Porting Iptables patch for fullcone NAT to bullseye 5.10 kernel #3
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
…et#8381) install build dep causes dpkg lock issue in parallel build Signed-off-by: Guohan Lu <[email protected]>
* DellEMC: Change PG values for S5232f,Z9264f * change-v1
…#8330) #### Why I did it 1. Add version control for debian* docker image to white list. 2. Always record docker image sha256 value, regardless of white list.
This PR updates the following commits cd3cca7 [Y-Cable][Credo] Credo implementation of YCable class which inherits from YCableBase required for Y-Cable API's in sonic-platform-daemons (sonic-net#203) bd694b2 Load interval from thermal_policy.json (sonic-net#178) c43dc17 [sonic_y_cable] add abstract class YCableBase required for Y-cable API support for multiple vendors (sonic-net#186) Signed-off-by: vaibhav-dahiya <[email protected]>
This is the continuation of PR 8381 and is needed for debian 11 build. Signed-off-by: Guohan Lu <[email protected]>
…et#7965) #### Why I did it hostcfgd is starting at the same time as 'create_switch' method is called on orchagent process. This introduce a degradation on the function execution time which eventually cause the fast-boot flow and a boot scenarion in general to run slower (~6 seconds). This change will delay the start time of this daemon. The aaastatsd will delay as well since it has a dependency on hostcfgd, so it is required to delay both. 90 seconds determined as the maximum allowed downtime for control plane to come back up on fast-boot flow. #### How I did it Add two timers for hostcfgd and aaastatsd services in order to delay the startup of these services. #### How to verify it Install an image with this change and observe the daemons start 90 seconds after the system boot.
…#8391) Fix warning shown during compilation [ DPKG ] Cache is not enabled for opennsl-modules-dnx_5.0.0.4_amd64.deb package
…e it to connect to dockerd (sonic-net#8398) Use DOCKER_HOST. Every client including docker command and python docker API uses this environment variable to connect to dockerd. Signed-off-by: Stepan Blyschak <[email protected]>
…et#8210) Signed-off-by: Rajkumar Pennadam Ramamoorthy [email protected] Why I did it Install sonic image from ONIE. Once system is up, execute "config reload" command. Root cause is that "determine-reboot-cause.service" was in failed state. root@sonic:/host/reboot-cause# systemctl list-units --failed UNIT LOAD ACTIVE SUB DESCRIPTION ● determine-reboot-cause.service loaded failed failed Reboot cause determination service How I did it Fixed the issue by setting default reason to "REBOOT_CAUSE_UNKNOWN" instead of "None". How to verify it Check " determine-reboot-cause.service' loaded successfully post image installation from ONIE. Verify "reboot-cause.txt" file is created and config reload succeeds.
…c-net#8382) * BRCM Disable ACL Drop counted towards interface RX_DRP counters
Co-authored-by: Arun LK <[email protected]> Why I did it Support for show system-health command in s5232f How I did it Added the configuration, API changes to support system health How to verify it Execute "show system-health summary/detail/monitor-list" CLI.
