Bug 2043804
Summary: | No way to verify if IPs with leading zeros are still valid in the apiserver | ||
---|---|---|---|
Product: | OpenShift Container Platform | Reporter: | OpenShift BugZilla Robot <openshift-bugzilla-robot> |
Component: | kube-apiserver | Assignee: | Antonio Ojea <aojeagar> |
Status: | CLOSED ERRATA | QA Contact: | Rahul Gangwar <rgangwar> |
Severity: | high | Docs Contact: | |
Priority: | high | ||
Version: | 4.10 | CC: | mfojtik, rgangwar, xxia, zxiao |
Target Milestone: | --- | ||
Target Release: | 4.7.z | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | If docs needed, set a value | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2022-05-12 18:12:28 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: | |||
Bug Depends On: | 2043808 | ||
Bug Blocks: | 2043805 |
Comment 1
Zimo Xiao
2022-04-11 06:29:00 UTC
oc get clusterversion NAME VERSION AVAILABLE PROGRESSING SINCE STATUS version 4.11.0-0.nightly-2022-04-27-234931 True False 6h37m Cluster version is 4.11.0-0.nightly-2022-04-27-234931 rahulgangwar@rgangwar-mac openshift-tests-private % vi service.json {"kind": "Service", "apiVersion": "v1", "metadata": {"name": "test-service", "namespace": "openshift-apiserver"}, "spec": {"clusterIP": "172.30.1.02", "externalIP": "192.168.0.012", "externalName": "test-service-one", "ports": [{"port": 10000, "targetPort": 11000}], "selector": {"test": "data"}}} rahulgangwar@rgangwar-mac openshift-tests-private % oc create -f ./service.json service/test-service created rahulgangwar@rgangwar-mac openshift-tests-private % oc get svc test-service -n openshift-apiserver -o yaml apiVersion: v1 kind: Service metadata: creationTimestamp: "2022-04-29T11:37:44Z" name: test-service namespace: openshift-apiserver resourceVersion: "165282" uid: a5aad80e-f931-48f0-9627-187b69e5156a spec: clusterIP: 172.30.1.02 clusterIPs: - 172.30.1.02 externalName: test-service-one internalTrafficPolicy: Cluster ipFamilies: - IPv4 ipFamilyPolicy: SingleStack ports: - port: 10000 protocol: TCP targetPort: 11000 selector: test: data sessionAffinity: None type: ClusterIP status: loadBalancer: {} cat pod.json {"kind": "Pod", "apiVersion": "v1", "metadata": {"name": "pod1", "namespace": "openshift-apiserver"}, "spec": {"containers": [{"image": "python", "name": "test-pod", "resources": {"limits": {"cpu": "1M"}, "requests": {"cpu": "1M"}}}]}, "status": {"podIP":"10.244.0.05","podIPs":oc create -f pod.json pod/pod1 created rahulgangwar@rgangwar-mac openshift-tests-private % oc get po pod1 -n openshift-apiserver -o yaml apiVersion: v1 kind: Pod metadata: annotations: openshift.io/scc: anyuid creationTimestamp: "2022-04-29T11:39:14Z" name: pod1 namespace: openshift-apiserver resourceVersion: "165838" uid: 29eb49ab-4509-43aa-8f62-7a81b778ea75 spec: containers: - image: python imagePullPolicy: Always name: test-pod resources: limits: cpu: 1M requests: cpu: 1M securityContext: capabilities: drop: - MKNOD terminationMessagePath: /dev/termination-log terminationMessagePolicy: File volumeMounts: - mountPath: /var/run/secrets/kubernetes.io/serviceaccount name: kube-api-access-rxmxz readOnly: true [{"ip":"10.244.0.05"}]}} As you can see, IPs with leading zeros are correctly parsed without disrupting user actions. Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory (OpenShift Container Platform 4.7.50 bug fix update), and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2022:1698 |