openstack
/
neutron
Code Issues Proposed changes
neutron/neutron/extensions
History
Brian Haley d8f9c94470 Only allow SG port ranges for whitelisted protocols 
Iptables only supports port-ranges for certain protocols,
others will generate failures, possibly leaving the agent
looping trying to apply rules.  Change to not allow port
ranges outside of the list of known good protocols.

This backport is based on commit
b564871bb7, excluding validation
and tests for protocols where support for port ranges was
added later (in Pike, only TCP and UDP are supported).

Conflicts:
    neutron/tests/unit/db/test_securitygroups_db.py

Change-Id: I5867f77fc5aedc169b42f50def0424ff209c164c
Closes-bug: #1749667
(cherry picked from commit b564871bb7)
 		2018-05-11 00:24:34 +02:00
..
__init__.py Removing vim header lines 2014-04-01 10:38:31 -04:00
address_scope.py use core resource attribute constants from neutron-lib 2017-06-30 06:25:36 -06:00
agent.py Use DB field sizes instead of _MAX_LEN constants 2016-12-23 13:48:57 +00:00
allowedaddresspairs.py Use ExtensionDescriptor from neutron-lib 2016-12-02 14:16:06 -05:00
auto_allocated_topology.py use neutron-lib auto allocated topology apidef 2017-07-28 08:38:45 -06:00
availability_zone.py Use ExtensionDescriptor from neutron-lib 2016-12-02 14:16:06 -05:00
data_plane_status.py use APIExtensionDescriptor for plugins with defs in lib 2017-07-20 20:42:56 +00:00
default_subnetpools.py use core resource attribute constants from neutron-lib 2017-06-30 06:25:36 -06:00
dhcpagentscheduler.py Use ExtensionDescriptor from neutron-lib 2016-12-02 14:16:06 -05:00
dns.py use core resource attribute constants from neutron-lib 2017-06-30 06:25:36 -06:00
dns_domain_ports.py Add dns_domain attribute to ports in the API 2017-07-13 16:51:54 -05:00
dvr.py Use ExtensionDescriptor from neutron-lib 2016-12-02 14:16:06 -05:00
external_net.py Use ExtensionDescriptor from neutron-lib 2016-12-02 14:16:06 -05:00
extra_dhcp_opt.py use extra_dhcp_opt api-def from neutron-lib 2017-05-31 15:06:35 +00:00
extraroute.py Use ExtensionDescriptor from neutron-lib 2016-12-02 14:16:06 -05:00
flavors.py Use DB field sizes instead of _MAX_LEN constants 2016-12-23 13:48:57 +00:00
ip_allocation.py use core resource attribute constants from neutron-lib 2017-06-30 06:25:36 -06:00
l2_adjacency.py Use ExtensionDescriptor from neutron-lib 2016-12-02 14:16:06 -05:00
l3.py use service type constants from neutron_lib plugins 2017-06-27 15:16:05 -06:00
l3_ext_gw_mode.py Use ExtensionDescriptor from neutron-lib 2016-12-02 14:16:06 -05:00
l3_ext_ha_mode.py Allow all migration of routers 2017-01-24 01:04:14 -05:00
l3_flavors.py Use ExtensionDescriptor from neutron-lib 2016-12-02 14:16:06 -05:00
l3agentscheduler.py Make code follow log translation guideline 2017-08-14 10:53:33 -07:00
logging.py [log]: implement logging plugin 2017-07-12 13:30:50 +07:00
metering.py Consume ServicePluginBase from neutron-lib 2017-03-17 12:06:57 -06:00
multiprovidernet.py use neutron_lib's provider_net api-def 2017-03-15 06:27:58 -06:00
netmtu.py Use ExtensionDescriptor from neutron-lib 2016-12-02 14:16:06 -05:00
netmtu_writable.py Allow to set/modify network mtu 2017-08-11 00:57:34 +00:00
network_availability_zone.py Use ExtensionDescriptor from neutron-lib 2016-12-02 14:16:06 -05:00
network_ip_availability.py Use ExtensionDescriptor from neutron-lib 2016-12-02 14:16:06 -05:00
pagination.py Use ExtensionDescriptor from neutron-lib 2016-12-02 14:16:06 -05:00
portbindings.py use neutron_lib's portbindings api-def 2017-03-31 09:16:22 -06:00
portsecurity.py use neutron-lib port security api-def 2017-05-01 11:45:42 -06:00
project_id.py Use ExtensionDescriptor from neutron-lib 2016-12-02 14:16:06 -05:00
providernet.py use APIExtensionDescriptor for plugins with defs in lib 2017-07-20 20:42:56 +00:00
qos.py New API call to get details of supported QoS rule type 2017-07-11 14:24:17 +00:00
qos_bw_limit_direction.py Add QoS bandwidth limit for instance ingress traffic 2017-04-27 12:51:50 +00:00
qos_default.py Add "default" behaviour to QoS policies 2017-05-26 23:31:36 +00:00
qos_rule_type_details.py New API call to get details of supported QoS rule type 2017-07-11 14:24:17 +00:00
quotasv2.py Extend Quota API to report usage statistics 2017-07-17 20:51:48 +00:00
quotasv2_detail.py Allow unprivileged users to get their quota usage 2017-08-12 18:21:20 +00:00
rbac.py Use DB field sizes instead of _MAX_LEN constants 2016-12-23 13:48:57 +00:00
revisionifmatch.py API compare-and-swap updates based on revision_number 2017-06-29 22:50:12 +00:00
revisions.py Use ExtensionDescriptor from neutron-lib 2016-12-02 14:16:06 -05:00
router_availability_zone.py Use ExtensionDescriptor from neutron-lib 2016-12-02 14:16:06 -05:00
routerservicetype.py Use ExtensionDescriptor from neutron-lib 2016-12-02 14:16:06 -05:00
securitygroup.py Only allow SG port ranges for whitelisted protocols 2018-05-11 00:24:34 +02:00
segment.py Merge "Use flake8-import-order plugin" 2017-07-06 02:01:36 +00:00
servicetype.py Use ExtensionDescriptor from neutron-lib 2016-12-02 14:16:06 -05:00
sorting.py Use ExtensionDescriptor from neutron-lib 2016-12-02 14:16:06 -05:00
standardattrdescription.py Use DB field sizes instead of _MAX_LEN constants 2016-12-23 13:48:57 +00:00
subnet_service_types.py use core resource attribute constants from neutron-lib 2017-06-30 06:25:36 -06:00
subnetallocation.py Use ExtensionDescriptor from neutron-lib 2016-12-02 14:16:06 -05:00
tag.py Tag mechanism supports resources with standard attribute 2017-07-25 08:14:04 +09:00
tag_ext.py Tag mechanism supports resources with standard attribute 2017-07-25 08:14:04 +09:00
tagging.py Tag mechanism supports resources with standard attribute 2017-07-25 08:14:04 +09:00
timestamp.py Use ExtensionDescriptor from neutron-lib 2016-12-02 14:16:06 -05:00
trunk.py use APIExtensionDescriptor for plugins with defs in lib 2017-07-20 20:42:56 +00:00
trunk_details.py use APIExtensionDescriptor for plugins with defs in lib 2017-07-20 20:42:56 +00:00
vlantransparent.py Make code follow log translation guideline 2017-08-14 10:53:33 -07:00