Juniper Openstack

Do not allow configuration of AAP with prefix length less than 24

Series r4.0
Bug #1720118

Bug #1720118 reported by Hari Prasad Killi on 2017-09-28

This bug affects 1 person

	Status	Importance	Assigned to	Milestone
Juniper Openstack	Status tracked in Trunk
R3.2	Fix Committed	High	Nagendra Prasath	Juniper Openstack r3.2.7.0
R4.0	Fix Committed	High	Nagendra Prasath	Juniper Openstack r4.0.3.0
R4.1	Fix Committed	High	Nagendra Prasath	Juniper Openstack r4.1.0.0-fcs "r4.1"
Trunk	Fix Committed	High	Nagendra Prasath	Juniper Openstack r5.0.0

Bug Description

With the fix for https://bugs.launchpad.net/juniperopenstack/+bug/1675310, AAP with a prefix less than 32 is supported (active-backup mode). To check the active status of the AAP subnet, agent regularly sends ARP requests on the associated interfaces. With a subnet being configured, ARP requests are sent for all addresses in the subnet, which increase exponentially with lesser prefix length. When an ARP response is received, agent stores the address and uses that for further regular ARP requests (attempted upto max retries).

However, if this fails or if there is toggling of ownership, these ARP requests could be many. Depending on how the toggling rate and the rate at which DPDK vrouter drains these messages, agent may have a long backlog of these messages using up a lot of memory as well. To avoid such issues, it is proposed to support AAP subnets for upto /24 only. Prefix lengths less than 24 will be rejected by configuration. This check also needs to take care of active-active to active-standby change.

This change is not backward compatible if such prefix lengths are already configured. Have to release note the change.

Tags:

Jim Reilly (jpreilly) on 2017-09-28

information type:	Public → Private
tags:	added: att-aic-contrail

Sachin Bansal (sbansal) on 2017-09-28

Changed in juniperopenstack:
assignee:	Sachin Bansal (sbansal) → Nagendra Prasath (npchandran)

Revision history for this message

OpenContrail Admin (ci-admin-f) wrote on 2017-09-30: [Review update] R4.0

Review in progress for https://review.opencontrail.org/36141
Submitter: Nagendra Prasath (<email address hidden>)

Revision history for this message

OpenContrail Admin (ci-admin-f) wrote on 2017-09-30: [Review update] R4.1

Review in progress for https://review.opencontrail.org/36142
Submitter: Nagendra Prasath (<email address hidden>)

Revision history for this message

OpenContrail Admin (ci-admin-f) wrote on 2017-09-30: [Review update] master

Review in progress for https://review.opencontrail.org/36143
Submitter: Nagendra Prasath (<email address hidden>)

Revision history for this message

OpenContrail Admin (ci-admin-f) wrote on 2017-10-10: [Review update] R4.0

Review in progress for https://review.opencontrail.org/36141
Submitter: Nagendra Prasath (<email address hidden>)

Revision history for this message

OpenContrail Admin (ci-admin-f) wrote on 2017-10-10: [Review update] R4.1

Review in progress for https://review.opencontrail.org/36142
Submitter: Nagendra Prasath (<email address hidden>)

Revision history for this message

OpenContrail Admin (ci-admin-f) wrote on 2017-10-10: [Review update] master

#11

Review in progress for https://review.opencontrail.org/36143
Submitter: Nagendra Prasath (<email address hidden>)

Revision history for this message

OpenContrail Admin (ci-admin-f) wrote on 2017-10-10: [Review update] R4.0

#15

Review in progress for https://review.opencontrail.org/36141
Submitter: Nagendra Prasath (<email address hidden>)

Revision history for this message

OpenContrail Admin (ci-admin-f) wrote on 2017-10-10: [Review update] master

#17

Review in progress for https://review.opencontrail.org/36143
Submitter: Nagendra Prasath (<email address hidden>)

Revision history for this message

OpenContrail Admin (ci-admin-f) wrote on 2017-10-10: [Review update] R4.1

#19

Review in progress for https://review.opencontrail.org/36142
Submitter: Nagendra Prasath (<email address hidden>)

Savithru Lokanath (slokanath) on 2017-10-13

information type:

