-
Notifications
You must be signed in to change notification settings - Fork 4.7k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Clean security groups if api/ssh ips are removed from config #7561
Conversation
@zetaab: The label(s) In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
/hold wait until we have answer to kubelet port question |
8924193
to
0901130
Compare
/hold cancel |
/test pull-kops-verify-gomod |
@justinsb @mikesplain something wrong with gomod check
I have not created folder called |
f0ca5db
to
0901130
Compare
0901130
to
6278fec
Compare
/lgtm |
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: chrisz100, zetaab The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
@zetaab, I'll open a cherry pick to 1.15, should this be in 1.14 as well? |
@mikesplain yes I think it could be cherrypicked to 1.14 as well. This is basically bug fix, because now the behaviour is that rules are not cleaned. It may lead to situations that there are sg rules that should not be there (like kops is opening 0.0.0.0 by default if you do not specify anything when creating cluster, it does not help modifying rules afterwards because 0.0.0.0 is not removed at all) |
…61-origin-release-1.15 Automated cherry pick of #7561: clean security groups
fixes #7125