Don't allow user to set firewall rule with port and no protocol
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| openstack-api-site |
Fix Released
|
Medium
|
Diane Fleming | ||
Bug Description
https:/
commit 6f3ae396ed9a952
Author: Bertrand Lallau <email address hidden>
Date: Tue Sep 9 14:56:59 2014 +0200
Don't allow user to set firewall rule with port and no protocol
Creating firewall rules specifying a destination port and/or a source
port without a protocol, generates rules without src or dest port
restriction. This was a real security issue for cloud users.
This patch generates a 400 Bad request "Source/destination port
requires a protocol" in case of creation/update of firewall rules
specifying a destination port and/or a source port and without protocol.
DocImpact
Closes-Bug: #1365961
Change-Id: I4a3a1d9ae7ec4b
| affects: | openstack-manuals → openstack-api-site |
| Anne Gentle (annegentle) wrote | #1 |
| Changed in openstack-api-site: | |
| status: | New → Confirmed |
| importance: | Undecided → Medium |
| Changed in openstack-api-site: | |
| assignee: | nobody → Diane Fleming (diane-fleming) |
| milestone: | none → liberty |
| Diane Fleming (diane-fleming) wrote | #2 |
| Diane Fleming (diane-fleming) wrote | #3 |
| OpenStack Infra (hudson-openstack) wrote Fix proposed to api-site (master) | #4 |
| Changed in openstack-api-site: | |
| status: | Confirmed → In Progress |
| OpenStack Infra (hudson-openstack) wrote Fix merged to api-site (master) | #5 |
| Changed in openstack-api-site: | |
| status: | In Progress → Fix Released |
The Firewall as a service needs a WADL file describing http://