Browse code
Merge "stack: Workaround libvirt issue with multiple of 16 byte fixed_key values"
Jenkins authored on 2017/05/27 04:22:30Showing 1 changed files
| ... | ... |
@@ -1259,8 +1259,13 @@ if is_service_enabled g-reg; then |
| 1259 | 1259 |
fi |
| 1260 | 1260 |
|
| 1261 | 1261 |
# Create a randomized default value for the key manager's fixed_key |
| 1262 |
+# NOTE(lyarwood): This is currently set to 36 as a workaround to the following |
|
| 1263 |
+# libvirt bug that incorrectly pads passphrases that are a multiple of 16 bytes |
|
| 1264 |
+# in length. |
|
| 1265 |
+# Unable to use LUKS passphrase that is exactly 16 bytes long |
|
| 1266 |
+# https://bugzilla.redhat.com/show_bug.cgi?id=1447297 |
|
| 1262 | 1267 |
if is_service_enabled nova; then |
| 1263 |
- iniset $NOVA_CONF key_manager fixed_key $(generate_hex_string 32) |
|
| 1268 |
+ iniset $NOVA_CONF key_manager fixed_key $(generate_hex_string 36) |
|
| 1264 | 1269 |
fi |
| 1265 | 1270 |
|
| 1266 | 1271 |
# Launch the nova-api and wait for it to answer before continuing |