Thanks for the report. We'll handle to address the issue. SRU patch sent
to ML: https://lists.ubuntu.com/archives/kernel-
team/2024-December/156028.html
SRU Justification
[Impact]
Upstream commit 0bfcb7b71e73 ("netfilter: xtables: avoid NFPROTO_UNSPEC
where needed") was backported to Oracular and Jammy kernels via stable
upstream update (v6.11.4 and v5.15.168 respectively; see LP: #2089068 and
LP: #2086242). However this commit contained a typo, resulting in serious
regressions (see: LP: #2091990). Although a fix has been submitted
upstream, neither Oracular nor Jammy kernels include it yet. This SRU patch
backports the fix to address the issue.
Note that for Oracular, no released kernel is not affected; only the
master-next branch is affected.
[Fix]
Backport upstream commit 306ed1728e84 ("netfilter: xtables: fix typo
causing some targets not to load on IPv6") based on the commits from stable
branches.
[Test Plan]
Verify the issue is resolved with this patch applied, using internal
infrastructure.
[Where problems could occur]
This change impacts netfilter. If any further regressions found, they would
likely impact netfilter users.
--
You received this bug notification because you are a member of Kernel
Packages, which is subscribed to linux in Ubuntu.
https://bugs.launchpad.net/bugs/2091990
Title:
ovs/linuxbridge jobs running on ubuntu jammy broken with latest kernel
5.15.0-127.137
Status in neutron:
New
Status in linux package in Ubuntu:
Confirmed
Bug description:
A commit[1] got backported to ubuntu jammy kernel[2] which had an
issue, Fix is already available[3] but not got released with latest
kernel so all our ovs/linuxbridge/fullstack/functional jobs running on
ubuntu jammy are impacted. Master also impacted as we have grenade
jobs running on ubuntu and 1 dedicated job that we run on ubuntu
jammy.
Errors like below can be seen in these jobs
(4, ('', 'ip6tables-restore v1.8.7 (nf_tables): unknown option
"--set-xmark"\nError occurred at line: 26\nTry `ip6tables-restore -h\' or
\'ip6tables-restore --help\' for more information.\n', 2)) {{(pid=56448)
# Completed by iptables_manager
; Stdout: ; Stderr: ip6tables-restore v1.8.7 (nf_tables): unknown option
"--set-xmark"
Error occurred at line: 26
Try `ip6tables-restore -h' or 'ip6tables-restore --help' for more information.
example failures:-
https://b711d185688da3b864bc-5593d50c131879f6a486eeedbad80e3c.ssl.cf2.rackcdn.com/937879/1/check/neutron-functional-with-uwsgi/91e08a5/testr_results.html
https://2d070bf6c45f6c37d47e-4e5a5ec72a48e33cae1713c394f26e02.ssl.cf1.rackcdn.com/937879/1/check/neutron-fullstack-with-uwsgi/4b33689/testr_results.html
https://storage.bhs.cloud.ovh.net/v1/AUTH_dcaab5e32b234d56b626f72581e3644c/zuul_opendev_logs_720/937879/1/check/neutron-ovs-grenade-dvr-multinode/720442a/controller/logs/grenade.sh_log.txt
https://storage.gra.cloud.ovh.net/v1/AUTH_dcaab5e32b234d56b626f72581e3644c/zuul_opendev_logs_0be/937603/2/check/neutron-tempest-plugin-openvswitch-ubuntu-jammy/0be23a8/testr_results.html
https://7c5dce2b8628b0a2e78b-f88cc2e228aea8b2c74f92ce7ecb609d.ssl.cf1.rackcdn.com/periodic/opendev.org/openstack/neutron/stable/2024.2/neutron-tempest-plugin-linuxbridge-2024-2/1d99042/testr_results.html
[1]
https://github.com/torvalds/linux/commit/0bfcb7b71e735560077a42847f69597ec7dcc326
[2] https://launchpad.net/ubuntu/+source/linux/5.15.0-127.137
[3]
https://github.com/torvalds/linux/commit/306ed1728e8438caed30332e1ab46b28c25fe3d8
To manage notifications about this bug go to:
https://bugs.launchpad.net/neutron/+bug/2091990/+subscriptions
--
Mailing list: https://launchpad.net/~kernel-packages
Post to : kernel-packages@lists.launchpad.net
Unsubscribe : https://launchpad.net/~kernel-packages
More help : https://help.launchpad.net/ListHelp
