ELBA-2020-5446

ELBA-2020-5446 - cloud-init bug fix and enhancement update

Type:BUG
Severity:NA
Release Date:2020-12-18

Description


[19.4-7.0.3.el7_9.3]
- Add conditional restart of NetworkManager for cloud-final. [Orabug: 31965645]
- Correct postinstall upgrade cloud-init.service mismerge order.
- Add Oracle Linux variant to known distros
- Add cloud-init hotplug event handling support [Orabug: 30485135]
- Oracle data source should configure secondary VNICs [Orabug: 30487563]
- Add support for netfailover detection [Orabug: 30487591]
- Avoid hotplug handling when configure_secondary_nics is disabled [Orabug: 31086905]
- Set per-platform default NM_CONTROLLED=no for OCI [Orabug: 31086905]
- Remove secondary VNIC config from cache for hot unplug [Orabug: 31086905]
- Fix OL distro specific issues and dependency compatibility [Orabug: 30435672]
- Fix swap file size allocation logic to allocate maxsize [Orabug: 29952349]
- Make Oracle datasource detect dracut based config files [Orabug: 29956753]

[19.4-7.el7_9.3]
- ci-network-Fix-type-and-respect-name-when-rendering-vla.patch [bz#1861871]
- Resolves: bz#1861871
([rhel7][cloud-init] ifup bond0.504 Error: Connection activation failed: No suitable device found for this connection [rhel-7.9.z])

[19.4-7.el7_9.3]
- ci-network-Fix-type-and-respect-name-when-rendering-vla.patch [bz#1861871]
- Resolves: bz#1861871
- ([rhel7][cloud-init] ifup bond0.504 Error: Connection activation failed: No suitable device found for this connection [rhel-7.9.z])

[19.4-7.el7_9.2]
- ci-When-tools.conf-does-not-exist-running-cmd-vmware-to.patch [bz#1839619]
- ci-Changing-notation-of-subp-call.patch [bz#1839619]
- ci-DHCP-sandboxing-failing-on-noexec-mounted-var-tmp-52.patch [bz#1871916]
- Resolves: bz#1839619
([ESXi][RHEL7.9][cloud-init]ERROR log in cloud-init.log after clone VM on ESXi platform [rhel-7.9.z])
- Resolves: bz#1871916
([Azure][RHEL 7.9] cloud-init Permission denied with the use of mount option noexec [rhel-7.9.z])

[19.4-7.el7]
- ci-ec2-only-redact-token-request-headers-in-logs-avoid-.patch [bz#1821999]
- Resolves: bz#1821999
([RHEL7.9] Do not log IMDSv2 token values into cloud-init.log)

[19.4-6.el7]
- ci-Use-reload-or-try-restart-instead-of-try-reload-or-r.patch [bz#1748015]
- ci-ec2-Do-not-log-IMDSv2-token-values-instead-use-REDAC.patch [bz#1821999]
- Resolves: bz#1748015
([cloud-init][RHEL7] /etc/resolv.conf lose config after reboot (initial instance is ok))
- Resolves: bz#1821999
([RHEL7.9] Do not log IMDSv2 token values into cloud-init.log)

[19.4-5.el7]
- ci-Remove-race-condition-between-cloud-init-and-Network-v2.patch [bz#1748015]
- ci-cc_mounts-fix-incorrect-format-specifiers-316.patch [bz#1772505]
- Resolves: bz#1748015
([cloud-init][RHEL7] /etc/resolv.conf lose config after reboot (initial instance is ok))
- Resolves: bz#1772505
([RHEL7] swapon fails with 'swapfile has holes' when created on a xfs filesystem by cloud-init)

[19.4-4.el7]
- ci-swap-file-size-being-used-before-checked-if-str-315.patch [bz#1772505]
- Resolves: bz#1772505
([RHEL7] swapon fails with 'swapfile has holes' when created on a xfs filesystem by cloud-init)

[19.4-3.el7]
- ci-Do-not-use-fallocate-in-swap-file-creation-on-xfs.-7.patch [bz#1772505]
- Resolves: bz#1772505
([RHEL7] swapon fails with 'swapfile has holes' when created on a xfs filesystem by cloud-init)

