You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@cloudstack.apache.org by "Chandan Purushothama (JIRA)" <ji...@apache.org> on 2013/05/15 00:01:16 UTC
[jira] [Created] (CLOUDSTACK-2490) NTier: Deletion of ACL Rule Item
fails as Default ACL Rule Items were attempted to be removed during the ACL
Rule deletion
Chandan Purushothama created CLOUDSTACK-2490:
------------------------------------------------
Summary: NTier: Deletion of ACL Rule Item fails as Default ACL Rule Items were attempted to be removed during the ACL Rule deletion
Key: CLOUDSTACK-2490
URL: https://issues.apache.org/jira/browse/CLOUDSTACK-2490
Project: CloudStack
Issue Type: Bug
Security Level: Public (Anyone can view this level - this is the default.)
Components: Management Server
Affects Versions: 4.2.0
Reporter: Chandan Purushothama
Priority: Critical
Fix For: 4.2.0
================
Steps to Reproduce:
================
1. Create a VPC.
2. Create a Network Tier
3. Create an ACL rule on the Network Tier
4. Deploy a VM in the Network Tier
5. Delete the ACL rule on the Network Tier
===========
Observations:
===========
2013-05-14 14:51:45,603 DEBUG [cloud.api.ApiServlet] (catalina-exec-9:null) ===START=== 10.216.133.86 -- GET command=deleteNetworkACL&response=json&sessionkey=1ew3VD0LppS%2BSreQld9FNtVnLwo%3D&id=318d6c99-a883-48bd-8da1-477edadac7ea&_=1368568348624
2013-05-14 14:51:45,640 DEBUG [cloud.async.AsyncJobManagerImpl] (catalina-exec-9:null) submit async job-18, details: AsyncJobVO {id:18, userId: 3, accountId: 3, sessionKey: null, instanceType: None, instanceId: null, cmd: org.apache.cloudstack.api.command.user.network.DeleteNetworkACLCmd, cmdOriginator: null, cmdInfo: {"response":"json","id":"318d6c99-a883-48bd-8da1-477edadac7ea","sessionkey":"1ew3VD0LppS+SreQld9FNtVnLwo\u003d","ctxUserId":"3","httpmethod":"GET","_":"1368568348624","ctxAccountId":"3","ctxStartEventId":"71"}, cmdVersion: 0, callbackType: 0, callbackAddress: null, status: 0, processStatus: 0, resultCode: 0, result: null, initMsid: 7508777239729, completeMsid: null, lastUpdated: null, lastPolled: null, created: null}
2013-05-14 14:51:45,641 DEBUG [cloud.api.ApiServlet] (catalina-exec-9:null) ===END=== 10.216.133.86 -- GET command=deleteNetworkACL&response=json&sessionkey=1ew3VD0LppS%2BSreQld9FNtVnLwo%3D&id=318d6c99-a883-48bd-8da1-477edadac7ea&_=1368568348624
2013-05-14 14:51:45,643 DEBUG [cloud.async.AsyncJobManagerImpl] (Job-Executor-5:job-18) Executing org.apache.cloudstack.api.command.user.network.DeleteNetworkACLCmd for job-18
2013-05-14 14:51:45,648 ERROR [cloud.async.AsyncJobManagerImpl] (Job-Executor-5:job-18) Unexpected exception while executing org.apache.cloudstack.api.command.user.network.DeleteNetworkACLCmd
com.cloud.exception.InvalidParameterValueException: ACL Items in default ACL cannot be deleted
at com.cloud.network.vpc.NetworkACLServiceImpl.revokeNetworkACLItem(NetworkACLServiceImpl.java:449)
at org.apache.cloudstack.api.command.user.network.DeleteNetworkACLCmd.execute(DeleteNetworkACLCmd.java:88)
at com.cloud.api.ApiDispatcher.dispatch(ApiDispatcher.java:155)
at com.cloud.async.AsyncJobManagerImpl$1.run(AsyncJobManagerImpl.java:437)
at java.util.concurrent.Executors$RunnableAdapter.call(Executors.java:471)
at java.util.concurrent.FutureTask$Sync.innerRun(FutureTask.java:334)
at java.util.concurrent.FutureTask.run(FutureTask.java:166)
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1110)
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:603)
at java.lang.Thread.run(Thread.java:679)
2013-05-14 14:51:45,649 DEBUG [cloud.async.AsyncJobManagerImpl] (Job-Executor-5:job-18) Complete async job-18, jobStatus: 2, resultCode: 530, result: Error Code: 530 Error text: ACL Items in default ACL cannot be deleted
2013-05-14 14:51:45,682 DEBUG [cloud.server.StatsCollector] (StatsCollector-2:null) HostStatsCollector is running...
