[Openstack-security] [openstack/keystone] SecurityImpact review request change I89543ccd84dd0ed0df39c4c247f354bb08adc23e
gerrit2 at review.openstack.org
gerrit2 at review.openstack.org
Thu Aug 28 20:57:35 UTC 2014
Hi, I'd like you to take a look at this patch for potential
SecurityImpact.
https://review.openstack.org/117380
Log:
commit 7c3f61c3f32ad533966af9b990c8318a88ae414c
Author: Brant Knudson <bknudson at us.ibm.com>
Date: Wed Aug 27 18:41:27 2014 -0500
Configurable PKI token signature digest
python-keystoneclient's token signing function (cms_sign_data) was
recently enhanced to support configuring the digest algorithm. This
adds a configuration option to Keystone to set the digest to use.
SecurityImpact
DocImpact
A new `message_digest_algorithm` option is added to the [token]
section of the config file.
Change-Id: I89543ccd84dd0ed0df39c4c247f354bb08adc23e
Related-Bug: #1362343
More information about the Openstack-security
mailing list