Skip to content

Long running pipeline #4092

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
wants to merge 655 commits into from
Closed

Long running pipeline #4092

Show file tree
Hide file tree
Changes from 25 commits
Commits
Show all changes
655 commits
Select commit Hold shift + click to select a range
613e368
forwardport: fix: add iptables rules for dns in vnet scale cilium cas…
QxBytes Feb 15, 2025
0ce1515
ci: fix check-shadowing not allowed (#3432)
QxBytes Feb 19, 2025
cae2305
deps: bump golang.org/x/time from 0.9.0 to 0.10.0 (#3394)
dependabot[bot] Feb 19, 2025
f8e4701
feat: add apiserver FQDN to CNS log metadata (#3382)
rbtr Feb 19, 2025
618e8f8
deps: bump golang.org/x/net from 0.34.0 to 0.35.0 (#3408)
dependabot[bot] Feb 19, 2025
18034bb
ci: split dualstack and overlay e2e tests by operating system (#3431)
QxBytes Feb 20, 2025
62c0a86
deps: bump gotest.tools/v3 from 3.5.1 to 3.5.2 (#3402)
dependabot[bot] Feb 20, 2025
7aeb536
deps: bump google.golang.org/protobuf from 1.36.3 to 1.36.4 (#3365)
dependabot[bot] Feb 20, 2025
44853cd
deps: bump github.com/prometheus/common from 0.61.0 to 0.62.0 (#3356)
dependabot[bot] Feb 20, 2025
f38e835
deps: bump github.com/Azure/azure-sdk-for-go/sdk/azidentity from 1.8.…
dependabot[bot] Feb 20, 2025
f90ed35
fix: zapetw core With fields (#3433)
rbtr Feb 20, 2025
c9e69e5
deps: bump github.com/prometheus/client_golang from 1.20.5 to 1.21.0 …
dependabot[bot] Feb 20, 2025
aef4c6f
deps: bump google.golang.org/protobuf from 1.36.3 to 1.36.4 in /build…
dependabot[bot] Feb 20, 2025
a70fd95
deps: bump google.golang.org/grpc from 1.69.2 to 1.70.0 (#3363)
dependabot[bot] Feb 21, 2025
9ddc5bf
ci: unify windows and linux cluster creation methods (#3436)
QxBytes Feb 21, 2025
34cc959
ci: add k8s yaml deprecation check to nightly (#3379)
jpayne3506 Feb 21, 2025
b115b6d
chore: use AppArmorProfile for cilium 1.16 (#3371)
camrynl Feb 21, 2025
805c51b
test: sort npm set policy values before validation (#3358)
QxBytes Feb 21, 2025
9af824a
ci(cyclonus extended): [NPM] fix broken GH action (#3388)
huntergregory Feb 21, 2025
b400986
chore: add cilium 1.17 charts (#3413)
camrynl Feb 25, 2025
09c8d94
deps: bump github.com/google/go-cmp from 0.6.0 to 0.7.0 (#3443)
dependabot[bot] Feb 25, 2025
f23eda2
ci: [NPM] conformance test for loadbalancer and nodeport services (#3…
huntergregory Feb 25, 2025
ebda7f1
deps: bump google.golang.org/protobuf from 1.36.4 to 1.36.5 in /build…
dependabot[bot] Feb 25, 2025
3198d77
deps: bump github.com/spf13/cobra from 1.8.1 to 1.9.1 (#3427)
dependabot[bot] Feb 25, 2025
a52d153
deps: bump github.com/avast/retry-go/v4 from 4.6.0 to 4.6.1 (#3442)
dependabot[bot] Feb 25, 2025
4cbaf76
deps: bump google.golang.org/protobuf from 1.36.4 to 1.36.5 (#3441)
dependabot[bot] Feb 25, 2025
47fb4e5
deps: bump github.com/Azure/azure-container-networking from 1.6.20 to…
dependabot[bot] Feb 26, 2025
929cab7
ci: combine go tests such that any test failure will report a failure…
QxBytes Feb 26, 2025
82fe84d
Expose GET NC list API in CNS client (#3449)
smittal22 Feb 26, 2025
5aeefac
deps: bump github.com/spf13/cobra from 1.8.1 to 1.9.1 in /dropgz (#3428)
dependabot[bot] Feb 26, 2025
0e94854
tool: validator script for Azure NPM to Cilium migration (#3372)
rayaisaiah Feb 27, 2025
b7c260b
feat: cns logger v2 [1/2] (#3437)
rbtr Feb 27, 2025
5829903
[forwardport] [NPM] Forward v1.5 NPM Dockerfile CVE Fixes (#3464)
rayaisaiah Mar 3, 2025
e99fa9b
[Swiftv2 L1VH]Add multiple IB NICs UT (#3476)
paulyufan2 Mar 7, 2025
96154a4
deps: bump github.com/prometheus/client_golang from 1.21.0 to 1.21.1 …
dependabot[bot] Mar 7, 2025
275729e
fix: [NPM] Reduce/Refactor Noisy NPM Logs (#3468)
rayaisaiah Mar 11, 2025
092c2f5
fix: don't restart HNS if the ARP regkey is not changed (#3498)
rbtr Mar 13, 2025
010ab5d
ci: remove beta kubernetes os selector (#3501)
QxBytes Mar 14, 2025
c06c84e
fix: set EnableIPAMv2 to true for current release train (#3502)
jpayne3506 Mar 14, 2025
28ba96e
deps: bump github.com/prometheus/common from 0.62.0 to 0.63.0 (#3508)
dependabot[bot] Mar 14, 2025
3ea1b44
chore(deps): bump golang.org/x/net from 0.34.0 to 0.36.0 in /tools/az…
dependabot[bot] Mar 14, 2025
8a00b55
deps: bump google.golang.org/grpc from 1.70.0 to 1.71.0 (#3469)
dependabot[bot] Mar 15, 2025
14c07bf
[PONv6] Add 3 new fields to NC. (#3499)
ecigar13 Mar 18, 2025
4398230
ci: remove toolchain usage (#3516)
jpayne3506 Mar 18, 2025
2fffe0a
feat: CNS checks apiserver in healthz (#3269)
tyler-lloyd Mar 18, 2025
72c0812
deps: bump golang.org/x/time from 0.10.0 to 0.11.0 (#3479)
dependabot[bot] Mar 19, 2025
6533a70
deps: bump golang.org/x/sync from 0.11.0 to 0.12.0 (#3477)
dependabot[bot] Mar 19, 2025
274efd9
deps: bump github.com/Azure/azure-container-networking from 1.6.21 to…
dependabot[bot] Mar 19, 2025
fe655d2
deps: bump golang.org/x/net from 0.35.0 to 0.37.0 (#3480)
dependabot[bot] Mar 19, 2025
04e8c1e
ci: add cilium local redirect policy test to nightly pipeline (#3500)
QxBytes Mar 20, 2025
aea8119
fix: modify cleanup path to always delete link (#3519)
QxBytes Mar 24, 2025
888ebb6
ci: release test skip npm k8s e2e linux podsubnet (#3525)
camrynl Mar 25, 2025
0f1bce2
deps: bump google.golang.org/protobuf from 1.36.5 to 1.36.6 (#3532)
dependabot[bot] Mar 25, 2025
2c1c4b8
deps: bump github.com/Azure/azure-sdk-for-go/sdk/azcore from 1.17.0 t…
dependabot[bot] Mar 26, 2025
e887f99
deps: bump github.com/golang-jwt/jwt/v5 from 5.2.1 to 5.2.2 in the go…
dependabot[bot] Mar 27, 2025
2f70325
fix: carefully retry restarting HNS if it hangs (#3529)
rbtr Mar 27, 2025
45e885b
deps: bump github.com/spf13/viper from 1.19.0 to 1.20.1 (#3538)
dependabot[bot] Mar 27, 2025
cf2f728
fix: backoff retry and timeouts in HNS restart (#3540)
rbtr Mar 27, 2025
2e5d5a5
chore: remove basic lb due to deprecation on 250930 (#3553)
jpayne3506 Apr 2, 2025
b2ec2f2
ci: add fqdn with cilium local redirect policy test (#3543)
QxBytes Apr 2, 2025
44741d1
fix: do not return a StripPrefix handler when building checker (#3559)
tyler-lloyd Apr 4, 2025
c7804a1
ci: add code coverage publishing and check to pipeline (#3544)
QxBytes Apr 4, 2025
66963b0
ci: add vnet scale cilium pipeline stage (#3457)
QxBytes Apr 4, 2025
01f297e
ci: skip new test for k8s 1.32 kubectl portforward shutdown (#3558)
camrynl Apr 7, 2025
cd12709
ci: Allow manual overwrite of k8s version in CI/CD (#3575)
jpayne3506 Apr 7, 2025
06f4b6a
ci: [Service Tags] add public ips with service tags for LBs during cl…
k-routhu Apr 7, 2025
685a0db
deps: bump github.com/fsnotify/fsnotify from 1.8.0 to 1.9.0 (#3567)
dependabot[bot] Apr 10, 2025
c663c4f
deps: bump golang.org/x/net from 0.37.0 to 0.39.0 (#3577)
dependabot[bot] Apr 10, 2025
0c27917
deps: bump github.com/prometheus/client_golang from 1.21.1 to 1.22.0 …
dependabot[bot] Apr 15, 2025
82cbffb
deps: bump github.com/Azure/azure-sdk-for-go/sdk/azidentity from 1.8.…
dependabot[bot] Apr 15, 2025
7cf134b
deps: bump google.golang.org/grpc from 1.71.0 to 1.71.1 (#3545)
dependabot[bot] Apr 15, 2025
cdda4b9
deps: bump github.com/containernetworking/cni from 1.2.2 to 1.3.0 (#3…
dependabot[bot] Apr 15, 2025
77a5fb3
deps: bump github.com/prometheus/client_model from 0.6.1 to 0.6.2 (#3…
dependabot[bot] Apr 15, 2025
12b34b7
ci: enable lrp in cilium 1.13 config (#3584)
QxBytes Apr 15, 2025
305a38d
feat: templatize dockerfile base images and auto update (#3397)
rbtr Apr 16, 2025
83a8bce
ci: Populate missing fields in CNS configmap (#3503)
jpayne3506 Apr 21, 2025
9519076
ci: set aks preview to 14.0.0b3 (#3607)
QxBytes Apr 28, 2025
efc27a1
Revert "ci: set aks preview to 14.0.0b3" (#3618)
jpayne3506 May 1, 2025
ccec3a3
fix: validate iptable rule exists after calling insert or append ipta…
QxBytes May 1, 2025
d9e7bd9
ci: Add check for cilium error logs to cilium nightly pipeline (#3592)
jpayne3506 May 1, 2025
6733e31
fix: only ping k8s for healthz in podsubnet (#3616)
rbtr May 2, 2025
549ce3f
revert: [NPM] Remove hostUsers Configuration (#3612)
rayaisaiah May 2, 2025
56ddecc
ci: Update ACN Pipeline for Compliance (#3597)
sheylatrudo May 7, 2025
0b55ba2
chore: update tolerations in cilium operator manifests, makefile fix …
camrynl May 8, 2025
54d4460
ci: create test image vars for release test (#3639)
camrynl May 8, 2025
b2e27c3
[forwardport] ci: future proof for LTS clusters (#3620) (#3626)
jpayne3506 May 8, 2025
665a717
deps: bump golang.org/x/crypto from 0.37.0 to 0.38.0 (#3631)
dependabot[bot] May 9, 2025
2e363fa
deps: bump github.com/Microsoft/hcsshim from 0.12.9 to 0.13.0 (#3642)
dependabot[bot] May 14, 2025
c503dca
ci: fix nightly pipeline cluster name reference (#3656)
camrynl May 14, 2025
c8ccb93
change apipa endpoint gateway back to .1 (#3653)
ZetaoZhuang May 14, 2025
91f19c6
[ci] fix: make variable assignment (#3655)
jpayne3506 May 15, 2025
4240c96
deps: bump github.com/Azure/azure-sdk-for-go/sdk/azidentity from 1.9.…
dependabot[bot] May 20, 2025
c74f1c1
chore: address todo items in cilium e2e templates (#3675)
camrynl May 20, 2025
4e0f0c7
ci: use publish code coverage results v1 (#3647)
QxBytes May 21, 2025
ebeab2d
deps: bump github.com/prometheus/common from 0.63.0 to 0.64.0 (#3668)
dependabot[bot] May 21, 2025
510ced2
deps: bump github.com/vishvananda/netlink from 1.3.0 to 1.3.1 (#3651)
dependabot[bot] May 21, 2025
f4c4404
chore: updating cilium nightly charts (#3676)
