cloud-init

GCE data source should respect block-project-ssh-keys

Bug #1707033 reported by Dan Watkins on 2017-07-27

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	cloud-init	Fix Released	Medium	Max Illfelder
	cloud-init (Ubuntu)	Fix Released	Medium	Max Illfelder

Bug Description

The GCE data source will always include SSH keys from project metadata in the default (ubuntu) user's authorized_keys file. If block-project-ssh-keys is set in metadata, however, project-level SSH keys shouldn't be included.

Related branches

~chad.smith/cloud-init:ubuntu/devel

Merged into cloud-init:ubuntu/devel at revision 23919e31120edf37c7ff7f9cba3eda4f46b6f5cb

Server Team CI bot: Approve (continuous-integration) on 2018-01-24

Scott Moser: Pending requested 2018-01-24

~illfelder/cloud-init:master

Merged into cloud-init:master at revision 2d781c6a3e27433b7fa993cd54b269ceb74e10b2

Scott Moser: Approve on 2018-01-23

Server Team CI bot: Approve (continuous-integration) on 2018-01-11

Dan Watkins: Pending requested 2017-12-05

Max Illfelder (illfelder) on 2018-01-23

Changed in cloud-init (Ubuntu):
status:	New → Fix Committed
assignee:	nobody → Max Illfelder (illfelder)
Changed in cloud-init:
status:	New → Fix Committed
assignee:	nobody → Max Illfelder (illfelder)

Scott Moser (smoser) on 2018-01-24

Changed in cloud-init:
importance:	Undecided → Medium
Changed in cloud-init (Ubuntu):
importance:	Undecided → Medium

Revision history for this message

Launchpad Janitor (janitor) wrote on 2018-01-24:

This bug was fixed in the package cloud-init - 17.2-20-g32a6a176-0ubuntu1

---------------
cloud-init (17.2-20-g32a6a176-0ubuntu1) bionic; urgency=medium

  * New upstream snapshot.
    - tests: Fix EC2 Platform to return console output as bytes.
    - tests: Fix attempted use of /run in a test case.
    - GCE: Improvements and changes to ssh key behavior for default user.
      [Max Illfelder] (LP: #1670456, #1707033, #1707037, #1707039)
    - subp: make ProcessExecutionError have expected types in stderr, stdout.
    - tests: when querying ntp server, do not do dns resolution.
    - Recognize uppercase vfat disk labels [James Penick] (LP: #1598783)
    - tests: remove zesty as supported OS to test

-- Chad Smith <email address hidden> Tue, 23 Jan 2018 20:10:44 -0700

Changed in cloud-init (Ubuntu):
status:	Fix Committed → Fix Released

Revision history for this message

Chad Smith (chad.smith) wrote on 2018-02-14:

Hello Dan, or anyone else affected,

As part of a stable release update, this changeset is committed and accepted cloud-init into artful-proposed and xenial-proposed as cloud-init version 17.2-35-gf576b2a2-0ubuntu1. The package is now available in the specific -proposed repository and can be installed and tested on artful and xenial instances with something like the following:

sed -i 's/ xenial / xenial-proposed /' /etc/apt/sources
sudo apt-get update
sudo apt-get install cloud-init;
sudo cloud-init clean --logs --reboot; # For a fresh install run

If there are concerns please comment on LP: #1747059.

Revision history for this message

Scott Moser (smoser) wrote on 2018-02-22: Fixed in Cloud-init 18.1

This bug is believed to be fixed in cloud-init in 18.1. If this is still a problem for you, please make a comment and set the state back to New

Thank you.