►
From YouTube: Technical Oversight Committee 2021/06/28
Description
Istio's Technical Oversight Committee for June 28th, 2021.
Topics:
- CNI Beta Graduation - APPROVED
A
Okay,
we
are
recording,
I
think
I
I
would
vote
for
skipping
next
week
because
I'm
actually
out
all
next
week
but
yeah.
So
that's
my
preference.
B
Sorry,
what's
next
tree
july,
4th.
A
C
E
And
test
cases
are
so
what
happened
was
we
were
99
point
almost
five
percent
automated
and
suddenly
we
came
up
with
the
new
criteria
of
finding
the
pages
which
are
having
more
hits
and
marking
them
as
p0.
E
E
E
So
if
you
go
to
the
second
tab
yeah,
so
each
working
group
is
signed
for
test
cases,
like
literally
all
other
p0s
from
the
old
sheet
are
all
all
are
tested
automatically.
This
one
is
the
new
one
based
on
the
new
criteria.
So
if
we
cover
them
this
quarter,
then
we
have
100
percent
automation
even
with
the
new
criteria.
So
this
is
the
requests.
Please
pick
these
up.
It
will
be
very
helpful
and
these
are
only
for
automation,
yeah.
E
I
also
want
to
remind
there
are
ones
which
can't
be
automated.
They
still
needs
manual
tests,
but
this
is
the
ones
which
requires
automation
based
on
the
new
criteria,
and
we
are
planning
to
automate
them,
and
if
you
go
to
the
first
sheet.
E
Yeah
so
column
d
is
this
movement
and
the
column
b
is
the
owners,
so
some
of
them
are
from
the
maintainers
like
the
I,
they
limited
the
the
maintainers
one,
but
the
owners
are
actually
the
maintainers
and
assignment
is
the
one
which
is
picked
and
equally
sized
for
each
working
group.
Four
per
working
group
at
this
point:
okay,.
F
Inter
so
I
I
was
surprised
by
some
of
the
pages
that
some
of
the
discrepancies
between
what's
tested
and
what's
popular,
I
don't
know
if
there
was
necessarily
any
pages
that
were
popular,
that
I
wasn't
expecting
to
be
popular.
Okay,.
F
So
if
you
actually
scroll
over
here,
you
can
actually
see
the
number
of
hits
on
the
pages
in
the
last
column,
but
yeah.
E
G
Did
we
find
any
pages
which
had
a
really
high
hit
count,
but
the
test
coverage
wasn't
there
or
wasn't
sufficient.
G
E
Thousand
hits
okay.
So
the
way
we
was
two
thousand
hits
for
p0
400
for
p1
10
for
p2
and
less
than
10
sp3.
H
Okay
and
and
one
just
highlight
to
make,
if
you're
actually
looking
at
that,
if
you're
trying
to
translate
from
that
eng
data
to
this
chart
is
when
brian
tabulated
this
chart,
we
made
sure
to
highlight
the
hits
by
page
irregardless
of
the
language
of
the
browser.
F
Is
for
the
chinese
pages
that
rank
high?
I
forget
if
we
had
any
p
zeros
that
were
chinese
but
yeah
two.
I
think
we
should
try
to
test
yeah,
there's
two
of
them
that
I
think
we
should
try
to
test,
but
we
need
somebody
who
speaks
chinese
to
test
them
and
those
got
3625
hits
in
the
month
and
2144
hits.
F
That's
the
largest
csv
that
the
dashboard
dashboard
would.
Let
me
download
yeah.
G
I
mean
these
pages
seem
very
interesting
number
of
hits
and
the
pages
they're
all
introductory
pages
to
like
security
and
like
traffic
management
or
ingress
gateway,
which
makes
sense
to
me
like
as
a
early
adopter.
Anyone
who
is
building
who
is
starting
out
this
year,
that's
what
they
will
refer
again
and
again.
D
E
The
cool
please
code
fees
is
on
third
august
and
the
release
is
10th
august.
E
The
testing
asynchronous
testing
is
starting
from
12th
of
july,
so
other
than
this.
Some
manual
testing
for
p0s
at
least
needs
to
be
done,
but
would
be
great
if
we
can
start
the
automation
now.
So
we
have
time
for
normal
testing.
E
C
Okay,
I've
worked
with
ryan,
I
believe
he
got
his
first
pr
merged
and
he's
a
developer
to
the
israel
community.
Now,
certainly,
you
know
we're
cutting
the
release
now,
so
it
would
be
great
if
we
can
identify
an
experienced
person.
D
D
D
There
are
any
docs
waiting
for
approval.
There
are
obviously
a
lot
of
api
reviews
in
life.
I
I
know
niraj,
you
were
taking
a
look
at
a
lot
of
stuff.
I
was
taking
a
look
at
the
telemetry
api.
