Skip to content

libnet, daemon: Recreate docker0 when unsetting default-address-pools #49363

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
wants to merge 3 commits into
base: master
Choose a base branch
from
Draft

libnet, daemon: Recreate docker0 when unsetting default-address-pools #49363

wants to merge 3 commits into from

Conversation

akerouanton
Copy link
Member

@akerouanton akerouanton commented Jan 29, 2025
edited
Loading

Fixes:

- What I did

Commit 268d418 added persistence to the bridge driver, and added logic to not delete the bridge interface if it's used by the default bridge network when the later is deleted (as part of the networking initialization steps).

Later on, commit 6bd1539 refined this logic to not delete the bridge interface if it's user-managed. But it didn't touch the original condition (ie. do not delete the bridge interface if it's used by the default network).

And then, commit 173b3c3 added support for the default-address-pools parameter. It also added some code to delete the bridge interface used by the default network, but in the daemon instead of leveraging the usual delete flow in the bridge driver. It also skips the deletion if no default-address-pools are defined.

This leads to a corner case where the bridge interface isn't recreated when default-address-pools is unset.

Tidy this up by letting the bridge driver delete the bridge interface even when it's used by the default network. There are two exceptions where the underlying interface shall not be deleted:

  1. When the interface is user-managed. User is responsible for creating and deleting it.
  2. When live-restore is enabled and there are containers running.

Note that the 2nd exception could be refined to only apply when there are active sandboxes attached to that network, but this is out of scope.

- How to verify it

- Description for the changelog

- Fix a bug that was preventing the default bridge interface to be recreated when unsetting `default-address-pools`, or when that parameter was never set.

@akerouanton
daemon: rename initBridgeDriver into createDefaultBridgeNetwork
378b5d9 
This function doesn't init the bridge driver - it's already
initialized! - so no need to call it this way.

Signed-off-by: Albin Kerouanton <[email protected]>
@akerouanton
daemon: rename configureNetworking into createDefaultNetworks
072f352 
Signed-off-by: Albin Kerouanton <[email protected]>
@akerouanton akerouanton self-assigned this Jan 29, 2025
@akerouanton
libnet/d/bridge: delete docker-managed default bridge iface
231594b 
Commit 268d418 added persistence to the bridge driver, and added logic
to not delete the bridge interface if it's used by the default bridge
network when the later is deleted (as part of the networking
initialization steps).

Later on, commit 6bd1539 refined this logic to not delete the bridge
interface if it's user-managed. But it didn't touch the original
condition (ie. do not delete the bridge interface if it's used by the
default network).

And then, commit 173b3c3 added support for the `default-address-pools`
parameter. It also added some code to delete the bridge interface used
by the default network, but in the daemon instead of leveraging the
usual delete flow in the bridge driver. It also skips the deletion if
no `default-address-pools` are defined.

This leads to a corner case where the bridge interface isn't recreated
when `default-address-pools` is unset.

Tidy this up by letting the bridge driver delete the bridge interface
even when it's used by the default network. There are two exceptions
where the underlying interface shall not be deleted:

1. When the interface is user-managed. User is responsible for creating
  and deleting it.
2. When live-restore is enabled and there are containers running.

Note that the 2nd exception could be refined to only apply when there
are active sandboxes attached to that network, but this is out of scope.

Signed-off-by: Albin Kerouanton <[email protected]>
@akerouanton akerouanton force-pushed the fix-unsetting-default-addr-pools branch from 88291b3 to 231594b Compare January 30, 2025 13:22
@akerouanton akerouanton mentioned this pull request Aug 27, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@akerouanton akerouanton

Labels

area/daemon Core Engine area/networking/d/bridge Networking area/networking Networking impact/changelog kind/bugfix PR's that fix bugs status/2-code-review

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@akerouanton