[Openstack-security] [openstack/nova] SecurityImpact review request change I6850e6ad0fa5d075815b21e6116d2cf3f7949071
gerrit2 at review.openstack.org
gerrit2 at review.openstack.org
Fri Apr 14 13:51:53 UTC 2017
Hi, I'd like you to take a look at this patch for potential
SecurityImpact.
https://review.openstack.org/386756
Log:
commit 6525ded466b50f4230b4c7b4b9cb820ab15c9933
Author: Chris <cm876n at att.com>
Date: Fri Oct 14 14:41:15 2016 -0500
Change soft delete resources to prevent DOS
Right now enabling soft delete opens up a potential DOS on
compute hosts. This is because soft delete releases the
instance's resources until the '_reclaim_queued_deletes'
function runs. This could allow a user to exhaust all resources
before they have actually been released from the host.
This patch changes the functionality of soft-deletes to not
release the resources (quotas) of the deleted instance on the host
machine until the soft-deleted instances have been reclaimed.
Change-Id: I6850e6ad0fa5d075815b21e6116d2cf3f7949071
Closes-Bug: 1501808
SecurityImpact
More information about the Openstack-security
mailing list