New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
DNS Proxy: Adds UDP checksum for IPv6 Responses #29493
Conversation
76665b9
to
51c4b91
Compare
The
Similar to #29315 flake. Maybe the 30-second timeout is not long enough for the change in the service to take effect so I'm rerunning the tests. |
/test |
51c4b91
to
5d1c938
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Great catch! Could you add a unit test for checksum calculation? Then we can get this merged.
Fixes cilium#28678 Signed-off-by: Daneyon Hansen <daneyon.hansen@solo.io>
/test |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I manually added another test case with real-world addresses, it passed. Thanks!
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM, thanks! 💯
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM, thanks
Updates the DNS proxy to compute a UDP checksum over the IPv6 response packet and the pseudo-header. If the computation yields a result of zero, it changes the checksum to hex FFFF for placement in the UDP header.
Fixes #28678