Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Both sides of a VETH pair can not be assigned to containers #941

Open
wkz opened this issue Feb 11, 2025 · 1 comment
Open

Both sides of a VETH pair can not be assigned to containers #941

wkz opened this issue Feb 11, 2025 · 1 comment
Labels
bug Something isn't working
Milestone
FUTURE

Comments

@wkz
Copy link
Contributor

wkz commented Feb 11, 2025

Current Behavior

Today's implementation assumes that at least one side of every VETH pair remains assigned to the host namespace. I.e., it is not possible to create setups like the following, where the db<--->client VETH pair between the web and postgres containers:

    .-----------. .----------.
    |    web    | | postgres |
web '--wan--db--' '--client--'
 '------'    '---------'

Expected Behavior

Internal VETH pairs between containers should be allowed.

Steps To Reproduce

No response

Additional information

This limitation exists because of how confd skips the setup for container interfaces in netdag_gen_iface():

infix/src/confd/src/ietf-interfaces.c

Lines 529 to 534 in d3bfbb5

if ((err = cni_netdag_gen_iface(net, ifname, dif, cif))) {
/* error or managed by CNI/podman */
if (err > 0)
err = 0; /* done, nothing more to do here */
goto err;
}

If this branch is taken for both sides, then no one will actually create the pair.
@wkz wkz added bug Something isn't working triage Pending investigation & classification (CCB) labels Feb 11, 2025
@jovatn
Copy link
Contributor

jovatn commented Feb 17, 2025

CCB: Short-term, document limitation.

@jovatn jovatn removed the triage Pending investigation & classification (CCB) label Feb 17, 2025
@jovatn jovatn added this to the FUTURE milestone Feb 17, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Something isn't working
Projects
Infix & C:o
Status: No status
Milestone
FUTURE
Development

No branches or pull requests
2 participants
@wkz @jovatn