You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
ACL Logging for NetworkPolicy when the namespace's ACL logging annotation is updated
[It] the ACL logs are updated accordingly
.../ovn-kubernetes/test/e2e/acl_logging.go:121
Which tests are flaking?
• [FAILED] [21.581 seconds]
ACL Logging for NetworkPolicy when the namespace's ACL logging annotation is updated [It] the ACL logs are updated accordingly
/home/vagrant/ovn-kubernetes/test/e2e/acl_logging.go:121
[FAILED] May 24 06:09:25.765: Timed out after 15.000s.
Expected
<bool>: false
to be true
In [It] at: /home/vagrant/ovn-kubernetes/test/e2e/acl_logging.go:130 @ 05/24/24 06:09:25.765
it loops waiting for the logs to be seen in ovn-controller
The issue is that there is no delay between the setting the acl log and poking, so in a slow vm it may
take a bit of time until ovn is fully configured with it and that may happen after the poke took place.
A proposed solution would be to make the poking also happen while waiting, so it gets generated as
expected.
Anything else we need to know?
It is a race in the test. I have found the issue and will be making a PR for it shortly. :)
To reproduce, these are the steps I took:
# Bring up cluster using kind.sh or kind-helm.sh
# It may be interesting to open a secondary shell and look at ovn-controller log.
# This particular test creates acl_logging on ovn-worker2
$ docker exec ovn-worker2 tail -F /var/log/openvswitch/ovn-controller.log
# on another shell, run this test in a loop. It should get the failure after a few
# loops:
$ cd test/e2e && \
while : ; do \
go test -v . -ginkgo.v \
-ginkgo.focus 'the\sACL\slogs\sare\supdated\saccordingly' \
-ginkgo.flake-attempts 1 -provider skeleton \
-kubeconfig ${KUBECONFIG} --num-nodes=2 || break ; \
echo --- ; done
The text was updated successfully, but these errors were encountered:
Fixes waiting for ACL logging in a test where the namespace's
ACL logging level is updated.
To reproduce, use these steps:
cd test/e2e && \
while : ; do \
go test -v . -ginkgo.v \
-ginkgo.focus 'the\sACL\slogs\sare\supdated\saccordingly' \
-ginkgo.flake-attempts 1 -provider skeleton \
-kubeconfig ${KUBECONFIG} --num-nodes=2 || break ; \
echo --- ; done
Fixes: ovn-org#4392
Signed-off-by: Flavio Fernandes <ffernandes@nvidia.com>
Fixes waiting for ACL logging in a test where the namespace's
ACL logging level is updated.
To reproduce, use these steps:
cd test/e2e && \
while : ; do \
go test -v . -ginkgo.v \
-ginkgo.focus 'the\sACL\slogs\sare\supdated\saccordingly' \
-ginkgo.flake-attempts 1 -provider skeleton \
-kubeconfig ${KUBECONFIG} --num-nodes=2 || break ; \
echo --- ; done
Fixes: ovn-org#4392
Signed-off-by: Flavio Fernandes <ffernandes@nvidia.com>
Which jobs are flaking?
ACL Logging for NetworkPolicy when the namespace's ACL logging annotation is updated
[It] the ACL logs are updated accordingly
.../ovn-kubernetes/test/e2e/acl_logging.go:121
Which tests are flaking?
Since when has it been flaking?
Sorry, I don't know.
Reason for failure (if possible)
The test does this:
ovn-kubernetes/test/e2e/acl_logging.go
Lines 104 to 130 in 49e1aea
The issue is that there is no delay between the setting the acl log and poking, so in a slow vm it may
take a bit of time until ovn is fully configured with it and that may happen after the
poke
took place.A proposed solution would be to make the poking also happen while waiting, so it gets generated as
expected.
Anything else we need to know?
It is a race in the test. I have found the issue and will be making a PR for it shortly. :)
To reproduce, these are the steps I took:
The text was updated successfully, but these errors were encountered: