Add semantic checks to protect host capabilities
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
StarlingX |
Fix Released
|
Medium
|
Daniel Badea |
Bug Description
protect host capabilities
Brief Description
-----------------
There is no semantic check to prevent updating of host capabilities from CLI. For example:
system host-update storage-1 capabilities=
runs successfully when it shouldn't (storage-1 is not/should not run a ceph monitor service).
Severity
--------
Major
Steps to Reproduce
------------------
system host-update storage-1 capabilities=
Expected Behavior
------------------
"system host-update" command should fail when trying to update capabilities that are used by other services
Actual Behavior
----------------
Host capabilities are updated
Reproducibility
---------------
Reproducible
System Configuration
-------
Discovered on a storage system but can be reproduced on any type of system by setting 'Personality' for a controller node.
Branch/Pull Time/Commit
-------
stx/master
Timestamp/Logs
--------------
N/A
Changed in starlingx: | |
assignee: | nobody → Daniel Badea (daniel.badea) |
tags: |
added: stx.2019.05 removed: stx.2019.03 |
tags: |
added: stx.2.0 removed: stx.2019.05 |
Targeting stx.2019.03 as this just adds semantic checks for extra protection