Mitaka Serie Releasenotes

0.12.0

Einleitung

Prevent Unauthorized errors during uploading or donwloading data to Swift store.

Neue Funktionen

  • Allow glance_store to refresh token when upload or download data to Swift store. glance_store identifies if token is going to expire soon when executing request to Swift and refresh the token. For multi-tenant swift store glance_store uses trusts, for single-tenant swift store glance_store uses credentials from swift store configurations. Please also note that this feature is enabled if and only if Keystone V3 API is available and enabled.

  • Implemented image uploading, downloading and deletion for cinder store. It also supports new settings to put image volumes into a specific project to hide them from users and to control them based on ACL of the images. Note that cinder store is currently considered experimental, so current deployers should be aware that the use of it in production right now may be risky.

Sicherheitsrelevante Probleme

  • Previously the VMWare Datastore was using HTTPS Connections from httplib which do not verify the connection. By switching to using requests library the VMware storage backend now verifies HTTPS connection to vCenter server and thus addresses the vulnerabilities described in OSSN-0033.

0.11.0

Einleitung

glance_store._drivers.gridfs

Ablaufwarnungen

  • The gridfs driver has been removed from the tree. The environments using this driver that were not migrated will stop working after the upgrade.

Andere Notizen

  • For years, /var/lib/glance/images has been presented as the default dir for the filesystem store. It was not part of the default value until now. New deployments and ppl overriding config files should watch for this.

  • Reno wird für die Verwaltung der Releasenotes verwendet.