Security update for ardana packages

Announcement ID:	SUSE-SU-2019:2046-1
Rating:	moderate
References:	bsc#1115960 bsc#1120657 bsc#1121530 bsc#1122053 bsc#1122825 bsc#1124170 bsc#1128453 bsc#1131712 bsc#1131791 bsc#1131899 bsc#1132542 bsc#1132654 bsc#1132832 bsc#1132852 bsc#1132853 bsc#1132860 bsc#1134336 jsc#SCRD-7471 jsc#SCRD-7496 jsc#SCRD-7571 jsc#SCRD-7697 jsc#SCRD-7710 jsc#SCRD-7786 jsc#SCRD-8330 jsc#SCRD-8578 jsc#SCRD-8689 jsc#SCRD-8739 jsc#SCRD-8747 jsc#SCRD-8748 jsc#SCRD-8756 jsc#SCRD-8793 jsc#SCRD-8879 jsc#SCRD-8910 jsc#SCRD-8911 jsc#SCRD-8929 jsc#SCRD-8930 jsc#SCRD-8940 jsc#SCRD-8941 jsc#SCRD-8942 jsc#SCRD-8947 jsc#SCRD-8948 jsc#SCRD-8976 jsc#SCRD-9015 jsc#SCRD-9031 jsc#SCRD-9124 jsc#SCRD-9140 jsc#SCRD-9176 jsc#SOC-3456 jsc#SOC-5771 jsc#SOC-7496 jsc#SOC-7573 jsc#SOC-8364 jsc#SOC-8578 jsc#SOC-8746 jsc#SOC-8879 jsc#SOC-8985 jsc#SOC-9022 jsc#SOC-9031 jsc#SOC-9089 jsc#SOC-9178 jsc#SOC-9230 jsc#SOC-9235 jsc#SOC-9262 jsc#SOC-9280 jsc#SOC-9285 jsc#SOC-9297 jsc#SOC-9301 jsc#SOC-9343 jsc#SOC-9349 jsc#SOC-9366 jsc#SOC-9369 jsc#SOC-9379 jsc#SOC-9380 jsc#SOC-9381 jsc#SOC-9382 jsc#SOC-9383 jsc#SOC-9384 jsc#SOC-9418 jsc#SOC-9457 jsc#SOC-9459 jsc#SOC-9472 jsc#SOC-9500 jsc#SOC-9565
Cross-References:	CVE-2018-19039 CVE-2019-10876 CVE-2019-11068
CVSS scores:	CVE-2018-19039 ( SUSE ): 6.5 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVE-2018-19039 ( NVD ): 6.5 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVE-2019-10876 ( SUSE ): 7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2019-10876 ( NVD ): 6.5 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVE-2019-11068 ( SUSE ): 6.6 CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N CVE-2019-11068 ( NVD ): 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2019-11068 ( NVD ): 9.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products:	SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 9

An update that solves three vulnerabilities, contains 66 features and has 14 security fixes can now be installed.

Description:

This update for ardana package fixes the following issues:

Update to version 9.0+git.1560211997.7ac9792:
Adds repository list parameter (bsc#1122825)
Update to version 9.0+git.1557219331.457b6e7:
Update gerrit location (SCRD-9140)
Switch to new Gerrit Server
Update to version 9.0+git.1559292830.208d258:
Convert number of workers to int (SOC-9418)
Update to version 9.0+git.1557424689.2b085d5:
Update gerrit location (SCRD-9140)
Update to version 9.0+git.1556225774.492d42c:
SCRD-8748 Fix default worker count determination logic (SCRD-8748)
Switch to new Gerrit Server
Update to version 9.0+git.1557220194.6a90deb:
Update gerrit location (SCRD-9140)
Switch to new Gerrit Server
Update to version 9.0+git.1557219517.7b97993:
Update gerrit location (SCRD-9140)
Switch to new Gerrit Server
Update to version 9.0+git.1559039284.6fc1d47:
Convert number of workers to int (SOC-9384)
Update to version 9.0+git.1558583814.a96bada:
Restrict rootwrap directories for cinder (bsc#1132542)
Update to version 9.0+git.1557421539.521a486:
SCRD-8748 Fix default worker count determination logic (SCRD-8748)
Update to version 9.0+git.1557219553.d850ca4:
Update gerrit location (SCRD-9140)
Switch to new Gerrit Server
Update to version 9.0+git.1557219586.7c96a6d:
Update gerrit location (SCRD-9140)
Switch to new Gerrit Server
Update to version 9.0+git.1557219626.b190680:
Update gerrit location (SCRD-9140)
Switch to new Gerrit Server
Update to version 9.0+git.1560868957.42bcb70:
MariaDB conf changes IPv6 (SOC-9089)
Update to version 9.0+git.1559351643.a440414:
Configure xinted mysqlchk to accept ipv6 (SOC-9369)
Update to version 9.0+git.1557219651.3d4d2d5:
Update gerrit location (SCRD-9140)
Update to version 9.0+git.1554995553.23d9513:
Configurable innodb flush options (SCRD-7496)
Switch to new Gerrit Server
