On Tue, May 24, 2016 at 1:15 PM, Fichter, Dane G. <dane.fich...@jhuapl.edu> wrote:
> Hi John and Matt, > > I actually have a spec and patch up for review addressing some of what > you’re referring to below. > > https://review.openstack.org/#/c/314222/ > https://review.openstack.org/#/c/312210/ > > I think you’re quite right that the existing ImageCacheManager code serves > little purpose. What I propose here is a cryptographically stronger > verification meant to protect against both deliberate modification by an > adversary, as well as accidental sources of disk corruption. If you like, I > can deprecate the checksum-based verification code in the image cache as a > part of this change. Feel free me to email me back or ping me on IRC > (dane-fichter) in order to discuss more. > Thanks Dane, reviewed. I don't think the details are right yet, but I do think this is the way to go. I also think we need to entirely divorce this functionality from the image cache. Matt -- Matthew Booth Red Hat Engineering, Virtualisation Team Phone: +442070094448 (UK)
__________________________________________________________________________ OpenStack Development Mailing List (not for usage questions) Unsubscribe: openstack-dev-requ...@lists.openstack.org?subject:unsubscribe http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev
