[Openstack-security] [Bug 1561796] Re: ironic driver does not support ssl cafile

Sylvain Bauza sbauza at free.fr
Tue Mar 29 10:08:14 UTC 2016


** Changed in: nova
   Importance: Undecided => Medium

-- 
You received this bug notification because you are a member of OpenStack
Security, which is subscribed to OpenStack.
https://bugs.launchpad.net/bugs/1561796

Title:
  ironic driver does not support ssl cafile

Status in OpenStack Compute (nova):
  In Progress

Bug description:
  Even though Ironic's python client supports SSL encrypted connections
  to the ironic service, and securing intra-service connections is a
  recommended practice, the nova.virt.Ironic driver currently lacks an
  option to specify a custom CA Certificate for validating the SSL
  connection to the Ironic service.

  On the other hand, other OpenStack services which Nova connects to
  (eg, Glance, Neutron...) have support for this via a service-specific
  "cafile" config option.

To manage notifications about this bug go to:
https://bugs.launchpad.net/nova/+bug/1561796/+subscriptions




More information about the Openstack-security mailing list