← Back to team overview

yahoo-eng-team team mailing list archive

  1. yahoo-eng-team team
  2. Mailing list archive
  3. Message #33857

[Bug 1466390] [NEW] server group can be shown and deleted by not owner tenant

  Thread PreviousDate PreviousThread Next 
Public bug reported:

1. Exact version

$ git log -1
commit 045ee0336bde6e6ac5b41efe6d3da08462b4ec7d
Merge: 764c905 2a01a1b
Author: Jenkins <jenkins@xxxxxxxxxxxxxxxxxxxx>
Date:   Thu Jun 18 06:24:08 2015 +0000

    Merge "Remove hv_type translation shim for powervm"

2. log files:

None

3. reproduce steps:

stack@devstack:/opt/stack/nova$  [master]$ source /home/devstack/openrc admin admin
stack@devstack:/opt/stack/nova$  [master]$ nova server-group-create chenrui_group affinity
+--------------------------------------+---------------+---------------+---------+----------+
| Id                                   | Name          | Policies      | Members | Metadata |
+--------------------------------------+---------------+---------------+---------+----------+
| f11126e8-b29c-4fcb-8a56-20e6047f025c | chenrui_group | [u'affinity'] | []      | {}       |
+--------------------------------------+---------------+---------------+---------+----------+
stack@devstack:/opt/stack/nova$  [master]$ source /home/devstack/openrc demo demo
stack@devstack:/opt/stack/nova$  [master]$ nova server-group-get f11126e8-b29c-4fcb-8a56-20e6047f025c
+--------------------------------------+---------------+---------------+---------+----------+
| Id                                   | Name          | Policies      | Members | Metadata |
+--------------------------------------+---------------+---------------+---------+----------+
| f11126e8-b29c-4fcb-8a56-20e6047f025c | chenrui_group | [u'affinity'] | []      | {}       |
+--------------------------------------+---------------+---------------+---------+----------+
stack@devstack:/opt/stack/nova$  [master]$ nova server-group-delete f11126e8-b29c-4fcb-8a56-20e6047f025c
Server group f11126e8-b29c-4fcb-8a56-20e6047f025c has been successfully deleted.
stack@devstack:/opt/stack/nova$  [master]$ source /home/devstack/openrc admin admin
stack@devstack:/opt/stack/nova$  [master]$ nova server-group-list
+----+------+----------+---------+----------+
| Id | Name | Policies | Members | Metadata |
+----+------+----------+---------+----------+
+----+------+----------+---------+----------+

Expected result:
* can't be shown and deleted by demo project

Actual result:
* can be shown and deleted by demo project

** Affects: nova
     Importance: Undecided
     Assignee: Rui Chen (kiwik-chenrui)
         Status: New

** Changed in: nova
     Assignee: (unassigned) => Rui Chen (kiwik-chenrui)

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Compute (nova).
https://bugs.launchpad.net/bugs/1466390

Title:
  server group can be shown and deleted by not owner tenant

Status in OpenStack Compute (Nova):
  New

Bug description:
  1. Exact version

  $ git log -1
  commit 045ee0336bde6e6ac5b41efe6d3da08462b4ec7d
  Merge: 764c905 2a01a1b
  Author: Jenkins <jenkins@xxxxxxxxxxxxxxxxxxxx>
  Date:   Thu Jun 18 06:24:08 2015 +0000

      Merge "Remove hv_type translation shim for powervm"

  2. log files:

  None

  3. reproduce steps:

  stack@devstack:/opt/stack/nova$  [master]$ source /home/devstack/openrc admin admin
  stack@devstack:/opt/stack/nova$  [master]$ nova server-group-create chenrui_group affinity
  +--------------------------------------+---------------+---------------+---------+----------+
  | Id                                   | Name          | Policies      | Members | Metadata |
  +--------------------------------------+---------------+---------------+---------+----------+
  | f11126e8-b29c-4fcb-8a56-20e6047f025c | chenrui_group | [u'affinity'] | []      | {}       |
  +--------------------------------------+---------------+---------------+---------+----------+
  stack@devstack:/opt/stack/nova$  [master]$ source /home/devstack/openrc demo demo
  stack@devstack:/opt/stack/nova$  [master]$ nova server-group-get f11126e8-b29c-4fcb-8a56-20e6047f025c
  +--------------------------------------+---------------+---------------+---------+----------+
  | Id                                   | Name          | Policies      | Members | Metadata |
  +--------------------------------------+---------------+---------------+---------+----------+
  | f11126e8-b29c-4fcb-8a56-20e6047f025c | chenrui_group | [u'affinity'] | []      | {}       |
  +--------------------------------------+---------------+---------------+---------+----------+
  stack@devstack:/opt/stack/nova$  [master]$ nova server-group-delete f11126e8-b29c-4fcb-8a56-20e6047f025c
  Server group f11126e8-b29c-4fcb-8a56-20e6047f025c has been successfully deleted.
  stack@devstack:/opt/stack/nova$  [master]$ source /home/devstack/openrc admin admin
  stack@devstack:/opt/stack/nova$  [master]$ nova server-group-list
  +----+------+----------+---------+----------+
  | Id | Name | Policies | Members | Metadata |
  +----+------+----------+---------+----------+
  +----+------+----------+---------+----------+

  Expected result:
  * can't be shown and deleted by demo project

  Actual result:
  * can be shown and deleted by demo project

To manage notifications about this bug go to:
https://bugs.launchpad.net/nova/+bug/1466390/+subscriptions

Follow ups

References

  Thread PreviousDate PreviousThread Next