openstack/swift
Code Issues Proposed changes
2d063cd61f
swift/doc/source
History
Matthew Oliver 2d063cd61f formpost: deprecate sha1 signatures 
We've known this would eventually be necessary for a while [1], and
way back in 2017 we started seeing SHA-1 collisions [2].

This patch follows the approach of soft deprecation of SHA1 in tempurl.
It's still a default digest, but we'll start with warning as the
middleware is loaded and exposing any deprecated digests
(if they're still allowed) in /info.

Further, because there is much shared code between formpost and tempurl, this
patch also goes and refactors shared code out into swift.common.digest.
Now that we have a digest, we also move digest related code:
 - get_hmac
 - extract_digest_and_algorithm

[1] https://www.schneier.com/blog/archives/2012/10/when_will_we_se.html
[2] https://security.googleblog.com/2017/02/announcing-first-sha1-collision.html

Change-Id: I581cadd6bc79e623f1dae071025e4d375254c1d9
2022-07-26 10:39:58 +10:00
..
_extra
added .htaccess redirect file for docs
2017-07-27 14:06:51 -07:00
admin
Deprecate LogAdapter.set_statsd_prefix
2022-02-07 17:46:06 +00:00
api
tempurl: Deprecate sha1 signatures
2022-04-22 20:43:01 +10:00
config
reconstructor: restrict max objects per revert job
2021-12-03 12:43:23 +00:00
contributor
Switch IRC references from freenode to OFTC
2021-06-01 08:13:56 -07:00
images
Add container sharding documentation
2018-05-18 18:48:22 +01:00
install
Add a reminder to configure firewall at storage nodes
2020-07-13 18:33:15 -05:00
ops_runbook
Replace Chinese punctuation with English punctuation
2018-01-25 05:33:04 +00:00
account.rst
Alphabetized items under other sections in source documentation
2014-02-21 10:59:29 -07:00
admin_guide.rst
Add and pipe reconstructor stats through recon
2021-08-20 00:03:40 +00:00
apache_deployment_guide.rst
Clean up apache deployment docs
2020-10-01 16:04:55 -05:00
associated_projects.rst
Doc: Update links in associated projects
2022-04-19 20:03:06 +09:00
audit_watchers.rst
Create a separate doc for audit watcher
2021-01-06 17:38:45 +00:00
conf.py
Switch to newer openstackdocstheme and reno versions
2020-06-03 08:31:04 +02:00
container.rst
Add container sharding documentation
2018-05-18 18:48:22 +01:00
cors.rst
Fix the duplicated words issue like "the the "
2020-01-06 10:34:42 +08:00
crossdomain.rst
Fix misspellings in swift
2014-02-20 16:15:48 +08:00
db.rst
Initial commit of Swift code
2010-07-12 17:03:45 -05:00
deployment_guide.rst
Fix the sysctl parameter used to tune connections
2021-07-21 15:00:13 -03:00
development_auth.rst
Merge "Fix incorrect kwarg in auth middleware example"
2015-12-18 22:04:47 +00:00
development_guidelines.rst
s3api tests: allow AWS credential file loading
2022-06-01 21:46:41 -07:00
development_middleware.rst
Trim sensitive information in the logs (CVE-2017-8761)
2022-02-09 10:53:46 +00:00
development_ondisk_backends.rst
Fix six typos on swift documentation
2015-07-24 17:11:49 +09:00
development_saio.rst
Make SAIO reconciler multiprocess
2021-10-22 16:28:40 -07:00
development_watchers.rst
Create a separate doc for audit watcher
2021-01-06 17:38:45 +00:00
first_contribution_swift.rst
Merge "Fixing broken links"
2019-08-16 12:21:57 +00:00
getting_started.rst
py3: Update Getting Started docs
2019-08-29 16:55:27 -07:00
howto_installmultinode.rst
Fix the incorrect reference links
2018-02-26 15:49:10 +08:00
index.rst
Create a separate doc for audit watcher
2021-01-06 17:38:45 +00:00
logs.rst
proxy-logging: Allow to add domain in log messages
2022-06-22 10:45:01 -07:00
middleware.rst
Middleware that allows a user to have quoted Etags
2020-01-27 12:53:35 -08:00
misc.rst
formpost: deprecate sha1 signatures
2022-07-26 10:39:58 +10:00
object.rst
Clarify usage of replicator and reconstructor override options
2017-07-26 12:53:46 +01:00
overview_acl.rst
PDF Documentation Build tox target
2019-10-01 15:47:11 -07:00
overview_architecture.rst
Add container sharding documentation
2018-05-18 18:48:22 +01:00
overview_auth.rst
Swauth is retired
2022-04-19 19:50:23 +09:00
overview_backing_store.rst
Fix indentation in overview_backin_store.rst
2018-05-02 16:24:27 +02:00
overview_container_sharding.rst
sharidng: update doc to only mention auto_shard experimental
2021-10-19 12:53:04 +11:00
overview_container_sync.rst
container-sync: Sync static links similar to how we sync SLOs
2020-01-24 17:15:57 -08:00
overview_encryption.rst
docs: Clarify that encryption should not be in reconciler pipeline
2021-01-21 15:39:35 -06:00
overview_erasure_code.rst
fix ec overview doc formatting
2019-08-14 18:00:50 +02:00
overview_expiring_objects.rst
Replace dequeue_from_legacy_queue in documentation
2021-03-12 23:06:13 -06:00
overview_global_cluster.rst
Write-affinity aware object deletion
2017-06-27 22:42:02 +12:00
overview_large_objects.rst
Allow DLO manifest to be updated when using post-as-copy
2016-08-21 00:09:09 -05:00
overview_policies.rst
Update docs to discourage policy names being numbers
2021-03-26 09:17:34 +00:00
overview_reaper.rst
Fixed inconsistent naming conventions
2016-07-07 21:40:21 +00:00
overview_replication.rst
Fixed inconsistent naming conventions
2016-07-07 21:40:21 +00:00
overview_ring.rst
PDF Documentation Build tox target
2019-10-01 15:47:11 -07:00
policies_saio.rst
Update SAIO & docker image to use 62xx ports
2020-07-20 15:17:12 -07:00
proxy.rst
Alphabetized items under other sections in source documentation
2014-02-21 10:59:29 -07:00
ratelimit.rst
Fixed inconsistent naming conventions
2016-07-07 21:40:21 +00:00
replication_network.rst
Update SAIO & docker image to use 62xx ports
2020-07-20 15:17:12 -07:00
ring_background.rst
Add "historical document" note to ring background docs
2018-11-02 17:21:19 +00:00
ring_partpower.rst
relinker: use abs path index in part power replace
2021-03-17 12:29:23 +00:00
ring.rst
Fix a few Sphinx warnings
2019-06-03 22:01:13 -05:00
s3_compat.rst
docs: s3api doesn't support tagging
2020-06-02 21:51:00 -07:00
test-cors.html
move cors-test-page to literal include
2014-03-17 21:09:22 -07:00