SSL certification verification failed when Heat calls Glanceclient with ca cert
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Heat |
Fix Released
|
High
|
zhu zhu | ||
Juno |
Fix Released
|
High
|
Unassigned |
Bug Description
Glance server is configured Https.
Configured Heat with heat.conf
[clients_glance]
ca_file=<ca file path>
insecure=<false>
When trying to create stack, heat will raise exception during heat to load image data.
[Errno 1] _ssl.c:492: error:14090086:SSL routines:
The root cause is that: ca_file as below is a wrong argument to initialize the glance client, it should be cacert which is supported arguments by glanceclient.
class GlanceClientPlu
exceptions_
def _create(self):
con = self.context
endpoint = self.url_
args = {
tags: | added: security |
summary: |
- SSL certification verification failed when Heat calls Glanceclient using - insecure=False + SSL certification verification failed when Heat calls Glanceclient with + ca cert |
tags: | added: juno-backport-potential |
Changed in heat: | |
importance: | Undecided → High |
milestone: | none → kilo-1 |
Changed in heat: | |
status: | Fix Committed → Fix Released |
Changed in heat: | |
milestone: | kilo-1 → 2015.1.0 |
tags: |
added: in-stable-juno removed: juno-backport-potential |
Fix proposed to branch: master /review. openstack. org/130512
Review: https:/