OCPCLOUD-3215: test/ccm: add support for verifying NLB health check configuration

[tthvo]

Description

Extend the CCM load balancer test to verify health check configuration for both Classic Load Balancers (CLB) and Network Load Balancers (NLB). IPv6 dual-stack clusters use NLB, while single-stack/IPv4 primary use CLB.

The test now checks that health check port and path are correctly configured to 10256/healthz for both load balancer types by querying target group configuration for NLB and load balancer description for CLB.

Important

querying target group configuration for NLB

NLBs do not define health check on the Load balancer itself, but rather on its associated target group.

[openshift-ci-robot]

Pipeline controller notification
This repo is configured to use the pipeline controller. Second-stage tests will be triggered either automatically or after lgtm label is added, depending on the repository configuration. The pipeline controller will automatically detect which contexts are required and will utilize /test Prow commands to trigger the second stage.

For optional jobs, comment /test ? to see a list of all defined jobs. To trigger manually all jobs from second stage use /pipeline required command.

This repository is configured in: automatic mode

[coderabbitai]

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: f03db1a6-b197-4d4f-a21d-02b7c73e8ac6

📥 Commits

Reviewing files that changed from the base of the PR and between ab2ceb6 and a1131f5.

⛔ Files ignored due to path filters (51)

• go.sum is excluded by !**/*.sum
• vendor/github.com/aws/aws-sdk-go/aws/arn/arn.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/auth/bearer/token.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/awserr/error.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/awsutil/doc.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/client/client.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/client/metadata/client_info.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/corehandlers/handlers.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/credentials/credentials.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/csm/doc.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/defaults/defaults.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/doc.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/ec2metadata/service.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/endpoints/defaults.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/endpoints/doc.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/request/doc.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/request/waiter.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/session/doc.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/session/shared_config.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/signer/v4/v4.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/version.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/private/protocol/query/queryutil/queryutil.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/ec2/api.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/ec2/doc.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/ecr/api.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/ecr/doc.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/ecr/errors.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/elb/doc.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/elbv2/api.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/elbv2/doc.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/elbv2/errors.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/elbv2/service.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/elbv2/waiters.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/iam/api.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/iam/doc.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/iam/errors.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/kms/api.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/kms/doc.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/kms/errors.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/route53/doc.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/s3/api.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/s3/doc.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/s3/s3manager/doc.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/s3/s3manager/download.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/s3/s3manager/upload_input.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/sso/doc.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/ssooidc/api.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/ssooidc/doc.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/ssooidc/errors.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/sts/doc.go is excluded by !vendor/**, !**/vendor/**
• vendor/modules.txt is excluded by !vendor/**, !**/vendor/**

📒 Files selected for processing (3)

• go.mod
• test/extended/cloud_controller_manager/ccm.go
• test/extended/util/aws_client.go

✅ Files skipped from review due to trivial changes (2)

• test/extended/cloud_controller_manager/ccm.go
• go.mod

🚧 Files skipped from review as they are similar to previous changes (1)

• test/extended/util/aws_client.go

---

Walkthrough

Updated AWS SDK Go dependency and refactored ELB client to support both ELBv1 (Classic) and ELBv2 (NLB/ALB) health-check retrieval; test now selects the appropriate health-check retrieval method based on the IPv6-primary flag and compares against a precomputed expected value.

Changes

Cohort / File(s)	Summary
Dependency Update go.mod	Updated github.com/aws/aws-sdk-go requirement from v1.50.25 to v1.55.8.
ELB client refactor test/extended/util/aws_client.go	ELBClient now holds both svc *elb.ELB and svcV2 *elbv2.ELBV2; NewELBClient initializes both. Replaced GetLBHealthCheckPortPath with GetCLBHealthCheckPortPath (Classic, ELB v1) and added GetNLBHealthCheckPortPath (ELB v2: describe load balancer → describe target groups → extract health-check protocol/port/path). Empty AWS results return "" with nil; API errors propagate.
Test update test/extended/cloud_controller_manager/ccm.go	Replaced single health-check retrieval call with conditional branch: use GetNLBHealthCheckPortPath when isIPv6Primary is true, otherwise GetCLBHealthCheckPortPath. Precomputes expectedHealthCheck and asserts actual value against it; error messages specialized per ELB type.

