TrustedFilter was using httplib which doesn't check for CAs.
Here the change is using Requests and verifies local CAs by default (or another
one if provided)
This effort is related to CVE 2013-2255.
SecurityImpact
Closes-Bug: #1373993
Change-Id: I0b8e6319a4cc39876b1e396ef705f0fc5def1e44
(cherry picked from commit 30871e8702737edbbfbcbbb5f21858873b37685c)
Reviewed: https:/ /review. openstack. org/126137 /git.openstack. org/cgit/ openstack/ nova/commit/ ?id=cc88417637e 4967860619e8d7e 43f5d28957fcda
Committed: https:/
Submitter: Jenkins
Branch: proposed/juno
commit cc88417637e4967 860619e8d7e43f5 d28957fcda
Author: Sylvain Bauza <email address hidden>
Date: Mon Sep 29 13:33:50 2014 +0200
Fix unsafe SSL connection on TrustedFilter
TrustedFilter was using httplib which doesn't check for CAs.
Here the change is using Requests and verifies local CAs by default (or another
one if provided)
This effort is related to CVE 2013-2255.
SecurityImpact
Closes-Bug: #1373993
Change-Id: I0b8e6319a4cc39 876b1e396ef705f 0fc5def1e44 bbfbcbbb5f21858 873b37685c)
(cherry picked from commit 30871e8702737ed