Skip to content

Add pod cache to gardener-node-agent only when nodeName is present #11964

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Apr 29, 2025
Merged

Add pod cache to gardener-node-agent only when nodeName is present #11964

merged 1 commit into from
Apr 29, 2025

Conversation

shafeeqes
Copy link
Contributor

@shafeeqes shafeeqes commented Apr 29, 2025
edited
Loading

How to categorize this PR?

/kind bug

What this PR does / why we need it:
This PR adapts gardener-node-agent to add a cache for pods only if the nodeName is present. We use the nodeName in the node-agent-authorizer webhook to ensure that pod list requests for only the same node are allowed.
During the startup, nodeName can be empty in some providers (eg: aws), and starting the cache with hostName can fail since the webhook doesn't know about this hostName.

We restart gardener-node-agent as soon as it identifies it's node for the first time, ref, the cache will be added during that time.

Which issue(s) this PR fixes:
Part of #10219

Special notes for your reviewer:
Introduced with #11718
/cc @acumino @oliver-goetz

Release note:

NONE

@gardener-prow gardener-prow bot requested review from acumino and oliver-goetz April 29, 2025 09:51
@gardener-prow gardener-prow bot added kind/bug Bug cla: yes Indicates the PR's author has signed the cla-assistant.io CLA. size/M Denotes a PR that changes 30-99 lines, ignoring generated files. labels Apr 29, 2025
acumino
acumino reviewed Apr 29, 2025
View reviewed changes
Copy link
Member

@acumino acumino left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

/lgtm
/approve

@gardener-prow gardener-prow bot added the lgtm Indicates that a PR is ready to be merged. label Apr 29, 2025
@gardener-prow Gardener Prow
Copy link
Contributor

gardener-prow bot commented Apr 29, 2025

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: acumino

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@gardener-prow Gardener Prow
Copy link
Contributor

gardener-prow bot commented Apr 29, 2025

LGTM label has been added.

Git tree hash: 7d1edbd4958061aa96eafcf3b9c49d0eff946355

@gardener-prow gardener-prow bot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Apr 29, 2025
@acumino acumino mentioned this pull request Apr 29, 2025
Closed
40 tasks
@shafeeqes shafeeqes force-pushed the inplace-updates-fix branch from 1b8f70a to 0e58190 Compare April 29, 2025 10:32
@gardener-prow gardener-prow bot removed the lgtm Indicates that a PR is ready to be merged. label Apr 29, 2025
@gardener-prow gardener-prow bot requested a review from acumino April 29, 2025 10:32
@acumino
Copy link
Member

acumino commented Apr 29, 2025

/lgtm
/retest

@gardener-prow gardener-prow bot added the lgtm Indicates that a PR is ready to be merged. label Apr 29, 2025
@gardener-prow Gardener Prow
Copy link
Contributor

gardener-prow bot commented Apr 29, 2025

LGTM label has been added.

Git tree hash: d3856df6adf356647a407b61febc47e6bd12deae

@shafeeqes
Copy link
Contributor Author

/test pull-gardener-e2e-kind-operator-seed

@gardener-prow gardener-prow bot merged commit 1a90486 into gardener:master Apr 29, 2025
19 checks passed
@acumino acumino deleted the inplace-updates-fix branch April 29, 2025 14:56
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@oliver-goetz oliver-goetz Awaiting requested review from oliver-goetz

@acumino acumino Awaiting requested review from acumino

Assignees

@acumino acumino

Labels
approved Indicates a PR has been approved by an approver from all required OWNERS files. cla: yes Indicates the PR's author has signed the cla-assistant.io CLA. kind/bug Bug lgtm Indicates that a PR is ready to be merged. size/M Denotes a PR that changes 30-99 lines, ignoring generated files.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@shafeeqes @acumino