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~25 minutes

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[tthvo]

/cc @nrb @alebedev87 @sadasu

[tthvo]

The aws sdk (v1) in this repo seems quite old and requires a version bump in order to get the elbv2 package 😓 This is required to interact with network load balancers.

[coderabbitai]

Actionable comments posted: 1

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

test/extended/util/aws_client.go (1)

97-105: ⚠️ Potential issue | 🔴 Critical

Return explicit errors when the AWS objects are missing.

The CLB branch can still panic on an empty result or nil target, while the NLB branch returns ("", nil) and turns lookup failures into opaque assertion mismatches in test/extended/cloud_controller_manager/ccm.go. Both helpers should fail fast with an error.

Suggested fix

 	if len(result.LoadBalancerDescriptions) == 0 {
-		e2e.Logf("Failed to get classic load balancers: %v", err)
+		return "", fmt.Errorf("classic load balancer %q not found", lbName)
 	}
 
 	healthCheck := result.LoadBalancerDescriptions[0].HealthCheck
-	if healthCheck == nil {
-		e2e.Logf("Failed to get health check: %v", err)
+	if healthCheck == nil || healthCheck.Target == nil {
+		return "", fmt.Errorf("classic load balancer %q has no health check target", lbName)
 	}
-	return *healthCheck.Target, nil
+	return aws.StringValue(healthCheck.Target), nil
@@
 	if len(result.LoadBalancers) == 0 {
-		e2e.Logf("No NLB found with name: %s", lbName)
-		return "", nil
+		return "", fmt.Errorf("network load balancer %q not found", lbName)
 	}
@@
 	if len(tgResult.TargetGroups) == 0 {
-		e2e.Logf("No target groups found for NLB: %s", lbName)
-		return "", nil
+		return "", fmt.Errorf("no target groups found for network load balancer %q", lbName)
 	}

Also applies to: 120-137

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@test/extended/util/aws_client.go` around lines 97 - 105, The code currently
logs failures and then dereferences
result.LoadBalancerDescriptions[0].HealthCheck and healthCheck.Target which can
panic; update the helper that reads result.LoadBalancerDescriptions to return
explicit errors instead of calling e2e.Logf and continuing: if
result.LoadBalancerDescriptions is empty return a descriptive error, if
HealthCheck is nil return an error, and if healthCheck.Target is empty or nil
return an error; apply the same change to the NLB branch (the code around lines
120-137) so both branches fail fast with returned errors rather than returning
("", nil) or panicking.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@test/extended/cloud_controller_manager/ccm.go`:
- Around line 156-166: Wrap the direct call to
elbClient.GetNLBHealthCheckPortPath/GetCLBHealthCheckPortPath with a bounded
poll (e.g., using o.Eventually) so the test retries until a non-empty
healthCheck is returned before asserting equality; replace the immediate calls
that set healthCheck with a closure that calls the appropriate getter based on
isIPv6Primary, returns the string (and logs or returns "" on error), and use
o.Eventually(func() string { ... }, timeout,
interval).Expect(o.Equal(expectedHealthCheck)) to assert the exact
"HTTP:10256/healthz" value once available.

---

Outside diff comments:
In `@test/extended/util/aws_client.go`:
- Around line 97-105: The code currently logs failures and then dereferences
result.LoadBalancerDescriptions[0].HealthCheck and healthCheck.Target which can
panic; update the helper that reads result.LoadBalancerDescriptions to return
explicit errors instead of calling e2e.Logf and continuing: if
result.LoadBalancerDescriptions is empty return a descriptive error, if
HealthCheck is nil return an error, and if healthCheck.Target is empty or nil
return an error; apply the same change to the NLB branch (the code around lines
120-137) so both branches fail fast with returned errors rather than returning
("", nil) or panicking.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 670912db-49fe-432b-a97f-1adc4dcc40bd

📥 Commits

Reviewing files that changed from the base of the PR and between d065afe and a3fec2e.

