[Openstack-security] [openstack/nova] SecurityImpact review request change I358813b3ecde4f88de7202c1c07d9b1168c2c332
gerrit2 at review.openstack.org
gerrit2 at review.openstack.org
Mon Jul 8 17:18:45 UTC 2013
Hi, I'd like you to take a look at this patch for potential
SecurityImpact.
https://review.openstack.org/30976
Log:
commit 806dd03f6d2cd83328b70c04a28a793b15911ddd
Author: Joel Coffman <joel.coffman at jhuapl.edu>
Date: Mon Jul 8 13:14:39 2013 -0400
Add encryption support for volumes
Add support to encrypt Cinder volumes. Modified the libvirt driver to
encrypt volumes during the attach call. Created a new VolumeEncryptor
class that is responsible for encrypting volumes. The default
implementation does not do enryption, and a DmCryptVolumeEncryptor is
provided to encrypt volumes using dmcrypt.
This feature requires related changes within Cinder (e.g., storing
encryption key UUIDs for encrypted volumes), which have not yet been
accepted. This patch is fully functional but requires further
modifications (that are relatively minor) once the related Cinder
changes have been accepted.
Implements: blueprint encrypt-cinder-volumes
Change-Id: I358813b3ecde4f88de7202c1c07d9b1168c2c332
SecurityImpact
More information about the Openstack-security
mailing list