Brad Cowie <[email protected]> writes: > Linux kernel commit ebddb1404900 ("net: move the nat function to > nf_nat_ovs for ovs and tc") introduced a regression into the kernel > datapath which prevented the openvswitch match key from being updated > when nat was undone for packets in the related conntrack state. This > issue caused these packets (usually ICMP/ICMPv6 error packets) to > match the wrong openflow rule. > > This issue was fixed in linux kernel commit e6345d2824a3 ("netfilter: > nf_nat: fix action not being set for all ct states"). > > This test will fail for linux kernel versions v6.2 to v6.6, so test is > skipped for versions lower than v6.7. > > Link: https://lore.kernel.org/netdev/[email protected]/ > Suggested-by: Aaron Conole <[email protected]> > Signed-off-by: Brad Cowie <[email protected]> > ---
Thanks, applied. _______________________________________________ dev mailing list [email protected] https://mail.openvswitch.org/mailman/listinfo/ovs-dev
