New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Automated cherry pick of #114923: Do not leak cross namespace pod metadata in preemption events #114946
Automated cherry pick of #114923: Do not leak cross namespace pod metadata in preemption events #114946
Conversation
@mimowo: This issue is currently awaiting triage. If a SIG or subproject determines this is a relevant issue, they will accept it by applying the The Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
/assign @alculquicondor |
It's a security fix, worths cherry pick. |
The question remains how long to the past we want to cherry-pick it @Huang-Wei @alculquicondor @kerthcet. It was in 1.23-1.26 in the same file, so it should be easy to cherry-pick:
It was also in 1.19-1.22, but in a different file: kubernetes/pkg/scheduler/framework/plugins/defaultpreemption/default_preemption.go Line 603 in 8dd52e6
I could not find it prior to 1.19. |
FYI: releases prior to v1.23 are out of support now. see https://kubernetes.io/releases/patch-releases/#detailed-release-history-for-active-branches |
Let's port it back to all supported versions, i.e., 1.24 and 1.25 additionally. /approve |
@Huang-Wei no need for 1.23? its end of life is 2023-02-28. |
/lgtm cancel |
@alculquicondor @Huang-Wei I have cherry-picked the new master commit (to not include the scheduler name in the message name) onto this branch. PTAL. |
/lgtm |
LGTM label has been added. Git tree hash: d54d584a5a27c71cea4c1e47ce9c57ff04e5e552
|
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: alculquicondor, Huang-Wei, mimowo The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
We need a cherry-pick for the releases that haven't reached EoL. |
Prepared:
|
/kind bug |
/lgtm |
Cherry pick of #114923 on release-1.26.
#114923: Do not leak cross namespace pod metadata in preemption events
For details on the cherry pick process, see the cherry pick requests page.