Skip to content

policy/correlation: Fix PolicyMatchL3Proto case #35680

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Nov 4, 2024
Merged

policy/correlation: Fix PolicyMatchL3Proto case #35680

merged 1 commit into from
Nov 4, 2024

Conversation

gandro
Copy link
Member

@gandro gandro commented Oct 31, 2024

This commit fixes a bug in the policy correlation code where policies that only match a L3 identity and a L4 protocol (without a port) were previously not correlated.

This commit was manually tested in addition to the added unit test.

Ref: #35416 (fixes this on main, but v1.16 needs a different fix)

@gandro
policy/correlation: Fix PolicyMatchL3Proto case
3e61aa7 
This commit fixes a bug in the policy correlation code where policies
that only match a L3 identity and a L4 protocol (without a port) were
previously not correlated.

This commit was manually tested in addition to the added unit test.

Signed-off-by: Sebastian Wicki <sebastian@isovalent.com>
@gandro gandro added release-note/bug This PR fixes an issue in a previous release of Cilium. sig/hubble labels Oct 31, 2024
@gandro gandro requested a review from a team as a code owner October 31, 2024 15:07
@gandro gandro requested a review from doniacld October 31, 2024 15:07
@github-actions github-actions bot added the sig/policy Impacts whether traffic is allowed or denied based on user-defined policies. label Oct 31, 2024
This was referenced Oct 31, 2024
Merged
Closed
@gandro
Copy link
Member Author

gandro commented Oct 31, 2024

/test

@maintainer-s-little-helper maintainer-s-little-helper bot added the ready-to-merge This PR has passed all tests and received consensus from code owners to merge. label Nov 4, 2024
@gandro gandro added this pull request to the merge queue Nov 4, 2024
Merged via the queue into cilium:main with commit 4fe7b3f Nov 4, 2024
70 checks passed
@gandro gandro deleted the pr/gandro/fix-policy-correlation-l3-proto branch November 4, 2024 15:52
@gandro gandro added the backport-done/1.16 The backport for Cilium 1.16.x for this PR is done. label Nov 4, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
1 more reviewer

@doniacld doniacld doniacld approved these changes

Reviewers whose approvals may not affect merge requirements
Assignees
No one assigned
Labels
backport-done/1.16 The backport for Cilium 1.16.x for this PR is done. ready-to-merge This PR has passed all tests and received consensus from code owners to merge. release-note/bug This PR fixes an issue in a previous release of Cilium. sig/policy Impacts whether traffic is allowed or denied based on user-defined policies.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@gandro @doniacld