Port is reported with 'port_security_enabled=True' without port-security extension
Bug #1863206 reported by
Yang Youseok
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
neutron |
Invalid
|
Undecided
|
Unassigned |
Bug Description
By default, if admin does not enable 'port_security' extension, all ports are shown that 'port_security_
However, L2 agent got ports which having 'port_security_
I think is there is no attribute 'port_security_
Thanks.
To post a comment you must log in.
'port_security' extension was implemented so that users can disable port_security completely. If the extension is disabled, the design is that port_security is applied to neutron ports.
> By default, if admin does not enable 'port_security' extension, all ports are shown that 'port_security_ enabled= False'.
By design, all ports should be considered as neutron ports whose port security is enabled.
> However, L2 agent got ports which having 'port_security_ enabled= True' incorrectly because if there is no attribute in port object plugin return wrong default value (https:/ /github. com/openstack/ neutron/ blob/master/ neutron/ plugins/ ml2/rpc. py#L162)
port_security=True is by design when the port security extension is disabled.
> I think is there is no attribute 'port_security_ enabled' , we have to get False by default.
As I explained in the above, it is by design. Is there any issue more?