Salt 2015.5.8 Release Notes¶

Statistics¶

• Total Merges: 17

• Total Issue References: 12

• Total PR References: 27

• Contributors: 12 (MasterNayru, TronPaul, basepi, cachedout, cxmcc, jfindlay, kevinlondon, messa, rallytime, tehmaspc, twangboy, whiteinge)

Security Fix¶

CVE-2015-8034 Saving state.sls cache data to disk with insecure permissions

This affects users of the state.sls function. The state run cache on the minion was being created with incorrect permissions. This file could potentially contain sensitive data that was inserted via jinja into the state SLS files. The permissions for this file are now being set correctly. Thanks to zmalone for bringing this issue to our attention.

Changelog for v2015.5.7..v2015.5.8¶

Generated at: 2018-05-27 22:25:07 UTC

• ISSUE #28883: (ldelossa) Issues running select states - local variable 'salt' referenced before assignment (refs: #29113)

• PR #29164: (jfindlay) Backport #29113 @ 2015-11-24 21:26:17 UTC

  • PR #29113: (TronPaul) Kill unneeded import (refs: #29164)

  • PR #28740: (MasterNayru) Add missing S3 module import (refs: #28839, #29113)

  • a26c10a811 Merge pull request #29164 from jfindlay/bp-29113

  • 50fab35188 kill unneeded import

• PR #29138: (jfindlay) add 2015.5.8 release notes @ 2015-11-23 23:22:48 UTC

  • 4f03196e7d Merge pull request #29138 from jfindlay/2015.5

  • be045f5cb1 add 2015.5.8 release notes

• ISSUE #29110: (mohshami) 2015.8.2 broke orchestration (refs: #29122)

• ISSUE #28010: (vakulich) Error "KeyError: 'ret'" appeared during salt.state run in orchestrate module if minion had an exception (refs: #28012)

• PR #29128: (cachedout) Set a safer default value for ret in saltmod @ 2015-11-23 17:07:40 UTC

  • PR #29122: (cachedout) Fix broken state orchestration (refs: #29128)

  • PR #28012: (rallytime) Clean up stack trace when something goes wrong with minion output (refs: #29122)

  • 219367a23d Merge pull request #29128 from cachedout/tweak_29122

  • b08858b040 Missed check

  • 584efe81ee Set a safer default value for ret in saltmod

• ISSUE #29110: (mohshami) 2015.8.2 broke orchestration (refs: #29122)

• ISSUE #28010: (vakulich) Error "KeyError: 'ret'" appeared during salt.state run in orchestrate module if minion had an exception (refs: #28012)

• PR #29122: (cachedout) Fix broken state orchestration (refs: #29128) @ 2015-11-23 16:24:18 UTC

  • PR #28012: (rallytime) Clean up stack trace when something goes wrong with minion output (refs: #29122)

  • 2250a36647 Merge pull request #29122 from cachedout/issue_29110

  • 4b9302d794 Fix broken state orchestration

• PR #29096: (rallytime) Back-port #29093 to 2015.5 @ 2015-11-22 17:02:51 UTC

  • PR #29093: (cxmcc) Compare gem versions as a string. (refs: #29096)

  • 200e771efb Merge pull request #29096 from rallytime/bp-29093

  • f5734423a4 Compare gem versions as a string.

• PR #29084: (rallytime) Back-port #29055 to 2015.5 @ 2015-11-20 20:57:54 UTC

  • PR #29055: (cachedout) Add section to style guide (refs: #29084)

  • d8a2018bc8 Merge pull request #29084 from rallytime/bp-29055

  • 52e650aed9 Add section to style guide

• PR #29083: (rallytime) Back-port #29053 to 2015.5 @ 2015-11-20 20:57:38 UTC

  • PR #29053: (kevinlondon) Update rabbitmq_user.py (refs: #29083)

