lp://staging/~yolanda.robla/glance/precise-essex-proposed
- Get this branch:
- bzr branch lp://staging/~yolanda.robla/glance/precise-essex-proposed
Branch merges
- James Page: Pending requested
-
Diff: 35 lines (+9/-7)1 file modifieddebian/changelog (+9/-7)
- Ubuntu Development Team: Pending requested
-
Diff: 1475 lines (+1301/-0) (has conflicts)34 files modified.bzr-builddeb/default.conf (+2/-0)
debian/changelog (+538/-0)
debian/compat (+1/-0)
debian/control (+154/-0)
debian/copyright (+24/-0)
debian/glance-api.dirs (+5/-0)
debian/glance-api.glance-api.upstart (+9/-0)
debian/glance-api.install (+13/-0)
debian/glance-api.logrotate (+7/-0)
debian/glance-api.prerm (+13/-0)
debian/glance-client.install (+1/-0)
debian/glance-common.dirs (+6/-0)
debian/glance-common.install (+2/-0)
debian/glance-common.postinst (+21/-0)
debian/glance-common.postrm (+16/-0)
debian/glance-registry.glance-registry.upstart (+9/-0)
debian/glance-registry.install (+3/-0)
debian/glance-registry.logrotate (+7/-0)
debian/glance-registry.postinst (+17/-0)
debian/glance-registry.prerm (+13/-0)
debian/patches/disable-network-for-docs.patch (+14/-0)
debian/patches/disable-swift-tests.patch (+143/-0)
debian/patches/disable_db_table_auto_create.patch (+138/-0)
debian/patches/fix_migration_012_foreign_keys.patch (+59/-0)
debian/patches/series (+5/-0)
debian/patches/sql_conn.patch (+12/-0)
debian/pycompat (+1/-0)
debian/python-glance-doc.doc-base (+9/-0)
debian/python-glance-doc.docs (+1/-0)
debian/python-glance-doc.links (+3/-0)
debian/python-glance.install (+2/-0)
debian/rules (+49/-0)
debian/source/format (+1/-0)
debian/watch (+3/-0)
Related source package recipes
Branch information
Recent revisions
- 175. By Yolanda Robla
-
- [74b067d] v1 api returns location as header for cached images LP: 1135541
- CVE-2013-1840
LP: 1098962 (CVE-2013-0212) - 171. By Yolanda Robla
-
[ Yolanda Robla Mota ]
* Resynchronize with stable/essex (efd7e75b):
- [efd7e75] Non-admin users can cause public glance images to be deleted
from the backend storage repository (CVE-2012-4573)
- [e6be061] Jenkins jobs fail because of incompatibility between sqlalchemy-
migrate and the newest sqlalchemy-0.8.0b1 (LP: #1073569)
* Dropped patches, superseeded by snapshot:
- debian/patches/ CVE-2012- 4573.patch: [efd7e75]
* SECURITY UPDATE: deletion of arbitrary public and shared images via
authenticated user
- debian/patches/ CVE-2012- 4573.patch: adjust glance/ api/v1/ images. py to
ensure image is owned by user before delayed_deletion
- CVE-2012-4573 - 168. By Yolanda Robla
-
Resynchronize with stable/essex (efd7e75b) LP: #1089488:
modified changelog to add LP bug number - 167. By Yolanda Robla
-
* Dropped patches, applied upstream:
- debian/patches/ CVE-2012- 4573.patch: adjust glance/ api/v1/ images. py to
ensure image is owned by user before delayed_deletion
from the backend storage repository
migrate and the newest sqlalchemy-0.8.0b1
* debian/rules: skipping pep8 tests to allow building - 166. By Yolanda Robla
-
* Resynchronize with stable/essex (efd7e75b):
- [efd7e75] Non-admin users can cause public glance images to be deleted
from the backend storage repository (LP: #1065187)
- [e6be061] Jenkins jobs fail because of incompatibility between sqlalchemy-
migrate and the newest sqlalchemy-0.8.0b1 (LP: #1073569)
* SECURITY UPDATE: deletion of arbitrary public and shared images via
authenticated user
- debian/patches/ CVE-2012- 4573.patch: adjust glance/ api/v1/ images. py to
ensure image is owned by user before delayed_deletion
- CVE-2012-4573
* Automated Ubuntu testing build:
* No change rebuild.
