diff options
author | Oleg Bondarev <obondarev@mirantis.com> | 2019-08-13 18:10:49 +0400 |
---|---|---|
committer | Akihiro Motoki <amotoki@gmail.com> | 2019-08-21 14:57:23 +0900 |
commit | 450039b7f91f37acc742413af596cc4abb5af6ae (patch) | |
tree | 2cc0958870f6cddf00231a81a91d1ea983010c25 | |
parent | 08a26a00f2f26e64ff5012c4b9a44afb9d9220d7 (diff) | |
download | python-neutronclient-450039b7f91f37acc742413af596cc4abb5af6ae.tar.gz |
Use secure sha256 instead of sha1stein-eolstein-em6.12.1stable/stein
Fix for bandit B303: Use of insecure MD2, MD4, MD5, or SHA1 hash function.
Change-Id: I00403d7bd3b40ae00420e6cddcf40f45488284a9
Partial-Bug: #1759250
(cherry picked from commit ab426a791ad1937ea2cf3b340202b3968a378978)
(cherry picked from commit 62f4868e6e240ebbb4d6e29b8c1e1d23a24fcc15)
-rw-r--r-- | neutronclient/common/utils.py | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/neutronclient/common/utils.py b/neutronclient/common/utils.py index 3a0469d..b61ee3b 100644 --- a/neutronclient/common/utils.py +++ b/neutronclient/common/utils.py @@ -183,9 +183,9 @@ def http_log_req(_logger, args, kwargs): for (key, value) in six.iteritems(kwargs['headers']): if key in SENSITIVE_HEADERS: v = value.encode('utf-8') - h = hashlib.sha1(v) + h = hashlib.sha256(v) d = h.hexdigest() - value = "{SHA1}%s" % d + value = "{SHA256}%s" % d header = ' -H "%s: %s"' % (key, value) string_parts.append(header) |