openstack
/
cinder
Code Issues Proposed changes
cinder/releasenotes
History
Sean McGinnis 8547444775 Limit memory & CPU when running qemu-img info 
It was found that a modified or corrupted image file can cause a DoS
on the host when getting image info with qemu-img.

This uses the newer 'prlimit' parameter for oslo.concurrency execute
to set an address space limit of 1GB and CPU time limit of 2 seconds
when running the qemu-img info command.

Change-Id: If5b7129b266ef065642bc7898ce9dcf93722a053
Closes-bug: #1449062
(cherry picked from commit 78f17f0ad7)
 		2016-09-22 20:48:27 +00:00
..
notes Limit memory & CPU when running qemu-img info 2016-09-22 20:48:27 +00:00
source standardize release note page ordering 2016-09-08 14:51:37 -04:00
README.rst Add README in release notes directory 2016-07-01 19:03:26 +05:30

README.rst

Release notes

The release notes for a patch should be included in the patch. The intended audience for release notes include deployers, administrators and end-users.

A release note is required if the patch has upgrade or API impact. It is also required if the patch adds a feature or fixes a long-standing or security bug.

Please see http://docs.openstack.org/developer/cinder/devref/releasenotes.html for more details.