5b64a19361
Prior to Queens any attempt to swap between encrypted volumes would result in unencrypted data being written to the new volume. This unencrypted data would then be overwritten the next time the volume was attached to an instance as Nova no longer identified the volume as encrypted, resulting in the volume being reformatted. This stable only change uses limited parts of the following changes to block all swap_volume attempts with encrypted volumes prior to Queens where this was resolved by Ica323b87fa85a454fca9d46ada3677f18 and also blocked when using QEMU to decrypt LUKS volumes by Ibfa64f18bbd2fb70db7791330ed1a64fe61c1. Ica323b87fa85a454fca9d46ada3677f18fe50022 The request context is provided to swap_volume in order to look up the encryption metadata of a volume. Ibfa64f18bbd2fb70db7791330ed1a64fe61c1355 Attempts to swap from an encrypted volume are blocked with a NotImplementedError exception raised. I258127fdcd011ccec721d5ff62eb7f128f130336 Attempts to swap from an unencrypted volume to an encrypted volume are also blocked with a NotImplementedError exception raised. Ie02d298cd92d5b5ebcbbcd2b0e8be01f197bfafb The serial of a volume is used as the id if connection_info for the volume doesn't contain the volume_id key. Required to avoid bug #1746609. Closes-bug: #1739593 Change-Id: If12e7860baad2899380f06144a0270784a5466b8 |
||
|---|---|---|
| .. | ||
| monitors | ||
| __init__.py | ||
| api.py | ||
| build_results.py | ||
| cells_api.py | ||
| claims.py | ||
| flavors.py | ||
| instance_actions.py | ||
| manager.py | ||
| power_state.py | ||
| provider_tree.py | ||
| resource_tracker.py | ||
| rpcapi.py | ||
| stats.py | ||
| task_states.py | ||
| utils.py | ||
| vm_states.py | ||