* Automated Ubuntu testing build:
* No change rebuild.
* Automated Ubuntu testing build:
* No change rebuild.
* Automated Ubuntu testing build:
* [0d4d1f7] Compile BigInteger to INTEGER for sqlite
* [f5ed968] Add MySQLPingListener() back
* [8e642d9] Run version_control after auto-creating the DB
* [6390447] rename the right index
* Automated Ubuntu testing build:
* No change rebuild.
* Automated Ubuntu testing build:
* [1e708f4] Allow specifying the current version in 'glance-manage
version_control'
* [d21cf6b] Reject excessively long image names.
* Automated Ubuntu testing build:
* [2f8bec1] Add support for auth version 2.
* Automated Ubuntu testing build:
* [d21cf6b] Reject excessively long image names.
* [9b68243] Allow yes-like values to be interpreted as bool
* [bb7c329] Support owner paramater to glance add
* Automated Ubuntu testing build:
* [127101a] Ensure functional db connection in configure_db()
* [9b68243] Allow yes-like values to be interpreted as bool
* [bb7c329] Support owner paramater to glance add
* [bf0fec0] Send output of stty test cmd to stderr.
* [98f5347] Fixed db conn recovery issue. Fixes bug 954971.
* [98f6f2e] Set content_type for messages in Qpid notifier.
* [244359e] Avoid leaking secrets into config logging.
* [75da821] Fixes lp959670
* Automated Ubuntu testing build:
* No change rebuild.
* Automated Ubuntu testing build:
* No change rebuild.
* Automated Ubuntu testing build:
* [86dbfe1] Use unique per-test S3 bucket name.
* [bf0fec0] Send output of stty test cmd to stderr.
* [98f6f2e] Set content_type for messages in Qpid notifier.
* [244359e] Avoid leaking secrets into config logging.
* [75da821] Fixes lp959670
* Automated Ubuntu testing build:
* No change rebuild.
* Automated Ubuntu testing build:
* No change rebuild.
* Automated Ubuntu testing build:
* [e677abf] Specify location when creating s3 bucket.
* Automated Ubuntu testing build:
* No change rebuild.
* Automated Ubuntu testing build:
* No change rebuild.
* Automated Ubuntu testing build:
* [f4a7035] Final versioning
* Automated Ubuntu testing build:
* [15d9c8f] Update 'bin/glance add' docstring *_format options
* [b0a608c] Ensure all unauthorized reponses return 403
* [a2dc56a] Avoid leaking s3 credentials into logs.
* [23c222a] Avoid glance-logcapture displaying empty logs.
* [17397a9] Add 'publicize_image' policy
* [c00ba7d] tox tests with run_tests.sh instead of nosetests
* [f6ba144] Don't use auth url to determine service protocol
* [f5603c8] Use tenant/user ids rather than names
* [b3be2e4] Update context middleware with supported headers
* [c5cb723] Fixes LP #957401 - Remove stray output on stderr
* [1f0c4ba] check connection in Listener. refer to Bug #943031
* [fdb56c8] Avoid tests leaking empty tmp dirs.
* [5bd453b] Remove keystone.middleware. glance_ auth_token
* [094ba9d] Updating version of Keystone
* [2145c24] nose plugin to capture glance service logs
* [5638fab] Do not error when service does not have 'type'.
* [2e94076] Disambiguates HTTP 401 and HTTP 403 in Glance. Fixes bug
956513.
* Automated Ubuntu testing build:
* [9681f40] Add policy checks for cache manage middleware
* [eff04c5] Add admin_role option
* Automated Ubuntu testing build:
* [29b035b] Add new UnexpectedStatus exception.
* [eff04c5] Add admin_role option
* Automated Ubuntu testing build:
* [9f2de6c] Remove references to admin_token
* [d759821] Remove dependency on apiv1app from cachemanage
* Automated Ubuntu testing build:
* No change rebuild.
* Automated Ubuntu testing build:
* [d453def] Remove glance-cache-queue- image
* Automated Ubuntu testing build:
* [d759821] Remove dependency on apiv1app from cachemanage
* [e2e88d8] Return 403 when policy engine denies action
* [6619298] Ensure copy and original image IDs differ.
