yahoo-eng-team team mailing list archive

Thread
Date

[Bug 1331092] Re: FlatDHCP manager will hand out networks from other tenants

To: yahoo-eng-team@xxxxxxxxxxxxxxxxxxx
From: Jeremy Stanley <fungi@xxxxxxxxxxx>
Date: Tue, 17 Jun 2014 23:10:55 -0000
Reply-to: Bug 1331092 <1331092@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Removing OSSA task since we don't need an advisory (non-exploitable).

** No longer affects: ossa

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Compute (nova).
https://bugs.launchpad.net/bugs/1331092

Title:
  FlatDHCP manager will hand out networks from other tenants

Status in OpenStack Compute (Nova):
  In Progress

Bug description:
  If FlatDhcpManager is used to create specific networks per tenant, a tenant
  will get all networks by default instead of just his or her assigned network.
  Due to context elevation, the network manager doesn't properly ensure that the network is owned by the tenant before it creates a nic.

  nova network-create --interface eth0 --bridge-interface br100 --project-id <foo-tenant-id> --fixed-range 100.0.0.0/24 foonet
  nova network-create --interface eth1 --bridge-interface br200 --project-id <bar-tenant-id> --fixed-range 100.0.0.0/24 barnet

  A instance create inside the foo tenant will get an interface on both
  foonet and barnet.

To manage notifications about this bug go to:
https://bugs.launchpad.net/nova/+bug/1331092/+subscriptions