[testextended][extended:networking]

node startup is failing for networkpolicy:

Feb 16 15:50:08 nettest-node-1 openshift[359]: I0216 15:50:08.281390     359 ovs.go:62] Executing: ovs-ofctl -O OpenFlow13 add-flow br0 table=21, priority=100, ip, actions=ct(commit,table=30)
Feb 16 15:50:08 nettest-node-1 openshift[359]: I0216 15:50:08.285473     359 ovs.go:66] Error executing ovs-ofctl: OFPT_ERROR (OF1.3) (xid=0x2): OFPBAC_BAD_TYPE

It works fine for me locally, and this is inside the dind image, so it ought to be exactly the same software...

Oh, right, the OVS userland is in dind and so is 2.5, but the kernel side of it is in the host and so is still 2.4 here.

@openshift/networking PTAL
The tests won't actually pass until both #14466 and #14498 have merged. Or, well, actually they will pass here, because jenkins is still using RHEL 7.2 and so the "is your kernel new enough" check will fail and the networkpolicy tests will be skipped. But they'd fail if you ran them locally.

the "is your kernel new enough" check

Oh, right. So, this adds a check to the extended networking test setup script that makes it skip the networkpolicy tests if your kernel is too old (which basically means "RHEL < 7.3" since any non-enterprise distro with a kernel too old to support OVS conntrack would presumably also have ancient golang and docker). This lets us commit the tests before jenkins gets updated (#13049).

Since #12972 merged, can we revisit this?

as per the comment above, this is currently waiting on #14466 and #14498

rebased on top of #14466. we want to get this in, although 14466 should merge first. (Note that this only affects the full extended networking test, so even in the worst case it's not going to create more flakes for everyone else)

Evaluated for origin testextended up to d2dfa9c

continuous-integration/openshift-jenkins/testextended SUCCESS (https://ci.openshift.redhat.com/jenkins/job/test_pull_request_origin_extended/658/) (Base Commit: 795ba0a) (PR Branch Commit: d2dfa9c) (Extended Tests: networking)

/test extended_networking

@stevekuznetsov how do I run the full extended networking test rather than just extended_networking_minimal?

/test extended_networking

Should be possible now

Looks great to me. How can we get this merged?

There is one last step:

Submit Queue — PR does not have lgtm label.

The reviewer ( @dcbw ) needs to add their /lgtm tag to this by commenting in the thread.

/approve
/lgtm

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: danwinship, dcbw

The full list of commands accepted by this bot can be found here.

/test extended_templates

/test all [submit-queue is verifying that this PR is safe to merge]

/retest

Please review the full test history for this PR and help us cut down flakes.

/test all [submit-queue is verifying that this PR is safe to merge]

/retest

Please review the full test history for this PR and help us cut down flakes.

/retest

/retest

Please review the full test history for this PR and help us cut down flakes.

/test all [submit-queue is verifying that this PR is safe to merge]

/retest

Please review the full test history for this PR and help us cut down flakes.

/test all [submit-queue is verifying that this PR is safe to merge]

/retest

Please review the full test history for this PR and help us cut down flakes.

/test all [submit-queue is verifying that this PR is safe to merge]

Automatic merge from submit-queue