Https verification + usage + support
Bug #1067888 reported by
Joshua Harlow
This bug affects 2 people
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
cloud-init |
Fix Released
|
Medium
|
Unassigned | ||
cloud-init (Ubuntu) |
Fix Released
|
Medium
|
Unassigned |
Bug Description
Currently we have limited https verification and support.
The inbuilt urllib2 will try to use it, but no verification occurs (and there isn't an easy way to specify a incoming certfile to use).
The boto library we are calling for metadata also needs to have the same params/support to use it (this seems to be solved).
Some ideas:
- just the url_helper file + boto that this might affect
- https:/
- https:/
- https:/
-Josh
Related branches
lp:~harlowja/cloud-init/url-ssl-fixings
- Scott Moser: Needs Fixing
-
Diff: 890 lines (+316/-163)15 files modifiedRequires (+6/-5)
cloudinit/config/cc_phone_home.py (+3/-2)
cloudinit/config/cc_power_state_change.py (+1/-1)
cloudinit/distros/parsers/resolv_conf.py (+2/-2)
cloudinit/ec2_utils.py (+5/-0)
cloudinit/sources/DataSourceCloudStack.py (+6/-5)
cloudinit/sources/DataSourceEc2.py (+7/-6)
cloudinit/sources/DataSourceMAAS.py (+26/-19)
cloudinit/url_helper.py (+159/-98)
cloudinit/user_data.py (+3/-2)
cloudinit/util.py (+79/-10)
setup.py (+3/-2)
tests/unittests/test__init__.py (+5/-5)
tests/unittests/test_datasource/test_maas.py (+9/-6)
tests/unittests/test_util.py (+2/-0)
Changed in cloud-init: | |
status: | New → Triaged |
importance: | Undecided → Medium |
Changed in cloud-init: | |
milestone: | none → 0.7.2 |
affects: | ubuntu (Ubuntu) → cloud-init (Ubuntu) |
Changed in cloud-init (Ubuntu): | |
importance: | Undecided → Medium |
status: | New → Fix Released |
To post a comment you must log in.
boto metadata fetch not so good either, darn.
https:/ /github. com/boto/ boto/blob/ develop/ boto/utils. py#L187
It doesn't seem to support https (via those methods). Sad.