Don't allow user to set firewall rule with port and no protocol
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
openstack-api-site |
Fix Released
|
Medium
|
Diane Fleming |
Bug Description
https:/
commit 6f3ae396ed9a952
Author: Bertrand Lallau <email address hidden>
Date: Tue Sep 9 14:56:59 2014 +0200
Don't allow user to set firewall rule with port and no protocol
Creating firewall rules specifying a destination port and/or a source
port without a protocol, generates rules without src or dest port
restriction. This was a real security issue for cloud users.
This patch generates a 400 Bad request "Source/destination port
requires a protocol" in case of creation/update of firewall rules
specifying a destination port and/or a source port and without protocol.
DocImpact
Closes-Bug: #1365961
Change-Id: I4a3a1d9ae7ec4b
affects: | openstack-manuals → openstack-api-site |
Changed in openstack-api-site: | |
assignee: | nobody → Diane Fleming (diane-fleming) |
milestone: | none → liberty |
The Firewall as a service needs a WADL file describing http:// docs.openstack. org/api/ openstack- network/ 2.0/content/ fwaas_ext. html