diff --git a/CHANGELOG.md b/CHANGELOG.md index e4ef57e..d8475b9 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,17 +1,80 @@ Ansible Changes By Release ========================== +## 1.8 "You Really Got Me" - Active Development + + +## 1.7.1 "Summer Nights" - Aug 14, 2014 + +- Security fix to disallow specifying 'args:' as a string, which could allow the insertion of extra module parameters through variables. +- Performance enhancements related to previous security fixes, which could cause slowness when modules returned very large JSON results. This specifically impacted the unarchive module frequently, which returns the details of all unarchived files in the result. +- Docker module bug fixes: + * Fixed support for specifying rw/ro bind modes for volumes + * Fixed support for allowing the tag in the image parameter +- Various other bug fixes + +## 1.7 "Summer Nights" - Aug 06, 2014 + +Major new features: + +* Windows support (alpha) using native PowerShell remoting +* Tasks can now specify `run_once: true`, meaning they will be executed exactly once. This can be combined with delegate_to to trigger actions you want done just the one time versus for every host in inventory. + +New inventory scripts: + +* SoftLayer +* Windows Azure + +New Modules: + +* cloud: azure +* cloud: rax_meta +* cloud: rax_scaling_group +* cloud: rax_scaling_policy +* windows: version of setup module +* windows: version of slurp module +* windows: win_feature +* windows: win_get_url +* windows: win_msi +* windows: win_ping +* windows: win_user +* windows: win_service +* windows: win_group + +Other notable changes: + +* Inventory speed improvements for very large inventories. +* Vault password files can now be executable, to support scripts that fetch the vault password. + + +## 1.6.10 "And the Cradle Will Rock" - Jul 25, 2014 + +- Fixes an issue with the copy module when copying a directory that fails when changing file attributes and the target file already exists +- Improved unicode handling when splitting args + +## 1.6.9 "And the Cradle Will Rock" - Jul 24, 2014 + +- Further improvements to module parameter parsing to address additional regressions caused by security fixes + +## 1.6.8 "And the Cradle Will Rock" - Jul 22, 2014 + +- Corrects a regression in the way shell and command parameters were being parsed + +## 1.6.7 "And the Cradle Will Rock" - Jul 21, 2014 + +- Security fixes: + * Strip lookup calls out of inventory variables and clean unsafe data + returned from lookup plugins (CVE-2014-4966) + * Make sure vars don't insert extra parameters into module args and prevent + duplicate params from superseding previous params (CVE-2014-4967) + ## 1.6.6 "And the Cradle Will Rock" - Jul 01, 2014 - Security updates to further protect against the incorrect execution of untrusted data -## 1.6.5 "And the Cradle Will Rock" - Jun 25, 2014 +## 1.6.4, 1.6.5 "And the Cradle Will Rock" - Jun 25, 2014 -- Additional tweaks to prevent the incorrect execution of untrusted data - -## 1.6.4 "And the Cradle Will Rock" - Jun 25, 2014 - -- Security update to prevent local operations from executing as the result of specifically crafted untrusted data +- Security updates related to evaluation of untrusted remote inputs ## 1.6.3 "And the Cradle Will Rock" - Jun 09, 2014 @@ -23,7 +86,7 @@ Ansible Changes By Release - Various other minor bug fixes. ## 1.6.2 "And the Cradle Will Rock" - May 23, 2014 - + - If an improper locale is specified, core modules will now automatically revert to using the 'C' locale. - Modules using the fetch_url utility will now obey proxy environment variables. - The SSL validation step in fetch_url will likewise obey proxy settings, however only proxies using the http protocol are supported. diff --git a/ansible-1.6.6.tar.bz2 b/ansible-1.6.6.tar.bz2 deleted file mode 100644 index f993438..0000000 --- a/ansible-1.6.6.tar.bz2 +++ /dev/null @@ -1,3 +0,0 @@ -version https://git-lfs.github.com/spec/v1 -oid sha256:69b0aaeadc7cc4a4207c276935c9f77682b219c76137b24840bd54bbf8cf358c -size 517414 diff --git a/ansible-1.7.1.tar.bz2 b/ansible-1.7.1.tar.bz2 new file mode 100644 index 0000000..f66d84a --- /dev/null +++ b/ansible-1.7.1.tar.bz2 @@ -0,0 +1,3 @@ +version https://git-lfs.github.com/spec/v1 +oid sha256:3470daaa536be30c058a1616f6d1cd83b5fbcb21aa93f7b32b9e74ac18eba620 +size 558181 diff --git a/ansible.changes b/ansible.changes index 4db95c2..e614aa4 100644 --- a/ansible.changes +++ b/ansible.changes @@ -1,3 +1,61 @@ +------------------------------------------------------------------- +Sun Aug 17 15:21:38 UTC 2014 - lars@linux-schulserver.de + +- update to 1.7.1: + Major new features: + + Windows support (alpha) using native PowerShell remoting + + Tasks can now specify run_once: true, meaning they will be executed + exactly once. This can be combined with delegate_to to trigger actions + you want done just the one time versus for every host in inventory. + + New Modules: + + cloud: azure + + cloud: rax_meta + + cloud: rax_scaling_group + + cloud: rax_scaling_policy + + windows: version of setup module + + windows: version of slurp module + + windows: win_feature + + windows: win_get_url + + windows: win_msi + + windows: win_ping + + windows: win_user + + windows: win_service + + windows: win_group + + New inventory scripts: + + SoftLayer + + Windows Azure + + Docker module bug fixes: + + Fixed support for specifying rw/ro bind modes for volumes + + Fixed support for allowing the tag in the image parameter + + Other notable changes: + + Performance enhancements related to previous security fixes, which + could cause slowness when modules returned very large JSON results. + This specifically impacted the unarchive module frequently, which + returns the details of all unarchived files in the result. + + Inventory speed improvements for very large inventories. + + Vault password files can now be executable, to support scripts + that fetch the vault password. + + Fixes an issue with the copy module when copying a directory that + fails when changing file attributes and the target file already exists + + Improved unicode handling when splitting args + + Further improvements to module parameter parsing to address + additional regressions caused by security fixes + + Corrects a regression in the way shell and command parameters + were being parsed + + Various other bug fixes + + Security fixes: + + Security fix to disallow specifying 'args:' as a string, which could + allow the insertion of extra module parameters through variables. + + Strip lookup calls out of inventory variables and clean unsafe + data returned from lookup plugins (CVE-2014-4966) + + Make sure vars don't insert extra parameters into module args and + prevent duplicate params from superseding previous params (CVE-2014-4967) + ------------------------------------------------------------------- Thu Jul 10 12:53:16 UTC 2014 - lars@linux-schulserver.de diff --git a/ansible.spec b/ansible.spec index a8baf69..0a8fe2d 100644 --- a/ansible.spec +++ b/ansible.spec @@ -18,7 +18,7 @@ Name: ansible -Version: 1.6.6 +Version: 1.7.1 Release: 0 Summary: SSH-based configuration management, deployment, and orchestration engine License: GPL-3.0+