* cherry-picking stuff from apply in background POC
* add all policies poc
* add debug prints
* fix deadlock
* fix other GetPolicy deadlock
* update whitespace in yamls
* properly merge
* properly merge 2
* add ACLs in batches
* cleanup errors
* lint and log
* persist state as we add
* refactor into function so we can do UTs on batching
* fix lint
* batch struct
* successful policies
* reduce batch limit to 30
* wip
* fix UT by applying dataplane immediately for RemovePolicy()
* configmap options for apply in background
* fix deadlocks
* better logging
* rename config variables, update default config, change shouldApply check
* update configmap values
* FIXME: remove tmp commit overriding applyDP config (using for pipeline tests)
* optimize applying ipsets for add policy
* cleanup code and finalize apply ipsets for netpols
* flip order of if statement
* UTs. address comments. fix netpol behavior by waiting to start pod controller
* all UTs except ones related to issue #1729
* remove bootup phase stuff
* fix lints and move applyinbackground to toggle
* fix lint
* don't check isWindows every time
* use diff var for applyinbackground
* fix lint
* update script to check cns in memory and add to pr pipeline
* adding stage to both overlay and podsubnet cilium stages
* add exit case if priveleged pod is not found
* check status of priv pod
* call ds status before exit
* install cilium ds with kubectl and not helm for systemd-networkd initcontainer patch
* upload cilium ds
* adding files for cilium-agent and cilium-operator deployment
* update cilium ds
* addressing comments
* set constant mac for host veth interface
* fixed a race issue in transparent-vlan where delete can happen after add and removes route add by ADD call
* moved log to place where its executed
* enable proxy arp on bridge to allow public connectivity from apipa interface
* validate newly created namespace is not same as host namespace
* addressed comments and added UTs
* fixed cni delete call for linux multitenancy
* lint fixes
* windows lint fixes
* lint fixes
* fix issues with network namespace creation and vlan interface creation
* Removed deletehostveth flag and delete host veth on delete endpoint trigger
* lint fix
* address comment
* correct num acls
* print out pods for debugging
* fix latency value printed out
* unapplied netpols and delete chaos
* print out new args
* simplify kwok install and run script
* fix typo
* example run
* fix sleep and num ipsets
* better run-kwok.sh
* fix sleep
* fix run kwok
* fix pipe
* fix labels on pods
* fix delete
* add connectivity to readme
* Update README.md
* fix printing
* wait for pods to come up after deleting
* 'all' option
* deletion of host veth interface on error in transparent_vlan mode
* fixed a typo character
* Fix lint issues
* Windows lint fix
* Windows lint fix
* add netio import
* Fixed newly added ut
* reverting pre-push change
* fix a typo
* process updatePods in fifo order
* fix lint
* better UT
* comments and better naming
* stop skipping UTs
* fix lint
* redesign
* dequeue returns nil when cache is empty
* Revert "dequeue returns nil when cache is empty"
This reverts commit 3e8d1872a8.
* requeue if node name has changed
* Revert "Revert "dequeue returns nil when cache is empty""
This reverts commit 3f5f99da1f.
* UT for nil result from dequeue
* get node IP
* add allow-host-to-endpoint ACL
* update ACL ID to be equal to other ACLs in the netpol
* add node ip to acl
* UTs and make node IP a part of pMgr cfg
* fix skip test logic from #1857
* fix pMgr UTs and prom metrics
* fix lints and add comments
* fix UT and prom metrics for linux
* UT for getting node IP
* revert skipTest change
* error out if node IP is an empty string
* update logging for node ip and only get node ip for windows
---------
Co-authored-by: Vamsi Kalapala <vakr@microsoft.com>
* k8s scale testing with kwok
* Update README.md
* fix netpol labels so that they apply to pods
* test connectivity
* parameterize scripts
* rename scale script and update readme
* clean up readme
* add NetPol after connectivity check
* retry connectivity loops
* fix connectivity test script and netpol
* script to capture cpu/mem
* fix typo in help
* kwok kubeconfig
* fix cpu and mem capture
1. Enables CNS to handle multiple NCs in NNC.
2. Adds new APIs that allows multiple IPs to be requested and released.
3. This change is needed for dualstack overlay
---------
Co-authored-by: Tim Raymond <traymond@microsoft.com>
* fix: [WIN-NPM] update PATH so we can use debugging tools via NPM
* append to path instead of overwriting
* set original path
* Update azure-npm-capz.yaml
* add powershell to PATH in setkubeconfigpath.ps1
* remove pwsh call and undo path updates and change to setkubeconfig.ps1
jay vyas
Paul Yu
Hunter Gregory
Vipul Singh
Evan Baker
Camryn Lee
tamilmani1989
rjdenney
dependabot[bot]
jacobbaek
ZetaoZhuang
John Payne
Nawaz Hussain K
Ramiro
Ashish Nair
Saksham Mittal