yahoo-eng-team team mailing list archive

[jichenjc <jichenjc@xxxxxxxxxx>]

*** This bug is a security vulnerability ***

Public security bug reported:

remove all contents to avoid confusing people

** Affects: nova
     Importance: Undecided
         Status: Invalid

** Changed in: nova
       Status: New => Invalid

** Description changed:

- jichen@devstack1:~/devstack$ export OS_TENANT_NAME=admin
- jichen@devstack1:~/devstack$ nova boot --image 06923bb4-a330-4766-8f43-e7583277d8a3 --flavor m1.nano 1
- +--------------------------------------+----------------------------------------------------------------+
- | Property                             | Value                                                          |
- +--------------------------------------+----------------------------------------------------------------+
- | OS-DCF:diskConfig                    | MANUAL                                                         |
- | OS-EXT-AZ:availability_zone          |                                                                |
- jichen@devstack1:~/devstack$ nova list
- +--------------------------------------+------+--------+------------+-------------+------------------+
- | ID                                   | Name | Status | Task State | Power State | Networks         |
- +--------------------------------------+------+--------+------------+-------------+------------------+
- | 050088f4-d4f2-4d8e-bce1-f5c6ac088aee | 1    | BUILD  | spawning   | NOSTATE     | private=10.0.0.2 |
- +--------------------------------------+------+--------+------------+-------------+------------------+
- jichen@devstack1:~/devstack$ nova list
- +--------------------------------------+------+--------+------------+-------------+------------------+
- | ID                                   | Name | Status | Task State | Power State | Networks         |
- +--------------------------------------+------+--------+------------+-------------+------------------+
- | 050088f4-d4f2-4d8e-bce1-f5c6ac088aee | 1    | ACTIVE | -          | Running     | private=10.0.0.2 |
- +--------------------------------------+------+--------+------------+-------------+------------------+
- jichen@devstack1:~/devstack$ export OS_TENANT_NAME=admin
- jichen@devstack1:~/devstack$ export OS_TENANT_NAME=demo
- jichen@devstack1:~/devstack$ nova list
- +----+------+--------+------------+-------------+----------+
- | ID | Name | Status | Task State | Power State | Networks |
- +----+------+--------+------------+-------------+----------+
- +----+------+--------+------------+-------------+----------+
- 
- 
- not I expect nova show should not list the instance, but I did
- 
- jichen@devstack1:~/devstack$ nova show 050088f4-d4f2-4d8e-bce1-f5c6ac088aee
- +--------------------------------------+----------------------------------------------------------------+
- | Property                             | Value                                                          |
- +--------------------------------------+----------------------------------------------------------------+
- | OS-DCF:diskConfig                    | MANUAL                                                         |
- 
- on the other side, nova stop didn't find the instance .....
- 
- jichen@devstack1:~/devstack$ nova stop 880154d6-96af-4b0f-a965-2d09c104c1ef
- No server with a name or ID of '880154d6-96af-4b0f-a965-2d09c104c1ef' exists.
- ERROR (CommandError): Unable to stop the specified server(s).
+ remove all contents to avoid confusing people

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Compute (nova).
https://bugs.launchpad.net/bugs/1515148

Title:
  nova show should not list other tenant's instance

Status in OpenStack Compute (nova):
  Invalid

Bug description:
  remove all contents to avoid confusing people

To manage notifications about this bug go to:
https://bugs.launchpad.net/nova/+bug/1515148/+subscriptions