Merge "monkeypatch cms Popen"

author: Jenkins <jenkins@review.openstack.org> 2012-11-08 03:59:29 +0000
committer: Gerrit Code Review <review@openstack.org> 2012-11-08 03:59:29 +0000
commit: e57249095635cd8cbbfacfd2616eadcd4c2f97cf (patch)
tree: e26770670cce00a5c35a0918a6e4e178a7d3c2e2 /keystone
parent: 7696aaa5bbc4d250d0c4218e6478e6ff6c7e3adc (diff)
parent: ef65550328ced10be85da2370dfc64b46dfc6071 (diff)
download: keystone-e57249095635cd8cbbfacfd2616eadcd4c2f97cf.tar.gz
keystone-e57249095635cd8cbbfacfd2616eadcd4c2f97cf.tar.xz
keystone-e57249095635cd8cbbfacfd2616eadcd4c2f97cf.zip
1 files changed, 22 insertions, 18 deletions
diff --git a/keystone/common/cms.py b/keystone/common/cms.py
index 4340b897..68d3a230 100644
--- a/keystone/common/cms.py
+++ b/keystone/common/cms.py
@@ -1,5 +1,9 @@
 import hashlib
 import subprocess
+#Importing Popen directly knowingly goes against the coding standard
+#It is required due to the need to Monkeypatch the cms use of Popen when
+#running in eventlet.
+from subprocess import Popen
 
 from keystone.common import logging
 
@@ -12,15 +16,15 @@ def cms_verify(formatted, signing_cert_file_name, ca_file_name):
     """
         verifies the signature of the contents IAW CMS syntax
     """
-    process = subprocess.Popen(["openssl", "cms", "-verify",
-                                "-certfile", signing_cert_file_name,
-                                "-CAfile", ca_file_name,
-                                "-inform", "PEM",
-                                "-nosmimecap", "-nodetach",
-                                "-nocerts", "-noattr"],
-                               stdin=subprocess.PIPE,
-                               stdout=subprocess.PIPE,
-                               stderr=subprocess.PIPE)
+    process = Popen(["openssl", "cms", "-verify",
+                    "-certfile", signing_cert_file_name,
+                    "-CAfile", ca_file_name,
+                    "-inform", "PEM",
+                    "-nosmimecap", "-nodetach",
+                    "-nocerts", "-noattr"],
+                    stdin=subprocess.PIPE,
+                    stdout=subprocess.PIPE,
+                    stderr=subprocess.PIPE)
     output, err = process.communicate(formatted)
     retcode = process.poll()
     if retcode:
@@ -102,15 +106,15 @@ def cms_sign_text(text, signing_cert_file_name, signing_key_file_name):
     http://en.wikipedia.org/wiki/Cryptographic_Message_Syntax
     """
 
-    process = subprocess.Popen(["openssl", "cms", "-sign",
-                                "-signer", signing_cert_file_name,
-                                "-inkey", signing_key_file_name,
-                                "-outform", "PEM",
-                                "-nosmimecap", "-nodetach",
-                                "-nocerts", "-noattr"],
-                               stdin=subprocess.PIPE,
-                               stdout=subprocess.PIPE,
-                               stderr=subprocess.PIPE)
+    process = Popen(["openssl", "cms", "-sign",
+                    "-signer", signing_cert_file_name,
+                    "-inkey", signing_key_file_name,
+                    "-outform", "PEM",
+                    "-nosmimecap", "-nodetach",
+                    "-nocerts", "-noattr"],
+                    stdin=subprocess.PIPE,
+                    stdout=subprocess.PIPE,
+                    stderr=subprocess.PIPE)
     output, err = process.communicate(text)
     retcode = process.poll()
     if retcode or "Error" in err:
author	Jenkins <jenkins@review.openstack.org>	2012-11-08 03:59:29 +0000
committer	Gerrit Code Review <review@openstack.org>	2012-11-08 03:59:29 +0000
commit	e57249095635cd8cbbfacfd2616eadcd4c2f97cf (patch)
tree	e26770670cce00a5c35a0918a6e4e178a7d3c2e2 /keystone
parent	7696aaa5bbc4d250d0c4218e6478e6ff6c7e3adc (diff)
parent	ef65550328ced10be85da2370dfc64b46dfc6071 (diff)
download	keystone-e57249095635cd8cbbfacfd2616eadcd4c2f97cf.tar.gz keystone-e57249095635cd8cbbfacfd2616eadcd4c2f97cf.tar.xz keystone-e57249095635cd8cbbfacfd2616eadcd4c2f97cf.zip