Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Slirp4netns with ipv6 set net.ipv6.conf.default.accept_dad=0 #12098

Merged
merged 1 commit into from
Oct 26, 2021
Merged

Slirp4netns with ipv6 set net.ipv6.conf.default.accept_dad=0 #12098

merged 1 commit into from
Oct 26, 2021

Conversation

Luap99
Copy link
Member

@Luap99 Luap99 commented Oct 26, 2021

What this PR does / why we need it:

Duplicate Address Detection slows the ipv6 setup down for 1-2 seconds.
Since slirp4netns is run it is own namespace and not directly routed
we can skip this to make the ipv6 address immediately available.
We change the default to make sure the slirp tap interface gets the
correct value assigned so DAD is disabled for it.
Also make sure to change this value back to the original after slirp4netns
is ready in case users rely on this sysctl.

How to verify it

run podman run --network slirp4netns:enable_ipv6=true alpine ip a and check that a fd00:: ipv6 address is in the output

Which issue(s) this PR fixes:

Fixes #11062

Special notes for your reviewer:

@openshift-ci
Copy link
Contributor

openshift-ci bot commented Oct 26, 2021

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: Luap99

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@openshift-ci openshift-ci bot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Oct 26, 2021
@Luap99 Luap99 mentioned this pull request Oct 26, 2021
Closed
@Luap99
Slirp4netns with ipv6 set net.ipv6.conf.default.accept_dad=0
008075c 
Duplicate Address Detection slows the ipv6 setup down for 1-2 seconds.
Since slirp4netns is run it is own namespace and not directly routed
we can skip this to make the ipv6 address immediately available.
We change the default to make sure the slirp tap interface gets the
correct value assigned so DAD is disabled for it.
Also make sure to change this value back to the original after slirp4netns
is ready in case users rely on this sysctl.

Fixes containers#11062

Signed-off-by: Paul Holzinger <[email protected]>
@Luap99
Copy link
Member Author

Luap99 commented Oct 26, 2021

@rhatdan @AkihiroSuda PTAL

@rhatdan
Copy link
Member

rhatdan commented Oct 26, 2021

LGTM

@mheon
Copy link
Member

mheon commented Oct 26, 2021

Tests are red, but code LGTM

@Luap99
Copy link
Member Author

Luap99 commented Oct 26, 2021

Tests are red, but code LGTM

They look like flakes, I restarted them.

@TomSweeneyRedHat
Copy link
Member

LGTM and tests are happy

@TomSweeneyRedHat
Copy link
Member

/lgtm

@openshift-ci openshift-ci bot added the lgtm Indicates that a PR is ready to be merged. label Oct 26, 2021
@openshift-merge-robot openshift-merge-robot merged commit ed3aa2a into containers:main Oct 26, 2021
@Luap99 Luap99 deleted the slirp-dad branch October 26, 2021 20:55
This was referenced Oct 27, 2021
Closed
Closed
Closed
@edsantiago edsantiago mentioned this pull request Nov 11, 2021
Closed
@edsantiago edsantiago mentioned this pull request Nov 22, 2021
Closed
@github-actions github-actions bot added the locked - please file new issue/PR Assist humans wanting to comment on an old issue or PR with locked comments. label Sep 22, 2023
@github-actions github-actions bot locked as resolved and limited conversation to collaborators Sep 22, 2023
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
No reviews
Assignees

@TomSweeneyRedHat TomSweeneyRedHat

Labels
approved Indicates a PR has been approved by an approver from all required OWNERS files. lgtm Indicates that a PR is ready to be merged. locked - please file new issue/PR Assist humans wanting to comment on an old issue or PR with locked comments.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

podman run starts the main process in the container before the slirp4netns ipv6 network is setup
5 participants
@Luap99 @rhatdan @mheon @TomSweeneyRedHat @openshift-merge-robot