From mboxrd@z Thu Jan  1 00:00:00 1970
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on atuin.qyliss.net
X-Spam-Level: 
X-Spam-Status: No, score=-1.1 required=5.0 tests=DKIM_SIGNED,DKIM_VALID,
	DKIM_VALID_AU,MAILING_LIST_MULTI,RCVD_IN_DNSWL_NONE,SPF_HELO_NONE
	autolearn=unavailable autolearn_force=no version=3.4.6
Received: from atuin.qyliss.net (localhost [IPv6:::1])
	by atuin.qyliss.net (Postfix) with ESMTP id 1C48D366BA;
	Wed, 23 Nov 2022 12:19:01 +0000 (UTC)
Received: by atuin.qyliss.net (Postfix, from userid 496)
	id 1934436763; Wed, 23 Nov 2022 12:18:58 +0000 (UTC)
Received: from mail-ej1-x630.google.com (mail-ej1-x630.google.com
 [IPv6:2a00:1450:4864:20::630])
	by atuin.qyliss.net (Postfix) with ESMTPS id 3419036761
	for <discuss@spectrum-os.org>; Wed, 23 Nov 2022 12:18:54 +0000 (UTC)
Received: by mail-ej1-x630.google.com with SMTP id ha10so6033174ejb.3
        for <discuss@spectrum-os.org>; Wed, 23 Nov 2022 04:18:54 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=unikie.com; s=google;
        h=in-reply-to:content-disposition:mime-version:references:message-id
         :subject:cc:to:from:date:from:to:cc:subject:date:message-id:reply-to;
        bh=dbID2ssPNt+rr6ExQL1qVqqEqfRjLf9FrKwjldSIOCE=;
        b=iMQ4w04xo6uLoHKQDnowUWAb2KITPssZ2MDd33RkiwCfTaj8+7Vs2IDDmm92Z32bgh
         yTmMsRnDZ/XMyyNt7x+sA6740y7q8y7IrI/hSD2XLasGV7dHen/YNx9CLqGx/gKPBziW
         6c2HHYRJAQerdTdtVCgdPLAL+thR5hNM4UyWpOql1uT0ctiEM+SwAh47NfRIK2u3QNpe
         0J9LC+Lb8fJtZr5pgfagATyPn/GhtqVhg/4OL7emn3p+aUluyhPJXi8JizXWZWSbXo9E
         C5g1Hgz3l2GVb+BfuHD69exMU6LyWGnthHw5r1K1TTpcX+wjS2BJlDfjNfa2QZ2L4/zl
         c/mQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20210112;
        h=in-reply-to:content-disposition:mime-version:references:message-id
         :subject:cc:to:from:date:x-gm-message-state:from:to:cc:subject:date
         :message-id:reply-to;
        bh=dbID2ssPNt+rr6ExQL1qVqqEqfRjLf9FrKwjldSIOCE=;
        b=uOAPMXodeuNicPSEIMfYGc0nwzgOiDDgTGk4j8fGn7jzjjsA3pzS/QTX6qrEpA5zOQ
         UMUOMWbOTKeT8SCjPxr6mymJ1/sJo8reFCkXwP9S+vckgR/1tuQpZSle9Tx1fO2jQMD2
         IqkodyWvo/dK+JEua5MNYlGi/GxYEtDsEm0FDn4TXYdb68L4fLjqi4PIlaHuP3YKPGf9
         LruxvVtGs4AwdAgE3LfUupxBv1wQ4TXVMHweBDcTHTvsXh+kkkJBBXO0grXkkLb/vuZQ
         UOrurcOP0IYwvfxD7lOek2dOe6DrsNBAZ3t9bYjzeLb9V3371yCooR5K7IUuID+sYkDR
         EO0A==
X-Gm-Message-State: ANoB5pmhXHNvJY55T6msIqTnyghD2zAAgpiJUu1U9YGSjG3YW3HoNR1q
	SXQgSLd4B/9i/0F2KhbPUMVJSliOgkdQ7MDx
X-Google-Smtp-Source: 
 AA0mqf41WJKXCsLXyXQgz14+EOHGFdjaBSj8obm/KJeO15d5KSlIWphRiTRlCyTpjeAeSeTy5Sl16g==
X-Received: by 2002:a17:907:2c57:b0:7ad:9893:fba9 with SMTP id
 hf23-20020a1709072c5700b007ad9893fba9mr10064425ejc.62.1669205933531;
        Wed, 23 Nov 2022 04:18:53 -0800 (PST)
Received: from x220.qyliss.net (p4feb74b7.dip0.t-ipconnect.de.
 [79.235.116.183])
        by smtp.gmail.com with ESMTPSA id
 s8-20020aa7cb08000000b00461b169c02csm7480454edt.91.2022.11.23.04.18.52
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Wed, 23 Nov 2022 04:18:52 -0800 (PST)
Received: by x220.qyliss.net (Postfix, from userid 1000)
	id 4ADEC95EEC; Wed, 23 Nov 2022 12:18:52 +0000 (UTC)
Date: Wed, 23 Nov 2022 12:18:52 +0000
From: Alyssa Ross <alyssa.ross@unikie.com>
To: Juha Park <Juha.Park@tii.ae>
Subject: Re: Feature to bridge host network from netvm and other vm
Message-ID: <20221123121852.bpdr6nmk5em4uawd@x220>
References: 
 <DX1P273MB0981C419E2C814147ABF8E66940C9@DX1P273MB0981.AREP273.PROD.OUTLOOK.COM>
MIME-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha256;
	protocol="application/pgp-signature"; boundary="nq2omcqit7e4olp4"
Content-Disposition: inline
In-Reply-To: 
 <DX1P273MB0981C419E2C814147ABF8E66940C9@DX1P273MB0981.AREP273.PROD.OUTLOOK.COM>
Message-ID-Hash: XYEOVPEJQXKOB6QKTZXPLDSYJJ3JGT2E
X-Message-ID-Hash: XYEOVPEJQXKOB6QKTZXPLDSYJJ3JGT2E
X-MailFrom: alyssa.ross@unikie.com
X-Mailman-Rule-Hits: header-match-discuss.spectrum-os.org-0
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency;
 loop; banned-address; member-moderation; header-match-config-1
CC: "discuss@spectrum-os.org" <discuss@spectrum-os.org>
X-Mailman-Version: 3.3.5
Precedence: list
List-Id: General high-level discussion about Spectrum
 <discuss.spectrum-os.org>
Archived-At: 
 <https://spectrum-os.org/lists/hyperkitty/list/discuss@spectrum-os.org/message/XYEOVPEJQXKOB6QKTZXPLDSYJJ3JGT2E/>
List-Archive: 
 <https://spectrum-os.org/lists/hyperkitty/list/discuss@spectrum-os.org/>
List-Help: <mailto:discuss-request@spectrum-os.org?subject=help>
List-Owner: <mailto:discuss-owner@spectrum-os.org>
List-Post: <mailto:discuss@spectrum-os.org>
List-Subscribe: <mailto:discuss-join@spectrum-os.org>
List-Unsubscribe: <mailto:discuss-leave@spectrum-os.org>


