[Openstack-security] [openstack/nova] SecurityImpact review request change Ia6f4c69e699e68065c0f767e769cd0a6f5cc623b
gerrit2 at review.openstack.org
gerrit2 at review.openstack.org
Wed Sep 4 19:33:59 UTC 2013
Hi, I'd like you to take a look at this patch for potential
SecurityImpact.
https://review.openstack.org/45103
Log:
commit 2fe6511447336a53052314897e1b5ad18f9af7db
Author: Joel Coffman <joel.coffman at jhuapl.edu>
Date: Wed Sep 4 15:09:46 2013 -0400
Add key manager implementation with static key
Per feedback received on other patch sets, an example key manager
driver is required to support ephemeral storage encryption and
Cinder volume encryption. The ConfKeyManager class reads its key
from the project's configuration file and provides this key for
*all* requests. As such, this key manager is insecure but allows
the aforementioned encryption features to be used without further
integration effort.
Implements blueprint encrypt-cinder-volumes
SecurityImpact
Change-Id: Ia6f4c69e699e68065c0f767e769cd0a6f5cc623b
More information about the Openstack-security
mailing list