Comment 8 for bug 1188189

For Nova:

plugins/xenserver/xenapi/etc/xapi.d/plugins/glance: XenAPI plugin uploading tarballs to Glance servers (if glance_use_ssl)
plugins/xenserver/xenapi/etc/xapi.d/plugins/pluginlib_nova.py: dead code
nova/virt/vmwareapi/read_write_util.py: VMWareAPI driver writing image files to ESX*
nova/api/ec2/__init__.py: redirection to Keystone for EC2-style auth
nova/scheduler/filters/trusted_filter.py: uses CA file through subclass HTTPSClientAuthConnection

(*) Interestingly, reading files uses urllib2.urlopen, which does not do cert verification either :)