OpenStack Compute (nova)

HTML escape xml tags in EC2 responses.

Bug #1036347 reported by Roland Hochmuth on 2012-08-13

This bug report is a duplicate of: Bug #978439: EC2 error response does no XML escaping. Edit Remove

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	OpenStack Compute (nova)	Confirmed	Medium	Andrew James

Bug Description

XML escape characters "<" and ">" don't appear to be converted to "&lt" and "&gt" and probably should be.

The code that look like a possible problem is nova/api/faults.py

        resp.body = str('<?xml version="1.0"?>\n'
                         '<Response><Errors><Error><Code>%s</Code>'
                         '<Message>%s</Message></Error></Errors>'
                         '<RequestID>%s</RequestID></Response>' %
                         (utils.utf8(code), utils.utf8(message),
                         utils.utf8(ctxt.request_id)))

Andrew James (ajames) on 2012-08-13

Changed in nova:
assignee:	nobody → Andrew James (ajames)

Revision history for this message

Thierry Carrez (ttx) wrote on 2012-08-22:

Also see bug 978439 which might be a duplicate, might fix both in one shot.

Changed in nova:
importance:	Undecided → Medium
status:	New → Confirmed

Revision history for this message

Andrew James (ajames) wrote on 2012-09-12:

This was fixed in bug 978439.

Report a bug

This report contains Public information

Everyone can see this information.

Duplicate of bug #978439 Remove

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.