Implement support for security groups
Bug #1457567 reported by
Russell Bryant
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| networking-ovn |
Fix Released
|
Critical
|
Russell Bryant | ||
Bug Description
networking-ovn does not yet support security groups. It's waiting on support from OVN, which needs conntrack support in ovs.
| Changed in networking-ovn: | |
| status: | New → Confirmed |
| Changed in networking-ovn: | |
| importance: | Undecided → Critical |
| Changed in networking-ovn: | |
| assignee: | nobody → Russell Bryant (russellb) |
| status: | Confirmed → In Progress |
Revision history for this message
| OpenStack Infra (hudson-openstack) wrote Related fix merged to networking-ovn (master) | #1 |
| Changed in networking-ovn: | |
| status: | In Progress → Fix Committed |
| Changed in networking-ovn: | |
| status: | Fix Committed → Fix Released |
To post a comment you must log in.
Reviewed: https:/
Committed: https:/
Submitter: Jenkins
Branch: master
commit a28e317d9fe5d20
Author: Russell Bryant <email address hidden>
Date: Fri Aug 28 16:16:50 2015 +0000
Add security group support using OVN ACLs.
This patch implements Neutron security groups by creating the
appropriate ACLs in the OVN_Northbound database. OVN ACLs are
implemented using conntrack integration with OVS.
All of the OVN and OVS code is merged into master, but it requires
kernel support which has not yet been merged into the in-tree kernel
module in OVS. There's a branch that has the kernel backport available,
so this patch also switches the default branch we test against to one
where the kernel backport is available.
The patch includes some TODOs and some bug reports for disabled tests,
though not all necessarily related to this patch.
Related-bug: #1457567
Change-Id: I71d59dcab3f8b5
Signed-off-by: Russell Bryant <email address hidden>