Skip to content

Commit fdfe612

Browse files
minikube-botminikube-bot
authoredMar 18, 2025··
CNI: Update cilium from v1.17.1 to v1.17.2 (#20535)
1 parent 08c0e59 commit fdfe612

File tree

1 file changed

+12
-11
lines changed

1 file changed

+12
-11
lines changed
 

‎pkg/minikube/cni/cilium.yaml

+12-11
Original file line numberDiff line numberDiff line change
@@ -116,6 +116,7 @@ data:
116116
bpf-lb-algorithm-annotation: "false"
117117
bpf-lb-mode-annotation: "false"
118118

119+
bpf-distributed-lru: "false"
119120
bpf-events-drop-enabled: "true"
120121
bpf-events-policy-verdict-enabled: "true"
121122
bpf-events-trace-enabled: "true"
@@ -151,6 +152,7 @@ data:
151152

152153
routing-mode: "tunnel"
153154
tunnel-protocol: "vxlan"
155+
tunnel-source-port-range: "0-0"
154156
service-no-backend-response: "reject"
155157

156158

@@ -203,7 +205,7 @@ data:
203205
enable-node-selector-labels: "false"
204206
synchronize-k8s-nodes: "true"
205207
operator-api-serve-addr: "127.0.0.1:9234"
206-
# Enable Hubble gRPC service.
208+
207209
enable-hubble: "true"
208210
# UNIX domain socket for Hubble server to listen to.
209211
hubble-socket-path: "/var/run/cilium/hubble.sock"
@@ -216,7 +218,6 @@ data:
216218
hubble-tls-key-file: /var/lib/cilium/tls/hubble/server.key
217219
hubble-tls-client-ca-files: /var/lib/cilium/tls/hubble/client-ca.crt
218220
ipam: "cluster-pool"
219-
ipam-multi-pool-pre-allocation:
220221
ipam-cilium-node-update-rate: "15s"
221222
cluster-pool-ipv4-cidr: "{{ .PodSubnet }}"
222223
cluster-pool-ipv4-mask-size: "24"
@@ -859,7 +860,7 @@ spec:
859860
type: Unconfined
860861
containers:
861862
- name: cilium-agent
862-
image: "quay.io/cilium/cilium:v1.17.1@sha256:8969bfd9c87cbea91e40665f8ebe327268c99d844ca26d7d12165de07f702866"
863+
image: "quay.io/cilium/cilium:v1.17.2@sha256:3c4c9932b5d8368619cb922a497ff2ebc8def5f41c18e410bcc84025fcd385b1"
863864
imagePullPolicy: IfNotPresent
864865
command:
865866
- cilium-agent
@@ -1016,7 +1017,7 @@ spec:
10161017
mountPath: /tmp
10171018
initContainers:
10181019
- name: config
1019-
image: "quay.io/cilium/cilium:v1.17.1@sha256:8969bfd9c87cbea91e40665f8ebe327268c99d844ca26d7d12165de07f702866"
1020+
image: "quay.io/cilium/cilium:v1.17.2@sha256:3c4c9932b5d8368619cb922a497ff2ebc8def5f41c18e410bcc84025fcd385b1"
10201021
imagePullPolicy: IfNotPresent
10211022
command:
10221023
- cilium-dbg
@@ -1039,7 +1040,7 @@ spec:
10391040
# Required to mount cgroup2 filesystem on the underlying Kubernetes node.
10401041
# We use nsenter command with host's cgroup and mount namespaces enabled.
10411042
- name: mount-cgroup
1042-
image: "quay.io/cilium/cilium:v1.17.1@sha256:8969bfd9c87cbea91e40665f8ebe327268c99d844ca26d7d12165de07f702866"
1043+
image: "quay.io/cilium/cilium:v1.17.2@sha256:3c4c9932b5d8368619cb922a497ff2ebc8def5f41c18e410bcc84025fcd385b1"
10431044
imagePullPolicy: IfNotPresent
10441045
env:
10451046
- name: CGROUP_ROOT
@@ -1076,7 +1077,7 @@ spec:
10761077
drop:
10771078
- ALL
10781079