Update to version 9.0+git.1558588538.9211022:
Secure designate's rootwrap files (bsc#1132542)
Update to version 9.0+git.1558549508.9bfa9e7:
specify rootwrap config file in designate sudoer (bsc#1132542)
Update to version 9.0+git.1557219686.0e71bf9:
Update gerrit location (SCRD-9140)
Switch to new Gerrit Server
Update to version 9.0+git.1559033522.5e5be1c:
Convert number of workers to int (SOC-9381)
Update to version 9.0+git.1557421456.f1e5016:
SCRD-8748 Fix default worker count determination logic (SCRD-8748)
Update to version 9.0+git.1557219717.fe1bde6:
Update gerrit location (SCRD-9140)
Switch to new Gerrit Server
Update to version 9.0+git.1559036788.b727b53:
Convert number of workers to int (SOC-9382)
Update to version 9.0+git.1557421526.a8c13bf:
SCRD-8748 Fix default worker count determination logic (SCRD-8748)
Update to version 9.0+git.1557219773.fe2f6aa:
Update gerrit location (SCRD-9140)
Switch to new Gerrit Server
Update to version 9.0+git.1557219807.6036a8e:
Update gerrit location (SCRD-9140)
Switch to new Gerrit Server
Update to version 9.0+git.1557220534.883f8c9:
Update gerrit location (SCRD-9140)
Update to version 9.0+git.1557189507.c786525:
add external network to Ironic multi-tenancy input model (SCRD-8930)
Update to version 9.0+git.1557189482.8931e67:
add neutron_l3_agent plugin (SCRD-8929)
Switch to new Gerrit Server
Update to version 9.0+git.1556199488.bdf1cdc:
SCRD-7471 Don't set external-name in ardana-ci models (SCRD-7471)
Update to version 9.0+git.1559171053.476225c:
Move keystone error url to locale bundle (SOC-3456)
Add doc link to 503 error from Keystone (SOC-3456)
Update to version 9.0+git.1558732415.467c8ab:
Consolidate setCloseButtonDisabled
Disable close button when playbook or action in progress
Disable close button when playbook or action in progress
Updated comments
Fixed an issue for replacing controller page
Prevent operations when replacing a server in progress (SCRD-8756)
Update to version 9.0+git.1558726203.bae5a7d:
Updated the message for full deployment (SOC-8879)
Add SES integration into day0/2 (SoC-8555) (#342)
Update to version 9.0+git.1557281300.f3e29e9:
Use Lato font version 2.015 from latofonts.com (#349)
Update to version 9.0+git.1556908018.7801990:
Update documentation useful link (SCRD-8689)
Open useful links in a new tab (SCRD-8910)
Added prepare deployment/deploy capability to model config (SCRD-8879)
Update to version 9.0+git.1560365077.17250c6:
Sync up rootwrap filters with upstream (SOC-9500)
Update to version 9.0+git.1557219834.53dbb0b:
Update gerrit location (SCRD-9140)
Switch to new Gerrit Server
Update to version 9.0+git.1559292289.b5ed172:
Convert number of processes to int (SOC-9418)
Update to version 9.0+git.1557421499.3e9fe25:
SCRD-8748 Fix default worker count determination logic (SCRD-8748)
Update to version 9.0+git.1557219888.c532b5e:
Update gerrit location (SCRD-9140)
Switch to new Gerrit Server
Update to version 9.0+git.1557219914.6d7ebb5:
Update gerrit location (SCRD-9140)
Switch to new Gerrit Server
Update to version 9.0+git.1557219960.226e32b:
Update gerrit location (SCRD-9140)
Switch to new Gerrit Server
Switch to new Gerrit Server
Update to version 9.0+git.1556646861.58ce24f:
update audit API map for Manila (SCRD-8747)
Update to version 9.0+git.1557219995.cd49525:
Update gerrit location (SCRD-9140)
Switch to new Gerrit Server
Update to version 9.0+git.1556731170.c8210e0:
Rip out vertica related code (SCRD-9031)
Switch to new Gerrit Server
Update to version 9.0+git.1557220073.7e88cfa:
Update gerrit location (SCRD-9140)
Switch to new Gerrit Server
Update to version 9.0+git.1560214193.fc0378b:
bind epmd.socket to ipv4 and ipv6 (SOC-8364)
Update to version 9.0+git.1557220112.00d7117:
Update gerrit location (SCRD-9140)
Switch to new Gerrit Server
Update to version 9.0+git.1560464557.d2f6200:
Remove the creation of /etc/neutron/rootwrap.conf (SOC-9472)
Update to version 9.0+git.1560196282.28bbf67:
Change how lbaasv2 rootwrap filters are installed (SOC-9457)
Update to version 9.0+git.1560195873.c45568f:
Rootwrap changes for supported L3-agent extensions (SOC-9459)
Update to version 9.0+git.1559846163.ca22b06:
Improve neutron service restart limit handling (SOC-8746)
Update to version 9.0+git.1559031432.b99d89a:
Convert number of workers to int (SOC-9379)
Update to version 9.0+git.1558569689.36fbbd5:
Tighten neutron sudoers to only execute rootwrap (bsc#1132542) (SOC-9031)
Update to version 9.0+git.1557942331.3c74f81:
Kill dhclient before restarting neutron-openvswitch-agent (SOC-9230)
Update to version 9.0+git.1557421465.faf2c38:
SCRD-8748 Fix default worker count determination logic (SCRD-8748)
Update to version 9.0+git.1557322578.4542665:
Update gerrit location (SCRD-9140)
Switch to new Gerrit Server
Update to version 9.0+git.1559869848.7a706df:
Adding support for qemu-ovmf to ardana (SOC-8985)
Update to version 9.0+git.1559823309.d3d23fe:
Convert number of workers to int (SOC-9380)
Update to version 9.0+git.1559234129.2fd63a9:
SCRD-9031 Change permitted nova-rootwrap config file pattern (bsc#1132542)
Update to version 9.0+git.1558549516.86e9f59:
specify rootwrap config file in nova sudoer (bsc#1132542)
Update to version 9.0+git.1554825274.040de21:
SCRD-8748 Fix default worker count determination logic (SCRD-8748)
Switch to new Gerrit Server
Update to version 9.0+git.1560519270.e0a2620:
Tune bumpng anphora retries (SOC-9285)
Update to version 9.0+git.1558549438.4ce3e83:
Stop installing a sudoers root escalator (SCRD-9031)
Update to version 9.0+git.1555319067.9e6f74e:
Increase number of connect retries (SCRD-7496)
Switch to new Gerrit Server
Switch to new Gerrit Server
Update to version 9.0+git.1555530925.206f1a8:
Fix 'Add New Dashboard Card' button on Ops Console dashboard (SCRD-7697)
Switch to new Gerrit Server
Update to version 9.0+git.1560269313.7ddaff2:
Configure sysctl neigh.default.gc_thres for ipv6 (SOC-5771)
Update to version 9.0+git.1559870350.2cde7ea:
Remove '/32' from iptables tasks (SOC-9349)
Update to version 9.0+git.1557219143.2fc9eb2:
Update gerrit location (SCRD-9140)
Switch to new Gerrit Server
Update to version 9.0+git.1560974342.47a5b12:
Correctly handle HttpError during authentication (SOC-3456)
Switch to new Gerrit Server
Update to version 9.0+git.1557220501.ebd3011:
Update gerrit location (SCRD-9140)
Switch to new Gerrit Server
Switch to new Gerrit Server
Update to version 9.0+git.1557220247.e78d1c3:
Update gerrit location (SCRD-9140)
Switch to new Gerrit Server
Update to version 9.0+git.1559038506.cc119d9:
Convert number of workers to int (SOC-9383)
Update to version 9.0+git.1557421607.00a5fae:
Update gerrit location (SCRD-9140)
SCRD-8748 Fix default worker count determination logic (SCRD-8748)
Switch to new Gerrit Server
Update to version 9.0+git.1560949748.f0bd816:
Blacklist test_delete_policies_while_tenant_attached_to_net (SOC-9235)
Update to version 9.0+git.1560694157.69a4419:
Blacklist some revert tests (SOC-9178)
Update to version 9.0+git.1560529053.50e76bf:
Blacklist some revert tests (SOC-9178)
Update to version 9.0+git.1560517118.0aac5fd:
Add configuration for manila-tempest-plugin (SOC-7496)
Update to version 9.0+git.1560180804.42077a8:
Revert Remove common failing tests from tempest runs (SOC-9366)
Update to version 9.0+git.1559833566.10d972d:
Fix lbaas tempest filter (SOC-7496)
Update to version 9.0+git.1559139132.a92980b:
Move some nova tests to serial (SOC-9366)
Update to version 9.0+git.1558706119.27e844b:
Remove comoonly failing tests from tempest runs (SOC-9366)
Update to version 9.0+git.1557825747.1002f16:
run neutron-lbaas tempest tests sequentially (SCRD-9176)
Update to version 9.0+git.1557421599.43d2140:
Update gerrit location (SCRD-9140)
Update to version 9.0+git.1557335657.ab2f1b9:
Disable TestVolumeBootPattern.test_volume_boot_pattern (SCRD-9015)
Make --os-test-timeout configurable and increase default (SCRD-7496)
Update to version 9.0+git.1556893395.1813ec1:
Increase and make timeout values configurable (SCRD-7496)
Configure tempest heat_plugin (SCRD-7496)
Switch to new Gerrit Server
Update to version 9.0+git.1556788546.313ff00:
Enable additional features for cinder testing (SCRD-7496)
Enable volume backed live migration tests (SCRD-7496)
Update to version 9.0+git.1556788508.468dae0:
Set admin project to cloud admin project (SCRD-7496)
Update to version 9.0+git.1556728115.62a8427:
Set cinder/glance admin on tempest roles (SCRD-7496)
Update to version 9.0+git.1556721233.8750e33:
Configure neutron tempest plugin (SCRD-7496)
Update to version 9.0+git.1556721213.3c2f140:
Update neutron api extensions list (SCRD-7496)
Update to version 9.0+git.1556530821.e592de1:
Update tempest test filters (SCRD-7496)
Update to version 9.0+git.1557220381.5641a2e:
Update gerrit location (SCRD-9140)
Switch to new Gerrit Server
Update to version 1.0+git.1560518045.ad7dc6d:
Patching node before bootstraping
Update to version 6.0+git.1561125496.b7508480:
IPv6: Export ip_version and handle the DHCP domain
Update to version 6.0+git.1558489909.b45da865:
ipv6: Update start-up.sh to be IPv6 compatible
Update to version 6.0+git.1558002425.cc651aae:
crowbar: Make potential output of reset_crowbar visible
Update to version 6.0+git.1562154525.5e2983308:
Crowbar: DomainName verification relaxed
Update to version 6.0+git.1561729566.22019624e:
upgrade: Mark correctly the set of nodes that was selected for upgrade
Update to version 6.0+git.1561555935.31c4165cc:
Use proper names for the Travis Tests (SOC-9565)
Replace Danger with Gitlint (SOC-9565)
Switch from Travis dist from Trusty to Xenial (SOC-9565)
Update to version 6.0+git.1561381017.8aab650d0:
network: Don't set datapath-ids on ovs-bridges anymore
Update to version 6.0+git.1560962186.456663e42:
crowbar: Save sync_mark attributes in databag
dns: fix designate migration
Update to version 6.0+git.1560522168.7a376b958:
travis: pin sexp_processor to 4.12.0
Allow restricted API access during upgrade
Update to version 6.0+git.1559635691.42aa36659:
deployer: Use dhcp on crowbar_register only when enable_pxe is set (bsc#1132654)
network: Allow locking down the network config for nodes (bsc#1120657)
Update to version 6.0+git.1558533504.0a5369b05:
provisioner: enabled tuned profiles
Update to version 6.0+git.1558029089.90c1cb545:
crowbar: Add debug logging to restore API
crowbar: Move crowbarrc mgmt into crowbar cookbook (SCRD-8330)
Update to version 6.0+git.1557765503.660dd52c5:
Ignore CVE-2019-11068 during Travis (SOC-9262)
Update to version 6.0+git.1557210549.ec8c84852:
Fix order of values in nodes piechart
Update to version 6.0+git.1556186576.4d681c4ed:
Update Lato font to version 2.015 (SCRD-8948)
Update to version 6.0+git.1560951093.4af1ee5:
Add timeout multiplier
Make default sync_mark timeout configurable
update suse-branding.patch (SOC-9297)
Update to version 6.0+git.1562153583.4735fcf34:
Sync Travis with crowbar-core (SOC-9565)
Update to version 6.0+git.1561546411.c9b99ebbb:
Make ovs of_inactivity_probe configurable from neutron barclamp
Update to version 6.0+git.1561124272.c447b965b:
Configurable timeout for Galera pre-sync
Update to version 6.0+git.1560962133.cf99aa9eb:
monasca: use string keys for attrs in migrations
Update to version 6.0+git.1560502325.7de215873:
nova: only create nonexistent cell1
nova: reinstate old db sync ordering
Update to version 6.0+git.1560353653.b92e4f9c1:
designate: do not use pacemaker as all the services are stateless
designate: allow worker on cluster.
Update to version 6.0+git.1559857307.9cb8796a6:
rabbitmq: Fix ACL of SSL key after uid/gid change
Update to version 6.0+git.1559841020.dfbbc5be5:
tempest: Disable Barbican validation of signed image (SOC-8578)
Update to version 6.0+git.1559637225.141253d99:
ironic: Add Redfish drivers by default
Update to version 6.0+git.1559542941.26fe90143:
ironic: Install deploy image with ironic
Update to version 6.0+git.1559214145.66de78575:
nova: Don't retry creating existing flavors
Update to version 6.0+git.1558698448.10d30a50d:
ironic: Use IP also in [swift] section
Update to version 6.0+git.1558609537.4ebc9b31d:
neutron: increase interval between checks to 30s
neutron: remove .openrc creation from neutron cookbooks
neutron: Don't restart l3-ha on .openrc change
Update to version 6.0+git.1558326886.306598770:
nova: Show stdout/stderr when "openstack flavor list" fails
Update to version 6.0+git.1558084779.634ff6e8a:
neutron: Add 'insecure' to old cli calls
Update to version 6.0+git.1557932150.575791c62:
database: Make wsrep_provider_options configurable (fate#327745)
horizon: Disable Ceph dashboard if not monitored (SOC-7573)
Update to version 6.0+git.1557840648.637a6f7e6:
monasca: Fix notification types initialisation
monasca: Add openvswitch plugin (SCRD-7571)
designate: do not install the keystone_authtoken on worker nodes
monasca: Configure delegate_authorized_roles
Update to version 6.0+git.1557734236.12a27293f:
database: Raise and align promote/demote timeouts (bsc#1131791)
Update to version 6.0+git.1557393769.797307d6f:
neutron: use crm_resource restart for restarting neutron-l3-ha-service
Update to version 6.0+git.1556267896.b86529796:
neutron: restart neutron-ha-tool when the config file changes
Update to version 6.0+git.1556220665.450d8de69:
tempest: Enable BaremetalBasicOps test
Update to version 9.20190621:
Update after branching change
Update operations-maintenance-update_maintenance.xml
add scottwulf content
address recommended changes
change PTF deploy instructions (bsc#1128453)
switch to maintenance/cloud_9 git branch
Update to version 9.20190620:
add designate barclamp (SCRD-8739)
Update to version 9.20190613:
Language update to copy-on-write
model tab for day2 UI (SOC-8879) - replaces PR992
Updated model tab for day2 UI (SOC-8879)
Update to version 9.20190611:
Fixing merge conflicts
Fixing minor issue
Fixing Tim's edits to the config file
Adding Carl's edits
updating versions and intro
Adding comments from Walter Boring
Fixes
Fix broken build and comments
Fix SES Integration chapter: SOC-9343
Update to version 9.20190610:
Triggering a re-build
Fixing filename error
Update install_caasp_heat_templates.xml
Update installation-installation-ses_integration.xml
Updating based on Carl's clarification
Fix bsc#1131899
Further CaaSP restructuring and removing outdated instructions
Include instructions for registering CaaSP for MU's (SCRD-8793)
Update to version 9.20190607:
add OVSvApp, Nova proxy VM sizing (no bsc, no Jira)
optipng deployment images (no bsc, no Jira)
add nova-proxy description to ESXi and OVSvApp section (no bsc, no Jira)
Update to version 9.20190605:
move fernet token to supported Keystone feature
Update to version 9.20190528:
Remove docmanager section
Reformat the file
Feedback from csymons
Crowbar POC initial version
Update to version 9.20190522:
Remove completely outdated Bugzilla association from Supplement Guide
Remove upstream admin/user guides
Update to version 9.20190521:
add Network Security Group logging (SCRD-9124)
Update to version 9.20190520:
CLM - update MariaDB manually (bsc#1132852, SOC-9022)
add instructions for updating MariaDB manually (bsc#1132852)
Update to version 9.20190516:
Fix command to create external network
Remove sudo from commands in "Setting Up Multiple External Networks"
