yahoo-eng-team team mailing list archive
-
yahoo-eng-team team
-
Mailing list archive
-
Message #51258
[Bug 1583601] [NEW] Duplicated sg rules could be created with diff description
Public bug reported:
I can create multiple security group rules with same content, but different descriptions.
For example,
[fedora@normal2 ~]$ neutron security-group-rule-create test --protocol tcp --remote-group-id 1b8c08e5-728d-48ef-a24b-e4ebc20808a3
Created a new security_group_rule:
+-------------------+--------------------------------------+
| Field | Value |
+-------------------+--------------------------------------+
| description | |
| direction | ingress |
| ethertype | IPv4 |
| id | 09eaa983-7884-4c27-bffb-81064d164688 |
| port_range_max | |
| port_range_min | |
| protocol | tcp |
| remote_group_id | 1b8c08e5-728d-48ef-a24b-e4ebc20808a3 |
| remote_ip_prefix | |
| security_group_id | db8d1386-0b2e-4f0c-b4c2-16c10b30fd92 |
| tenant_id | 02178a7c126a4066ab5c3fae571d89c8 |
+-------------------+--------------------------------------+
[fedora@normal2 ~]$ neutron security-group-rule-create test --protocol tcp --remote-group-id 1b8c08e5-728d-48ef-a24b-e4ebc20808a3 --description "123"
Created a new security_group_rule:
+-------------------+--------------------------------------+
| Field | Value |
+-------------------+--------------------------------------+
| description | 123 |
| direction | ingress |
| ethertype | IPv4 |
| id | 5282599c-4262-4c48-b999-052a0ce5cff7 |
| port_range_max | |
| port_range_min | |
| protocol | tcp |
| remote_group_id | 1b8c08e5-728d-48ef-a24b-e4ebc20808a3 |
| remote_ip_prefix | |
| security_group_id | db8d1386-0b2e-4f0c-b4c2-16c10b30fd92 |
| tenant_id | 02178a7c126a4066ab5c3fae571d89c8 |
+-------------------+--------------------------------------+
This should be prevented.
** Affects: neutron
Importance: Undecided
Assignee: Hong Hui Xiao (xiaohhui)
Status: New
** Tags: sg-fw
** Changed in: neutron
Assignee: (unassigned) => Hong Hui Xiao (xiaohhui)
** Tags added: sg-fw
--
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to neutron.
https://bugs.launchpad.net/bugs/1583601
Title:
Duplicated sg rules could be created with diff description
Status in neutron:
New
Bug description:
I can create multiple security group rules with same content, but different descriptions.
For example,
[fedora@normal2 ~]$ neutron security-group-rule-create test --protocol tcp --remote-group-id 1b8c08e5-728d-48ef-a24b-e4ebc20808a3
Created a new security_group_rule:
+-------------------+--------------------------------------+
| Field | Value |
+-------------------+--------------------------------------+
| description | |
| direction | ingress |
| ethertype | IPv4 |
| id | 09eaa983-7884-4c27-bffb-81064d164688 |
| port_range_max | |
| port_range_min | |
| protocol | tcp |
| remote_group_id | 1b8c08e5-728d-48ef-a24b-e4ebc20808a3 |
| remote_ip_prefix | |
| security_group_id | db8d1386-0b2e-4f0c-b4c2-16c10b30fd92 |
| tenant_id | 02178a7c126a4066ab5c3fae571d89c8 |
+-------------------+--------------------------------------+
[fedora@normal2 ~]$ neutron security-group-rule-create test --protocol tcp --remote-group-id 1b8c08e5-728d-48ef-a24b-e4ebc20808a3 --description "123"
Created a new security_group_rule:
+-------------------+--------------------------------------+
| Field | Value |
+-------------------+--------------------------------------+
| description | 123 |
| direction | ingress |
| ethertype | IPv4 |
| id | 5282599c-4262-4c48-b999-052a0ce5cff7 |
| port_range_max | |
| port_range_min | |
| protocol | tcp |
| remote_group_id | 1b8c08e5-728d-48ef-a24b-e4ebc20808a3 |
| remote_ip_prefix | |
| security_group_id | db8d1386-0b2e-4f0c-b4c2-16c10b30fd92 |
| tenant_id | 02178a7c126a4066ab5c3fae571d89c8 |
+-------------------+--------------------------------------+
This should be prevented.
To manage notifications about this bug go to:
https://bugs.launchpad.net/neutron/+bug/1583601/+subscriptions
Follow ups
