Loading...

XML

Word

Printable

Type: Bug
Resolution: Unresolved
Priority: Undefined
Fix Version/s: 4.14.0
Affects Version/s: 4.12
Component/s: Networking / SR-IOV
Labels:
- telco-priority-3

Severity:
Important
Epic Link:
CNF-11155
Sprint:
CNF Network Sprint 235, CNF Network Sprint 237, CNF Network Sprint 238, CNF Network Sprint 239, CNF Network Sprint 240
sprint_count:
5
Release Blocker:
Rejected
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Internal Whiteboard:
Target Version:

4.14.z

SFDC Cases Counter:
SFDC Cases Links:

Description of problem:

According API documentation policyTypes field is optional:
 https://docs.openshift.com/container-platform/4.11/rest_api/network_apis/networkpolicy-networking-k8s-io-v1.html#specification

If this field is not specified, it will default based on the existence of Ingress or Egress rules;

But if policyTypes is not specified all traffic dropped despite what is stated in the rule

Version-Release number of selected component (if applicable):

4.12

How reproducible:

100%

Steps to Reproduce:

1. Configure sriov (nodepolicy + sriovnetwork)
2. Configure 2 pods
3. enable MutiNetworkPolicy
4. apply  MutiNetworkPolicy:
spec:
  podSelector:
    matchLabels:
      pod: pod1
  ingress:
  - from:
    - ipBlock:
        cidr: 192.168.0.2/32
5. send traffic between pods (192.168.0.2 => pod=pod1)

Actual results:

traffic dropped

Expected results:

traffic passed

Additional info:

links to

openshift/multus-networkpolicy#30: OCPBUGS-974: Sync upstream

RHEA-2023:5005 rpm

upstream fix PR

mentioned on

Merge request - SR-IOV MultiNetworkPolicy tests

Assignee:: Andrea Panattoni

Reporter:: Evgeny Levin

QA Contact:: Evgeny Levin

Votes:: 0 Vote for this issue

Watchers:: 9 Start watching this issue

Created:: 2022/09/07 5:56 AM

Updated:: 2024/04/18 7:09 AM

Details

Description

Attachments

Issue Links

Activity

People

Dates