ipset set couldn't not be clean when corresponding security rule is deleted
Bug #1373287 reported by
shihanzhang
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
neutron |
Fix Released
|
Medium
|
shihanzhang |
Bug Description
In bellow case, if L2 agent enable ipset, ipset set couldn't be clean:
1.launch a instance with IPv4 address in default security group
2.delete the IPv4 ingress rule
the corresponding ipset set should be clean, but now it is not clean
Changed in neutron: | |
assignee: | nobody → shihanzhang (shihanzhang) |
summary: |
- Security group doesn't work when L2 agent enable ipset + ipset set couldn't not be clean when corresponding security rule is + deleted |
description: | updated |
Changed in neutron: | |
importance: | Undecided → Medium |
tags: | added: enhanced-rpc |
tags: |
added: sg-enhanced-rpc removed: enhanced-rpc |
Changed in neutron: | |
milestone: | none → kilo-1 |
Changed in neutron: | |
status: | Fix Committed → Fix Released |
Changed in neutron: | |
milestone: | kilo-1 → 2015.1.0 |
To post a comment you must log in.
By saying "should be clean" do you mean it should be deleted completely? After performing described steps I'm seeing:
$ sudo ipset list 9594-4cfa- a
Name: IPv4a811eae7-
Type: hash:ip
Revision: 2
Header: family inet hashsize 1024 maxelem 65536
Size in memory: 16520
References: 0
Members:
Does it affects security groups functionality somehow or the bug is just about the garbage that should be collected?