Implement support for security groups
Bug #1457567 reported by
Russell Bryant
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
networking-ovn |
Fix Released
|
Critical
|
Russell Bryant |
Bug Description
networking-ovn does not yet support security groups. It's waiting on support from OVN, which needs conntrack support in ovs.
Changed in networking-ovn: | |
status: | New → Confirmed |
Changed in networking-ovn: | |
importance: | Undecided → Critical |
Changed in networking-ovn: | |
assignee: | nobody → Russell Bryant (russellb) |
status: | Confirmed → In Progress |
Changed in networking-ovn: | |
status: | In Progress → Fix Committed |
Changed in networking-ovn: | |
status: | Fix Committed → Fix Released |
To post a comment you must log in.
Reviewed: https:/ /review. openstack. org/223817 /git.openstack. org/cgit/ openstack/ networking- ovn/commit/ ?id=a28e317d9fe 5d20e0ea6029989 c46e755c33b1c9
Committed: https:/
Submitter: Jenkins
Branch: master
commit a28e317d9fe5d20 e0ea6029989c46e 755c33b1c9
Author: Russell Bryant <email address hidden>
Date: Fri Aug 28 16:16:50 2015 +0000
Add security group support using OVN ACLs.
This patch implements Neutron security groups by creating the
appropriate ACLs in the OVN_Northbound database. OVN ACLs are
implemented using conntrack integration with OVS.
All of the OVN and OVS code is merged into master, but it requires
kernel support which has not yet been merged into the in-tree kernel
module in OVS. There's a branch that has the kernel backport available,
so this patch also switches the default branch we test against to one
where the kernel backport is available.
The patch includes some TODOs and some bug reports for disabled tests,
though not all necessarily related to this patch.
Related-bug: #1457567 2adb734308df7ac 97e2fa0d1b4
Change-Id: I71d59dcab3f8b5
Signed-off-by: Russell Bryant <email address hidden>