[Yahoo-eng-team] [Bug 1931558] Re: LFI vulnerability in "Create Workbook"

The fix is still partial. Mistral team, can you take care of the progress of the fix? I am a horizon-coresec and horizon-stable-maint but have no power to move this forward. The following is my understanding. Hope it helps you track the progress. - master branch -- A preparation added in

[Yahoo-eng-team] [Bug 1938826] [NEW] Install and configure controller node in Neutron

Public bug reported: When restarting the neutron-linuxbridge-agent service, I am facing a problem: sudo service neutron-linuxbridge-agent status ● neutron-linuxbridge-agent.service - Openstack Neutron Linux Bridge Agent Loaded: loaded (/lib/systemd/system/neutron-linuxbridge-agent.service;

[Yahoo-eng-team] [Bug 1917592] Re: Missed 'accel_uuids' when we the 'shelved_offload_time' time out in shelving instance periodic task

** Changed in: nova Status: In Progress => Fix Released -- You received this bug notification because you are a member of Yahoo! Engineering Team, which is subscribed to OpenStack Compute (nova). https://bugs.launchpad.net/bugs/1917592 Title: Missed 'accel_uuids' when we the

[Yahoo-eng-team] [Bug 1919357] Re: "Secure live migration with QEMU-native TLS in nova"-guide misses essential config option

** Changed in: nova Status: In Progress => Fix Released -- You received this bug notification because you are a member of Yahoo! Engineering Team, which is subscribed to OpenStack Compute (nova). https://bugs.launchpad.net/bugs/1919357 Title: "Secure live migration with QEMU-native TLS

[Yahoo-eng-team] [Bug 1921075] Re: [arm64][libvirt] fail to load json from firmware metadata files

** Changed in: nova Status: In Progress => Fix Released -- You received this bug notification because you are a member of Yahoo! Engineering Team, which is subscribed to OpenStack Compute (nova). https://bugs.launchpad.net/bugs/1921075 Title: [arm64][libvirt] fail to load json from

[Yahoo-eng-team] [Bug 1936839] Re: Ingress bw-limit with DPDK does not work

Reviewed: https://review.opendev.org/c/openstack/neutron/+/801310 Committed: https://opendev.org/openstack/neutron/commit/8261b67b6e6248c5cc1a4426544188e5bd9bfa03 Submitter: "Zuul (22348)" Branch:master commit 8261b67b6e6248c5cc1a4426544188e5bd9bfa03 Author: Bence Romsics Date: Mon Jul

[Yahoo-eng-team] [Bug 1892848] Re: XSS in adding JavaScript into the ‘Subnet Name’ field

Actually, when starting to mark this as a duplicate, I noticed that there was another report set as a duplicate of this one in Private Security state. Because it was set as a duplicate it didn't show up in our usual queries and so we missed switching it to Public Security when its embargo was set

[Yahoo-eng-team] [Bug 1892848] Re: XSS in adding JavaScript into the ‘Subnet Name’ field

This report seems very similar to https://security.openstack.org/ossa/OSSA-2014-023.html (CVE-2014-3474), which was fixed in Horizon's Juno release (2014.2) and backported to Icehouse (in 2014.1.2), and Havana (in 2013.2.4). Without a clear statement of which version the reporter found this in and

[Yahoo-eng-team] [Bug 1927868] Re: vRouter not working after update to 16.3.1

This bug was fixed in the package neutron - 2:18.1.0+git2021072117.147830620f-0ubuntu2~cloud0 --- neutron (2:18.1.0+git2021072117.147830620f-0ubuntu2~cloud0) focal-xena; urgency=medium . * New update for the Ubuntu Cloud Archive. . neutron

[Yahoo-eng-team] [Bug 1938400] Re: compute service for ironic instance is not high availability

Purely from nova perspective this is not a bug. If the nova compute service managing a hypervisor is down then it is natural that such hypervisor cannot be managed via nova. Please talk to the ironic folks maybe they have an existing way to move ironic nodes between nova services. The ironic

[Yahoo-eng-team] [Bug 1938633] Re: executing nova db purge command to purge records but getting keyError

Nova does not yet use alembic so it is interesting to see that the code in your environment refers to the 'alembic_version' table. Could you please check that the nova.conf on the machine that you use to run the nova-manage command has a proper [database]connection and [api_database]connection

[Yahoo-eng-team] [Bug 1938788] [NEW] Validate if fixed_ip given for port isn't the same as subnet's gateway_ip

Public bug reported: Currently when new port is created with fixed_ip given, neutron is not validating if that fixed_ip address isn't the same as subnet's gateway IP. That may cause problems, like e.g.: $ openstack subnet show | allocation_pools | 10.0.0.2-10.0.0.254 | cidr |

[Yahoo-eng-team] [Bug 1938765] [NEW] nova-lvm job constantly fails on Glance image upload

Public bug reported: The nova-lvm job seems to fail for every change [1] which prevents us to merge any change touching nova/virt/libvirt [2] All failures seem to relate to the same Tempest tests (6 of them) failing with the same problem : a Glance image upload issue as Glance API returns a

[Yahoo-eng-team] [Bug 1938766] [NEW] Functional tests related to ovn failing with No such file or directory: '/tmp/tmps9cyr99c/ovn_northd.log'

Public bug reported: Recently we have been seeing pretty often functional tests issues with errors like: ft1.13:

[Yahoo-eng-team] [Bug 1938575] Re: Misalignment with extra-dhcp-options between neutronclient & openstackclient

This seems for me like lack of feature in the openstackclient. OSC uses storyboard to track issues. I opened bug in storyboard https://storyboard.openstack.org/#!/story/2009095 and I'm closing this one here. ** Changed in: neutron Status: Triaged => Invalid -- You received this bug