[Openstack-security] [Bug 1334926] Re: floatingip still working once connected even after it is disociated
OpenStack Infra
1334926 at bugs.launchpad.net
Thu Sep 25 09:27:09 UTC 2014
Reviewed: https://review.openstack.org/103475
Committed: https://git.openstack.org/cgit/openstack/neutron/commit/?id=966645538395079b5337b5ed30d597112279283c
Submitter: Jenkins
Branch: master
commit 966645538395079b5337b5ed30d597112279283c
Author: Yong Sheng Gong <gongysh at unitedstack.com>
Date: Mon Jun 30 15:01:17 2014 +0800
Deletes floating ip related connection states
When a floating ip is dissociated with a port, the current
connection with the floating ip is still working. This patch
will clear the connection state and cut off the connection
immediately.
Since conntrack -D will return 1, which is not an error code,
so add extra_ok_codes argument to execute methods.
Change-Id: Ia9bd7ae243a0859dcb97e2fa939f7d16f9c2456c
Closes-Bug: 1334926
** Changed in: neutron
Status: In Progress => Fix Committed
--
You received this bug notification because you are a member of OpenStack
Security Group, which is subscribed to OpenStack.
https://bugs.launchpad.net/bugs/1334926
Title:
floatingip still working once connected even after it is disociated
Status in OpenStack Neutron (virtual network service):
Fix Committed
Status in OpenStack Security Notes:
Fix Released
Bug description:
After we create an SSH connection to a VM via its floating ip, even
though we have removed the floating ip association, we can still
access the VM via that connection. Namely, SSH is not disconnected
when the floating ip is not valid
To manage notifications about this bug go to:
https://bugs.launchpad.net/neutron/+bug/1334926/+subscriptions
More information about the Openstack-security
mailing list