preserve secure information on xml changes
When setting parameters revolving around boot mode, options, firmware, it is necessary to extract and edit the XML document. Some details, however, are not automatically extracted and libvirt must be told to provide secure information. This change prevents us from accidently loosing such configuration parameters Story: 2010382 Task: 46651 Change-Id: I0da2f37c5b630d2a180f59b74f23c027ee56e17b
This commit is contained in:
parent
7aac77d406
commit
348e965114
@ -0,0 +1,10 @@
|
|||||||
|
---
|
||||||
|
security:
|
||||||
|
- |
|
||||||
|
Secure information in the Libvirt domain XML document is now preserved.
|
||||||
|
For more information, please see `story 2010382
|
||||||
|
<https://storyboard.openstack.org/#!/story/2010382>`_.
|
||||||
|
fixes:
|
||||||
|
- |
|
||||||
|
Fixes an issue where secure fields were accidently lost in the Libvirt
|
||||||
|
domain XML document.
|
@ -60,6 +60,17 @@ class VirtualBMC(bmc.Bmc):
|
|||||||
'sasl_username': libvirt_sasl_username,
|
'sasl_username': libvirt_sasl_username,
|
||||||
'sasl_password': libvirt_sasl_password}
|
'sasl_password': libvirt_sasl_password}
|
||||||
|
|
||||||
|
# Copied from nova/virt/libvirt/guest.py
|
||||||
|
def get_xml_desc(self, domain, dump_sensitive=False):
|
||||||
|
"""Returns xml description of guest.
|
||||||
|
|
||||||
|
:param domain: The libvirt domain to call
|
||||||
|
:param dump_sensitive: Dump security sensitive information
|
||||||
|
:returns string: XML description of the guest
|
||||||
|
"""
|
||||||
|
flags = dump_sensitive and libvirt.VIR_DOMAIN_XML_SECURE or 0
|
||||||
|
return domain.XMLDesc(flags=flags)
|
||||||
|
|
||||||
def get_boot_device(self):
|
def get_boot_device(self):
|
||||||
LOG.debug('Get boot device called for %(domain)s',
|
LOG.debug('Get boot device called for %(domain)s',
|
||||||
{'domain': self.domain_name})
|
{'domain': self.domain_name})
|
||||||
@ -87,7 +98,8 @@ class VirtualBMC(bmc.Bmc):
|
|||||||
try:
|
try:
|
||||||
with utils.libvirt_open(**self._conn_args) as conn:
|
with utils.libvirt_open(**self._conn_args) as conn:
|
||||||
domain = utils.get_libvirt_domain(conn, self.domain_name)
|
domain = utils.get_libvirt_domain(conn, self.domain_name)
|
||||||
tree = ET.fromstring(domain.XMLDesc())
|
tree = ET.fromstring(
|
||||||
|
self.get_xml_desc(domain, dump_sensitive=True))
|
||||||
|
|
||||||
# Remove all "boot" element under "devices"
|
# Remove all "boot" element under "devices"
|
||||||
# They are mutually exclusive with "os/boot"
|
# They are mutually exclusive with "os/boot"
|
||||||
|
Loading…
Reference in New Issue
Block a user