route: sort by priority to identify the default one #18564
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
jibi
added
release-note/bug
joamaki
approved these changes
Jan 21, 2022
jibi
force-pushed
the
pr/jibi/fix-lookup-default-route-multiple-enis
branch
from
a059b83
to
b71aeec
Compare
jibi
force-pushed
the
pr/jibi/fix-lookup-default-route-multiple-enis
branch
from
b71aeec
to
35b0cd5
Compare
jibi
changed the title
In lookupDefaultRoute(), to determine the default route for a given IP
family we list all routes filtering just by the 0.0.0.0 destination.
On some EKS setups where multilple NICs are attached to an instance,
this is not enough to identify a single route, since each interface has
its own default route.
The following example illustrates the problem:
$ ks exec ds/cilium -- ip route list
default via 10.100.1.1 dev eth0
default via 10.100.255.65 dev eth1 metric 10001
169.254.169.254 dev eth0
This will cause the agent to report a fatal error, as it can't find a
single gateway:
cilium-agent level=fatal msg="Error while creating daemon" error="unable to install ip rule for ENI multi-node NodePort: failed to find interface with default route: Found default routes with different netdev ifindices: 2 vs 3" subsys=daemon
To address this issue, this commit changes the logic of
lookupDefaultRoute() to pick the one with the lowest priority.
Signed-off-by: Gilberto Bertin <gilberto@isovalent.com>
jibi
force-pushed
the
pr/jibi/fix-lookup-default-route-multiple-enis
branch
from
35b0cd5
to
dacb326
Compare
jibi
changed the title
|
Job 'Cilium-PR-K8s-1.23-kernel-net-next' failed and has not been observed before, so may be related to your PR: Click to show.Test NameFailure OutputIf it is a flake, comment |
|
/test Job 'Cilium-PR-K8s-1.23-kernel-net-next' hit: #18566 (97.36% similarity) |
joamaki
approved these changes
Jan 21, 2022
jibi
added
needs-backport/1.11
ready-to-merge
gandro
approved these changes
Jan 24, 2022
glibsm
added
backport-done/1.11
maintainer-s-little-helper
bot
moved this from Needs backport from master
to Backport done to v1.11
in 1.11.2
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
In lookupDefaultRoute(), to determine the default route for a given IP
family we list all routes filtering just by the 0.0.0.0 destination.
On some EKS setups where multilple NICs are attached to an instance,
this is not enough to identify a single route, since each interface has
its own default route.
The following example illustrates the problem:
This will cause the agent to report a fatal error, as it can't find a
single gateway:
To address this issue, this commit changes the logic of
lookupDefaultRoute() to pick the one with the lowest priority.