neutron

Race conditions in neutron_tempest_plugin/scenario/test_security_groups.py

Bug #1801306 reported by Federico Ressi on 2018-11-02

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	neutron	Fix Released	High	Unassigned

Bug Description

I found a couple of race conditions in neutron-tempest-plugin affecting recular CI build when executing test jobs with neutron-tempest-plugin test suite. These race conditions are mostly because two test case wrongly modify default security group causing random failures in other scenario test cases or also failing themself.

1) Test case test_default_sec_grp_scenarios shouldn't change default security group rule at below lines:
https://github.com/openstack/neutron-tempest-plugin/blob/cf38b77328dbf94f1323f96f68aa77124a6f4a7b/neutron_tempest_plugin/scenario/test_security_groups.py#L109-L112
This could caouse other tests to fail. Modifying default resources should be forbidden. There is no difference between default security group and another group, therefore the test makes no sense at all. Tests that do some changes on resources should create its own target resources.

2) Test case test_protocol_number_rule list for security groups and takes the first one, then it changes it at line
https://github.com/openstack/neutron-tempest-plugin/blob/cf38b77328dbf94f1323f96f68aa77124a6f4a7b/neutron_tempest_plugin/scenario/test_security_groups.py#L147-L149
The problem here is that the first security group that is taken could be the default security group instead of the one created by the test. This would cause a failure in the same test and even worst in another test later.

Tags:

Federico Ressi (fressi-redhat) on 2018-11-02

Changed in neutron:
assignee:	nobody → Federico Ressi (fressi-redhat)

OpenStack Infra (hudson-openstack) on 2018-11-02

Changed in neutron:
status:	New → In Progress

Revision history for this message

Federico Ressi (fressi-redhat) wrote on 2018-11-02:

I started fixing this problem here: https://review.openstack.org/#/c/612733/5

zhaobo (zhaobo6) on 2018-11-05

Changed in neutron:
importance:	Undecided → High
tags:	added: tempest

Revision history for this message

Federico Ressi (fressi-redhat) wrote on 2018-11-06:

There are two patches in progress to fix this bug:

- https://review.openstack.org/#/c/612733 - to cleanup CI status
- https://review.openstack.org/#/c/615813 - complete test case refactory to improve code quality and readybility

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2018-11-20: Fix merged to neutron-tempest-plugin (master)

Reviewed: https://review.openstack.org/612733
Committed: https://git.openstack.org/cgit/openstack/neutron-tempest-plugin/commit/?id=6f9bb77d9872a1cac4e1815ce13d97b8a143b3a8
Submitter: Zuul
Branch: master

commit 6f9bb77d9872a1cac4e1815ce13d97b8a143b3a8
Author: Federico Ressi <email address hidden>
Date: Tue Oct 23 17:35:47 2018 +0200

Fix race condition in test_security_groups

    Listing security groups and taking the first one to change
    rules doesn't give any warranty listed security group is
    exactly the one used to create servers ports.

    This avoids this problem by creating a security group and
    passing it to server instead of having to search for it
    after the server has been created.

    Despite a test cases require a general refactory this should
    at least fix the CI job intermittent failures related to
    this test.

Partial-Bug: #1801306
Change-Id: I5ecb3c8711e7455e7f1588943a2ffd08ce154578

Revision history for this message

Slawek Kaplonski (slaweq) wrote on 2019-04-16: auto-abandon-script

This bug has had a related patch abandoned and has been automatically un-assigned due to inactivity. Please re-assign yourself if you are continuing work or adjust the state as appropriate if it is no longer valid.

Changed in neutron:
assignee:	Federico Ressi (fressi-redhat) → nobody
status:	In Progress → New
tags:	added: timeout-abandon

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2019-04-16: Change abandoned on neutron-tempest-plugin (master)

Change abandoned by Slawek Kaplonski (<email address hidden>) on branch: master
Review: https://review.openstack.org/615813
Reason: This review is > 4 weeks without comment, and failed Jenkins the last time it was checked. We are abandoning this for now. Feel free to reactivate the review by pressing the restore button and leaving a 'recheck' comment to get fresh test results.

Revision history for this message

Brian Haley (brian-haley) wrote on 2022-12-06:

The bug is fixed, the additional change to cleanup the code was never merged. For that reason I will close this but please reopen if necessary.

Changed in neutron:
status:	New → Fix Released

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.