openstack
/
nova
Code Issues Proposed changes
nova/nova/rootwrap
History
Pádraig Brady d9577ce9f2 Prohibit file injection writing to host filesystem 
This is a refinement of the previous fix in commit 2427d4a9,
which does the file name canonicalization as the root user.
This is required so that guest images could not for example,
protect malicious symlinks in a directory only readable by root.

Fixes bug: 1031311, CVE-2012-3447
Change-Id: I7f7cdeeffadebae7451e1e13f73f1313a7df9c5c
 		2012-08-07 20:00:55 +01:00
..
__init__.py Fix OpenStack Capitalization 2012-03-15 16:10:53 -07:00
compute.py Prohibit file injection writing to host filesystem 2012-08-07 20:00:55 +01:00
filters.py Update KillFilter to handle 'deleted' exe's. 2012-05-04 11:09:45 +01:00
network.py Addtional CommandFilters to fix rootwrap on SLES 2012-07-12 06:54:10 +00:00
volume.py Remove Virtual Storage Array (VSA) code 2012-03-15 20:35:09 -07:00
wrapper.py Fix OpenStack Capitalization 2012-03-15 16:10:53 -07:00