RHBA-2020:3769 - Bug Fix Advisory

Topic

An update for ovn2.13 is now available in Fast Datapath for Red Hat
Enterprise Linux 7.

Description

OVN, the Open Virtual Network, is a system to support virtual network
abstraction. OVN complements the existing capabilities of OVS to add
native support for virtual network abstractions, such as virtual L2 and L3
overlays and security groups.

Bug Fix(es) and Enhancement(s):

• options:lb_force_snat_ip does not support dual-stack (BZ#1823003)
• ovn-controller should avoid flow re-computation on updates to the Chassis' external_ids column (BZ#1824220)
• [OVN][RFE] Support logical switches with multiple localnet ports (BZ#1827160)
• [telco] ovn-controller doesn't recover when RAFT cluster is blown away and rebuilt (BZ#1829109)
• [OVN] Routing with external ports won't work unless colocated with gateway ports (BZ#1829762)
• [OVN] Investigate if on a logical switch with stateful ACLs conntrack usage can be optimized. (BZ#1836804)
• [OVN] Flow explosion due to ARP responder for NAT entries in distributed logical routers. (BZ#1847537)
• [RFE] Add support for stateful next hop (ECMP bypass) (BZ#1849683)
• [OVN] ovn-detrace doesn't support SSL connections to the NB/SB/OVS DBs (BZ#1853716)
• SNAT rule does not provide ARP response (BZ#1861294)
• [OVN] With ovn-monitor-all=true, IGMP groups are flushed by ovn-controllers that don't own them. (BZ#1866820)
• Avoid nb_cfg update notification flooding (Chassis_Private) (BZ#1871054)
• ovn-controller crashes due to assertion failure for null in ovsdb_idl_txn_write (BZ#1871961)
• ovn-controller is crashing when virtual logical port is deleted (BZ#1872681)
• [ovn-northd] No rate limiting on WARN log messages for missing Chassis records. (BZ#1874745)

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

Affected Products

• Red Hat Enterprise Linux Fast Datapath 7 x86_64
• Red Hat Enterprise Linux Fast Datapath (for RHEL Server for IBM Power LE) 7 ppc64le
• Red Hat Enterprise Linux Fast Datapath (for IBM z Systems) 7 s390x

Fixes

• BZ - 1823003 - options:lb_force_snat_ip does not support dual-stack
• BZ - 1824220 - ovn-controller should avoid flow re-computation on updates to the Chassis' external_ids column
• BZ - 1827160 - [OVN][RFE] Support logical switches with multiple localnet ports
• BZ - 1829109 - [telco] ovn-controller doesn't recover when RAFT cluster is blown away and rebuilt
• BZ - 1829762 - [OVN] Routing with external ports won't work unless colocated with gateway ports
• BZ - 1836804 - [OVN] Investigate if on a logical switch with stateful ACLs conntrack usage can be optimized.
• BZ - 1847537 - [OVN] Flow explosion due to ARP responder for NAT entries in distributed logical routers.
• BZ - 1849683 - [RFE] Add support for stateful next hop (ECMP bypass)
• BZ - 1853716 - [OVN] ovn-detrace doesn't support SSL connections to the NB/SB/OVS DBs
• BZ - 1861294 - SNAT rule does not provide ARP response
• BZ - 1866820 - [OVN] With ovn-monitor-all=true, IGMP groups are flushed by ovn-controllers that don't own them.
• BZ - 1871054 - Avoid nb_cfg update notification flooding (Chassis_Private)
• BZ - 1871961 - ovn-controller crashes due to assertion failure for null in ovsdb_idl_txn_write
• BZ - 1872681 - ovn-controller is crashing when virtual logical port is deleted
• BZ - 1874745 - [ovn-northd] No rate limiting on WARN log messages for missing Chassis records.

CVEs

(none)

References

(none)