neutron

Deprecate ARP spoofing protection option

Bug #1546010 reported by OpenStack Infra
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
neutron
Fix Released
Low
Akihiro Motoki
neutron mitaka-3 "m3"
openstack-manuals
Fix Released
Low
KATO Tomoyuki

Bug Description

https://review.openstack.org/280336
Dear bug triager. This bug was created since a commit was marked with DOCIMPACT.
Your project "openstack/neutron" is set up so that we directly report the documentation bugs against it. If this needs changing, the docimpact-group option needs to be added for the project. You can ask the OpenStack infra team (#openstack-infra on freenode) for help if you need to.

commit 7bbacd49a46a6c15b306d1a8f512cdfd078736c3
Author: Kevin Benton <email address hidden>
Date: Mon Feb 15 09:27:42 2016 -0800

    Deprecate ARP spoofing protection option

    This protection should always be enabled unless its explicitly
    shutoff via the port security extension via the API. The primary
    reason it was a config option was because it was merged at the end
    of Kilo development so it wasn't considered stable. Now that it
    has been enabled by default for all of Liberty and the development
    of Mitaka, it's a good idea to just get rid of the option completely.

    DocImpact: Remove references to prevent_arp_spoofing and replace
               with pointer to port security extension for disabling
               security features.
    Change-Id: Ib63ba8ae7050465a0786ea3d50c65f413f4ebe38

Revision history for this message
Rossella Sblendido (rossella-o) wrote :

Kevin I am assigning this to you since you are the author of the patch :)

Changed in neutron:
importance: Undecided → Low
assignee: nobody → Kevin Benton (kevinbenton)
status: New → Confirmed
Armando Migliaccio (armando-migliaccio)
tags: added: deprecation
Changed in openstack-manuals:
status: New → Incomplete
status: Incomplete → Confirmed
Changed in neutron:
status: Confirmed → Incomplete
status: Incomplete → Invalid
milestone: none → mitaka-3
Revision history for this message
Armando Migliaccio (armando-migliaccio) wrote :

Actually this needs a release note.

Changed in neutron:
status: Invalid → Confirmed
Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix proposed to neutron (master)

Fix proposed to branch: master
Review: https://review.openstack.org/300311

Changed in neutron:
assignee: Kevin Benton (kevinbenton) → Akihiro Motoki (amotoki)
status: Confirmed → In Progress
Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Change abandoned on neutron (master)

Change abandoned by Akihiro Motoki (<email address hidden>) on branch: master
Review: https://review.openstack.org/300311
Reason: Let's abandon this

Revision history for this message
Akihiro Motoki (amotoki) wrote :

We missed this in Mitaka release note.
According to the comments in the review, it seems the best way to keep the option in Newton and drop it in Ocata.

Changed in neutron:
assignee: Akihiro Motoki (amotoki) → nobody
status: In Progress → Confirmed
OpenStack Infra (hudson-openstack)
Changed in neutron:
assignee: nobody → Akihiro Motoki (amotoki)
status: Confirmed → In Progress
OpenStack Infra (hudson-openstack)
Changed in neutron:
assignee: Akihiro Motoki (amotoki) → Gary Kotton (garyk)
OpenStack Infra (hudson-openstack)
Changed in neutron:
assignee: Gary Kotton (garyk) → Akihiro Motoki (amotoki)
Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to neutron (master)

Reviewed: https://review.openstack.org/300311
Committed: https://git.openstack.org/cgit/openstack/neutron/commit/?id=2131340d74e8c18a4547c37ddceb019a17be06bd
Submitter: Jenkins
Branch: master

commit 2131340d74e8c18a4547c37ddceb019a17be06bd
Author: Akihiro Motoki <email address hidden>
Date: Fri Apr 1 14:45:38 2016 +0900

    release note to deprecate prevent_arp_spoofing option

    This option was originally intended to deprecate in Mitaka
    and remove in Newton, but we missed to announce it in Mitaka
    release note. It looks better to deprecate it in Newton release
    and remove it in Ocata release.

    Change-Id: Iad466abbb0716da77801315d1a8766ba2f7c06b9
    Closes-Bug: #1546010

Changed in neutron:
status: In Progress → Fix Released
Revision history for this message
Doug Hellmann (doug-hellmann) wrote : Fix included in openstack/neutron 9.0.0.0b1

This issue was fixed in the openstack/neutron 9.0.0.0b1 development milestone.

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix proposed to openstack-manuals (master)

Fix proposed to branch: master
Review: https://review.openstack.org/331621

Changed in openstack-manuals:
assignee: nobody → KATO Tomoyuki (kato-tomoyuki)
status: Confirmed → In Progress
KATO Tomoyuki (kato-tomoyuki)
Changed in openstack-manuals:
importance: Undecided → Low
Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to openstack-manuals (master)

Reviewed: https://review.openstack.org/331621
Committed: https://git.openstack.org/cgit/openstack/openstack-manuals/commit/?id=77a196dcf83d5450ed1eae26e348c9450d416e42
Submitter: Jenkins
Branch: master

commit 77a196dcf83d5450ed1eae26e348c9450d416e42
Author: KATO Tomoyuki <email address hidden>
Date: Mon Jun 20 20:11:13 2016 +0900

    [config-ref] add prevent_arp_spoofing as deprecated

    backport: mitaka

    Change-Id: Ie5b1d97cec2c9aae1b20ffcac1712651f60d1206
    Closes-Bug: #1546010

Changed in openstack-manuals:
status: In Progress → Fix Released
Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix included in openstack/openstack-manuals 15.0.0

This issue was fixed in the openstack/openstack-manuals 15.0.0 release.

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.