yahoo-eng-team team mailing list archive

[Marek Denis <marek.denis@xxxxxxx>]

Public bug reported:

Keystone2Keystone extension uses pysaml2 library.
Currently, one method used in Keystone, sigver.read_cert_from_file (https://github.com/openstack/keystone/blob/master/keystone/contrib/federation/idp.py#L446) doesn't properly close file descriptors (https://github.com/rohe/pysaml2/blob/master/src/saml2/sigver.py#L643)

Proposed fix: File a bug in pysaml2 and propose a fix for pysaml2
library.

** Affects: keystone
     Importance: Undecided
     Assignee: Marek Denis (marek-denis)
         Status: New

** Changed in: keystone
     Assignee: (unassigned) => Marek Denis (marek-denis)

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to Keystone.
https://bugs.launchpad.net/bugs/1368690

Title:
  Keystone2Keystone extension leaks file descriptors

Status in OpenStack Identity (Keystone):
  New

Bug description:
  Keystone2Keystone extension uses pysaml2 library.
  Currently, one method used in Keystone, sigver.read_cert_from_file (https://github.com/openstack/keystone/blob/master/keystone/contrib/federation/idp.py#L446) doesn't properly close file descriptors (https://github.com/rohe/pysaml2/blob/master/src/saml2/sigver.py#L643)

  Proposed fix: File a bug in pysaml2 and propose a fix for pysaml2
  library.

To manage notifications about this bug go to:
https://bugs.launchpad.net/keystone/+bug/1368690/+subscriptions