[ovs-git] [ovn-org/ovn] d9e150: ovn-northd: Skip conntrack for MLD packets.

Dumitru Ceara noreply at github.com
Fri Sep 11 10:48:00 UTC 2020


  Branch: refs/heads/branch-20.03
  Home:   https://github.com/ovn-org/ovn
  Commit: d9e1501f64392693c8bdbb1ff20c6b810799d9e1
      https://github.com/ovn-org/ovn/commit/d9e1501f64392693c8bdbb1ff20c6b810799d9e1
  Author: Dumitru Ceara <dceara at redhat.com>
  Date:   2020-09-11 (Fri, 11 Sep 2020)

  Changed paths:
    M northd/ovn-northd.8.xml
    M northd/ovn-northd.c
    M tests/ovn.at

  Log Message:
  -----------
  ovn-northd: Skip conntrack for MLD packets.

We currently skip conntrack for IPv6 Neighbor Discovery packets because
conntrack marks all ND packets as invalid [0].

The same thing should be done for MLD packets. Otherwise, as soon as an
allow-related ACL or load balancer is added, MLD packets will go to
conntrack and get dropped because they are marked "invalid".

This commit also fixes the MLD test to use a link local IPv6 source
address.

[0] https://bugzilla.kernel.org/show_bug.cgi?id=11797

Signed-off-by: Dumitru Ceara <dceara at redhat.com>
Signed-off-by: Numan Siddique <numans at ovn.org>

(cherry picked from commit 520189bf313054702f5f802acd7944cca3b6baaa)




More information about the git mailing list