Michael Maddern

icon location Reading, UK

Results 5 comments of Michael Maddern

[netstack] Invalid TCP checksums for packets from published ports in Docker Desktop

I think you are correct that the checksum offloading causes the initial zeroed out checksum. But when you capture the traffic on the interface inside the container, hasn't a DNAT...

[netstack] Invalid TCP checksums for packets from published ports in Docker Desktop

Sorry for the confusion, I'm referring to when you publish a port, Docker Desktop creates a NAT rule. Start a container with a published port: ``` docker run -p 19080:19080...

[netstack] Invalid TCP checksums for packets from published ports in Docker Desktop

I don't want to over complicate this issue though. The problem is that any NAT rules inside the container will result in invalid tcp checksums for traffic from published ports...

[netstack] Invalid TCP checksums for packets from published ports in Docker Desktop

Yes, if I update the network type in docker desktop to use vpnkit instead, this bug doesn't happen, the checksums are recalculated correctly. But when it's using gvisor the checksums...

buildx build produces git not found warning even with attestations disabled

I've also been seeing this problem for months, and annoyingly didn't find this bug report until now. My MacBook would ask me to install XCode developer tools to install git...