[release-announce] [tripleo] puppet-tripleo 8.3.1 (queens)

no-reply at openstack.org no-reply at openstack.org
Mon Mar 26 19:00:37 UTC 2018 

We are overjoyed to announce the release of:

puppet-tripleo 8.3.1: Puppet module for OpenStack TripleO

This release is part of the queens release series.

The source is available from:

    http://git.openstack.org/cgit/openstack/puppet-tripleo

Download the package from:

    https://tarballs.openstack.org/puppet-tripleo/

Please report issues through launchpad:

    http://bugs.launchpad.net/tripleo (tag: puppet)

For more details, please see below.

8.3.1
^^^^^


New Features
************

* Add support via hiera keys like
  'tripleo::haproxy::${name}::listen_options' to customize the options
  of an haproxy service stanza. For example passing the by setting the
  'tripleo::haproxy::cinder::options' hiera key to a hash made
  composed of: 'timeout client': '90m' 'timeout server': '90m'


Security Issues
***************

* TLS v1.0 connections are no longer accepted by our HAProxy
  configuration.


Bug Fixes
*********

* Fixes a bug where TLS certificates for ODL could not be generated
  correctly for deployment due to wrong owner/group applied to the
  files.

Changes in puppet-tripleo 8.3.0..8.3.1
--------------------------------------

933e386 Release 8.3.1 (queens)
4105d44 Replace perl with awk
a364a9d Fixes incorrect ownership of ODL TLS cert/key
be6b5ca Pin puppet-collectd
ea2ce7d Allow custom per-service listen_options for haproxy
08792df Create vhost_socket_dir with proper permissions
61deef7 Extract local CA if it expired
fb7a34b Disallow TLS v1.0 from HAProxy
4143238 firewall: don't reload IPtables after cleanup
3a443b3 Pin puppet-systemd
9454f38 Fix stack update with rabbitmq containers
bce78ef Correct Neutron RabbitMQ User Param Mapping
2083903 Ensure ip_forward set before Docker
9868c03 Reload iptables instead of restart
ed3285e Update UPPER_CONSTRAINTS_FILE for stable/queens
88a34af Update .gitreview for stable/queens


Diffstat (except docs and test files)
-------------------------------------

.gitreview                                         |  1 +
Puppetfile_extras                                  |  6 +-
manifests/certmonger/ca/local.pp                   |  2 +-
manifests/certmonger/opendaylight.pp               |  4 --
manifests/firewall.pp                              | 32 ++++-----
manifests/haproxy.pp                               |  4 +-
manifests/haproxy/endpoint.pp                      | 10 +--
manifests/haproxy/horizon_endpoint.pp              | 10 +--
manifests/profile/base/docker.pp                   |  3 +
manifests/profile/base/neutron.pp                  |  8 +--
manifests/profile/base/neutron/ovs.pp              |  4 +-
.../base/neutron/plugins/ovs/opendaylight.pp       | 47 +++++++++++---
manifests/profile/base/rabbitmq.pp                 | 24 ++++---
metadata.json                                      |  2 +-
.../notes/No-TLS-v1.0-0edeac680bb51f94.yaml        |  4 ++
.../notes/fix-odl-tls-owner-77d2d71fe39ea3e7.yaml  |  5 ++
...r-service-options-haproxy-75f5f00cf5243ecb.yaml |  9 +++
spec/classes/tripleo_certmonger_ca_local_spec.rb   |  2 +-
.../tripleo_certmonger_opendaylight_spec.rb        |  4 --
...o_profile_base_neutron_ovs_opendaylight_spec.rb | 75 +++++++++++++++-------
.../tripleo_profile_base_neutron_ovs_spec.rb       | 14 ++--
spec/defines/tripleo_haproxy_endpoint_spec.rb      | 13 ++--
spec/fixtures/hieradata/default.yaml               |  8 +++
spec/fixtures/hieradata/step4.yaml                 |  2 -
templates/logrotate/containers_logrotate.conf.erb  |  2 +-
tox.ini                                            |  2 +-
26 files changed, 191 insertions(+), 106 deletions(-)

More information about the Release-announce mailing list