⛔ Files ignored due to path filters (51)

• go.sum is excluded by !**/*.sum
• vendor/github.com/aws/aws-sdk-go/aws/arn/arn.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/auth/bearer/token.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/awserr/error.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/awsutil/doc.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/client/client.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/client/metadata/client_info.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/corehandlers/handlers.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/credentials/credentials.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/csm/doc.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/defaults/defaults.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/doc.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/ec2metadata/service.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/endpoints/defaults.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/endpoints/doc.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/request/doc.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/request/waiter.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/session/doc.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/session/shared_config.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/signer/v4/v4.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/aws/version.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/private/protocol/query/queryutil/queryutil.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/ec2/api.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/ec2/doc.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/ecr/api.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/ecr/doc.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/ecr/errors.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/elb/doc.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/elbv2/api.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/elbv2/doc.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/elbv2/errors.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/elbv2/service.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/elbv2/waiters.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/iam/api.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/iam/doc.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/iam/errors.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/kms/api.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/kms/doc.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/kms/errors.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/route53/doc.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/s3/api.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/s3/doc.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/s3/s3manager/doc.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/s3/s3manager/download.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/s3/s3manager/upload_input.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/sso/doc.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/ssooidc/api.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/ssooidc/doc.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/ssooidc/errors.go is excluded by !vendor/**, !**/vendor/**
• vendor/github.com/aws/aws-sdk-go/service/sts/doc.go is excluded by !vendor/**, !**/vendor/**
• vendor/modules.txt is excluded by !vendor/**, !**/vendor/**

📒 Files selected for processing (3)

• go.mod
• test/extended/cloud_controller_manager/ccm.go
• test/extended/util/aws_client.go

[coderabbitai]

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

test/extended/util/aws_client.go (1)

77-85: ⚠️ Potential issue | 🔴 Critical

Missing error handling leads to panics.

If LoadBalancerDescriptions is empty (line 77), the code logs but continues to access index [0] on line 81, causing an index out of bounds panic. Similarly, if healthCheck is nil (line 82), dereferencing healthCheck.Target on line 85 will panic.

Additionally, the log messages reference err which is nil at these points.

🐛 Proposed fix to handle empty/nil cases

 	if len(result.LoadBalancerDescriptions) == 0 {
-		e2e.Logf("Failed to get classic load balancers: %v", err)
+		e2e.Logf("No classic load balancer found with name: %s", lbName)
+		return "", nil
 	}

 	healthCheck := result.LoadBalancerDescriptions[0].HealthCheck
 	if healthCheck == nil {
-		e2e.Logf("Failed to get health check: %v", err)
+		e2e.Logf("No health check configured for CLB: %s", lbName)
+		return "", nil
 	}
 	return *healthCheck.Target, nil

This aligns error handling with GetNLBHealthCheckPortPath which properly returns ("", nil) for empty cases.

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@test/extended/util/aws_client.go` around lines 77 - 85, The code currently
logs but continues when result.LoadBalancerDescriptions is empty and when
healthCheck is nil, causing index/method panics and incorrectly referencing a
nil err; update the function to check if len(result.LoadBalancerDescriptions) ==
0 and immediately return "", nil (no panic) instead of accessing [0], and
similarly check if healthCheck == nil and return "", nil rather than
dereferencing healthCheck.Target; also remove or fix the log lines that
reference the non-existent err (use a descriptive message without err or include
the actual error where available) so behavior matches GetNLBHealthCheckPortPath.

