OpenStack Networking (Neutron)

Go to file

Rodolfo Alonso Hernandez abeda5aece [OVS][FW] Remote SG IDs left behind when a SG is removed When any port in the OVS agent is using a security groups (SG) and this SG is removed, is marked to be deleted. This deletion process is done in [1]. The SG deletion process consists on removing any reference of this SG from the firewall and the SG port map. The firewall removes this SG in [2]. The information of a SG is stored in: * ConjIPFlowManager.conj_id_map = ConjIdMap(). This class stores the conjunction IDS (conj_ids) in a dictionary using the following keys: ConjIdMap.id_map[(sg_id, remote_sg_id, direction, ethertype, conj_ids)] = conj_id_XXX * ConjIPFlowManager.conj_ids is a nested dictionary, built in the following way: self.conj_ids[vlan_tag][(direction, ethertype)][remote_sg_id] = \ set([conj_id_1, conj_id_2, ...]) This patch stores all conjuntion IDs generated and assigned to the tuple (sg_id, remote_sg_id, direction, ethertype). When a SG is removed, the deletion method will look for this SG in the new storage variable created, ConjIdMap.id_map_group, and will mark all the conjuntion IDs related to be removed. That will cleanup those rules left in the OVS matching: action=conjunction(conj_id, 1/2) [1]`118930f03d/neutron/agent/linux/openvswitch_firewall/firewall.py (L731)` [2]`118930f03d/neutron/agent/linux/openvswitch_firewall/firewall.py (L399)` Conflicts: neutron/tests/unit/agent/linux/openvswitch_firewall/test_firewall.py Change-Id: I63e446a30cf10e7bcd34a6f0d6ba1711301efcbe Related-Bug: #1881157 (cherry picked from commit `0eebd002cc`) (cherry picked from commit `ed22f7a2ff`) (cherry picked from commit `6615f248e2`)		2020-08-21 09:56:18 +00:00
api-ref	Fix some typos	2016-06-28 22:46:19 +02:00
bin	Use os-xenapi for neutron when XenServer as hypervisor	2017-03-30 18:33:37 +00:00
devstack	Add port_forwarding to devstack plugin	2019-05-27 10:47:32 +00:00
doc	Add VLAN type conntrack direct flow	2020-03-25 21:43:32 +00:00
etc	Merge "List SG rules which belongs to tenant's SG" into stable/rocky	2020-02-18 06:31:32 +00:00
neutron	[OVS][FW] Remote SG IDs left behind when a SG is removed	2020-08-21 09:56:18 +00:00
playbooks/legacy	Fix rocky gates, multiple fixes	2020-07-03 12:44:37 +02:00
rally-jobs	[rally] Port custom plugins to use proper code	2018-05-18 00:25:35 +03:00
releasenotes	Add config option ``http_retries``	2020-07-09 12:17:38 +02:00
tools	Merge "Switch to stestr"	2018-06-07 02:24:02 +00:00
.coveragerc	Cleanup coverage configuration	2016-10-17 17:06:19 +05:30
.gitignore	Switch to stestr	2018-06-02 13:03:33 +02:00
.gitreview	OpenDev Migration Patch	2019-04-19 19:39:02 +00:00
.mailmap	Add mailmap entry	2014-05-16 13:40:04 -04:00
.pylintrc	Update pylint disable list to pass pylint 1.7.1 checks	2017-06-08 09:49:46 +00:00
.stestr.conf	Fix post gate hook to accommodate for new os-testr	2017-09-12 14:20:12 -06:00
.zuul.yaml	[Stable only] Drop *-master jobs	2020-08-19 10:33:26 +02:00
CONTRIBUTING.rst	Update link for contribution	2017-08-31 16:44:51 +02:00
HACKING.rst	Update the documentation link for doc migration	2017-07-22 18:46:13 +09:00
LICENSE	Adding Apache Version 2.0 license file. This is the official license agreement under which Quantum code is available to	2011-08-08 12:31:04 -07:00
README.rst	Add release notes link in README	2018-07-10 15:40:00 +07:00
TESTING.rst	Docs: Fix wrong stestr argument	2018-07-17 09:45:43 +00:00
babel.cfg	Use babel to generate translation file	2013-01-24 00:20:32 +08:00
bindep.txt	Add libffi-dev to bindep.txt	2017-06-13 19:26:49 +00:00
lower-constraints.txt	bump neutron-lib requirements to 1.18.0	2018-07-19 06:29:48 -06:00
requirements.txt	metadata: use requests for comms with nova api	2018-09-04 10:04:47 +01:00
setup.cfg	Add enforcer logic for neutron policy	2019-03-25 16:07:51 -04:00
setup.py	Updated from global requirements	2017-03-04 11:19:58 +00:00
test-requirements.txt	Cap pycodestyle to be < 2.6.0	2020-05-13 17:41:04 +02:00
tox.ini	Use constraints for docs tox target and cap hacking	2019-12-19 15:18:12 +01:00

README.rst

Team and repository tags

Welcome!

To learn more about neutron:

Documentation: https://docs.openstack.org

Features: https://specs.openstack.org/openstack/neutron-specs

Defects: https://launchpad.net/neutron

Release notes: https://docs.openstack.org/releasenotes/neutron/index.html

Get in touch via email. Use [Neutron] in your subject.

To learn how to contribute:

CONTRIBUTING.rst