Return-Path: <issues-return-80965-archive-asf-public=cust-asf.ponee.io@cloudstack.apache.org>
X-Original-To: archive-asf-public-internal@cust-asf2.ponee.io
Delivered-To: archive-asf-public-internal@cust-asf2.ponee.io
Received: from cust-asf.ponee.io (cust-asf.ponee.io [163.172.22.183])
	by cust-asf2.ponee.io (Postfix) with ESMTP id 49EF7200C3E
	for <archive-asf-public-internal@cust-asf2.ponee.io>; Tue,  7 Mar 2017 05:19:39 +0100 (CET)
Received: by cust-asf.ponee.io (Postfix)
	id 487ED160B81; Tue,  7 Mar 2017 04:19:39 +0000 (UTC)
Delivered-To: archive-asf-public@cust-asf.ponee.io
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by cust-asf.ponee.io (Postfix) with SMTP id 95B87160B76
	for <archive-asf-public@cust-asf.ponee.io>; Tue,  7 Mar 2017 05:19:38 +0100 (CET)
Received: (qmail 3544 invoked by uid 500); 7 Mar 2017 04:19:37 -0000
Mailing-List: contact issues-help@cloudstack.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:issues-help@cloudstack.apache.org>
List-Unsubscribe: <mailto:issues-unsubscribe@cloudstack.apache.org>
List-Post: <mailto:issues@cloudstack.apache.org>
List-Id: <issues.cloudstack.apache.org>
Reply-To: dev@cloudstack.apache.org
Delivered-To: mailing list issues@cloudstack.apache.org
Received: (qmail 3535 invoked by uid 500); 7 Mar 2017 04:19:37 -0000
Delivered-To: apmail-incubator-cloudstack-issues@incubator.apache.org
Received: (qmail 3532 invoked by uid 99); 7 Mar 2017 04:19:37 -0000
Received: from pnap-us-west-generic-nat.apache.org (HELO spamd3-us-west.apache.org) (209.188.14.142)
    by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 07 Mar 2017 04:19:37 +0000
Received: from localhost (localhost [127.0.0.1])
	by spamd3-us-west.apache.org (ASF Mail Server at spamd3-us-west.apache.org) with ESMTP id 02D391849C6
	for <cloudstack-issues@incubator.apache.org>; Tue,  7 Mar 2017 04:19:36 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at spamd3-us-west.apache.org
X-Spam-Flag: NO
X-Spam-Score: -1.546
X-Spam-Level: 
X-Spam-Status: No, score=-1.546 tagged_above=-999 required=6.31
	tests=[KAM_ASCII_DIVIDERS=0.8, RP_MATCHES_RCVD=-2.999,
	SPF_NEUTRAL=0.652, URIBL_BLOCKED=0.001] autolearn=disabled
Received: from mx1-lw-us.apache.org ([10.40.0.8])
	by localhost (spamd3-us-west.apache.org [10.40.0.10]) (amavisd-new, port 10024)
	with ESMTP id 4pivBhJNmV_x
	for <cloudstack-issues@incubator.apache.org>;
	Tue,  7 Mar 2017 04:19:36 +0000 (UTC)
Received: from mailrelay1-us-west.apache.org (mailrelay1-us-west.apache.org [209.188.14.139])
	by mx1-lw-us.apache.org (ASF Mail Server at mx1-lw-us.apache.org) with ESMTP id E54D060DC0
	for <cloudstack-issues@incubator.apache.org>; Tue,  7 Mar 2017 04:19:35 +0000 (UTC)
Received: from jira-lw-us.apache.org (unknown [207.244.88.139])
	by mailrelay1-us-west.apache.org (ASF Mail Server at mailrelay1-us-west.apache.org) with ESMTP id 7F8E9E08C3
	for <cloudstack-issues@incubator.apache.org>; Tue,  7 Mar 2017 04:19:34 +0000 (UTC)
Received: from jira-lw-us.apache.org (localhost [127.0.0.1])
	by jira-lw-us.apache.org (ASF Mail Server at jira-lw-us.apache.org) with ESMTP id 1127E24172
	for <cloudstack-issues@incubator.apache.org>; Tue,  7 Mar 2017 04:19:33 +0000 (UTC)
Date: Tue, 7 Mar 2017 04:19:33 +0000 (UTC)
From: "ASF GitHub Bot (JIRA)" <jira@apache.org>
To: cloudstack-issues@incubator.apache.org
Message-ID: <JIRA.12952387.1458642583000.15712.1488860373068@Atlassian.JIRA>
In-Reply-To: <JIRA.12952387.1458642583000@Atlassian.JIRA>
References: <JIRA.12952387.1458642583000@Atlassian.JIRA> <JIRA.12952387.1458642583505@jira-lw-us.apache.org>
Subject: [jira] [Commented] (CLOUDSTACK-9317) Disabling static NAT on many
 IPs can leave wrong IPs on the router
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit
X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394
archived-at: Tue, 07 Mar 2017 04:19:39 -0000


    [ https://issues.apache.org/jira/browse/CLOUDSTACK-9317?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15898718#comment-15898718 ] 

ASF GitHub Bot commented on CLOUDSTACK-9317:
--------------------------------------------

Github user jayapalu commented on the issue:

    https://github.com/apache/cloudstack/pull/1908
  
    @ProjectMoon  Can you please review it.


> Disabling static NAT on many IPs can leave wrong IPs on the router
> ------------------------------------------------------------------
>
>                 Key: CLOUDSTACK-9317
>                 URL: https://issues.apache.org/jira/browse/CLOUDSTACK-9317
>             Project: CloudStack
>          Issue Type: Bug
>      Security Level: Public(Anyone can view this level - this is the default.) 
>          Components: Management Server, Virtual Router
>    Affects Versions: 4.7.0, 4.7.1, 4.7.2
>            Reporter: Jeff Hair
>
> The current behavior of enabling or disabling static NAT will call the apply IP associations method in the management server. The method is not thread-safe. If it's called from multiple threads, each thread will load up the list of public IPs in different states (add or revoke)--correct for the thread, but not correct overall. Depending on execution order on the virtual router, the router can end up with public IPs assigned to it that are not supposed to be on it anymore. When another account acquires the same IP, this of course leads to network problems.
> The problem has been in CS since at least 4.2, and likely affects all recently released versions. Affected version is set to 4.7.x because that's what we verified against.



--
This message was sent by Atlassian JIRA
(v6.3.15#6346)