kolla-ansible

Bug #1869832
Activity log

Activity log for bug #1869832

Date	Who	What changed	Old value	New value	Message
2020-03-31 04:38:34	Joseph M	bug			added bug
2020-03-31 04:48:32	Joseph M	summary	openvswitch firewall still broken	openvswitch firewall still broken after unclean backport
2020-03-31 04:53:01	Joseph M	description	https://bugs.launchpad.net/kolla-ansible/+bug/1867506 was filed to fix openvswitch firewalls that were broken by https://bugs.launchpad.net/kolla-ansible/+bug/1861792 unfortunately it was not a complete fix. https://review.opendev.org/#/c/709115/ broke the firewall, https://review.opendev.org/#/c/713488/ attempted to fix it but only applied the fix to the neutron-openvswitch-agent-xenapi container, instead of the more common neutron-openvswitch-agent container. potentially a security issue since if the openvswitch firewall cant add rules it passes all traffic	https://bugs.launchpad.net/kolla-ansible/+bug/1867506 was filed to fix openvswitch firewalls that were broken by https://bugs.launchpad.net/kolla-ansible/+bug/1861792 unfortunately it was not a complete fix. https://review.opendev.org/#/c/709115/ originally broke the firewall https://review.opendev.org/#/c/713129/ fixed it for neutron_openvswitch_agent in master but not neutron_openvswitch_agent_xenapi https://review.opendev.org/#/c/713378/1/ansible/roles/neutron/defaults/main.yml fixed it for neutron_openvswitch_agent in train but not neutron_openvswitch_agent_xenapi https://review.opendev.org/#/c/713488/ fixed it for neutron_openvswitch_agent_xenapi in stein but not neutron_openvswitch_agent https://review.opendev.org/#/c/713490/ fixed it for neutron_openvswitch_agent_xenapi in stein but not neutron_openvswitch_agent tl;dr its fixed for openvswitch in train/master, broken in stein/rocky. its fixed for openvswitch_xenapi in stein/rocky but not train/master potentially a security issue since if the openvswitch firewall cant add rules it passes all traffic
2020-03-31 06:21:48	Radosław Piliszek	kolla-ansible: importance	Undecided	High
2020-03-31 06:22:04	Radosław Piliszek	kolla-ansible: status	New	Triaged
2020-03-31 06:22:27	Radosław Piliszek	nominated for series		kolla-ansible/rocky
2020-03-31 06:22:27	Radosław Piliszek	bug task added		kolla-ansible/rocky
2020-03-31 06:22:27	Radosław Piliszek	nominated for series		kolla-ansible/ussuri
2020-03-31 06:22:27	Radosław Piliszek	bug task added		kolla-ansible/ussuri
2020-03-31 06:22:27	Radosław Piliszek	nominated for series		kolla-ansible/stein
2020-03-31 06:22:27	Radosław Piliszek	bug task added		kolla-ansible/stein
2020-03-31 06:22:27	Radosław Piliszek	nominated for series		kolla-ansible/train
2020-03-31 06:22:27	Radosław Piliszek	bug task added		kolla-ansible/train
2020-03-31 06:22:33	Radosław Piliszek	kolla-ansible/train: importance	Undecided	High
2020-03-31 06:22:34	Radosław Piliszek	kolla-ansible/stein: importance	Undecided	High
2020-03-31 06:22:35	Radosław Piliszek	kolla-ansible/rocky: importance	Undecided	High
2020-03-31 06:22:38	Radosław Piliszek	kolla-ansible/train: status	New	Triaged
2020-03-31 06:22:41	Radosław Piliszek	kolla-ansible/stein: status	New	Triaged
2020-03-31 06:22:42	Radosław Piliszek	kolla-ansible/rocky: status	New	Triaged
2020-03-31 06:22:57	Radosław Piliszek	kolla-ansible/ussuri: milestone		10.0.0
2020-03-31 06:22:59	Radosław Piliszek	kolla-ansible/train: milestone		9.0.2
2020-03-31 06:23:01	Radosław Piliszek	kolla-ansible/stein: milestone		8.1.1
2020-03-31 07:20:11	OpenStack Infra	kolla-ansible: status	Triaged	In Progress
2020-03-31 07:20:11	OpenStack Infra	kolla-ansible: assignee		Radosław Piliszek (yoctozepto)
2020-03-31 07:21:20	OpenStack Infra	kolla-ansible/train: status	Triaged	In Progress
2020-03-31 07:21:20	OpenStack Infra	kolla-ansible/train: assignee		Radosław Piliszek (yoctozepto)
2020-03-31 07:23:58	OpenStack Infra	kolla-ansible/stein: status	Triaged	In Progress
2020-03-31 07:23:58	OpenStack Infra	kolla-ansible/stein: assignee		Radosław Piliszek (yoctozepto)
2020-03-31 07:24:15	OpenStack Infra	kolla-ansible/rocky: status	Triaged	In Progress
2020-03-31 07:24:15	OpenStack Infra	kolla-ansible/rocky: assignee		Radosław Piliszek (yoctozepto)
2020-04-01 21:18:42	OpenStack Infra	kolla-ansible: status	In Progress	Fix Released
2020-04-07 09:59:04	OpenStack Infra	kolla-ansible/stein: status	In Progress	Fix Committed
2020-04-07 09:59:17	OpenStack Infra	kolla-ansible/train: status	In Progress	Fix Committed
2020-05-05 10:18:14	Mark Goddard	kolla-ansible/train: status	Fix Committed	Fix Released
2020-05-05 10:18:17	Mark Goddard	kolla-ansible/stein: status	Fix Committed	Fix Released
2020-05-19 09:28:37	Mark Goddard	kolla-ansible/rocky: status	In Progress	Fix Released