openstack
/
nova
Code Issues Proposed changes
nova/nova/scheduler/filters
History
Sylvain Bauza d7c8e936f3 Fix unsafe SSL connection on TrustedFilter 
TrustedFilter was using httplib which doesn't check for CAs.
Here the change is using Requests and verifies local CAs by default (or another
one if provided)
This effort is related to CVE 2013-2255.
SecurityImpact

ReleaseNote
This patch  adds an option attestation_insecure_ssl in TrustedFilter which can be
used to verify CAs. The default value is set to True, disabling SSL certificate
verification. While this is the insecure option, it was selected for backward
compatibility reasons.

Closes-Bug: #1373993
(cherry picked from commit 30871e8702)

Conflicts:
	nova/tests/scheduler/test_host_filters.py

Change-Id: I0b8e6319a4cc39876b1e396ef705f0fc5def1e44
 		2014-11-27 09:53:18 +08:00
..
__init__.py Remove unnecessary LOG initialisation 2013-04-10 13:26:12 +00:00
affinity_filter.py Add new style instance group scheduler filters 2014-03-27 21:54:02 +00:00
aggregate_image_properties_isolation.py Aggregate: Hosts isolation based on image properties 2013-12-31 15:06:09 +01:00
aggregate_instance_extra_specs.py Remove the monkey patching of _ into the builtins 2013-07-26 07:31:17 -07:00
aggregate_multitenancy_isolation.py nit: fix indentation 2013-11-03 20:02:25 +08:00
all_hosts_filter.py Allow filters to only run once per request if their data is static 2013-07-08 13:04:48 +00:00
availability_zone_filter.py Fixes several misc typos in scheduler code 2013-10-03 21:47:52 +02:00
compute_capabilities_filter.py Add missing ' to extra_specs debug message 2013-10-17 13:14:17 -07:00
compute_filter.py Remove extra space in log message 2014-01-30 18:40:27 -08:00
core_filter.py Remove the monkey patching of _ into the builtins 2013-07-26 07:31:17 -07:00
disk_filter.py Small edits on help strings 2014-01-23 20:05:50 +01:00
extra_specs_ops.py Update OpenStack LLC to Foundation 2013-02-26 19:15:29 -05:00
image_props_filter.py Make image props filter handle old vm_modes 2014-01-10 19:52:57 +00:00
io_ops_filter.py Remove the monkey patching of _ into the builtins 2013-07-26 07:31:17 -07:00
isolated_hosts_filter.py Enable flake8 H404 checking 2014-02-27 11:15:55 +04:00
json_filter.py Nova-all: Replace basestring by six for python3 compatability 2013-10-28 16:55:05 +08:00
metrics_filter.py Added a new scheduler filter for metrics 2014-01-22 11:35:01 +08:00
num_instances_filter.py Remove the monkey patching of _ into the builtins 2013-07-26 07:31:17 -07:00
pci_passthrough_filter.py Remove vi modelines 2014-02-03 14:19:44 +00:00
ram_filter.py Remove the monkey patching of _ into the builtins 2013-07-26 07:31:17 -07:00
retry_filter.py Remove the monkey patching of _ into the builtins 2013-07-26 07:31:17 -07:00
trusted_filter.py Fix unsafe SSL connection on TrustedFilter 2014-11-27 09:53:18 +08:00
type_filter.py nit: fix indentation 2013-11-03 20:02:25 +08:00