commit c0a10dbd8f903ebb2e417cc821cf8555bee8d188
Author: Dan Prince <email address hidden>
Date: Sat Feb 2 14:32:12 2013 -0500
Add a safe_minidom_parse_string function.
Adds a new utils.safe_minidom_parse_string function and
updates external API facing Nova modules to use it.
This ensures we have safe defaults on our incoming API XML parsing.
Internally safe_minidom_parse_string uses a ProtectedExpatParser
class to disable DTDs and entities from being parsed when using
minidom.
Reviewed: https:/ /review. openstack. org/22313 github. com/openstack/ nova/commit/ c0a10dbd8f903eb b2e417cc821cf85 55bee8d188
Committed: http://
Submitter: Jenkins
Branch: stable/essex
commit c0a10dbd8f903eb b2e417cc821cf85 55bee8d188
Author: Dan Prince <email address hidden>
Date: Sat Feb 2 14:32:12 2013 -0500
Add a safe_minidom_ parse_string function.
Adds a new utils.safe_ minidom_ parse_string function and
updates external API facing Nova modules to use it.
This ensures we have safe defaults on our incoming API XML parsing.
Internally safe_minidom_ parse_string uses a ProtectedExpatP arser
class to disable DTDs and entities from being parsed when using
minidom.
Fixes LP Bug #1100282 for Essex.
Change-Id: I815b27ff284529 3e3d6771ff8f999 44ec08ccbd5