VPNaaS: peer-cidr validation is invalid
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
neutron |
Fix Released
|
Low
|
Dongcan Ye |
Bug Description
When creating ipsec-site-
The cidr format like "10/8" should be rejected like cidr in subnet resources but it is accepted like the following:
$ neutron ipsec-site-
Created a new ipsec_site_
+------
| Field | Value |
+------
| admin_state_up | True |
| auth_mode | psk |
| description | |
| dpd | {"action": "hold", "interval": 30, "timeout": 120} |
| id | 2bed308f-
| ikepolicy_id | be1f92ab-
| initiator | bi-directional |
| ipsecpolicy_id | 09c67ae8-
| local_ep_group_id | |
| local_id | |
| mtu | 1500 |
| name | |
| peer_address | 192.168.7.1 |
| peer_cidrs | 10/8 |
| peer_ep_group_id | |
| peer_id | 192.168.7.1 |
| project_id | 068a47c758ae4b5
| psk | pass |
| route_mode | static |
| status | PENDING_CREATE |
| tenant_id | 068a47c758ae4b5
| vpnservice_id | 4f82612c-
+------
I think this is because _validate_
Changed in neutron: | |
status: | New → Confirmed |
assignee: | nobody → Dongcan Ye (hellochosen) |
Changed in neutron: | |
status: | In Progress → Confirmed |
importance: | Undecided → Low |
status: | Confirmed → In Progress |
Changed in neutron: | |
importance: | Low → Medium |
Changed in neutron: | |
importance: | Medium → Low |
Fix proposed to branch: master /review. openstack. org/387408
Review: https:/