[Openstack-security] [openstack/cinder] SecurityImpact review request change Ia946850b79f7f717ab7528caf7cac2905e650917
gerrit2 at review.openstack.org
gerrit2 at review.openstack.org
Tue Aug 20 18:04:17 UTC 2013
Hi, I'd like you to take a look at this patch for potential
SecurityImpact.
https://review.openstack.org/42958
Log:
commit 51fc2bd41e236404a8db8e4beefd0ec265fb1a5a
Author: Joel Coffman <joel.coffman at jhuapl.edu>
Date: Tue Aug 20 13:02:24 2013 -0400
Relax policy so owner can access encryption info
The admin only policy is too restrictive to allow Nova to access a
volume's encryption metadata using the owner's request context. Hence,
this commit relaxes the policy for the volume encryption metadata
API extension so the metadata is accessible to the volume's owner.
Implements: blueprint encrypt-cinder-volumes
Change-Id: Ia946850b79f7f717ab7528caf7cac2905e650917
SecurityImpact
More information about the Openstack-security
mailing list