diff options
author | Jack Kelly <jack@jackkelly.name> | 2020-11-21 11:59:30 +1000 |
---|---|---|
committer | Jack Kelly <jack@jackkelly.name> | 2020-11-22 12:22:46 +1000 |
commit | 6fd871dec4dba27611e6eade68f1d160af837dda (patch) | |
tree | faf477e1eb6697c3113778facd3984d2dcfb3197 /nixos/doc | |
parent | 43bfd7e5b1a70fe4be9b9c077eccb15fd50f6edc (diff) |
rl-21.03: describe EC2 instance user/meta data reloading
Diffstat (limited to 'nixos/doc')
-rw-r--r-- | nixos/doc/manual/release-notes/rl-2103.xml | 16 |
1 files changed, 16 insertions, 0 deletions
diff --git a/nixos/doc/manual/release-notes/rl-2103.xml b/nixos/doc/manual/release-notes/rl-2103.xml index 55c1229a164d..5bdc44365ed5 100644 --- a/nixos/doc/manual/release-notes/rl-2103.xml +++ b/nixos/doc/manual/release-notes/rl-2103.xml @@ -211,6 +211,22 @@ and <literal>slaptest</literal> is buggy with schemas directly in the config file. </para> </listitem> + <listitem> + <para> + Amazon EC2 and OpenStack Compute (nova) images now re-fetch instance meta data and user data from the instance + metadata service (IMDS) on each boot. For example: stopping an EC2 instance, changing its user data, and + restarting the instance will now cause it to fetch and apply the new user data. + </para> + <warning> + <para> + Specifically, <literal>/etc/ec2-metadata</literal> is re-populated on each boot. Some NixOS scripts that read + from this directory are guarded to only run if the files they want to manipulate do not already exist, and so + will not re-apply their changes if the IMDS response changes. Examples: <literal>root</literal>'s SSH key is + only added if <literal>/root/.ssh/authorized_keys</literal> does not exist, and SSH host keys are only set from + user data if they do not exist in <literal>/etc/ssh</literal>. + </para> + </warning> + </listitem> </itemizedlist> </section> |