-
Bug
-
Resolution: Done
-
Normal
-
None
-
4.20
-
Quality / Stability / Reliability
-
False
-
-
None
-
None
-
None
-
None
-
Rejected
-
None
-
None
-
None
-
None
-
None
-
None
-
None
-
None
When layer2 secondary UDN is created at a cluster that has override default pod network join subnet and mathes the one at UDN we have the following errorĀ
- apiVersion: k8s.ovn.org/v1
kind: UserDefinedNetwork
metadata:
creationTimestamp: "2025-10-09T12:18:03Z"
finalizers:
- k8s.ovn.org/user-defined-network-protection
generation: 1
name: gryffindor
namespace: e2e-endpointslices-mirror-e2e-default-3164
resourceVersion: "1130969"
uid: e5dcf3f0-b7b1-429b-9bfc-da410921f656
spec:
layer2:
role: Secondary
subnets:
- 203.203.0.0/16
topology: Layer2
status:
conditions:
- lastTransitionTime: "2025-10-09T12:18:03Z"
message: 'failed to generate NetworkAttachmentDefinition: failed to render CNI
network config: invalid subnet configuration: pod or join subnet overlaps
with already configured internal subnets: illegal network configuration: user
defined join subnet "100.65.0.0/16" overlaps built-in join subnet "100.65.0.0/16"'
reason: SyncError
status: "False"
type: NetworkCreated
This should not happend since layer2 secondary networks do not need join subnets.
This regression originally surfaced for the test:
[sig-network][OCPFeatureGate:NetworkSegmentation][Feature:UserDefinedPrimaryNetworks] EndpointSlices mirroring when using openshift ovn-kubernetes created using NetworkAttachmentDefinitions mirrors EndpointSlices managed by the default controller for namespaces with user defined primary networks L3 primary UDN, cluster-networked pods [Suite:openshift/conformance/parallel]
- clones
-
-
- Verified
-
- links to
