lp:~hopem/nova/precise-updates-sru-lp1119248
- Get this branch:
- bzr branch lp:~hopem/nova/precise-updates-sru-lp1119248
Branch merges
Branch information
Recent revisions
- 87. By Edward Hope-Morley
-
* debian/
patches/ use_bare_ container_ format_ by_default. patch:
- nova does not set container_format when snapshotting instance with ref image
deleted (LP: #1119248)
- nova-compute will now always set container_format to something valid since
Glance expects this when creating a new image
- patching from stable/essex - [75f6922] Use bare container format by default - 86. By Jamie Strandboge
-
* SECURITY UPDATE: fix lack of authentication on block device used for
os-volume_boot
- debian/patches/ CVE-2013- 0208.patch: adjust nova/compute/api.py to
validate we can access the volumes
- CVE-2013-0208 - 85. By Adam Gandelman
-
* New upstream snapshot, fixes FTBFS in -proposed. (LP: #1041120)
* Resynchronize with stable/essex (4d2a4afe):
- [5d63601] Inappropriate exception handling on kvm live/block migration
(LP: #917615)
- [ae280ca] Deleted floating ips can cause instance delete to fail
(LP: #1038266) - 84. By Jamie Strandboge
-
* SECURITY UPDATE: Prohibit file injection writing to host filesystem
- debian/patches/ CVE-2012- 3447.patch: update to perform the file name
canonicalization as the root user
- CVE-2012-3447 - 83. By Steve Beattie
-
* SECURITY UPDATE: scheduler affinity denial of service
- debian/patches/ CVE-2012- 3371.patch: lookup instance ids only once
instead of once for each scheduler hint instance id. - 82. By Steve Beattie
-
* SECURITY UPDATE: arbitrary file injection/
corruption
- debian/patches/ CVE-2012- 3360+3361. patch: ensure that files cannot
be injected in arbitrary locations
- CVE-2012-3360
- CVE-2012-3361 - 81. By Chuck Short
-
* New upstream snapshot. (LP: #1010473)
* Dropped, superseeded by new snapshot:
- debian/patches/ upstream/ 0001-fix- bug-where- nova-ignores- glance- host-in- imageref. patch
- debian/patches/ upstream/ 0002-Stop- libvirt- test-from- deleting- instances- dir.patch
- debian/patches/ upstream/ 0003-Allow- unprivileged- RADOS-users- to-access- rbd-volumes. patch
- debian/patches/ upstream/ 0004-Fixed-bug-962840-added- a-test- case.patch
- debian/patches/ upstream/ 0005-Populate- image-propertie s-with- project_ id-again. patch
- debian/patches/ upstream/ 0006-Use- project_ id-in-ec2. cloud._ format_ image.patc
- debian/patches/ CVE-2012- 2101.patch
- debian/patches/ CVE-2012- 2654.patch
* Resynchronize with stable/essex:
- 3ee026e Only invoke .lower() on non-None protocols. (LP: #1010514)
- f0a9f47 Create a utf8 version of the dns_domains table. (LP: #993663)
- 84a43e1 Report memory correctly on Xen. (LP: #997014)
- 8c72924 Add libvirt get_console_output tests: pty and file. (LP: #990237)
- 4e423cd Fix Multi_Scheduler to process host capabilities. (LP: #1000403)
- 4aea7f1 Nail pep8 dependencies to 1.0.1
- 2b3bbc4 handle updated qemu-img info output. (LP: #1000261)
- 2d7d51c Fix type of snapshot_id column to match db. (LP: #962615)
- ec70c69 Generate a Changelog for Nova
- e5e890f Fix nova.tests.test_nova_ rootwrap on Fedora 17. (LP: #992916)
- 9e9a554 Ec2 handle strings with "0x" (LP: #983206)
- 26dc6b7 QuantumManager will start dnsmasq during startup. Fixes (LP: #977759)
- 7028d66 Introduced flag base_dir_name. (LP: #973194)
- 76b525a Get unit tests functional in OS X.
- facb936 Update KillFilter to handle 'deleted' exe's. (LP: #967931)
- 1209af4 Checks if value is string or not before decode. (LP: #952176)
- 1209af4 Fix timeout in EC2 CloudController.create_ image() . (LP: #989764)
- 108e74b Re-add console_log from console_console_ output( ). (LP: #987335)
- 48a0768 Don't leak RPC connections on timeouts or other exceptions. (LP: #968843)
- 7c64de9 Cloudpipe tap vpn not always working. (LP: #975043)
- 5ab5051 add libvirt_inject_key flag fix (LP: #971640)
- 6c68ef5 Xen: Pass session to destroy_vdi. (LP: #988615)
- 015744e Delete fixed_ips when network is deleted. (LP: #754900)
* Add debian/scripts/ changelog. sh to help generate the changelog.
* Add debian/nova-common. docs:
- Include changelog and README.rst
* debian/rules: Generate a tarball from git snapshot.
* debian/patches/ fix-pep8- errors. patch: Fix pep8 errors due to pep8 upstream
migration. - 80. By Steve Beattie
-
* REGRESSION FIX: security group without protocol set failure (LP: #1010514)
- debian/patches/ CVE-2012- 2654-regression .patch: only call .lower()
when a protocol has been set. - 79. By Steve Beattie
-
* SECURITY UPDATE: set security groups correctly if IP protocol is
specified in upper/mixed case
- debian/patches/ CVE-2012- 2654.patch: ensure protocols are in
lowercase for the controllers - 78. By Jamie Strandboge
-
* SECURITY UPDATE: Place limit on number of security groups a user may
create
- debian/patches/ CVE-2012- 2101.patch: add quotas for security groups and
security groups rules
- CVE-2012-2101
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)