[19.4-2.el7]
- ci-Removing-cloud-user-from-wheel.patch [bz#1549638]
- ci-Remove-race-condition-between-cloud-init-and-Network.patch [bz#1748015]
- ci-cc_set_password-increase-random-pwlength-from-9-to-2.patch [bz#1812170]
- ci-utils-use-SystemRandom-when-generating-random-passwo.patch [bz#1812173]
- ci-Enable-ssh_deletekeys-by-default.patch [bz#1574338]
- Resolves: bz#1549638
([RHEL7]cloud-user added to wheel group and sudoers.d causes 'sudo -v' prompts for passphrase)
- Resolves: bz#1574338
(CVE-2018-10896 cloud-init: SSH host keys are not regenerated for the new instances [rhel-7])
- Resolves: bz#1748015
([cloud-init][RHEL7] /etc/resolv.conf lose config after reboot (initial instance is ok))
- Resolves: bz#1812170
(CVE-2020-8632 cloud-init: Too short random password length in cc_set_password in config/cc_set_passwords.py [rhel-7])
- Resolves: bz#1812173
(CVE-2020-8631 cloud-init: Use of random.choice when generating random password [rhel-7])

[19.4-1.el7]
- Rebase to 19.4 [bz#1803094]
- Resolves: bz#1803094
([RHEL-7.9] cloud-init rebase to 19.4)

[18.5-6.el7]
- ci-util-json.dumps-on-python-2.7-will-handle-UnicodeDec.patch [bz#1744526]
- Resolves: bz#1744526
([cloud-init][OpenStack] cloud-init can't persist instance-data.json)

[18.5-5.el7]
- ci-Fix-for-network-configuration-not-persisting-after-r.patch [bz#1593010]
- Resolves: bz#1593010
([cloud-init][RHVM]cloud-init network configuration does not persist reboot [RHEL 7.8])

[18.5-4.el7]
- ci-Azure-Return-static-fallback-address-as-if-failed-to.patch [bz#1726701]
- Resolves: bz#1726701
([Azure] [RHEL 7.8] Cloud-init fixes to support fast provisioning for Azure)

[18.5-3.el7]
- ci-Revert-azure-ensure-that-networkmanager-hook-script-.patch [bz#1707725]
- Resolves: bz#1707725
([WALA][cloud] cloud-init dhclient-hook script has some unexpected side-effects on Azure)

[18.5-2.el7]
- ci-Azure-Ensure-platform-random_seed-is-always-serializ.patch [bz#1687565]
- ci-DatasourceAzure-add-additional-logging-for-azure-dat.patch [bz#1687565]
- ci-Azure-Changes-to-the-Hyper-V-KVP-Reporter.patch [bz#1687565]
- ci-DataSourceAzure-Adjust-timeout-for-polling-IMDS.patch [bz#1687565]
- ci-cc_mounts-check-if-mount-a-on-no-change-fstab-path.patch [bz#1687565]
- Resolves: bz#1687565
(cloud-init 18.5 rebase for fast provisioning on Azure [RHEL 7])

[18.5-1.el7]
- Rebase to 18.5 [bz#1687565]
- Resolves: bz#1687565
(cloud-init 18.5 rebase for fast provisioning on Azure [RHEL 7])

[18.2-5.el7]
- ci-include-NOZEROCONF-yes-in-etc-sysconfig-network.patch [bz#1653131]
- Resolves: bz#1653131
(cloud-init remove 'NOZEROCONF=yes' from /etc/sysconfig/network)

[18.2-4.el7]
- ci-azure-Filter-list-of-ssh-keys-pulled-from-fabric.patch [bz#1684040]
- Resolves: bz#1684040
(CVE-2019-0816 cloud-init: extra ssh keys added to authorized_keys [rhel-7.7])

[18.2-3.el7]
- ci-cloud-init-per-don-t-use-dashes-in-sem-names.patch [bz#1664876]
- ci-Enable-cloud-init-by-default-on-vmware.patch [bz#1623281]
- Resolves: bz#1623281
([ESXi][RHEL7.6]Enable cloud-init by default on VMware)
- Resolves: bz#1664876
(cloud-init Storage-Management Functionality Is Erasing Filesystems)

[18.2-2.el7]
- ci-net-Wait-for-dhclient-to-daemonize-before-reading-le.patch [bz#1632967]
- Resolves: bz#1632967
([Azure] cloud-init dhcp.py dhcp_discovery() race with dhclient with preprovisioned VM in Azure)

* Thu Jun 21 2018 Miroslav Rezanina
- Rebase to 18.2
Resolves: rhbz#1525267

[0.7.9-24]
- Set DHCP_HOSTNAME on Azure to allow for the hostname to be
published correctly when bouncing the network.
Resolves: rhbz#1434109

[0.7.9-23]
- Fix a bug tha caused cloud-init to fail as a result of trying
to rename bonds.
Resolves: rhbz#1512247

[0.7.9-22]
- Apply patch from -21
Resolves: rhbz#1489270

[0.7.9-21]
- sysconfig: Fix a potential traceback introduced in the
0.7.9-17 build
Resolves: rhbz#1489270

