1.
Architecture
2.
Releases
25.03
24.09
24.03
22.03
All Releases
3.
Contributing
Contributing to the OVN website
Code of Conduct
More
Documentation
GitHub repo
English
Clear History
Star
Fork
Edit this page
OVN, Open Virtual Network
>
Releases
> Changelog v25.03.0
Changes from 24.09.0 to v25.03.0
Changelog v25.03.0
Changes from 24.09.0 to v25.03.0
c24b1aa3
Set release date for 25.03.0.
e0258a8c
statctrl: Add visibility into how long each stats node run lasts.
32a8c233
controller: Avoid unnecessary recomputes due to bfd_chassis.
69c777ba
northd: Remove unnecessary flag check for ct-commit-all.
4ea1d836
controller: Send ARP/ND for stale mac_bindings entries.
49d0f52a
controller: Use xxreg1 for lookup_nd_ip() and get_nd() actions.
2ae8f9d7
controller: Update OFTABLE_MAC_CACHE_USE for ARP reply generated by the tracked device.
8c813987
tests: Fix “interconnection” ic test.
0440e925
multinode-tests: Cleanup before starting migration test.
7113b87c
controller: Avoid potential 100% cpu when ports are postponed.
319cc0e8
northd: Fix action parsing in build_lb_vip_actions().
d8e3fb68
system-tests: Use alternate lease and configuration files for dhcpd.
b5100b1c
actions: Make sure all action opcodes have string representation.
1fc6e09f
docs: Make routing redirect options stable.
66e3adea
docs: Configuration of BGP unnumbered.
1d60466d
northd: Support I+P of lflows on route changes.
1fa78878
northd: Add lflow_ref for route entries.
46e3eb6a
northd: Support I+P for group_ecmp_route engine.
9f559949
northd: Add group ecmp route engine node.
8b43b312
northd: Add en-learned-route-sync I+P handling.
5d64ee99
northd: Prevent assert with wrong LSP configuration.
386c8301
northd/en-advertised-route-sync: Avoid reparsing NAT/LB IPs.
cca8a079
northd/en-advertised-route-sync: Store parsed data instead of IDL pointers.
7ef21114
northd: Move functions that announce LB/NAT IPs.
49eba20b
en-advertised-route-sync: Don’t assume that switch peers are routers.
4bdef19c
Fixes ‘unkown’ typo in dynamic routing logging.
924c7932
northd/en-advertised-route-sync: Be more consistent in function naming.
7304adc8
northd/en-advertised-route-sync: Skip prefix length for host routes.
2b88e8bb
ic: Fix denylist for IPv6 with same prefix length.
b9555b95
ovs: Move the submodule to the official v3.5.0.
93ccfecc
tests: Fix conntrack not being flushed between tests.
675a5a45
northd: Fix onesided LRP peers.
5c59e84e
tests: Fix flaky I+P tests.
8170eee8
ovn-nbctl.8: Document broadcasting behavior of ‘switch’ ports.
ba2db3b9
northd: Fix broadcast of all traffic within a transit spine switch.
f61f5b28
northd: Fix broadcast of all traffic within a spine switch.
2049364b
northd: Fix missing tier related ACL flows.
ea70e4bb
controller: Support migration of container ports.
ef8f909e
controller: Also log port up for container ports.
65891184
Revert “ovn-controller: Remove monitor all of chassis private.”
7c69af77
Prepare for 25.03.0.
cd4ad2f5
northd: Redistribution of NAT/LB routes.
ac0adb50
northd: Check and populate NAT entry fields early in the I-P engine.
01322406
northd: Expose the is_l3dgw_port() function to other modules.
800fd068
northd: Add LR option to commit all traffic.
1098d316
controller: Update ovn-monitor-all documentation.
2dd45736
northd: Fix ecmp group selection by route source.
c99044ea
northd: Fix build_route_flows_for_lrouter.
65e1ba78
pinctrl: Prevent leak of mac_binding and fdb struct.
8cc74a7e
AUTHORS: Add Lucas Vargas Dias.
354d766c
ovn-controller: Remove monitor all of chassis private.
5ebaf30b
route: Avoid double-free of the port_mapping string.
cb7ba9e9
controller: Support user defined vrf names.
b344a534
controller: Cleanup routes on stop.
