yahoo-eng-team team mailing list archive

Thread
Date

[Bug 1174153] Re: data from previous tenants accessible with nova baremetal

To: yahoo-eng-team@xxxxxxxxxxxxxxxxxxx
From: OpenStack Infra <1174153@xxxxxxxxxxxxxxxxxx>
Date: Tue, 17 Mar 2015 22:31:54 -0000
Reply-to: Bug 1174153 <1174153@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

** Changed in: nova
       Status: Won't Fix => In Progress

** Changed in: nova
     Assignee: (unassigned) => Josh Gachnang (joshnang)

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Compute (nova).
https://bugs.launchpad.net/bugs/1174153

Title:
  data from previous tenants accessible with nova baremetal

Status in OpenStack Bare Metal Provisioning Service (Ironic):
  Triaged
Status in OpenStack Compute (Nova):
  In Progress
Status in OpenStack Security Notes:
  Fix Released

Bug description:
  At the moment the baremetal driver resets the partition table on the
  first hard disk, but doesn't wipe the data. This has two holes: other
  disks have their partition tables preserved; tenant data is able to be
  read by the new instance.

  Wiping disks can be slow (particularly in cases where TRIM cannot be
  relied on),  so we probably want to only do it when the new instance
  is for a new tenant.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ironic/+bug/1174153/+subscriptions