volume_type_encryption extension allows create when volumes exist

Bug #1274252 reported by Brianna Poulos
8
This bug affects 1 person
Affects Status Importance Assigned to Milestone
Cinder
Fix Released
Undecided
Brianna Poulos

Bug Description

Location: cinder.api.contrib.volume_type_encryption
Method: create

Bug:
When a volume type is made an encrypted volume type, through the volume_type_encryption API extension, the extension does not confirm no volumes exist with the volume type before making the volume type encrypted. If volumes exist with the volume type before the volume type is made an encrypted volume type, these volumes will not be encrypted, although the user may think they are encrypted because they have an encrypted volume type.

Proposed Fix:
Add a check in the volume_type_encryption extension to stop the creation of an encrypted volume type if there are currently volumes with the volume type. Also add a unit test confirming functionality.

Changed in cinder:
assignee: nobody → Brianna Poulos (brianna-poulos)
status: New → In Progress
Jeremy Stanley (fungi)
Changed in ossa:
status: New → Incomplete
information type: Private Security → Public
Revision history for this message
Brianna Poulos (brianna-poulos) wrote :

The reason I initially checked "security" was because it was possible for a user to believe that his volumes were encrypted when in fact they were not.

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix proposed to cinder (master)

Fix proposed to branch: master
Review: https://review.openstack.org/69975

Revision history for this message
John Griffith (john-griffith) wrote :

valid issue, and the fix seems to be a good solution. I'll approve pending feedback from others.

Revision history for this message
Brianna Poulos (brianna-poulos) wrote :

Fix was merged (Review: https://review.openstack.org/69975)

Changed in cinder:
status: In Progress → Fix Committed
Thierry Carrez (ttx)
no longer affects: ossa
Thierry Carrez (ttx)
Changed in cinder:
milestone: none → icehouse-3
status: Fix Committed → Fix Released
Thierry Carrez (ttx)
Changed in cinder:
milestone: icehouse-3 → 2014.1
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.