[ubuntu/kinetic-proposed] nova 3:25.0.1+git2022091213.11cb31258f-0ubuntu1 (Accepted)

Corey Bryant corey.bryant at canonical.com
Mon Sep 12 18:02:13 UTC 2022 

nova (3:25.0.1+git2022091213.11cb31258f-0ubuntu1) kinetic; urgency=medium

  * Enable functionality on hardened systems, specifically dealing
    with limited access in /var/lib/nova (LP: #1967956).
    - d/nova-compute-libvirt.postinst, d/nova-compute-kvm.postinst:
      Add libvirt-qemu user to nova group, and add nova user to kvm group.
      This allows the libvirt-qemu user to access /var/lib/nova/ files
      owned by the nova group, and it allows the nova user to access
      /var/lib/nova/ files owned by the kvm group.
    - d/p/change-tempdir-perms-for-libvirt-qemu.patch: Added to allow
      libvirt-qemu user to access tempdir based on nova group membership.
    - d/nova-common.postinst: Set permissions for /var/lib/nova/ files
      to 0640 and directories to 0750, with the exception of
      /var/lib/nova/.ssh/ files, of which we do not want to change
      permissions.
  * New upstream snapshot for OpenStack Zed.
  * d/control: Align (Build-)Depends with upstream.

Date: Mon, 12 Sep 2022 13:27:40 -0400
Changed-By: Corey Bryant <corey.bryant at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/nova/3:25.0.1+git2022091213.11cb31258f-0ubuntu1
-------------- next part --------------
Format: 1.8
Date: Mon, 12 Sep 2022 13:27:40 -0400
Source: nova
Built-For-Profiles: noudeb
Architecture: source
Version: 3:25.0.1+git2022091213.11cb31258f-0ubuntu1
Distribution: kinetic
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Corey Bryant <corey.bryant at canonical.com>
Launchpad-Bugs-Fixed: 1967956
Changes:
 nova (3:25.0.1+git2022091213.11cb31258f-0ubuntu1) kinetic; urgency=medium
 .
   * Enable functionality on hardened systems, specifically dealing
     with limited access in /var/lib/nova (LP: #1967956).
     - d/nova-compute-libvirt.postinst, d/nova-compute-kvm.postinst:
       Add libvirt-qemu user to nova group, and add nova user to kvm group.
       This allows the libvirt-qemu user to access /var/lib/nova/ files
       owned by the nova group, and it allows the nova user to access
       /var/lib/nova/ files owned by the kvm group.
     - d/p/change-tempdir-perms-for-libvirt-qemu.patch: Added to allow
       libvirt-qemu user to access tempdir based on nova group membership.
     - d/nova-common.postinst: Set permissions for /var/lib/nova/ files
       to 0640 and directories to 0750, with the exception of
       /var/lib/nova/.ssh/ files, of which we do not want to change
       permissions.
   * New upstream snapshot for OpenStack Zed.
   * d/control: Align (Build-)Depends with upstream.
Checksums-Sha1:
 ac877b5782c6fcceb53e23102fe7b64916e7475e 7029 nova_25.0.1+git2022091213.11cb31258f-0ubuntu1.dsc
 b0a784b8b488323f1c7934e71ca30361da330438 9439299 nova_25.0.1+git2022091213.11cb31258f.orig.tar.gz
 a0e6f1444bf5e3902fabc715dfc66387f7f96bd6 40100 nova_25.0.1+git2022091213.11cb31258f-0ubuntu1.debian.tar.xz
 7f394240deca172ac32fbe8c82d90508c49a10ed 9929 nova_25.0.1+git2022091213.11cb31258f-0ubuntu1_source.buildinfo
Checksums-Sha256:
 26bc3ddc798b32d3e2ca53d3803eacd1a1d43f6f45fd1772b8983a6ae24ab837 7029 nova_25.0.1+git2022091213.11cb31258f-0ubuntu1.dsc
 2be3e5ede33af5b5794523d8547a426c8669cbcd635b52cfa8ad0e1f3fbdde3f 9439299 nova_25.0.1+git2022091213.11cb31258f.orig.tar.gz
 df298e0b46763aa66ab53435f0b18a1e60954ab20a082834bbce757a213c063a 40100 nova_25.0.1+git2022091213.11cb31258f-0ubuntu1.debian.tar.xz
 d646877d8b353d0f59b7277c40d3dcda71574af2c439ce77e231426a60c4aab1 9929 nova_25.0.1+git2022091213.11cb31258f-0ubuntu1_source.buildinfo
Files:
 c4e08d92e95be12dca56c9cf95f0ab9f 7029 net extra nova_25.0.1+git2022091213.11cb31258f-0ubuntu1.dsc
 3261ed0bb4bf3274b2ab58ec9f38c6b4 9439299 net extra nova_25.0.1+git2022091213.11cb31258f.orig.tar.gz
 6b7ff3e459e9609fcac1998271438cd0 40100 net extra nova_25.0.1+git2022091213.11cb31258f-0ubuntu1.debian.tar.xz
 7e0df1be2797309c2668be0c05ccd18f 9929 net extra nova_25.0.1+git2022091213.11cb31258f-0ubuntu1_source.buildinfo
Original-Maintainer: Openstack Maintainers <openstack at lists.launchpad.net>

More information about the kinetic-changes mailing list