673d90f1
controller: Watch for route changes.
712fca55
controller: Prioritize host routes.
d7d886ec
controller: Support learning routes per iface.
866a5014
controller: Support learning routes.
faf4df56
controller: Announce routes via route-exchange.
0ed52a4d
controller: Introduce route-exchange-netlink.
ccb0b6b9
controller: Introduce route node.
9473f27e
ci: Manage host/system level dependencies.
94741766
northd: Sync routing data to pb.
93f541f3
northd: Allow announcing individual host routes.
0ccaea17
northd: Remove learned routes if lrp is removed.
966ca1c9
northd: Handle learned routes.
24d52986
northd: Add filtering which routes to advertise.
f2deb24c
northd: Sync Advertised_Route to sb.
0c120fea
ci: ovn-kubernetes: Move the fedora image version to 41.
86dc9f15
controller: Update OVS submodule.
f5aae906
physical: Do not create flood flows without Geneve metadata register.
059763e8
ic: Fix vxlan encap mode.
67100f0c
ic: Add support for spine-leaf topology for transit switches.
a2db2b2f
northd: Add support for spine-leaf logical switch topology.
17605c38
ovn-controller: Enforce ovn-encap-ip-default for non-lsp traffic.
15ab046e
northd: Add ipv6_{src, dst} to selection_fields column in the NB db.
33ecea5b
Logical Router Policy chains.
2aaf905e
ovn-controller: Manage lifetime of persist-established ACLs.
52bb1dab
northd: Copy ACL IDs to the southbound DB.
03556dc0
northd: Add “persist-established” ACL option.
0d3203cc
chassis: Check for ability to flush using CT label/mark.
a979db00
controller: Omit alert for FDB and MAC binding timestamp.
7c3f7f41
northd, controller: Flood ARP and NA packet on transit router.
8d7809c8
actions, physical: Make the MC split action generic.
74ada327
northd: Introduce the concept of transit routers.
c5058ec7
physical: Allow l3gateway and patch port to be peers.
a631cea0
ic: Update ovn-upgrade document.
aac50179
mac-cache: Fix expiration of active FDB entry due to skipped update.
ab443383
mac-cache: Fix expiration of active MAC binding due to skipped update.
fcab7686
mac-cache: Fix MAC binding entry lookup for timestamp refresh.
9ba3c44f
tests: Fix use of bash arrays in MAC binding tests.
85f274f4
tests: Fix incorrect invocations of send_garp.
d95d4394
northd: Fix build_lrouter_ip_mcast_igmp_mld() argument order.
4e312c24
northd: Prevent modification of ovn_datapath from lflow node.
91f7a0ea
northd: Fix register use for route w/o gw/nexthop.
f8cbcca3
northd: Fix NULL pointer deref for NAT add_route.
1dfcd0ed
controller, northd: Ensure proper register usage.
a5f9bd48
northd: Add node for IGMP and Multicast data.
57854045
northd: Remove the list of groups from mcast info.
a0d81f70
northd: Add new module for IGMP and Multicast.
5a4baf84
northd: Do not attempt to install LS flows for LR IGMP group.
b5c13587
northd: Trigger a full recompute if lb neigh_mode option is updated.
c073a5c2
tests: Fix flaky “ovn-controller: Multiple OVS interfaces …”.
89e43f75
controller: Fix IPv6 dp flow explosion by setting flow table prefixes.
d8c65acd
northd: Add “ecmp_nexthop_monitor_enable” config option to NB_Global table.
b4cacd5c
ofctrl: Introduce ecmp_nexthop_monitor.
3a6260ef
northd: Update ecmp-nexthop mac resolving L2 address.
364dda28
lib: Move mac_binding_lookup() and lport_lookup_by_name() in common code.
76e05967
pinctrl: Send periodic arp/nd to ecmp next-hops.
f78e7d1f
northd: Introduce ECMP_Nexthop table in SB db.
8e138ec4
northd: Fix segfault when changing the router to a gateway router.
91988089
northd: Consolidate register usage in logical flows.
fd85ce16
ic: Fix NULL ptr deref on log of duplicate routes.
474bdfca
Skip only OVN DNS responder packets from OUT_ACL.
540b3241
physical: Simplify handler for logical port changes.
