Based on bug #2008712 if we have a security-group which
is the remote group of a 2nd security-group, the backend
never deletes the rule of the 2nd group which
remote_group_id is the original security-group.
By AFTER_DELETE event for each rule that has the
security_group_id as remote_group_id, we can make the
mech drivers do their work and delete these rules in the
backend.
Reviewed: https:/ /review. opendev. org/c/openstack /neutron/ +/887692 /opendev. org/openstack/ neutron/ commit/ 9e79bd7ff4be716 ce7b1d5b14fee12 12b42dfde1
Committed: https:/
Submitter: "Zuul (22348)"
Branch: stable/victoria
commit 9e79bd7ff4be716 ce7b1d5b14fee12 12b42dfde1
Author: elajkat <email address hidden>
Date: Fri May 26 12:04:49 2023 +0200
Delete sg rule which remote is the deleted sg
Based on bug #2008712 if we have a security-group which group_id as remote_group_id, we can make the
is the remote group of a 2nd security-group, the backend
never deletes the rule of the 2nd group which
remote_group_id is the original security-group.
By AFTER_DELETE event for each rule that has the
security_
mech drivers do their work and delete these rules in the
backend.
One version of this fix was merged: /review. opendev. org/q/I207ecf79 54b06507e03cb16 b502ceb6e2807e0 e7 /review. opendev. org/q/I077fe874 35f61bd29d5c1ef c979c2adebca261 81
https:/
and reverted due to #2019449:
https:/
This patch is based on /review. opendev. org/c/openstack /neutron/ +/876716/ 1
https:/
Conflicts in (due to notify to publish changes): db/securitygrou ps_db.py tests/unit/ db/test_ securitygroups_ db.py
* neutron/
* neutron/
Closes-Bug: #2008712 fefd573b0e2ea5f 3a57983ca35 cee27adb586880f abb8da6f25)
Related-Bug: #2019449
Change-Id: I9e8ddfa26c5402
(cherry picked from commit 67a0b0728788207