camrynl May 22, 2025
12ed048
feat: add cilium nodesubnet target to hack/Makefile (#3677)
santhoshmprabhu May 22, 2025
e2e6e70
ci: mtu check for cilium e2e (#3624)
camrynl May 22, 2025
05f9312
ci: [1/?] Automated version update pipeline (#3667)
jpayne3506 May 23, 2025
d839d25
revert: [NPM] [CVEs] Revert Manual NPM Linux Dockerfile Package Insta…
rayaisaiah May 23, 2025
661e1ec
deps: bump google.golang.org/grpc from 1.71.1 to 1.72.2 (#3686)
dependabot[bot] May 28, 2025
23fc53a
ci: Add Binary Signing Task (#3649)
sheylatrudo May 29, 2025
214f9f3
fix: use "vEthernet (LoopbackAdapterHostNCConnectivity)" when CNS is …
behzad-mir May 30, 2025
ceebecf
Fix CNS and CNI ETW log interference issue (#3692)
byte-msft Jun 4, 2025
5d24d64
ci: output manifest tarball with Oras (#3698)
jpayne3506 Jun 9, 2025
e1e55f6
deps: bump golang.org/x/time from 0.11.0 to 0.12.0 (#3704)
dependabot[bot] Jun 9, 2025
92da2d8
Fix CNS IP demand overcounting by filtering terminal Pods in IPAMv2 (…
Copilot Jun 9, 2025
bfaa941
deps: bump golang.org/x/crypto from 0.38.0 to 0.39.0 (#3703)
dependabot[bot] Jun 9, 2025
29f4b18
deps: bump google.golang.org/grpc from 1.72.2 to 1.73.0 (#3705)
dependabot[bot] Jun 9, 2025
734be99
deps: bump github.com/labstack/echo/v4 from 4.13.3 to 4.13.4 (#3683)
dependabot[bot] Jun 9, 2025
d4da996
deps: bump golang.org/x/net from 0.40.0 to 0.41.0 (#3702)
dependabot[bot] Jun 9, 2025
5a59c47
Remove deprecated reviewers field from dependabot.yaml (#3715)
Copilot Jun 9, 2025
39ba51a
deps: bump the go_modules group in /build/tools with 2 updates (#3728)
dependabot[bot] Jun 10, 2025
46819df
Fix golangci-lint config (#3701)
Copilot Jun 10, 2025
1ab5b37
feat: explicit optional compression in dropgz (#3648)
rbtr Jun 10, 2025
4baec58
deps: bump the go_modules group in /azure-ipam with 3 updates (#3690)
dependabot[bot] Jun 11, 2025
896d463
deps: bump github.com/Azure/azure-sdk-for-go/sdk/azidentity from 1.10…
dependabot[bot] Jun 12, 2025
92c9fa7
deps: bump github.com/Azure/azure-container-networking from 1.6.22 to…
dependabot[bot] Jun 12, 2025
8c70b28
[deps] ci: Update Mariner to 3.0 (#3606)
jpayne3506 Jun 12, 2025
121419d
feat: add metric for NNC init failures (#3453)
rbtr Jun 13, 2025
1d98d73
fix: let Windows CNS use the InClusterConfig (#3248)
rbtr Jun 13, 2025
8870cc5
feat: cns logger v2 [2/2] (#3438)
rbtr Jun 13, 2025
cde7693
chore: remove legacy kube-init and default to CNI state (#3383)
rbtr Jun 13, 2025
e0c8997
feat: add azure ip masq merger (#3737)
QxBytes Jun 17, 2025
b777219
fix: [NPM] Update Ubuntu Base Image to 24.04 (#3741)
rayaisaiah Jun 17, 2025
b11716d
[Service Tags] ci: Update ACN to use Virtual Tags (#3745)
k-routhu Jun 19, 2025
b9c6159
deps: bump github.com/prometheus/common from 0.64.0 to 0.65.0 (#3752)
dependabot[bot] Jun 23, 2025
593186b
ci: add azure ip masq merger to pipeline (#3739)
QxBytes Jun 23, 2025
afe873d
chore(deps): bump the go_modules group across 2 directories with 1 up…
dependabot[bot] Jun 23, 2025
2c7fb48
ci: exclude azure-ip-masq-merger tags when describing acn version (#3…
QxBytes Jun 24, 2025
5fd94a8
Add HomeAZ to NodeInfoStatus (#3738)
timraymond Jun 24, 2025
cf5856e
Fix stale workflow to never close issues and ignore dependabot PRs (#…
Copilot Jun 24, 2025
951ba4e
ci: set default K8S_VER to 1.33 for v1.7 release train (#3757)
jpayne3506 Jun 25, 2025
bd7c068
ci: add azure ipam and azure ip masq merger uts to pipeline (#3756)
QxBytes Jun 25, 2025
a18163b
Move HomeAZ to NodeInfo Spec (#3762)
timraymond Jun 26, 2025
99c9303
deps: bump sigs.k8s.io/yaml from 1.4.0 to 1.5.0 (#3760)
dependabot[bot] Jun 26, 2025
8eb4bb6
deps: bump the go_modules group with 2 updates (#3764)
dependabot[bot] Jun 27, 2025
e474f3a
deps: bump github.com/go-viper/mapstructure/v2 from 2.2.1 to 2.3.0 in…
dependabot[bot] Jun 27, 2025
dc78b14
ci: azure-ipam patch upgrade testing (#3678)
camrynl Jun 30, 2025
a4c40a5
[Forwardport] [NPM] [CVE] Resolve CVE-2025-6020 (#3766)
rayaisaiah Jul 1, 2025
13dbbe7
feat: refactor cni telemetry (#3149)
QxBytes Jul 2, 2025
b71d209
ci: Remove File Copy and Add Image Build Stage to Regular Build (#3769)
sheylatrudo Jul 3, 2025
8897039
fix: update network error msg to match kubelet expectations (#3768)
isaac-dasan Jul 3, 2025
a57b994
fix: update error message for MTPNC not found and not ready in CNS (#…
isaac-dasan Jul 10, 2025
e97447d
ci: only check for code coverage at merge, not release (#3791)
jpayne3506 Jul 10, 2025
2ba3692
fix: combine repeated az aks create fields (#3780)
jpayne3506 Jul 10, 2025
d879059
perf: dhcp err msg in network swiftv2 code path (#3793)
isaac-dasan Jul 11, 2025
f9167aa
Update Dependabot version constraints for Kubernetes dependencies com…
Copilot Jul 11, 2025
590508b
ci: cleanup Cilium cli and connectivity test usage (#3772)
jpayne3506 Jul 11, 2025
2df8da6
ci: Future proof golangci-lint workflow by using dynamic base branch …
Copilot Jul 15, 2025
8d9c7dc
Use Separate Version for Build vs. Source (#3751)
sheylatrudo Jul 15, 2025
78c0a0b
ci: remove bash usage from cilium validation (#3826)
jpayne3506 Jul 16, 2025
da1b631
ci: add Dependencies to README (#3827)
jpayne3506 Jul 16, 2025
85bfa33
[Forwardport] [NPM] fix: Update Iptables to Legacy (#3782) (#3842)
rayaisaiah Jul 18, 2025
eea5f2c
feat: create new telemetry handle that supports connection strings (#…
BeegiiK Jul 24, 2025
1b0350a
deps: bump golang.org/x/crypto from 0.39.0 to 0.40.0 (#3797)
dependabot[bot] Jul 28, 2025
fdd6280
deps: bump github.com/AlekSi/gocov-xml from 1.1.0 to 1.2.0 in /build/…
dependabot[bot] Jul 28, 2025
1d1a3d6
chore(deps): bump golang.org/x/oauth2 from 0.24.0 to 0.27.0 in /tools…
dependabot[bot] Jul 28, 2025
9b608eb
ci: add azure iptables monitor pipeline (#3781)
QxBytes Aug 2, 2025
5288128
chore: dependency update (#3890)
rbtr Aug 6, 2025
653f5b5
chore: Clean up release/v1.4 references in master due to EOL (#3884)
jpayne3506 Aug 6, 2025
5b2cc72
chore: Remove NPM Windows 2022 Tests from the NPM Conformance Tests (…
rayaisaiah Aug 6, 2025
3e96bda
feat: add cns iptables reconciliation (#3885)
QxBytes Aug 7, 2025
c99b983
ci: Enable L7 proxy for cilium nightly pipeline (#3868)
Copilot Aug 7, 2025
39a97f9
deps: bump github.com/Azure/azure-sdk-for-go/sdk/azidentity from 1.10…
dependabot[bot] Aug 7, 2025
c1d966d
deps: bump google.golang.org/protobuf from 1.36.5 to 1.36.7 in /build…
dependabot[bot] Aug 7, 2025
49e7c04
feat: Remove symbols from all binaries (#3822)
jpayne3506 Aug 7, 2025
3a39c0f
MTPNC CRD changes for NUMA-Aware Infiniband pods (#3878)
pjohnst5 Aug 7, 2025
aadfae5
ci: remove stage level pool field, isCustom, from e2e job templates (…
jpayne3506 Aug 7, 2025
68db654
chore: Clean Up NPM release/v1.4 in Master Due to EOL (#3887)
rayaisaiah Aug 8, 2025
d811ea9
deps: bump google.golang.org/protobuf from 1.36.6 to 1.36.7 (#3907)
dependabot[bot] Aug 8, 2025
e73b5a5
deps: bump github.com/Azure/azure-container-networking from 1.7.0 to …
dependabot[bot] Aug 8, 2025
2582194
deps: bump golang.org/x/net from 0.42.0 to 0.43.0 (#3906)
dependabot[bot] Aug 8, 2025
cbe7116
feat: iptables block using LSM BPF (#3871)
santhoshmprabhu Aug 8, 2025
9c52178
ci: Unblocking ADO build pipeline (#3860)
apontejaj Jul 28, 2025
f450175
deps: bump github.com/Azure/azure-sdk-for-go/sdk/azcore from 1.18.0 t…
dependabot[bot] Jul 29, 2025
7f54e8a
deps: bump golang.org/x/net from 0.41.0 to 0.42.0 (#3798)
dependabot[bot] Jul 29, 2025
96567e8
deps: bump github.com/spf13/pflag from 1.0.6 to 1.0.7 (#3864)
dependabot[bot] Jul 29, 2025
c911c91
deps: bump google.golang.org/grpc from 1.73.0 to 1.74.2 (#3853)
dependabot[bot] Jul 29, 2025
4934430
ci: build cns in release test pipeline (#3869)
camrynl Jul 29, 2025
e83458f
feat: add azure iptables monitor binary and makefile changes (#3779)
QxBytes Jul 30, 2025
3c16a83
Update base dockerfile images (#3876)
pjohnst5 Jul 30, 2025
1c7ecab
ci: remove windows2019 from release test pipeline (#3870)
camrynl Jul 31, 2025
baca11d
deps: bump github.com/Azure/azure-sdk-for-go/sdk/azcore from 1.18.1 t…
dependabot[bot] Aug 1, 2025
2f5b584
chore: add label and remove reviewers (#3828)
jpayne3506 Aug 1, 2025
7bee3ab
deps: bump sigs.k8s.io/yaml from 1.5.0 to 1.6.0 (#3863)
dependabot[bot] Aug 1, 2025
d890414
ci: Future proof GitHub merge queue branch trigger for release/* bran…
Copilot Aug 1, 2025
d11bef8
deps: bump github.com/prometheus/client_golang from 1.22.0 to 1.23.0 …
dependabot[bot] Aug 1, 2025
32ebdef
chore(deps): bump golang.org/x/oauth2 from 0.21.0 to 0.27.0 in /azure…
dependabot[bot] Aug 1, 2025
e78a12d
chore: add more owners to bpf-prog (#3920)
santhoshmprabhu Aug 12, 2025
19bbe1b
feat: rename iptables block binary to azure-block-iptables (#3913)
santhoshmprabhu Aug 12, 2025
80a5d1e
revert: Revert Manual NPM Linux Dockerfile Package Installations (lib…
rayaisaiah Aug 13, 2025
2f0ef1a
feat: Add App Gateway Subnet ID as a field to the Overlay Extension C…
nairashu Aug 14, 2025
c3f5d41
feat: include iptables block binary in iptables monitor image (#3945)
santhoshmprabhu Aug 21, 2025
c0d6cad
deps: bump github.com/go-viper/mapstructure/v2 from 2.3.0 to 2.4.0 in…
dependabot[bot] Aug 25, 2025
efe9e99
deps: bump github.com/Azure/azure-sdk-for-go/sdk/azcore from 1.18.2 t…
dependabot[bot] Aug 25, 2025
1828f82
deps: bump google.golang.org/grpc from 1.74.2 to 1.75.0 (#3950)
dependabot[bot] Aug 25, 2025
d521e28
