apiVersion: release-notes/v2
kind: feature
area: istioctl
issue:
  - 49896
releaseNotes:
- |

	if testenv.SyscallIsNotSupported(err) {
		// Usually this means lack of CAP_SYS_ADMIN, but there might be
		// other reasons, especially in restricted test environments.
		t.Skipf("requires ability to mount tmpfs (%v)", err)
	} else if err != nil {
		t.Fatalf("mount %s failed: %v", tmp, err)
	}
	t.Cleanup(func() {
		if err := syscall.Unmount(tmp, 0); err != nil {
			t.Error(err)
		}
	})

apiVersion: release-notes/v2
kind: feature
area: traffic-management
releaseNotes:
   - |
     **Added** the ability to set credentialName based secret configuration
     at sidecars for egress TLS traffic when WorkloadSelector is specified in `DestinationRule`,
     provided the sidecar has permission to list secrets in the namespace where it resides.
docs:

			out.Zone = &zone
			delete(out.DeprecatedTopology, corev1.LabelTopologyZone)
		}

		// Remove hostname from the topology map ONLY IF it is the same value as
		// nodeName.  This preserves the (rather odd) ability to have different
		// values for topology[hostname] and nodename in v1beta1, without showing
		// duplicate values in v1.
		if node, ok := in.Topology[corev1.LabelHostname]; ok {

area: traffic-management
issue:
  - 48362
releaseNotes:
  - |
    **Added** the annotation `networking.istio.io/address-type` to allow `istio` class Gateways to use `ClusterIP` for status addresses.
    **Added** the ability to annotate workloads or services with `istio.io/use-waypoint` pointing to Gateways of arbitrary gateway classes.

    These changes allow configuring a standard `istio` gateway as a Waypoint.

Put plugin integration and cross-version tests into [`:kotlin-dsl-integ-tests`](https://github.com/gradle/gradle/tree/HEAD/platforms/core-configuration/kotlin-dsl-integ-tests) subproject instead.

Having tests here breaks Gradle's ability to instrument plugins defined in this subproject and their dependencies when embedded runner is used.

/*
 * This sample demonstrates the ability to selectively include projects
 * from the local directory rather than using an external dependency.
 *
 * By default all projects are considered external and are picked up
 * from the "repo" ivy repository.  To include local projects in a build,
 * set the "useLocal" system property on the gradle command line:
 *
 *   gradle -DuseLocal=project1,project2 :showJarFiles
 *
 */
plugins {

/*
 * This sample demonstrates the ability to selectively include projects
 * from the local directory rather than using an external dependency.
 *
 * By default all projects are considered external and are picked up
 * from the "repo" ivy repository.  To include local projects in a build,
 * set the "useLocal" system property on the gradle command line:
 *
 *   gradle -DuseLocal=project1,project2 :showJarFiles
 *
 */
plugins {

 * limitations under the License.
 */

package org.gradle.internal.jvm.inspection;

import java.util.function.Predicate;

/**
 * A feature of a cache-like storage that provides an ability to invalidate the items matching a predicate.
 * @param <T> the type of the stored items.
 */
public interface ConditionalInvalidation<T> {
    /**
     * Instructs the cache to drop the stored items matching the predicate.

```shell
sed -ie "s?docker.io?gcr.io/istio-testing?g" calico.yaml
```

In order to upgrade versions of calico we'll need to update the version below and then have someone with the ability to push run the following:

```shell
export VERSION=v3.27.0

crane cp {docker.io,gcr.io/istio-testing}/calico/cni:"${VERSION}"
crane cp {docker.io,gcr.io/istio-testing}/calico/node:"${VERSION}"