Update to version 9.20190515:
Update README.adoc
Update to version 9.20190514:
Grammar fix
README: Add super dummy docs how to build locally
Document bootstrap galera cluster with a missing node (bsc#1132853)
Remove authors.xml
Refinements to CaaSP MU process
Included changes requested by reviewers
Instruct CaaS users to install Tiller component (SCRD-8793)
Update install_caasp_heat_templates.xml
Document more necessary CaaSP settings (SCRD-8793)
Update to version 9.20190509:
update boot from SAN and multipath configuration (SCRD-8942)
remove outdated Swift instructions (SCRD-8941)
replace SOC 8 with SOC 9 (no bsc)
make Fernet token default (bsc#1134336)
Update to version 9.20190508:
increase VMs supported to 12000 (no bsc, no SCRD)
Update to version 9.20190506:
change repo location cloud8 to cloud9 Rocket Chat
remove note re uefi, secure boot (bsc#1132832)
Update to version 9.20190425:
address requested changes
change Monasca documentation (SCRD-7786)
changes to RHEL Installation Guide requested by T.R. (no bsc#, no SCRD)
adjust table structure and headings
restructure console alarm table (SCRD-7710, bsc#1124170)
restructure esx alarm table (SCRD-7710, bsc#1124170)
restructure identity alarm table (SCRD-7710, bsc#1124170)
restructure system alarms table (SCRD-7710, bsc#1124170)
restructure networking table (SCRD-7710, bsc#1124170)
restructure other alarms table (SCRD-7710, bsc#1124170)
restructure telemetry table (SCRD-7710, bsc#1124170)
restructure storage table (SCRD-7710, bsc#1124170)
complete compute alarm table
Update to version 9.20190424:
update Manila component installation (SCRD-8940)
Update to version 9.20190423:
Update Day0 screenshots (SCRD-8976) (#951)
Update to version 9.20190422:
add cobbler deprecation notice (no bsc#, no SCRD)
set up security rule before creating VM (SCRD-8947)
Update to version 9.20190419:
fix neutron ovsvapp commands (SCRD-8911)
Add 0001-Use-strings-when-setting-X-Cache-header.patch Fixes a problem with Twisted versions where headers values must be strings, not bools.
Update to version 0.0+git.1562242499.36b8b64 (bsc#1122053):
Add optional systemd ready and watchdog support
Drop unneeded check for "conn"
Reset last_query_response when the cache needs to be updated
Drop unneeded "conn" var initialization
Move respone header generation to own function
Use None as default result
Drop opts.being_updated variable
Use contextmanager for DB connection
Refactor DB method to get WSREP local state
Refactor method to get readonly DB status
pep8: Fix E712 comparison to False should be 'if cond is False:'
pep8: Fix E305 expected 2 blank lines after class or function def
pep8: Fix E124 closing bracket does not match visual indentation
pep8: Fix E251 unexpected spaces around keyword / parameter equals
pep8: Fix E262 inline comment should start with '# '
pep8: Fix E261 at least two spaces before inline comment
pep8: Fix F841 local variable is assigned to but never used
pep8: Fix E302 expected 2 blank lines, found 1
pep8: Fix E265 block comment should start with '# '
pep8: Fix E231 missing whitespace after ','
pep8: Fix E999 SyntaxError: invalid syntax
pep8: Fix F821 undefined name
pep8: Fix E225 missing whitespace around operator
pep8: Fix E221 multiple spaces before operator
pep8: Fix F401 module imported but unused
Add clustercheck to console_scripts
Add basic test infrastructure and a first pep8 job
Fix exception handling for pymysql exception
Readd argparse usage
Fix installation requirements
Add read timeout to prevent connection hanging forever
Exclude benchmark/ directory when creating sdist tarball
Use argparse instead of optparse
Add basic logging infrastructure
Add a standard setup.py file
Catch all query exceptions
Switch to PyMySQL
Drop pymysql.patch and readtimeout.patch. Both merged upstream.