fix: remove veth pair in vm ns if previously leaked and fix validatio…
QxBytes Aug 25, 2025
7492698
deps: bump github.com/stretchr/testify from 1.10.0 to 1.11.0 (#3961)
dependabot[bot] Aug 25, 2025
b4b17a3
CNS API contracts for NUMA-Aware Pods (#3825)
pjohnst5 Aug 25, 2025
30b3163
deps: bump google.golang.org/protobuf from 1.36.7 to 1.36.8 (#3956)
dependabot[bot] Aug 26, 2025
b08e62b
deps: bump google.golang.org/protobuf from 1.36.7 to 1.36.8 in /build…
dependabot[bot] Aug 26, 2025
c48c3a8
feat: update iptables monitor with ipv6 and bpf map reading capabilit…
QxBytes Aug 27, 2025
529c70c
feat: remove jump to swift-postrouting in iptables legacy as rules al…
QxBytes Aug 28, 2025
ee22098
deps: bump github.com/stretchr/testify from 1.11.0 to 1.11.1 (#3970)
dependabot[bot] Aug 28, 2025
b600499
deps: bump github.com/spf13/pflag from 1.0.7 to 1.0.9 (#3981)
dependabot[bot] Sep 2, 2025
dbc0aef
[feat] synchronize NC version with NMA programmed goal state (#3790)
NihaNallappagari Sep 3, 2025
bf168c5
[ci] fix: skip failing k8se2e dualstack test (#3993)
jpayne3506 Sep 3, 2025
84f9c0b
fix: add code generation to run-unit-tests.stages (#3985)
santhoshmprabhu Sep 4, 2025
8ab6345
deps: bump github.com/stretchr/testify from 1.10.0 to 1.11.1 in /azur…
dependabot[bot] Sep 4, 2025
f6dcffc
feat: add terminateOnSuccess flag to iptables monitor (#3995)
QxBytes Sep 5, 2025
d39c8ef
deps: bump github.com/spf13/cobra from 1.9.1 to 1.10.1 in /dropgz (#3…
dependabot[bot] Sep 5, 2025
1799f37
deps: bump github.com/spf13/pflag from 1.0.7 to 1.0.10 (#3994)
dependabot[bot] Sep 8, 2025
268103e
ci: add dualstack coverage to LSG-CNI pipeline (#4001)
jpayne3506 Sep 8, 2025
8d29a5f
chore: install bpf dependencies before building binaries (#4011)
santhoshmprabhu Sep 8, 2025
c1e2535
deps: bump github.com/cilium/ebpf from 0.16.0 to 0.19.0 (#3966)
dependabot[bot] Sep 9, 2025
fd30250
chore: update to go1.24 (#3912)
jpayne3506 Sep 9, 2025
5f07c1e
Chore: make dependanbot to open one PR for go dependencies update wee…
paulyufan2 Sep 9, 2025
8fcfa08
Add v2 zap logger to cns apis (#4003)
pjohnst5 Sep 10, 2025
aef87c5
deps: bump the all-go-minor-and-patch group in /azure-ipam with 2 upd…
dependabot[bot] Sep 11, 2025
f461ff4
ci: cns patch testing in release pipeline (#3914)
camrynl Sep 16, 2025
dcbaf07
feat: snat azure dns traffic to node ip in cns linux (#3930)
QxBytes Sep 24, 2025
44e19f0
feat: Populate homeAZ on nodeInfo CRD (#4009)
carlotaarvela Sep 24, 2025
ad03158
ci: add iptables block signed image (#4049)
QxBytes Sep 29, 2025
3d6c0ae
Prefix on nicv6 support (#3658)
NihaNallappagari Sep 29, 2025
19df354
Chore: update k8s.io dependencies (#4042)
paulyufan2 Oct 2, 2025
f32ccfe
ci: bump actions/setup-go from 5 to 6 (#3998)
dependabot[bot] Oct 2, 2025
e5e6456
deps: bump github.com/Azure/azure-container-networking from 1.7.3 to …
dependabot[bot] Oct 2, 2025
ea2c630
ci: reorganize pipeline stages (#4061)
QxBytes Oct 3, 2025
1101660
fix: cilium nightly pipeline set boringcrypto arg in build (#4063)
camrynl Oct 3, 2025
db4fddb
ci: bump actions/checkout from 4 to 5 (#3921)
dependabot[bot] Oct 8, 2025
41af225
revert: homeaz on nodeinfocrd (#4065)
carlotaarvela Oct 8, 2025
ba6bf9e
Chore: Update GO dependencies (#4064)
paulyufan2 Oct 8, 2025
5416c0a
ci: bump github/codeql-action from 3 to 4 (#4067)
dependabot[bot] Oct 9, 2025
7d4d49c
Extending the MTPNC status (#4058)
shreyashastantram Oct 13, 2025
2406ab1
ci: skip portforward in windows dualstack (#4076)
QxBytes Oct 13, 2025
cb65c53
ci: add cilium ebpf e2e overlay and podsubnet test (#4073)
QxBytes Oct 13, 2025
4f314c8
Add status to mtpnc crd (#4070)
aggarwal0009 Oct 15, 2025
88a574e
CNS Change for Subnet Overlay Expansion Job (#4074)
rejain456 Oct 21, 2025
9c8aee8
chore: update dependencies for CVEs (#4093)
paulyufan2 Oct 22, 2025
230b7bb
downgrade easyjson GO package to unblock Release build (#4084)
paulyufan2 Oct 22, 2025
c24d48d
enable dual NIC support in transparent VLAN (#4057)
mugeshsp Oct 22, 2025
33c2e68
fix: Adding delete timestamp check (#4078)
shreyashastantram Oct 22, 2025
5f4da73
Update GO security dependencies (#4096)
paulyufan2 Oct 23, 2025
9c64556
deps: bump golang.org/x/sys from 0.20.0 to 0.21.0 (#2768)
dependabot[bot] Jun 5, 2024
631c6a1
deps: bump golang.org/x/sync from 0.9.0 to 0.10.0 (#3245)
dependabot[bot] Dec 6, 2024
051afa8
create storage account.
Oct 23, 2025
9d739d9
disallow shared key access.
Oct 23, 2025
e46e84f
change pipeline template.
Oct 23, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
42 changes: 42 additions & 0 deletions .pipelines/swiftv2-long-running/pipeline.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,42 @@
trigger: none

