race conditions in security-group additions

Bug #1417975 reported by Ran Ziv on 2015-02-04
26
This bug affects 5 people
Affects Status Importance Assigned to Milestone
OpenStack Compute (nova)
Medium
Unassigned

Bug Description

When attempting to connect multiple security groups to a single server concurrently, some of the security groups may not actually get connected despite the call returning successfully and with no error.

I've been able to reproduce this by issuing two different "server.add_security_group" calls (using the Nova python client) concurrently - while most of the time both security groups will get connected, sometimes only one does (and it's not necessarily the same one every time)

Sean Dague (sdague) on 2015-03-30
Changed in nova:
status: New → Confirmed
importance: Undecided → High
tags: added: network security-groups
summary: - problem when connecting multiple security-groups to server concurrently
+ race conditions in security-group additions
Chang-Yi Lee (cy-lee) wrote :

Hello, could you please provide reproduce steps?
I use shell script like https://gist.github.com/anonymous/3fe6400a311723b10deb
Add/Remove multiple times but don't see any error on Horizon.

Thank you.

Ran Ziv (ran-k) wrote :

As I said, in order to reproduce this I just used the python client and issued two different calls at the same time (without even using a script, I actually just switched shells and ran the commands manually) - and again, it doesn't happen most of the time, but it does happen every now and again (obviously, a timing issue).

(also it might be better to verify this not via Horizon? I haven't used Horizon for verification afterwards, but rather used the clients to query the server for its security groups)

Changed in nova:
assignee: nobody → lyanchih (lyanchih)

Fix proposed to branch: master
Review: https://review.openstack.org/202436

Changed in nova:
status: Confirmed → In Progress

Change abandoned by Michael Still (<email address hidden>) on branch: master
Review: https://review.openstack.org/202436
Reason: This patch has been stalled for quite a while, so I am going to abandon it to keep the code review queue sane. Please restore the change when it is ready for review.

Sean Dague (sdague) on 2016-02-20
Changed in nova:
status: In Progress → Confirmed
assignee: Chung Chih, Hung (lyanchih) → nobody
importance: High → Medium
stgleb (gstepanov) on 2016-07-11
Changed in nova:
assignee: nobody → stgleb (gstepanov)
stgleb (gstepanov) on 2016-07-11
Changed in nova:
status: Confirmed → In Progress

Change abandoned by Michael Still (<email address hidden>) on branch: master
Review: https://review.openstack.org/344787
Reason: This patch has been sitting unchanged for more than 12 weeks. I am therefore going to abandon it to keep the nova review queue sane. Please feel free to restore the change if you're still working on it.

Sujitha (sujitha-neti) wrote :

The patch submitted for this bug is abandoned and there is no progress since a long time. To signal that to other contributors which might provide patches for this bug, I'm removing the assignee. Feel free to add yourself as assignee and push a patch for it.

Changed in nova:
assignee: stgleb (gstepanov) → nobody
status: In Progress → Confirmed
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers