Bug 1686517 - [ACTIVE-STANDBY]- openstack-octavia: Private keys written to world-readable log files
Summary: [ACTIVE-STANDBY]- openstack-octavia: Private keys written to world-readable l...
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: Red Hat OpenStack
Classification: Red Hat
Component: openstack-octavia
Version: 13.0 (Queens)
Hardware: Unspecified
OS: Unspecified
low
medium
Target Milestone: z7
: 13.0 (Queens)
Assignee: Nir Magnezi
QA Contact: Alexander Stafeyev
URL:
Whiteboard:
Depends On: 1676473
Blocks: 1698576
TreeView+ depends on / blocked
 
Reported: 2019-03-07 15:51 UTC by Nir Magnezi
Modified: 2019-09-10 14:12 UTC (History)
8 users (show)

Fixed In Version: openstack-octavia-2.0.4-5.el7ost
Doc Type: Bug Fix
Doc Text:
Previously, keys and certificates used for internal workflow communication with octavia amphorae were unencrypted. This update adds a new option, `server_certs_key_passphrase`, in the certificates section to address this.
Clone Of: 1676473
Environment:
Last Closed: 2019-07-10 13:02:00 UTC
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
OpenStack gerrit 641268 0 'None' MERGED Encrypt certs and keys 2020-05-14 14:02:54 UTC
OpenStack gerrit 641279 0 'None' MERGED Encrypt certs and keys 2020-05-14 14:02:54 UTC
Red Hat Product Errata RHBA-2019:1744 0 None None None 2019-07-10 13:02:12 UTC

Comment 11 errata-xmlrpc 2019-07-10 13:02:00 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2019:1744
Note You need to log in before you can comment on or make changes to this bug.