yahoo-eng-team team mailing list archive

Thread
Date

[Bug 1527016] [NEW] Security-rule's port value should 1-65535

To: yahoo-eng-team@xxxxxxxxxxxxxxxxxxx
From: Jacky_lei_zhang <shleiz@xxxxxxxxxx>
Date: Thu, 17 Dec 2015 01:49:04 -0000
Reply-to: Bug 1527016 <1527016@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Public bug reported:

When add a security from GUI and input port is 0,GUI can check this is invalid,But we can add port 0 rule from CLI
eg:
[root@controller extensions(keystone_admin)]# neutron security-group-rule-create 65aa027e-3808-41b8-9343-0a86092380ca --protocol TCP 
--port_range_min 0 --port_range_max 0
Created a new security_group_rule:
+-------------------+--------------------------------------+
| Field             | Value                                |
+-------------------+--------------------------------------+
| direction         | ingress                              |
| ethertype         | IPv4                                 |
| id                | f2932274-63ca-4a1b-b176-77982c773c99 |
| port_range_max    | 0                                    |
| port_range_min    | 0                                    |
| protocol          | tcp                                  |
| remote_group_id   |                                      |
| remote_ip_prefix  |                                      |
| security_group_id | 65aa027e-3808-41b8-9343-0a86092380ca |
| tenant_id         | 2c0482cd169a4c1a8b16ab34e30b3984     |
+-------------------+--------------------------------------+

so we should check port value range is 1-65535 from def
convert_validate_port_value(port)

** Affects: neutron
     Importance: Undecided
     Assignee: Jacky_lei_zhang (lzhang1)
         Status: New

** Changed in: neutron
     Assignee: (unassigned) => Jacky_lei_zhang (lzhang1)

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to neutron.
https://bugs.launchpad.net/bugs/1527016

Title:
  Security-rule's port value should 1-65535

Status in neutron:
  New

Bug description:
  When add a security from GUI and input port is 0,GUI can check this is invalid,But we can add port 0 rule from CLI
  eg:
  [root@controller extensions(keystone_admin)]# neutron security-group-rule-create 65aa027e-3808-41b8-9343-0a86092380ca --protocol TCP 
  --port_range_min 0 --port_range_max 0
  Created a new security_group_rule:
  +-------------------+--------------------------------------+
  | Field             | Value                                |
  +-------------------+--------------------------------------+
  | direction         | ingress                              |
  | ethertype         | IPv4                                 |
  | id                | f2932274-63ca-4a1b-b176-77982c773c99 |
  | port_range_max    | 0                                    |
  | port_range_min    | 0                                    |
  | protocol          | tcp                                  |
  | remote_group_id   |                                      |
  | remote_ip_prefix  |                                      |
  | security_group_id | 65aa027e-3808-41b8-9343-0a86092380ca |
  | tenant_id         | 2c0482cd169a4c1a8b16ab34e30b3984     |
  +-------------------+--------------------------------------+

  so we should check port value range is 1-65535 from def
  convert_validate_port_value(port)

To manage notifications about this bug go to:
https://bugs.launchpad.net/neutron/+bug/1527016/+subscriptions

Follow ups

[Bug 1527016] Re: Security-rule's port value should 1-65535
From: OpenStack Infra, 2016-01-11