Train Series Release Notes

Train Series Release Notes¶

3.41.6-4¶

Security Issues¶

This patch ensures that we mask sensitive data when masking password, even if double quotes are used as password value.

Bug Fixes¶

Fix regex used to mask password. The strutils.mask_password function will now correctly handle passwords that contain single or double quotes. Previously, only the characters before the quote were masked.

3.41.5¶

Bug Fixes¶

qemu 4.1.0 output shifts to scientific notation at 1000mb, breaking oslo.utils. QemuImgInfo is now fixed to support this notation.

3.41.4¶

Security Issues¶

This patch ensures that we mask sensitive data when masking dicts, even if the case doesn’t match. This means the behaviour of mask_password and mask_dict_password is now the same.

Additional password names were included from real world logs that contained sensitive information.

3.41.3¶

Security Issues¶

This patch ensures we actually mask sensitive data, even if case doesn’t match the static entry we have in the patterns.

It also ensures that some fancy names with a common base, but added number are actually taken care of.

Bug Fixes¶

https://bugs.launchpad.net/tripleo/+bug/1850843

this page last updated: 2024-03-12 14:15:45

Creative Commons Attribution 3.0 License

Except where otherwise noted, this document is licensed under Creative Commons Attribution 3.0 License. See all OpenStack Legal Documents.