Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

bpf: ct: fix CT-based packet tracing for IPv6 #26476

Merged
merged 1 commit into from
Jun 26, 2023
Merged

bpf: ct: fix CT-based packet tracing for IPv6 #26476

merged 1 commit into from
Jun 26, 2023

Conversation

julianwiedmann
Copy link
Member

@julianwiedmann julianwiedmann commented Jun 26, 2023
edited

While refactoring the CT lookup helpers, I fat-fingered the order of parameters in the ct_lookup6() helper (which is used by eg. bpf_lxc). But as both parameters are primarily used for tracing policy, this didn't completely break things - we just don't get the expected trace output for packets, and have problems detecting closed / reopened connections.

Fix the parameters up to make things work again.

Fixes: eee902f ("bpf: conntrack: introduce an optimized CT lookup for LB")
Fixes: #26418
Reported-by: Marco Iorio marco.iorio@isovalent.com

@julianwiedmann
bpf: ct: fix CT-based packet tracing for IPv6
3b868cb 
While refactoring the CT lookup helpers, I fat-fingered the order of
parameters in the ct_lookup6() helper (which is used by eg. bpf_lxc).
But as both parameters are primarily used for tracing policy, this didn't
completely break things - we just don't get the expected trace output for
packets, and have problems detecting closed / reopened connections.

Fix the parameters up to make things work again.

Fixes: eee902f ("bpf: conntrack: introduce an optimized CT lookup for LB")
Reported-by: Marco Iorio <marco.iorio@isovalent.com>
Signed-off-by: Julian Wiedmann <jwi@isovalent.com>
@julianwiedmann julianwiedmann added kind/bug This is a bug in the Cilium logic. sig/datapath Impacts bpf/ or low-level forwarding details, including map management and monitor messages. release-note/bug This PR fixes an issue in a previous release of Cilium. kind/regression This functionality worked fine before, but was broken in a newer release of Cilium. feature/ipv6 Relates to IPv6 protocol support needs-backport/1.13 This PR / issue needs backporting to the v1.13 branch labels Jun 26, 2023
@julianwiedmann julianwiedmann requested a review from a team as a code owner June 26, 2023 07:10
@maintainer-s-little-helper maintainer-s-little-helper bot added this to Needs backport from main in 1.13.5 Jun 26, 2023
@julianwiedmann julianwiedmann mentioned this pull request Jun 26, 2023
Closed
2 tasks
@julianwiedmann
Copy link
Member Author

/test

@borkmann borkmann added the release-blocker/1.13 This issue will prevent the release of the next version of Cilium. label Jun 26, 2023
@maintainer-s-little-helper maintainer-s-little-helper bot added the ready-to-merge This PR has passed all tests and received consensus from code owners to merge. label Jun 26, 2023
@borkmann borkmann merged commit ee5f473 into cilium:main Jun 26, 2023
66 checks passed
@julianwiedmann julianwiedmann deleted the 1.14-bpf-ct-ipv6-tracing branch June 26, 2023 10:35
@tklauser tklauser mentioned this pull request Jun 28, 2023
Merged
3 tasks
@tklauser tklauser added backport-pending/1.13 The backport for Cilium 1.13.x for this PR is in progress. and removed needs-backport/1.13 This PR / issue needs backporting to the v1.13 branch labels Jun 28, 2023
@maintainer-s-little-helper maintainer-s-little-helper bot moved this from Needs backport from main to Backport pending to v1.13 in 1.13.5 Jun 28, 2023
@tklauser tklauser added backport-done/1.13 The backport for Cilium 1.13.x for this PR is done. and removed backport-pending/1.13 The backport for Cilium 1.13.x for this PR is in progress. labels Jun 28, 2023
@maintainer-s-little-helper maintainer-s-little-helper bot moved this from Backport pending to v1.13 to Backport done to v1.13 in 1.13.5 Jun 28, 2023
@joestringer joestringer mentioned this pull request Jun 28, 2023
Merged
@gentoo-root gentoo-root mentioned this pull request Jul 26, 2023
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@borkmann borkmann borkmann approved these changes

@jschwinger233 jschwinger233 jschwinger233 approved these changes

Assignees
No one assigned
Labels
backport-done/1.13 The backport for Cilium 1.13.x for this PR is done. feature/ipv6 Relates to IPv6 protocol support kind/bug This is a bug in the Cilium logic. kind/regression This functionality worked fine before, but was broken in a newer release of Cilium. ready-to-merge This PR has passed all tests and received consensus from code owners to merge. release-blocker/1.13 This issue will prevent the release of the next version of Cilium. release-note/bug This PR fixes an issue in a previous release of Cilium. sig/datapath Impacts bpf/ or low-level forwarding details, including map management and monitor messages.
Projects
No open projects
1.13.5
Backport done to v1.13
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

cilium monitor and hubble not reporting correctly IPv6 TCP traffic
4 participants
@julianwiedmann @borkmann @jschwinger233 @tklauser