parameters:
- name: subscriptionId
displayName: "Azure Subscription ID"
type: string
default: "37deca37-c375-4a14-b90a-043849bd2bf1"

- name: location
displayName: "Deployment Region"
type: string
default: "centraluseuap"

- name: resourceGroupName
displayName: "Resource Group Name"
type: string
default: "long-run-$(Build.BuildId)"

- name: vmSkuDefault
displayName: "VM SKU for Default Node Pool"
type: string
default: "Standard_D2s_v3"

- name: vmSkuHighNIC
displayName: "VM SKU for High NIC Node Pool"
type: string
default: "Standard_D16s_v3"

- name: serviceConnection
displayName: "Azure Service Connection"
type: string
default: "Azure Container Networking - Standalone Test Service Connection"

extends:
template: template/long-running-pipeline-template.yaml
parameters:
subscriptionId: ${{ parameters.subscriptionId }}
location: ${{ parameters.location }}
resourceGroupName: ${{ parameters.resourceGroupName }}
vmSkuDefault: ${{ parameters.vmSkuDefault }}
vmSkuHighNIC: ${{ parameters.vmSkuHighNIC }}
serviceConnection: ${{ parameters.serviceConnection }}
49 changes: 49 additions & 0 deletions .pipelines/swiftv2-long-running/scripts/create_aks.sh
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,49 @@
#!/usr/bin/env bash
set -e

SUBSCRIPTION_ID=$1
LOCATION=$2
RG=$3
VM_SKU_DEFAULT=$4
VM_SKU_HIGHNIC=$5

echo "Subscription id: $SUBSCRIPTION_ID"
echo "Resource group: $RG"
echo "Location: $LOCATION"
echo "VM SKU (default): $VM_SKU_DEFAULT"
echo "VM SKU (high-NIC): $VM_SKU_HIGHNIC"
az account set --subscription "$SUBSCRIPTION_ID"

echo "==> Creating resource group: $RG"
az group create -n "$RG" -l "$LOCATION" --output none

# Enable parallel cluster creation
create_cluster() {
local CLUSTER=$1
echo "==> Creating AKS cluster: $CLUSTER"

az aks create -g "$RG" -n "$CLUSTER" -l "$LOCATION" \
--network-plugin azure --node-count 1 \
--node-vm-size "$VM_SKU_DEFAULT" \
--enable-managed-identity --generate-ssh-keys \
--load-balancer-sku standard --yes --only-show-errors

echo "==> Adding high-NIC nodepool to $CLUSTER"
az aks nodepool add -g "$RG" -n highnic \
--cluster-name "$CLUSTER" --node-count 2 \
--node-vm-size "$VM_SKU_HIGHNIC" --mode User --only-show-errors

echo "Finished AKS cluster: $CLUSTER"
}

# Run both clusters in parallel
create_cluster "aks-cluster-a" &
pid_a=$!

create_cluster "aks-cluster-b" &
pid_b=$!

