nova.git - OpenStack's nova patches.

diff options

author	Andrew James <andrew.james@hp.com>	2012-08-30 17:15:35 -0600
committer	Andrew James <andrew.james@hp.com>	2012-09-04 12:21:14 -0600
commit	f86b24935cf122183fcb9c523041d22071c3c0f1 (patch)
tree	48501d296b29e2336198142d2cd26b6f2e845d5a /nova/openstack
parent	0318efe625682ee8703b91f363a966200503782f (diff)
download	nova-f86b24935cf122183fcb9c523041d22071c3c0f1.tar.gz nova-f86b24935cf122183fcb9c523041d22071c3c0f1.tar.xz nova-f86b24935cf122183fcb9c523041d22071c3c0f1.zip

Escape ec2 XML error responses

Fixes bug 978439 XML error responses to ec2 calls include user supplied data that is not escaped. This could result in returning invalid XML. This is addressed by using utils.xhtml_escape() on purposeful eC2 error responses and when handling webob.exc.HTTPException. Extended the tests for utils.xhtml_escape() to cover '&', '>', '<' and a tag look-alike. These conversions are implicit to saxutils.escape(). Change-Id: Icb3e861c6c06c0d9c3b9e2ab1a658581a0fb39c6

Diffstat (limited to 'nova/openstack')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: