openvswitch gre tunnels not working in quantal

This bug is missing log files that will aid in diagnosing the problem. From a terminal window please run:

apport-collect 1068365

and then change the status of the bug to 'Confirmed'.

If, due to the nature of the issue you have encountered, you are unable to run this command, please add a comment stating that fact and change the bug status to 'Confirmed'.

This change has been made by an automated script, maintained by the Ubuntu Kernel Team.

Does this issue go away if you boot into the Precise kernel on a Quantal install?

Looks like deeply hidden in here (http://openvswitch.org/pipermail/discuss/2012-June/007413.html) it say the kernel openvswitch module has no implicit gre support.

Quoting Stefan Bader (<email address hidden>):
> Looks like deeply hidden in here
> (http://openvswitch.org/pipermail/discuss/2012-June/007413.html) it say
> the kernel openvswitch module has no implicit gre support.

Boy that is a tough thread to follow. At first I thought it was
saying there is a different way to accomplish it, but the redhat
bugzilla explicitly says there is not.

If this is the case, I think this is a huge regression, and we need
the openvswitch-datapath-dkms package back as it is the only way to
achieve the tunnels which worked in precise.

The dkms package was disabled as its not compatible with the 3.5 kernel; this decision was taken under the assumption that the upstream kernel module was feature comparable with the dkms provided kernel module.

As this appears not to be the case then we need to focus on:

1) Making the dkms package work again with the 3.5 kernel and re-introducing it under SRU
2) Fixing the kernel openvswitch module to support gre.

This bug will potentially impact openstack installations using quantum on quantal (its OK on precise which reflects Serge's finding).

It may be possible but we are facing same issue even in vlan and gre

https://answers.launchpad.net/quantum/+question/211395

I cut a new package based on trunk of openvswitch (1.8.90) and other than a high latency on the first connection over the bridge, things worked OK (i.e. the dkms package built and installed OK).

Branch linked with cherry picked patches from upstream master branch which enable the DKMS package on 3.5 kernel for 1.4.3 release.

> The dkms package was disabled as its not compatible with the 3.5 kernel; this decision was taken under the assumption that the upstream kernel module was feature comparable with the dkms provided kernel module.

That's right, the Open vSwitch FAQ says:

Q: What features are not available in the Open vSwitch kernel datapath
   that ships as part of the upstream Linux kernel?

A: The kernel module in upstream Linux 3.3 and later does not include
   the following features:

       - Bridge compatibility, that is, support for the ovs-brcompatd
         daemon that (if you enable it) lets "brctl" and other Linux
         bridge tools transparently work with Open vSwitch instead.

         We do not expect bridge compatibility to ever be available in
         upstream Linux. If you need bridge compatibility, use the
         kernel module from the Open vSwitch distribution instead of the
         upstream Linux kernel module.

       - Tunnel virtual ports, that is, interfaces with type "gre",
         "ipsec_gre", "capwap". It is possible to create tunnels in
         Linux and attach them to Open vSwitch as system devices.
         However, they cannot be dynamically created through the OVSDB
         protocol or set the tunnel ids as a flow action.

         Work is in progress in adding these features to the upstream
         Linux version of the Open vSwitch kernel module. For now, if
         you need these features, use the kernel module from the Open
         vSwitch distribution instead of the upstream Linux kernel
         module.

       - Patch virtual ports, that is, interfaces with type "patch".
         You can use Linux "veth" devices as a substitute.

         We don't have any plans to add patch ports upstream.

Thanks Ben - found that a bit earlier today...

Any chance you could take a look at the proposed cherry pick patches in the branch to see if they look sane?

They are testing OK and performance looks comparable with that in 12.04 on 1.4.0 of openvswitch.

> Any chance you could take a look at the proposed cherry pick patches in the branch to see if they look sane?

I'd be glad to do so, but I'm not having any luck finding the proposed cherry pick patches. (I always have a terrible time finding my way around launchpad.)

I managed to find the patches.

All of those patches seem reasonable to me.

Thanks for the feedback Ben; I'll get the SRU moving.

(the package in ppa:james-page/junk works for me; i'll verify it in quantal-proposed when available)

Uploaded to -proposed for SRU team review.

Hello Serge, or anyone else affected,

Accepted into quantal-proposed. The package will build now and be available in a few hours in the -proposed repository.

Please help us by testing this new package. See https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to enable and use -proposed. Your feedback will aid us getting this update out to other Ubuntu users.

If this package fixes the bug for you, please change the bug tag from verification-needed to verification-done. If it does not, change the tag to verification-failed. In either case, details of your testing will help us make a better decision.

Further information regarding the verification process can be found at https://wiki.ubuntu.com/QATeam/PerformingSRUVerification . Thank you in advance!

This bug was fixed in the package openvswitch - 1.4.3-0ubuntu2

---------------
openvswitch (1.4.3-0ubuntu2) quantal-proposed; urgency=low

  * Re-enable the openvswitch-datapath-dkms package to enable support
    for gre tunnels between virtual switches which is not supported
    in the kernel provided openvswitch module (LP: #1068365).
    - d/patches/0001->0008*.patch: Cherry picked patches from upstream
      trunk which enable support for the 3.5 linux kernel and align
      dkms module naming with kernel module naming.
    - d/dkms.conf.in: Drop _mod postfix from dkms module names.
 -- James Page <email address hidden> Tue, 23 Oct 2012 17:24:17 +0200

Verified with my juju charm (updating to -proposed at start of hooks/install). Thanks!

The verification of this Stable Release Update has completed successfully and the package has now been released to -updates. Subsequently, the Ubuntu Stable Release Updates Team is being unsubscribed and will not receive messages about this bug report. In the event that you encounter a regression using the package from -updates please report a new bug using ubuntu-bug and tag the bug report regression-update so we can easily find any regresssions.

This bug was fixed in the package openvswitch - 1.4.3-0ubuntu2

---------------
openvswitch (1.4.3-0ubuntu2) quantal-proposed; urgency=low

  * Re-enable the openvswitch-datapath-dkms package to enable support
    for gre tunnels between virtual switches which is not supported
    in the kernel provided openvswitch module (LP: #1068365).
    - d/patches/0001->0008*.patch: Cherry picked patches from upstream
      trunk which enable support for the 3.5 linux kernel and align
      dkms module naming with kernel module naming.
    - d/dkms.conf.in: Drop _mod postfix from dkms module names.
 -- James Page <email address hidden> Tue, 23 Oct 2012 17:24:17 +0200

Hi!

 I'm using Ubuntu Quantal 12.10 64 bits, with "openvswitch-switch 1.4.3-0ubuntu2" and...:

tail /var/log/quantum/openvswitch-agent.log

2012-12-31 00:49:10 ERROR [quantum.plugins.openvswitch.agent.ovs_quantum_agent] Failed to create OVS patch port. Cannot have tunneling enabled on this agent, since this version of OVS does not support tunnels or patch ports. Agent terminated!

 So, not solved... I think...

Tks,
Thiago

Thiago,

I *think* you misunderstood.

There is no claim that this is fixed in the upstream driver.

Rather the openvswitch-dkms package, which has the non-upstream kernel driver, was re-added to the archive. You can install and use it to use this feature until the feature is added to the upstream kernel driver.

Thank you Serge! I'll try that... Sorry for the confusion.