Private → Public

Revision history for this message

OpenContrail Admin (ci-admin-f) wrote on 2017-10-24: [Review update] R4.0

#21

Review in progress for https://review.opencontrail.org/36141
Submitter: Nagendra Prasath (<email address hidden>)

Revision history for this message

OpenContrail Admin (ci-admin-f) wrote on 2017-10-24: [Review update] R4.1

#23

Review in progress for https://review.opencontrail.org/36142
Submitter: Nagendra Prasath (<email address hidden>)

Revision history for this message

OpenContrail Admin (ci-admin-f) wrote on 2017-10-24: [Review update] master

#25

Review in progress for https://review.opencontrail.org/36143
Submitter: Nagendra Prasath (<email address hidden>)

Revision history for this message

OpenContrail Admin (ci-admin-f) wrote on 2017-10-25: [Review update] R3.2

#27

Review in progress for https://review.opencontrail.org/36847
Submitter: Nagendra Prasath (<email address hidden>)

Revision history for this message

OpenContrail Admin (ci-admin-f) wrote on 2017-10-29: A change has been merged

#29

Reviewed: https://review.opencontrail.org/36142
Committed: http://github.com/Juniper/contrail-controller/commit/0670bc0839de0817251e7730e3d129e27af8a69c
Submitter: Zuul (<email address hidden>)
Branch: R4.1

commit 0670bc0839de0817251e7730e3d129e27af8a69c
Author: Nagendra Maynattamai <email address hidden>
Date: Sat Sep 30 05:10:31 2017 -0700

Do not allow configuration of Allowed Address Pair with prefix length less than 24
Closes-Bug: 1720118

Change-Id: I0ad8c58f01fc6fcd91779632bb23b7d3f8cf0522

Revision history for this message

OpenContrail Admin (ci-admin-f) wrote on 2017-10-29:

#30

Reviewed: https://review.opencontrail.org/36141
Committed: http://github.com/Juniper/contrail-controller/commit/eb06346838b738ac37011fb0c9c4d735a018cc61
Submitter: Zuul (<email address hidden>)
Branch: R4.0

commit eb06346838b738ac37011fb0c9c4d735a018cc61
Author: Nagendra Maynattamai <email address hidden>
Date: Sat Sep 30 05:10:31 2017 -0700

Do not allow configuration of Allowed Address Pair with prefix length less than 24
Closes-Bug: 1720118

Change-Id: I0ad8c58f01fc6fcd91779632bb23b7d3f8cf0522

Revision history for this message

OpenContrail Admin (ci-admin-f) wrote on 2017-10-30:

#31

Reviewed: https://review.opencontrail.org/36847
Committed: http://github.com/Juniper/contrail-controller/commit/25257e33dfa673001924d396f5560f954ad09035
Submitter: Zuul (<email address hidden>)
Branch: R3.2

commit 25257e33dfa673001924d396f5560f954ad09035
Author: Nagendra Maynattamai <email address hidden>
Date: Sat Sep 30 05:10:31 2017 -0700

Do not allow configuration of Allowed Address Pair with prefix length less than 24
Closes-Bug: 1720118

Change-Id: I0ad8c58f01fc6fcd91779632bb23b7d3f8cf0522

Sachin Bansal (sbansal) on 2017-10-30

tags:

added: operational releasenote

Revision history for this message

OpenContrail Admin (ci-admin-f) wrote on 2017-10-30:

#32

Reviewed: https://review.opencontrail.org/36143
Committed: http://github.com/Juniper/contrail-controller/commit/bf15c72a24f5b16b6eebb672cf067efcb3a9b1b0
Submitter: Zuul (<email address hidden>)
Branch: master

commit bf15c72a24f5b16b6eebb672cf067efcb3a9b1b0
Author: Nagendra Maynattamai <email address hidden>
Date: Sat Sep 30 05:10:31 2017 -0700

Do not allow configuration of Allowed Address Pair with prefix length less than 24
Closes-Bug: 1720118

Change-Id: I0ad8c58f01fc6fcd91779632bb23b7d3f8cf0522

Bernhard Koessler (bkoessler) on 2017-11-22

tags:

added: dt

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.