VMware: insecure option should be exposed

author Eric Brown <browne@vmware.com>

Tue, 5 May 2015 01:42:48 +0000 (18:42 -0700)

committer Eric Brown <browne@vmware.com>

Wed, 27 May 2015 16:32:09 +0000 (16:32 +0000)
author Eric Brown <browne@vmware.com>
Tue, 5 May 2015 01:42:48 +0000 (18:42 -0700)
committer Eric Brown <browne@vmware.com>
Wed, 27 May 2015 16:32:09 +0000 (16:32 +0000)
diff --git a/cinder/tests/unit/test_vmware_vmdk.py b/cinder/tests/unit/test_vmware_vmdk.py

index 761525a34672f64900bba22aec9734cd74bedad4..eb1f68b07a9ff3004227370a626d72798b273736 100644 (file)
--- a/cinder/tests/unit/test_vmware_vmdk.py
+++ b/cinder/tests/unit/test_vmware_vmdk.py
@@ -165,6 +165,7 @@ class VMwareEsxVmdkDriverTestCase(test.TestCase):
          self._config.vmware_max_objects_retrieval = self.MAX_OBJECTS
          self._config.vmware_tmp_dir = self.TMP_DIR
          self._config.vmware_ca_file = self.CA_FILE
+        self._config.vmware_insecure = False
          self._db = mock.Mock()
          self._driver = vmdk.VMwareEsxVmdkDriver(configuration=self._config,
                                                  db=self._db)
@@ -2851,7 +2852,8 @@ class VMwareVcVmdkDriverTestCase(VMwareEsxVmdkDriverTestCase):
              self._config.vmware_task_poll_interval,
              wsdl_loc=self._config.safe_get('vmware_wsdl_location'),
              pbm_wsdl_loc=None,
-            cacert=self._config.vmware_ca_file)
+            cacert=self._config.vmware_ca_file,
+            insecure=self._config.vmware_insecure)
  
  
  class ImageDiskTypeTest(test.TestCase):
diff --git a/cinder/volume/drivers/vmware/vmdk.py b/cinder/volume/drivers/vmware/vmdk.py

index af7600dab851b52325769f544c56a25ba97cf1b4..fbed40ac908d4a112690da84c4388150cc4e0ed9 100644 (file)
--- a/cinder/volume/drivers/vmware/vmdk.py
+++ b/cinder/volume/drivers/vmware/vmdk.py
@@ -109,7 +109,14 @@ vmdk_opts = [
                      'backup and restore.'),
      cfg.StrOpt('vmware_ca_file',
                 default=None,
-               help='CA bundle file to verify vCenter server certificate.')
+               help='CA bundle file to use in verifying the vCenter server '
+                    'certificate.'),
+    cfg.BoolOpt('vmware_insecure',
+                default=False,
+                help='If true, the vCenter server certificate is not '
+                     'verified. If false, then the default CA truststore is '
+                     'used for verification. This option is ignored if '
+                     '"vmware_ca_file" is set.'),
  ]
  
  CONF = cfg.CONF
@@ -1888,12 +1895,14 @@ class VMwareVcVmdkDriver(VMwareEsxVmdkDriver):
              wsdl_loc = self.configuration.safe_get('vmware_wsdl_location')
              pbm_wsdl = self.pbm_wsdl if hasattr(self, 'pbm_wsdl') else None
              ca_file = self.configuration.vmware_ca_file
+            insecure = self.configuration.vmware_insecure
              self._session = api.VMwareAPISession(ip, username,
                                                   password, api_retry_count,
                                                   task_poll_interval,
                                                   wsdl_loc=wsdl_loc,
                                                   pbm_wsdl_loc=pbm_wsdl,
-                                                 cacert=ca_file)
+                                                 cacert=ca_file,
+                                                 insecure=insecure)
          return self._session
  
      def _get_vc_version(self):
author	Eric Brown <browne@vmware.com>
	Tue, 5 May 2015 01:42:48 +0000 (18:42 -0700)
committer	Eric Brown <browne@vmware.com>
	Wed, 27 May 2015 16:32:09 +0000 (16:32 +0000)
cinder/tests/unit/test_vmware_vmdk.py		patch \| blob \| history
cinder/volume/drivers/vmware/vmdk.py		patch \| blob \| history