Bug 1811815

Summary: [RFE] Add support in ovn-kubernetes for SCTP with k8s service
Product: OpenShift Container Platform Reporter: Tim Rozet <trozet>
Component: NetworkingAssignee: Tim Rozet <trozet>
Networking sub component: ovn-kubernetes QA Contact: Weibin Liang <weliang>
Status: CLOSED ERRATA Docs Contact:
Severity: urgent    
Priority: urgent CC: augol, dcbw, fpaoline, fsimonce, huirwang, mleitner, mmichels, william.caban
Version: 4.4   
Target Milestone: ---   
Target Release: 4.5.0   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of:
: 1823557 (view as bug list) Environment:
Last Closed: 2020-07-13 17:19:06 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1771572, 1823557    

Description Tim Rozet 2020-03-09 20:35:32 UTC 
Description of problem:
OVN-kubernetes is missing support for using SCTP with services (load-balancer).
Comment 1 Federico Simoncelli 2020-03-12 14:23:07 UTC 
Is this a regression if bug 1717461 was fixed in 4.3?
Comment 2 Mark Michelson 2020-03-12 15:18:54 UTC 
Branch that adds SCTP load balancing for OVN:

https://github.com/putnopvut/ovn/tree/sctp_lb

However, it does not add SCTP health checks, so turning health checks on for SCTP load balancers will likely result in bad things happening.
Comment 4 Mark Michelson 2020-03-13 19:26:18 UTC 
I have updated my branch linked in my previous comment. I've also now submitted a patch for inclusion in upstream OVN: https://mail.openvswitch.org/pipermail/ovs-dev/2020-March/368654.html

Tim, can you test my code with the ovn-kubernetes changes you've made to ensure that this is working as expected? Just to re-iterated, health checks are not supported for SCTP load balancers. So if you attempt to configured a health check for an SCTP load balancer, you'll see a warning in the northd log and the health check will not be used.
Comment 5 Tim Rozet 2020-03-13 21:34:53 UTC 
I have a PR up on github. Now I can test your patch Mark. Will report back.
Comment 7 Tim Rozet 2020-03-13 22:40:05 UTC 
Mark I'm seeing the load balancer is there:
_uuid               : 69a2ee26-1086-42b6-a4f9-1b880cd047d7
external_ids        : {k8s-cluster-lb-sctp=yes}
health_check        : []
ip_port_mappings    : {}
name                : ""
protocol            : sctp
vips                : {"10.101.165.35:62324"="10.244.0.5:62324"}

But sctp traffic doesn't seem to be working via the load balancer. It does work directly between the pods though. Will take a closer look on Monday.
Comment 8 Tim Rozet 2020-03-17 18:11:48 UTC 
FYI see https://bugzilla.redhat.com/show_bug.cgi?id=1718372#c8 for latest update on testing.
Comment 9 Dan Williams 2020-04-13 21:58:17 UTC 
This landed in https://github.com/openshift/ovn-kubernetes/pull/123
Comment 13 errata-xmlrpc 2020-07-13 17:19:06 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2020:2409