to have two parts:
* Fedora CoreOS switched to cgroups v2 by default. In our early
testing with cgroups v2, Calico (default) was used. With the
cgroups v2 change, SELinux policy denied some eBPF operations.
Since fixed in all Fedora CoreOS channels
* Cilium requires new mounts to support cgroups v2, which are
added here

* coreos/fedora-coreos-tracker#292
* coreos/fedora-coreos-tracker#881
* cilium/cilium#16259
@dghubble dghubble merged commit f03045f into master Jul 24, 2021
@dghubble dghubble deleted the cilium-cgroups2 branch July 24, 2021 17:37
@dghubble dghubble mentioned this pull request Jul 24, 2021
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@dghubble