[0.7.9-20]
- sysconfig: Correct rendering for dhcp on ipv6
Resolves: rhbz#1519271

[0.7.9-19]
- sysconfig: Fix rendering of default gateway for ipv6
Resolves: rhbz#1492726

[0.7.9-18]
- Start the cloud-init init local service after the dbus socket is created
so that the hostnamectl command works.
Resolves: rhbz#1450521

[0.7.9-17]
- Correctly render DNS and DOMAIN for sysconfig
Resolves: rhbz#1489270

[0.7.9-16]
- Disable NetworkManager management of resolv.conf if nameservers
are specified by configuration.
Resolves: rhbz#1454491

[0.7.9-15]
- Fix a null reference error in the rh_subscription module
Resolves: rhbz#1498974

[0-7.9-14]
- Include gateway if it's included in subnet configration
Resolves: rhbz#1492726

[0-7.9-13]
- Do proper cleanup of systemd units when upgrading from versions
0.7.9-3 through 0.7.9-8.
Resolves: rhbz#1465730

[0.7.9-12]
- Prevent Azure NM and dhclient hooks from running when cloud-init is
disabled (rhbz#1474226)

[0.7.9-11]
- Fix rendering of multiple static IPs per interface file
Resolves: rhbz#bz1497954

[0.7.9-10]
- AliCloud: Add support for the Alibaba Cloud datasource (rhbz#1482547)

[0.7.9-9]
- RHEL/CentOS: Fix default routes for IPv4/IPv6 configuration. (rhbz#1438082)
- azure: ensure that networkmanager hook script runs (rhbz#1440831 rhbz#1460206)
- Fix ipv6 subnet detection (rhbz#1438082)

[0.7.9-8]
- Update patches

[0.7.9-7]
- Add missing sysconfig unit test data (rhbz#1438082)
- Fix dual stack IPv4/IPv6 configuration for RHEL (rhbz#1438082)
- sysconfig: Raise ValueError when multiple default gateways are present. (rhbz#1438082)
- Bounce network interface for Azure when using the built-in path. (rhbz#1434109)
- Do not write NM_CONTROLLED=no in generated interface config files (rhbz#1385172)

[0.7.9-6]
- add power-state-change module to cloud_final_modules (rhbz#1252477)
- remove 'tee' command from logging configuration (rhbz#1424612)
- limit permissions on def_log_file (rhbz#1424612)
- Bounce network interface for Azure when using the built-in path. (rhbz#1434109)
- OpenStack: add 'dvs' to the list of physical link types. (rhbz#1442783)

[0.7.9-5]
- systemd: replace generator with unit conditionals (rhbz#1440831)

[0.7.9-4]
- Import to RHEL 7
Resolves: rhbz#1427280

[0.7.9-3]
- fixes for network config generation
- avoid dependency cycle at boot (rhbz#1420946)

[0.7.9-2]
- use timeout from datasource config in openstack get_data (rhbz#1408589)

[0.7.9-1]
- Rebased on upstream 0.7.9.
- Remove dependency on run-parts

[0.7.6-8]
- make rh_subscription plugin do nothing in the absence of a valid
configuration [RH:1295953]
- move rh_subscription module to cloud_config stage

[0.7.6-7]
- correct permissions on /etc/ssh/sshd_config [RH:1296191]

[0.7.6-6]
- rebuild for ppc64le

[0.7.6-5]
- bump revision for new build

[0.7.6-4]
- ensure rh_subscription plugin is enabled by default

[0.7.6-3]
- added dependency on python-jinja2 [RH:1215913]
- added rhn_subscription plugin [RH:1227393]
- require pyserial to support smartos data source [RH:1226187]

[0.7.6-2]
- Rebased RHEL version to Fedora rawhide
- Backported fix for https://bugs.launchpad.net/cloud-init/+bug/1246485
- Backported fix for https://bugs.launchpad.net/cloud-init/+bug/1411829

[0.7.6-1]
- New upstream version [RH:974327]
- Drop python-cheetah dependency (same as above bug)




Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 7 (aarch64) cloud-init-19.4-7.0.3.el7_9.3.src.rpm27d3a3ebbf7535ee184d9df88349bb78-
cloud-init-19.4-7.0.3.el7_9.3.aarch64.rpmbe162a804fbc6c9bb45f9589d2df047d-
Oracle Linux 7 (x86_64) cloud-init-19.4-7.0.3.el7_9.3.src.rpm27d3a3ebbf7535ee184d9df88349bb78-
cloud-init-19.4-7.0.3.el7_9.3.x86_64.rpmf1b2d4ba36ab037d64a0e0cab5938702-



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete