salt/doc/topics/releases/2017.7.1.rst

Salt 2017.7.1 Release Notes

Version 2017.7.1 is a bugfix release for 2017.7.0 <release-2017-7-0>.

Statistics

• Total Merges: 16
• Total Issue References: 12
• Total PR References: 31
• Contributors: 11 (Ch3LL, TiteiKo, garethgreenaway, gtmanfred, llua, rallytime, seedickcode, skizunov, terminalmage, twangboy, whiteinge)

Security Fix

CVE-2017-12791 Maliciously crafted minion IDs can cause unwanted directory traversals on the Salt-master

Correct a flaw in minion id validation which could allow certain minions to authenticate to a master despite not having the correct credentials. To exploit the vulnerability, an attacker must create a salt-minion with an ID containing characters that will cause a directory traversal. Credit for discovering the security flaw goes to: Vernhk@qq.com

Changelog for v2017.7.0..v2017.7.1

Generated at: 2018-05-26 20:28:44 UTC

• ISSUE saltstack/salt-jenkins#460: (Ch3LL) decorator tests failing on python3 (refs: #42548)
• PR #42595: (gtmanfred) make sure to pass arg as well @ 2017-07-28 16:21:58 UTC
  • PR #42548: (gtmanfred) pass in empty kwarg for reactor (refs: #42595)
  • a50fe5433a Merge pull request #42595 from gtmanfred/2017.7.1
  • 8f73804b24 make sure to pass arg as well
• PR #42597: (rallytime) Back-port #42590 to 2017.7.1 @ 2017-07-28 00:20:01 UTC
  • PR #42590: (TiteiKo) Fix missing tornado import (refs: #42597)
  • 3b583330de Merge pull request #42597 from rallytime/bp-42590
  • 8818b06f22 Fix missing tornado import
• ISSUE #42404: (gabekahen) [2017.7] file.managed with cmd_check "No such file or directory" (refs: #42411)
• ISSUE #33708: (pepinje) visudo check command leaves cache file in /tmp (refs: #38063, #42411)
• PR #42598: (rallytime) Back-port #42411 to 2017.7.1 @ 2017-07-28 00:19:13 UTC
  • PR #42411: (seedickcode) Fix file.managed check_cmd file not found - Issue #42404 (refs: #42598)
  • PR #38063: (llua) tmp file clean up in file.manage - fix for #33708 (refs: #42411)
  • 76f1e53e10 Merge pull request #42598 from rallytime/bp-42411
  • 190cdb8693 Fix file.managed check_cmd file not found - Issue #42404
• PR #42564: (rallytime) Back-port #42555 to 2017.7.1 @ 2017-07-26 17:32:02 UTC
  • PR #42555: (Ch3LL) add changelog to 2017.7.1 release notes (refs: #42564)
  • 5c7def9a43 Merge pull request #42564 from rallytime/bp-42555
  • 7bcaa5a4cc small markup fix for title
  • d066b599ca add changelog to 2017.7.1 release notes
• ISSUE saltstack/salt-jenkins#460: (Ch3LL) decorator tests failing on python3 (refs: #42548)
• PR #42548: (gtmanfred) pass in empty kwarg for reactor (refs: #42595) @ 2017-07-26 00:41:20 UTC
  • 711b742c54 Merge pull request #42548 from gtmanfred/2017.7.1
  • 0257c1dc32 pass in empty kwarg for reactor
  • b948e980d2 update chunk, not kwarg in chunk
• ISSUE #42519: (xuhcc) Error when installing package from file under Arch Linux (refs: #42522)
• PR #42522: (gtmanfred) pacman wildcard is only for repository installs @ 2017-07-24 20:51:05 UTC
  • 50c1635dcc Merge pull request #42522 from gtmanfred/2017.7.1
  • 7787fb9e1b pacman wildcard is only for repository installs
• PR #42508: (rallytime) Back-port #42474 to 2017.7.1 @ 2017-07-24 20:49:51 UTC
  • PR #42474: (whiteinge) Cmd arg kwarg parsing test (refs: #42508)
  • PR #39646: (terminalmage) Handle deprecation of passing string args to load_args_and_kwargs (refs: #42474)
  • 05c07ac049 Merge pull request #42508 from rallytime/bp-42474
  • 76fb074433 Add a test.arg variant that cleans the pub kwargs by default
  • 624f63648e Lint fixes
  • d246a5fc61 Add back support for string kwargs
