It's not possibile to pass the cacert to the swift store
Bug #1375857 reported by
Andrea Rosa
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Glance |
Fix Released
|
Wishlist
|
Ian Cordasco | ||
glance_store |
Fix Released
|
Wishlist
|
Andrea Rosa |
Bug Description
The swift store device defined in the glance store doesn't allow to pass the ca cert file. When the driver creates a connection via the swift client it is not possible to pass that value.
That means that if we have swift running on TLS in some cases we have to set the insecure option equals to True as the client can't correctly complete the handshake as it fails on the verification of the cert.
The fix I'd like to propose is to add a new parameter to define the ca cert file and pass this value when we create the connection via the swift client.
Changed in glance: | |
assignee: | nobody → Andrea Rosa (andrea-rosa-m) |
tags: | removed: swift |
tags: | added: security swift |
Changed in glance: | |
importance: | Undecided → Wishlist |
affects: | glance → glance-store |
Changed in glance: | |
status: | New → Triaged |
importance: | Undecided → Wishlist |
assignee: | nobody → Ian Cordasco (icordasc) |
Changed in glance: | |
status: | Triaged → In Progress |
Changed in glance-store: | |
milestone: | none → v0.1.11 |
Changed in glance: | |
milestone: | none → kilo-2 |
Changed in glance-store: | |
status: | In Progress → Fix Committed |
Changed in glance: | |
status: | Fix Committed → Fix Released |
Changed in glance: | |
milestone: | kilo-2 → 2015.1.0 |
Changed in glance-store: | |
status: | Fix Committed → Fix Released |
To post a comment you must log in.
Fix proposed to branch: master /review. openstack. org/125338
Review: https:/