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Outside diff comments:
In `@test/extended/util/aws_client.go`:
- Around line 77-85: The code currently logs but continues when
result.LoadBalancerDescriptions is empty and when healthCheck is nil, causing
index/method panics and incorrectly referencing a nil err; update the function
to check if len(result.LoadBalancerDescriptions) == 0 and immediately return "",
nil (no panic) instead of accessing [0], and similarly check if healthCheck ==
nil and return "", nil rather than dereferencing healthCheck.Target; also remove
or fix the log lines that reference the non-existent err (use a descriptive
message without err or include the actual error where available) so behavior
matches GetNLBHealthCheckPortPath.

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 0d7c0a01-7d98-49ff-9f8f-ece8de303020

📥 Commits

Reviewing files that changed from the base of the PR and between a3fec2e and ab2ceb6.

📒 Files selected for processing (2)

• test/extended/cloud_controller_manager/ccm.go
• test/extended/util/aws_client.go

🚧 Files skipped from review as they are similar to previous changes (1)

• test/extended/cloud_controller_manager/ccm.go

[tthvo]

/test e2e-aws-csi
/test e2e-aws-ovn-fips
/test e2e-aws-ovn-microshift
/test e2e-aws-ovn-microshift-serial
/test e2e-aws-ovn-serial-1of2
/test e2e-aws-ovn-serial-2of2

[tthvo]

/cc @neisw

[nrb]

/lgtm

[tthvo]

Looks like it finally fixed it: https://prow.ci.openshift.org/view/gs/test-platform-results/logs/multi-pr-openshift-installer-10453-openshift-origin-30952-e2e-aws-ovn-dualstack-ipv6-primary-techpreview/2039423122880335872

[tthvo]

/test e2e-gcp-csi
/test e2e-gcp-ovn
/test e2e-gcp-ovn-upgrade
/test e2e-metal-ipi-ovn-ipv6
/test e2e-vsphere-ovn
/test e2e-vsphere-ovn-upi

[alebedev87]

/approve

[openshift-ci]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: alebedev87, nrb, petr-muller, tthvo

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details

Needs approval from an approver in each of these files:

• OWNERS [petr-muller]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[tthvo]

/verified by https://prow.ci.openshift.org/view/gs/test-platform-results/logs/multi-pr-openshift-installer-10453-openshift-origin-30952-e2e-aws-ovn-dualstack-ipv6-primary-techpreview/2039423122880335872

[openshift-ci-robot]

@tthvo: This PR has been marked as verified by https://prow.ci.openshift.org/view/gs/test-platform-results/logs/multi-pr-openshift-installer-10453-openshift-origin-30952-e2e-aws-ovn-dualstack-ipv6-primary-techpreview/2039423122880335872.

Details

In response to this:

/verified by https://prow.ci.openshift.org/view/gs/test-platform-results/logs/multi-pr-openshift-installer-10453-openshift-origin-30952-e2e-aws-ovn-dualstack-ipv6-primary-techpreview/2039423122880335872

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[tthvo]

/retitle OCPCLOUD-3215: test/ccm: add support for verifying NLB health check configuration

This is a follow-up for #30938

[openshift-ci-robot]

@tthvo: This pull request references OCPCLOUD-3215 which is a valid jira issue.

Warning: The referenced jira issue has an invalid target version for the target branch this PR targets: expected the story to target the "4.22.0" version, but no target version was set.

Details

In response to this:

Description

Extend the CCM load balancer test to verify health check configuration for both Classic Load Balancers (CLB) and Network Load Balancers (NLB). IPv6 dual-stack clusters use NLB, while single-stack/IPv4 primary use CLB.

The test now checks that health check port and path are correctly configured to 10256/healthz for both load balancer types by querying target group configuration for NLB and load balancer description for CLB.

Important

querying target group configuration for NLB

NLBs do not define health check on the Load balancer itself, but rather on its associated target group.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[tthvo]

/tide refresh

[tthvo]

/test e2e-gcp-ovn

[openshift-ci]

@tthvo: all tests passed!

Full PR test history. Your PR dashboard.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.