We are thrilled to announce the release of: kolla 11.3.0: Kolla OpenStack Deployment This release is part of the victoria stable release series. The source is available from: https://opendev.org/openstack/kolla Download the package from: https://tarballs.openstack.org/kolla/ Please report issues through: https://bugs.launchpad.net/kolla/+bugs For more details, please see below. 11.3.0 ^^^^^^ New Features ************ * Adds Cyrus SASL packages necessary for the DIGEST-MD5 and SCRAM- SHA-256 mechanisms. These can be used for libvirt SASL authentication. LP#1964013 * Quiet mode (enabled with "--quiet" argument) can be combined with " --logs-dir" option now. Console output will be quiet as expected while building output will be stored in separate log files. Critical Issues *************** * CentOS Linux 8 (non-Stream) support has been dropped, since repositories have been removed from CentOS mirrors - see announcement (https://www.centos.org/centos-linux-eol/). Security Issues *************** * Adds mitigation for Apache Log4j 2 Remote Code Execution (RCE) vulnerabilities CVE-2021-44228 and CVE-2021-45046 to Apache Storm. Bug Fixes ********* * Fixes an issue with Ironic deployments using UEFI and iPXE, where the default UEFI iPXE bootloader in Ironic was not available in the TFTP server. This affects all Kolla releases on CentOS, and Xena on Debian/Ubuntu. LP#1959203 * Installs "glusterfs-client" in Debian and Ubuntu "manila-share" images to support GlusterFS across supported distributions. LP#1964140 * Fixes an issue when older version of Python OpenvSwitch bindings package was used, than the running OpenvSwitch code. LP#1961874 * Fix AArch64 ubuntu ironic-python-agent images UEFI PXE booting failure. Also fix x86_64 lacking of GRUB efi files issue. LP#1879265 * Fixes disabling the use of the "curlrc" configuration file in "healthcheck_curl". LP#1967272 * Fixes an issue seen when using Jinja2 3.1.0. * Fixes an issue with missing Magnum Keystone auth default policy. LP#1957159 * Fixes set_configs.py configuring same permission for directories and files, causing directories lacking execute permission if not set for files. Changes in kolla 11.2.1..11.3.0 ------------------------------- a83002b3f enable logging to file for quiet mode 238c56f53 Fix disabling of curlrc in healthcheck_curl a7ff9f6c0 elasticsearch: install Java first on CentOS too ca4952780 libvirt: add Cyrus SASL packages for DIGEST-MD5 1ea5c73d6 Install glusterfs-client in Debuntu 61f1705bc Use python3-openvswitch from distro 9b1ff36ac Ensure set_configs sets execute bit on directories 674aede28 erlang: use packages from Erlang Solutions on AArch64 545fed783 collectd: pcie-errors is x86-64 only now 07a4e434d base: Drop usage of Ceph Nautilus from RDO 77d683caa ironic: Fix UEFI & iPXE bootloader filenames 07f519996 Drop CentOS Linux 8 image builds 02f5222b0 Use distro provided GRUB efi 56f494230 openstack-base: drop anyjson 891396f7b Mitigate two Log4j vulnerabilities in Apache Storm ca6951744 magnum: fix issue with keystone auth default policy Diffstat (except docs and test files) ------------------------------------- .zuul.d/centos.yaml | 86 ---------------------- kolla/common/config.py | 12 +-- kolla/common/utils.py | 34 ++++++--- kolla/template/filters.py | 9 ++- kolla/template/methods.py | 8 +- kolla/template/repos.yaml | 2 +- .../notes/bug-1959203-1bb695e052248d78.yaml | 8 ++ .../notes/bug-1964140-57b433329bab067e.yaml | 6 ++ .../notes/centos-8-eol-4500333b5e01f448.yaml | 6 ++ .../notes/distro-python-ovs-df705d1e59f16cde.yaml | 6 ++ ...n-agent-pxe-booting-issue-95adaf9249207d5b.yaml | 6 ++ ...check-curl-disable-curlrc-0f85aad47379e2a5.yaml | 5 ++ .../jinja2-pass-context-3f3febcd944e3a51.yaml | 4 + .../notes/libvirt-sasl-07a8a1a25d2450c6.yaml | 6 ++ ...stone-auth-default-policy-e16f7bb558aa4b14.yaml | 5 ++ .../quiet-mode-with-logs-0abafc07923945ac.yaml | 6 ++ ...ectory-execute-permission-8ab919b7b17025d2.yaml | 5 ++ ...-vulnerability-mitigation-6746a8a0bb329485.yaml | 5 ++ 41 files changed, 253 insertions(+), 183 deletions(-)
participants (1)
-
no-reply@openstack.org