Loading...

Type: Bug
Resolution: Done-Errata
Priority: Undefined
Fix Version/s: None
Affects Version/s: None
Component/s: ovn25.03
Labels:
None

Story Points:
2
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Ready:
False
Fixed in Build:
ovn25.03-25.03.0-68.el9fdp
OS:
rhel-9
Planning:
None
AssignedTeam:
rhel-net-ovn
Intelligence Requested:
Market:
Sub-System Group:

ssg_networking

Sprint:
OVN FDP 25.D
sprint_count:
1

Test Coverage:

+

SFDC Cases Links:
SFDC Cases Open:
SFDC Cases Counter:

Problem Description: Clearly explain the issue.

With the following topology:

dnl                  lr-int (with NAT/LB configured)
dnl                     |
dnl                  ls-int
dnl                     |
dnl                  lr-bgp (advertises routes for all neighbor
dnl                     |    router NAT/LB IPs)
dnl                     |
dnl     +-------+-------+-------+-------+  (direct - peer - router connections)
dnl     |       |       |       |       |
dnl    lr-ext1 lr-ext2 lr-ext3 lr-ext4 lr-ext5 (with NAT/LB configured)

lr-bgp is configured to advertise all NAT/LB IPs owned by its neighbour routers (lr-int, lr-ext[1-5]).

In reality, when iterating through the ports of lr-bgp, ovn-northd stops after it processed the first peer port (direct router connection) potentially skipping the rest and failing to advertise all required IPs.

Impact Assessment: Describe the severity and impact (e.g., network down,availability of a workaround, etc.).

Incorrect routing, blackholing of traffic with BGP, no workaround.

Software Versions: Specify the exact versions in use (e.g.,openvswitch3.1-3.1.0-147.el8fdp).

ovn25.03-25.03.0-56.el9fdp (or any older ovn25.03)

Issue Type: Indicate whether this is a new issue or a regression (if a regression, state the last known working version).

This is a new issue.

Reproducibility: Confirm if the issue can be reproduced consistently. If not, describe how often it occurs.

Consistently reproducible.

Reproduction Steps: Provide detailed steps or scripts to replicate the issue.

The following OVN unit test reproduces the issue consistently:

OVN_FOR_EACH_NORTHD_NO_HV([
AT_SETUP([dynamic-routing - NAT/LB sync - different peer types])
ovn_startdnl                  lr-int (with NAT/LB configured)
dnl                     |
dnl                  ls-int
dnl                     |
dnl                  lr-bgp (advertises routes for all neighbor
dnl                     |    router NAT/LB IPs)
dnl                     |
dnl     +-------+-------+-------+-------+  (direct - peer - router connections)
dnl     |       |       |       |       |
dnl    lr-ext1 lr-ext2 lr-ext3 lr-ext4 lr-ext5 (with NAT/LB configured)

check ovn-nbctl                                                         \
    -- lr-add lr-int                                                    \
       -- set logical_router lr-int options:chassis=hv1                 \
       -- lrp-add lr-int lrp-int 00:00:00:00:00:01 10.0.0.1/24          \
      -- lr-nat-add lr-int dnat_and_snat 10.0.0.42 1.1.1.1              \
      -- lb-add lb-int 30.0.0.1 1.1.1.1                                 \
      -- lr-lb-add lr-int lb-int                                        \
    -- ls-add ls-int                                                    \
       -- lsp-add ls-int lsp-internal                                   \
       -- lsp-set-type lsp-internal router                              \
       -- lsp-set-options lsp-internal router-port=lrp-int              \
       -- lsp-set-addresses lsp-internal router                         \
       -- lsp-add ls-int lsp-bgp                                        \
       -- lsp-set-type lsp-bgp router                                   \
       -- lsp-set-options lsp-bgp router-port=lrp-bgp-internal          \
       -- lsp-set-addresses lsp-bgp router                              \
    -- lr-add lr-bgp                                                    \
       -- set logical_router lr-bgp options:chassis=hv1                 \
       -- lrp-add lr-bgp lrp-bgp-internal 00:00:00:00:00:02 10.0.0.2/24

n_ext_rtrs=5
for i in $(seq $n_ext_rtrs); do
    check ovn-nbctl \
        -- lrp-add lr-bgp lrp-bgp-ext-$i 00:00:00:00:01:0$i 2$i.0.0.1/24 \
        -- lr-add lr-ext-$i                                              \
        -- set logical_router lr-ext-$i options:chassis=hv1              \
        -- lrp-add lr-ext-$i lrp-ext-$i 00:00:00:00:02:0$i 2$i.0.0.2/24  \
        -- set Logical_Router_Port lrp-bgp-ext-$i peer=lrp-ext-$i        \
        -- set Logical_Router_Port lrp-ext-$i peer=lrp-bgp-ext-$i        \
        -- lr-nat-add lr-ext-$i dnat_and_snat 2$i.0.0.42 2.2.2.2         \
        -- lb-add lb-ext-$i 3$i.0.0.1 2.2.2.2                            \
        -- lr-lb-add lr-ext-$i lb-ext-$i
done
check ovn-nbctl --wait=sb syncdnl Dynamic routing disabled, no routes should be advertised.
check_row_count Advertised_Route 0
dnl Enable dynamic routing on lr-bgp.  It should advertise NATs from both
dnl lr-int and lr-exts.
check ovn-nbctl --wait=sb                                                 \
  -- set logical_router lr-bgp option:dynamic-routing=true                \
                               option:dynamic-routing-redistribute=nat,lb

dnl Expect two routes to be advertised for lr-int and two routes to be
dnl advertised for each lr-ext.
n_advertised_routes=$((2 * ($n_ext_rtrs + 1)))
check_row_count Advertised_Route $n_advertised_routes
AT_CLEANUP
])

Expected Behavior: Describe what should happen under normal circumstances.

NAT/LB IPs of all neighbor routers should be advertised in this case.

Observed Behavior: Explain what actually happens.

Depending on the order in the hash map used for storing lr-bgp ports in ovn-northd, some of the routes are missing.

Troubleshooting Actions: Outline the steps taken to diagnose or resolve the issue so far.

N/A

Logs: If you collected logs please provide them (e.g. sos report, /var/log/openvswitch/* , testpmd console)

N/A

is cloned by

FDP-1451 CLONE [ovn25.09 fast-datapath-rhel-9] - ovn doesn't properly advertise neighbor router NAT/LBs for directly connected (peer) routers

Verified

FDP-1450 CLONE [ovn25.03 fast-datapath-rhel-10] - ovn doesn't properly advertise neighbor router NAT/LBs for directly connected (peer) routers

Closed

links to

RHBA-2025:150947 ovn25.03 bug fix and enhancement update

Details

Description

Problem Description: Clearly explain the issue.

Impact Assessment: Describe the severity and impact (e.g., network down,availability of a workaround, etc.).

Software Versions: Specify the exact versions in use (e.g.,openvswitch3.1-3.1.0-147.el8fdp).

Issue Type: Indicate whether this is a new issue or a regression (if a regression, state the last known working version).

Reproducibility: Confirm if the issue can be reproduced consistently. If not, describe how often it occurs.

Reproduction Steps: Provide detailed steps or scripts to replicate the issue.

Expected Behavior: Describe what should happen under normal circumstances.

Observed Behavior: Explain what actually happens.

Troubleshooting Actions: Outline the steps taken to diagnose or resolve the issue so far.

Logs: If you collected logs please provide them (e.g. sos report, /var/log/openvswitch/* , testpmd console)

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates