Skip to content

Commit

Permalink
ipcache: Improve IdentityMetadata description
Browse files Browse the repository at this point in the history 
Add a short blurb to describe the relationship between the
IdentityMetadata map and the rest of the Cilium agent. For a more
detailed design, see earlier commits, in particular:
"ipcache, policy: Inject labels from identity metadata".

Signed-off-by: Joe Stringer <joe@cilium.io>
  • Loading branch information
@joestringer
joestringer committed Nov 16, 2021
1 parent b83b9d4 commit 8b5ae5e
Showing 1 changed file with 7 additions and 0 deletions.
7 changes: 7 additions & 0 deletions pkg/ipcache/metadata.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -32,6 +32,13 @@ var (
// order to prevent deadlocks.
idMDMU lock.RWMutex
// identityMetadata maps IP prefixes (x.x.x.x/32) to their labels.
//
// When allocating an identity to associate with each prefix, the
// identity allocation routines will merge this set of labels into the
// complete set of labels used for that local (CIDR) identity,
// thereby associating these labels with each prefix that is 'covered'
// by this prefix. Subsequently these labels may be matched by network
// policy and propagated in monitor output.
identityMetadata = make(map[string]labels.Labels)

// ErrLocalIdentityAllocatorUninitialized is an error that's returned when
Expand Down

0 comments on commit 8b5ae5e

Please sign in to comment.