Skip to content

Bump versions (some core components) #1167

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
Zj12248 wants to merge 17 commits into
base: main
Choose a base branch
from
Open

Bump versions (some core components) #1167

Zj12248 wants to merge 17 commits into from

Conversation

@Zj12248
Copy link
Collaborator

@Zj12248 Zj12248 commented Dec 6, 2025
edited
Loading

Summary

Bump versions of dependencies and migration of iptables to nftables for cluster setup.

Implementation Notes ⚒️

Binaries bumped:
Gvisor

  • containerd-shim-runsc-v1 (release-20251020)

Firecracker (github.com/vhive-serverless/firecracker-containerd v0.0.0-20251220120737-a3dabeb332c7)

  • containerd-shim-aws-firecracker (20122025)
  • firecracker-containerd (20122025)

Dependencies bumped:

  • Go: 1.22.9 → 1.25.3
  • Kubernetes: 1.29.1 → 1.33.5
  • Knative: 1.13.1 → 1.19.6
  • Istio: 1.20.2 → 1.26.5
  • MetalLB: 0.14.3 → 0.14.9
  • Containerd: 1.6.18 → 1.7.27
  • Calico: 3.30.4 → 3.31.0

Enabled nftables for both kube-proxy and calico during setup.

External Dependencies 🍀

N/A

Breaking API Changes ⚠️

N/A

@Zj12248 Zj12248 self-assigned this Dec 6, 2025
@JooyoungPark73
Copy link
Contributor

JooyoungPark73 commented Dec 11, 2025

Please resolve Unchanged files with check annotations

@JooyoungPark73
Copy link
Contributor

JooyoungPark73 commented Dec 12, 2025

Also change the title from migrate from iptables to nftables to bump up versions (some core components).

@Zj12248 Zj12248 changed the title Migrate cluster from iptables to nftables Bump versions (some core components) Dec 18, 2025
@JooyoungPark73 JooyoungPark73 mentioned this pull request Dec 18, 2025
Open
@Zj12248 Zj12248 force-pushed the migrate-iptables-to-nftables branch 2 times, most recently from 779db53 to f26b0b8 Compare December 21, 2025 13:42
@Zj12248
bump knative to 1.19.6
94a588d 
Signed-off-by: Zj12248 <minezijun@gmail.com>
@Zj12248
bump istio to 1.26.6
cca48b5 
Signed-off-by: Zj12248 <minezijun@gmail.com>
@Zj12248
bump metallb to 0.14.9
8273f05 
Signed-off-by: Zj12248 <minezijun@gmail.com>
@Zj12248
bump kubernetes to 1.33.5
1c10053 
Signed-off-by: Zj12248 <minezijun@gmail.com>
@Zj12248
bump calico to 3.31.0
d16612e 
Signed-off-by: Zj12248 <minezijun@gmail.com>
@Zj12248
bump containerd to 1.7.27
7555db4 
Signed-off-by: Zj12248 <minezijun@gmail.com>
@Zj12248 Zj12248 force-pushed the migrate-iptables-to-nftables branch from f26b0b8 to 76259e9 Compare December 21, 2025 13:51
@Zj12248
bump go to 1.25.3, bumpfirecracker-containerd
19c56bb 
Signed-off-by: Zj12248 <minezijun@gmail.com>
@Zj12248
bump golangci for compatability with go 1.25
5f541d3 
Signed-off-by: Zj12248 <minezijun@gmail.com>
@Zj12248
refactor for compatability with istio 1.26
5855eca 
Signed-off-by: Zj12248 <minezijun@gmail.com>
@Zj12248
enable nftables on cluster setup for calico, kube-proxy
b90b27d 
Signed-off-by: Zj12248 <minezijun@gmail.com>
@Zj12248
bump containerd-firecracker and gvisor binaries
8ac5558 
Signed-off-by: Zj12248 <minezijun@gmail.com>
@Zj12248 Zj12248 force-pushed the migrate-iptables-to-nftables branch from 76259e9 to 42f05a2 Compare December 21, 2025 14:02
Zj12248 and others added 6 commits December 21, 2025 22:03
@Zj12248
Fix format string to comply with stricter checks in golangci-lint
cab775a 
Signed-off-by: Zj12248 <minezijun@gmail.com>
@Zj12248
update Go installation version in quickstart guide
97b1c57 
Signed-off-by: Zj12248 <85884242+Zj12248@users.noreply.github.com>
Signed-off-by: Zj12248 <minezijun@gmail.com>
@Zj12248
bump firecracker-containerd binaries
4735e9d 
Signed-off-by: Zj12248 <minezijun@gmail.com>
@dependabot @Zj12248
Bump github.com/opencontainers/runc from 1.1.14 to 1.2.8
0a6785f 
Bumps [github.com/opencontainers/runc](https://github.com/opencontainers/runc) from 1.1.14 to 1.2.8.
- [Release notes](https://github.com/opencontainers/runc/releases)
- [Changelog](https://github.com/opencontainers/runc/blob/v1.2.8/CHANGELOG.md)
- [Commits](opencontainers/runc@v1.1.14...v1.2.8)

---
updated-dependencies:
- dependency-name: github.com/opencontainers/runc
  dependency-version: 1.2.8
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot @Zj12248
Bump github.com/opencontainers/selinux from 1.10.1 to 1.13.0
faae3f4 
Bumps [github.com/opencontainers/selinux](https://github.com/opencontainers/selinux) from 1.10.1 to 1.13.0.
- [Release notes](https://github.com/opencontainers/selinux/releases)
- [Commits](opencontainers/selinux@v1.10.1...v1.13.0)

---
updated-dependencies:
- dependency-name: github.com/opencontainers/selinux
  dependency-version: 1.13.0
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@Zj12248
bump firecracker-containerd reference and go mod tidy
c6297dd 
Signed-off-by: Zj12248 <minezijun@gmail.com>
@Zj12248 Zj12248 force-pushed the migrate-iptables-to-nftables branch from 42f05a2 to c6297dd Compare December 21, 2025 14:05
@leokondrashov
Copy link
Contributor

leokondrashov commented Dec 29, 2025

@Zj12248 please either fix all of the linter errors (vHive build tests) or revert the golangci version so it won't flag them here and fix them in a separate PR.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@JooyoungPark73 JooyoungPark73 Awaiting requested review from JooyoungPark73

At least 1 approving review is required to merge this pull request.

Assignees

@Zj12248 Zj12248

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@Zj12248 @JooyoungPark73 @leokondrashov