Wrong tenant-id field of bgpvpn-create operation can be registered
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
networking-bgpvpn |
Fix Released
|
Medium
|
Bruno Fernando |
Bug Description
I noted that the bgpvpn-create command which expects to get the tenant ID can set the tenant ID field with other things than tenant, that is any possible string.
neutron bgpvpn-create --name bgpvpn_bug --tenant-id toto --route-targets 64512:1001
Created a new bgpvpn:
+------
| Field | Value |
+------
| export_targets | |
| id | ca7f5299-
| import_targets | |
| name | bgpvpn_bug |
| networks | |
| route_distingui
| route_targets | 64512:1001 |
| tenant_id | toto |
| type | l3 |
+------
I made some tests and the issue is present in liberty and in mitaka. It happens also with BaGPipe and Opencontrail (I didn't try the other drivers/release)
description: | updated |
Changed in bgpvpn: | |
assignee: | nobody → Bruno Fernando (bfernando) |
Changed in bgpvpn: | |
importance: | Undecided → Medium |
Changed in bgpvpn: | |
milestone: | none → 5.0.0 |
Thanks for the report.
Indeed it seems we need additional code in the service plugin to check the validity of the tenant_id.