oslo.cache 3.7.0 (caracal)

26 Feb 2024

We are happy to announce the release of:

oslo.cache 3.7.0: Cache storage for OpenStack projects.

This release is part of the caracal release series.

The source is available from:

    https://opendev.org/openstack/oslo.cache

Download the package from:

    https://pypi.org/project/oslo.cache

Please report issues through:

    https://bugs.launchpad.net/oslo.cache/+bugs

For more details, please see below.

3.7.0
^^^^^


New Features
************

* Adding a new option, "[cache] enforce_fips_mode", to the rabbitmq
  driver to enforce the OpenSSL FIPS mode if supported by the version
  of Python.

* The following new options are added. These options are used to
  customize connections in the "dogpile.cache.redis" backend.

  * "redis_server"

  * "redis_username"

  * "redis_password"

  * "redis_socket_timeout"

* Now Redis Sentinel is supported as a cache backend.

* When the "dogpile.cache.redis" backend is used and the "[cache]
  tls_enable" option is set to True, now the following "[cache]"
  options set tls certificates and keys used for TLS communication
  with Redis.

  * "tls_cafile"

  * "tls_certfile"

  * "tls_keyfile"


Upgrade Notes
*************

* The "[cache] memcache_socket_timeout" option no longer takes
  affect in when the "dogpile.cache.redis" backend, which is the
  documented behavior. Use the "[cache] redis_socket_timeout" option
  instead.


Security Issues
***************

* We are now able to enforce the OpenSSL FIPS mode by using "[cache]
  enforce_fips_mode".

Changes in oslo.cache 3.6.0..3.7.0
----------------------------------

e8de6c9 Fix incomplete exception message
29d1ab7 Prevent potential ReDoS attack
76d414e config: Document backends supporting specific options
5475c35 Ensure requirements are capped by upper constraints
2318610 Display coverage report
ce6e4ba reno: Update master for unmaintained/yoga
6c73ace redis: Add functional tests
7bb43bb Add support for Redis Sentinel backend
2841125 Add native options for redis backend
ced97d2 memcache: Remove "default" username and password
31201ce Automate TLS certificates settings for redis backend
f1950fd Fail if tls_enabled is True but backend does not support it
af77d1d Fix minor typos in parameter help texts
124d50e pre-commit: Integrate bandit
7dbde1a pre-commit: Bump versions
8d5eabc Bump hacking (again)
f438770 Add a new option to enforce the OpenSSL FIPS mode
a977dd9 Bump hacking
3aae0ac Update python classifier in setup.cfg
bae5561 Clean-up memcache connection sockets
cfb4985 Cleanup py27 support


Diffstat (except docs and test files)
-------------------------------------

.pre-commit-config.yaml                            |  29 +--
.zuul.yaml                                         |  28 ++-
bindep.txt                                         |   3 +
oslo_cache/_memcache_pool.py                       |  21 ++
oslo_cache/_opts.py                                |  51 ++++-
oslo_cache/backends/memcache_pool.py               |   6 +
oslo_cache/core.py                                 | 213 +++++++++++++----
.../functional/dogpile_cache_redis/__init__.py     |   0
.../dogpile_cache_redis/test_cache_backend.py      |  29 +++
.../dogpile_cache_redis_sentinel/__init__.py       |   0
.../test_cache_backend.py                          |  30 +++
.../notes/enforce_fips_mode-c3296a0cc1fb7ad9.yaml  |   9 +
.../notes/redis-backend-opts-27915f2b672512c9.yaml |  16 ++
.../notes/redis-sentinel-18ba4a0da83dabc7.yaml     |   4 +
releasenotes/notes/redis-ssl-ca14b4b99c2e5a84.yaml |  11 +
releasenotes/source/yoga.rst                       |   2 +-
requirements.txt                                   |   4 -
setup.cfg                                          |   2 +
setup.py                                           |   8 -
test-requirements.txt                              |   8 +-
tox.ini                                            |  10 +-
25 files changed, 659 insertions(+), 102 deletions(-)


Requirements updates
--------------------

diff --git a/requirements.txt b/requirements.txt
index 3b49fad..410731a 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -1,4 +0,0 @@
-# The order of packages is significant, because pip processes them in the order
-# of appearance. Changing the order has an impact on the overall integration
-# process, which may cause wedges in the gate later.
-
diff --git a/test-requirements.txt b/test-requirements.txt
index ddfe4fc..e60f707 100644
--- a/test-requirements.txt
+++ b/test-requirements.txt
@@ -1,4 +0,0 @@
-# The order of packages is significant, because pip processes them in the order
-# of appearance. Changing the order has an impact on the overall integration
-# process, which may cause wedges in the gate later.
-hacking>=3.0.1,<3.1.0 # Apache-2.0
@@ -7,2 +2,0 @@ pifpaf>=0.10.0 # Apache-2.0
-# Bandit security code scanner
-bandit>=1.7.0,<1.8.0 # Apache-2.0
@@ -10 +3,0 @@ stestr>=2.0.0 # Apache-2.0
-pre-commit>=2.6.0 # MIT
@@ -15,0 +9 @@ etcd3gw>=0.2.0 # Apache-2.0
+redis>=3.0.0 # MIT

    

no-reply＠openstack.org

tags

participants (1)