[openstack-dev] [glance] [nova] Verification of glance images before boot
stuart.mclaren at hp.com
stuart.mclaren at hp.com
Wed Sep 9 15:15:41 UTC 2015
The glance client (running 'inside' the Nova server) will re-calculate
the checksum as it downloads the image and then compare it against the
expected value. If they don't match an error will be raised.
> How can I know that the image that a new instance is spawned from - is
> actually the image that was originally registered in glance - and has
> not been maliciously tampered with in some way?
>
> Is there some kind of verification that is performed against the md5sum
> of the registered image in glance before a new instance is spawned?
>
> Is that done by Nova?
> Glance?
> Both? Neither?
>
> The reason I ask is some 'paranoid' security (that is their job I
> suppose) people have raised these questions.
>
> I know there is a glance BP already merged for L [1] - but I would like
> to understand the actual flow in a bit more detail.
>
> Thanks.
>
> [1]
> https://blueprints.launchpad.net/glance/+spec/image-signing-and-verification-support
>
> --
> Best Regards,
> Maish Saidel-Keesing
>
>
>
> ------------------------------
>
> _______________________________________________
> OpenStack-dev mailing list
> OpenStack-dev at lists.openstack.org
> http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
>
>
> End of OpenStack-dev Digest, Vol 41, Issue 22
> *********************************************
>
More information about the OpenStack-dev
mailing list