Glance

  1. Bug #1516031
  2. Comment #21

Comment 21 for bug 1516031

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to glance (master)

Reviewed: https://review.openstack.org/255584
Committed: https://git.openstack.org/cgit/openstack/glance/commit/?id=95ca43f30f5bcc8107e0615b3861daa2c77a2aec
Submitter: Jenkins
Branch: master

commit 95ca43f30f5bcc8107e0615b3861daa2c77a2aec
Author: Brianna Poulos <email address hidden>
Date: Tue Dec 8 17:24:11 2015 -0500

    Add sign-the-data signature verification

    Per discussion on the mailing list [1] and the related nova
    specification [2] it has been decided that the signature should be of
    the image data directly, rather than of the glance MD5 "checksum" hash
    of the image data.

    This patch adds the ability to verify a signature of the image data
    directly, using a verifier that is passed to the glance_store backend.
    It is dependent on a glance_store patch which updates this verifier
    object with the image data as it is creating the checksum (see
    Depends-On below).

    [1] http://bit.ly/1Q0M0C7
    [2] https://review.openstack.org/#/c/188874/19

    Depends-On: I43799e6a4a6643a23769af8d839a2beb4e0ff9bf
    Partial-Bug: #1516031
    Change-Id: If0c06b3094cecef6c8ca8a65753038b6b5a9d8fe