openstack
/
octavia
Code Issues Proposed changes
octavia/octavia/tests
History
Nir Magnezi a77667339d Validate server_certs_key_passphrase is 32 chars 
Fernet checks[1] for 32 characters long key, so Octavia should validate
the value provided for server_certs_key_passphrase, to reject an invalid
passphrase as early as possible.

This[2] Red Hat Bug showed a case in which an invalid passphrase got
configured, and as a result, Octavia was unable to create any
load balancers.

Related-bug: #1833942

[1] 784676de33/src/cryptography/fernet.py (L36)
[2] https://bugzilla.redhat.com/show_bug.cgi?id=1723051

Change-Id: I334364d4654491bc0d289472ca9ab5fe462d5139
 		2019-09-19 04:12:24 +00:00
..
common Add VIP access control list 2019-09-13 10:09:25 +02:00
functional Add new algorithm SOURCE_IP_PORT 2019-09-13 15:19:15 +00:00
unit Validate server_certs_key_passphrase is 32 chars 2019-09-19 04:12:24 +00:00
__init__.py Add license for empty __init__.py 2018-03-14 07:02:56 +09:00