Bump github.com/bpfman/bpfman-operator from 0.5.7-0.20250702114755-642adfde5e43 to 0.6.0

[dependabot]

Bumps github.com/bpfman/bpfman-operator from 0.5.7-0.20250702114755-642adfde5e43 to 0.6.0.

Release notes

Sourced from github.com/bpfman/bpfman-operator's releases.

v0.6.0

The v0.6.0 release is a minor release with significant changes to the bpfman-operator. The operator now supports the load/attach split introduced in bpfman v0.6.0, allowing finer-grained control over BPF programme lifecycle. A new Config custom resource has been added, enabling runtime configuration of operator and agent behaviour including component image overrides and health probe settings; the Config CR is now bootstrapped automatically by the operator on startup. The dependency on security-profiles-operator has been fully removed. Metrics collection has been decoupled from hostNetwork using a proxy DaemonSet, and kube-rbac-proxy has been replaced with controller-runtime's built-in TLS capabilities. Network interface autodiscovery with match and regex filtering has been added for TC, TCX, and XDP programmes. The operator now uses a native crictl implementation, removing the external dependency. BpfApplicationState spec fields have been moved to status, and ContainerSelector has been replaced with NetworkNamespaceSelector for network-attached programme types. Priority fields for TC, TCX, and XDP programmes have been changed from int32 to *int32. Build version information is now embedded in all binaries. OLM bundle deployment has been fixed for vanilla Kubernetes with runtime reconciliation of monitoring and RBAC resources. Container images have been switched from Docker Hub golang to Red Hat UBI go-toolset, and hard-coded imagePullPolicy values have been removed from deployment manifests. CI workflows have been updated to resolve Node.js 20 deprecation warnings and improve caching.

What's Changed

• bpfman-operator: Support Load/Attach Split by @​anfredette in bpfman/bpfman-operator#347
• remove dependency on security-profiles-operator by @​Billy99 in bpfman/bpfman-operator#373
• update openshift bundle containerfile by @​Billy99 in bpfman/bpfman-operator#377
• rename bundle containerfile to Containerfile.bundle to be consistent by @​msherif1234 in bpfman/bpfman-operator#378
• revert #378 by @​Billy99 in bpfman/bpfman-operator#379
• fix some warnings in community-operators-prod by @​Billy99 in bpfman/bpfman-operator#380
• chore: Bump Go to 1.24 by @​dave-tucker in bpfman/bpfman-operator#383
• Make sure changing bpfman configmap restart daemonset pods by @​msherif1234 in bpfman/bpfman-operator#389
• remove xdp go counter intg test case by @​msherif1234 in bpfman/bpfman-operator#406
• Add back xdp go counter by @​msherif1234 in bpfman/bpfman-operator#407
• Add interfaces discovery to bpf agent process by @​msherif1234 in bpfman/bpfman-operator#408
• Make the bpfman-operator report status of "Pending" instead of "Error" when appropriate by @​anfredette in bpfman/bpfman-operator#409
• Change ContainerSelector to NetworkNamespaceSelector for XDP, TC, and TCX by @​anfredette in bpfman/bpfman-operator#411
• Intial APIs review for bpfman-operator by @​msherif1234 in bpfman/bpfman-operator#413
• revert back to go1.23 and pin cri-tool to v1.32.0 by @​msherif1234 in bpfman/bpfman-operator#416
• 2nd round of APIs reviews by @​msherif1234 in bpfman/bpfman-operator#417
• docs: fix broken link in README by @​Billy99 in bpfman/bpfman-operator#418
• api review: update field descriptions by @​Billy99 in bpfman/bpfman-operator#419
• Fix validation for EBPFProgType in BpfApplication/BpfApplicationState objects by @​anfredette in bpfman/bpfman-operator#420
• Add intefaces match and regex filter to autodiscovery configs by @​msherif1234 in bpfman/bpfman-operator#421
• Move BpfApplicationState Spec to Status by @​anfredette in bpfman/bpfman-operator#423
• split out interface discovery processing by @​msherif1234 in bpfman/bpfman-operator#424
• Check for Duplicate Network Namespace Inodes by @​anfredette in bpfman/bpfman-operator#426
• Remove OpenShift-specific Containerfiles by @​frobware in bpfman/bpfman-operator#430
• chore: Update to golang-ci-lint v2 by @​dave-tucker in bpfman/bpfman-operator#431
• Makefile: wait for ConfigMap deletion before undeploy by @​frobware in bpfman/bpfman-operator#436
• Replace kube-rbac-proxy with controller-runtime's built-in TLS capabilities by @​frobware in bpfman/bpfman-operator#437
• Switch to Go 1.24 (again) by @​frobware in bpfman/bpfman-operator#439
• Improve bundle versioning using VERSION file by @​frobware in bpfman/bpfman-operator#440
• Add DeepWiki badge by @​anfredette in bpfman/bpfman-operator#441
• Decouple metrics from hostNetwork using proxy DaemonSet by @​frobware in bpfman/bpfman-operator#443
• BpfApplicationReconcilers: wrap loadRequest error by @​andreaskaris in bpfman/bpfman-operator#448
• Complete removal of security-profiles-operator dependency by @​frobware in bpfman/bpfman-operator#451
• Fix SEGV (nil pointer access) in getBpfAppState logging functions by @​frobware in bpfman/bpfman-operator#452
• Replace external crictl dependency with native bpfman-crictl implementation by @​frobware in bpfman/bpfman-operator#453
• Disable controller-runtime metrics server in bpfman-agent by @​frobware in bpfman/bpfman-operator#455
• Disable profiling port in bpfman-agent to avoid host network conflicts by @​frobware in bpfman/bpfman-operator#458
• bpfman-operator: Add Config resource and update reconciler and tests by @​andreaskaris in bpfman/bpfman-operator#461
• Add make target to run operator locally by @​andreaskaris in bpfman/bpfman-operator#466
• Daemonset: Move bidirectional mount from /run/bpfman to /run/bpfman/csi by @​andreaskaris in bpfman/bpfman-operator#469
• Config follow-up: Implement component override functionality for Config resource by @​andreaskaris in bpfman/bpfman-operator#475
• Makefile: Target run-local, ignore scaling issues by @​andreaskaris in bpfman/bpfman-operator#476
• Fix overlaying bpf mount by @​nocturo in bpfman/bpfman-operator#477
• Config: Change healthProbeAddr to healthProbePort by @​andreaskaris in bpfman/bpfman-operator#478
• DaemonSet: Remove /var/lib/bpfman from mounts by @​andreaskaris in bpfman/bpfman-operator#479
• Work around sigstore-rs rekor issue in integration tests by @​andreaskaris in bpfman/bpfman-operator#482

... (truncated)

Commits

• See full diff in compare view

[openshift-ci]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by:
Once this PR has been reviewed and has the lgtm label, please assign jpinsonneau for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Details

Needs approval from an approver in each of these files:

• DOWNSTREAM_OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[openshift-ci]

Hi @dependabot[bot]. Thanks for your PR.

I'm waiting for a netobserv member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work.

Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.