neutron

resource ACCEPT LOG can only print once then get CookieNotFound

Bug #1788745 reported by LIU Yulong on 2018-08-24

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	neutron	Invalid	Undecided	Unassigned

Bug Description

ENV:
neutron stable/queens
with backport patches:
Fix no packet log data when debug is set False in configuration
https://review.openstack.org/#/c/591545/

Fix lost connection when create security group log
https://review.openstack.org/#/c/593534/

Fix no ACCEPT event can get for security group logging
https://review.openstack.org/#/c/591547/

service log:
2018-08-24 11:10:53.179 2627349 WARNING neutron.services.logapi.drivers.openvswitch.ovs_firewall_log [-] Unknown cookie=2664476845653012007 packet_in pkt=ethernet(dst='fa:16:3e:73:9f:a3',ethertype=2048,src='fa:16:3e:81:02:32'), ipv4(csum=39526,dst='192.168.111.5',flags=2,header_length=5,identification=50582,offset=0,option=None,proto=6,src='172.16.0.1',tos=0,total_length=60,ttl=63,version=4), tcp(ack=0,bits=2,csum=60919,dst_port=22,offset=10,option=[TCPOptionMaximumSegmentSize(kind=2,length=4,max_seg_size=1460), TCPOptionSACKPermitted(kind=4,length=2), TCPOptionTimestamps(kind=8,length=10,ts_ecr=0,ts_val=3048195896), TCPOptionNoOperation(kind=1,length=1), TCPOptionWindowScale(kind=3,length=3,shift_cnt=7)],seq=3571909294,src_port=47012,urgent=0,window_size=29200): CookieNotFound: Cookie 2664476845653012007 could not be found.

How to reproduce:
1. add ACCEPT log to port and security group
2. ssh to the server <-- here you can see the ACCEPT LOG
3. disconnect the ssh, and ssh again.
Then the resource log has the WARNING CookieNotFound.

So I think code is basiclly same to the master, I think we can reproduce this in master branch.

Tags:

Revision history for this message

Hongbin Lu (hongbin.lu) wrote on 2018-08-25:

Hi @LIU Yulong,

I cannot reproduce this bug. Could you provide the reproducing steps? For example, how did you create the logging resource. If you delete and re-create the logging resource and VM, did you still see the error?

Hongbin Lu (hongbin.lu) on 2018-08-26

tags:

added: ovs-fw

Revision history for this message

Hongbin Lu (hongbin.lu) wrote on 2018-08-26:

I try both master and stable/queens but couldn't reproduce the error. I saw the "ACCEPT" actions were logged without a problem. To further traige this bug, we need more information about how to reproduce the bug.

Revision history for this message

Hongbin Lu (hongbin.lu) wrote on 2018-08-26:

I am going to mark this bug as "incomplete". Please feel free to reset the status as "new" once the reproducing steps are provided.

Changed in neutron:
status:	New → Incomplete

Revision history for this message

LIU Yulong (dragon889) wrote on 2018-08-28:

Disappear from the test env, please retore this if anyone meets this again.

Changed in neutron:
status:	Incomplete → Invalid

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.