Mitaka Series Release Notes

0.12.0

Prelude

Prevent Unauthorized errors during uploading or donwloading data to Swift store.

New Features

  • Allow glance_store to refresh token when upload or download data to Swift store. glance_store identifies if token is going to expire soon when executing request to Swift and refresh the token. For multi-tenant swift store glance_store uses trusts, for single-tenant swift store glance_store uses credentials from swift store configurations. Please also note that this feature is enabled if and only if Keystone V3 API is available and enabled.

  • Implemented image uploading, downloading and deletion for cinder store. It also supports new settings to put image volumes into a specific project to hide them from users and to control them based on ACL of the images. Note that cinder store is currently considered experimental, so current deployers should be aware that the use of it in production right now may be risky.

Security Issues

  • Previously the VMWare Datastore was using HTTPS Connections from httplib which do not verify the connection. By switching to using requests library the VMware storage backend now verifies HTTPS connection to vCenter server and thus addresses the vulnerabilities described in OSSN-0033.

0.11.0

Prelude

glance_store._drivers.gridfs

Deprecation Notes

  • The gridfs driver has been removed from the tree. The environments using this driver that were not migrated will stop working after the upgrade.

Other Notes

  • For years, /var/lib/glance/images has been presented as the default dir for the filesystem store. It was not part of the default value until now. New deployments and ppl overriding config files should watch for this.

  • Start using reno to manage release notes.