commit 59933249054bf71ec963585198583fe78050c9d6
Author: Dan Prince <email address hidden>
Date: Fri Feb 1 17:04:27 2013 -0500
Add a safe_minidom_parse_string function.
Adds a new utils.safe_minidom_parse_string function and
updates external API facing Nova modules to use it.
This ensures we have safe defaults on our incoming API XML parsing.
Internally safe_minidom_parse_string uses a ProtectedExpatParser
class to disable DTDs and entities from being parsed when using
minidom.
Reviewed: https:/ /review. openstack. org/22309 github. com/openstack/ nova/commit/ 59933249054bf71 ec963585198583f e78050c9d6
Committed: http://
Submitter: Jenkins
Branch: master
commit 59933249054bf71 ec963585198583f e78050c9d6
Author: Dan Prince <email address hidden>
Date: Fri Feb 1 17:04:27 2013 -0500
Add a safe_minidom_ parse_string function.
Adds a new utils.safe_ minidom_ parse_string function and
updates external API facing Nova modules to use it.
This ensures we have safe defaults on our incoming API XML parsing.
Internally safe_minidom_ parse_string uses a ProtectedExpatP arser
class to disable DTDs and entities from being parsed when using
minidom.
Fixes LP Bug #1100282.
Change-Id: Ib90d6379320ff1 d007f8a661f7dda a286ba6918e