x/vmware-nsxlib
Code Issues Proposed changes
1,220 Commits 25 Branches 38 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Shawn Wang 82f6f63fee
Add support of pinning NSX leaf cert 
In order to support cert pinning in WCP, this change adds exact cert
match for checking NSX manager authenticity. Setting "nsx_cert_der"
enables this mode, where the pritotity is below ca cert and above
thumbprints.

Currently in nsxlib, the call chain to manage HTTPs connextion is:
1. NSXHTTPAdapter (subclass of urllib3 HTTPAdapter)
2. urllib3 PoolManager
3. urllib3 HTTPSConnectionPool
4. urllib3 HTTPSConnection
In order to inject custom TLS cert validation, we have to override the
connect() function in HTTPSConnection level. Introducing a child class
of HTTPSConnectionPool is also needed to pass the new param. Pool
manager only needs overrding two attrs to allow passing the new param
and properly binding to the new child class of connection pool.

When leaf cert verification is not used, the native urllib3 behavior
will be kept to reduce regression risk.

Change-Id: Icecf30b6df3b60fbeac20cf79586827f3370ce13
2024-02-05 15:15:15 -08:00
doc
Fix requirements
2020-12-10 11:39:57 +02:00
releasenotes
Enable release notes translation
2016-10-06 20:56:37 +02:00
vmware_nsxlib
Add support of pinning NSX leaf cert
2024-02-05 15:15:15 -08:00
.coveragerc
Add coverage tests
2020-04-14 13:53:58 +02:00
.gitignore
Switch to stestr
2018-07-04 11:33:58 +07:00
.gitreview
OpenDev Migration Patch
2019-04-19 19:50:36 +00:00
.stestr.conf
migrate to stestr
2018-03-06 07:50:40 +02:00
.zuul.yaml
Drop lower-constraints job
2023-01-03 01:56:16 -08:00
babel.cfg
Add initial framework using cookiecutter
2016-08-08 20:41:29 +00:00
CONTRIBUTING.rst
change http with https
2018-02-23 11:33:49 +00:00
HACKING.rst
fix error url
2018-02-06 01:06:36 +08:00
LICENSE
Add initial framework using cookiecutter
2016-08-08 20:41:29 +00:00
MANIFEST.in
Add initial framework using cookiecutter
2016-08-08 20:41:29 +00:00
README.rst
Fix zuul config
2021-08-22 23:17:56 -07:00
requirements.txt
lower-constraints: bump pyopenssl to 21.0.0
2022-10-10 02:15:35 -07:00
run_tests.sh
Switch to stestr
2018-07-04 11:33:58 +07:00
setup.cfg
Stop testing python 2
2019-10-31 11:55:45 +00:00
setup.py
Updated from global requirements
2017-03-03 23:01:33 +00:00
test-requirements.txt
Fix requirements
2020-12-10 11:39:57 +02:00
tox.ini
Fix issues with tox 4.2.4
2023-02-13 21:30:34 -08:00

README.rst

TESt:wq

vmware-nsxlib

Features

  • TODO
Description
A common library that interfaces with VMware NSX.
Readme 15 MiB
Languages
Python 99.5%
Shell 0.5%