2007450 – cluster-etcd-operator: render command should fail if machineCidr contains reserved address

Bug 2007450 - cluster-etcd-operator: render command should fail if machineCidr contains reserved address [NEEDINFO]

Summary: cluster-etcd-operator: render command should fail if machineCidr contains res...

Keywords:
Status:	CLOSED WONTFIX
Alias:	None
Product:	OpenShift Container Platform
Classification:	Red Hat
Component:	Etcd
Sub Component:
Version:	4.8
Hardware:	Unspecified
OS:	Unspecified
Priority:	low
Severity:	medium
Target Milestone:	---
Target Release:	4.8.z
Assignee:	Haseeb Tariq
QA Contact:	ge liu
Docs Contact:
URL:
Whiteboard:	LifecycleStale
Depends On:	2007454
Blocks:	2007448
TreeView+	depends on / blocked

Reported:	2021-09-23 21:55 UTC by Haseeb Tariq
Modified:	2022-08-24 17:22 UTC (History)
CC List:	1 user (show)
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:	2007448
Clones:	2007454 (view as bug list)
Environment:
Last Closed:	2022-08-24 17:22:58 UTC
Target Upstream Version:
Flags:	mfojtik: needinfo?

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Bugzilla	2007448	1	low	CLOSED	cluster-etcd-operator: render command should fail if machineCidr contains reserved address	2022-08-24 17:15:55 UTC

Description Haseeb Tariq 2021-09-23 21:55:57 UTC

+++ This bug was initially created as a clone of Bug #2007448 +++

+++ This bug was initially created as a clone of Bug #2004081 +++

Description of problem: OCP explicitly does not allow the use of the following reserved address blocks.

2001:db8::/32

192.0.2.0/24

If the render command observes these in the install-config as machineCidr it should fail and provide a clear message to admin.

https://github.com/openshift/cluster-kube-apiserver-operator/blob/d6a60b2c18806d69dcf27228aacb830a699126f3/pkg/operator/configobservation/etcdendpoints/observe_etcd_endpoints.go#L72



Version-Release number of selected component (if applicable):


How reproducible: 100%


Steps to Reproduce:
1. create a cluster with machineCidr defined using one of the ranges above
2. cluster will fail to bootstrap because we will skip these endpoints in the observers used by the control-plane operators[1].
3.

Actual results: bootstrap fails for an unknown reason.


Expected results: bootstrap fails early as possible with a clear message indicating the address range is unsupported.


Additional info:

[1] https://github.com/openshift/cluster-kube-apiserver-operator/blob/d6a60b2c18806d69dcf27228aacb830a699126f3/pkg/operator/configobservation/etcdendpoints/observe_etcd_endpoints.go#L72

Comment 2 Michal Fojtik 2021-11-22 12:09:29 UTC

This bug hasn't had any activity in the last 30 days. Maybe the problem got resolved, was a duplicate of something else, or became less pressing for some reason - or maybe it's still relevant but just hasn't been looked at yet. As such, we're marking this bug as "LifecycleStale" and decreasing the severity/priority. If you have further information on the current state of the bug, please update it, otherwise this bug can be closed in about 7 days. The information can be, for example, that the problem still occurs, that you still want the feature, that more information is needed, or that the bug is (for whatever reason) no longer relevant. Additionally, you can add LifecycleFrozen into Whiteboard if you think this bug should never be marked as stale. Please consult with bug assignee before you do that.

Note You need to log in before you can comment on or make changes to this bug.