Using wrong auth encryption key can lead to data loss
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Heat |
Expired
|
Low
|
Unassigned |
Bug Description
While decrypting encrypted parameters from the database, if one uses the wrong auth encryption key, we still go ahead and update the database with the values that were decrypted using the wrong auth_encryption
[1]def db_decrypt_
session = get_session()
with session.begin():
for raw_template in raw_templates:
for param_name in encrypted_params:
Changed in heat: | |
importance: | Undecided → Low |
Changed in heat: | |
assignee: | nobody → Rico Lin (rico-lin) |
Changed in heat: | |
assignee: | Rico Lin (rico-lin) → nobody |
Changed in heat: | |
status: | New → Incomplete |
[Expired for heat because there has been no activity for 60 days.]