NSXv driver does not verify certificates
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
| vmware-nsx |
Critical
|
Eric Brown |
Bug Description
The NSXv driver does not validate certificates of the NSX manager it connects to.
Because the driver does not validate the cert, its possible for it to be vulnerable to a man-in-the-middle attack.
Changed in vmware-nsx: | |
assignee: | nobody → Eric Brown (ericwb) |
Changed in vmware-nsx: | |
status: | New → In Progress |
Changed in vmware-nsx: | |
importance: | Undecided → Critical |
Reviewed: https:/
Committed: https:/
Submitter: Jenkins
Branch: master
commit 16b564346e2d77b
Author: Eric Brown <email address hidden>
Date: Mon Aug 24 15:10:29 2015 -0700
Ensure NSXv driver can verify certificates
The NSXv driver was missing code to do certificate verification.
In fact, it was intentional turned off. This patch adds the
capability to turn it on.
DocImpact:
Two new options for the NSXv driver: ca_file and insecure.
Change-Id: I12ffa2f5e80d4d
Closes-Bug: #1488265
Changed in vmware-nsx: | |
status: | In Progress → Fix Committed |
Fix proposed to branch: stable/kilo
Review: https:/
Reviewed: https:/
Committed: https:/
Submitter: Jenkins
Branch: stable/kilo
commit 8b6d8f798d818fa
Author: Eric Brown <email address hidden>
Date: Mon Aug 24 15:10:29 2015 -0700
Ensure NSXv driver can verify certificates
The NSXv driver was missing code to do certificate verification.
In fact, it was intentional turned off. This patch adds the
capability to turn it on.
DocImpact:
Two new options for the NSXv driver: ca_file and insecure.
Closes-Bug: #1488265
Conflicts:
vmware_
vmware_
Change-Id: I12ffa2f5e80d4d
tags: | added: in-stable-kilo |
Changed in vmware-nsx: | |
status: | Fix Committed → Fix Released |
Fix proposed to branch: master /review. openstack. org/216442
Review: https:/