* Automated Ubuntu testing build:
* [0a19061] Add error checking to get_terminal_size.
* [6619298] Ensure copy and original image IDs differ.
* [182b71e] Include babel.cfg and glance.pot in tarballs
* [3a8103e] Updating authentication docs
* Automated Ubuntu testing build:
* [c593722] Well-formed exception types for 413 & 503.
* [3a8103e] Updating authentication docs
* Automated Ubuntu testing build:
* [182b71e] Include babel.cfg and glance.pot in tarballs
* Automated Ubuntu testing build:
* [3a8103e] Updating authentication docs
* [d9f4cbf] General docs cleanup
* [b6b28d1] Add note about cache config options
* [65b1b84] Change CLIAuth arg names
* [ce33576] Update cli docs
* [691deeb] Remove 'community' doc page
* Automated Ubuntu testing build:
* No change rebuild.
* Automated Ubuntu testing build:
* [ee2d212] General cleanup
* [f1bc67c] Remove todolist from docs
* [b6b28d1] Add note about cache config options
* [ce33576] Update cli docs
* [691deeb] Remove 'community' doc page
* Automated Ubuntu testing build:
* [d9f4cbf] General docs cleanup
* [f1bc67c] Remove todolist from docs
* [55eb458] Add module name to ClientException
* [691deeb] Remove 'community' doc page
* [6e2f39d] Removing registry spec from docs
* Automated Ubuntu testing build:
* No change rebuild.
* Automated Ubuntu testing build:
* [51a06aa] Retry sendfile on EAGAIN or EBUSY
* [55eb458] Add module name to ClientException
* Automated Ubuntu testing build:
* [1615a1f] Fixes LP#934492 - Allow Null Name
* [95efaf0] Fix typo in tox.ini.
* [4d41027] Glance cache updates to support Keystone Essex.
* [b43b676] updates man page for glance-scrubber. this time with extra
pep8 scrubbing powers. Fixes bug 908803
* [cb70ff9] Update tox.ini for jenkins.
* [80cd81f] Replaced use of webob.Request.str_param
* [2773170] Update paste file to use service tenant.
* [9e640d0] Update bin/glance to allow for specifying image id
* [630c9a5] Fix deprecated warnings.
* [bbf46b4] Remove trailing whitespaces in regular file
* [c6a626e] add git commit date / sha1 to sphinx html docs
* [4ef665a] Glance skip prompting if stdin isn't a tty
* [d8f0c38] Added first step of babel-based translations.
* Automated Ubuntu testing build:
* [7125728] Refresh SSL cfg after parsing service catalog entry
* [4d41027] Glance cache updates to support Keystone Essex.
* Automated Ubuntu testing build:
* [95efaf0] Fix typo in tox.ini.
* Automated Ubuntu testing build:
* [4d41027] Glance cache updates to support Keystone Essex.
* Automated Ubuntu testing build:
* [b43b676] updates man page for glance-scrubber. this time with extra
pep8 scrubbing powers. Fixes bug 908803
* [80cd81f] Replaced use of webob.Request.str_param
* [2773170] Update paste file to use service tenant.
* [9e640d0] Update bin/glance to allow for specifying image id
* [630c9a5] Fix deprecated warnings.
* [4ef665a] Glance skip prompting if stdin isn't a tty
* Automated Ubuntu testing build:
* [cb70ff9] Update tox.ini for jenkins.
* [80cd81f] Replaced use of webob.Request.str_param
* [2773170] Update paste file to use service tenant.
* [9e640d0] Update bin/glance to allow for specifying image id
* [630c9a5] Fix deprecated warnings.
* [cb70ff9] Update tox.ini for jenkins. [9e640d0] Update bin/glance to
allow for specifying image id [d8f0c38] Added first step of babel-
based translations.
* No change rebuild.
* [bbf46b4] Remove trailing whitespaces in regular file [d8f0c38]
Added first step of babel-based translations.
* [c6a626e] add git commit date / sha1 to sphinx html docs
* No change rebuild.
* [8d46288] Allow region selection when using V2 keystone [95dc869]
Fix update of queued image with location set.
