Skip to content

v1.32 Backports 2025-06-07 #1392

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: v1.32
Choose a base branch
from
Open

v1.32 Backports 2025-06-07 #1392

wants to merge 1 commit into from

Conversation

sayboras
Copy link
Member

@sayboras sayboras commented Jun 7, 2025

Once this PR is merged, a GitHub action will update the labels of these PRs:

 1385

@sayboras sayboras requested a review from jrajahalme June 7, 2025 04:03
@jrajahalme @sayboras
l7lb: Pass original source address in option for east/west
3bbd9d5 
[ upstream commit be938e4 ]

Source address socket option uses 'hashKey' function to choose the
upstream connection pool. 'hashKey' has no access to the socket (which
has not been created yet), so it needs access to the original source
address which can be either IPv4 or IPv6 to be able to pass in the
original source address and port in the resulting hash.

This fixes the issue with east/west l7lb that caused upstream connection
pool being shared between all local endpoints with the same security
identity, while using the original source address. This manifested as
connection pool attempting to create more than one connection with the
same 5-tuple, which failed and resulted in '503' responses in HTTP.

Fixes: #65
Signed-off-by: Jarno Rajahalme <jarno@isovalent.com>
Signed-off-by: Tam Mach <tam.mach@cilium.io>
@sayboras sayboras force-pushed the pr/v1.32-backport-2025-06-07-02-01 branch from 7f1172e to 3bbd9d5 Compare June 7, 2025 04:22
@sayboras sayboras marked this pull request as ready for review June 7, 2025 04:44
@sayboras sayboras requested a review from a team as a code owner June 7, 2025 04:44
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jrajahalme jrajahalme Awaiting requested review from jrajahalme

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
backport/1.32 kind/backports
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@sayboras @jrajahalme