I'm
gonna
try
to
get
some
time
with
doug
today
to
look
at
it.
I
D
D
C
I
Yes,
it
it
will
yeah,
but
we
will
have
more
more
docs
as
in
more
examples
of
what
scenarios
it
supports.
I
G
G
J
J
Only
or
do
he
wants
ats
to
be
a
bit
more
abstract
and
implementable
with
other
you
know
possible,
proxies
or
clients
or
gators
and
and
then
maybe
you
know,
have
other
vendors
implement
the
same
apis
to
become
kind
of
a
cross
vendor
api,
and
I
think
that
has
an
important.
D
But
there's
obviously
a
lot
of
to
discuss
on
that
api
and
and
if
it
does
make
sense,
to
have
an
explicit
kind
of
in-person
review
meeting
for
that
api
commander.
Don't
be
shy
about
trying
to
set
one
up.
I
B
I
It
is
but
but
but
fortunately
that
api
is
like
has
been
approved
already
and
now
we're
just
implementing
it.
So
but
yes,
it
is.
C
Okay,
because
I
still
saw
a
lot
of
unresolved
comments
in
the
api
repo
for
that
api.
B
I
There
anything
specific
that
you
you're
talking
about,
because
I
mean
it,
it
is
merged
and
it
did
go
through
kind
of
very
extensive
reviews
already,
but
I
mean,
if
you
still
have
any
concerns,
then
please
raise
it
back.
Otherwise
it
must
be
just
some
ap
review
hygiene
where
people
haven't
resolved
the
the
comment
when
the
issue
was
actually
resolved.
C
G
So
many
just
to
summarize
from
telemetry
side,
they're
gonna.
If
all
the
in-flight
mergers
do
get
resolved,
the
there's
gonna
be
a
wasm
extension
api,
there's
gonna
be
a
metric
and
access
logging
configuration
along
with
tracing
tracy,
might
have
gone
in
before
I
don't
remember
and
rate
limiting.
Is
that
everything,
or
am
I
missing
something.
I
That's
that's
correct.
Those
those
are
those
are
the
things
that's
correct.
K
So
I
added
a
better
graduation
doc
at
the
agenda
for
today.
If
you
scroll
down,
you
can.
K
Okay,
I
like
to
briefly
walk
through
this
and
get
use
his
approval.
K
K
Yeah
yeah,
so
this
dog
is
a
list
of
required
work
items
for
senior
validation,
we're
targeting
1011
release
for
cinema
beta,
and
there
are.
There
are
several
major
things
about
scenario.
Migration
first
is
upgrade
and
operation
safety,
so
the
busy
scenario
runs
as
a
cluster
singleton
and
it
is
not
revision
based
and
we
need
to
make
sure
that
sinai
could
upgrade
and
operate
safely
by
the
user,
and
we
need
to
all.
We
need
to
also
clarify
the
doc
for
the
user
like
how
how
do
they
actually
operate
out
sinai?
K
And
then
these
undockful
is
already
approved
by
the
networking
working
group
and
work
is
in
progress,
and
second
theme
is
supportability,
so,
unlike
the
rest
of
istio,
like
sinai
runs
as
a
network
plug-in,
so
it
runs
at
no
level.
So
it's
hard
to
debug
and
monitor
it
using
kubernetes
first
class
way.
K
So
this,
what
kind
item
is
about
integrate
sunai
with
the
institute
tooling,
as
well
as
some
other
flow,
like
some
other
way,
such
as
plum
is
still
so
nice
log
into
like
suni
install
container
so
that
we
can
generate
metrics
and
dump
blocks
into
cinecom
senior,
install
container
and
get
first
class
kubernetes
support
experience
for
it
and
the
last
two
parts
just
test
and
document.
K
So
we
need.
We
need
to
have
better
task
force
tonight
and
currently
we
have
a
job
which
runs
all
networking
tests
with
not
enabled
as
part
of
the
pre-summit
test,
and
also
we
we're
going
to
have
tests
which
covers
the
ash
cases
such
as
sinai,
risk
condition,
mitigation,
yeah,
and
that
is
about
test
and
as
far
as
documents
so
like
current
document
is
not
very
user
friendly.
K
It
makes
like
the
user
operation
with
all
the
configuration
reference,
so
we're
going
to
do
a
we
are
going
to
re-work
on
that
we're
going
to
like
redo
the
snare
document,
just
to
make
it
more
user-friendly,
and
there
are
some
operation
optional
items
such
as
like
better
risk
mitigation
and
actual
performance
impact.
K
But
we
are
considered
them
not.
As
a
beta
blocker
yeah,
so
that
is
basically
the
plan.
I'm
not
sure
whether
to
see
member
have
any
feedback
on
this
or
is
there
anything
missed
or
if
not,
can
we
approve
this
plan?
