Tests for revocation should be forward-ported to master

Bug #1224320 reported by Thierry Carrez
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
OpenStack Identity (keystone)
Fix Released
Wishlist
Dolph Mathews

Bug Description

The fix for [OSSA 2013-025] PKI tokens are never revoked using memcache token backend (CVE-2013-4294) on bug 1202952 included new tests to check for the revocation behavior. Even if the vulnerability does not affect Havana/master, those tests should be forward-ported.

Changed in keystone:
assignee: nobody → Dolph Mathews (dolph)
status: Confirmed → In Progress
Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to keystone (master)

Reviewed: https://review.openstack.org/46109
Committed: http://github.com/openstack/keystone/commit/7aa8314f24324670693ef574076d280b41026c11
Submitter: Jenkins
Branch: master

commit 7aa8314f24324670693ef574076d280b41026c11
Author: Dolph Mathews <email address hidden>
Date: Wed Sep 11 12:47:39 2013 -0500

    Test upgrade migration 16->17

    This test covers the use case described in bug 1131590, where a
    user_project_membership record cannot be upgraded past migration 16.

    Closes-Bug: 1224320
    Change-Id: Ia1bd03d0e07de316631140d55231abe74decaac1

Changed in keystone:
status: In Progress → Fix Committed
Thierry Carrez (ttx)
Changed in keystone:
milestone: none → havana-rc1
status: Fix Committed → Fix Released
Thierry Carrez (ttx)
Changed in keystone:
milestone: havana-rc1 → 2013.2
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.