34310881
physical: Avoid most of strcmp for port binding type.
13026360
physical: Use struct physical_ctx instead of passing args one by one.
73a10345
controller: Update physical flows for peer port when the patch port is removed.
a5d6329f
northd: Trigger a full recompute if add-route option is toggled.
380a374d
AUTHORS: Add Alexandra Rukomoinikova.
29980127
tests: Use IPv6 prefix reserved for documentation.
b738d3be
tests: Explicitly store hex IPv6 PD prefix.
edc87c66
tests: Use /64s for IPv6 Prefix Delegation test.
744340f7
Allow LR to send RAs through localnet port.
1b89186b
doc: Correct OpenFlow tables numbers.
eb5166ec
controller: binding: Set HTB root max-rate according to the link speed.
0bc9628b
northd: Don’t SNAT reply packets on LBs with lb_force_snat_ip set.
fecf89fa
system-tests: Add check for LB related in reply direction.
937c930b
checkpatch: Ensure ovn-nbctl/sbctl commands have a check.
ade24e8e
tests: Add missing check for ovn-nbctl.
d79ccf0b
tests: Add check_uuid in tests.
1729247b
tests: Fix flaky “ovn-controller incremental processing”.
bf46fc57
tests: Fix flaky “ovs-appctl -t ovsdb-server …”.
c5061089
tests: Fix flaky “ovn-controller - I-P different port types”.
04dc725a
tests: Fix flaky “ovn-sbctl - ovn-sbctl - count-flows - daemon”.
12d829d5
tests: Fix flaky “OVN FDB (MAC learning)”.
37dd0da0
tests: Fix flaky “ovn-controller-vtep - chassis”.
7f073c62
tests: Fix flaky ovn-controller - CT zone min/max boundaries.
1ce78906
tests: Fix flaky “controller event”.
2d3e6d8b
tests: Fix flaky “IPv6 Neighbor Solicitation for unknown MAC”.
96c9905e
tests: Fix flaky “send gratuitous arp with nat-addresses …”.
51cf94a9
tests: Fix flaky “DHCP RELAY”.
d2242c40
tests: Fix flaky “ofctrl wait before clearing flows”.
20964af1
tests: Fix OVN_CHECK_PACKETS_REMOVE_BROADCAST macro.
0814c5b1
tests: Implement send_garp using scapy.
eba60b27
ovn-controller dns-cache: Improve dns caching using cmaps.
d71c4519
pinctrl: Use ovs_mutex_trylock() in the pinctrl thread.
c9361e60
Documentation: Add release calendars for 2025 and 2026.
dbdd8eaa
treewide: Update OVS submodule to modernize SSL/TLS support.
7c1102b4
m4: Remove unused OpenSSL Server Name Indication check.
08c9f727
build-aux: Remove unused generate-dhparams-c.
de697ed0
m4: Bump python version required for building OVN to 3.7.
c7ddeb9f
treewide: Refer to SSL configuration as SSL/TLS.
072b8ec5
docs: Fix route lookup behavior description.
e41fd76e
controller: Reduce the time it takes to remove multiple ports.
6d13bb23
controller: Properly handle localnet flows in I+P.
ebe5d701
Allow LR to send RAs with only link local Ipv6.
0ee90e29
Allow creation of a LRP without ipv4.
bcba1b74
pinctrl: Handle arp/nd for other address families.
55992429
northd: Handle routing for other address families.
1db758ec
northd: Move REG_SRC_IPV4 from reg1 to reg5.
ebb2263e
northd: Routing-protocol-redirect on crps.
c71383f8
northd: Autodiscover centralize_routing.
f8924740
northd: Move connected routes to route engine.
2f4e13fe
northd: Reorder join_logical_ports.
4e713ead
northd: Split out join_logical_ports.
698d10eb
northd: Store outport of parsed_route.
200744b5
ovn-sb: Introduce Advertised_ and Learned_Route.
31d4120e
ovn-detrace: Rephrase man page description.
b52ba504
northd: Fix relying on naming coincidences.
e2d203d5
northd: Set southbound mac from lrp_networks.
7c7a9754
tests: Fix typos found using check_uuid.
6aa66f9e
northd: Track max ACL tiers more accurately.
8a3981e3
chassis: Deprecate support for STT encapsulation.
26f6640b
Doc: Don’t be too strict on backport request for unsupported versions.
ee631193
AUTHORS: Add Aleksandr Smirnov.
e65fb9ef
northd: Fix issues in RBAC tables recovery.
2e63ad17
logical-fields: Reuse registers for ct_*_dst() actions.
011fb5c6
northd: Remove unnecessary pointer checks.
0f463aa3
mirror: Adjust pointer checks reported by coverity.
f0393d54
Documentation: Clarify OVS submodule bump strategy.
6154aa10
lex: Indicate that the template wasn’t found during parsing.
a099f581
controller: Do not bind container port if parent is not bound.
672584ce
controller: Update related ports when parent of container is deleted.
3b32b7d0
northd: Always commit ct.est sampled traffic in the original direction.
de3600f1
controller: Prevent crash when db is empty.
cfcf3458
test: Use check for ovn-sbctl wherever possible.
a51e3aed
test: system-ovn: Use check for ovn-nbctl wherever possible.
720f5a6f
test: perf-northd: Use check for ovn-nbctl wherever possible.
e2d3ef6b
test: ovn-ic: Use check for ovn-nbctl wherever possible.
c998b352
test: ovn-performance: Use check for ovn-nbctl wherever possible.
5035bbc9
test: ovn-northd: Use check for ovn-nbctl wherever possible.
14787612
test: ovn: Use check for ovn-nbctl wherever possible.
f6706734
test: ovn-controller: Use check for ovn-nbctl wherever possible.
3104a1b8
test: system-ovn: Fix typos in system-test
af1a7a82
test: ovn-northd: Fix typos in unit-test
c1589520
test: ovn: Fix typos in unit-test
af3a7602
northd: Rename en_static_routes to en_routes.
c606372d
northd: Find outports based on ovn_port.
d81e7b4f
northd: Use the same UUID for SB representation of Load_Balancer.
bf79250f
northd: Use the same UUID for SB representation of Mirror.
1270d717
northd: Use the same UUID for SB representation of DNS.
6da77a8d
northd: Use the same UUID for SB representation of Chassis_Template_Var.
42ffb62a
northd: Use the same UUID for SB representation of Static_Mac_Binding.
3e177f72
northd: Don’t generate IPv6 prefix delegation flows if not configured.
03ef56f9
northd: Add missing multicast match to DHCPv6 options flows.
c00ba9fe
northd: Make sure that we keep explicit chassis for remote PB.
185849bc
controller: Delete flows on port delete/add.
1bcae357
ovs: Bump submodule to latest OVS branch-3.4.
129eb0ef
local_data: Fix missing peer_ports in local dp.
00410bc7
controller: Add debug/dump-peer-ports unixctl.
8e48f8f3
tests: Update macros waiting for packets.
2d31dcba
tests: Fix macros waiting for flows.
0d9d95c0
tests: Move macros to ovn-macros.at.
0688d7e8
northd: Allow multichassis port to be bound on remote chassis.
3b4af0e3
northd: Populate additional-chassis to HA group.
817d4e53
ovn-controller: Add a separate dns cache module and I-P for SB DNS.
0f806cf0
Fix load balanced hairpin traffic for fragmented packets.
55782afd
northd: Commit ct_label.obs_point_id for blocked connections.
ca52a80f
tests: Wait for controller exit before restart.
d276728a
Revert “controller: Properly handle localnet flows in I+P.”.
a86dcfb0
pinctrl: Skip non-local mac bindings in run_buffered_binding().
b2902f44
pinctrl: Skip deleted mac bindings in run_buffered_binding().
a68ac1a4
mac-cache: Properly handle deletion of SB mac_bindings.
847cbbf4
pinctrl: Use correct map size in pinctrl_handle_put_fdb().
45d4c8ef
github: Remove ASLR entropy workaround.
74315f1c
controller: Fix “use after free” issue in statctrl_run().
b2b2b5a5
ovn-ic: Add support for route tag.
264c8310
northd: Fix logical router load-balancer nat rules when using DGP.
d741f2f6
Update NEWS and SB XML.
84030e9b
Support selection fields for ECMP routes.
12886fb5
ipam: Do not report error for static assigned IPs.
9631ce7e
northd: Avoid most of strcmp for NAT type.
ae352404
ovn-trace: Fix copy-paste error for tracing put_nd_ra_opts().
a8a44636
inc-engine: Adjust the force recompute API.
76f97ed6
tests: Add a test case for patch ports not created by OVN.
edc064b4
controller: Properly handle localnet flows in I+P.
36c45b06
northd: Don’t monitor most of northbound external IDs.
2ecba754
ovn-ctl: Add run_sb_relay_ovsdb subcommand.
ab1cfb92
binding: Fix race condition when claiming vif.
f74b38f7
controller: Accept unicast dhcp-discover in pinctrl_handle_put_dhcp_opts().
3dbded6a
system-test: Simplify the MTU + SNAT test and add IPv6.
ea619bf6
controller: Add bfd_chassis engine.
fcc2bf15
vif-plug: Avoid Transaction failures in ovsdb.
ed3dc80b
vif-plug: Fix small memory leak when exiting.
0e98f862
ovn-ic: Fix debugging log.
2be15f67
ovn-ic: Fix potential segmentation violation.
4f3e0a84
ct_zones: Fix ct_zone removal on port type change.
2253f6a4
ci: Add timeout command to test execution.
bf69ba5d
multinode: Fix for interfaces MTU and central prefix name.
a33ce961
controller: Container lport install flows in MAIN chassis only.
6d2243a8
northd: Log router name in “no path” next-hop warnings.
8114a5c6
northd, controller: Use ct_next to get the CT state for direct SNAT.
3a7e6bd6
ci: Pin scapy version.
5e94f313
Documentation: Define experimental features.
b93e9a5e
northd: Respect –ecmp-symmetric-reply for single routes.
16836c37
controller: Avoid quadratic complexity for multi-chassis ports.
ae3226f2
todo: Add note into TODO about PMTUD.
5bf9cb91
physical: Prevent wrong FDB to be learned with multichassis port.
f958cc71
ovn-controller: Fix potential assert when exiting.
e3c032c2
Documentation: Add the OVN project charter page.
ad336756
controller, controller-vtep: Add –unixctl option.
2bdf1129
Set release date for 24.09.0.
c4a6c066
tests: Fix flaky BFD system test.
55e270fd
tests: Fix flaky ACL Sampling system tests.
d81738a6
tests: Fix multiple ovn-ic race conditions.
39030edc
tests: Fix flaky “load-balancer template IPv4”.
ed3bd080
tests: Fix flaky “Sampling_App incremental processing”.
fbad3f82
tests: Fix flaky “MAC binding aging”.
44e6caa9
ovs: Move the submodule to the official v3.4.0 release.
8d652c50
controller: Do not remove snat-ct-zone requested by the CMS.
87706045
news: Fix indentation for an entry.
4c96d265
pinctrl: Explicitly set ICMPv6 code for packet too big.
25f403ea
tests: Prevent netcat from forking.
063146ee
Documentation: Add inclusive-language documentation.
11d20b89
Revert “northd: Introduce ECMP_Nexthop table in SB db.”.
3cc8db2d
Revert “northd: Add nexhop id in ct_label.label.”.
784f755f
Revert “ofctrl: Introduce ecmp_nexthop_monitor.”.
32fb5866
northd: Make bfd_connections static in build_parsed_routes.
01119a52
northd: Get rid of bfd_connections in bfd_sync_data.
bad91e36
northd: Optimize lookup in bfd_is_port_running.
f41a3225
northd: Introduce bfd_sync_data data structure.
ec603372
AUTHORS: Update email for Rosemarie O’Riorden.
9fbda4ac
northd: Fix potential crash when creating chassisredirect port.
7fd6c211
tests: Skip “IPv6 switching - megaflow check” if scapy is not installed.
2e7f318c
Reply only for the multicast ND solicitations.
a65471c4
ci: Add nftables to containers.
5b0b1dd6
tests: Skip some tests if nft not installed.
e8554f34
multinode: Fix test “ovn multinode NAT …”.
ac120957
multinode: Increase maximum execution time.
37052767
northd: Routing protocol port redirection.
417f1415
northd: Clean up SB MAC bindings for deleted ports.
8c79a7e9
controller: Make sure the meter and group tables are initialized.
3ea7e389
github: containers: Fix job condition.