- name: apply-sysctl-overwrites
1079-
image: "quay.io/cilium/cilium:v1.17.1@sha256:8969bfd9c87cbea91e40665f8ebe327268c99d844ca26d7d12165de07f702866"
1080+
image: "quay.io/cilium/cilium:v1.17.2@sha256:3c4c9932b5d8368619cb922a497ff2ebc8def5f41c18e410bcc84025fcd385b1"
10801081
imagePullPolicy: IfNotPresent
10811082
env:
10821083
- name: BIN_PATH
@@ -1114,7 +1115,7 @@ spec:
11141115
# from a privileged container because the mount propagation bidirectional
11151116
# only works from privileged containers.
11161117
- name: mount-bpf-fs
1117-
image: "quay.io/cilium/cilium:v1.17.1@sha256:8969bfd9c87cbea91e40665f8ebe327268c99d844ca26d7d12165de07f702866"
1118+
image: "quay.io/cilium/cilium:v1.17.2@sha256:3c4c9932b5d8368619cb922a497ff2ebc8def5f41c18e410bcc84025fcd385b1"
11181119
imagePullPolicy: IfNotPresent
11191120
args:
11201121
- 'mount | grep "/sys/fs/bpf type bpf" || mount -t bpf bpf /sys/fs/bpf'
@@ -1130,7 +1131,7 @@ spec:
11301131
mountPath: /sys/fs/bpf
11311132
mountPropagation: Bidirectional
11321133
- name: clean-cilium-state
1133-
image: "quay.io/cilium/cilium:v1.17.1@sha256:8969bfd9c87cbea91e40665f8ebe327268c99d844ca26d7d12165de07f702866"
1134+
image: "quay.io/cilium/cilium:v1.17.2@sha256:3c4c9932b5d8368619cb922a497ff2ebc8def5f41c18e410bcc84025fcd385b1"
11341135
imagePullPolicy: IfNotPresent
11351136
command:
11361137
- /init-container.sh
@@ -1177,7 +1178,7 @@ spec:
11771178
mountPath: /var/run/cilium # wait-for-kube-proxy
11781179
# Install the CNI binaries in an InitContainer so we don't have a writable host mount in the agent
11791180
- name: install-cni-binaries
1180-
image: "quay.io/cilium/cilium:v1.17.1@sha256:8969bfd9c87cbea91e40665f8ebe327268c99d844ca26d7d12165de07f702866"
1181+
image: "quay.io/cilium/cilium:v1.17.2@sha256:3c4c9932b5d8368619cb922a497ff2ebc8def5f41c18e410bcc84025fcd385b1"
11811182
imagePullPolicy: IfNotPresent
11821183
command:
11831184
- "/install-plugin.sh"
@@ -1360,7 +1361,7 @@ spec:
13601361
type: Unconfined
13611362
containers:
13621363
- name: cilium-envoy
1363-
image: "quay.io/cilium/cilium-envoy:v1.31.5-1739264036-958bef243c6c66fcfd73ca319f2eb49fff1eb2ae@sha256:fc708bd36973d306412b2e50c924cd8333de67e0167802c9b48506f9d772f521"
1364+
image: "quay.io/cilium/cilium-envoy:v1.31.5-1741765102-efed3defcc70ab5b263a0fc44c93d316b846a211@sha256:377c78c13d2731f3720f931721ee309159e782d882251709cb0fac3b42c03f4b"
13641365
imagePullPolicy: IfNotPresent
13651366
command:
13661367
- /usr/bin/cilium-envoy-starter
@@ -1535,7 +1536,7 @@ spec:
15351536
spec:
15361537
containers:
15371538
- name: cilium-operator
1538-
image: "quay.io/cilium/operator-generic:v1.17.1@sha256:628becaeb3e4742a1c36c4897721092375891b58bae2bfcae48bbf4420aaee97"
1539+
image: "quay.io/cilium/operator-generic:v1.17.2@sha256:81f2d7198366e8dec2903a3a8361e4c68d47d19c68a0d42f0b7b6e3f0523f249"
15391540
imagePullPolicy: IfNotPresent
15401541
command:
15411542
- cilium-operator-generic

0 commit comments

Comments
 (0)
Please sign in to comment.