[release-announce] ironic-inspector 8.0.3 (rocky)
no-reply at openstack.org
no-reply at openstack.org
Wed May 22 16:25:36 UTC 2019
We are thrilled to announce the release of:
ironic-inspector 8.0.3: Hardware introspection for OpenStack Bare
Metal
This release is part of the rocky stable release series.
The source is available from:
https://opendev.org/openstack/ironic-inspector
Download the package from:
https://tarballs.openstack.org/ironic-inspector/
Please report issues through:
https://storyboard.openstack.org/#!/project/944
For more details, please see below.
8.0.3
^^^^^
Security Issues
***************
* Fixes insufficient input filtering when looking up a node by
information from the introspection data. It could potentially allow
SQL injections via the "/v1/continue" API endpoint. See story
2005678 (https://storyboard.openstack.org/#!/story/2005678) for
details.
Bug Fixes
*********
* Fix starting inspection of node having IPv6 BMC address.
Inspection could not be initiated because v6 address was being
considered as a hostname. Thus resolving incorrect hostname ended up
with blocking error.
Changes in ironic-inspector 8.0.2..8.0.3
----------------------------------------
97f9d34 Eliminate SQL injection vulnerability in node_cache
f73967f OpenDev Migration Patch
de754cc Replace openstack.org git:// URLs with https://
f66e207 Fix lookup when ipmi_address is a hostname
40abe1b Use getaddrinfo instead of gethostbyname while resolving BMC address
Diffstat (except docs and test files)
-------------------------------------
.gitreview | 2 +-
ironic_inspector/common/ironic.py | 37 +++++++++++----
ironic_inspector/introspect.py | 5 +-
ironic_inspector/node_cache.py | 15 +++---
ironic_inspector/plugins/discovery.py | 3 +-
ironic_inspector/test/unit/test_common_ironic.py | 53 ++++++++++++++--------
ironic_inspector/test/unit/test_introspect.py | 45 ++++++++++++++----
ironic_inspector/test/unit/test_node_cache.py | 5 ++
.../legacy/ironic-inspector-grenade-dsvm/run.yaml | 18 ++++----
.../run.yaml | 12 ++---
.../ironic-inspector-tempest-dsvm-python3/run.yaml | 10 ++--
...find-node-input-filtering-e8ea529252e80739.yaml | 7 +++
...-address-start-inspection-7a72794f25eb9f19.yaml | 7 +++
zuul.d/legacy-ironic-inspector-jobs.yaml | 4 +-
14 files changed, 154 insertions(+), 69 deletions(-)
More information about the Release-announce
mailing list