Sean McGinnis 4137c33922 Use defusedxml for XML parsing
The built-in xml module has some vulnerabilities to several known
XML attacks. While the chances of this are limited with the way
it is being used by some of the volume drivers, it is still a
security risk that has been identified and has a mostly painless
way to be mitigated with the defusedxml package [1].

There are still some drivers performing XML parsing that are not
covered by this patch. They need closer analysis to see how to
best switch to the defusedxml equivalents.

This patch covers the instances where it was a mostly drop in and
replace from the native xml functionality to the defusedxml
alternatives.

[1] https://github.com/tiran/defusedxml/blob/master/README.md

Change-Id: I083fc23eab6f712264919a250c6fb57cc0f6a11b
Partial-bug: #1732155
2017-12-16 17:44:14 -06:00
2017-12-16 17:44:14 -06:00
2017-10-04 13:59:01 -06:00
2017-10-13 08:37:57 +00:00
2012-05-03 10:48:26 -07:00
2017-10-10 00:46:42 +00:00
2012-05-03 10:48:26 -07:00
2017-11-21 21:06:13 +01:00
2017-04-08 15:03:44 +08:00
2017-09-07 11:55:44 +08:00
2012-05-03 10:48:26 -07:00
2015-06-11 17:19:19 +02:00
2017-07-13 12:12:20 +00:00
2017-03-02 23:53:29 +00:00
2017-12-11 10:25:29 -06:00

Team and repository tags

image

CINDER

You have come across a storage service for an open cloud computing service. It has identified itself as Cinder. It was abstracted from the Nova project.

Getting Started

If you'd like to run from the master branch, you can clone the git repo:

git clone https://git.openstack.org/openstack/cinder.git

For developer information please see HACKING.rst

You can raise bugs here https://bugs.launchpad.net/cinder

Python client

https://git.openstack.org/cgit/openstack/python-cinderclient

Description
OpenStack Block Storage (Cinder)
Readme 913 MiB
Languages
Python 99.7%
Smarty 0.3%