* [e653a00] Disallow file:// sources on location or copy-from.
[95dc869] Fix update of queued image with location set.
* [63f3af7] Progress bar causes intermittent test failures [0613daa]
Support copy-from for queued images. [2090314] Add checksum to an
external image during add.
* No change rebuild.
* [7db2075] Complete fix for modification of unowned image [0613daa]
Support copy-from for queued images.
* [d26f66b] Align to jenkins tox patterns.
* [9593687] Fix MANIFEST.in to include missing files
* [f6e9199] Fix exception name [8efa62d] Create sorting/pagination
helper function [c83bce1] Support new image copied from external
storage. [d5539b2] blueprint progressbar-upload- image
* No change rebuild.
* [c0bce06] Correct kernel/ramdisk example in docs [d5539b2] blueprint
progressbar-upload- image
* [8efa62d] Create sorting/pagination helper function
* [f380c9e] Avoid TestClient error on missing '__mro__' attr
* [5f31371] disk/container_format required on image activate
* [62c913c] Require container & disk formats on image create
* No change rebuild.
* debian/control: Add python-iso8601 to python-glance.
* [f8f9f17] Support non-UTC timestamps in changes-since filter
* [45f9e05] Return 503 if insufficient permission on filestore
* [3b8ff18] Adds README.rst to the tarball.
* [1d2356c] Ensure StorageFull only raised on space starvation
[b90575d] 003_add_disk_format. py: Avoid deadlock in upgrade
[59ca8b0] Function uses 'msg' not 'message' [7990cb4] Fix paging
ties [0f0fe2b] New -k/--insecure command line option
* [3af64e5] Require auth URL if keystone strategy is enabled.
[59ca8b0] Function uses 'msg' not 'message'
* No change rebuild.
* [b90575d] 003_add_disk_format. py: Avoid deadlock in upgrade
[0f0fe2b] New -k/--insecure command line option
* [7990cb4] Fix paging ties [0f0fe2b] New -k/--insecure command line
option [f0832fd] Add a generic tox build environment.
* No change rebuild.
* [40b5ed7] Ensure sane chunk size when pysendfile unavailable.
[f0832fd] Add a generic tox build environment.
* No change rebuild.
* [56efd27] Fix pep8 error [2fa1ed0] Implement blueprint add-qpid-
support.
* [c77f4dd] Update Authors file [2fa1ed0] Implement blueprint add-
qpid-support. [e7b32c1] Include glance/tests/etc [9c2c97f] Force
auth_strategy= keystone if --auth_url or OS_AUTH_URL is set
* [481929b] Don't fail response if caching failed
* [e4db87c] Make Glance work with SQLAlchemy 0.7 [8043962] Respawn
glance services on unexpected death.
* No change rebuild.
* [7696ae5] Use sendfile() for zero-copy of uploaded images. [eea25b4]
Prep tox config for jenkins builds.
* [8df4d1d] Blueprint cli-auth: common cli args [eea25b4] Prep tox
config for jenkins builds.
* [c6c458e] Get rid of DeprecationWarning during db migration
[3092156] Add filter validation to glance API [fdb7b21] Fixes LP
922723 [81ce7b4] Handle access restriction to public unowned image
[76b894b] Don't force client to supply SSL cert/key
* No change rebuild.
* [132c54f] Add --capture-output option to glance-control. [fdb7b21]
Fixes LP 922723 [81ce7b4] Handle access restriction to public
unowned image
* [3092156] Add filter validation to glance API [fdb7b21] Fixes LP
922723 [81ce7b4] Handle access restriction to public unowned image
* [7c2e325] Typofix is_publi -> is_public [c77776a] Fix Bug #919255
* [593e8c2] Add --await-child option to glance-control.
* [c77776a] Fix Bug #919255
* [16b682d] Cap boto version at 2.1.1
* [28f0dd4] Simplify pep8 output to one line per violation
* [28f2cae] Check service catalogue type rather than name
* No change rebuild.
* [2ce7838] Restore inadvertantly dropped lines. [c713c22] Few small
cleanups to align with Nova
* No change rebuild.
* [08dbc2a] Include the LICENSE file in the tarball.
* No change rebuild.
* [aaa18a0] Change xattr usage to be more broadly compatible.
* [8ec2f81] Fix mixed usage of 's' and 'self'.
* No change rebuild.
* [180ae89] Adds documentation for policy files. [6cac288] More
flexible specification of auth credentials. [601fb31] glance-api
fails fast if default store unsupported [946278d] Bug #909574:
Glance does not sanity-check given image size on upload [3b2ef8e]
glance-control need not locate a server's config file (lp#919520)
* [7094e89] Client.add_image() accepts image data as iterable.
Bug #909574: Glance does not sanity-check given image size on upload
[3b2ef8e] glance-control need not locate a server's config file
(lp#919520)
* No change rebuild.
* [601fb31] glance-api fails fast if default store unsupported
[0db2cfa] Bug#911599 - Location field wiped on update
* [946278d] Bug #909574: Glance does not sanity-check given image size
on upload [0db2cfa] Bug#911599 - Location field wiped on update
[2e8e628] Set url's on AuthBadRequest exceptions. [eeb4d1e] Add
policy checking for basic image operations [41b981c] Swallow
exception on unsupported image deletion.
* [0db2cfa] Bug#911599 - Location field wiped on update [2e8e628] Set
url's on AuthBadRequest exceptions. [eeb4d1e] Add policy checking
for basic image operations [41b981c] Swallow exception on
unsupported image deletion.
* [eb2ab3a] Return 400 if registry returns 400. [eeb4d1e] Add policy
checking for basic image operations [41b981c] Swallow exception on
unsupported image deletion.
* No change rebuild.
* No change rebuild.
* No change rebuild.
* [2e8e628] Set url's on AuthBadRequest exceptions.
* [b712949] Ensure we only send a single content-type header
* [e893b24] Multi-process Glance API server support. [097ced8] Make
paste.ini file location configurable. [5835b30] Avoid the need for
users to manually edit PasteDeploy config in order to switch
pipelines. [14593a3] Split out paste deployment config from the core
glance *.conf files into corresponding *-paste.ini files.
* No change rebuild.
* [3956c54] Set size metadata correctly for remote images. [b4624ec]
Fixes LP Bug#913608 - tests should be isolated [6fd0054] Set correct
Content-Length on cached remote images
* [5835b30] Avoid the need for users to manually edit PasteDeploy
config in order to switch pipelines. [b4624ec] Fixes LP Bug#913608 -
tests should be isolated [6fd0054] Set correct Content-Length on
cached remote images
* [14593a3] Split out paste deployment config from the core glance
*.conf files into corresponding *-paste.ini files.
* [b4624ec] Fixes LP Bug#913608 - tests should be isolated
* [6fd0054] Set correct Content-Length on cached remote images
* [195e667] Implement retries in notify_kombu [2be1efe] Remove
assertDictEqual for python 2.6 compatibility.
* [b46401a] Return correct href if bind_host is 0.0.0.0. [2be1efe]
Remove assertDictEqual for python 2.6 compatibility. [8780360] LP
Bug#912800 - Delete image remain in cache [e2f9d15] Add
notifications for sending an image
* No change rebuild.
* No change rebuild.
* [1590dad] Add optional revision field to version number [1cff825]
Add Fedora clauses to the installing document. [422c1e4] Remove
doc/Makefile. [d466cec] Fixes incorrect URI scheme for s3 backend
[9633697] Add comments for swift options in glance-api.conf.
[f8ae3c4] Split notification strategies out into modules.
* No change rebuild.
* No change rebuild.
* No change rebuild.
* No change rebuild.
* [4844917] Bug #909533: Swift uploads through Glance using
ridiculously small chunks [1cff825] Add Fedora clauses to the
installing document. [422c1e4] Remove doc/Makefile. [aba34d1] Fix
help output for inverse of BoolOpt. [5e5d2eb] PEP8 glance cleanup
[58532a4] Add more man pages. [668149d] Set execute permissions on
glance-cache-queue- image.
* No change rebuild.
* No change rebuild.
* No change rebuild.
* debian/glance- registry. postinst: Ensure new database is version_controlled
before first call of db_sync.
Branch metadata
- Branch format:
- Branch format 7
- Repository format:
- Bazaar repository format 2a (needs bzr 1.16 or later)
