Allow namespace path network option for pods. #16386

bjorndown · 2022-11-02T14:19:37Z

Signed-off-by: Björn Mosler [email protected]

Does this PR introduce a user-facing change?

Allows creating a pod which uses an existing network namespace.

rhatdan · 2022-11-02T14:41:13Z

Thanks @bjorndown
You have a couple of Lint issues. Linter likes JSON to be capitalized.
/approve
LGTM
@vrothberg @mheon @cdoern @Luap99 PTAL

bjorndown · 2022-11-02T16:44:05Z

test/e2e/pod_create_test.go

+
+	It("podman pod create with namespace path networking", func() {
+		SkipIfRootless("ip netns is not supported for rootless users")
+		SkipIfContainerized("ip netns cannot be run within a container.")


Not sure if this is correct

mheon · 2022-11-02T17:48:40Z

pkg/specgen/generate/pod_create.go

@@ -195,6 +195,9 @@ func MapSpec(p *specgen.PodSpecGenerator) (*specgen.SpecGenerator, error) {
 			p.InfraContainerSpec.NetworkOptions = p.NetworkOptions
 			p.InfraContainerSpec.NetNS.NSMode = specgen.Slirp
 		}
+	case specgen.Path:
+		logrus.Debugf("Pod will use namespace path networking")
+		p.InfraContainerSpec.NetNS.NSMode = specgen.Path


I think you also need to populate p.InfraContainerSpec.NetNS.Value as well, which holds the path of the namespace.

Do you mean copy it from the pod spec:

p.InfraContainerSpec.NetNS.Value = p.PodNetworkConfig.NetNS.Value

MapSpec() does not have a test yet, do you think I should add one?

RE Copying - yes.

RE Test - I don't think it's strictly necessary, but I would definitely not complain if you added one

NetNS.Value is set and I added a test for MapSpec().

bjorndown · 2022-11-04T10:24:43Z

Two tasks ran into a timeout:

Failed to start: Task java.util.concurrent.ScheduledThreadPoolExecutor$ScheduledFutureTask@2fbc5d61[Not completed, task = java.util.concurrent.Executors$RunnableAdapter@2debdf2a[Wrapped task = TrustedListenableFutureTask@af5166a[status=PENDING, info=[task=[running=[NOT STARTED YET], com.google.api.gax.rpc.CheckingAttemptCallable@77237e40]]]]] rejected from java.util.concurrent.ScheduledThreadPoolExecutor@5c5dc533[Terminated, pool size = 0, active threads = 0, queued tasks = 0, completed tasks = 0]

I will trigger another run.

Closes containers#16208. Signed-off-by: Björn Mosler <[email protected]>

Luap99

LGTM

openshift-ci · 2022-11-07T19:24:15Z

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: bjorndown, Luap99, rhatdan

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

~~OWNERS~~ [Luap99,rhatdan]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

Luap99 · 2022-11-07T19:24:19Z

/lgtm

openshift-ci bot added the release-note label Nov 2, 2022

openshift-ci bot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Nov 2, 2022

bjorndown force-pushed the feature/pod-create-with-netns branch from c3ce299 to 7267475 Compare November 2, 2022 16:42

bjorndown commented Nov 2, 2022

View reviewed changes

mheon reviewed Nov 2, 2022

View reviewed changes

bjorndown force-pushed the feature/pod-create-with-netns branch from 7267475 to 32c30fc Compare November 3, 2022 15:30

Allow namespace path network option for pods.

049a5d8

Closes containers#16208. Signed-off-by: Björn Mosler <[email protected]>

bjorndown force-pushed the feature/pod-create-with-netns branch from 32c30fc to 049a5d8 Compare November 4, 2022 10:26

Luap99 approved these changes Nov 7, 2022

View reviewed changes

openshift-ci bot assigned Luap99 Nov 7, 2022

openshift-ci bot added the lgtm Indicates that a PR is ready to be merged. label Nov 7, 2022

openshift-merge-robot merged commit 781ecec into containers:main Nov 7, 2022

sbrivio-rh mentioned this pull request Nov 7, 2022

Add pasta networking mode #16141

Merged

bjorndown deleted the feature/pod-create-with-netns branch November 8, 2022 15:10

github-actions bot added the locked - please file new issue/PR Assist humans wanting to comment on an old issue or PR with locked comments. label Sep 20, 2023

github-actions bot locked as resolved and limited conversation to collaborators Sep 20, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Allow namespace path network option for pods. #16386

Allow namespace path network option for pods. #16386

bjorndown commented Nov 2, 2022

rhatdan commented Nov 2, 2022

bjorndown Nov 2, 2022

mheon Nov 2, 2022

bjorndown Nov 2, 2022

mheon Nov 2, 2022

bjorndown Nov 3, 2022 •

edited

Loading

bjorndown commented Nov 4, 2022 •

edited

Loading

Luap99 left a comment

openshift-ci bot commented Nov 7, 2022

Luap99 commented Nov 7, 2022

Allow namespace path network option for pods. #16386

Allow namespace path network option for pods. #16386

Conversation

bjorndown commented Nov 2, 2022

Does this PR introduce a user-facing change?

rhatdan commented Nov 2, 2022

bjorndown Nov 2, 2022

Choose a reason for hiding this comment

mheon Nov 2, 2022

Choose a reason for hiding this comment

bjorndown Nov 2, 2022

Choose a reason for hiding this comment

mheon Nov 2, 2022

Choose a reason for hiding this comment

bjorndown Nov 3, 2022 • edited Loading

Choose a reason for hiding this comment

bjorndown commented Nov 4, 2022 • edited Loading

Luap99 left a comment

Choose a reason for hiding this comment

openshift-ci bot commented Nov 7, 2022

Luap99 commented Nov 7, 2022

bjorndown Nov 3, 2022 •

edited

Loading

bjorndown commented Nov 4, 2022 •

edited

Loading