Nova allows direct boot of an image created from an encrypted cinder volume
Bug #1863611 reported by
Brian Rosmaita
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Glance |
Fix Released
|
Undecided
|
Brian Rosmaita |
Bug Description
Cinder allows encrypted volumes to be uploaded as images to Glance. Nova has never supported the direct boot of such images; instead, the user is supposed to use the image to create a volume, which can then be booted from.
NOTE: Allowing such an instance to go 'active' allows it to be snapshotted, leading to the problem described in Bug #1852106.
When a user does attempt to boot directly from such an image, the instance goes 'active' but is unusable. The end user will eventually figure out what the problem is, but it would be better if the Compute API rejected the boot request.
To post a comment you must log in.
This was fixed in Ussuri by https:/ /review. opendev. org/#/c/ 707738/