[Openstack-security] [openstack/nova] SecurityImpact review request change Id586b2558fd4c7ed0eda3d3555d51fcd019eb414

gerrit2 at review.openstack.org gerrit2 at review.openstack.org
Mon Apr 4 13:16:58 UTC 2016


Hi, I'd like you to take a look at this patch for potential
SecurityImpact.
https://review.openstack.org/115483

Log:
commit 0338d9c432d7ed75e9acc96ae563685f4bad25ce
Author: Solly Ross <sross at redhat.com>
Date:   Tue Aug 19 18:48:00 2014 -0400

    Introduce VNC Security Proxy Framework
    
    This commit introduces the security proxying framework for
    VNC.  Which class is being used to do the security proxying
    can be set on a per-traffic-type basis by pointing
    the appropriate configuration option to an appropriate
    subclass.
    
    Currently, only VNC is supported, via the configuration
    option 'novncproxy_security_driver'.
    
    The workflow for adding a new VNC security proxy driver is
    to subclass the traffic-type-specific security proxy
    base classes (e.g. RFBSecurityProxyHelper), and implement
    the `choose_security_type` and `security_handshake` methods.
    
    DocImpact
    SecurityImpact
    Implements bp: websocket-proxy-to-host-security
    
    Change-Id: Id586b2558fd4c7ed0eda3d3555d51fcd019eb414





More information about the Openstack-security mailing list