Revision 31fd82bd487db9cedb24a2db21993477e34c5c1c authored by Gilberto Bertin on 12 August 2022, 15:17:38 UTC, committed by Joe Stringer on 15 August 2022, 16:33:01 UTC
[ upstream commit 4bd2478db37a6859c57372dcc97ac43922d26e90 ] The Iptables version shipped with Cilium (1.8.4) does not fully support the iptables-legacy - nft translation of NOTRACK rules, which in turn causes the agent to crash whenever it tries to delete any old/backup ruleset. This commit introduces a workaround for this by ignoring the `-j NOTRACK` and `-j CT --notrack` rules when deleting all rules belonging to an old/backup ruleset. This is not an issue (although it's not optimal) as eventually the agent will just flush and remove all the Cilium managed Iptables chains. Fixes: #20714 Signed-off-by: Gilberto Bertin <jibi@cilium.io> Signed-off-by: Joe Stringer <joe@cilium.io>
1 parent 5cacb1b
| File | Mode | Size |
|---|---|---|
| .github | ||
| .travis | ||
| Documentation | ||
| api | ||
| bpf | ||
| bugtool | ||
| cilium | ||
| cilium-health | ||
| clustermesh-apiserver | ||
| contrib | ||
| daemon | ||
| envoy | ||
| examples | ||
| hack | ||
| hubble-relay | ||
| images | ||
| install | ||
| jenkinsfiles | ||
| operator | ||
| pkg | ||
| plugins | ||
| proxylib | ||
| test | ||
| tests | ||
| tools | ||
| vendor | ||
| .authors.aux | -rw-r--r-- | 416 bytes |
| .gitattributes | -rw-r--r-- | 260 bytes |
| .gitignore | -rw-r--r-- | 1.5 KB |
| .gitmodules | -rw-r--r-- | 0 bytes |
| .golangci.yaml | -rw-r--r-- | 3.3 KB |
| .mailmap | -rw-r--r-- | 4.3 KB |
| .travis.yml | -rw-r--r-- | 1.1 KB |
| AUTHORS | -rw-r--r-- | 21.5 KB |
| CHANGELOG.md | -rw-r--r-- | 180.8 KB |
| CODEOWNERS | -rw-r--r-- | 592 bytes |
| CODE_OF_CONDUCT.md | -rw-r--r-- | 2.2 KB |
| CONTRIBUTING.md | -rw-r--r-- | 227 bytes |
| FURTHER_READINGS.rst | -rw-r--r-- | 4.9 KB |
| GO_VERSION | -rw-r--r-- | 8 bytes |
| LICENSE | -rw-r--r-- | 11.1 KB |
| MAINTAINERS.md | -rw-r--r-- | 3.6 KB |
| Makefile | -rw-r--r-- | 28.4 KB |
| Makefile.defs | -rw-r--r-- | 6.0 KB |
| Makefile.docker | -rw-r--r-- | 6.1 KB |
| Makefile.quiet | -rw-r--r-- | 718 bytes |
| README.rst | -rw-r--r-- | 14.7 KB |
| SECURITY.md | -rw-r--r-- | 615 bytes |
| USERS.md | -rw-r--r-- | 6.8 KB |
| VERSION | -rw-r--r-- | 8 bytes |
| Vagrantfile | -rw-r--r-- | 12.8 KB |
| go.mod | -rw-r--r-- | 5.7 KB |
| go.sum | -rw-r--r-- | 136.4 KB |
| netlify.toml | -rw-r--r-- | 92 bytes |
| vagrant_box_defaults.rb | -rw-r--r-- | 392 bytes |
Computing file changes ...