  • 854e098aa0 Add LocalClient.cmd test for arg/kwarg parsing
• ISSUE #42427: (grichmond-salt) Issue Passing Variables created from load_json as Inline Pillar Between States (refs: #42435)
• PR #42472: (rallytime) Back-port #42435 to 2017.7.1 @ 2017-07-24 15:11:13 UTC
  • PR #42435: (terminalmage) Modify our custom YAML loader to treat unicode literals as unicode strings (refs: #42472)
  • 95fe2558e4 Merge pull request #42472 from rallytime/bp-42435
  • 5c47af5b98 Modify our custom YAML loader to treat unicode literals as unicode strings
• ISSUE #42374: (tyhunt99) [2017.7.0] salt-run mange.versions throws exception if minion is offline or unresponsive (refs: #42436)
• PR #42473: (rallytime) Back-port #42436 to 2017.7.1 @ 2017-07-24 15:10:29 UTC
  • PR #42436: (garethgreenaway) Fixes to versions function in manage runner (refs: #42473)
  • 5b99d45f54 Merge pull request #42473 from rallytime/bp-42436
  • 82ed919803 Updating the versions function inside the manage runner to account for when a minion is offline and we are unable to determine its version.
• ISSUE #42381: (zebooka) Git.detached broken in 2017.7.0 (refs: #42399)
• ISSUE #38878: (tomlaredo) [Naming consistency] git.latest "rev" option VS git.detached "ref" option (refs: #38898)
• PR #42471: (rallytime) Back-port #42399 to 2017.7.1 @ 2017-07-24 15:09:50 UTC
  • PR #42399: (rallytime) Update old "ref" references to "rev" in git.detached state (refs: #42471)
  • PR #38898: (terminalmage) git.detached: rename ref to rev for consistency (refs: #42399)
  • 3d1a2d3f9f Merge pull request #42471 from rallytime/bp-42399
  • b9a4669e5a Update old "ref" references to "rev" in git.detached state
• ISSUE #42400: (Enquier) Conflict in execution of passing pillar data to orch/reactor event executions 2017.7.0 (refs: #42031)
• PR #42470: (rallytime) Back-port #42031 to 2017.7.1 @ 2017-07-24 15:09:30 UTC
  • PR #42031: (skizunov) Fix: Reactor emits critical error (refs: #42470)
  • 09766bccbc Merge pull request #42470 from rallytime/bp-42031
  • 0a0c6287a4 Fix: Reactor emits critical error
• ISSUE #41949: (jrporcaro) Event returner doesn't work with Windows Master (refs: #42027)
• PR #42469: (rallytime) Back-port #42027 to 2017.7.1 @ 2017-07-21 22:41:02 UTC
  • PR #42027: (gtmanfred) import salt.minion for EventReturn for Windows (refs: #42469)
  • d7b172a15b Merge pull request #42469 from rallytime/bp-42027
  • ed612b4ee7 import salt.minion for EventReturn for Windows
• PR #42466: (rallytime) Back-port #42452 to 2017.7.1 @ 2017-07-21 19:41:24 UTC
  • PR #42452: (Ch3LL) update windows urls to new py2/py3 naming scheme (refs: #42466)
  • 8777b1a825 Merge pull request #42466 from rallytime/bp-42452
  • c10196f68c update windows urls to new py2/py3 naming scheme
• PR #42439: (rallytime) Back-port #42409 to 2017.7.1 @ 2017-07-21 17:38:10 UTC
  • PR #42409: (twangboy) Add Scripts to build Py3 on Mac (refs: #42439)
  • fceaaf41d0 Merge pull request #42439 from rallytime/bp-42409
  • 8176964b41 Remove build and dist, sign pkgs
  • 2c14d92a07 Fix hard coded pip path
  • 82fdd7c2e1 Add support for Py3
  • 2478447246 Update Python and other reqs
• ISSUE #42403: (astronouth7303) [2017.7] Pillar empty when state is applied from orchestrate (refs: #42433)
• PR #42441: (rallytime) Back-port #42433 to 2017.7.1 @ 2017-07-21 17:37:01 UTC
  • PR #42433: (terminalmage) Only force saltenv/pillarenv to be a string when not None (refs: #42441)
  • 660400560b Merge pull request #42441 from rallytime/bp-42433
  • 17f347123a Only force saltenv/pillarenv to be a string when not None