Skip to content

Release v0.7

Pre-release
Pre-release
Compare
Choose a tag to compare
@XiaoningDing XiaoningDing released this 02 Feb 23:16
· 120 commits to dev-next since this release
v0.7
87dae68
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.

This release adds the support for Kubernetes network policy and fixes some bugs.

Feature enhancements to support Kubernetes network policy:

  • Added operators to list/watch network policy objects, pod objects and namespace objects.
  • Updated operator logics to calculate eBPF map entries for the CRUD events of above objects.
  • Updated Mizar daemon to receive eBPF map entry changes and update maps.
  • Added eBPF maps to support O(1) policy enforcement, including maps for policies, CIDRs, excepted CIDRs, etc.
  • Updated Mizar transit XDP to enforce ingress rules.
  • Updated Mizar transit agent to enforce egress rules.
  • Added connection tracking module on XDP layer.

Bug fixes:

  • Support configurable network interface names (issue #251)
  • Fix Mizar CNI support for VERSION cmd (issue #403)
  • Fix Mizar CNI bug in handling network namespace path (issue #404)
Assets 2
Loading