Loading...

XML

Word

Printable

Type: Task
Resolution: Done
Priority: Undefined
Fix Version/s: None
Affects Version/s: None
Component/s: CNV Network
Labels:
- cnv-netcore-wg

Blocked:
False
Blocked Reason:

Hide

None

Show
None
Ready:
False
Bugzilla References:
https://bugzilla.redhat.com/show_bug.cgi?id=2186372
Regression:
No
[QE] How to address?:
---
[QE] Why QE missed?:
---
Market:

Sprint:
CNV Network Core 23, CNV Network Core 25

SFDC Cases Links:
SFDC Cases Counter:

https://github.com/containernetworking/plugins/issues/951

Add "activateInterface" option to bridge plugin CNI.
The option will control whether the defined interface will be brought up by the plugin. The default will be true.
This is required in case some other CNI in the plugin chain wants to modify the interface before it is brought up and made visible to the network.

For example, in case I want to prevent my interface to send any IPv6 traffic. I can use a another CNI to achieve this by setting net.ipv6.conf.all.disable_ipv6 to 1.
But since the bridge CNI will first activate the interface, it may send IPv6 data (NDP) on activation, before the next CNI disables it.
Having activateInterface=false will solve this issue. The bridge CNI will create and configure the interface and the next CNI in the chain will apply the sysctl and activate the interface,

is cloned by

CNV-37878 Add "activeinterface" option to Bridge CNI

Closed

is related to

CNV-37121 Activate bridge binding secondary interface on phase1

Closed

relates to

CNV-28040 [2186372] Packet drops during the initial phase of VM live migration

ON_QA

links to

Enable disabling bridge interface PR

Assignee:: Or Mergi

Reporter:: Alona Kaplan

QA Contact:: Nir Rozen

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Created:: 2023/10/24 9:12 AM

Updated:: 2024/02/01 10:23 AM

Resolved:: 2024/01/11 8:37 AM

Details

Description

Attachments

Issue Links

Activity

People

Dates