Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Failed to start container in overlay network since "br0" exchange full #18814

Closed
BSWANG opened this issue Dec 21, 2015 · 3 comments
Closed

Failed to start container in overlay network since "br0" exchange full #18814

BSWANG opened this issue Dec 21, 2015 · 3 comments
Assignees
@mavenugo
Labels
area/networking priority/P1 Important: P1 issues are a top priority and a must-have for the next release.
Milestone
1.10.0

Comments

@BSWANG
Copy link
Contributor

BSWANG commented Dec 21, 2015

I am using docker overlay network, my docker-engine information on below.

$ docker info
Containers: 5
Images: 32
Server Version: 1.9.1
Storage Driver: overlay
 Backing Filesystem: extfs
Execution Driver: native-0.2
Logging Driver: json-file
Kernel Version: 4.3.0-1.el7.elrepo.x86_64
Operating System: CentOS Linux 7 (Core)
CPUs: 2
Total Memory: 3.858 GiB
Name: cc821b04098444cb0a020171b6bbc2630-node1
ID: OZI5:2WWI:5GFY:HV5V:YWWS:DDLU:ASPW:D6F2:572T:LYJB:6R5F:BBW6
Cluster store: etcd://10.201.145.128:2379/cc821b04098444cb0a020171b6bbc2630
Cluster advertise: 10.165.126.76:2376

When I create and delete containers in overlay network with at least one container in the network. I will get could not add veth pair inside the network sandbox: error setting interface "vethe1e64f7" master to "br0": exchange full error, and the container remain on created state.

It seems docker daemon not delete the veth pair when deleting containers, and get bridge full when continue create containers in the network since cannot create veth on sandbox's default bridge "br0".

There is one test case below:

#create docker overlay network
docker network create -d overlay multi-host-network
#ensure at least one container in the overlay network
docker run -itd --net multi-host-network busybox
#create and remove container in the network
for (( i=0; i<1024; i++ )) do docker run -itd --net multi-host-network --name test$i busybox; docker rm -f test$i; done;

And I get

...
d7064a4a6218d34da6e4502294c325184780e603c802643bbb666aa44c579347
test1020
2dcabbab16238a34739e850e48e99e32eac2f5c504cf0207afbc475dfa9ebf26
test1021
afa928d3684e7d35d0ce9898262b45148dbb53d52fe60e5041c8a0b07b4a8250
Error response from daemon: Cannot start container afa928d3684e7d35d0ce9898262b45148dbb53d52fe60e5041c8a0b07b4a8250: could not add veth pair inside the network sandbox: error setting interface "veth5cbfa6a" master to "br0": exchange full
test1022
...
@mavenugo mavenugo added this to the 1.10 milestone Dec 21, 2015
@BSWANG BSWANG mentioned this issue Dec 21, 2015
Closed
@wildsurfer
Copy link

is there any workaround to fix this on live environment?

@wildsurfer
Copy link

My workaround was to stop all containers, remove them, remove network overlay, create it with the same name and start all containers back:

$ docker-compose stop
$ docker-compose rm
$ docker network rm mynetwork
$ docker network create mynetwork
$ docker-compose up -d

@BSWANG
Copy link
Contributor Author

BSWANG commented Dec 27, 2015

@wildsurfer remove all containers in the overlay network can fix this, or just restart docker daemon can work too.

@icecrime icecrime added the priority/P1 Important: P1 issues are a top priority and a must-have for the next release. label Dec 29, 2015
@aboch aboch mentioned this issue Jan 7, 2016
Merged
sanimej pushed a commit to sanimej/docker that referenced this issue Jan 8, 2016
Vendoring libnetwork and its dependencies..
8ccf5cf 
- replace /etc/hosts based name resolution with embedded DNS for user
  defined networks
- overlay veth cleanup: moby#18814
- check before programming ipv6 in bridge: moby#19139
- diable DAD: moby#18871

Signed-off-by: Santhosh Manohar <santhosh@docker.com>
@sanimej sanimej mentioned this issue Jan 8, 2016
Merged
@aboch aboch mentioned this issue Jan 31, 2016
Merged
aditirajagopal pushed a commit to aditirajagopal/docker that referenced this issue Feb 8, 2016
Vendoring libnetwork and its dependencies..
f168fac 
- replace /etc/hosts based name resolution with embedded DNS for user
  defined networks
- overlay veth cleanup: moby#18814
- check before programming ipv6 in bridge: moby#19139
- diable DAD: moby#18871

Signed-off-by: Santhosh Manohar <santhosh@docker.com>
@thomasem thomasem mentioned this issue May 19, 2016
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@mavenugo mavenugo

Labels
area/networking priority/P1 Important: P1 issues are a top priority and a must-have for the next release.
Projects
None yet
Milestone
1.10.0
Development

No branches or pull requests
4 participants
@wildsurfer @icecrime @BSWANG @mavenugo