[ovs-dev] [PATCH 0/3] Fix tunnel neighbor cache population

Zoltan Balogh zoltan.balogh at ericsson.com
Tue Dec 5 10:43:13 UTC 2017


Currenlty, OVS snoops any ARP or ND packets in any bridge and populates
the tunnel neighbor cache with the retreived data. For instance, when
ARP reply originated by a tenant is received on an overlay bridge, the
ARP message is snooped and tunnel neighbor cache is filled with tenant
data, however only tunnel neighbor data should be stored there.
In worst case tunnel peer data could be overwritten in the cache. Which
triggers revalidation as well.

This series resolves the issue, by trying to snoop ARP and ND messages
addressing tunnel end point in current bridge.

Zoltan Balogh (3):
  ofproto-dpif-sflow: propagate actions within clone
  tests: modify ARP snoop tests for tunneling with clone
  xlate: call tnl_neigh_snoop() from terminate_native_tunnel()

 include/sparse/netinet/in.h   |  10 +++
 lib/tnl-neigh-cache.c         |   1 +
 ofproto/ofproto-dpif-sflow.c  |  19 ++++--
 ofproto/ofproto-dpif-sflow.h  |   2 +-
 ofproto/ofproto-dpif-upcall.c |   2 +-
 ofproto/ofproto-dpif-xlate.c  | 150 ++++++++++++++++++++++++++++++++++++++++--
 tests/ofproto-dpif.at         |   2 +-
 tests/tunnel-push-pop-ipv6.at |  78 ++++++++++++++++++++--
 tests/tunnel-push-pop.at      |  91 +++++++++++++++++++++----
 9 files changed, 319 insertions(+), 36 deletions(-)

-- 
2.14.1



More information about the dev mailing list