# Wait for both to finish
wait $pid_a $pid_b

echo "AKS clusters created successfully!"
63 changes: 63 additions & 0 deletions .pipelines/swiftv2-long-running/scripts/create_nsg.sh
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,63 @@
#!/usr/bin/env bash
set -e
trap 'echo "[ERROR] Failed during NSG creation." >&2' ERR

SUBSCRIPTION_ID=$1
RG=$2
LOCATION=${3:-centraluseuap}

VNET_A1="cx_vnet_a1"
NSG_NAME="${VNET_A1}-nsg"

echo "==> Creating Network Security Group: $NSG_NAME"
az network nsg create -g "$RG" -n "$NSG_NAME" -l "$LOCATION" --output none \
&& echo "NSG $NSG_NAME created."

echo "==> Adding NSG rules"

# Allow SSH from any
az network nsg rule create \
-g "$RG" \
--nsg-name "$NSG_NAME" \
-n allow-ssh \
--priority 100 \
--source-address-prefixes "*" \
--destination-port-ranges 22 \
--direction Inbound \
--access Allow \
--protocol Tcp \
--description "Allow SSH access" \
--output none \
&& echo "Rule allow-ssh created."

# Allow internal VNet traffic
az network nsg rule create \
-g "$RG" \
--nsg-name "$NSG_NAME" \
-n allow-vnet \
--priority 200 \
--source-address-prefixes VirtualNetwork \
--destination-address-prefixes VirtualNetwork \
--direction Inbound \
--access Allow \
--protocol "*" \
--description "Allow VNet internal traffic" \
--output none \
&& echo "Rule allow-vnet created."

# Allow AKS API traffic
az network nsg rule create \
-g "$RG" \
--nsg-name "$NSG_NAME" \
-n allow-aks-controlplane \
--priority 300 \
--source-address-prefixes AzureCloud \
--destination-port-ranges 443 \
--direction Inbound \
--access Allow \
--protocol Tcp \
--description "Allow AKS control plane traffic" \
--output none \
&& echo "Rule allow-aks-controlplane created."

echo "NSG '$NSG_NAME' created successfully with rules."
23 changes: 23 additions & 0 deletions .pipelines/swiftv2-long-running/scripts/create_peerings.sh
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,23 @@
#!/usr/bin/env bash
set -e
trap 'echo "[ERROR] Failed during VNet peering creation." >&2' ERR

RG=$1
VNET_A1="cx_vnet_a1"
VNET_A2="cx_vnet_a2"
VNET_A3="cx_vnet_a3"
VNET_B1="cx_vnet_b1"

peer_two_vnets() {
local rg="$1"; local v1="$2"; local v2="$3"; local name12="$4"; local name21="$5"
echo "==> Peering $v1 <-> $v2"
az network vnet peering create -g "$rg" -n "$name12" --vnet-name "$v1" --remote-vnet "$v2" --allow-vnet-access --output none \
&& echo "Created peering $name12"
az network vnet peering create -g "$rg" -n "$name21" --vnet-name "$v2" --remote-vnet "$v1" --allow-vnet-access --output none \
&& echo "Created peering $name21"
}

peer_two_vnets "$RG" "$VNET_A1" "$VNET_A2" "A1-to-A2" "A2-to-A1"
peer_two_vnets "$RG" "$VNET_A2" "$VNET_A3" "A2-to-A3" "A3-to-A2"
peer_two_vnets "$RG" "$VNET_A1" "$VNET_A3" "A1-to-A3" "A3-to-A1"
echo "VNet peerings created successfully."
32 changes: 32 additions & 0 deletions .pipelines/swiftv2-long-running/scripts/create_storage.sh
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,32 @@
#!/usr/bin/env bash
set -e
trap 'echo "[ERROR] Failed during Storage Account creation." >&2' ERR

SUBSCRIPTION_ID=$1
LOCATION=$2
RG=$3

RAND=$(openssl rand -hex 4)
SA1="sa1${RAND}"
SA2="sa2${RAND}"
API_VER="2025-06-01"

# Create storage accounts
for SA in "$SA1" "$SA2"; do
echo "==> Creating storage account $SA"
az rest --method put \
--url "https://management.azure.com/subscriptions/$SUBSCRIPTION_ID/resourceGroups/$RG/providers/Microsoft.Storage/storageAccounts/$SA?api-version=$API_VER" \
--body "{
\"location\": \"$LOCATION\",
\"sku\": { \"name\": \"Standard_LRS\" },
\"kind\": \"StorageV2\",
\"properties\": {
\"minimumTlsVersion\": \"TLS1_2\",
\"allowBlobPublicAccess\": false,
\"allowSharedKeyAccess\": false
}
}" \
&& echo "Storage account $SA created successfully."
done

echo "All storage accounts created successfully."
53 changes: 53 additions & 0 deletions .pipelines/swiftv2-long-running/scripts/create_vnets.sh
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,53 @@
#!/usr/bin/env bash
set -e
trap 'echo "[ERROR] Failed while creating VNets or subnets. Check Azure CLI logs above." >&2' ERR

SUBSCRIPTION_ID=$1
LOCATION=$2
RG=$3

az account set --subscription "$SUBSCRIPTION_ID"

# VNets and subnets
VNET_A1="cx_vnet_a1"
VNET_A2="cx_vnet_a2"
VNET_A3="cx_vnet_a3"
VNET_B1="cx_vnet_b1"

A1_S1="10.10.1.0/24"
Copy link
Member

@prmathur-microsoft prmathur-microsoft Oct 21, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Why are these hardcoded.

Copy link
Contributor

@pjohnst5 pjohnst5 Oct 22, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think they would need to be anyways, what's the alternative?

