Mercurial Mercurial > upstream > oracle > userland-gate / annotate
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | file | latest | revisions | annotate | diff | comparison | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
components/openstack/neutron/patches/03-CVE-2014-0187.patch
author Drew Fisher <drew.fisher@oracle.com>
Fri, 13 Jun 2014 09:10:23 -0700
branchs11-update
changeset 3178 77584387a894
permissions -rw-r--r--
PSARC/2014/207 OpenStack Glance Update to Havana PSARC/2014/208 OpenStack Cinder Update to Havana PSARC/2014/209 OpenStack Keystone Update to Havana PSARC/2014/210 OpenStack Nova Update to Havana 18416146 Neutron agents (L3 and DHCP) should cleanup resources when they are disabled 18562372 Failed to create a new project under Horizon 18645763 ZFSSA Cinder Driver support 18686327 evs agent silently ignores user-specified pool allocation ranges 18702697 fibre channel volumes should be supported in the cinder volume driver 18734289 nova won't terminate failed kz deployments 18738371 cinder-volume:setup should account for commented-out zfs_volume_base 18738374 cinder-volume:setup should check for existence of configuration file 18826190 nova-compute fails due to nova.utils.to_bytes 18855698 Update OpenStack to Havana 2013.2.3 18855710 Update python-cinderclient to 1.0.9 18855743 Update python-keystoneclient to 0.8.0 18855754 Update python-neutronclient to 2.3.4 18855764 Update python-novaclient to 2.17.0 18855793 Update python-swiftclient to 2.1.0 18856992 External networks can be deleted even when floating IP addresses are in use 18857784 bake in some more openstack configuration 18884923 Incorrect locale facets in python modules for openstack 18913890 the error in _get_view_and_lun may cause the failure of deleting volumes 18943044 Disable 'Security Groups' tab in Horizon dashboard 18969275 problem in SERVICE/KEYSTONE
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
3178
77584387a894 PSARC/2014/207 OpenStack Glance Update to Havana
Drew Fisher <drew.fisher@oracle.com>
parents:
diff changeset 
     1
 
This upstream patch addresses CVE-2014-0187 and is tracked under
77584387a894 PSARC/2014/207 OpenStack Glance Update to Havana
Drew Fisher <drew.fisher@oracle.com>
parents:
diff changeset 
     2
 
Launchpad bug 1300785. It is addressed in Icehouse 2014.1.2 and Havana
77584387a894 PSARC/2014/207 OpenStack Glance Update to Havana
Drew Fisher <drew.fisher@oracle.com>
parents:
diff changeset 
     3
 
2013.2.4.
77584387a894 PSARC/2014/207 OpenStack Glance Update to Havana
Drew Fisher <drew.fisher@oracle.com>
parents:
diff changeset 
     4
 












77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




     5


commit 03eed8cd34cd4fb043c11fc99f6bb0b4fbd5728d













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




     6


Author: marios <[email protected]>













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




     7


Date:   Fri Nov 29 18:23:54 2013 +0200













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




     8














77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




     9


    Validate CIDR given as ip-prefix in security-group-rule-create













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    10


    













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    11


    There was no validation for the provided ip prefix. This just adds













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    12


    a simple parse using netaddr and explodes with appropriate message.













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    13


    Also makes sure ip prefix _is_ cidr (192.168.1.1-->192.168.1.1/32).













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    14


    













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    15


    Validation occurs at the attribute level (API model) as well as at













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    16


    the db level, where the ethertype is validated against the ip_prefix













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    17


    address type.













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    18


    













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    19


    Unit test cases added - bad prefix, unmasked prefix and incorrect













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    20


    ethertype. Also adds attribute test cases for the added













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    21


    convert_ip_prefix_to_cidr method













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    22


    













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    23


    Closes-Bug: 1255338













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    24


    













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    25


    Conflicts:













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    26


    	neutron/tests/unit/test_security_groups_rpc.py













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    27


    	neutron/tests/unit/test_extension_security_group.py













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    28


    













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    29


    Change-Id: I71fb8c887963a122a5bd8cfdda800026c1cd3954













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    30


    (cherry picked from commit 65aa92b0348b7ab8413f359b00825610cdf66607)













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    31














77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    32


diff --git a/neutron/common/exceptions.py b/neutron/common/exceptions.py













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    33


index 88fa6e4..80a75d1 100644













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    34


--- a/neutron/common/exceptions.py













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    35


+++ b/neutron/common/exceptions.py













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    36


@@ -306,3 +306,7 @@ class NetworkVxlanPortRangeError(object):













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    37


 class DeviceIDNotOwnedByTenant(Conflict):













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    38


     message = _("The following device_id %(device_id)s is not owned by your "













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    39


                 "tenant or matches another tenants router.")













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    40


+













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    41


+













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    42


+class InvalidCIDR(BadRequest):













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    43


+    message = _("Invalid CIDR %(input)s given as IP prefix")













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    44


diff --git a/neutron/db/securitygroups_db.py b/neutron/db/securitygroups_db.py













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    45


index 2a7d2ef..8868546 100644













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    46


--- a/neutron/db/securitygroups_db.py













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    47


+++ b/neutron/db/securitygroups_db.py













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    48


@@ -16,6 +16,7 @@













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    49


 #













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    50


 # @author: Aaron Rosen, Nicira, Inc













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    51


 













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    52


+import netaddr













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    53


 import sqlalchemy as sa













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    54


 from sqlalchemy import orm













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    55


 from sqlalchemy.orm import exc













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    56


@@ -331,6 +332,7 @@ class SecurityGroupDbMixin(ext_sg.SecurityGroupPluginBase):













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    57


             new_rules.add(rule['security_group_id'])













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    58


 













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    59


             self._validate_port_range(rule)













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    60


+            self._validate_ip_prefix(rule)













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    61


 













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    62


             if rule['remote_ip_prefix'] and rule['remote_group_id']:













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    63


                 raise ext_sg.SecurityGroupRemoteGroupAndRemoteIpPrefix()













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    64


@@ -411,6 +413,24 @@ class SecurityGroupDbMixin(ext_sg.SecurityGroupPluginBase):













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    65


                 if (i['security_group_rule'] == db_rule):













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    66


                     raise ext_sg.SecurityGroupRuleExists(id=id)













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    67


 













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    68


+    def _validate_ip_prefix(self, rule):













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    69


+        """Check that a valid cidr was specified as remote_ip_prefix













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    70


+













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    71


+        No need to check that it is in fact an IP address as this is already













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    72


+        validated by attribute validators.













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    73


+        Check that rule ethertype is consistent with remote_ip_prefix ip type.













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    74


+        Add mask to ip_prefix if absent (192.168.1.10 -> 192.168.1.10/32).













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    75


+        """













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    76


+        input_prefix = rule['remote_ip_prefix']













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    77


+        if input_prefix:













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    78


+            addr = netaddr.IPNetwork(input_prefix)













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    79


+            # set input_prefix to always include the netmask:













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    80


+            rule['remote_ip_prefix'] = str(addr)













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    81


+            # check consistency of ethertype with addr version













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    82


+            if rule['ethertype'] != "IPv%d" % (addr.version):













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    83


+                raise ext_sg.SecurityGroupRuleParameterConflict(













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    84


+                    ethertype=rule['ethertype'], cidr=input_prefix)













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    85


+













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    86


     def get_security_group_rules(self, context, filters=None, fields=None,













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    87


                                  sorts=None, limit=None, marker=None,













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    88


                                  page_reverse=False):













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    89


diff --git a/neutron/extensions/securitygroup.py b/neutron/extensions/securitygroup.py













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    90


index 85d499a..3d10b5a 100644













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    91


--- a/neutron/extensions/securitygroup.py













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    92


+++ b/neutron/extensions/securitygroup.py













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    93


@@ -17,6 +17,7 @@













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    94


 













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    95


 from abc import ABCMeta













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    96


 from abc import abstractmethod













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    97


+import netaddr













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    98


 













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




    99


 from oslo.config import cfg













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   100


 













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   101


@@ -102,6 +103,10 @@ class SecurityGroupRuleExists(qexception.InUse):













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   102


     message = _("Security group rule already exists. Group id is %(id)s.")













