[Openstack-security] [openstack/nova] SecurityImpact review request change Ie03acc00a7c904aec13c90ae6a53938d08e5e0c9
gerrit2 at review.openstack.org
gerrit2 at review.openstack.org
Tue Jun 23 23:24:38 UTC 2015
Hi, I'd like you to take a look at this patch for potential
SecurityImpact.
https://review.openstack.org/192986
Log:
commit 86cd3244584699006c5217dbe1195f0c7a83968b
Author: Rajesh Tailor <rajesh.tailor at nttdata.com>
Date: Tue Mar 31 05:24:47 2015 -0700
libvirt: Kill rsync/scp processes before deleting instance
In the resize operation, during copying files from source to
destination compute node scp/rsync processes are not aborted after
the instance is deleted because linux kernel doesn't delete instance
files physically until all processes using the file handle is closed
completely. Hence rsync/scp process keeps on running until it
transfers 100% of file data.
Added callback methods to execute call which will store the pid of
scp/rsync process in memorycache as a key: value pair and to remove the
pid from the cache after process completion. Process id will be used to
kill the process if it is running while deleting the instance. Instance
uuid is used as a key in the cache and pid will be the value.
SecurityImpact
Depends-On: I08693891b2b4c1d4c166e41b38adc6776e25d8e5
Closes-bug: #1387543
Change-Id: Ie03acc00a7c904aec13c90ae6a53938d08e5e0c9
More information about the Openstack-security
mailing list