Errata Tool added a comment - 2023/10/31 1:44 PM Since the problem described in this issue should be resolved in a recent advisory, it has been closed. For information on the advisory (Important: OpenShift Container Platform 4.14.0 bug fix and security update), and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHSA-2023:5006

Huiran Wang added a comment - 2023/10/07 2:46 AM Verified in 4.14.0-0.nightly-2023-10-05-195247 The cluster is ipsec cluster and enabled NS extension and ipsec service. 1. enable e-w ipsec & wait for cluster to settle 2. disable ipsec & wait for cluster to settle, ipsec pods were not removed oc patch networks. operator .openshift.io/cluster --type=json \ -p= '[{ "op" : "remove" , "path" : "/spec/defaultNetwork/ovnKubernetesConfig/ipsecConfig" }]' network. operator .openshift.io/cluster patched % oc -n openshift-ovn-kubernetes rollout status daemonset/ovnkube-node Waiting for daemon set "ovnkube-node" rollout to finish: 1 out of 6 new pods have been updated... Waiting for daemon set "ovnkube-node" rollout to finish: 1 out of 6 new pods have been updated... Waiting for daemon set "ovnkube-node" rollout to finish: 2 out of 6 new pods have been updated... Waiting for daemon set "ovnkube-node" rollout to finish: 2 out of 6 new pods have been updated... Waiting for daemon set "ovnkube-node" rollout to finish: 3 out of 6 new pods have been updated... Waiting for daemon set "ovnkube-node" rollout to finish: 3 out of 6 new pods have been updated... Waiting for daemon set "ovnkube-node" rollout to finish: 4 out of 6 new pods have been updated... Waiting for daemon set "ovnkube-node" rollout to finish: 4 out of 6 new pods have been updated... Waiting for daemon set "ovnkube-node" rollout to finish: 5 out of 6 new pods have been updated... Waiting for daemon set "ovnkube-node" rollout to finish: 5 out of 6 new pods have been updated... Waiting for daemon set "ovnkube-node" rollout to finish: 5 of 6 updated pods are available... daemon set "ovnkube-node" successfully rolled out % oc rsh -n openshift-ovn-kubernetes ovnkube-node-9vg76 Defaulted container "ovn-controller" out of: ovn-controller, ovn-acl-logging, kube-rbac-proxy-node, kube-rbac-proxy-ovn-metrics, northd, nbdb, sbdb, ovnkube-controller, kubecfg-setup (init) sh-5.1# ovn-nbctl --no-leader-only get nb_global . ipsec false % oc get pods -n openshift-ovn-kubernetes NAME READY STATUS RESTARTS AGE ovn-ipsec-containerized-62rt9 1/1 Running 2 83m ovn-ipsec-containerized-7hckw 1/1 Running 2 (87s ago) 93m ovn-ipsec-containerized-8kml5 1/1 Running 4 (27s ago) 93m ovn-ipsec-containerized-cb86h 1/1 Running 4 (86s ago) 93m ovn-ipsec-containerized-ct997 1/1 Running 2 83m ovn-ipsec-containerized-wdmkq 1/1 Running 2 83m ovn-ipsec-host-97w9r 1/1 Running 5 (77s ago) 83m ovn-ipsec-host-9qnmj 1/1 Running 0 93m ovn-ipsec-host-gk286 1/1 Running 2 83m ovn-ipsec-host-k8k4q 1/1 Running 0 93m ovn-ipsec-host-njvgh 1/1 Running 3 (2m23s ago) 83m ovn-ipsec-host-pxp8r 1/1 Running 0 93m ovnkube-control-plane-85f96b444b-cfkkc 2/2 Running 0 93m ovnkube-control-plane-85f96b444b-hq95g 2/2 Running 0 93m ovnkube-control-plane-85f96b444b-vkk2j 2/2 Running 1 (84m ago) 93m ovnkube-node-9vg76 8/8 Running 0 5m16s ovnkube-node-drmwx 8/8 Running 0 8m40s ovnkube-node-m5jcl 8/8 Running 0 10m ovnkube-node-p45r9 8/8 Running 0 13m ovnkube-node-xxbmw 8/8 Running 0 6m58s ovnkube-node-znl5d 8/8 Running 0 12m

OpenShift Jira Bot added a comment - 2023/10/04 1:24 PM Hi Yuval Kashtan, Bugs cannot be moved to Verified without first providing a Release Note Type("Bug Fix" or "No Doc Update") and for type "Bug Fix" the Release Note Text must also be provided. Please populate the necessary fields before moving the Bug to Verified.