開発中バージョンのリリースノート¶

27.0.0.0b1-7¶

The ML2/OVN driver can now use stateless NAT for floating IP addresses. This functionality is configurable using the new boolean config option [ovn]stateless_nat_enabled. By default, this option is disabled, keeping the current behaviour. This functionality improves the performance in some deployments (DPDK based, for example) by avoiding hitting conntrack OVN actions.

The OVN Metadata agent is deprecated in favor of the OVN agent. In order to replace the the first with the second one, it is only needed to stop the OVN Metadata agent and start the OVN agent with the "metadata" plugable extension enabled. The OVN agent allows plugable extensions, like for example "metadata", that can be enabled or disabled via the configuration file. Apart from the [DEFAULT]extensions configuration parameter required in the OVN agent, the rest of the configuration is the same. Thus the new agent can use the old configuration files by just adding the the "metadata" plugable extension.

Added service role to the create_port:device_id and update_port:device_id policies to allow service users for other OpenStack projects to complete Secure RBAC.

The resource tags are now case sensitive, following the OpenStack guidelines for tags. "tag" table is now using case sensitive collate/charset utf8mb4_bin/utf8mb4, that are present in all MariaDB releases and since MySQL 5.5.3 (2010).

The ML2/OVN Placement initial configuration is executed now in the Neutron API process and removed from the maintenance worker; since the migration to WSGI, now the API and the maintenance worker are different processes. When an OVN Chassis creation event is received, the configuration is read, a PlacementState object created and sent to the Placement API.

Default RBAC policies for get_subnet, get_network_ip_availability, create_port:allowed_address_pairs, create_port:allowed_address_pairs:mac_address, create_port:allowed_address_pairs:ip_address, update_port:allowed_address_pairs, update_port:allowed_address_pairs:mac_address and update_port:allowed_address_pairs:ip_address have been updated to allow the service role.

Config options vlan_transparent and vlan_qinq are now deprecated and will be removed in a future release. Availability of the vlan-transparent and vlan-qinq API extensions can now be calculated by Neutron based on the mechanism drivers enabled in the environment. If any of the enabled mechanism drivers do not support these features, the API extensions will be disabled automatically.

The OVN QoS floating IP rule has precedence over the OVN QoS router rule. If both are present in the same router and port (the one assigned to the floating IP), the floating IP rule will now apply. For more information, see bug 2110018.

When using the ML2/OVN mechanism driver, the QoS policies with maximum bandwidth rules only are always enforced using the internal OVN policers, regardless of the direction and network type. It is not relevant if the QoS policy has or not DSCP rules.

The ML2/OVN Placement extension now removes any existing resource provider deleted from the updated local node configuration. If the resource provider has allocations, Placement will return an exception and it will not be deleted.