Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Check status changes for externally managed interface - netdev device type #632

Open
mlguerrero12 opened this issue Feb 13, 2024 · 1 comment
Open

Check status changes for externally managed interface - netdev device type #632

mlguerrero12 opened this issue Feb 13, 2024 · 1 comment

Comments

@mlguerrero12
Copy link
Contributor

follow-up of #530

NeedToUpdateSriov always returns true for externally managed interfaces with netdev device type. This causes a loop in the check status logic.

As per the comment, we always return true to be sure the admin mac address is configured as expected. Why do we need to do this? is it not overwritten when mac is set in the sriov-cni config. Can we not do this operation in the cni instead?

Additionally, NeedToUpdateSriov shouldn't check mtu or numVfs changes for externally managed interfaces. At least, it will avoid draining the node when the device type is a dpdk one.

c.c. @SchSeba
@mlguerrero12 mlguerrero12 mentioned this issue Feb 13, 2024
Merged
@SchSeba
Copy link
Collaborator

SchSeba commented Feb 20, 2024

Hi @mlguerrero12 thanks for the issue!

So the idea why we don't want to do it in the sriov-cni is from security point of view.
some network drivers like MLX and the Pensando for example don't configure mac address on the VF administrative mac this means the mac will be "00:00:00:00:00:00" if that is the case you can use the VF interface to sniff all the traffic the driver will not filter packets to is mac address only.

@mlguerrero12 mlguerrero12 mentioned this issue Mar 18, 2024
Merged
@zeeke zeeke reopened this Mar 20, 2024
@SchSeba SchSeba reopened this Apr 4, 2024
SchSeba pushed a commit to SchSeba/sriov-network-operator that referenced this issue May 7, 2024
@mlguerrero12 @SchSeba
Set netdevice as default in the CRD
3452095 
This sets netdevice as default in the CRD to not depend
on the mutating webhook.

Fixes k8snetworkplumbingwg/sriov-network-operator#632

Signed-off-by: Marcelo Guerrero <[email protected]>
SchSeba pushed a commit to SchSeba/sriov-network-operator that referenced this issue May 25, 2024
@mlguerrero12 @SchSeba
Set netdevice as default in the CRD
9d023d5 
This sets netdevice as default in the CRD to not depend
on the mutating webhook.

Fixes k8snetworkplumbingwg/sriov-network-operator#632

Signed-off-by: Marcelo Guerrero <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@zeeke @SchSeba @mlguerrero12