novncproxy accepts un-masked client websocket frames
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
OpenStack Compute (nova) |
Expired
|
Undecided
|
Unassigned |
Bug Description
using Havana nova with python-
I found that the server is not picky enough.
It accepts WebSocket frames with the masked-bit unset
though the relevant standard
https:/
says
The server MUST close the connection upon receiving a frame that is not masked.
For testing this behaviour, you can use my code without this fix
https:/
it is used like this:
git clone https:/
$INSTALL perl-Protocol-
nova get-vnc-console $YOURINSTANCE novnc
perl wsconnectionpro
gvncviewer localhost:42
tags: | added: console |
Seems like an upstream bug? Can you confirm if you expect there is a nova change for this, or if it's an upstream issue.