[Openstack-security] [openstack/nova] SecurityImpact review request change I28fdd5268b26b21469889d098f06a82fe188ad1a
gerrit2 at review.openstack.org
gerrit2 at review.openstack.org
Wed Oct 1 01:29:54 UTC 2014
Hi, I'd like you to take a look at this patch for potential
SecurityImpact.
https://review.openstack.org/125249
Log:
commit cc5943577ad3cbd164e3525847399d705229f833
Author: melanie witt <melwitt at yahoo-inc.com>
Date: Wed Oct 1 00:42:52 2014 +0000
use safe SSL connection in xenserver glance plugin
httplib.HTTPSConnection is known to not verify SSL certificates
in Python 2.x. This change replaces use of httplib.HTTPSConnection
with the requests module. It uses the existing nova config setting
"glance.api_insecure" to decide whether or not to verify certs.
SecurityImpact
DocImpact
Closes-Bug: #1374001
Change-Id: I28fdd5268b26b21469889d098f06a82fe188ad1a
More information about the Openstack-security
mailing list