Bug 1316607
| Summary: | [RFE][glance] Image Signing and Verification Support | |||
|---|---|---|---|---|
| Product: | Red Hat OpenStack | Reporter: | Sean Cohen <scohen> | |
| Component: | openstack-glance | Assignee: | Flavio Percoco <fpercoco> | |
| Status: | CLOSED ERRATA | QA Contact: | Avi Avraham <aavraham> | |
| Severity: | medium | Docs Contact: | Don Domingo <ddomingo> | |
| Priority: | high | |||
| Version: | 9.0 (Mitaka) | CC: | aavraham, adahms, ddomingo, eglynn, fpercoco, gfidente, jjoyce, jschluet, mlopes, nlevinki, pneedle, sclewis, scohen, sgotliv, srevivo | |
| Target Milestone: | ga | Keywords: | FutureFeature, TechPreview, TestOnly, ZStream | |
| Target Release: | 9.0 (Mitaka) | |||
| Hardware: | Unspecified | |||
| OS: | Unspecified | |||
| URL: | https://blueprints.launchpad.net/glance/+spec/image-signing-and-verification-support | |||
| Whiteboard: | upstream_milestone_liberty-3 upstream_definition_new upstream_status_implemented | |||
| Fixed In Version: | openstack-glance-12.0.0-1.el7ost | Doc Type: | Enhancement | |
| Doc Text: |
This update adds support for signing and signature validation of bootable images, and validation of uploaded signed images. If an uploaded image is signed, Glance verifies the signature before storing it, and in cases where the image can be uploaded, the crypto mode and keys must be correctly entered. Authentication protects against counterfeit images and unauthorized images.
|
Story Points: | --- | |
| Clone Of: | 1257306 | |||
| : | 1365571 (view as bug list) | Environment: | ||
| Last Closed: | 2016-08-24 12:53:08 UTC | Type: | Bug | |
| Regression: | --- | Mount Type: | --- | |
| Documentation: | --- | CRM: | ||
| Verified Versions: | Category: | --- | ||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | ||
| Cloudforms Team: | --- | Target Upstream Version: | ||
| Embargoed: | ||||
| Bug Depends On: | 1257306 | |||
| Bug Blocks: | 1342849, 1365571 | |||
|
Comment 1
Sean Cohen
2016-03-10 15:25:05 UTC
This bug was accidentally moved from POST to MODIFIED via an error in automation, please see mmccune with any questions This feature code is partially install on RHOS9, It is missing Barbican ( the store for the keys) and therefore it will not work. A clone bug was open on RHOS10. I am moving this bug to verify since the code is in, it is TechPreview. The verification of this feature moved to RHOS10 Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://rhn.redhat.com/errata/RHEA-2016-1761.html |