Uploaded image for project: 'OpenShift Request For Enhancement'
  1. OpenShift Request For Enhancement
  2. RFE-8936

Expose full secure disk cleaning in BareMetalHost API

XMLWordPrintable

    • Icon: Feature Request Feature Request
    • Resolution: Unresolved
    • Icon: Normal Normal
    • None
    • None
    • Installer
    • None
    • Product / Portfolio Work
    • None
    • False
    • Hide

      None

      Show
      None
    • None
    • None
    • None
    • None
    • None
    • None
    • None
    • None

      Currently, the two options for automatedCleaningMode are disabled and metadata, the latter only removing partition tables from the disks.

      Ironic also supports secure disk erasure, which uses ATA secure erase or NVMe secure format, falling back to the shred utility if neither is available. We need to add an option to use it for security conscious BMaaS consumers.

      Points to consider:

      • We need to start using the Ironic runbook API to be able to customize automated cleaning per host. BMO will need to maintain runbooks in Ironic.
      • BMH API specifies that "metadata" is the default. We need to consider adding a BMO-wide option to change this default.
      • Ironic also has API to exclude certain block devices from cleaning. Do we need that?

              mzasepa Michal Zasepa
              rhn-engineering-dtantsur Dmitry Tantsur
              None
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated:
                None
                None