-Post-v2.7.0
----------------------
- - ovs-ofctl can now accept and display port names in place of numbers. By
- default it always accepts names and in interactive use it displays them;
- use --names or --no-names to override. See ovs-ofctl(8) for details.
+Post-v2.9.0
+--------------------
+ - ovs-vswitchd:
+ * New options --l7 and --l7-len to "ofproto/trace" command.
+ * Previous versions gave OpenFlow tables default names of the form
+ "table#". These are not helpful names for the purpose of accepting
+ and displaying table names, so now tables by default have no names.
+ * The "null" interface type, deprecated since 2013, has been removed.
+ * Add minimum network namespace support for Linux.
+ * New command "lacp/show-stats"
+ - ovs-ofctl:
+ * ovs-ofctl now accepts and display table names in place of numbers. By
+ default it always accepts names and in interactive use it displays them;
+ use --names or --no-names to override. See ovs-ofctl(8) for details.
+ - ovs-vsctl: New commands "add-bond-iface" and "del-bond-iface".
+ - OpenFlow:
+ * OFPT_ROLE_STATUS is now available in OpenFlow 1.3.
+ - Linux kernel 4.14
+ * Add support for compiling OVS with the latest Linux 4.14 kernel
+ - ovn:
+ * implemented icmp4/icmp6/tcp_reset actions in order to drop the packet
+ and reply with a RST for TCP or ICMPv4/ICMPv6 unreachable message for
+ other IPv4/IPv6-based protocols whenever a reject ACL rule is hit.
+ * ACL match conditions can now match on Port_Groups as well as address
+ sets that are automatically generated by Port_Groups.
+
+v2.9.0 - 19 Feb 2018
+--------------------
+ - NSH implementation now conforms to latest draft (draft-ietf-sfc-nsh-28).
+ * Add ttl field.
+ * Add a new action dec_nsh_ttl.
+ * Enable NSH support in kernel datapath.
+ - OVSDB has new, experimental support for database clustering:
+ * New high-level documentation in ovsdb(7).
+ * New file format documentation for developers in ovsdb(5).
+ * Protocol documentation moved from ovsdb-server(1) to ovsdb-server(7).
+ * ovsdb-server now supports online schema conversion via
+ "ovsdb-client convert".
+ * ovsdb-server now always hosts a built-in database named _Server. See
+ ovsdb-server(5) for more details.
+ * ovsdb-client: New "get-schema-cksum", "query", "backup", "restore",
+ and "wait" commands. New --timeout option.
+ * ovsdb-tool: New "create-cluster", "join-cluster", "db-cid", "db-sid",
+ "db-local-address", "db-is-clustered", "db-is-standalone", "db-name",
+ "schema-name", "compare-versions", and "check-cluster" commands.
+ * ovsdb-server: New ovs-appctl commands for managing clusters.
+ * ovs-sandbox: New support for clustered databases.
+ - ovs-vsctl and other commands that display data in tables now support a
+ --max-column-width option to limit column width.
+ - No longer slow-path traffic that sends to a controller. Applications,
+ such as OVN ACL logging, want to send a copy of a packet to a
+ controller while leaving the actual packet forwarding in the datapath.
+ - OVN:
+ * The "requested-chassis" option for a logical switch port now accepts a
+ chassis "hostname" in addition to a chassis "name".
+ * IPv6
+ - Added support to send IPv6 Router Advertisement packets in response to
+ the IPv6 Router Solicitation packets from the VIF ports.
+ - Added support to generate Neighbor Solicitation packets using the OVN
+ action 'nd_ns' to resolve unknown next hop MAC addresses for the
+ IPv6 packets.
+ * ovn-ctl: New commands run_nb_ovsdb and run_sb_ovsdb.
+ * ovn-sbctl, ovn-nbctl: New options --leader-only, --no-leader-only.
+ - OpenFlow:
+ * ct_clear action is now backed by kernel datapath. Support is probed for
+ when OVS starts.
+ - Linux kernel 4.13
+ * Add support for compiling OVS with the latest Linux 4.13 kernel
+ - ovs-dpctl and related ovs-appctl commands:
+ * "flush-conntrack" now accept a 5-tuple to delete a specific
+ connection tracking entry.
+ * New "ct-set-maxconns", "ct-get-maxconns", and "ct-get-nconns" commands
+ for userspace datapath.
+ - No longer send packets to the Linux TAP device if it's DOWN unless it is
+ in another networking namespace.
+ - DPDK:
+ * Add support for DPDK v17.11
+ * Add support for vHost IOMMU
+ * New debug appctl command 'netdev-dpdk/get-mempool-info'.
+ * All the netdev-dpdk appctl commands described in ovs-vswitchd man page.
+ * Custom statistics:
+ - DPDK physical ports now return custom set of "dropped", "error" and
+ "management" statistics.
+ - ovs-ofctl dump-ports command now prints new of set custom statistics
+ if available (for OpenFlow 1.4+).
+ * Switch from round-robin allocation of rxq to pmd assignments to a
+ utilization-based allocation.
+ * New appctl command 'dpif-netdev/pmd-rxq-rebalance' to rebalance rxq to
+ pmd assignments.
+ * Add rxq utilization of pmd to appctl 'dpif-netdev/pmd-rxq-show'.
+ * Add support for vHost dequeue zero copy (experimental)
+ - Userspace datapath:
+ * Output packet batching support.
+ - vswitchd:
+ * Datapath IDs may now be specified as 0x1 (etc.) instead of 16 digits.
+ * Configuring a controller, or unconfiguring all controllers, now deletes
+ all groups and meters (as well as all flows).
+ - New --enable-sparse configure option enables "sparse" checking by default.
+ - Added additional information to vhost-user status.
+
+v2.8.0 - 31 Aug 2017
+--------------------
+ - ovs-ofctl:
+ * ovs-ofctl can now accept and display port names in place of numbers. By
+ default it always accepts names and in interactive use it displays them;
+ use --names or --no-names to override. See ovs-ofctl(8) for details.
+ * "ovs-ofctl dump-flows" now accepts --no-stats to omit flow statistics.
+ - New ovs-dpctl command "ct-stats-show" to show connection tracking stats.
- Tunnels:
* Added support to set packet mark for tunnel endpoint using
`egress_pkt_mark` OVSDB option.
Log level can be changed in a usual OVS way using
'ovs-appctl vlog' commands for 'dpdk' module. Lower bound
still can be configured via extra arguments for DPDK EAL.
+ * dpdkvhostuser ports are marked as deprecated. They will be removed
+ in an upcoming release.
+ * Support for DPDK v17.05.1.
- IPFIX now provides additional counters:
* Total counters since metering process startup.
* Per-flow TCP flag counters.
+ * Multicast, broadcast, and unicast counters.
- New support for multiple VLANs (802.1ad or "QinQ"), including a new
"dot1q-tunnel" port VLAN mode.
- In ovn-vsctl and vtep-ctl, record UUIDs in commands may now be
abbreviated to 4 hex digits.
- Userspace Datapath:
* Added NAT support for userspace datapath.
+ * Added FTP and TFTP support with NAT for userspace datapath.
+ * Experimental NSH (Network Service Header) support in userspace datapath.
- OVN:
* New built-in DNS support.
* IPAM for IPv4 can now exclude user-defined addresses from assignment.
* "ovn-sbctl lflow-list" can now print OpenFlow flows that correspond
to logical flows.
* Now uses OVSDB RBAC support to reduce impact of compromised hypervisors.
+ * Multiple chassis may now be specified for L3 gateways. When more than
+ one chassis is specified, OVN will manage high availability for that
+ gateway.
+ * Add support for ACL logging.
+ * ovn-northd now has native support for active-standby high availability.
+ * Add support for QoS bandwidth limt with DPDK.
+ - Tracing with ofproto/trace now traces through recirculation.
- OVSDB:
* New support for role-based access control (see ovsdb-server(1)).
- - Add the command 'ovs-appctl stp/show' (see ovs-vswitchd(8)).
+ - New commands 'stp/show' and 'rstp/show' (see ovs-vswitchd(8)).
- OpenFlow:
* All features required by OpenFlow 1.4 are now implemented, so
ovs-vswitchd now enables OpenFlow 1.4 by default (in addition to
* The "learn" action now supports a "limit" option (see ovs-ofctl(8)).
* The port status bit OFPPS_LIVE now reflects link aliveness.
* OpenFlow 1.5 packet-out is now supported.
+ * Support for OpenFlow 1.5 field packet_type and packet-type-aware
+ pipeline (PTAP).
+ * Added generic encap and decap actions (EXT-382).
+ First supported use case is encap/decap for Ethernet.
+ * Added NSH (Network Service Header) support in userspace
+ Used generic encap and decap actions to implement encapsulation and
+ decapsulation of NSH header.
+ IETF NSH draft - https://datatracker.ietf.org/doc/draft-ietf-sfc-nsh/
+ * Conntrack state is only available to the processing path that
+ follows the "recirc_table" argument of the ct() action. Starting
+ in OVS 2.8, this state is now cleared for the current processing
+ path whenever ct() is called.
- Fedora Packaging:
* OVN services are no longer restarted automatically after upgrade.
+ * ovs-vswitchd and ovsdb-server run as non-root users by default.
- Add --cleanup option to command 'ovs-appctl exit' (see ovs-vswitchd(8)).
- L3 tunneling:
- * Add "layer3" options for tunnel ports that support non-Ethernet (L3)
- payload (GRE, VXLAN-GPE).
+ * Use new tunnel port option "packet_type" to configure L2 vs. L3.
+ * In conjunction with PTAP tunnel ports can handle a mix of L2 and L3
+ payload.
* New vxlan tunnel extension "gpe" to support VXLAN-GPE tunnels.
- * Transparently pop and push Ethernet headers at transmit/reception
- of packets to/from L3 tunnels.
+ * New support for non-Ethernet (L3) payloads in GRE and VXLAN-GPE.
- The BFD detection multiplier is now user-configurable.
+ - Add experimental support for hardware offloading
+ * HW offloading is disabled by default.
+ * HW offloading is done through the TC interface.
+ - IPv6 link local addresses are now supported on Linux. Use % to designate
+ the scope device.
v2.7.0 - 21 Feb 2017
---------------------