Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Clean up vlan ip rules before setting up pod networks #1375

Closed
SaranBalaji90 opened this issue Feb 5, 2021 · 0 comments
Closed

Clean up vlan ip rules before setting up pod networks #1375

SaranBalaji90 opened this issue Feb 5, 2021 · 0 comments
Labels
bug

Comments

@SaranBalaji90
Copy link
Contributor

SaranBalaji90 commented Feb 5, 2021
edited
Loading

What happened:
When pods are deleted without TerminationGracePeriod, host veth devices for the pods using security group are not removed as Ipamd plugin will not be able to query APIServer for the deleted pod. Therefore when new pods are created, hostveth uses invalid vlan routing table.

What you expected to happen:
Before setting up new pods, clean up all existing vlan id from ip rule.

How to reproduce it (as minimally and precisely as possible):
By force deleting the pod using security group, ipamd leaves dangling resources in ip rules.

Similar to this -

amazon-vpc-cni-k8s/cmd/routed-eni-cni-plugin/driver/driver.go

Line 491 in 1c1d4b9

// 2. delete two ip rules associated with the vlan
we should perform clean up here to delete the hostVeth from ip rule 1b.

amazon-vpc-cni-k8s/cmd/routed-eni-cni-plugin/driver/driver.go

Line 316 in 1c1d4b9

// 1. clean up if vlan already exists (necessary when trunk ENI changes).

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@SaranBalaji90