fetch_ceph_keys.py uses insecure sha1 function
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
kolla |
Fix Released
|
Medium
|
Unassigned | ||
Queens |
Fix Committed
|
Medium
|
Unassigned | ||
Rocky |
Fix Committed
|
Medium
|
Unassigned | ||
Stein |
Fix Released
|
Medium
|
Unassigned | ||
Train |
Fix Released
|
Medium
|
Unassigned | ||
kolla-ansible |
Fix Released
|
Medium
|
Michal Nasiadka | ||
Queens |
Fix Committed
|
Medium
|
Unassigned | ||
Rocky |
Fix Committed
|
Medium
|
Unassigned | ||
Stein |
Fix Committed
|
Medium
|
Unassigned | ||
Train |
Fix Released
|
Medium
|
Michal Nasiadka |
Bug Description
Bandit test results:
2019-04-24 19:47:37.474705 | ubuntu-bionic | Test results:
2019-04-24 19:47:37.474825 | ubuntu-bionic | >> Issue: [B303:blacklist] Use of insecure MD2, MD4, MD5, or SHA1 hash function.
2019-04-24 19:47:37.474900 | ubuntu-bionic | Severity: Medium Confidence: High
2019-04-24 19:47:37.474999 | ubuntu-bionic | Location: docker/
2019-04-24 19:47:37.475140 | ubuntu-bionic | More Info: https:/
2019-04-24 19:47:37.475239 | ubuntu-bionic | 52 return {'content': base64.
2019-04-24 19:47:37.475327 | ubuntu-bionic | 53 'sha1': hashlib.
2019-04-24 19:47:37.475388 | ubuntu-bionic | 54 'filename': filename}
Changed in kolla: | |
assignee: | nobody → Michal Nasiadka (mnasiadka) |
Changed in kolla-ansible: | |
assignee: | nobody → Michal Nasiadka (mnasiadka) |
Changed in kolla: | |
status: | New → In Progress |
Changed in kolla: | |
assignee: | Michal Nasiadka (mnasiadka) → Marcin Juszkiewicz (hrw) |
Changed in kolla-ansible: | |
importance: | Undecided → Medium |
Changed in kolla: | |
importance: | Undecided → Medium |
Looks like we're skipping B303, which is why this doesn't fail pep8.