Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

API: Accept CNI network specs for supported plugin types in the CreateNetwork endpoint #9910

Closed
rcgoodfellow opened this issue Mar 31, 2021 · 6 comments
Closed

API: Accept CNI network specs for supported plugin types in the CreateNetwork endpoint #9910

rcgoodfellow opened this issue Mar 31, 2021 · 6 comments
Labels
kind/feature Categorizes issue or PR as related to a new feature. locked - please file new issue/PR Assist humans wanting to comment on an old issue or PR with locked comments. network Networking related issue or feature

Comments

@rcgoodfellow
Copy link
Contributor

Is this a BUG REPORT or FEATURE REQUEST? (leave only one on its own line)

/kind feature

Description

There is a pretty big delta between what the Podman CreateNetwork API endpoint will accept and the types of CNI networks that Podman supports (including the base set of plugins that Podman ships with on Fedora, FCOS etc.). It would be really nice to be able to just provide a CNI spec (as in a NetConfList) to the CreateNetwork endpoint and have Podman simply place the spec in /etc/cni/net.d/.

Steps to reproduce the issue:

  1. Try to create a network with CNI type vlan (or any other plugin besides bridge or macvlan)

Describe the results you received:

Unable to create most CNI network types even though Podman ships with the plugins.

Describe the results you expected:

Able to create CNI network types that Podman supports through the Podman API.

Additional information you deem important (e.g. issue happens only occasionally):

Output of podman version:

Version:      3.0.1
API Version:  3.0.0
Go Version:   go1.15.8
Built:        Fri Feb 19 08:56:17 2021
OS/Arch:      linux/amd64

Output of podman info --debug:

host:
  arch: amd64
  buildahVersion: 1.19.4
  cgroupManager: cgroupfs
  cgroupVersion: v1
  conmon:
    package: conmon-2.0.26-1.fc33.x86_64
    path: /usr/bin/conmon
    version: 'conmon version 2.0.26, commit: 777074ecdb5e883b9bec233f3630c5e7fa37d521'
  cpus: 128
  distribution:
    distribution: fedora
    version: "33"
  eventLogger: journald
  hostname: ryzen2
  idMappings:
    gidmap:
    - container_id: 0
      host_id: 1000
      size: 1
    - container_id: 1
      host_id: 100000
      size: 65536
    uidmap:
    - container_id: 0
      host_id: 1000
      size: 1
    - container_id: 1
      host_id: 100000
      size: 65536
  kernel: 5.11.10-200.fc33.x86_64
  linkmode: dynamic
  memFree: 225704386560
  memTotal: 270174867456
  ociRuntime:
    name: crun
    package: crun-0.18-1.fc33.x86_64
    path: /usr/bin/crun
    version: |-
      crun version 0.18
      commit: 808420efe3dc2b44d6db9f1a3fac8361dde42a95
      spec: 1.0.0
      +SYSTEMD +SELINUX +APPARMOR +CAP +SECCOMP +EBPF +CRIU +YAJL
  os: linux
  remoteSocket:
    path: /run/user/1000/podman/podman.sock
  security:
    apparmorEnabled: false
    capabilities: CAP_CHOWN,CAP_DAC_OVERRIDE,CAP_FOWNER,CAP_FSETID,CAP_KILL,CAP_NET_BIND_SERVICE,CAP_SETFCAP,CAP_SETGID,CAP_SETPCAP,CAP_SETUID,CAP_SYS_CHROOT
    rootless: true
    seccompEnabled: true
    selinuxEnabled: true
  slirp4netns:
    executable: /usr/bin/slirp4netns
    package: slirp4netns-1.1.9-1.fc33.x86_64
    version: |-
      slirp4netns version 1.1.9
      commit: 4e37ea557562e0d7a64dc636eff156f64927335e
      libslirp: 4.3.1
      SLIRP_CONFIG_VERSION_MAX: 3
      libseccomp: 2.5.0
  swapFree: 4294963200
  swapTotal: 4294963200
  uptime: 15h 53m 59.33s (Approximately 0.62 days)
registries:
  search:
  - registry.fedoraproject.org
  - registry.access.redhat.com
  - registry.centos.org
  - docker.io
store:
  configFile: /home/ry/.config/containers/storage.conf
  containerStore:
    number: 21
    paused: 0
    running: 0
    stopped: 21
  graphDriverName: overlay
  graphOptions:
    overlay.mount_program:
      Executable: /usr/bin/fuse-overlayfs
      Package: fuse-overlayfs-1.4.0-1.fc33.x86_64
      Version: |-
        fusermount3 version: 3.9.3
        fuse-overlayfs: version 1.4
        FUSE library version 3.9.3
        using FUSE kernel interface version 7.31
  graphRoot: /home/ry/.local/share/containers/storage
  graphStatus:
    Backing Filesystem: btrfs
    Native Overlay Diff: "false"
    Supports d_type: "true"
    Using metacopy: "false"
  imageStore:
    number: 441
  runRoot: /run/user/1000/containers
  volumePath: /home/ry/.local/share/containers/storage/volumes
version:
  APIVersion: 3.0.0
  Built: 1613753777
  BuiltTime: Fri Feb 19 08:56:17 2021
  GitCommit: ""
  GoVersion: go1.15.8
  OsArch: linux/amd64
  Version: 3.0.1

Package info (e.g. output of rpm -q podman or apt list podman):

podman-3.0.1-1.fc33.x86_64

Have you tested with the latest version of Podman and have you checked the Podman Troubleshooting Guide?

Yes

Additional environment details (AWS, VirtualBox, physical, etc.):
Physical
@openshift-ci-robot openshift-ci-robot added the kind/feature Categorizes issue or PR as related to a new feature. label Mar 31, 2021
@baude
Copy link
Member

baude commented Apr 8, 2021

@jwhonce wdyt?

@github-actions
Copy link

github-actions bot commented May 9, 2021

A friendly reminder that this issue had no activity for 30 days.

@jwhonce
Copy link
Member

jwhonce commented May 11, 2021

@baude Reviewing this code re: #10266 , adding this would require a refactor of the libpod/network package. Not a bad thing, just gonna be needed.

@jwhonce jwhonce pinned this issue May 11, 2021
@vrothberg vrothberg unpinned this issue May 20, 2021
@github-actions
Copy link

A friendly reminder that this issue had no activity for 30 days.

@Luap99 Luap99 added the network Networking related issue or feature label Jun 21, 2021
@Luap99
Copy link
Member

Luap99 commented Sep 3, 2021

I don't think this fits the direction where we are going with 4.0. The goal is to not expose any CNI types via API.

@baude @mheon WDYT?

@mheon
Copy link
Member

mheon commented Sep 3, 2021

Concur - we're moving in a direction of increasing, rather than decreasing, the degree of abstraction between us and CNI.

@rhatdan rhatdan closed this as completed Sep 7, 2021
@github-actions github-actions bot added the locked - please file new issue/PR Assist humans wanting to comment on an old issue or PR with locked comments. label Sep 21, 2023
@github-actions github-actions bot locked as resolved and limited conversation to collaborators Sep 21, 2023
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
kind/feature Categorizes issue or PR as related to a new feature. locked - please file new issue/PR Assist humans wanting to comment on an old issue or PR with locked comments. network Networking related issue or feature
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
7 participants
@jwhonce @rcgoodfellow @rhatdan @mheon @baude @openshift-ci-robot @Luap99