A1_S2="10.10.2.0/24"
A1_PE="10.10.100.0/24"

A2_MAIN="10.11.1.0/24"
A2_PE="10.11.100.0/24"

A3_MAIN="10.12.1.0/24"
A3_PE="10.12.100.0/24"

B1_MAIN="10.20.1.0/24"

# A1
az network vnet create -g "$RG" -n "$VNET_A1" --address-prefix 10.10.0.0/16 --subnet-name s1 --subnet-prefix "$A1_S1" -l "$LOCATION" --output none \
&& echo "Created $VNET_A1 with subnet s1"
az network vnet subnet create -g "$RG" --vnet-name "$VNET_A1" -n s2 --address-prefix "$A1_S2" --output none \
&& echo "Created $VNET_A1 with subnet s2"
az network vnet subnet create -g "$RG" --vnet-name "$VNET_A1" -n pe --address-prefix "$A1_PE" --output none \
&& echo "Created $VNET_A1 with subnet pe"

# A2
az network vnet create -g "$RG" -n "$VNET_A2" --address-prefix 10.11.0.0/16 --subnet-name s-A2 --subnet-prefix "$A2_MAIN" -l "$LOCATION" --output none \
&& echo "Created $VNET_A2 with subnet s-A2"
az network vnet subnet create -g "$RG" --vnet-name "$VNET_A2" -n pe --address-prefix "$A2_PE" --output none \
&& echo "Created $VNET_A2 with subnet pe"

# A3
az network vnet create -g "$RG" -n "$VNET_A3" --address-prefix 10.12.0.0/16 --subnet-name s-A3 --subnet-prefix "$A3_MAIN" -l "$LOCATION" --output none \
&& echo "Created $VNET_A3 with subnet s-A3"
az network vnet subnet create -g "$RG" --vnet-name "$VNET_A3" -n pe --address-prefix "$A3_PE" --output none \
&& echo "Created $VNET_A3 with subnet pe"

# B1
az network vnet create -g "$RG" -n "$VNET_B1" --address-prefix 10.20.0.0/16 --subnet-name s-B1 --subnet-prefix "$B1_MAIN" -l "$LOCATION" --output none \
&& echo "Created $VNET_B1 with subnet s-B1"

echo "All VNets and subnets created successfully."
125 changes: 125 additions & 0 deletions .pipelines/swiftv2-long-running/template/long-running-pipeline-template.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,125 @@
parameters:
- name: subscriptionId
type: string
- name: location
type: string
- name: resourceGroupName
type: string
- name: vmSkuDefault
type: string
- name: vmSkuHighNIC
type: string
- name: serviceConnection
type: string

stages:
- stage: AKSClusterAndNetworking
displayName: "Stage: AKS Cluster and Networking Setup"
jobs:
# ------------------------------------------------------------
# Job 1: Create AKS Cluster
# ------------------------------------------------------------
- job: Create_AKS
displayName: "Create AKS Clusters"
pool:
vmImage: ubuntu-latest
steps:
- checkout: self
- task: AzureCLI@2
displayName: "Run create_aks.sh"
inputs:
azureSubscription: ${{ parameters.serviceConnection }}
scriptType: bash
scriptLocation: scriptPath
scriptPath: ".pipelines/swiftv2-long-running/scripts/create_aks.sh"
arguments: >
${{ parameters.subscriptionId }}
${{ parameters.location }}
${{ parameters.resourceGroupName }}
${{ parameters.vmSkuDefault }}
${{ parameters.vmSkuHighNIC }}

# ------------------------------------------------------------
# Job 2: Create VNets
# ------------------------------------------------------------
- job: Create_VNets
displayName: "Create VNets"
dependsOn: Create_AKS
pool:
vmImage: ubuntu-latest
steps:
- checkout: self
- task: AzureCLI@2
displayName: "Run create_vnets.sh"
inputs:
azureSubscription: ${{ parameters.serviceConnection }}
scriptType: bash
scriptLocation: scriptPath
scriptPath: ".pipelines/swiftv2-long-running/scripts/create_vnets.sh"
arguments: >
${{ parameters.subscriptionId }}
${{ parameters.location }}
${{ parameters.resourceGroupName }}

# ------------------------------------------------------------
# Job 3: Create Peerings
# ------------------------------------------------------------
- job: Create_Peerings
displayName: "Create Peerings"
dependsOn: Create_VNets
pool:
vmImage: ubuntu-latest
steps:
- checkout: self
- task: AzureCLI@2
displayName: "Run create_peerings.sh"
inputs:
azureSubscription: ${{ parameters.serviceConnection }}
scriptType: bash
scriptLocation: scriptPath
scriptPath: ".pipelines/swiftv2-long-running/scripts/create_peerings.sh"
arguments: >
${{ parameters.resourceGroupName }}

# ------------------------------------------------------------
# Job 4: Create Storage
# ------------------------------------------------------------
- job: Create_Storage
displayName: "Create Storage"
dependsOn: Create_AKS
pool:
vmImage: ubuntu-latest
steps:
- checkout: self
- task: AzureCLI@2
displayName: "Run create_storage.sh"
inputs:
azureSubscription: ${{ parameters.serviceConnection }}
scriptType: bash
scriptLocation: scriptPath
scriptPath: ".pipelines/swiftv2-long-running/scripts/create_storage.sh"
arguments: >
${{ parameters.subscriptionId }}
${{ parameters.location }}
${{ parameters.resourceGroupName }}

# ------------------------------------------------------------
# Job 5: Create NSG
# ------------------------------------------------------------
- job: Create_NSG
displayName: "Create Network Security Groups"
dependsOn: Create_VNets
pool:
vmImage: ubuntu-latest
steps:
- checkout: self
- task: AzureCLI@2
displayName: "Run create_nsg.sh"
inputs:
azureSubscription: ${{ parameters.serviceConnection }}
scriptType: bash
scriptLocation: scriptPath
scriptPath: ".pipelines/swiftv2-long-running/scripts/create_nsg.sh"
arguments: >
${{ parameters.subscriptionId }}
${{ parameters.resourceGroupName }}
Loading