glance-scrubber marker files contain keys in plain text
Bug #1112586 reported by
Paul Bourke
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Glance |
Fix Released
|
Medium
|
Paul Bourke | ||
Grizzly |
Fix Released
|
Medium
|
Paul Bourke |
Bug Description
When using delayed delete, files written to the scrubber's datadir contain auth keys in plain text when using Swift as a backend.
Changed in glance: | |
assignee: | nobody → Paul Bourke (pauldbourke) |
status: | New → In Progress |
Changed in glance: | |
importance: | Undecided → Medium |
milestone: | none → grizzly-3 |
Changed in glance: | |
status: | Fix Committed → Fix Released |
To post a comment you must log in.
Reviewed: https:/ /review. openstack. org/20993 github. com/openstack/ glance/ commit/ cb272bbfc9fd837 652b65c39fb2505 074612df95
Committed: http://
Submitter: Jenkins
Branch: master
commit cb272bbfc9fd837 652b65c39fb2505 074612df95
Author: Paul Bourke <email address hidden>
Date: Fri Feb 1 12:03:38 2013 +0000
Encrypt scrubber marker files
Files written to scrubber_datadir can contain credentials in plain text.
Update schedule_ delayed_ delete_ from_backend to make use of encryption_ key to encrypt the uri before writing it out.
metadata_
Fixes LP Bug #1112586
Change-Id: I03ff36f6b57f58 a5e5de28bf8d48e 7ce0216e5b3