proxmox-mirrors/ceph
1
0
Fork 0
mirror of https://git.proxmox.com/git/ceph.git synced 2025-04-28 10:45:26 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
216 Commits 10 Branches 0 Tags 594 MiB
C++ 59.6%
C 27.9%
Python 3.1%
Assembly 1.6%
Java 1.3%
Other 5.8%
e45d466e43
Go to file
Friedrich Weber e45d466e43 fix #5213: ceph-osd postinst: add patch to avoid connection freezes 
Assume there is an open TCP connection to a VM, and ceph-osd is
installed/upgraded on the host on which the PVE firewall is active.
Currently, ceph-osd postinst reloads all sysctl settings. Thus,
installing/upgrading ceph-osd will set the sysctl setting
`net.bridge.bridge-nf-call-iptables` to 0. The PVE firewall will flip
the setting back to 1 in its next iteration (in <10 seconds). But
while the setting is 0, conntrack will not see packets of the existing
TCP connection. When the setting is flipped back to 1, conntrack will
see packets again, but may consider the seq/ack numbers of new packets
out-of-window, mark them as invalid and drop them. This will freeze
the TCP connection.

To avoid this, add a patch that modifies the ceph-osd postinst to only
apply settings from the sysctl settings file shipped with ceph-osd,
and only apply them on fresh install. As the ceph-osd sysctl settings
do not set `net.bridge.bridge-nf-call-iptables`, this will avoid the
temporary flip to 0 when installing/upgrading ceph-osd.

Signed-off-by: Friedrich Weber <f.weber@proxmox.com>
2024-02-15 14:01:02 +01:00
ceph update ceph source to reef 18.2.1 2023-12-19 09:13:36 +01:00
patches fix #5213: ceph-osd postinst: add patch to avoid connection freezes 2024-02-15 14:01:02 +01:00
changelog.Debian bump version to 18.2.1-pve2 2024-01-09 17:11:16 +01:00
Makefile buildsys: change download over to reef release 2023-07-25 17:18:43 +02:00
upstream-key.asc build: use dgit for download target 2019-09-19 13:43:56 +02:00