New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Upgrade preparation to verify sysctl values containing forward slashes by regex #102393
Conversation
/triage accepted |
/assign @thockin |
/cc @liggitt |
9e02d8c
to
bf4fb66
Compare
bf4fb66
to
c1269c4
Compare
can you review it again?@mrunalp
I just saw that the runc repository is working on that. |
The runc PR caused regression for values like opencontainers/runc#3254 (comment) |
But sometimes sysctl variable will have dots and slashes at the same time, If there is no slash, only dots cannot do this. And I think the disabled slash is inconsistent with the slash supported by the Linux kernel. ref to https://man7.org/linux/man-pages/man5/sysctl.d.5.html |
d5d1a5d
to
275d832
Compare
/test pull-kubernetes-e2e-gce-ubuntu-containerd |
Request review again. @mrunalp |
Kubernetes 1.23 Code Freeze is Coming, can there be other sig-node approvers who can help to confirm again? @sig-node-approvers |
@mengjiao-liu Thanks for fixing in runc as well. /lgtm |
@mengjiao-liu We should update the documentation for this. |
Did you say kubernetes/website documentation? |
/hold cancel |
Ok, I will open a PR to update it in the kubernetes/website repository. Thanks for reminding!@mrunalp |
What type of PR is this?
/kind feature
What this PR does / why we need it:
The Regex that validates sysctl values in objects doesn't allow names that contain forward slashes. Sysctl values on network subinterfaces contain these forward slashes.
I looked up Linux's description of the sysctl variable:
Therefore, the dots and slashes serve the same purpose, and the sysctl variable should also support slashes as separator in Kubernetes.
As #102393 (comment), the PR does the following:
Which issue(s) this PR fixes:
Ref #102373
Special notes for your reviewer:
Does this PR introduce a user-facing change?
Additional documentation e.g., KEPs (Kubernetes Enhancement Proposals), usage docs, etc.: