Allow Nova to talk to Cinder using a self-signed cert

Bug #1100459 reported by Rick Harris
18
This bug affects 4 people
Affects Status Importance Assigned to Milestone
OpenStack Compute (nova)
Fix Released
High
Cory Stone

Bug Description

`cinderclient` has an `insecure` option which will avoid cert-verification, necessary if using a self-signed cert.

We should expose this option through Nova, with a sensible default being to verify certs.

Changed in nova:
importance: Undecided → High
Revision history for this message
Davanum Srinivas (DIMS) (dims-v) wrote :

we can follow the same pattern as used by glance.py to talk to glance (see 'glance_api_insecure' option)

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix proposed to nova (master)

Fix proposed to branch: master
Review: https://review.openstack.org/19861

Changed in nova:
assignee: nobody → Cory Stone (corystone)
status: New → In Progress
Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to nova (master)

Reviewed: https://review.openstack.org/19861
Committed: http://github.com/openstack/nova/commit/4aeecd5c7e91418866e29becd473d0230f0b8318
Submitter: Jenkins
Branch: master

commit 4aeecd5c7e91418866e29becd473d0230f0b8318
Author: Cory Stone <email address hidden>
Date: Wed Jan 16 16:00:49 2013 -0600

    Allow nova to use insecure cinderclient.

    Add an option cinder_api_insecure to pass on to cinderclient.

    Bug 1100459

    Change-Id: Ifb31cc0df48d2345fa0a6ec440bdf9685254cbcd

Changed in nova:
status: In Progress → Fix Committed
Thierry Carrez (ttx)
Changed in nova:
milestone: none → grizzly-3
status: Fix Committed → Fix Released
Thierry Carrez (ttx)
Changed in nova:
milestone: grizzly-3 → 2013.1
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.