octavia

History

Nir Magnezi a77667339d Validate server_certs_key_passphrase is 32 chars Fernet checks[1] for 32 characters long key, so Octavia should validate the value provided for server_certs_key_passphrase, to reject an invalid passphrase as early as possible. This[2] Red Hat Bug showed a case in which an invalid passphrase got configured, and as a result, Octavia was unable to create any load balancers. Related-bug: #1833942 [1] `784676de33/src/cryptography/fernet.py (L36)` [2] https://bugzilla.redhat.com/show_bug.cgi?id=1723051 Change-Id: I334364d4654491bc0d289472ca9ab5fe462d5139	2019-09-19 04:12:24 +00:00
..
notes	Validate server_certs_key_passphrase is 32 chars	2019-09-19 04:12:24 +00:00
source	Bump the openstackdocstheme extension to 1.20	2019-07-22 09:44:14 +08:00

Nir Magnezi a77667339d Validate server_certs_key_passphrase is 32 chars

Fernet checks[1] for 32 characters long key, so Octavia should validate
the value provided for server_certs_key_passphrase, to reject an invalid
passphrase as early as possible.

This[2] Red Hat Bug showed a case in which an invalid passphrase got
configured, and as a result, Octavia was unable to create any
load balancers.

Related-bug: #1833942

[1] 784676de33/src/cryptography/fernet.py (L36)
[2] https://bugzilla.redhat.com/show_bug.cgi?id=1723051

Change-Id: I334364d4654491bc0d289472ca9ab5fe462d5139

2019-09-19 04:12:24 +00:00

notes Validate server_certs_key_passphrase is 32 chars 2019-09-19 04:12:24 +00:00

source Bump the openstackdocstheme extension to 1.20 2019-07-22 09:44:14 +08:00