Use systemd service type=notify which is now supported upstream
Use systemd watchdog which is now supported upstream
Update to version 5.3.3 (CVE-2018-19039, bsc#1115960) :
File Exfiltration vulnerability Security fix
Update to version ceilometer-11.0.2.dev13:
Update reno for stable/rocky
Update to version ceilometer-11.0.2.dev12:
[stable-only] Fix sphinx requirement
Update to version ceilometer-11.0.2.dev10:
tempest: Allow to configure tempest config
Update to version ceilometer-11.0.2.dev8:
Remove _ceilometer_check_for_storage check
OpenDev Migration Patch
Update to version ceilometer-11.0.2.dev6:
Added snapshot delete event
Fixes KeyError on volume create/delete
Update to version ceilometer-11.0.2.dev13:
Update reno for stable/rocky
Update to version ceilometer-11.0.2.dev12:
[stable-only] Fix sphinx requirement
Update to version ceilometer-11.0.2.dev10:
tempest: Allow to configure tempest config
Update to version ceilometer-11.0.2.dev8:
Remove _ceilometer_check_for_storage check
OpenDev Migration Patch
Update to version ceilometer-11.0.2.dev6:
Added snapshot delete event
Fixes KeyError on volume create/delete
Update to version cinder-13.0.6.dev12:
Create new image volume cache entry when cloning fails
Update to version cinder-13.0.6.dev10:
Fix python3 compatibility of rbd get_fsid
Update to version cinder-13.0.6.dev9:
lvm: Only use initiators when comparing connector dicts
Update to version cinder-13.0.6.dev7:
Declare multiattach support for HPE MSA
Update to version cinder-13.0.6.dev6:
Fix "connector=None" issue in Kaminario drivers
Update to version cinder-13.0.6.dev5:
NetApp: Return all iSCSI targets-portals
Update to version cinder-13.0.6.dev4:
Make sure we install cinder requirements during the correct tox phase 13.0.5
Update to version cinder-13.0.5.dev27:
Remove LOCI publishing from the post pipeline
3PAR: Provide an option duing creation of volume from snapshot
OpenDev Migration Patch
Tests: Fix up test_volume notify tests
Remove auth_uri usage
Tests: Fix up migrate notify tests
Handle multiattach attribute when managing volumes
Set right attach mode after migration
Replace openstack.org git:// URLs with https://
Check Volume Status on attahcment create/update 13.0.4
NetApp SolidFire: Fix multi-attach volume deletion
Fix Support Matrix - Pure does support Multiattach
Fix Snapshot object metadata loading
VNX: update sg in cache
Restore VMAX unit test mock
VMAX Driver - Fix for invalid device id length
Raise the ImageTooBig exception when found it
hpe 3par driver initialization failure
Fix unexpected behavior in _clone_image_volume
VNX: Add constraints for async migration
Handle drivers that do not support list manageable
Fix wrong uuid recognized when create group
Exclude disabled API versions from listing
Tintri: Inherit tests from BaseDriverTestCase
VMware: Fix revert-to-snapshot
Fix api-ref title levels and index
Fix group availability zone-backend host mismatch
Fix version return incorrect when endpoint url end without /
Fix for auth version change in Brcd HTTP
VNX Driver: delete_hba() instead of remove_hba()
Fix for HPE MSA 2050 login failures 13.0.3
Avoid using 'truncate' on Windows
Fix permissions with NFS-backed snapshots and backups
Delete related encryption provider when a volume type is deleting
Update to version cinder-13.0.6.dev12:
Create new image volume cache entry when cloning fails
Update to version cinder-13.0.6.dev10:
Fix python3 compatibility of rbd get_fsid
Update to version cinder-13.0.6.dev9:
lvm: Only use initiators when comparing connector dicts
Update to version cinder-13.0.6.dev7:
Declare multiattach support for HPE MSA
Update to version cinder-13.0.6.dev6:
Fix "connector=None" issue in Kaminario drivers
Update to version cinder-13.0.6.dev5:
NetApp: Return all iSCSI targets-portals
Update to version cinder-13.0.6.dev4:
Make sure we install cinder requirements during the correct tox phase 13.0.5
Update to version cinder-13.0.5.dev27:
Remove LOCI publishing from the post pipeline
3PAR: Provide an option duing creation of volume from snapshot
OpenDev Migration Patch
Tests: Fix up test_volume notify tests
Remove auth_uri usage
Tests: Fix up migrate notify tests
Handle multiattach attribute when managing volumes
Set right attach mode after migration
Replace openstack.org git:// URLs with https://
Check Volume Status on attahcment create/update 13.0.4
NetApp SolidFire: Fix multi-attach volume deletion
Fix Support Matrix - Pure does support Multiattach
Fix Snapshot object metadata loading
VNX: update sg in cache
Restore VMAX unit test mock
VMAX Driver - Fix for invalid device id length
Raise the ImageTooBig exception when found it
hpe 3par driver initialization failure
Fix unexpected behavior in _clone_image_volume
VNX: Add constraints for async migration
Handle drivers that do not support list manageable
Fix wrong uuid recognized when create group
Exclude disabled API versions from listing
Tintri: Inherit tests from BaseDriverTestCase
VMware: Fix revert-to-snapshot
Fix api-ref title levels and index
Fix group availability zone-backend host mismatch
Fix version return incorrect when endpoint url end without /
Fix for auth version change in Brcd HTTP
VNX Driver: delete_hba() instead of remove_hba()
Fix for HPE MSA 2050 login failures 13.0.3
Avoid using 'truncate' on Windows
Fix permissions with NFS-backed snapshots and backups
Delete related encryption provider when a volume type is deleting
add dependency on nfs-utils
Update to version horizon-14.0.4.dev4:
Make project volume group table work even with volumev3 only env
Update to version horizon-14.0.4.dev3:
Complete angular translation extract pattern 14.0.3
OpenDev Migration Patch
Imported Translations from Zanata
Update to version designate-7.0.1.dev20:
Allow pdns4 backend to select tsigkey
Update to version designate-7.0.1.dev18:
Clean fix for bandit exclusions change
Update to version designate-7.0.1.dev17:
Fixing RabbitMQ gate timeouts
Fix DBDeadLock error resulting into 500
Update to version designate-7.0.1.dev13:
Use branched version of neutron-tempest-plugin job
OpenDev Migration Patch
Update to version designate-7.0.1.dev20:
Allow pdns4 backend to select tsigkey
Update to version designate-7.0.1.dev18:
Clean fix for bandit exclusions change
Update to version designate-7.0.1.dev17:
Fixing RabbitMQ gate timeouts
Fix DBDeadLock error resulting into 500
Update to version designate-7.0.1.dev13:
Use branched version of neutron-tempest-plugin job
OpenDev Migration Patch
Update to version openstack-heat-11.0.3.dev5:
Return None for attributes of sd with no actions
Fix regression with SW deployments when region not configured
Update to version openstack-heat-11.0.3.dev2:
Blacklist bandit 1.6.0 and cap Sphinx on Python2
OpenDev Migration Patch 11.0.2
Update to version openstack-heat-11.0.3.dev5:
Return None for attributes of sd with no actions
Fix regression with SW deployments when region not configured
Update to version openstack-heat-11.0.3.dev2:
Blacklist bandit 1.6.0 and cap Sphinx on Python2
OpenDev Migration Patch 11.0.2
Update to version designate-dashboard-7.0.1.dev7:
OpenDev Migration Patch
Imported Translations from Zanata
Update to latest spec from rpm-packaging
Don't exclude python bytecode files in dashboards
do not compress files during installation
install settings file for heat-dashboard
Update to version magnum-ui-5.0.2.dev9:
Limit cluster update properties
OpenDev Migration Patch
Update to latest spec from rpm-packaging
Don't exclude python bytecode files in dashboards
Update to version ironic-11.1.4.dev2:
Ansible module: fix configdrive partition creation step
Update to version ironic-11.1.4.dev1: 11.1.3
Place upper bound on python-dracclient version
Update to version ironic-11.1.3.dev26:
Update sphinx requirements
Update to version ironic-11.1.3.dev25:
Do not try to return mock as JSON in unit tests
Ansible module fix: stream_url
Update to version ironic-11.1.3.dev22:
Disable metadata_csum when creating ext4 filesystems
Update to version ironic-11.1.3.dev21:
Fix pyghmi path
OpenDev Migration Patch
Reuse checksum calculation from oslo
Update to version ironic-11.1.3.dev17:
Ansible module: fix clean error handling
Ansible module: fix partition_configdrive.sh file
Update to version ironic-11.1.4.dev2:
Ansible module: fix configdrive partition creation step
Update to version ironic-11.1.4.dev1: 11.1.3
Place upper bound on python-dracclient version
Update to version ironic-11.1.3.dev26:
Update sphinx requirements
Update to version ironic-11.1.3.dev25:
Do not try to return mock as JSON in unit tests
Ansible module fix: stream_url
Update to version ironic-11.1.3.dev22:
Disable metadata_csum when creating ext4 filesystems
Update to version ironic-11.1.3.dev21:
Fix pyghmi path
OpenDev Migration Patch
Reuse checksum calculation from oslo
Update to version ironic-11.1.3.dev17:
Ansible module: fix clean error handling
Ansible module: fix partition_configdrive.sh file
Update to version ironic-python-agent-3.3.2.dev13:
Bind mount /run into chroot when installing grub
Ironic python agent does not extract correct available memory
Update to version ironic-python-agent-3.3.2.dev9:
Fix download upper constraints
Update to version ironic-python-agent-3.3.2.dev7:
Add more channel number for detecting BMC IP address
Update to version ironic-python-agent-3.3.2.dev5:
Fixes for building images with CoreOS
Update to version ironic-python-agent-3.3.2.dev4:
Fetch upper constraints from opendev.org
OpenDev Migration Patch
Update to version keystone-14.1.1.dev7:
Blacklist bandit 1.6.0
OpenDev Migration Patch
Update to version keystone-14.1.1.dev5:
Remove message about circular role inferences
Update to version keystone-14.1.1.dev3:
Delete shadow users when domain is deleted
Update to version keystone-14.1.1.dev7:
Blacklist bandit 1.6.0
OpenDev Migration Patch
Update to version keystone-14.1.1.dev5:
Remove message about circular role inferences
Update to version keystone-14.1.1.dev3:
Delete shadow users when domain is dele