NULs should be persisted when securely clearing volumes
Bug #1100363 reported by
Pádraig Brady
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Cinder |
Fix Released
|
Low
|
Pádraig Brady | ||
OpenStack Compute (nova) |
Fix Released
|
Low
|
Pádraig Brady |
Bug Description
Currently O_DIRECT is _not_ used when copying from /dev/zero
and there are issues with enabling that (see 444cd542).
That leaves the possibility that data in the write cache
may be flushed if the device is unprovisioned.
Given that this only affects data towards the end of a device,
and that it may only be significant on shared storage systems,
I'm not sure how much of an issue this is in practise.
Nevertheless I've marked this bug as security sensitive for now.
Note the same issue impacts nova and cinder.
Changed in nova: | |
milestone: | none → grizzly-3 |
status: | Fix Committed → Fix Released |
Changed in cinder: | |
milestone: | none → grizzly-3 |
status: | Fix Committed → Fix Released |
Changed in nova: | |
milestone: | grizzly-3 → 2013.1 |
Changed in cinder: | |
milestone: | grizzly-3 → 2013.1 |
To post a comment you must log in.
proposed nova grizzly fix