yahoo-eng-team team mailing list archive

Thread
Date

[Bug 2067239] Re: Security group rule quota is not working well with default security group rule.

To: yahoo-eng-team@xxxxxxxxxxxxxxxxxxx
From: OpenStack Infra <2067239@xxxxxxxxxxxxxxxxxx>
Date: Mon, 28 Oct 2024 15:47:29 -0000
Reply-to: Bug 2067239 <2067239@xxxxxxxxxxxxxxxxxx>
Sender: noreply@xxxxxxxxxxxxx

Reviewed:  https://review.opendev.org/c/openstack/neutron/+/921909
Committed: https://opendev.org/openstack/neutron/commit/1a440dd61b04b37d0e2a9434e802f5a1ee3c198b
Submitter: "Zuul (22348)"
Branch:    master

commit 1a440dd61b04b37d0e2a9434e802f5a1ee3c198b
Author: kyu0 <kyu0.lee@xxxxxxxxxxx>
Date:   Thu Jun 13 12:46:54 2024 +0900

    Modify the default SG rule count logic when creating SG
    
    During the creation of SG, not to exceed the SG rule quota, the number
    of default SG rules that will be automatically created must be counted.
    It is always 2 (in case of the default SG, it is 4), but it is wrong
    since it depends on the default SG rules.
    
    Closes-Bug: #2067239
    Change-Id: Ic86826b71c1160a6891f09ca1e40135049a8948a


** Changed in: neutron
       Status: In Progress => Fix Released

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to neutron.
https://bugs.launchpad.net/bugs/2067239

Title:
  Security group rule quota is not working well with default security
  group rule.

Status in neutron:
  Fix Released

Bug description:
  OpenStack Version: 2023.2

  How to reproduce :
  1. Remove all of default-security-group-rules.
  2. Create a new project and set the quota of security-group-rules to 5.
  3. Create a new security-group, and create 4 security-group-rules in this security-group.
  4. Create another new security-group.

  Expected :
  At step 4, the security-group will be created without any security-group-rules since I removed all of default-security-group-rules at step 1.
  There will be no problem with the security-group-rules quota. (I have 4 rules, and the quota is 5.)

  Actual :
  Failed to create the security-group at step 4 with the message below.
  - Error: Unable to create security group: %s Details
  - Quota exceeded for resources: ['security_group_rule'].

  It seems the security-group-rules quota validation logic in the
  security group creation code has to be modified.

To manage notifications about this bug go to:
https://bugs.launchpad.net/neutron/+bug/2067239/+subscriptions

References

[Bug 2067239] [NEW] Security group rule quota is not working well with default security group rule.
From: Kyuyeong Lee, 2024-05-27