Skip to content

CORENET-5412: adm, inspect, ns: Collect UserDefinedNetwork CRs #2011

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged

Conversation

ormergi
Copy link
Contributor

@ormergi ormergi commented Apr 21, 2025

OVN-Kubernetes (OVN-K) UserDefinedNetwork (UDN) is namespace-scope CRD that allows non-admin users create OVN-K user-defined networks w/o a cluster-admin intervention.

Collect UDN CRs to allow troubleshooting them.

OVN-Kubernetes (OVN-K) UserDefinedNetwork (UDN) is namespace-scope CRD
that allows non-admin users create OVN-K user-defined networks w/o a
cluster-admin intervention.

Collect UDN CRs to allow troubleshooting them.

Signed-off-by: Or Mergi <ormergi@redhat.com>
@openshift-ci-robot openshift-ci-robot added the jira/valid-reference Indicates that this PR references a valid Jira ticket of any type. label Apr 21, 2025
@openshift-ci-robot
Copy link

openshift-ci-robot commented Apr 21, 2025

@ormergi: This pull request references CORENET-5412 which is a valid jira issue.

Warning: The referenced jira issue has an invalid target version for the target branch this PR targets: expected the story to target the "4.19.0" version, but no target version was set.

In response to this:

OVN-Kubernetes (OVN-K) UserDefinedNetwork (UDN) is namespace-scope CRD that allows non-admin users create OVN-K user-defined networks w/o a cluster-admin intervention.

Collect UDN CRs to allow troubleshooting them.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

@openshift-ci openshift-ci bot requested review from atiratree and deads2k April 21, 2025 15:43
@@ -31,6 +31,7 @@ func namespaceResourcesToCollect() []schema.GroupResource {
{Resource: "poddisruptionbudgets"},
{Resource: "secrets"},
{Resource: "servicemonitors"},
{Resource: "userdefinednetworks"},
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

As seen in the list, this list is very conservative and must be short. The recommended path is to add in must-gather (iff the collected data is small, because we have reached to a point where must-gather collection size and duration is not ideal currently)

/hold

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We anticipate that userdefinednetworks is gonna be used widely and multiple namespace may have a userdefinednetworks defined in it. With the lifting of featuregate for BGP, we anticipate more use of userdefinednetworks as main use case of BGP feature is to advertise UDNs.
routeadvertisements(main CRD to implement BGP) are cluster scoped resources and a PR for inclusion was accepted in the must-gather repository.
openshift/must-gather#485

@openshift-ci openshift-ci bot added the do-not-merge/hold Indicates that a PR should not merge because someone has issued a /hold command. label Apr 22, 2025
@arghosh93
Copy link

@ardaguclu any update on this? userdefinednetworks CR definition is definitely gonna be needed to troubleshoot any issue related to it.

@ardaguclu
Copy link
Member

ardaguclu commented Jul 16, 2025

@ardaguclu any update on this? userdefinednetworks CR definition is definitely gonna be needed to troubleshoot any issue related to it.

Do you only want to get the yaml definition of UserDefinedNetworks CR in all namespaces?. Will there be any RelatedObjects defined in this resource that will trigger another nested resource inspection?. How much additional data will be more collected in must-gather and increase the output size?.

Basically, I'm trying to assess that did you evaluate what are the consequence of adding this CR in here?. I'm sure that this is needed, but we can't add any resources that collects significant amount of data.

@arghosh93
Copy link

Do you only want to get the yaml definition of UserDefinedNetworks CR in all namespaces?

Yes

Will there be any RelatedObjects defined in this resource that will trigger another nested resource inspection?

OVNKubernetes creates a NetworkAttachmentDefinition corresponding to the userdefinednetwork CR but we dont need NetworkAttachmentDefinition. Even if e store both, I dont anticipate much resource consumption as both are lightweight.
https://github.com/ovn-kubernetes/ovn-kubernetes/blob/master/go-controller/pkg/crd/userdefinednetwork/v1/udn.go

How much additional data will be more collected in must-gather and increase the output size?.

A single UDN can take up to 4 KB.

@ardaguclu
Copy link
Member

/hold cancel
/lgtm

@openshift-ci openshift-ci bot removed the do-not-merge/hold Indicates that a PR should not merge because someone has issued a /hold command. label Jul 16, 2025
@openshift-ci openshift-ci bot added the lgtm Indicates that a PR is ready to be merged. label Jul 16, 2025
Copy link
Contributor

openshift-ci bot commented Jul 16, 2025

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: ardaguclu, ormergi

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@openshift-ci openshift-ci bot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Jul 16, 2025
@openshift-ci-robot
Copy link

/retest-required

Remaining retests: 0 against base HEAD f0e1051 and 2 for PR HEAD 2fdd43b in total

Copy link
Contributor

openshift-ci bot commented Jul 16, 2025

@ormergi: The following tests failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name Commit Details Required Rerun command
ci/prow/okd-scos-e2e-aws-ovn 2fdd43b link false /test okd-scos-e2e-aws-ovn
ci/prow/e2e-aws-ovn-serial 2fdd43b link true /test e2e-aws-ovn-serial

Full PR test history. Your PR dashboard.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.

@openshift-ci-robot
Copy link

/retest-required

Remaining retests: 0 against base HEAD f0e1051 and 2 for PR HEAD 2fdd43b in total

@openshift-merge-bot openshift-merge-bot bot merged commit 8a28796 into openshift:main Jul 17, 2025
16 of 17 checks passed
@arghosh93
Copy link

/cherry-pick release-4.19

@openshift-cherrypick-robot

@arghosh93: new pull request created: #2061

In response to this:

/cherry-pick release-4.19

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
approved Indicates a PR has been approved by an approver from all required OWNERS files. jira/valid-reference Indicates that this PR references a valid Jira ticket of any type. lgtm Indicates that a PR is ready to be merged.
Projects
None yet
Development

Successfully merging this pull request may close these issues.

5 participants