Uploaded image for project: 'OpenShift Bugs'
  1. OpenShift Bugs
  2. OCPBUGS-35718

Failed to deploy a cluster (failed to create security groups) when using 3 compact node cluster and dualstack IPv4

XMLWordPrintable

    • +
    • No
    • False
    • Hide

      None

      Show
      None
    • Hide
      * Previously, in CAPI-based installers on the OpenStack platform, the additional security group rule added to master nodes for compact clusters was forcing IPv4 protocol and prevented deploying dual-stack clusters. This was a regression from the terraform-based installer. With this release, the rule now uses the correct protocol based on the requested IP version. (link:https://issues.redhat.com/browse/OCPBUGS-35718[*OCPBUGS-35718*])
      Show
      * Previously, in CAPI-based installers on the OpenStack platform, the additional security group rule added to master nodes for compact clusters was forcing IPv4 protocol and prevented deploying dual-stack clusters. This was a regression from the terraform-based installer. With this release, the rule now uses the correct protocol based on the requested IP version. (link: https://issues.redhat.com/browse/OCPBUGS-35718 [* OCPBUGS-35718 *])
    • Bug Fix
    • Done

      This is a clone of issue OCPBUGS-35533. The following is the description of the original issue:

      Description of problem:

      Failed to deploy the cluster with the following error:
      time="2024-06-13T14:01:11Z" level=debug msg="Creating the security group rules"time="2024-06-13T14:01:19Z" level=error msg="failed to fetch Cluster: failed to generate asset \"Cluster\": failed to create cluster: failed during pre-provisioning: failed to create security groups: failed to create the security group rule on group \"cb9a607c-9799-4186-bc22-26f141ce91aa\" for IPv4 tcp on ports 1936-1936: Bad request with: [POST https://10.46.44.159:13696/v2.0/security-group-rules], error message: {\"NeutronError\": {\"type\": \"SecurityGroupRuleParameterConflict\", \"message\": \"Conflicting value ethertype IPv4 for CIDR fd2e:6f44:5dd8:c956::/64\", \"detail\": \"\"}}"time="2024-06-13T14:01:20Z" level=debug msg="OpenShift Installer 4.17.0-0.nightly-2024-06-13-083330"time="2024-06-13T14:01:20Z" level=debug msg="Built from commit 6bc75dfebaca79ecf302263af7d32d50c31f371a"time="2024-06-13T14:01:20Z" level=debug msg="Loading Install Config..."time="2024-06-13T14:01:20Z" level=debug msg="  Loading SSH Key..."time="2024-06-13T14:01:20Z" level=debug msg="  Loading Base Domain..."time="2024-06-13T14:01:20Z" level=debug msg="    Loading Platform..."time="2024-06-13T14:01:20Z" level=debug msg="  Loading Cluster Name..."time="2024-06-13T14:01:20Z" level=debug msg="    Loading Base Domain..."time="2024-06-13T14:01:20Z" level=debug msg="    Loading Platform..."time="2024-06-13T14:01:20Z" level=debug msg="  Loading Pull Secret..."time="2024-06-13T14:01:20Z" level=debug msg="  Loading Platform..."time="2024-06-13T14:01:20Z" level=debug msg="Using Install Config loaded from state file"time="2024-06-13T14:01:20Z" level=debug msg="Loading Agent Config..."time="2024-06-13T14:01:20Z" level=info msg="Waiting up to 40m0s (until 2:41PM UTC) for the cluster at https://api.ostest.shiftstack.com:6443 to initialize..."

      Version-Release number of selected component (if applicable):

      4.17.0-0.nightly-2024-06-13-083330

      How reproducible:

       

      Steps to Reproduce:

      1.
      2.
      3.
      

      Actual results:

       

      Expected results:

       

      Additional info:

       

            maandre@redhat.com Martin André
            openshift-crt-jira-prow OpenShift Prow Bot
            Itshak Brown Itshak Brown
            Votes:
            0 Vote for this issue
            Watchers:
            6 Start watching this issue

              Created:
              Updated:
              Resolved: