Newer versions of Envoy and Cilium are failing because Raspberry Pi OS uses a different page table size from what the tools expect: raspberrypi/linux#4375
Fixing this requires building a custom kernel to use 48-bit page table addresses and adding it to the node. Building the kernel would be a lengthy process, and there's already quite a bit of duplication of logic (most of the build steps aren't specific to nodes and node-specific images are largely unnecessary), so it might be worth looking at breaking things like kernel builds and apt upgrades into an Ansible playbook separate from the golden image.
Newer versions of Envoy and Cilium are failing because Raspberry Pi OS uses a different page table size from what the tools expect: raspberrypi/linux#4375
Fixing this requires building a custom kernel to use 48-bit page table addresses and adding it to the node. Building the kernel would be a lengthy process, and there's already quite a bit of duplication of logic (most of the build steps aren't specific to nodes and node-specific images are largely unnecessary), so it might be worth looking at breaking things like kernel builds and apt upgrades into an Ansible playbook separate from the golden image.