Cherry-pick downstream changes to release-1.28 #560
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
…shift-service-mesh#4) * Initial changes to run istio integration test on OCP Update integ suite ocp script Working script to run the integration test over OCP clusters Adding an improvement in skip test Modify script based on the use of a common script to setup registry-s Delete unused rolebinding file Signed-off-by: frherrer <[email protected]> * Adding improvements in the run script over OCP --------- Signed-off-by: frherrer <[email protected]>
…h#12) Signed-off-by: Francisco Herrera <[email protected]>
…ice-mesh#17) * Fix ocp running test script affected by commit 8f9f58b upstream * update comment
…penshift-service-mesh#15) * Changes to report junit file and results from the running test suite set prow by default to true Fix error on ocp script Adding some fixes and debug information Fix variable declaration of JUNIT_REPORT Fix junit report declaration Fix artifacts dir Testing new changes Fix position of the skip test flag Check if artificats dir env var is defined Refactor and add helm flag * Improve the ocp test script from review * Changes from review
…hift-service-mesh#27) * Push distroless images when helm test are executed * Update integ-suite-ocp.sh to use variant
…service-mesh#30) * OSSM-6600 Avoid failures to be hidden on integration test Avoid to use eval when integration test are executed Fix ocp test execution * Fix junit report execution on integration test Fix error in command execution for ocp test run with junit report test fix junit report generator for integration test * Adding debugging to the integration script * More debugging for OCP execution * Avoid hidde exit status on ocp test execution
…h#137) Signed-off-by: frherrer <[email protected]>
* Set unsupported istioctl commands Signed-off-by: bmangoen <[email protected]> * Add alternatives for unsupported cmd Signed-off-by: bmangoen <[email protected]> * Alternative as a unsupportedCmd arg Signed-off-by: bmangoen <[email protected]> * Fix alternative msg for upgrade Signed-off-by: bmangoen <[email protected]> --------- Signed-off-by: bmangoen <[email protected]> Co-authored-by: bmangoen <[email protected]>
Signed-off-by: bmangoen <[email protected]>
…ript (openshift-service-mesh#279) * Adding SKIP_SETUP SKIP_TEST_RUN and DEPLOY_METALLB to ocp test run script * Update setup
Signed-off-by: Nick Fox <[email protected]>
Signed-off-by: bmangoen <[email protected]> Co-authored-by: bmangoen <[email protected]>
…service-mesh#300) * Modifications to Run integration Tests With Sail Operator * enhanced comments and variable names * install operator option added * Skip failing tests in telemetry suite. * some workarounds for failing tests * get latest version from sail repo
Following tests are fixed with this commit: Telemetry/TestStatsGatewayServerTCPFilter,Telemetry/tracing/zipkin,pilot/TestTraffic/dns/a/
…service-mesh#312) * Disable istioctl commands with building ldflags Signed-off-by: bmangoen <[email protected]> * Refactoring Signed-off-by: bmangoen <[email protected]> * Refactoring and compacting functions Signed-off-by: bmangoen <[email protected]> * Remove disabled parameter Signed-off-by: bmangoen <[email protected]> --------- Signed-off-by: bmangoen <[email protected]> Co-authored-by: bmangoen <[email protected]>
Signed-off-by: bmangoen <[email protected]> Co-authored-by: bmangoen <[email protected]>
Added Ambient test flow has the following arguments during execution: - "Ambient" profile definition - Definition of "trustedZtunnelNamespace" for istiod Signed-off-by: Maxim Babushkin <[email protected]>
According to the recent istio change, update the bookinfo image version from 1.20.2 -> 1.20.3. istio/istio#55942 Signed-off-by: Maxim Babushkin <[email protected]>
- Starting from OCP 4.19, Gateway API CRDs comes pre-installed and could not be modified by the user. For that, check OCP cluster version and skip Gateway API CRD deploy for OCP version 4.19 and above and deploy for 4.18 and below. - When using liveliness/readiness pod probes in Ambient based deployment, a local gateway mode should be used. Set the network configuration on the cluster for that. Signed-off-by: Maxim Babushkin <[email protected]>
