OpenStack Compute (Nova)

openstack api allows deletion of in-use security group

Reported by Anthony Young on 2012-02-22
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
OpenStack Compute (nova)
Medium
Russell Bryant

Bug Description

ec2 now
(or soon will) prevent users from deleting "in-use" security groups: https://review.openstack.org/#change,4154

There is no equivalent protection in the openstack api.

Steps to reproduce:

> nova boot --security_groups=foo ...
> nova secgroup-delete foo

Expected:

Error "in-use"

Actual:

Deletion of secgroup

Fix proposed to branch: master
Review: https://review.openstack.org/4457

Changed in nova:
assignee: nobody → Russell Bryant (russellb)
status: New → In Progress
Changed in nova:
importance: Undecided → Medium

Reviewed: https://review.openstack.org/4457
Committed: http://github.com/openstack/nova/commit/f006c920e0dc3d3465b0af27b0154aeee3fad373
Submitter: Jenkins
Branch: master

commit f006c920e0dc3d3465b0af27b0154aeee3fad373
Author: Russell Bryant <email address hidden>
Date: Thu Feb 23 14:00:42 2012 -0500

    Don't delete security group in use from OS API.

    Fix bug 938853.

    This patch adds a check to the OpenStack API so that a security group
    still in use can not be deleted. This same check just recently went in
    for the EC2 API.

    Change-Id: I75dc47c5f5d227b94c45ba8a0f00c37bd63f09fc

Changed in nova:
status: In Progress → Fix Committed
Changed in nova:
milestone: none → essex-4
Thierry Carrez (ttx) on 2012-02-29
Changed in nova:
status: Fix Committed → Fix Released
Thierry Carrez (ttx) on 2012-04-05
Changed in nova:
milestone: essex-4 → 2012.1
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers