[Bug 1860987] Re: openvswitch: same tcp session encapsulated with different udp src port for ovs vxlan tunnel
James Page
1860987 at bugs.launchpad.net
Fri Jul 2 09:07:07 UTC 2021
Present in the Groovy 5.8 kernel and later:
https://kernel.ubuntu.com/git/ubuntu/ubuntu-
groovy.git/tree/include/uapi/linux/openvswitch.h
** Also affects: openvswitch (Ubuntu Bionic)
Importance: Undecided
Status: New
** Also affects: openvswitch (Ubuntu Impish)
Importance: Undecided
Status: New
** Also affects: openvswitch (Ubuntu Focal)
Importance: Undecided
Status: New
** Also affects: openvswitch (Ubuntu Hirsute)
Importance: Undecided
Status: New
** Also affects: openvswitch (Ubuntu Groovy)
Importance: Undecided
Status: New
** Changed in: openvswitch (Ubuntu Focal)
Status: New => Fix Released
** Changed in: openvswitch (Ubuntu Hirsute)
Status: New => Fix Released
** Changed in: openvswitch (Ubuntu Groovy)
Status: New => Fix Released
** Changed in: openvswitch (Ubuntu Impish)
Status: New => Fix Released
** Changed in: openvswitch (Ubuntu Bionic)
Status: New => Triaged
** Changed in: openvswitch (Ubuntu Bionic)
Importance: Undecided => Medium
** Changed in: openvswitch (Ubuntu Focal)
Importance: Undecided => Medium
** Changed in: openvswitch (Ubuntu Groovy)
Importance: Undecided => Medium
** Changed in: openvswitch (Ubuntu Hirsute)
Importance: Undecided => Medium
** Changed in: openvswitch (Ubuntu Impish)
Importance: Undecided => Medium
** Changed in: openvswitch (Ubuntu Bionic)
Importance: Medium => Low
--
You received this bug notification because you are a member of Ubuntu
OpenStack, which is subscribed to openvswitch in Ubuntu.
https://bugs.launchpad.net/bugs/1860987
Title:
openvswitch: same tcp session encapsulated with different udp src port
for ovs vxlan tunnel
Status in linux package in Ubuntu:
Fix Released
Status in openvswitch package in Ubuntu:
Fix Released
Status in linux source package in Bionic:
New
Status in openvswitch source package in Bionic:
Triaged
Status in linux source package in Focal:
New
Status in openvswitch source package in Focal:
Fix Released
Status in linux source package in Groovy:
Fix Released
Status in openvswitch source package in Groovy:
Fix Released
Status in linux source package in Hirsute:
Fix Released
Status in openvswitch source package in Hirsute:
Fix Released
Status in linux source package in Impish:
Fix Released
Status in openvswitch source package in Impish:
Fix Released
Bug description:
[SRU Justification]
[Impact]
Packets encapsulated into a vxlan tunnel with openvswitch don't have
the same udp source port for the first packet and the following ones
of the same TCP flow in a DOCKER scenario usecase.
In fact, when using the kernel datapath, the upcall don't include skb hash info relatived. As VXLAN module uses
the skb hash to select UDP src port, the source port is different for the first packet.
More information can be found here:
https://mail.openvswitch.org/pipermail/ovs-dev/2019-October/364062.html
This has been fixed in the next release openvswitch 2.13 by the following upstream commits:
- 0442bfb11d6ccb ("ofproto-dpif-upcall: Echo HASH attribute back to datapath.")
- c4d8a4e0399910 ("ofproto-dpif: Fix using uninitialized execute hash.")
- 924d94a695a6ca ("ofproto-dpif-upcall: Fix using uninitialized upcall hash.")
https://github.com/openvswitch/ovs/commit/0442bfb11d6ccbf11754ef1d6de603b970465302
https://github.com/openvswitch/ovs/commit/c4d8a4e039991030c1298dbd1335d209cb437875
https://github.com/openvswitch/ovs/commit/924d94a695a6ca54b83d4bd42ec196ba53947c6d
The bug exists since the beginning of vxlan support in openvswitch.
== Fix ==
Backport the requested patches to Focal (5.4), Disco (5.0), Bionic (4.15) and
Xenial (4.4).
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1860987/+subscriptions
More information about the Ubuntu-openstack-bugs
mailing list