[release-announce] neutron 14.0.3 (stein)

22 Oct 2019

      We joyfully announce the release of:

neutron 14.0.3: OpenStack Networking

This release is part of the stein stable release series.

The source is available from:

    https://opendev.org/openstack/neutron

Download the package from:

    https://tarballs.openstack.org/null/

Please report issues through:

    https://bugs.launchpad.net/neutron/+bugs

For more details, please see below.

14.0.3
^^^^^^

Security Issues
***************

* The OVS Firewall blocks traffic that does not have either the IPv4
  or IPv6 ethertypes at present. This is a behavior change compared to
  the iptables_hybrid firewall, which only operates on IP packets and
  thus does not address other ethertypes.  There is now a
  configuration option in the neutron openvswitch agent configuration
  file for permitted ethertypes and then ensures that the requested
  ethertypes are permitted on initialization.

Bug Fixes
*********

* Fixes an issue where deletion of a provider network could result
  in ML2 mechanism drivers not being passed information about the
  network's provider fields. The consequences of this depend on the
  mechanism driver in use, but could result in the event being
  ignored, leading to an incorrectly configured network. See bug
  1841967 for details.

* When updating the fixed-ips of a port residing on a routed
  provider network the port update would always fail if *host* was not
  set. See bug: 1844124
  (https://bugs.launchpad.net/tripleo/+bug/1844124).

Changes in neutron 14.0.2..14.0.3
---------------------------------

f522fa3fa8 switch to the newly created opensuse-15 nodeset
626eca984f Handle ports assigned to routers without routerports
074e1832aa fixed_configured=True when Add/Remove port IPs
9d04e38e86 OVS flows for custom ethertypes must be on EGRESS
09c4e0e970 DVR: Modify DVR flows to allow ARP requests to hit ARP Responder table
add87accc5 DVR: Cleanup ml2 dvr portbindings on migration
77d4756df8 Change ip_lib decorators order
5eb234b226 Avoid unnecessary operation of ovsdb and flows
7156ebfc28 Fix creation of vlan network with segmentation_id set to 0
4396ef3050 Add info log about ready DHCP config for ports
5da06d7f42 Increase timeouts for OVSDB in functional tests
9f3c7e14cc Check the namespace is ready in test_mtu_update tests
0f4f48c716 Fix bulk port functioning with requested security groups
7ae3280c34 Create _mech_context before delete to avoid race
7b9cdb0c13 Disable "of_inactivity_probe" in fullstack tests
dabab08597 Do not use privsep context when listing the namespaces in fullstack
adac5d9b7a Delay HA router transition from "backup" to "master"
b7bf836333 Refactor the L3 agent batch notifier
e0f498aae9 Veth pair "IFLA_LINK" populated since kernel 4.15.0-60-generic
677d1f5d03 ML2 plugin: extract and postpone limit in port query
0a30dba670 Use created subnet in port generator in "test_port_ip_update_revises"
5b07cb21e3 Increase TestDhcpAgentHA.agent_down_time to 30 seconds
c09e829580 Increase number of retries in _process_trunk_subport_bindings
3a2842bdd8 Initialize phys bridges before setup_rpc
287ae43e8f Populate binding levels when concurrent ops fail
8e9e0cbe14 Make sure the port still in port map when prepare_port_filter
750a8e8327 Fix sort issue in test_dhcp_agent_scheduler.test_filter_bindings
f7532f0c92 [DVR] Add lock during creation of FIP agent gateway port
9f6d8c383f Clear skb mark on encapsulating packets
6b9bedd151 fix update port bug
c3a3031f78 Check for agent restarted after checking for DVR port
2e7dd4db88 Fix default RPC worker count
d090fb9a3c Retry trunk status updates failing with StaleDataError
8d8f66eddd Don't crash ovs agent during reconfigure of phys bridges
914538eb28 fix NetworkSegmentRange OVO entry point
431ba12873 Use --bind-dynamic with dnsmasq instead of --bind-interfaces
20e3f25cf7 Yield control to other greenthreads while processing trusted ports
e1b84c9a70 Ignore first local port update notification
73e3f7d281 Fix list security groups performance with RBAC
2626baf3d6 Limit max ports per rpc for dhcp_ready_on_ports()
aa60d6e837 Fix bulk port binding
1229be91d9 Refactor qos_plugin._extend_port_resource_request
b452c508b6 Add qos_network_policy_id to Port OVO
ccf5b7ea0a Don't match input interface in POSTROUTING table
0be471486b Add custom ethertype processing
fc278a9251 Treat networks shared by RBAC in same way as shared with all tenants
9a5ca7145b Import "Manage Networking service quotas" admin guide
3504369918 Turn CIDR in query filter into proper subnet
ff66205081 Stop OVS agent before starting it again

Diffstat (except docs and test files)
-------------------------------------

.zuul.yaml                                         |   5 +-
neutron/agent/common/ovs_lib.py                    |   1 +
neutron/agent/dhcp/agent.py                        |  11 +-
neutron/agent/l3/agent.py                          |  15 +-
neutron/agent/l3/ha.py                             |  44 ++-
neutron/agent/l3/ha_router.py                      |  25 +-
neutron/agent/l3/router_info.py                    |   5 +-
neutron/agent/linux/dhcp.py                        |   8 +-
neutron/agent/linux/ip_lib.py                      |  16 +-
.../agent/linux/openvswitch_firewall/firewall.py   |  31 +-
neutron/agent/resource_cache.py                    |  17 +-
neutron/agent/rpc.py                               |  18 +-
neutron/conf/agent/securitygroups_rpc.py           |   8 +-
neutron/db/db_base_plugin_common.py                |   6 +-
neutron/db/ipam_pluggable_backend.py               |   2 +-
neutron/db/l3_db.py                                |  78 ++---
neutron/db/l3_dvr_db.py                            |  90 ++++--
neutron/db/qos/models.py                           |   6 +
neutron/db/securitygroups_db.py                    |   3 +-
neutron/notifiers/batch_notifier.py                |  41 +--
neutron/objects/ports.py                           |  95 +++++-
neutron/objects/rbac_db.py                         |  29 --
.../drivers/openvswitch/agent/common/constants.py  |   3 +-
.../agent/openflow/native/br_dvr_process.py        |  10 +-
.../openvswitch/agent/openflow/native/br_int.py    |  67 ++++
.../openvswitch/agent/ovs_dvr_neutron_agent.py     |  41 ++-
.../drivers/openvswitch/agent/ovs_neutron_agent.py |  47 ++-
neutron/plugins/ml2/drivers/type_vlan.py           |   4 +-
neutron/plugins/ml2/plugin.py                      | 102 +++++-
neutron/plugins/ml2/rpc.py                         |  20 +-
neutron/policy.py                                  |   6 +-
neutron/privileged/agent/linux/ip_lib.py           | 119 +++----
neutron/service.py                                 |   2 +-
neutron/services/qos/qos_plugin.py                 |  47 ++-
neutron/services/trunk/rpc/server.py               |  22 +-
.../functional/pecan_wsgi/test_controllers.py      |  39 ++-
.../privileged/agent/linux/test_ip_lib.py          |  43 +--
.../linux/openvswitch_firewall/test_firewall.py    |   1 +
.../plugins/ml2/drivers/l2pop/test_mech_driver.py  |   5 +-
.../agent/openflow/native/ovs_bridge_test_base.py  |   9 +-
.../openvswitch/agent/test_ovs_neutron_agent.py    |  75 ++++-
.../unit/plugins/ml2/drivers/test_type_vlan.py     |  21 +-
.../unit/scheduler/test_dhcp_agent_scheduler.py    |   8 +-
.../services/revisions/test_revision_plugin.py     |   2 +-
.../notes/custom_ethertypes-eae3fcab3293e3a1.yaml  |   9 +
.../fix-net-delete-race-f2fa5bac3ab35a5b.yaml      |   9 +
...-routed-provider-networks-c54a54844d9a3926.yaml |   7 +
setup.cfg                                          |   2 +-
82 files changed, 1989 insertions(+), 489 deletions(-)

[release-announce] neutron 14.0.3 (stein)

no-reply＠openstack.org