commit 8d5ba34751c0ae8093f987d74348dffd8ca0b61c
Author: Lee Yarwood <email address hidden>
Date: Wed Feb 24 11:23:22 2016 +0000
libvirt: Always copy or recreate disk.info during a migration
The disk.info file contains the path and format of any image, config or
ephermal disk associated with an instance. When using RAW images and migrating
an instance this file should always be copied or recreated. This avoids the Raw
imagebackend reinspecting the format of these disks when spawning the instance
on the destination host.
By not copying or recreating this disk.info file, a malicious image written to
an instance disk on the source host will cause Nova to reinspect and record a
different format for the disk on the destination. This format then being used
incorrectly when finally spawning the instance on the destination.
Reviewed: https:/ /review. openstack. org/289958 /git.openstack. org/cgit/ openstack/ nova/commit/ ?id=8d5ba34751c 0ae8093f987d743 48dffd8ca0b61c
Committed: https:/
Submitter: Jenkins
Branch: stable/liberty
commit 8d5ba34751c0ae8 093f987d74348df fd8ca0b61c
Author: Lee Yarwood <email address hidden>
Date: Wed Feb 24 11:23:22 2016 +0000
libvirt: Always copy or recreate disk.info during a migration
The disk.info file contains the path and format of any image, config or
ephermal disk associated with an instance. When using RAW images and migrating
an instance this file should always be copied or recreated. This avoids the Raw
imagebackend reinspecting the format of these disks when spawning the instance
on the destination host.
By not copying or recreating this disk.info file, a malicious image written to
an instance disk on the source host will cause Nova to reinspect and record a
different format for the disk on the destination. This format then being used
incorrectly when finally spawning the instance on the destination.
SecurityImpact ab31ac1c1d8d79a 129acc9fb87
Closes-bug: #1548450
Change-Id: Idfc16f54049aae