Bug 1845179

Summary: [Backport][OSP16.1] [OSP13] Remove VxFlex OS credentials from connection_properties
Product: Red Hat OpenStack Reporter: Rajini Karthik <rajini.karthik>
Component: openstack-cinderAssignee: Cinder Bugs List <cinder-bugs>
Status: CLOSED DUPLICATE QA Contact: Tzach Shefi <tshefi>
Severity: unspecified Docs Contact: Chuck Copello <ccopello>
Priority: unspecified    
Version: 16.1 (Train)CC: arkady_kanevsky, brian.rosmaita, dcain, gael_rehault, Ivan.Pchelintsev, kholtz, kurt_hey, ltoscano, mburns, morazi, pgrist, rajini.karthik, vladislav.belogrudov
Target Milestone: ---   
Target Release: ---   
Hardware: Unspecified   
OS: Unspecified   
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2020-06-10 09:34:17 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:

Description Rajini Karthik 2020-06-08 15:22:31 UTC
Description of problem:
It is a security bug and we request a backport to queens and train 16.1
https://review.opendev.org/#/c/733107/ - cinder
https://review.opendev.org/#/c/733100/ - os_brick

https://review.opendev.org/#/c/733104/ - os-brick
https://review.opendev.org/#/c/733110/ - cinder

Version-Release number of selected component (if applicable):

How reproducible:

Steps to Reproduce:

Actual results:

Expected results:

Additional info:

Comment 1 Luigi Toscano 2020-06-10 09:34:17 UTC
Note that we would need a bug per each OSP release, but this is a security bug and it has a slightly different handling process.

Please refer to the tracker bug from the security team:

and more important the original OSP10 bug: 

*** This bug has been marked as a duplicate of bug 1842748 ***