yahoo-eng-team team mailing list archive

Thread
Date

[Bug 1174153] Re: data from previous tenants accessible with nova baremetal

To: yahoo-eng-team@xxxxxxxxxxxxxxxxxxx
From: Thierry Carrez <thierry.carrez+lp@xxxxxxxxx>
Date: Thu, 19 Mar 2015 20:50:20 -0000
Reply-to: Bug 1174153 <1174153@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

** Changed in: ironic
       Status: Fix Committed => Fix Released

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Compute (nova).
https://bugs.launchpad.net/bugs/1174153

Title:
  data from previous tenants accessible with nova baremetal

Status in OpenStack Bare Metal Provisioning Service (Ironic):
  Fix Released
Status in OpenStack Compute (Nova):
  In Progress
Status in OpenStack Security Notes:
  Fix Released

Bug description:
  At the moment the baremetal driver resets the partition table on the
  first hard disk, but doesn't wipe the data. This has two holes: other
  disks have their partition tables preserved; tenant data is able to be
  read by the new instance.

  Wiping disks can be slow (particularly in cases where TRIM cannot be
  relied on),  so we probably want to only do it when the new instance
  is for a new tenant.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ironic/+bug/1174153/+subscriptions