← Back to team overview

yahoo-eng-team team mailing list archive

[Bug 1174153] Re: data from previous tenants accessible with nova baremetal

 

Crossposted to OpenStack/OpenStack Dev - 2nd July 2013

** Changed in: ossn
       Status: New => Fix Released

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Compute (nova).
https://bugs.launchpad.net/bugs/1174153

Title:
  data from previous tenants accessible with nova baremetal

Status in OpenStack Compute (Nova):
  Triaged
Status in OpenStack Security Notes:
  Fix Released

Bug description:
  At the moment the baremetal driver resets the partition table on the
  first hard disk, but doesn't wipe the data. This has two holes: other
  disks have their partition tables preserved; tenant data is able to be
  read by the new instance.

  Wiping disks can be slow (particularly in cases where TRIM cannot be
  relied on),  so we probably want to only do it when the new instance
  is for a new tenant.

To manage notifications about this bug go to:
https://bugs.launchpad.net/nova/+bug/1174153/+subscriptions