…-net#8370) enable automated test suites to selectively run relevant tests ( or not run tests ) based upon a new port_type identifier in hwsku.json How I did it Modified the valid optional fields in validity check for hwsku.json per recommendation from Joe in https://github.com/Azure/sonic-mgmt/pull/2654/files Co-authored-by: Carl Keene <[email protected]>
… DellEMC-Z9332f-O32) (sonic-net#8420) Updated pg_profile_lookup.ini for both HWSKU to match with BRCM recommendation
…#8379) #### Why I did it New SN410 A1 system has a different sensor layout with A0 system, needs a new sensor conf file to support it. #### How I did it Since the SN4410 A1 system use exactly the same sensor layout as the SN4700 A1 system, so add a symbol link linking to the SN4700 A1 sensor conf file to reuse. #### How to verify it Run sensor test against the SN4410 A1 system; Run platform related regression test against the SN4410 A1 system
…ut mechanism (sonic-net#8138) Why I did it fix the dx010 system eeprom unavailable issue How I did it enable the i2c slave 30ms timeout mechanism How to verify it i2cstress test in DX010 iSMT controller bus Co-authored-by: nicwu-cel <[email protected]>
Co-authored-by: richardyu-ms <[email protected]>
* add hwsku.json for the Nokia-7215 * added required default_brkout_mode to hwsku as its not optional * remove tabs from the file so spacing consistent Co-authored-by: Carl Keene <[email protected]>
…#7731) Why I did it Support to build armhf/arm64 platforms on arm based system without qemu simulator. When building the armhf/arm64 on arm based system, it is not necessary to use qemu simulator. How I did it Build armhf on armhf system, or build arm64 on arm64 system, by default, qemu simulator will not be used. When building armhf on arm64, and you have enabled armhf docker, then it will build images without simulator automatically. It is based how the docker service is run. Docker base image change: For amd64, change from debian:to amd64/debian: For arm64, change from multiarch/debian-debootstrap:arm64- to arm64v8/debian: For armhf, change from multiarch/debian-debootstrap:armhf- to arm32v7/debian: See https://github.com/docker-library/official-images#architectures-other-than-amd64 The mapping relations: arm32v6 --- armel arm32v7 --- armhf arm64v8 --- arm64 Docker image armhf deprecated info: https://hub.docker.com/r/armhf/debian, using arm32v7 instead.
Co-authored-by: richardyu-ms <[email protected]>
d8ca31c (origin/master, origin/HEAD, master) [vnet/vxlan] Add support of multiple mappers for the VxLAN tunnel (sonic-net#1843) 7280e19 [orchagent][ports] Add port reference increment / decrement to lag member add / remove flows (sonic-net#1825) 0217b66 [nhg]: Add support for weight in nexthop group member. (sonic-net#1853) df96059 VOQ: Nexthop for remote VOQ LC should be created on inband OIF. (sonic-net#1823) 8f7ea14 Code changes to support IPv6 Link local enhancements (sonic-net#1463) 8674b3c Open record file in append mode (sonic-net#1845) Signed-off-by: Andriy Yurkiv <[email protected]>
…t#7992) Why I did it [DPB] BGP_NEIGHBOR yang model causing DPB errors. How I did it Allowed the BGP_NEIGHBOR list with just IP as the key to allow the current BGP neighbor table in the community. How to verify it Built the SONIC YANG models.
Update FRR 7.5.1 head.
This PR for submodule update adds the following commits ce51894 [Y-Cable] add the definition inside setup.py to include sonic_y_cable.credo as a package (sonic-net#211) Signed-off-by: vaibhav-dahiya <[email protected]>
strncpy calls need to be mindful about the destination buffer size passed in and doing an explicit null termination. Signed-off-by: Saikrishna Arcot <[email protected]>
…oading minigraph (sonic-net#8711) To Fix sonic-net#8697 . The config load_minigraph initializes 'admin_status' to up when platform.json has DPB configs. This doesn't happen when using port_config.ini The update minigraph has logic to initialize only the ports whose neighbors are defined or those belonging to portchannel However, a change was introduced to have default admin status to be 'up' in portconfig.py when the minigraph was using platform.json This will lead to sanity check failure in sonic-mgmt and thus no test cases could be run
*Removed execute permissions from the systemd copp-config.service file. Without this we will get a warning: "Configuration file /lib/systemd/system/copp-config.service is marked executable. Please remove executable permission bits. Proceeding anyway."
5.10.46 is what is shipped with Bullseye. Signed-off-by: Saikrishna Arcot <[email protected]>
… incomprehensible firmware Error print (sonic-net#8690) What I did: add platform components How I did it: In platform_components.json add chassis and empty component How to verify it: Run show platform firmware updates
…ot time (sonic-net#7965)" (sonic-net#8705)" (sonic-net#8724) This reverts commit f4dea87.
Signed-off-by: Saikrishna Arcot <[email protected]>
… commands are executed from linecards (sonic-net#8065) * [multi-asic][cli][chassis-db] Avoiding connecting to chassis db Currently, for all the cli commands, we connect to all databases mentioned in the database_config.json. The database_config.json also includes the databases from chassis redis server from supervisor card. It is unneccessary to connect to databases from chassis redis server when cli commands are executed form linecard. But we need to allow connection to chassis databases when the cli commands are executed from supervisor card. The changes in this PR fixes this problem. This PR requires that asic.conf in supervisor card includes VOQ_SUPERVISOR with value 1 to indentify the supervisor card. The connect_to_all_dbs_for_ns() is changed to skip chassis databases form the list of collected databases if the card is not supervisor card.
Signed-off-by: Saikrishna Arcot <[email protected]>
2cd6236 [voq][chassis] Fix for issue in chassis redis server connection check (sonic-net#110) 9da577d [port_util] Fix issue in function get_interface_oid_map (sonic-net#114) 740a44c [port_util] Allow system without ports in config db run without errors (sonic-net#109) d07682e Merge pull request sonic-net#111 from xumia/azp-coverage 482cac2 [Ethernet-IB][index] Modifed the port_util to support the VoQ Inband Port (sonic-net#113) 69eac92 Support azp diff coverage Signed-off-by: liora <[email protected]>
Added logrotate file for wtmp and btmp to override default conf and set size cap as 100K as done in PR: sonic-net#865. For buster this is control by separate file wtmp and btmp. Signed-off-by: Abhishek Dosi <[email protected]>
* DellEMC: Z9332f fix platform bugs * update sfp.py
* [Nokia ixs7215] Support show system-health * [Nokia ixs7215] Fix LGTM alert
* Add pipeline to build vhdx image
Signed-off-by: Prince George <[email protected]>
sonic-net#8783) This PR aims to fix the healthd crash issue by adding system health monitoring configuration file for platform Celestica E1031 by adding a new configuration file under the path device/celestica/x86_64-cel_e1031-r0/. How to verify it I manually restart the system-health.service and confirmed that healthd is running. Signed-off-by: Yong Zhao <[email protected]>
The kernel already provides psample, and with module versioning being done in modpost, having the SDK compile its own copy of psample breaks loading dependent modules. Signed-off-by: Saikrishna Arcot <[email protected]>
There is an issue discovered by Alexander Allen where manually removing
an interface from a vlan doesn't appear to fully remove it from the
vlan. If the `bridge vlan del` command (from iproute2 version 4.20) is
used to manually remove an interface from a vlan, then running `bridge
vlan show` afterwards still lists that interface, but with no vlan ID,
suggesting it's not fully removed from that vlan. Using the `bridge`
command from iproute version 5.10 removes it cleanly, suggesting that
it's some issue between the iproute2 4.20 package and the 5.10 kernel.
To fix this issue, in all Buster-based docker containers, use iproute2
5.10 from the backports section of Buster. This ensures that all of the
containers have a fully functional version of iproute2 available.
Working test case:
```
admin@vlab-01:~$ sudo config vlan add 50
admin@vlab-01:~$ sudo config vlan member add 50 Ethernet4
admin@vlab-01:~$ sudo bridge vlan show dev Ethernet4
port vlan-id
Ethernet4 50
admin@vlab-01:~$ docker exec -it swss bash
root@vlab-01:/# apt-cache policy iproute2
iproute2:
Installed: 5.10.0-4~bpo10+1
Candidate: 5.10.0-4~bpo10+1
Version table:
*** 5.10.0-4~bpo10+1 100
100 http://debian-archive.trafficmanager.net/debian buster-backports/main amd64 Packages
100 http://packages.trafficmanager.net/debian/debian buster-backports/main amd64 Packages
100 /var/lib/dpkg/status
5.9.0-1~bpo10+1 100
100 http://packages.trafficmanager.net/debian/debian buster-backports/main amd64 Packages
4.20.0-2+deb10u1 500
500 http://debian-archive.trafficmanager.net/debian buster/main amd64 Packages
500 http://packages.trafficmanager.net/debian/debian buster/main amd64 Packages
4.20.0-2 500
500 http://packages.trafficmanager.net/debian/debian buster/main amd64 Packages
root@vlab-01:/# bridge vlan del vid 50 dev Ethernet4
root@vlab-01:/# bridge vlan show dev Ethernet4
port vlan-id
root@vlab-01:/#
```
Signed-off-by: Saikrishna Arcot <[email protected]>
Signed-off-by: Saikrishna Arcot <[email protected]>
ISSU will likely be broken. As of right now, the issu-version file is not being generated during build. Signed-off-by: Saikrishna Arcot <[email protected]>
…te file instead of the individual container definitions Signed-off-by: Saikrishna Arcot <[email protected]>
Signed-off-by: Kiran Kella <[email protected]>
|
Created on master, intended to raise on bullseye-upgrade-base. Hence closing this PR. |
saiarcot895
pushed a commit
that referenced
this pull request
Dec 20, 2024
…et#21095) Adding the below fix from FRR FRRouting/frr#17297 This is to fix the following crash which is a statistical issue [Thread debugging using libthread_db enabled] Using host libthread_db library "/lib/x86_64-linux-gnu/libthread_db.so.1". Core was generated by `/usr/lib/frr/zebra -A 127.0.0.1 -s 90000000 -M dplane_fpm_nl -M snmp'. Program terminated with signal SIGABRT, Aborted. #0 0x00007fccd7351e2c in ?? () from /lib/x86_64-linux-gnu/libc.so.6 [Current thread is 1 (Thread 0x7fccd6faf7c0 (LWP 36))] (gdb) bt #0 0x00007fccd7351e2c in ?? () from /lib/x86_64-linux-gnu/libc.so.6 #1 0x00007fccd7302fb2 in raise () from /lib/x86_64-linux-gnu/libc.so.6 #2 0x00007fccd72ed472 in abort () from /lib/x86_64-linux-gnu/libc.so.6 #3 0x00007fccd75bb3a9 in _zlog_assert_failed (xref=xref@entry=0x7fccd7652380 <_xref.16>, extra=extra@entry=0x0) at ../lib/zlog.c:678 #4 0x00007fccd759b2fe in route_node_delete (node=<optimized out>) at ../lib/table.c:352 #5 0x00007fccd759b445 in route_unlock_node (node=0x0) at ../lib/table.h:258 #6 route_next (node=<optimized out>) at ../lib/table.c:436 #7 route_next (node=node@entry=0x56029d89e560) at ../lib/table.c:410 #8 0x000056029b6b6b7a in if_lookup_by_name_per_ns (ns=ns@entry=0x56029d873d90, ifname=ifname@entry=0x7fccc0029340 "PortChannel1020") at ../zebra/interface.c:312 #9 0x000056029b6b8b36 in zebra_if_dplane_ifp_handling (ctx=0x7fccc0029310) at ../zebra/interface.c:1867 #10 zebra_if_dplane_result (ctx=0x7fccc0029310) at ../zebra/interface.c:2221 #11 0x000056029b7137a9 in rib_process_dplane_results (thread=<optimized out>) at ../zebra/zebra_rib.c:4810 #12 0x00007fccd75a0e0d in thread_call (thread=thread@entry=0x7ffe8e553cc0) at ../lib/thread.c:1990 #13 0x00007fccd7559368 in frr_run (master=0x56029d65a040) at ../lib/libfrr.c:1198 #14 0x000056029b6ac317 in main (argc=9, argv=0x7ffe8e5540d8) at ../zebra/main.c:478
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Ported Iptables patch for supporting fullcone NAT option to 5.10 kernel.
Signed-off-by: Kiran Kella [email protected]