neutron-fwaas

History

Bertrand Lallau 50e15341fe Don't allow user to set firewall rule with port and no protocol Creating firewall rules specifying a destination port and/or a source port without a protocol, generates rules without src or dest port restriction. This was a real security issue for cloud users. This patch generates a 400 Bad request "Source/destination port requires a protocol" in case of creation/update of firewall rules specifying a destination port and/or a source port and without protocol. DocImpact Closes-Bug: #1365961 Change-Id: I4a3a1d9ae7ec4b2a864b3edc83d65ef7f80cbba5 (cherry picked from commit `6f3ae396ed`)	2014-09-17 16:14:22 +02:00
..
__init__.py	Firewall as a Service (FWaaS) APIs and DB Model	2013-07-29 22:06:50 -07:00
firewall_db.py	Don't allow user to set firewall rule with port and no protocol	2014-09-17 16:14:22 +02:00

Bertrand Lallau 50e15341fe Don't allow user to set firewall rule with port and no protocol

Creating firewall rules specifying a destination port and/or a source
port without a protocol, generates rules without src or dest port
restriction. This was a real security issue for cloud users.

This patch generates a 400 Bad request "Source/destination port
requires a protocol" in case of creation/update of firewall rules
specifying a destination port and/or a source port and without protocol.

DocImpact
Closes-Bug: #1365961

Change-Id: I4a3a1d9ae7ec4b2a864b3edc83d65ef7f80cbba5
(cherry picked from commit 6f3ae396ed)

2014-09-17 16:14:22 +02:00

__init__.py Firewall as a Service (FWaaS) APIs and DB Model 2013-07-29 22:06:50 -07:00

firewall_db.py Don't allow user to set firewall rule with port and no protocol 2014-09-17 16:14:22 +02:00