yahoo-eng-team team mailing list archive
-
yahoo-eng-team team
-
Mailing list archive
-
Message #19250
[Bug 1304181] Re: neutron should validate gateway_ip is in subnet
Backport reviews claim there is a DoS here to justify bypassing stable
branch rules. Adding security to investigate that
** Information type changed from Public to Public Security
** Also affects: ossa
Importance: Undecided
Status: New
** Also affects: neutron/havana
Importance: Undecided
Status: New
** Also affects: neutron/icehouse
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to neutron.
https://bugs.launchpad.net/bugs/1304181
Title:
neutron should validate gateway_ip is in subnet
Status in OpenStack Neutron (virtual network service):
Fix Committed
Status in neutron havana series:
New
Status in neutron icehouse series:
New
Status in OpenStack Security Advisories:
New
Bug description:
I don't believe this is actually a valid network configuration:
arosen@arosen-MacBookPro:~/devstack$ neutron subnet-show be0a602b-ea52-4b13-8003-207be20187da
+------------------+------------------------------------------------+
| Field | Value |
+------------------+------------------------------------------------+
| allocation_pools | {"start": "10.11.12.1", "end": "10.11.12.254"} |
| cidr | 10.11.12.0/24 |
| dns_nameservers | |
| enable_dhcp | True |
| gateway_ip | 10.0.0.1 |
| host_routes | |
| id | be0a602b-ea52-4b13-8003-207be20187da |
| ip_version | 4 |
| name | private-subnet |
| network_id | 53ec3eac-9404-41d4-a899-da4f32045abd |
| tenant_id | f2d9c1726aa940d3bd5a8ee529ea2480 |
+------------------+------------------------------------------------+
To manage notifications about this bug go to:
https://bugs.launchpad.net/neutron/+bug/1304181/+subscriptions
References
