OpenStack Compute (nova)

Merge lp:~soren/nova/sg-fallback-ipv6 into lp:~hudson-openstack/nova/trunk

  1. sg-fallback-ipv6
  2. Merge into trunk
Proposed by Soren Hansen
Status: Merged
Approved by: Devin Carlen
Approved revision: 803
Merged at revision: 811
Proposed branch: lp:~soren/nova/sg-fallback-ipv6
Merge into: lp:~hudson-openstack/nova/trunk
Diff against target: 12 lines (+2/-0)
1 file modified
nova/virt/libvirt_conn.py (+2/-0)
To merge this branch: bzr merge lp:~soren/nova/sg-fallback-ipv6
Reviewer Review Type Date Requested Status
Rick Harris (community) Approve
Devin Carlen (community) Approve
Koji Iida (community) Approve
Review via email: mp+53323@code.launchpad.net

Commit message

Add missing fallback chain for ipv6.

To post a comment you must log in.
Revision history for this message
Koji Iida (iida-koji) wrote :
Download full text (3.6 KiB)

Hi,

I had problem with this patch to run nova-compute.

root@usv601:/home/iida# /home/iida/nova/bin/nova-compute
2011-03-15 15:40:15,484 ERROR nova [-] in Service.create()
(nova): TRACE: Traceback (most recent call last):
(nova): TRACE: File "/home/iida/nova/nova/service.py", line 264, in serve
(nova): TRACE: services = [Service.create()]
(nova): TRACE: File "/home/iida/nova/nova/service.py", line 167, in create
(nova): TRACE: report_interval, periodic_interval)
(nova): TRACE: File "/home/iida/nova/nova/service.py", line 73, in __init__
(nova): TRACE: self.manager = manager_class(host=self.host, *args, **kwargs)
(nova): TRACE: File "/home/iida/nova/nova/compute/manager.py", line 118, in __init__
(nova): TRACE: self.driver = utils.import_object(compute_driver)
(nova): TRACE: File "/home/iida/nova/nova/utils.py", line 75, in import_object
(nova): TRACE: return cls()
(nova): TRACE: File "/home/iida/nova/nova/virt/connection.py", line 64, in get_connection
(nova): TRACE: conn = libvirt_conn.get_connection(read_only)
(nova): TRACE: File "/home/iida/nova/nova/virt/libvirt_conn.py", line 131, in get_connection
(nova): TRACE: return LibvirtConnection(read_only)
(nova): TRACE: File "/home/iida/nova/nova/virt/libvirt_conn.py", line 168, in __init__
(nova): TRACE: self.firewall_driver = fw_class(get_connection=self._get_connection)
(nova): TRACE: File "/home/iida/nova/nova/virt/libvirt_conn.py", line 1600, in __init__
(nova): TRACE: if FLAGS.use_ipv6:
(nova): TRACE: File "/home/iida/nova/nova/flags.py", line 139, in __getattr__
(nova): TRACE: val = gflags.FlagValues.__getattr__(self, name)
(nova): TRACE: File "/usr/lib/pymodules/python2.6/gflags.py", line 810, in __getattr__
(nova): TRACE: raise AttributeError(name)
(nova): TRACE: AttributeError: use_ipv6
(nova): TRACE:
2011-03-15 15:40:15,802 CRITICAL nova [-] use_ipv6
(nova): TRACE: Traceback (most recent call last):
(nova): TRACE: File "/home/iida/nova/bin/nova-compute", line 48, in <module>
(nova): TRACE: service.serve()
(nova): TRACE: File "/home/iida/nova/nova/service.py", line 264, in serve
(nova): TRACE: services = [Service.create()]
(nova): TRACE: File "/home/iida/nova/nova/service.py", line 167, in create
(nova): TRACE: report_interval, periodic_interval)
(nova): TRACE: File "/home/iida/nova/nova/service.py", line 73, in __init__
(nova): TRACE: self.manager = manager_class(host=self.host, *args, **kwargs)
(nova): TRACE: File "/home/iida/nova/nova/compute/manager.py", line 118, in __init__
(nova): TRACE: self.driver = utils.import_object(compute_driver)
(nova): TRACE: File "/home/iida/nova/nova/utils.py", line 75, in import_object
(nova): TRACE: return cls()
(nova): TRACE: File "/home/iida/nova/nova/virt/connection.py", line 64, in get_connection
(nova): TRACE: conn = libvirt_conn.get_connection(read_only)
(nova): TRACE: File "/home/iida/nova/nova/virt/libvirt_conn.py", line 131, in get_connection
(nova): TRACE: return LibvirtConnection(read_only)
(nova): TRACE: File "/home/iida/nova/nova/virt/libvirt_conn.py", line 168, in __init__
(nova): TRACE: self.firewall_driver = fw_c...

Read more...

Revision history for this message
Soren Hansen (soren) wrote :

2011/3/15 Koji Iida <email address hidden>:
> Hi,
>
> I had problem with this patch to run nova-compute.

Ah, thanks for catching that. Fixed.

--
Soren Hansen        | http://linux2go.dk/
Ubuntu Developer    | http://www.ubuntu.com/
OpenStack Developer | http://www.openstack.org/

lp:~soren/nova/sg-fallback-ipv6 updated
803. By Soren Hansen

Always put the ipv6 fallback in place. FLAGS.use_ipv6 does not exist yet when the firewall driver is instantiated and the iptables manager takes care not to fiddle with ipv6 if not enabled.

Revision history for this message
Koji Iida (iida-koji) wrote :

Thanks. It works well.

review: Approve
Revision history for this message
Devin Carlen (devcamcar) wrote :

lgtm

review: Approve
Revision history for this message
Rick Harris (rconradharris) wrote :

lgtm

review: Approve

Preview Diff

[H/L] Next/Prev Comment, [J/K] Next/Prev File, [N/P] Next/Prev Hunk
1=== modified file 'nova/virt/libvirt_conn.py'
2--- nova/virt/libvirt_conn.py 2011-03-14 21:02:27 +0000
3+++ nova/virt/libvirt_conn.py 2011-03-15 08:50:58 +0000
4@@ -1597,6 +1597,8 @@
5
6 self.iptables.ipv4['filter'].add_chain('sg-fallback')
7 self.iptables.ipv4['filter'].add_rule('sg-fallback', '-j DROP')
8+ self.iptables.ipv6['filter'].add_chain('sg-fallback')
9+ self.iptables.ipv6['filter'].add_rule('sg-fallback', '-j DROP')
10
11 def setup_basic_filtering(self, instance):
12 """Use NWFilter from libvirt for this."""