--nq2omcqit7e4olp4
Content-Type: text/plain; charset=utf-8
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Wed, Nov 23, 2022 at 07:41:00AM +0000, Juha Park wrote:
> Hello.
>
> In the spectrum OS, as far as I know, all appvms will connect to outside =
through netvm.
> And each appvm has different subnet.
> However, sometimes, a app should be able to access the host network by br=
idging.
> For example, an P2P app needs to send and receive multicast or broadcast =
to find other peers.
>
> I wonder if it(bridging to host network) is possible in spectrum OS model=
, and if possible,
> I want to know how to do it.
> And if there is no such feature, I want to know the plan or opinion to su=
pport such app in spectrum OS.

Hi, thanks for your question!

First, to clarify, in Spectrum, the goal is to avoid having any
networking on the host at all, by passing network adapters through to
VMs.  That's immaterial to your question about multicast, etc., just
something important to be aware of.

Bridged networking is definitely on the agenda.  I don't know yet
exactly how it will work =E2=80=94 networking isn't my area of expertise.
As I understand it, one possibility would be to run an NDP proxy in the
network VM, so each VM would get its own IPv6 address on the host
network =E2=80=94 as I recall, that's how Chrome OS does it.  But what exac=
tly
we end up doing will depend on how people who understand networking
better than me (possibly such as yourself) think it should be done.

In general, I'm not too happy with the current state of Spectrum's
networking =E2=80=94 I did it in the way that was easiest to get basic
functionality up and running, especially because a key technology for
doing it better (virtio-vhost-user) wasn't mature enough at the time.
Revisiting it is definitely on the cards, so it's really useful to hear
about use cases like this.

--nq2omcqit7e4olp4
Content-Type: application/pgp-signature; name="signature.asc"

-----BEGIN PGP SIGNATURE-----
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=LKj4
-----END PGP SIGNATURE-----

--nq2omcqit7e4olp4--