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   103


 













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   104


 













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   105


+class SecurityGroupRuleParameterConflict(qexception.InvalidInput):













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   106


+    message = _("Conflicting value ethertype %(ethertype)s for CIDR %(cidr)s")













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   107


+













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   108


+













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   109


 def convert_protocol(value):













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   110


     if value is None:













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   111


         return













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   112


@@ -152,6 +157,16 @@ def convert_to_uuid_list_or_none(value_list):













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   113


     return value_list













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   114


 













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   115


 













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   116


+def convert_ip_prefix_to_cidr(ip_prefix):













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   117


+    if not ip_prefix:













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   118


+        return













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   119


+    try:













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   120


+        cidr = netaddr.IPNetwork(ip_prefix)













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   121


+        return str(cidr)













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   122


+    except (TypeError, netaddr.AddrFormatError):













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   123


+        raise qexception.InvalidCIDR(input=ip_prefix)













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   124


+













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   125


+













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   126


 def _validate_name_not_default(data, valid_values=None):













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   127


     if data == "default":













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   128


         raise SecurityGroupDefaultAlreadyExists()













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   129


@@ -207,7 +222,8 @@ RESOURCE_ATTRIBUTE_MAP = {













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   130


                       'convert_to': convert_ethertype_to_case_insensitive,













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   131


                       'validate': {'type:values': sg_supported_ethertypes}},













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   132


         'remote_ip_prefix': {'allow_post': True, 'allow_put': False,













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   133


-                             'default': None, 'is_visible': True},













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   134


+                             'default': None, 'is_visible': True,













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   135


+                             'convert_to': convert_ip_prefix_to_cidr},













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   136


         'tenant_id': {'allow_post': True, 'allow_put': False,













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   137


                       'required_by_policy': True,













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   138


                       'is_visible': True},













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   139


diff --git a/neutron/tests/unit/test_extension_security_group.py b/neutron/tests/unit/test_extension_security_group.py













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   140


index d53e140..f0b1636 100644













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   141


--- a/neutron/tests/unit/test_extension_security_group.py













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   142


+++ b/neutron/tests/unit/test_extension_security_group.py













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   143


@@ -21,11 +21,13 @@ import webob.exc













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   144


 













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   145


 from neutron.api.v2 import attributes as attr













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   146


 from neutron.common import constants as const













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   147


+from neutron.common import exceptions as n_exc













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   148


 from neutron.common.test_lib import test_config













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   149


 from neutron import context













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   150


 from neutron.db import db_base_plugin_v2













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   151


 from neutron.db import securitygroups_db













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   152


 from neutron.extensions import securitygroup as ext_sg













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   153


+from neutron.tests import base













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   154


 from neutron.tests.unit import test_db_plugin













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   155


 













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   156


 DB_PLUGIN_KLASS = ('neutron.tests.unit.test_extension_security_group.'













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   157


@@ -413,6 +415,70 @@ class TestSecurityGroups(SecurityGroupDBTestCase):













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   158


             self.deserialize(self.fmt, res)













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   159


             self.assertEqual(res.status_int, webob.exc.HTTPBadRequest.code)













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   160


 













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   161


+    def test_create_security_group_rule_invalid_ip_prefix(self):













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   162


+        name = 'webservers'













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   163


+        description = 'my webservers'













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   164


+        for bad_prefix in ['bad_ip', 256, "2001:db8:a::123/129", '172.30./24']:













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   165


+            with self.security_group(name, description) as sg:













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   166


+                sg_id = sg['security_group']['id']













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   167


+                remote_ip_prefix = bad_prefix













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   168


+                rule = self._build_security_group_rule(













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   169


+                    sg_id,













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   170


+                    'ingress',













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   171


+                    const.PROTO_NAME_TCP,













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   172


+                    '22', '22',













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   173


+                    remote_ip_prefix)













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   174


+                res = self._create_security_group_rule(self.fmt, rule)













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   175


+                self.assertEqual(res.status_int, webob.exc.HTTPBadRequest.code)













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   176


+













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   177


+    def test_create_security_group_rule_invalid_ethertype_for_prefix(self):













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   178


+        name = 'webservers'













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   179


+        description = 'my webservers'













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   180


+        test_addr = {'192.168.1.1/24': 'ipv4', '192.168.1.1/24': 'IPv6',













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   181


+                     '2001:db8:1234::/48': 'ipv6',













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   182


+                     '2001:db8:1234::/48': 'IPv4'}













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   183


+        for prefix, ether in test_addr.iteritems():













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   184


+            with self.security_group(name, description) as sg:













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   185


+                sg_id = sg['security_group']['id']













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   186


+                ethertype = ether













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   187


+                remote_ip_prefix = prefix













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   188


+                rule = self._build_security_group_rule(













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   189


+                    sg_id,













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   190


+                    'ingress',













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   191


+                    const.PROTO_NAME_TCP,













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   192


+                    '22', '22',













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   193


+                    remote_ip_prefix,













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   194


+                    None,













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   195


+                    None,













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   196


+                    ethertype)













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   197


+                res = self._create_security_group_rule(self.fmt, rule)













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   198


+                self.assertEqual(res.status_int, webob.exc.HTTPBadRequest.code)













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   199


+













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   200


+    def test_create_security_group_rule_with_unmasked_prefix(self):













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   201


+        name = 'webservers'













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   202


+        description = 'my webservers'













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   203


+        addr = {'10.1.2.3': {'mask': '32', 'ethertype': 'IPv4'},













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   204


+                'fe80::2677:3ff:fe7d:4c': {'mask': '128', 'ethertype': 'IPv6'}}













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   205


+        for ip in addr:













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   206


+            with self.security_group(name, description) as sg:













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   207


+                sg_id = sg['security_group']['id']













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   208


+                ethertype = addr[ip]['ethertype']













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   209


+                remote_ip_prefix = ip













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   210


+                rule = self._build_security_group_rule(













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   211


+                    sg_id,













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   212


+                    'ingress',













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   213


+                    const.PROTO_NAME_TCP,













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   214


+                    '22', '22',













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   215


+                    remote_ip_prefix,













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   216


+                    None,













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   217


+                    None,













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   218


+                    ethertype)













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   219


+                res = self._create_security_group_rule(self.fmt, rule)













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   220


+                self.assertEqual(res.status_int, 201)













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   221


+                res_sg = self.deserialize(self.fmt, res)













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   222


+                prefix = res_sg['security_group_rule']['remote_ip_prefix']













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   223


+                self.assertEqual(prefix, '%s/%s' % (ip, addr[ip]['mask']))













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   224


+













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   225


     def test_create_security_group_rule_tcp_protocol_as_number(self):













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   226


         name = 'webservers'













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   227


         description = 'my webservers'













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   228


@@ -1348,5 +1414,25 @@ class TestSecurityGroups(SecurityGroupDBTestCase):













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   229


                 self.assertEqual(res.status_int, webob.exc.HTTPBadRequest.code)













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   230


 













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   231


 













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   232


+class TestConvertIPPrefixToCIDR(base.BaseTestCase):













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   233


+













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   234


+    def test_convert_bad_ip_prefix_to_cidr(self):













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   235


+        for val in ['bad_ip', 256, "2001:db8:a::123/129"]:













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   236


+            self.assertRaises(n_exc.InvalidCIDR,













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   237


+                              ext_sg.convert_ip_prefix_to_cidr, val)













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   238


+        self.assertIsNone(ext_sg.convert_ip_prefix_to_cidr(None))













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   239


+













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   240


+    def test_convert_ip_prefix_no_netmask_to_cidr(self):













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   241


+        addr = {'10.1.2.3': '32', 'fe80::2677:3ff:fe7d:4c': '128'}













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   242


+        for k, v in addr.iteritems():













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   243


+            self.assertEqual(ext_sg.convert_ip_prefix_to_cidr(k),













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   244


+                             '%s/%s' % (k, v))













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   245


+













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   246


+    def test_convert_ip_prefix_with_netmask_to_cidr(self):













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   247


+        addresses = ['10.1.0.0/16', '10.1.2.3/32', '2001:db8:1234::/48']













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   248


+        for addr in addresses:













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   249


+            self.assertEqual(ext_sg.convert_ip_prefix_to_cidr(addr), addr)













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   250


+













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   251


+













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   252


 class TestSecurityGroupsXML(TestSecurityGroups):













77584387a894
PSARC/2014/207 OpenStack Glance Update to Havana



Drew Fisher <drew.fisher@oracle.com>


parents: 

diff
changeset




   253


     fmt = 'xml'















upstream/oracle/userland-gate