A
networking
working
group
has
already
approved
this
plan,
ready.
D
So
there's
there's
a
couple
of
optional
items
listed
in
the
dock,
so
presumably
none
of
those
optional
items
are
considered
a
blocker
for
beta
right.
K
Of
the
optional
ones,
which
is
the
most
desirable
to
have
the
last
one,
I
think
deployment
simplification
so
basically
want
to
combine
like
currently
there's
two
scenario:
containers
one
is
before
repair
one
is
for
install
and
there's
no
like
reason
to
separate
those
two
containers
and-
and
it
makes
monetary
also
hard
since
promise
doesn't
have
a
good
way
to
script
like
it.
K
G
Peter
a
question
around
tooling
and
logs,
so
I
think
I
mentioned
this
in
the
networking
meeting
too,
I
mean
most
of
the
cni
plugins
have
this
kind
of
a
daemon
certain,
possibly
something
running
on
the
node
for
which
they
also
have
to
get
logged.
So
how
is
that
solved?
Is
it
normally
solved
by
sending
the
logs
from
the
node
local
process
over
to
daemon
set.
K
So
at
least
for
calico
they
just
dump
or
they
log
like
they.
In
addition
to
kubella
lock,
they
also
dump
log
into
a
file
into
the
at
the
edit
node
okay.
So
that
is
one
way,
but
I
think
it's
still
not
quite
friendly.
So
the
the
way
I'm
currently
working
on
is
just
send
all
the
log
from
the
sinai
plug-in
process
to
the
container
via
a
uds
socket,
and
that
way
we
can
save
all
the
file,
rotation
and
processing.
I
After
peter
suggested,
this
I
spoke
with
some
of
the
cni
some
of
the
celium
cni
maintainers,
and
they
are
also
now
thinking
about
doing
the
same
as
to
take
the
locks
from
the
node
and
stick
it
into
the
actual
demo
and
get
them
into
kubernetes.
So
so,
hopefully
more
people
will
do
this.
K
G
K
Okay,
so
if
you
don't
know
other
questions,
can
we
approve
this
plan.
K
At
least
all
the
annotation
covered
by
the
networking
presuming
test
will
work
like
because
we
have
that
test.
We
have
a
previous
summary
test
job
for
chennai,
which
all
runs
all
the
networking
integration
tests
so
but
yeah.
I
think
all
the
annotations
should
just
work.
Okay,.
C
Yeah
looks
good,
I
assume,
there's
no
documentation
impact.
K
There
will
be
like
the
dot
will
need
some
rewrite,
because
current
dock
is
not
very
user
friendly.
It
mixes
like
the
a
like
operation
with,
like
the
reference,
like
you,
just
dump
everything
into
one
page,
which
is
not
quite
good
like
it.
So
I
think
we
need
to
at
least
separate
those
and
yeah.
K
It
is
part
of
this.
It
is
part
of
the
the
beta
graduation
doc.
If
you
look
scroll
down,
there
is
a
doc
change.
Yeah.
G
Another
question
for
you
peter
so
once
cni
is
beta,
I
mean
because
of
the
security
implications
of
the
non-cni
mode.
Is
there
us
like?
Are
we
going
to
take
a
stance
around
default
at
some
point?
If
this
is
stable,
it
can
be.
J
B
K
Is
not
the
default
networking
configuration
mechanism
yet
so
enable
e69
on
it
will
just
not
work
so
yeah,
so
I
would
be
conscious,
then
I'd.
G
I
So,
though,
though,
I
think
what
the
goal
should
be
to
make
cni
the
default
right
and.
B
I
Think
yeah,
so
so,
then,
the
parts
that
we
have
to
decide
is
how
how
do
we
get
there?
So
I
think
at
some
point
not
that
far
into
the
future
the
doc
should
say
use
cni
like
they
should
say,
use
cni,
and
then
they
should
say:
okay.
Well,
if
you
can't
use
cni,
then
this
is
the
other
way,
but
at
some
point
we'll
switch
the
docks
and
then
at
some
point
it
will
actually
just
do
it,
but
I
think
that
that's
kind
of
consistent
with
where
it
even
we
want
to
head.
C
D
K
C
F
C
D
Oh,
it
came
up
in
steering.
D
I
forgotten
who,
on
the
google
side,
was
going
to
talk
to
the
google
lawyers.
I
think
we
there
was
a
discussion.
I
don't
think
anybody's
here
is
on
fire
about
this.
A
B
D
Yes,
and
do
you
want
to
take
that
one
as
an
ai
for
the
google
one
I
know
kevin
was
doing
it
on
the
red
hat
side,
or
maybe
brian.
I
don't
know
if
you've
talked
to
kevin.
G
John,
does
this
decision
block
your
release,
changes
or
anything
for
now.