Instance Lock should protect Snapshot
Bug #1314741 reported by
Justin Hopper
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Compute (nova) |
Invalid
|
Undecided
|
Unassigned |
Bug Description
The use of instance lock should be to prevent unwanted modification of the underlying VM. In the case of Trove, we are using it to help lock down instances to ensure integrity and protect secrets which are needed by the resident Trove Agent. Even though we lock a machine, the end-user can still take a snapshot of the instance to create an image, then restore the image in an unrestricted manner. Once they have access to this restored image, it can up the Trove Control Plane for compromise. Simply adding a check_instance_lock around live_instance_
summary: |
- Instance Lock still allows Snapshot/Restore + Instance Lock should protect Snapshot/Restore |
summary: |
- Instance Lock should protect Snapshot/Restore + Instance Lock should protect Snapshot |
tags: | added: compute |
Changed in nova: | |
assignee: | nobody → Melanie Witt (melwitt) |
importance: | Undecided → Medium |
status: | New → Confirmed |
Changed in nova: | |
importance: | Medium → Undecided |
status: | In Progress → Invalid |
Changed in nova: | |
assignee: | melanie witt (melwitt) → nobody |
To post a comment you must log in.
Fix proposed to branch: master /review. openstack. org/99910
Review: https:/