RHBA-2020:4356 - Bug Fix Advisory

Topic

An update for ovn2.13 is now available in Fast Datapath for Red Hat Enterprise Linux 7.

Description

OVN, the Open Virtual Network, is a system to support virtual network abstraction. OVN complements the existing capabilities of OVS to add native support for virtual network abstractions, such as virtual L2 and L3 overlays and security groups.

Bug Fix(es) and Enhancement(s):

• [OVN 2.12] config the ip.dst==x.x.x.1/24 of acl,it doesn't work (BZ#1812820)
• [Debugging] ovn-ctl: Allow wrappers (valgrind) for NB and SB ovsdb-servers (BZ#1831558)
• [OVN][RFE] Add support for VXLAN tunnels for interchassis communication (BZ#1841526)
• [RFE] Need CLI support for --may-exist/--if-exists to lr-policy cmds (BZ#1845109)
• [OVN] OVN DHCP Server ignores DHCPDECLIENmessages from client (BZ#1857563)
• [OVN] Port range filtering sometimes does not allow traffic to the entire range (BZ#1858878)
• [FDP 20.F] OVN 2.13 breaks pod-pod networking across the nodes on OCP (BZ#1868392)
• OVN allows invalid CT tracked packets to be sent (BZ#1870359)
• when the system-id changes, the table chassis_private doesn't clean the old information (BZ#1873032)
• [OVN]when the nb_cfg of table chassis_private is just the range, it will not reverse to 0 next time but report error. (BZ#1873455)
• IPv6 load balancer VIP error in ovn-controller (BZ#1875337)
• [ovn-controller] "MLD Querier enabled with invalid IPv6 src address" log incorrectly displayed when IPv4 querier is enabled. (BZ#1875727)
• Logical router policy with pkt_mark is int32 resulting in overflow when a uint32 is used (BZ#1878248)
• arp response would be sent from every chassis when send arp request to external id in nat on external network (BZ#1878451)
• [OVN 2.13]qos doesn't work on localnet sometimes (BZ#1878943)
• IP multicast doesn't work across localnet ports (BZ#1886314)

Solution

Before applying this update, make sure all previously released errata relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

Affected Products

• Red Hat Enterprise Linux Fast Datapath 7 x86_64
• Red Hat Enterprise Linux Fast Datapath (for RHEL Server for IBM Power LE) 7 ppc64le
• Red Hat Enterprise Linux Fast Datapath (for IBM z Systems) 7 s390x

Fixes

• BZ - 1812820 - [OVN 2.12] config the ip.dst==x.x.x.1/24 of acl,it doesn't work
• BZ - 1831558 - [Debugging] ovn-ctl: Allow wrappers (valgrind) for NB and SB ovsdb-servers
• BZ - 1841526 - [OVN][RFE] Add support for VXLAN tunnels for interchassis communication
• BZ - 1845109 - [RFE] Need CLI support for --may-exist/--if-exists to lr-policy cmds
• BZ - 1857563 - [OVN] OVN DHCP Server ignores DHCPDECLIENmessages from client
• BZ - 1858878 - [OVN] Port range filtering sometimes does not allow traffic to the entire range
• BZ - 1868392 - [FDP 20.F] OVN 2.13 breaks pod-pod networking across the nodes on OCP
• BZ - 1870359 - OVN allows invalid CT tracked packets to be sent
• BZ - 1873032 - when the system-id changes, the table chassis_private doesn't clean the old information
• BZ - 1873455 - [OVN]when the nb_cfg of table chassis_private is just the range, it will not reverse to 0 next time but report error.
• BZ - 1875337 - IPv6 load balancer VIP error in ovn-controller
• BZ - 1875727 - [ovn-controller] "MLD Querier enabled with invalid IPv6 src address" log incorrectly displayed when IPv4 querier is enabled.
• BZ - 1878248 - Logical router policy with pkt_mark is int32 resulting in overflow when a uint32 is used
• BZ - 1878451 - arp response would be sent from every chassis when send arp request to external id in nat on external network
• BZ - 1878943 - [OVN 2.13]qos doesn't work on localnet sometimes
• BZ - 1886314 - IP multicast doesn't work across localnet ports

CVEs

(none)

References

(none)