►
From YouTube: Technical Oversight Committee 2021/06/07
Description
Istio's Technical Oversight Committee for June 6th, 2021.
Topics:
- Discussion of breaking change on Header Case.
- Nominations for 1.11 release managers.
- Grafana inclusion
- Environments roadmap for 1.11
A
Yeah,
so
still
working
on
an
experienced
volunteer
for
the
to
build,
so
I'll
do
some
following
up
internally.
A
Brian
nate,
I
think
we
talked
about
istio
with
mcs
the
last
time.
I
don't
know
if
you've
gotten
the
reviews
you
need
yet.
I
certainly
haven't
had
time
to
do
it.
C
So
should
we
just
leave
it
at
this
point
I
mean
I've
already
got
the
approvals
I
need.
It
was
really
more
or
less
just
to
kind
of
inform
the
community,
so
we
can
probably
remove
it
from
the.
D
Yeah,
I
am
here
so
this
is
a
kind
of
similar
topic
to
the
one.
We
talked
about
a
lot
previously
with,
like
the
local
host
forwarding,
where
we
have
a
new
behavior
that
I
think
most
people
would
agree
is
better,
but
we
have
backwards
compatibility
concerns,
and
so
we
wanted
some
guidance
on
how
people
feel
about
this
one.
D
D
So
envoy
kind
of
resisted
doing
this
preserve
casing
for
a
while,
because
they
wanted
to
call
the
specs,
but
eventually
enough
enough,
users
were
broken
by
it
that
they,
they
kind
of
caved.
It
seems
like,
as
we
want
to
be
fairly
transparent.
That
may
be
a
good
idea
for
us
as
well,
so
there's
less
noticeable
changes.
When
you
know
users
drop
these
through
into
their
their
existing
applications.
D
D
You
know
the
original
casing
and
then
you
install
envoy
and
you
realize
that
it's
broken
and
then
you
fix
it
properly,
instead
of
just
changing
it
to
be
lowercase
only,
but
I'm
sure
there's
at
least
one
person
out
there.
That
will
be
broken,
so
I
guess
yeah.
The
question
is:
how
are
people
feeling
about
this?
We
can
add
an
api
fly.
That's
like
you
know
some
global
or
per
proxy
fly.
That's
like
change
the
casing
yeah.
I
just
want
to
get
some
some
feedback
on
this.
E
D
That's
a
good
question.
We
should
verify
that.
I
expect
no,
if
not
it's
probably
a
bug
or
security
bug,
because
it
you
know,
everything
in
envoy
should
be
doing
things
case,
insensitively
on
header
keys.
D
Now
it
could
affect
if
they
had
like
external
authorization,
maybe
and
that's
changed
or
if
they
have
like.
I
don't
know
a
custom,
lua
filter
or
wasn't
filter.
Maybe
that
was
doing
the
incorrect
matching
on
the
header,
but
I
think,
like
the
core
stuff,
I
mean
we
should
definitely
double
check,
but
I
would
be
surprised
if
they
did
so.
B
D
That
that's
what
I
was
describing.
G
Oh
justin,
do
you
want
to
go
ahead
and
just
just
quickly?
Yao
ming
is
doing
some
work
around
some
of
the
security
vulnerabilities
that
have
been
popping
up
around
normalization.
So
I
would
just
talk
to
him
because
he
has
a
huge
spreadsheet
now
of
sort
of
the
behavior
of
lots
of
different
back
ends
and
how
they
respond
to
different
things
and
like
what
flags
we
want
to
set.
So
if
you
haven't
talked
to
him,
I
would
talk
to
him
just
because
I
think
this
will
play
nicely
with
some
of
that
work.
That
he's
doing.
G
A
A
A
A
So
that
makes
me
a
little
bit
wary
about
trying
to
do
this.
Like
I
understand
it
has
broken
some
clients.
Have
we
received
a
lot
of
complaints
about
this.
D
E
No,
I
mean
my
complaint
is
generally
proxy
should
be
transparent
and
they
shouldn't
be
mutating
things
unless
they
have
to
whether
people
are
relying
on
this
or
not.
I
don't
know
but,
like
you
said,
they're
pretty,
you
can
assume
somebody
will
rely
on
this
behavior
either
way,
but
I
don't
understand
why
we
should
mutate
if
we
don't
have
to
coming
back
to
louie's
question
about
http
2
transport,
that's
interesting
when
it
converts
things
back
to
http1,
to
give
it
eventually
to
the
backend
louis.
A
H
A
A
Anything
that's
taking
user
traffic
from
a
browser
today
right
is
seeing
the
headers
normalized,
I
believe,
all
right.
We
can
go
and
verify
that
chrome,
any
webkit-based
browser
anything
right
is
going
to
see
normalized
lowercase
headers
right.
So
that's!
You
know
a
large
percentage
of
you
know:
user
agents
so
really
you're
talking
about
api
clients
at
this
point
that
aren't
doing
that,
but
anything
going
into
a
cdn
at
this
point
is
probably
going
to
have
this
effect.
Anything
coming
in
from
a
mobile
device
is
going
to
have
this
effect.
A
A
E
D
No
no
option
in
easter.
You
can
onboard
filter,
though
okay.
F
A
F
F
F
F
G
I'm
just
going
to
make
a
comment
that
I
I
agree
in
general
that
a
proxy
shouldn't
be
changing
the
behavior
or
the
what's
on
the
wire.
But
if
we're
making
this
look
more
and
more
like
a
security
device
and
doing
things
like
authorization
policies,
I
I
can
see
us
doing
more
normalization
so
that
the
way
that
we're
interpreting
something
that
is
impossible,
that
we
normalize
it
to
how
we
we
parsed
it
and
then
forward
that
on
to
the
back
end,.
E
So
that's
the
tricky
piece,
a
tricky
part
right
justin.
I
mean
yeah
normalization
to
account
for
policy
and
then
what's
given,
eventually
to
the
back
end
right
most
of
the
cases
it
makes
sense
to
both
of
them
are
the
same.
But
sometimes,
if
you
fundamentally
change
things,
then
the
back
end
is
not
going
to
be
happy
right,
but
h2
is
defining
things.
That's
lowercase!
So
there's
no
error
in
this
case.
It's
fine
right
headers,
but
some
other
normalization.
That
might
not
be
true.
A
A
Right
just
to
satisfy
application
back
end,
it's
not
any
different
than
a
form
of
canonicalization.
Really
it's
just
we
let
the
user
do
it
so
and
then
we,
the
third
thing
we
have
to
figure
out-
is
that
what
scope
or
grain
do
we
want
people
to
do
this.
A
Obviously,
what
envoy
did
didn't
break
the
universe
right,
because
envoy
got
a
lot
of
adoption
right.
So
there's
enough
people
complaining
that
still
probably
a
relatively
small
percentage
of
the
market
right
so
still,
probably
a
relatively
small
percentage
of
applications,
and
that
would
indicate
that
this
should
probably
not
be
a
mesh
white
behavior
right
and
it
should
be
per
workload.
Behavior.
E
A
E
F
F
D
There
were
some
comments
on
there
that
it
didn't,
but
we
figured
it
out.
It
was
some
bug
and
we
had
an
old
version
of
envoy
or
something
like
that.
F
Workload
and
gateway,
because
you
also
need
to
if
it
goes
through
a
gator.
You
need
to
be
surprised.
Yeah.
E
All
right,
I
think
this
is
fair,
louis,
let's
keep
it
at
onward
filter
for
upper
workload
basis.
For
now
I
get
like
I
guess
the
decision
where
we
say
can
we
make
this
on
by
default?
That's
a
no
right.
E
A
Down
conversion
from
h2
to
h1
is
you
know
it
is
canonicalized
and
standardized
right
if
people
were
sending
things
that
don't
need
to
be
chunked
and
transferring
coding
shunt.
That
would
go
away
if
you
have
an
application.
That's
sensitive
to
that!
Well,
good
luck!
Frankly,
but.
F
F
F
F
E
K
K
F
A
H
A
F
E
A
F
A
H
E
M
A
A
M
A
A
A
A
F
B
D
All
right,
so,
basically,
we
somewhat
shipped
rifana
like
not
really,
but
we
shipped
dashboards
and
like
a
sample
deployment
using
them
they
in
grifana,
like
eight,
I
think
they
switched
their
license
to
a
gpl
which
may
be
problematic,
there's
some
discussion
on
other
projects
which
integrate
slightly
more
with
grafana
about
whether
this
was
okay
or
not,
and
it
seemed
kind
of
unresolved.
So
I
just
wanted
to
get
confirmation
from
someone
that
we
should
do
this
so
that
I
don't
get
in
trouble
if
I
bump
the
version.
D
So
we
probably
don't
need
to
discuss
it
here,
because
I
don't
know
if
anyone
here
is
like
the
right
people
to
do
this,
but
it'd
be
great.
If
we
could
get
in
contact
with
someone
that
can
kind
of
give
us
the
green.
A
Light
steering
has
talked
about
this,
but
kevin
is
probably
the
best
informed.
A
A
B
A
H
In
me,
yes,
okay,
so
I
mean
I
know
that
we've
had
discussions
about
it
within
red
hat,
but
I'm
not
sure
whether
that
would
apply
to
issue.
I
know
that
from
our
side
we
so
we
ship
griffin
as
part
of
our
product,
and
we
looked
at
agpl
and
we
were
told
that
because
it's
a
separate
part,
that's
not
integrated
into
any
of
the
source,
it
doesn't
impact
the
source
that
we
we
ship.
So
it's
a
separate
deployment,
separate
code
base
and
everything.
H
I
F
D
We
were
broken
like,
for
example,
linkerd
is
something
similar,
but
they
actually
ship
like
a
link
or
d,
slash,
grafana
image,
which
is
just
wrapping
it
with
like.
I
think
they
just
have
a
docker
image
with
their
dashboards
in
it.
Basically,
we
literally
use
the
upstream
ground
image
directly,
so
it's
yeah.
It
could
be
a
big
stretch
if
you
can't
even
reference
any
yaml
or
something,
but.
I
D
I
B
A
So
I
we
can
take
it
up
on
friday.
I
would
be
surprised
if
there's
a
problem
given
how
all
right
we
ship
their
distribution.
Well,
we
don't
ship
it
right.
We
just
reference
it
in
its
original
form
completely.
What's
this
configuration.
A
Yeah,
I
guess
who,
whose
lawyers
do
we
want
to
be
the
lawyer
for
this
I'm
happy
to
talk
to
google's
lawyers
kevin
I
don't
know,
does
it
do
you
want
to
talk
to
red
hat
or
mirage?
You
want
to
talk
to
your
lawyers,
then.
J
Our
lawyers
are
gonna,
not
come
back.
Okay,
yeah.
I
A
H
Larry
I'll
I'll
see,
if
I
can
I'll
ask
the
lawyers
that
I
spoke
to
to
see
if
I
could
share
their
advice
with
you,
so
that
you
can
see
what
we
have
been
told
internally,
but
I
I
would
certainly
suggest
you
talk
with
google's
lawyers
about
it.
I
suspect
the
answer
is,
as
other
people
have
said,
we're
not
going
to
be
impacted
by
this,
but.
A
E
A
E
B
B
Type:
okay
shouldn't
be
too.
A
Hard,
okay
environments
roadmap.
N
Let's
see
the
right
thing,
we're
still
seeing
the
the
toc
meeting
notes,
yeah.
B
N
Your
way
down
through
it
and
tell
me
when
you
want
me
to
scroll
yeah,
keep
scrolling
down
until
the
environment's
on
is
on
the
offset.
N
All
right,
yeah
right
there
and
then
scroll
to
the
right
a
little
bit:
okay,
yeah
all
right
yeah.
So
here's
the
current
plan
for
1.11
for
environments,
we'll
start
with
revision-based
upgrades,
so
revision
based
upgrades
have
been
alpha
for
a
while.
We
hope
to
actually
try
to
get
it
to
beta
for
1.11..
Unfortunately,
we
don't
have
an
owner
for
it
to
actually
push
this
promotion
forward
and
it's
also
pending
cross
version
compatibility
testing,
which
is
listed
above
so
yeah.
N
Just
given
kind
of
you
know,
feedback
that
we've
received
from
users
actually
getting
kind
of
better
support
for
for
for
multi-merger
cross-compatibility
is
a
concern
in
order
to
make
this
beta.
N
One
of
the
other
features
around
revision
based
upgrades
that
is
currently
in
progress.
Sam
is
spearheading
the
effort
to
get
stable
revision
labels
that
were
introduced
from
1.10.
They
are
currently
experimental,
but
the
plan
is
to
get
them
into
alpha.
N
So
I
think
the
overall
you
know
goal
is
to
actually
get
this
into
beta,
but
yeah
again
we're
just
looking
for
an
owner
for
this
yeah
and
then
kind
of
going
on
down
multi-cluster
again
multi-cluster.
N
Oh
I'm
sorry.
I
skipped
that
externalist
dod.
This
is
another
one
that
needs
needs
an
owner
as
well,
but
the
you
know
the
hope
is
is,
is
you
know
if
somebody
can
actually
step
up
and
again
push
this
into
beta?
This
has
been
alpha
for
a
while,
I
believe,
over
a
year.
I
could
be
wrong,
so
we
have
kind
of
two
action
items
that
are
p0
that
are
kind
of
needing
an
owner
at
this.
At
this
time.
N
I'm
not
sure
exactly
what
that
means,
if,
if,
if
we
should
kind
of,
you
know
ask
for
more
input-
or
you
know,
put
them
down
from
p0
to
p1,
but
you
know
the
hope
would
be
to
actually
get
these
both
actually
put
into
beta
41.11,
if
possible,
going
on
down
the
list
as
well.
It's
a
multi-cluster
nate
is
going
to
be
leading
the
effort
from
taking
a
multi-cluster
from
a
beta
to
stable,
and
I
believe
he
has
an
istio
enhancement,
doc,
ready
nate.
N
If
you're
on
the
line,
I
hope
I'm
not
speaking
out
of
turn.
C
It's
it's
actually
transitioned
to
stephen
landau,
so
he's
going
to
oh.
N
Thank
you
for
that
update,
yeah,
yeah
and
then
going
in
into
helm.
V3
hello,
v3
going
from
alpha
to
beta,
was
delayed
for
1.10
there's
a
little
bit
of
rework
that
is
being
done
for
helm.
N
N
So
I'm
hoping
to
get
this
from
alpha
into
beta
for
1.11,
and
I
should
have
a
doc
pretty
soon
here
on
on
exactly
the
things
that
are
required
for
for
this
to
be
done.
I
know
that
there
has
been
some
concerns
around
some
of
the
changes
to
naming
that
are
currently
underway.
So
hopefully
we
can
mitigate
that
going
forward
and
actually
make
this
a
bit
a
bit
more
stable
and
add
more
testing
and
whatnot
and.
F
I'll
write
word
on
this
topic
that
we
have
started
to
review
the
api
surface
for
the
helm
and
there
is
a
document
that
that
is
proposing,
because
we
we
have
values
that
yaml
and
a
lot
of
you
know
the
the
options
in
in
installing
this
under
the
sum
of
all
the
options
in
the
world.
So
we
are
trying
to
move
to
better
proxy
config
parts
of
the
values
and
other
things,
and
we
need
all
groups
to
be
involved
in
this,
because
it's
a
pretty
core
api.
N
Yeah
exactly
kind
of
speaking
along,
I
guess
similar
lines:
yeah
just
mesh
conf,
big
cleanup,
prox,
config
proposals
that
are
currently
in
the
design
session
or
design
discussion
phase
right,
which
constant
is
kind
of
spearheading
that
effort.
N
And
then
you
know
kind
of
the
last
thing
that
we
are
hoping
to
actually
get
done
for
1.11
john
recently
got
gateway
injection
to
alpha.
I
think
it
was
last
week
or
just
a
few
days
ago,
and
the
plan
would
just
be
be
to
continue
this
work
and
try
to
get
it
into
beta
for
1.11..
N
E
Take
a
quick
question
here
or
actually
so
looking
at
the
operator
row
row
58
is
ostromat
is
he's
still
working
on
istio.
I
thought
he's
no
longer
no
longer
working
in
the
stu
project,
so
you
might
need
a
owner
for
that
too.
K
E
Github
get
her
nicknames
then,
and
then
that's.
F
An
operator
again,
the
api
surface
is
alpha
and
it's
too
large
to
move
to
better
and
part
of
the
discussion
about
which,
with
what
we
can
support
long
term,
because
it's
it's.
You
know
that
one
thousand
dollars.
E
No,
it
makes
sense
and
then
revision
based
upgrade.
F
E
F
A
A
We
don't
have
to
do
that.
So
if
it's,
if
it's
clearly
in
the
best
interest
of
the
project,
to
progress
this
faster,
then
we
should
make
progress
on
that
and
I
think.
E
A
E
So
can
we
add
that
louis
or
jacob,
basically
that
we
should
have
the
tags
based?
I
don't
know
if
it's
another
role,
it's
a
part
of
revision
based
upgrade.
Basically,
they
should
kind
of
move
in
lock
step.
In
my
opinion,
yep.
F
So
we
can
try
to
make
the
plug
button.
It's
it's
it's!
The
underlying
mechanism
is
similar.
I'm
fine
with
that.
I
K
J
I
Sorry,
I
was
just
going
to
say
it's
a
little
bit
confusing
because
you
have
helm
version
3
as
a
promotion,
ad
item
and
there's
also
some
dependency
or
how
you
want
to
cut.
Also
revision
based
upgrade
also
schedule
for
promotion.
N
And
I
think
that
that's
probably
something
we
should
add
to
to
the
beta
document
right
for
for
helm,
right.
E
Yeah,
so
in
my,
I
think,
lynn,
what
you're
saying
is
actually
very
important,
but
in
my
opinion
it
is
the
whole
helm
based
workflow.
Whatever
is
done
through
helm
is
currently
alpha.
E
It
will
go
to
beta
if
jacob
and
the
team
can
actually
meet
the
requirements.
That
includes,
in
my
opinion,
division
based
upgrades.
They
will
also
be
alpha.
They'll
move
to
beta
so
yeah.
So
some
of
these
features
which
you
install
and
manage
via
helm,
it's
confusing,
but
I
think
that's
the
least
confusing
part.
If
you
use
helm,
we
should
just
say:
hey
the
helm.
Workflow
is
currently
alpha.
E
A
Okay,
well,
I
I
don't
think
we
necessarily
need
to
get
into
the
line
item
details.
The
bigger
item
I
hear
from
jacob
is
that
we
don't
have
owners
all
right
so,
like
my
instinctual
reaction
is
the
people
who
were
the
owners
for
bringing
the
feature
into
existence
in
the
first
place
would
be
the
default
owner.
E
O
Yeah,
I
just
I
wanted
to
say
so.
I
think
another
thing
keeping
revision-based
upgrades
from
beta
is
an
api
to
control
which
revision
handles
validation
and
where
we
have
like
features
on
the
way
for
that.
But
I
think
that
before
those
are
stable
and
tested
in,
I
don't
think
we
can
call
revision
based
upgrades,
beta
or
anything
above
experimental.
F
F
Bar
or
not,
but
sam.
E
O
Yes,
you
can
put
me
as
the
owner
of
I'm
definitely
working
on
pieces
of.
F
I
Yeah,
I
mean
certainly
I
I
remember
one
of
the
key
thing
we
had
trouble
to
promote
to
beta
was
the
testing
environment
was
different
and
we
were
using
kind
cluster.
We
didn't
have
real
key
and
search
for
the
gateway,
so
we
had
a
little
bit
of
difference
between
what's
tested
instead
of
io
and
what
we
recommend
user
to
use.
So
I
do
agree
with
what
constance
said.
I
It
is
a
little
bit
vendor
specific
and
not
all
the
vendors
offer
istio
as
a
service
at
the
moment
and
the
key
answers
and
the
gateway
configuration
certainly
varies
for
different
clouds.
I
F
A
I
guess
the
question
is
what
would
be
required
to
progress
it
right
if
we
need
an
exception
to
say,
look
what
in
our
test
environment,
you
know
we
can't
do
an
acme,
cert,
okay.
Well,
we
have
other
ways
of
testing
acne,
search
that
we
would
or
can
have
other
ways
of
testing
acne
sorts.
That
would
allow
us
to
feel
comfortable
progressing
the
feature.
A
F
But
my
point
was
that
external
history
is
more
like
a
concept.
The
fact
that
this
year
supports
managed
versions
of
east
georgia
externally
and
really
what
we,
what
the
uc
would
should
probably
do
is
to
say
that
hey
vendors,
that
have
managed
are
responsible
to
test
their
own
platforms
and
you
know,
submit
any
fixes
in
case.
There
are
breakages
that
disallows
them
from
from
from
managing.
E
E
So
if
that's
the
case,
we
should
advertise
the
status
of
the
feature
as
accurately
as
we
can
and
answer
lewis
question:
can
we
promote
this
feature
either
by
exceptions
or
by
actually
meeting
the
goal
and
meeting
the
you
know
progression
steps.
So
are
there
ways
to
test
it?
Is
there
an
owner
for
it
and
the
person
who
started
this?
Are
they
willing
to
work.
I
A
F
I
You
know
I
think
it
would
be.
Whoever
has
most
interest
in
this
feature
would
be
great
because
we're
not
using
this
feature
at
the
moment,
it's
so
low.
It
would
be
hard
for
us
to
step
into
help
with
this.
A
Members
I'll
catch
up
on
the
notes
on
this
in
a
second
so
the
lap
and
the
item
I
have
on
the
agenda.
Some
people
probably
already
know
this,
but
josh
is
actually
leaving
google
and
he's
going
to
go
and
take
up
a
fancy
job
at
a
startup
and
that
startup
is
not
an
istio
company,
so
he
will
be
stepping
back
from
his
istio
responsibilities
as
part
of
this
transition.
A
We
at
google
are
obviously
very
sad
to
see
josh
go,
but
you
know
we're
also
very
happy
for
him
and
his
his
his
shiny
new
vp
of
engineering
title
at
a
company
in
the
networking
space.
So
obviously
you
know
josh
has
done
a
lot
for
is
still
in
the
community
since
he
has
been
with
us
and
so
there's.
Obviously
you
know
some
broad
shoulders
to
fill
but
and
and
the
toc
slot
to
fill.
So
that's
you
know
something
that
we'll
obviously
need
to
take
up
and
josh
is
not
in
this
meeting.
A
Unfortunately,
otherwise
we
could
all
troll
him
terribly,
but
hopefully
there
will
be
opportunities
to
troll
him
and
make
him
bemoan
his
life
decisions.
The
next
time
you
see
him.
So
I
just
wanted
to
make
sure
everybody
knew
this
and
obviously
there's
there's
lots
to
follow
up
on
after
this.
E
Yes,
he
did,
and
even
though
his
new
fancy
startup
is
not
using,
his
team
definitely
have
a
lot
of
people
who
worked
on
this
too.
A
E
A
Yes,
that
is
true
anyway,
so.
E
Yes,
so
louis
in
the
interim
for
filling
in
the
shoes
are
we
like,
especially
around
resource
allocation
and
stuff,
like
that,
josh
was
really
helpful,
since
he
was
actually
also
managing
the
folks.
Is
it
coming
to
you
or
sven,
or
somebody
else,.