Comment 21 for bug 1739593
Revision history for this message
| Matt Riedemann (mriedem) wrote Re: Swapping encrypted volumes can lead to data loss and a possible compute host DOS attack | #21 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
0e1f616
(Get the code!)
Rather than backport these libvirt driver changes to stable branches, which are non-trivial refactors of the code, why can't we just put something in the stable branches that explicitly fails a swap volume of encrypted volumes? If swapping encrypted volumes doesn't work until queens, and only then if you're not using native luks encryption, it seems OK to just deny the operation outright in stable branches as a resolution to this bug for pike and ocata.