I just sent my +1 on the vote thread. The only valid issue I ended up with is in gce (still labs anyway) which has a negative test that expects a null value but throws an exception instead. Not really a big deal, but I will get it fixed for next release.
-- Chris Custine On October 20, 2014 at 8:28:26 AM, Andrew Phillips (aphill...@qrmedia.com(mailto:aphill...@qrmedia.com)) wrote: > @Andrew G: did you manage to find some time to have a look at the > POODLE implications for this release? > > @Chris: you mentioned that you were seeing more live test failures > than usual, and were going to investigate before voting. Have you had > a chance to do that? > > Based on this discussion in this thread on POODLE so far, I'm inclined > to not cancel the release since it seems that exploiting the SSL > downgrade would require additional vulnerabilities in jclouds (see > [1]). Of course, we should document this and fix JCLOUDS-753 asap. > > I'd like to close this vote tomorrow, if at all possible, so if either > of you have any input at this point, that would be much appreciated. > > Regards > > ap > > [1] http://markmail.org/message/25na5y3gamyacszp
