Bug 1025429 (encrypt_vnc_traffic)
| Summary: | RFE: encrypt vnc traffic from controller node to compute nodes if ssl_only turned on | |||
|---|---|---|---|---|
| Product: | Red Hat OpenStack | Reporter: | Vladan Popovic <vpopovic> | |
| Component: | openstack-nova | Assignee: | Stephen Finucane <stephenfin> | |
| Status: | CLOSED ERRATA | QA Contact: | Archit Modi <amodi> | |
| Severity: | high | Docs Contact: | ||
| Priority: | low | |||
| Version: | unspecified | CC: | amodi, brault, eglynn, jhakimra, josorior, jschluet, lyarwood, nlevinki, owalsh, pneedle, rhos-integ, sclewis, sgordon, srevivo, stephenfin | |
| Target Milestone: | Upstream M3 | Keywords: | FutureFeature, Triaged | |
| Target Release: | 13.0 (Queens) | |||
| Hardware: | Unspecified | |||
| OS: | Unspecified | |||
| URL: | https://blueprints.launchpad.net/nova/+spec/websocket-proxy-to-host-security | |||
| Whiteboard: | upstream_milestone_none upstream_definition_approved upstream_status_needs-code-review | |||
| Fixed In Version: | openstack-nova-17.0.1-0.20180302144923.9ace6ed.el7ost | Doc Type: | Enhancement | |
| Doc Text: | Story Points: | --- | ||
| Clone Of: | ||||
| : | 1534484 1539408 (view as bug list) | Environment: | ||
| Last Closed: | 2018-06-27 13:26:22 UTC | Type: | Bug | |
| Regression: | --- | Mount Type: | --- | |
| Documentation: | --- | CRM: | ||
| Verified Versions: | Category: | --- | ||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | ||
| Cloudforms Team: | --- | Target Upstream Version: | ||
| Embargoed: | ||||
| Bug Depends On: | 1554444 | |||
| Bug Blocks: | 1077198, 1419948, 1442136, 1534484, 1539408 | |||
|
Description
Vladan Popovic
2013-10-31 16:35:01 UTC
I think we need to raise a BP for this upstream to get things moving. *** Bug 865343 has been marked as a duplicate of this bug. *** This was accepted for Juno but the code didn't get merged due to review bandwidth. The blueprint has been re-introduced and should make it in for Kilo. The blueprint was accepted, and code has been posted to upstream Gerrit. The upstream patch: https://review.openstack.org/115483 has missed the Kilo window and been deferred to Liberty-1, bumping this BZ appropriately. This patch missed Liberty too, but I will take it up again for Mitaka. The code is basically done, so hopefully it is a exercise in rubber stamping the code review. (In reply to Daniel Berrange from comment #16) > This patch missed Liberty too, but I will take it up again for Mitaka. The > code is basically done, so hopefully it is a exercise in rubber stamping the > code review. Unfortunately it looks like we missed Mitaka (not for want of trying), moving to next release. Missed Newton freeze, moving out to Ocata. *** Bug 1484394 has been marked as a duplicate of this bug. *** *** Bug 1449307 has been marked as a duplicate of this bug. *** *** Bug 1086964 has been marked as a duplicate of this bug. *** Reviews available here https://review.openstack.org/#/q/branch:master+topic:bp/websocket-proxy-to-host-security Sorry for the delay. The various patches, all of which have now landed, can be viewed here: https://review.openstack.org/#/q/(status:merged+OR+status:open)+branch:master+topic:bp/websocket-proxy-to-host-security Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHEA-2018:2086 |