[opensuse-buildservice] Open Build Service(OBS) 2.4.4 released
Open Build Service(OBS) 2.4.4 just got released =============================================== Another bugfix release of the 2.4 series is out there. This release fixes a serious security leak tracked as CVE-2013-3703 and Novell bugzilla 828256: Users can add or remove other users to projects or packages even when they have no maintainership there. All OBS 2.4 admins a requested to updated immediatly to close this hole. Instances with OBS 2.3 and before are not affected. While OBS 2.4.4 only contains the bugfix for this situation, we introduced a better design in master branch to avoid these kinds of bugs in future. Beside of that a number of bugfixes for constraints and change detections in the backend are included in this release.
From the official Release Notes:
Feature backports: ================== * none Changes: ======== * None Bugfixes: ========= * api: Fix for CVE-2013-3703 * api: Do not hide projects which have an explicit access enabled tag. * api: handle invalid strings in options.yml for allow_user_to_create_home_project setting * backend: repository type changes got not catched by the scheduler * backend: fix project deleting not cleaning up build area in async mode * backend: hostlabel build constraints had no effect * backend: constraints defined in project config had no effect * backend: start more then one worker by default if not using zVM -- Adrian Schroeter email: adrian@suse.de SUSE LINUX GmbH, GF: Jeff Hawn, Jennifer Guild, Felix Imendörffer, HRB 21284 (AG Nürnberg) Maxfeldstraße 5 90409 Nürnberg Germany -- To unsubscribe, e-mail: opensuse-buildservice+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-buildservice+owner@opensuse.org
What is the status of LDAP support in 2.4? I can't migrate off of 12.1 / OBS 2.3 until LDAP support is fixed. -- Jon -- To unsubscribe, e-mail: opensuse-buildservice+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-buildservice+owner@opensuse.org
Am Dienstag, 9. Juli 2013, 14:41:43 schrieb Jon Nelson:
What is the status of LDAP support in 2.4? I can't migrate off of 12.1 / OBS 2.3 until LDAP support is fixed.
The last thing I heard is that LDAP should work in general, but since it is not part of the test suite, I can not assure you that. The new rewritten LDAP support, including test suite is on github, but not yet merged in master either. So, I would suggest that you test it first, maybe via some appliance. bye adrian -- Adrian Schroeter email: adrian@suse.de SUSE LINUX GmbH, GF: Jeff Hawn, Jennifer Guild, Felix Imendörffer, HRB 21284 (AG Nürnberg) Maxfeldstraße 5 90409 Nürnberg Germany -- To unsubscribe, e-mail: opensuse-buildservice+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-buildservice+owner@opensuse.org
On Wed, Jul 10, 2013 at 2:17 AM, Adrian Schröter <adrian@suse.de> wrote:
Am Dienstag, 9. Juli 2013, 14:41:43 schrieb Jon Nelson:
What is the status of LDAP support in 2.4? I can't migrate off of 12.1 / OBS 2.3 until LDAP support is fixed.
The last thing I heard is that LDAP should work in general, but since it is not part of the test suite, I can not assure you that.
OK.
The new rewritten LDAP support, including test suite is on github, but not yet merged in master either.
So, the LDAP code that ships with 2.4 is not the same as what was in 2.3 *and* there is newer-yet LDAP support that is unmerged? What's the timeframe on getting it integrated. I might just wait. -- Jon -- To unsubscribe, e-mail: opensuse-buildservice+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-buildservice+owner@opensuse.org
Am Mittwoch, 10. Juli 2013, 09:05:52 schrieb Jon Nelson:
On Wed, Jul 10, 2013 at 2:17 AM, Adrian Schröter <adrian@suse.de> wrote:
Am Dienstag, 9. Juli 2013, 14:41:43 schrieb Jon Nelson:
What is the status of LDAP support in 2.4? I can't migrate off of 12.1 / OBS 2.3 until LDAP support is fixed.
The last thing I heard is that LDAP should work in general, but since it is not part of the test suite, I can not assure you that.
OK.
The new rewritten LDAP support, including test suite is on github, but not yet merged in master either.
So, the LDAP code that ships with 2.4 is not the same as what was in 2.3
It is nearly the same, but since a newer ruby stack is used and since there are no test cases no-one really can tell if works still.
*and* there is newer-yet LDAP support that is unmerged? What's the timeframe on getting it integrated. I might just wait.
No idea, last thing I heard it is quite complete, but I saw no pull request so far. You want to check yourself here: https://github.com/planetargon/open-build-service/commits/master -- Adrian Schroeter email: adrian@suse.de SUSE LINUX GmbH, GF: Jeff Hawn, Jennifer Guild, Felix Imendörffer, HRB 21284 (AG Nürnberg) Maxfeldstraße 5 90409 Nürnberg Germany -- To unsubscribe, e-mail: opensuse-buildservice+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-buildservice+owner@opensuse.org
participants (2)
-
Adrian Schröter -
Jon Nelson