We enthusiastically announce the release of: heat 8.0.7: OpenStack Orchestration This release is part of the ocata stable release series. Download the package from: https://tarballs.openstack.org/heat/ For more details, please see below. 8.0.7 ^^^^^ Security Issues * Passwords generated by the OS::Heat::RandomString resource may have had less entropy than expected, depending on what is specified in the "character_class" and "character_sequence" properties. This has been corrected so that each character present in any of the specified classes or sequences now has an equal probability of appearing at each point in the generated random string. * Heat no longer uses standard Python RNG when generating values for OS::Heat::RandomString resource, and instead relies on system's RNG for that. Changes in heat 8.0.6..8.0.7 ---------------------------- 0187203 Ignore RESOLVE translation errors when translating before_props 41fd131 Ignore NotFound error in prepare_for_replace 472c710 Update test image 73361b4 Generate user passwords with special characters 8ce005c Fix entropy problems with OS::Random::String de568e0 Replace random with SystemRandom for RandomString b9a2f48 Add .testr.conf to work with latest Tempest 2bf19f5 Zuul: Remove project name 9ef06cc Fix non-destructive upgrade for deprecated res types in convergence fe3bffa Migrate functional jobs to Zuul v3 475051b Install guide bug fix: incorrect auth_uri for ec2authtoken Diffstat (except docs and test files) ------------------------------------- .zuul.yaml | 92 ++++++++++++++++ heat/common/password_gen.py | 117 ++++++++++++++++++++ .../clients/os/keystone/heat_keystoneclient.py | 5 +- heat/engine/resource.py | 45 +++++--- .../resources/openstack/heat/random_string.py | 95 ++++------------ .../openstack/heat/wait_condition_handle.py | 5 +- heat/engine/resources/openstack/neutron/port.py | 12 +- heat/engine/resources/server_base.py | 3 +- heat/engine/resources/signal_responder.py | 7 +- heat/engine/translation.py | 74 ++++++++----- .../functional/test_replace_deprecated.py | 12 +- install-guide/source/install-obs.rst | 2 +- install-guide/source/install-rdo.rst | 2 +- install-guide/source/install-ubuntu.rst | 2 +- playbooks/devstack/functional/post.yaml | 15 +++ playbooks/devstack/functional/run.yaml | 120 ++++++++++++++++++++ .../random-string-entropy-9b8e23874cd79b8f.yaml | 9 ++ .../system-random-string-38a14ae2cb6f4a24.yaml | 6 + 27 files changed, 669 insertions(+), 160 deletions(-)