  • b5cff1a351 Merge pull request #29083 from rallytime/bp-29053

  • f1884de0e7 Update rabbitmq_user.py

• ISSUE #28928: (twangboy) Fix user.present 2015.5 (refs: #28932)

• PR #28932: (twangboy) Fixed user.present / user.absent in windows @ 2015-11-18 21:45:53 UTC

  • PR #28627: (twangboy) Backport win_useradd (refs: #28932)

  • b3e3bebef0 Merge pull request #28932 from twangboy/fix_28928

  • 0653a04887 Fixed user.present / user.absent in windows

• ISSUE #26911: (dsumsky) file.manage state does not work with Amazon S3 URLs on Windows (refs: #28630)

• ISSUE #13850: (ryan-lane) s3:// urls in file.managed (and likely elsewhere) require s3.key and s3.keyid to be in minion config (refs: #28630)

• PR #29011: (rallytime) Back-port #28630 to 2015.5 @ 2015-11-18 17:50:05 UTC

  • PR #28630: (messa) Use S3 credentials from Pillar (refs: #29011)

  • a2e4a227e0 Merge pull request #29011 from rallytime/bp-28630

  • 7baccc1b05 Lint - newline before def

  • 9e5c16d4da Reading S3 credentials from Pillar

  • a3216f813d Fixed requests HTTPError handler, it was still in urllib2 style

• PR #28982: (basepi) [2015.5] Merge forward from 2014.7 to 2015.5 @ 2015-11-18 00:49:32 UTC

  • 1a4cd6002f Merge pull request #28982 from basepi/merge-forward-2015.5

  • bfbb109fbd Merge remote-tracking branch 'upstream/2014.7' into merge-forward-2015.5

  • 4b8bdd0afb Merge pull request #28839 from cachedout/revert_28740

  • 215b26c06f Revert #28740

• ISSUE #28947: (dmyerscough) sdb modules are not synced out (refs: #28949)

• PR #28949: (whiteinge) Add sync_sdb execution function @ 2015-11-17 15:35:38 UTC

  • edd26d763a Merge pull request #28949 from whiteinge/sync-sdb

  • b0ec9ab25b Add sync_sdb execution function

• ISSUE #28888: (twangboy) Fix file.comment (refs: #28930)

• PR #28930: (twangboy) Added missing import mmap required by file.py @ 2015-11-16 23:17:23 UTC

  • 43da1bc4ce Merge pull request #28930 from twangboy/fix_28888

  • f5c489eaad Added missing import mmap required by file.py

• PR #28908: (rallytime) A couple of spelling fixes for doc conventions page. @ 2015-11-16 02:29:35 UTC

  • 2488b873b8 Merge pull request #28908 from rallytime/doc-convention-spelling

  • 60e6eddb77 A couple of spelling fixes for doc conventions page.

• ISSUE #22442: (allanliu) rest_cherrypy /keys URL does not handle JSON requests (refs: #28902)

• PR #28902: (whiteinge) Fix missing JSON support for /keys endpoint @ 2015-11-15 15:36:05 UTC

  • 827a1ae020 Merge pull request #28902 from whiteinge/json-keys

  • 9745903301 Fix missing JSON support for /keys endpoint

• PR #28897: (rallytime) Back-port #28873 to 2015.5 @ 2015-11-15 00:43:35 UTC

  • PR #28873: (tehmaspc) Fix salt-cloud help output typo (refs: #28897)

  • d23bd49130 Merge pull request #28897 from rallytime/bp-28873

  • 077e671ead Fix salt-cloud help output typo

• ISSUE #28870: (basepi) mdadm commands failing (refs: #28871)

• PR #28871: (basepi) [2015.5] Fix command generation for mdadm.assemble @ 2015-11-13 21:54:33 UTC

  • a9dc8b6ca6 Merge pull request #28871 from basepi/mdadm.fix.28870

  • 323bc2d2ac Fix command generation for mdadm.assemble