2013-05-14 14:51:45,687 DEBUG [agent.manager.DirectAgentAttache] (DirectAgent-94:null) Seq 1-1228472448: Executing request
2013-05-14 14:51:45,729 DEBUG [agent.manager.DirectAgentAttache] (DirectAgent-305:null) Seq 1-1228472325: Executing request
2013-05-14 14:51:48,740 DEBUG [cloud.api.ApiServlet] (catalina-exec-11:null) ===START=== 10.216.133.86 -- GET command=queryAsyncJobResult&jobId=0aa9f58a-d865-45d0-ba8c-3dd00aff2ef0&response=json&sessionkey=1ew3VD0LppS%2BSreQld9FNtVnLwo%3D&_=1368568351770
2013-05-14 14:51:48,749 DEBUG [cloud.async.AsyncJobManagerImpl] (catalina-exec-11:null) Async job-18 completed
2013-05-14 14:51:48,753 DEBUG [cloud.api.ApiServlet] (catalina-exec-11:null) ===END=== 10.216.133.86 -- GET command=queryAsyncJobResult&jobId=0aa9f58a-d865-45d0-ba8c-3dd00aff2ef0&response=json&sessionkey=1ew3VD0LppS%2BSreQld9FNtVnLwo%3D&_=1368568351770
mysql> select * from network_acl_item where id=7 \G
*************************** 1. row ***************************
id: 7
uuid: 318d6c99-a883-48bd-8da1-477edadac7ea
acl_id: 1
start_port: 56
end_port: 67
state: Active
protocol: 6
created: 2013-05-14 21:51:25
icmp_code: NULL
icmp_type: NULL
traffic_type: Ingress
cidr: 10.223.131.170/32
number: 5
action: Allow
1 row in set (0.00 sec)
mysql> select * from network_acl_item;
+----+--------------------------------------+--------+------------+----------+--------+----------+---------------------+-----------+-----------+--------------+-------------------+--------+--------+
| id | uuid | acl_id | start_port | end_port | state | protocol | created | icmp_code | icmp_type | traffic_type | cidr | number | action |
+----+--------------------------------------+--------+------------+----------+--------+----------+---------------------+-----------+-----------+--------------+-------------------+--------+--------+
| 1 | 28bf54e2-bbfa-11e2-98e5-06d4460004b1 | 1 | NULL | NULL | Active | all | 2013-05-13 11:23:07 | NULL | NULL | Ingress | 0.0.0.0/0 | 1 | Deny |
| 2 | 28bf61e4-bbfa-11e2-98e5-06d4460004b1 | 1 | NULL | NULL | Active | all | 2013-05-13 11:23:07 | NULL | NULL | Egress | 0.0.0.0/0 | 2 | Deny |
| 3 | 28bf78fa-bbfa-11e2-98e5-06d4460004b1 | 2 | NULL | NULL | Active | all | 2013-05-13 11:23:07 | NULL | NULL | Ingress | 0.0.0.0/0 | 1 | Allow |
| 4 | 28bf8516-bbfa-11e2-98e5-06d4460004b1 | 2 | NULL | NULL | Active | all | 2013-05-13 11:23:07 | NULL | NULL | Egress | 0.0.0.0/0 | 2 | Allow |
| 5 | a2c57037-d7c3-4279-8c4c-5237e9480417 | 1 | 22 | 23 | Active | tcp | 2013-05-14 21:29:10 | NULL | NULL | Ingress | 10.223.195.44/32 | 3 | Allow |
| 6 | fdc12543-60aa-4bc8-8550-881836b2417c | 1 | 80 | 81 | Active | 6 | 2013-05-14 21:50:28 | NULL | NULL | Ingress | 10.223.131.170/32 | 4 | Allow |
| 7 | 318d6c99-a883-48bd-8da1-477edadac7ea | 1 | 56 | 67 | Active | 6 | 2013-05-14 21:51:25 | NULL | NULL | Ingress | 10.223.131.170/32 | 5 | Allow |
+----+--------------------------------------+--------+------------+----------+--------+----------+---------------------+-----------+-----------+--------------+-------------------+--------+--------+
7 rows in set (0.00 sec)
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira