OpenStack Compute (nova)

Nova's Glance client does not support SSL connections

Bug #980858 reported by Chris Hoge
14
This bug affects 3 people
Affects Status Importance Assigned to Milestone
OpenStack Compute (nova)
Triaged
Medium
Unassigned

Bug Description

Nova's Glance client, defined in nova.image.glance, does not support SSL connections to glance. Nova will attempt to connect through http and fail.

The workaround is to add a new option to _create_glance_client that takes a use_ssl=False parameter to pass along to the GlanceClient constructor. The pick_glance_api_server method should return an additional argument, scheme (http or https), that can be used to set the use_ssl argument to _create_glance_client.

Revision history for this message
Vish Ishaya (vishvananda) wrote :

Sounds like a good plan. Are you going to submit a review through gerrit, or did you want someone else to tackle it?

Changed in nova:
status: New → Triaged
importance: Undecided → Medium
Revision history for this message
Chris Hoge (hoge) wrote :

I'm waiting for my CLA approval to go through our legal department. I should be able to contribute next week, probably around the time the conference comes around. If it gets picked up earlier by someone else I'm fine with that too.

Revision history for this message
Roman Yepishev (rye) wrote :

This will need to be configurable in nova.conf,
Current config --glance_api_servers=192.168.100.60:9292 - does not allow to provide the schema (this is a list splitted at commas). I guess adding a https:// or http:// prefix won't hurt with the default set to http in order not to break current installations.

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.