Bug 1953169
| Summary: | endpoint slice controller doesn't handle services target port correctly | |||
|---|---|---|---|---|
| Product: | OpenShift Container Platform | Reporter: | Antonio Ojea <aojeagar> | |
| Component: | Networking | Assignee: | Antonio Ojea <aojeagar> | |
| Networking sub component: | ovn-kubernetes | QA Contact: | Ross Brattain <rbrattai> | |
| Status: | CLOSED ERRATA | Docs Contact: | ||
| Severity: | urgent | |||
| Priority: | urgent | CC: | rbrattai | |
| Version: | 4.8 | |||
| Target Milestone: | --- | |||
| Target Release: | 4.8.0 | |||
| Hardware: | Unspecified | |||
| OS: | Unspecified | |||
| Whiteboard: | ||||
| Fixed In Version: | Doc Type: | Bug Fix | ||
| Doc Text: |
Multiport Services with named TargetPorts fail to work because OVN tried to match the corresponding Endpoint based on the Service.TargetPort.Name instead of the ServicePort.Name
OVN should match the Endpoints based on the ServicePort.Name and EndpointPort.Name
|
Story Points: | --- | |
| Clone Of: | ||||
| : | 1956270 (view as bug list) | Environment: | ||
| Last Closed: | 2021-07-27 23:03:30 UTC | Type: | Bug | |
| Regression: | --- | Mount Type: | --- | |
| Documentation: | --- | CRM: | ||
| Verified Versions: | Category: | --- | ||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | ||
| Cloudforms Team: | --- | Target Upstream Version: | ||
| Embargoed: | ||||
| Bug Depends On: | ||||
| Bug Blocks: | 1956270 | |||
|
Description
Antonio Ojea
2021-04-24 10:29:32 UTC
Fixed upstream by https://github.com/ovn-org/ovn-kubernetes/pull/2187 Verified on 4.8.0-0.nightly-2021-05-12-072240
Tested various combinations of Multiport svc with named targetPorts and unnamed ports.
Tested with targetPort.name != endpoint.Port.name
apiVersion: v1
kind: List
items:
- apiVersion: v1
kind: ReplicationController
metadata:
labels:
name: test-rc
name: test-rc
spec:
replicas: 10
template:
metadata:
labels:
name: test-pods
spec:
containers:
- image: quay.io/openshifttest/nginx-alpine@sha256:5d3f3372288b8a93fc9fc7747925df2328c24db41e4b4226126c3af293c5ad88
name: test-pod
imagePullPolicy: IfNotPresent
resources:
limits:
memory: 340Mi
ports:
- containerPort: 8080
name: webcache
- containerPort: 8443
name: pcsync-https
- apiVersion: v1
kind: Service
metadata:
labels:
name: test-service
name: test-service
spec:
ports:
- name: http
port: 27017
protocol: TCP
targetPort: webcache
- name: https
port: 27018
protocol: TCP
targetPort: pcsync-https
selector:
name: test-pods
emtpy svc.Port.name with targetPort.name.
apiVersion: v1
kind: List
items:
- apiVersion: v1
kind: ReplicationController
metadata:
labels:
name: test-rc
name: test-rc
spec:
replicas: 10
template:
metadata:
labels:
name: test-pods
spec:
containers:
- image: quay.io/openshifttest/nginx-alpine@sha256:5d3f3372288b8a93fc9fc7747925df2328c24db41e4b4226126c3af293c5ad88
name: test-pod
imagePullPolicy: IfNotPresent
resources:
limits:
memory: 340Mi
ports:
- containerPort: 8080
name: webcache
- containerPort: 8443
name: pcsync-https
- apiVersion: v1
kind: Service
metadata:
labels:
name: test-service
name: test-service
spec:
ports:
- port: 27017
protocol: TCP
targetPort: webcache
selector:
name: test-pods
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory (Moderate: OpenShift Container Platform 4.8.2 bug fix and security update), and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHSA-2021:2438 |