…penshift-service-mesh#436) When external control plane is used during Istio integration tests execution and we are deploying Sail Operator, we would like to support Ambient mode as well. Add Ambient mode support to the deployment of Sail Operator control plane. Deployment of Ambient mode would be controlled by AMBIENT=true/false environment variable. Signed-off-by: Maxim Babushkin <[email protected]>
…#457) - Modify the cleanup step of the prow Sail Operator script. The tests execution failed on Ambient execution during reinstall of Istio, while moving between integration test suite sub-tests. - For telemetry tracing otelcollector test suite, modify the secret to pod assignment. Signed-off-by: Maxim Babushkin <[email protected]>
…#421) Signed-off-by: Jacek Ewertowski <[email protected]>
…#57202) * Do not create the PDB by default when we don't have enough replicas Currently used default values are creating the PDB with minAvailable=1 and HPA with minReplicas=1. The result of that is istio/istio#12602. This PR makes sure that PDB is not created by default and is created only if users increase either minReplicas in HPA or replicaCount in the Deployment. Fixes istio/istio#12602 Signed-off-by: Filip Brychta <[email protected]> * Adding/fixing helm unit tests Signed-off-by: Filip Brychta <[email protected]> * Fixing manifest generate unit tests Signed-off-by: Filip Brychta <[email protected]> * Adding release notes Signed-off-by: Filip Brychta <[email protected]> --------- Signed-off-by: Filip Brychta <[email protected]>
…penshift-service-mesh#338) This adds an integration test for running two instances of istio in the same cluster: a gateway instance and a mesh instance.
…penshift-service-mesh#335) When using istio as a pure Gateway API Ingress provider the CA Bundle is only required where a Gateway exist. Avoid spreading them out across all namespaces. A flag has been added to enable the Gateway only behavior which also disables the Namespace level injection. The new Gateway GA Controller behaves similar to NamespaceController but watches primarly Gateway objects instead of Namespaces.
controller InsertDataToConfigMap was changed in istio/istio#56308
…mesh#479) (openshift-service-mesh#500) Recent Istio helm gateway PR [1] modified the schema of the gateway manifests values configuration. Global level values are not longer accepted by helm when applying to the gateway charts. As a result, Istio control ingress and egrees deployment by Sail Operator fails. The "meshConfig" "accessLogFile" will be added to the sail operator converter script: openshift-service-mesh/sail-operator#484 [1] - istio/istio#57457 Signed-off-by: Maxim Babushkin <[email protected]>
… for polarion xml parsing (openshift-service-mesh#506)
…vice-mesh#501) The test setup was creating two revisions where one was called default. In Istio 1.27 it resulted in two conflicting default tags which caused the echo workloads to be injected by incorrect control plane (gateway) which fails as it's not using CNI.
…penshift-service-mesh#493) Adjust gateway_ca_controller to support CRL from commit c579f29
Added a function to check the stability of OpenShift cluster operators before running tests. Co-authored-by: Francisco Herrera <[email protected]>
* add network policy charts for ztunnel Signed-off-by: Cameron Garrison <[email protected]> * add newline, add release note Signed-off-by: Cameron Garrison <[email protected]> * enable networkpolicy during ambient tests Signed-off-by: Cameron Garrison <[email protected]> * add separate release note for ztunnel np Signed-off-by: Cameron Garrison <[email protected]> * fix for linter Signed-off-by: Cameron Garrison <[email protected]> * rebase on latest chart changes Signed-off-by: Cameron Garrison <[email protected]> * add DNS capture port Signed-off-by: Cameron Garrison <[email protected]> * add udp protocol to DNS port Signed-off-by: Cameron Garrison <[email protected]> --------- Signed-off-by: Cameron Garrison <[email protected]>
Set the following missing config for Ambient deployment for DNS resolution: ISTIO_META_DNS_CAPTURE = "true" Signed-off-by: Maxim Babushkin <[email protected]> Co-authored-by: Maxim Babushkin <[email protected]>
Adding a marker file which will help to workaround kubernetes/kubernetes#63702 in OpenShift CI test runs. We will be able to detect if tests were terminated prematurely. Co-authored-by: Filip Brychta <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
11 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Summary
Changes include:
🤖 Generated with Claude Code