← Back to team overview

yahoo-eng-team team mailing list archive

  1. yahoo-eng-team team
  2. Mailing list archive
  3. Message #49912

[Bug 1574195] [NEW] UEFI - Forbid access to /usr/share/OVMF/OVMF_CODE.fd

  Thread PreviousDate PreviousThread Next 
Public bug reported:

If user want to boot in uefi, they need to specify uefi loader path.
But currently nova will only access to /usr/share/OVMF/OVMF_CODE.fd.
However libvirt forbid access to /usr/share before following patch.
https://github.com/libvirt/libvirt/commit/2f01cfdf05448513d150ff1914d3444161c531b9
The patch was merged since livirt 1.2.19.
Default package for older os release such as ubuntu trusty didn't merge the patch yet.
Therefore those vm will created failed at access validation check.

Maybe we should add one uefi option for uefi loader path instead of static code in following link.
https://github.com/openstack/nova/blob/master/nova/virt/libvirt/driver.py#L328

** Affects: nova
     Importance: Undecided
     Assignee: Chung Chih, Hung (lyanchih)
         Status: New

** Changed in: nova
     Assignee: (unassigned) => Chung Chih, Hung (lyanchih)

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Compute (nova).
https://bugs.launchpad.net/bugs/1574195

Title:
  UEFI - Forbid access to /usr/share/OVMF/OVMF_CODE.fd

Status in OpenStack Compute (nova):
  New

Bug description:
  If user want to boot in uefi, they need to specify uefi loader path.
  But currently nova will only access to /usr/share/OVMF/OVMF_CODE.fd.
  However libvirt forbid access to /usr/share before following patch.
  https://github.com/libvirt/libvirt/commit/2f01cfdf05448513d150ff1914d3444161c531b9
  The patch was merged since livirt 1.2.19.
  Default package for older os release such as ubuntu trusty didn't merge the patch yet.
  Therefore those vm will created failed at access validation check.

  Maybe we should add one uefi option for uefi loader path instead of static code in following link.
  https://github.com/openstack/nova/blob/master/nova/virt/libvirt/driver.py#L328

To manage notifications about this bug go to:
https://bugs.launchpad.net/nova/+bug/1574195/+subscriptions

Follow ups

  Thread PreviousDate PreviousThread Next