-
Notifications
You must be signed in to change notification settings - Fork 371
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Will "waagent -deprovision[+user]" wipe the cloud-init data? #631
Comments
@yuxisun1217, I confirmed that cloud-init will still provision, since it uses the VM unique id, which ends up in |
@hglkrijger, Sorry for the wrong understanding of this feature and thank you for your confirming. :) |
@hglkrijger Are these safe to delete (e.g., |
@brendandixon I don't think we should remove the root directory, but selectively under it, such as:
|
@paulmey Any comment? You know the |
from
but it's safe to delete all of |
Deprovision cloud-init data (#631)
Addressed by #698 |
@brendandixon We are storing scripts in /var/lib/cloud/scripts/per-instance which are executed on the first boot, as we customize the image for our own purposes. This change breaks this functionality for us, and I believe this is a common use case. Would it be possible to not clear out /var/lib/cloud/scripts during this new cleanup procedure or make it configurable? |
@cmelanson Happy to adjust it. I'll alter the code to remove the minimum needed. |
@cmelanson Addressed in #702 |
I know this is a really late comment, just reviewing changes before pulling the latest release into SLES. The idea that one process removes the files left behind by another process is IMHO fundamentally flawed and violates basic principles. In more modern browsers checks have been implemented to ensure one site does not scribble on cookies from other sites for security reasons. Now waagent removes files from cloud-init, sorry but that's just wrong. First as already confirmed in the thread, cloud-init will recognize when re-provisioning is in order. Second any changes in cloud-init such as additional files in other locations will require work here. |
Is there a way to disable this feature? This programmatically breaks how per-instance and per-once runs. With this in-place, you could actually never have per-once work as it blows away the contents of that directory when you "deprovision" a box before snapshot. Honestly waagent should not be touching the cloudinit data directories. |
Good point, @rjschwei ; Another general point that I would like to highlight is that even if you happen to remove some files which you think might contain sensitive data, then you should not just remove it, but shred it. Then, depending where the user-data came from, it may and likely still be available there. E.g. |
Hi there,
It seems that the cloud-init is going to be involved in the RHEL images. Do you think that the "waagent -deprovision[+user]" should wipe the data that generated by cloud-init during provisioning? Because if the cloud-init data is not cleaned, the cloud-init will not provision during the next boot.
Thanks!
Currently we found some cloud-init data like this:
The text was updated successfully, but these errors were encountered: