SUSE OpenStack Cloud 9 Beta 7 is out!

We are happy to announce the release of SUSE OpenStack Cloud 9 Beta 7!

Cloud Lifecycle Manager is available

Today we are releasing SUSE OpenStack Cloud 9 CLM along with SUSE OpenStack Cloud 9 Crowbar! You will now find it in the download area:

• SUSE-OPENSTACK-CLOUD-9-x86_64-Beta7-DVD1.iso the ISO to install Cloud 9 with Cloud Lifecycle Manager,
• SUSE-OPENSTACK-CLOUD-CROWBAR-9-x86_64-Beta7-DVD1.iso the ISO to install Cloud 9 with Crowbar,

As a reminder SUSE OpenStack Cloud comes in two flavors:

• SUSE OpenStack Cloud CLM is the default and uses the Cloud Lifecycle Manager (CLM). CLM comes with several advantages like template-based cloud definition with a built-in configuration checker, version control of cloud configurations using the industry standard git SCCS, and flexibility to extensively modify cloud configurations without requiring a cloud redeployment.
  For an introduction to Cloud Lifecycle Manager you can check out this blog post made for SUSE OpenStack Cloud 8:
  SUSE OpenStack Cloud 8 introduces new Cloud Lifecycle Manager
• SUSE OpenStack Cloud Crowbar is the continuation of prior SUSE OpenStack Cloud releases and uses the Crowbar Lifecycle Manager.

Notable changes

General

• Grafana
  • Update to version 5.3.2
  • InfluxDB/Graphite/Postgres: Prevent cross site scripting (XSS) in query editor
• mariadb
  • Version update (10.2.18 -> 10.2.21) (fixes installability issue bsc#1119809)
• openstack-horizon-plugin-monasca-ui
  • Fix the partial missing metrics in Create Alarm Definition flow
• python-Django1
  • Update to 1.11.18 (bsc#1120932, CVE-2019-3498)
  • CVE-2019-3498 — Fixed content spoofing possiblity in the default 404 page.
• python-elasticsearch
  • Downgrade to 2.4.1: this is neccessary since global-requirements specifies an upper bound of 3.0.0 and 2.4.1 is the latest version that fulfills this requirement.
• rabbitmq-server
  • Use bindsto for epmd.service activation (bsc#1118989)
• rubygem-activejob-4_2
  • • Add CVE-2018-16476.patch to address a security vulnerability (CVE-2018-16476, bsc#1117632)

  Carefully crafted user input can cause Active Job to deserialize it using GlobalId and allow an attacker to have access to information that they should not have. Vulnerable code will look something like this:

  MyJob.perform_later(user_input)
  All users running an affected release should either upgrade or use one of the workarounds immediately.

Cloud Lifecycle Manager

• ardana-ansible
  • SCRD-6812 Enable manila service in verb action list files
• ardana-cobbler
  • SCRD-5139 Add support for RHEL 7.5
• ardana-heat
  • Properly configure auth_encryption_key (bsc#1120779)
• ardana-input-model
  • SCRD-6808 Deprecate service nova-consoleauth (bsc#1121174)
  • SCRD-6075 zone and pool manger have been deprecated
  • Introduce a new var to facilitate heat auth encryption key (bsc#1120779)
• ardana-mq
  • Configure TLS/SSL for distribution (bsc#1120681)
  • Couple epmd.socket with rabbitmq-server (bsc#1118989)
• ardana-neutron
  • SCRD-6071 Ardana: neutron-ansible deprecation cleanup
• ardana-neutron
  • SCRD-6071 Ardana: neutron-ansible deprecation cleanup
• ardana-nova
  • SCRD-6808 deprecate nova-consoleauth service (bsc#1121174)
• ardana-ses
  • ReFix cinder keyring file path name (bsc#1113815)
• venv-openstack-horizon
  • Added heat-dashboard plugin

Crowbar

• crowbar-openstack
  • oslo.messaging: Fix deprecated options
  • tempest: install optional tempest plugins
  • swift: Replace deprecated option.
  • manila: Fixup deprecated options (SCRD-6084)

SUSE OpenStack Cloud Public Beta Program

For more information, please visit our official SUSE OpenStack Cloud Beta Page. Or Contact us via our Cloud Beta Mailing List.

We are thankful for your support in trying out our beta products and we welcome your feedback.

Have fun beta testing!

Your SUSE OpenStack Cloud Team