Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Use custom SELinux launcher type for virt-launcher #578

Merged
merged 1 commit into from
Jun 15, 2020
Merged

Use custom SELinux launcher type for virt-launcher #578

merged 1 commit into from
Jun 15, 2020

Conversation

stu-gott
Copy link
Member 

Use SELinux type defined by KubeVirt project for virt-launcher.

@kubevirt-bot kubevirt-bot added release-note Denotes a PR that will be considered when it comes time to generate release notes. dco-signoff: yes Indicates the PR's author has DCO signed all their commits. labels May 19, 2020
@stu-gott
Copy link
Member Author

/cc @jean-edouard

@kubevirt-bot kubevirt-bot requested a review from jean-edouard May 19, 2020 18:10
jean-edouard
jean-edouard approved these changes May 19, 2020
View reviewed changes
Copy link
Contributor

@jean-edouard jean-edouard left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

/lgtm

@kubevirt-bot kubevirt-bot added the lgtm Indicates that a PR is ready to be merged. label May 19, 2020
tiraboschi
tiraboschi reviewed May 19, 2020
View reviewed changes
pkg/controller/hyperconverged/hyperconverged_controller.go Outdated
@@ -472,7 +472,7 @@ func newKubeVirtConfigForCR(cr *hcov1alpha1.HyperConverged, namespace string) *c
Data: map[string]string{
"feature-gates": "DataVolumes,SRIOV,LiveMigration,CPUManager,CPUNodeDiscovery,Sidecar",
"migrations": `{"nodeDrainTaintKey" : "node.kubernetes.io/unschedulable"}`,
"selinuxLauncherType": "spc_t",
"selinuxLauncherType": "virt_launcher.process",
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Stu, do we also have to update it on existing deployments upgraded to this code?
Please see also: #577

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yes we would. What does that entail?

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We don't want to reconcile anymore the whole configMap to preserve user set values (on feature-gates for instance) so we have to know which keys should be reconciled on upgrades.

@kubevirt-bot
Copy link
Contributor

kubevirt-bot commented Jun 7, 2020
edited
Loading

@stu-gott: The following tests failed, say /retest to rerun all failed tests:

Test name Commit Details Rerun command
pull-hyperconverged-cluster-operator-e2e-ocp-4.3 e6b837c75f072ed01eea61b04e283cd3ac915f45 link /test pull-hyperconverged-cluster-operator-e2e-ocp-4.3
pull-hyperconverged-cluster-operator-e2e-k8s-1.15.1 e6b837c75f072ed01eea61b04e283cd3ac915f45 link /test pull-hyperconverged-cluster-operator-e2e-k8s-1.15.1
pull-hyperconverged-cluster-operator-e2e-k8s-1.17.0 e6b837c75f072ed01eea61b04e283cd3ac915f45 link /test pull-hyperconverged-cluster-operator-e2e-k8s-1.17.0
pull-hyperconverged-cluster-operator-e2e-ocp-4.4 e6b837c75f072ed01eea61b04e283cd3ac915f45 link /test pull-hyperconverged-cluster-operator-e2e-ocp-4.4

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here.

@kubevirt-bot kubevirt-bot removed the lgtm Indicates that a PR is ready to be merged. label Jun 11, 2020
@stu-gott
Copy link
Member Author

@tiraboschi This PR has been rebased. It appears that changeset 27167a7 already accounts for the fact that this key needs to be re-evaluated upon update.

Is there anything further to do with this besides the one-line change?

@ovirt-infra
Copy link

All tests passed

@orenc1
Copy link
Collaborator

orenc1 commented Jun 15, 2020

/approve
/lgtm

@kubevirt-bot kubevirt-bot added the lgtm Indicates that a PR is ready to be merged. label Jun 15, 2020
@kubevirt-bot
Copy link
Contributor

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: orenc1

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@kubevirt-bot kubevirt-bot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Jun 15, 2020
@kubevirt-bot kubevirt-bot merged commit 6707ced into kubevirt:master Jun 15, 2020
@orenc1
Copy link
Collaborator

orenc1 commented Jun 15, 2020

/cherry-pick release-2.4

@kubevirt-bot
Copy link
Contributor

@orenc1: new pull request created: #638

In response to this:

/cherry-pick release-2.4

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

@kubevirt-bot kubevirt-bot mentioned this pull request Jun 15, 2020
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@tiraboschi tiraboschi tiraboschi left review comments

@jean-edouard jean-edouard jean-edouard approved these changes

@yuvalturg yuvalturg Awaiting requested review from yuvalturg

Assignees

@jean-edouard jean-edouard

@orenc1 orenc1

Labels
approved Indicates a PR has been approved by an approver from all required OWNERS files. dco-signoff: yes Indicates the PR's author has DCO signed all their commits. lgtm Indicates that a PR is ready to be merged. release-note Denotes a PR that will be considered when it comes time to generate release notes. size/XS
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
6 participants
@stu-gott @kubevirt-bot @ovirt-infra @orenc1 @jean-edouard @tiraboschi