From 51052ac466bd47214b6fa4e61b9fa6f7c16d4215 Mon Sep 17 00:00:00 2001 From: Francesco Furlan Date: Thu, 12 Dec 2024 12:38:21 +0100 Subject: [PATCH 1/3] feat(shield): allow ebpf on gke autopilot --- charts/shield/templates/host/daemonset.yaml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/charts/shield/templates/host/daemonset.yaml b/charts/shield/templates/host/daemonset.yaml index 6d9f6f08b..103f2b2aa 100644 --- a/charts/shield/templates/host/daemonset.yaml +++ b/charts/shield/templates/host/daemonset.yaml @@ -123,10 +123,10 @@ spec: - name: SYSDIG_BPF_PROBE value: {{- end }} - {{- if and (include "host.driver.is_universal_ebpf" .) (not (include "common.cluster_type.is_gke_autopilot" .)) }} + {{- if (include "host.driver.is_universal_ebpf" .) }} - name: SYSDIG_AGENT_DRIVER value: universal_ebpf - {{- else if and (include "host.driver.is_legacy_ebpf" .) (not (include "common.cluster_type.is_gke_autopilot" .)) }} + {{- else if (include "host.driver.is_legacy_ebpf" .) }} - name: SYSDIG_AGENT_DRIVER value: legacy_ebpf {{- end }} From 615a6c5e951f192110a0dcd16e7057b88323c677 Mon Sep 17 00:00:00 2001 From: Francesco Furlan Date: Thu, 12 Dec 2024 12:41:17 +0100 Subject: [PATCH 2/3] chore(shield): bump --- charts/shield/Chart.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/charts/shield/Chart.yaml b/charts/shield/Chart.yaml index 90966c6c3..8653d3f75 100644 --- a/charts/shield/Chart.yaml +++ b/charts/shield/Chart.yaml @@ -13,5 +13,5 @@ maintainers: - name: mavimo email: marcovito.moscaritolo@sysdig.com type: application -version: 0.6.4 +version: 0.6.5 appVersion: "1.0.0" From 6da54429581ab5a1107b45ab6e69e02d830eb533 Mon Sep 17 00:00:00 2001 From: Francesco Furlan Date: Mon, 20 Jan 2025 14:42:36 +0100 Subject: [PATCH 3/3] chore(shield): remove /root/.sysdig on gke autopilot and restore legacy_ebpf check for autopilot --- charts/shield/templates/host/daemonset.yaml | 8 +------- 1 file changed, 1 insertion(+), 7 deletions(-) diff --git a/charts/shield/templates/host/daemonset.yaml b/charts/shield/templates/host/daemonset.yaml index 103f2b2aa..86d112fc9 100644 --- a/charts/shield/templates/host/daemonset.yaml +++ b/charts/shield/templates/host/daemonset.yaml @@ -98,8 +98,6 @@ spec: - mountPath: /host/etc/os-release name: osrel readOnly: true - - mountPath: /root/.sysdig - name: bpf-probes {{- end }} {{- end }} containers: @@ -126,7 +124,7 @@ spec: {{- if (include "host.driver.is_universal_ebpf" .) }} - name: SYSDIG_AGENT_DRIVER value: universal_ebpf - {{- else if (include "host.driver.is_legacy_ebpf" .) }} + {{- else if and (include "host.driver.is_legacy_ebpf" .) (not (include "common.cluster_type.is_gke_autopilot" .)) }} - name: SYSDIG_AGENT_DRIVER value: legacy_ebpf {{- end }} @@ -210,8 +208,6 @@ spec: readOnly: true - mountPath: /host/var/run/containerd/containerd.sock name: containerdsock-vol - - mountPath: /root/.sysdig - name: bpf-probes {{- end }} {{- if (include "host.need_host_root" .) }} @@ -309,8 +305,6 @@ spec: - name: osrel hostPath: path: /etc/os-release - - name: bpf-probes - emptyDir: {} - name: containerdsock-vol hostPath: path: /var/run/containerd/containerd.sock