ae7c87f54a
Octavia creates certificates and keys to manage encrypted communication channel to amphorae. When debug is enabled, the python taskflow module will log all the information we provide to tasks (and sub-flows) when we create amphorae or handle with anything related to certificates and keys management (rotations, etc). There are ways to tell taskflow to exclude specific things from being logged (e.g., I136081045787c1bbe3ee846d5845a34201c57864). While this handles some information in specific flows from being logged, it is susceptive to code changes. To avoid an everlasting whack-a-mole game, this patch will merely encrypt sensitive information so we can safely log it and decrypts it only when we need to use it. Change-Id: I06d329ca53bc36bd27f7870ae7c7ca0cf18575b2
16 lines
736 B
YAML
16 lines
736 B
YAML
---
|
|
security:
|
|
- |
|
|
As a followup to the fix that resolved CVE-2018-16856, Octavia will now
|
|
encrypt certificates and keys used for secure communication with amphorae,
|
|
in its internal workflows. Octavia used to exclude debug-level log prints
|
|
for specific tasks and flows that were explicitly specified by name, a
|
|
method that is susceptive to code changes.
|
|
other:
|
|
- |
|
|
Added a new option named server_certs_key_passphrase under the certificates
|
|
section. The default value gets copied from an environment variable named
|
|
TLS_PASS_AMPS_DEFAULT. In a case where TLS_PASS_AMPS_DEFAULT is not set,
|
|
and the operator did not fill any other value directly,
|
|
'insecure-key-do-not-use-this-key' will be used.
|