Bug 1820739 - [RFE] Openvswitch fast path should cache arp entries when ovs-vswitch quits so that new connections to existing vports don't get a "No Route To Host"
Summary: [RFE] Openvswitch fast path should cache arp entries when ovs-vswitch quits s...
Keywords:
Status: NEW
Alias: None
Product: Red Hat Enterprise Linux Fast Datapath
Classification: Red Hat
Component: openvswitch
Version: RHEL 8.0
Hardware: All
OS: Linux
unspecified
medium
Target Milestone: ---
: ---
Assignee: Timothy Redaelli
QA Contact: qding
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2020-04-03 18:41 UTC by Aniket Bhat
Modified: 2023-07-13 07:25 UTC (History)
3 users (show)

Fixed In Version:
Doc Type: If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:
Target Upstream Version:
Embargoed:


Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Issue Tracker FD-554 0 None None None 2022-02-22 06:13:44 UTC

Description Aniket Bhat 2020-04-03 18:41:46 UTC
User-Agent:       Mozilla/5.0 (Macintosh; Intel Mac OS X 10.14; rv:74.0) Gecko/20100101 Firefox/74.0
Build Identifier: 

When ovs-vswitchd process dies as a part of the pod upgrade (in openshift), any new connections to existing vports get a "No Route To Host" error. This causes a disruption of service during upgrades.

The RFE is to request that as a part of ovs-vswitchd process dying, we implement logic to prevent flows to existing vports from being denied at L2. 

For instance, we could PUT all the ARP reply flows corresponding to existing vports into the fast path to give the semblance of connectivity. We can then rely on higher level protocols such as a "SYN retransmission" to give clients a way to retry.

It is understood that this affects even existing flows in the fast path, i.e. for instance a TCP packet has a different flag set (say PSH/ACK) than what is in the fast path, without vswitchd to do conn-track, the connection may get dropped.

Reproducible: Always


Note You need to log in before you can comment on or make changes to this bug.