Skip to content

Race Condition in Public IP Allocation #457

New issue
New issue
Open
Bug
Open
Race Condition in Public IP Allocation#457
Bug
Assignees
sujeet01
Labels
area/networkingNetworking-related tasks and improvements.bugSomething isn't working
@afritzler

Description

@afritzler
afritzler
opened on Dec 1, 2025

Description

When creating NATGateway and LoadBalancer resources in ironcore concurrently, the system assigns the same public IP to multiple entities.
This must never happen, as it breaks core network routing.

Expected Behavior

  • Each resource gets a unique public IP.
  • Allocation is atomic and free of race conditions.

Actual Behavior

  • Multiple resources receive the same public IP.

Steps to Reproduce

  1. Reduce the size of public IPs to e.g. a /30 IPv4 CIDR.
  2. Create several NATGateway or LoadBalancer resources in parallel.
  3. Check allocation logs → duplicated public IPs appear.

Severity

🚨 Critical

Definition of Done

  • Public IP allocation is race-condition free.
  • Add tests for concurrent resource creation.
  • Improve allocator logging.

Metadata

Metadata

Assignees

Labels

area/networkingNetworking-related tasks and improvements.bugSomething isn't working

Type

Bug

Projects

Roadmap

Status

No status

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions