Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Syncing latest changes from upstream devel for ceph-csi #470

Merged
merged 2 commits into from
Feb 17, 2025
Merged

Syncing latest changes from upstream devel for ceph-csi #470

merged 2 commits into from
Feb 17, 2025

Conversation

df-build-team
Copy link

PR containing the latest commits from upstream devel branch

dependabot bot and others added 2 commits February 17, 2025 07:15
@dependabot @mergify
rebase: bump k8s.io/kubernetes from 1.32.1 to 1.32.2
229603a 
Bumps [k8s.io/kubernetes](https://github.com/kubernetes/kubernetes) from 1.32.1 to 1.32.2.
- [Release notes](https://github.com/kubernetes/kubernetes/releases)
- [Commits](kubernetes/kubernetes@v1.32.1...v1.32.2)

---
updated-dependencies:
- dependency-name: k8s.io/kubernetes
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@nixpanic @mergify
rebase: update remaining kubernetes.io packages to v0.32.2
75c70e1 
Signed-off-by: Niels de Vos <ndevos@ibm.com>
@df-build-team df-build-team requested a review from a team February 17, 2025 08:06
@nixpanic
Copy link
Member

/approve
/lgtm

@openshift-ci openshift-ci bot added the lgtm Code looks good label Feb 17, 2025
@openshift-ci OpenShift CI
Copy link

openshift-ci bot commented Feb 17, 2025

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: df-build-team, nixpanic

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@openshift-ci openshift-ci bot added the approved Its a good idea label Feb 17, 2025
@nixpanic
Copy link
Member

/cherry-pick release-4.19 release-4.18 release-4.17

@openshift-cherrypick-robot
Copy link

@nixpanic: once the present PR merges, I will cherry-pick it on top of release-4.19 in a new PR and assign it to you.

In response to this:

/cherry-pick release-4.19 release-4.18 release-4.17

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

@openshift-merge-bot openshift-merge-bot bot merged commit 7440938 into devel Feb 17, 2025
19 checks passed
@openshift-cherrypick-robot
Copy link

@nixpanic: new pull request created: #471

In response to this:

/cherry-pick release-4.19 release-4.18 release-4.17

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

@openshift-cherrypick-robot openshift-cherrypick-robot mentioned this pull request Feb 17, 2025
Merged
@Nikhil-Ladha
Copy link
Member

/cherry-pick release-4.19 release-4.18 release-4.17

Why are we cherry-picking these commits to release branches?
The release branches get sync PRs when the DS build passes the CI, we should never be doing this! If we do so, we are basically merging untested commits to release branches.

Also, why are we backporting to older branches too? Those are already released and we should only cherry-pick the bug fixes to them not the master sync commits.

@nixpanic
Copy link
Member

/cherry-pick release-4.19 release-4.18 release-4.17

Why are we cherry-picking these commits to release branches? The release branches get sync PRs when the DS build passes the CI, we should never be doing this! If we do so, we are basically merging untested commits to release branches.

Also, why are we backporting to older branches too? Those are already released and we should only cherry-pick the bug fixes to them not the master sync commits.

@Nikhil-Ladha , in this case, the PR only contains 2 commits that address a CVE. We need to get them included in the branches where fixes for the CVE were requested. Some testing is done with GitHub actions, intended to prevent issues and regressions.

@Nikhil-Ladha
Copy link
Member

@Nikhil-Ladha , in this case, the PR only contains 2 commits that address a CVE. We need to get them included in the branches where fixes for the CVE were requested. Some testing is done with GitHub actions, intended to prevent issues and regressions.

That's fine, but 4.19 is an active development branch and we shouldn't be cherry-picking to it, unless the feature freeze has happened. The CVE fix would have ultimately gone into the branch in sometime when the stable build happens.

@nixpanic
Copy link
Member

@Nikhil-Ladha , in this case, the PR only contains 2 commits that address a CVE. We need to get them included in the branches where fixes for the CVE were requested. Some testing is done with GitHub actions, intended to prevent issues and regressions.

That's fine, but 4.19 is an active development branch and we shouldn't be cherry-picking to it, unless the feature freeze has happened. The CVE fix would have ultimately gone into the branch in sometime when the stable build happens.

It is still required that fixes land in release-4.19 before release-4.18 to prevent potential misses. Eventual consistency is nice, but in this case there needs to be a guaranteed order (backported to release-4.18 in #472).

If this caused a problem of some kind for the automation of sync-PRs, I'm sorry! Hopefully you understand my intentions too 😃

@Rakshith-R Rakshith-R mentioned this pull request Feb 25, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@nixpanic nixpanic

Labels
approved Its a good idea lgtm Code looks good
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@df-build-team @nixpanic @openshift-cherrypick-robot @Nikhil-Ladha