[release-announce] ironic-inspector 8.0.3 (rocky)

no-reply at openstack.org no-reply at openstack.org
Wed May 22 16:25:36 UTC 2019 

We are thrilled to announce the release of:

ironic-inspector 8.0.3: Hardware introspection for OpenStack Bare
Metal

This release is part of the rocky stable release series.

The source is available from:

    https://opendev.org/openstack/ironic-inspector

Download the package from:

    https://tarballs.openstack.org/ironic-inspector/

Please report issues through:

    https://storyboard.openstack.org/#!/project/944

For more details, please see below.

8.0.3
^^^^^


Security Issues
***************

* Fixes insufficient input filtering when looking up a node by
  information from the introspection data. It could potentially allow
  SQL injections via the "/v1/continue" API endpoint. See story
  2005678 (https://storyboard.openstack.org/#!/story/2005678) for
  details.


Bug Fixes
*********

* Fix starting inspection of node having IPv6 BMC address.
  Inspection could not be initiated because v6 address was being
  considered as a hostname. Thus resolving incorrect hostname ended up
  with blocking error.

Changes in ironic-inspector 8.0.2..8.0.3
----------------------------------------

97f9d34 Eliminate SQL injection vulnerability in node_cache
f73967f OpenDev Migration Patch
de754cc Replace openstack.org git:// URLs with https://
f66e207 Fix lookup when ipmi_address is a hostname
40abe1b Use getaddrinfo instead of gethostbyname while resolving BMC address


Diffstat (except docs and test files)
-------------------------------------

.gitreview                                         |  2 +-
ironic_inspector/common/ironic.py                  | 37 +++++++++++----
ironic_inspector/introspect.py                     |  5 +-
ironic_inspector/node_cache.py                     | 15 +++---
ironic_inspector/plugins/discovery.py              |  3 +-
ironic_inspector/test/unit/test_common_ironic.py   | 53 ++++++++++++++--------
ironic_inspector/test/unit/test_introspect.py      | 45 ++++++++++++++----
ironic_inspector/test/unit/test_node_cache.py      |  5 ++
.../legacy/ironic-inspector-grenade-dsvm/run.yaml  | 18 ++++----
.../run.yaml                                       | 12 ++---
.../ironic-inspector-tempest-dsvm-python3/run.yaml | 10 ++--
...find-node-input-filtering-e8ea529252e80739.yaml |  7 +++
...-address-start-inspection-7a72794f25eb9f19.yaml |  7 +++
zuul.d/legacy-ironic-inspector-jobs.yaml           |  4 +-
14 files changed, 154 insertions(+), 69 deletions(-)

More information about the Release-announce mailing list