Revisions of venv-salt-minion
Yeray Gutiérrez Cedrés (ygutierrez)
accepted
request 1174253
from
Victor Zhestkov (vizhestkov)
(revision 70)
- Speed up salt.matcher.confirm_top by using __context__ - Do not call the async wrapper calls with the separate thread - Prevent OOM with high amount of batch async calls (bsc#1216063) - Add missing contextvars dependency in salt.version - Skip tests for unsupported algorithm on old OpenSSL version - Remove redundant `_file_find` call to the master - Prevent possible exception in tornado.concurrent.Future._set_done - Make reactor engine less blocking the EventPublisher - Make salt-master self recoverable on killing EventPublisher - Improve broken events catching and reporting - Make logging calls lighter - Remove unused import causing delays on starting salt-master - Added: * speed-up-salt.matcher.confirm_top-by-using-__context.patch * do-not-call-the-async-wrapper-calls-with-the-separat.patch * prevent-oom-with-high-amount-of-batch-async-calls-bs.patch * add-missing-contextvars-dependency-in-salt.version.patch * skip-tests-for-unsupported-algorithm-on-old-openssl-.patch * remove-redundant-_file_find-call-to-the-master.patch * prevent-possible-exception-in-tornado.concurrent.fut.patch * make-reactor-engine-less-blocking-the-eventpublisher.patch * make-salt-master-self-recoverable-on-killing-eventpu.patch * improve-broken-events-catching-and-reporting.patch * make-logging-calls-lighter.patch * remove-unused-import-causing-delays-on-starting-salt.patch
Pablo Suárez Hernández (PSuarezHernandez)
accepted
request 1172928
from
Victor Zhestkov (vizhestkov)
(revision 69)
- Include libffi and libyaml to the bundle for all of the clients to avoid extra dependencies from the client OS.
Victor Zhestkov (vizhestkov)
accepted
request 1168352
from
Marek Czernek (mczernek)
(revision 68)
Do not delete prev_env on transactional minions at runtime
Victor Zhestkov (vizhestkov)
accepted
request 1166868
from
Marek Czernek (mczernek)
(revision 67)
- Update Python version from 3.10 to 3.11 - Fix updating the venv-salt-minion pkg with itself - Enable build for SLE 11 - Added: * venv-salt-minion.initd - Include salt-test in venv-salt-minion-testsuite - Modified: * include-deb * include-rpm * exclude-deb * exclude-rpm - Convert oscap output to UTF-8 - Added: * switch-oscap-encoding-to-utf-8-639.patch - Make Salt compatible with Python 3.11 - Added: * fix-salt-warnings-and-testuite-for-python-3.11-635.patch - Ignore non-ascii chars in oscap output (bsc#1219001) - Added: * decode-oscap-byte-stream-to-string-bsc-1219001.patch - Fix detected issues in Salt tests when running on VMs - Added: * fix-tests-failures-and-errors-when-detected-on-vm-ex.patch - Make importing seco.range thread safe (bsc#1211649) - Added: * make-importing-seco.range-thread-safe-bsc-1211649.patch - Fix problematic tests and allow smooth tests executions on containers - Added: * fix-problematic-tests-and-allow-smooth-tests-executi.patch - Discover Ansible playbook files as "*.yml" or "*.yaml" files (bsc#1211888) - Added: * discover-both-.yml-and-.yaml-playbooks-bsc-1211888.patch - Prevent directory traversal when creating syndic cache directory on the master (CVE-2024-22231, bsc#1219430) - Prevent directory traversal attacks in the master's serve_file method (CVE-2024-22232, bsc#1219431) - Added: * fix-cve-2024-22231-and-cve-2024-22232-bsc-1219430-bs.patch - Prevent exceptions with fileserver.update when called via state (bsc#1218482) - Added: * allow-kwargs-for-fileserver-roots-update-bsc-1218482.patch - Improve pip target override condition with VENV_PIP_TARGET environment variable (bsc#1216850) - Fixed KeyError in logs when running a state that fails - Added: * fixed-keyerror-in-logs-when-running-a-state-that-fai.patch * improve-pip-target-override-condition-with-venv_pip_.patch - Ensure that pillar refresh loads beacons from pillar without restart - Fix the aptpkg.py unit test failure - Prefer unittest.mock to python-mock in test suite - Added: * update-__pillar__-during-pillar_refresh.patch * fix-the-aptpkg.py-unit-test-failure.patch * prefer-unittest.mock-for-python-versions-that-are-su.patch - Add libffi to the bundle for EL8 based systems to make it more compatible with the clones - Enable "KeepAlive" probes for Salt SSH executions (bsc#1211649) - Added: * enable-keepalive-probes-for-salt-ssh-executions-bsc-.patch - Revert changes to set Salt configured user early in the stack (bsc#1216284) - Added: * revert-make-sure-configured-user-is-properly-set-by-.patch - Include python devel files to the bundle - Modified: * include-deb * include-rpm * venv-salt-minion-rpmlintrc - Align behavior of some modules when using salt-call via symlink (bsc#1215963) - Fix gitfs "__env__" and improve cache cleaning (bsc#1193948) - Added: * dereference-symlinks-to-set-proper-__cli-opt-bsc-121.patch * fix-gitfs-__env__-and-improve-cache-cleaning-bsc-119.patch - Add python dateutil module to the bundle - Make salt bundle testsuite package using conditional build - Prevent inconsistency on building the bundle with the testsuite build enabled - Avoid rpmlint warnings for testsuite files - Modified: * venv-salt-minion-rpmlintrc - Include building for openEuler with rpm-vercmp and dnfnotify plugin - Randomize pre_flight_script path (CVE-2023-34049 bsc#1215157) - Added: * fix-cve-2023-34049-bsc-1215157.patch - Allow all primitive grain types for autosign_grains (bsc#1214477) - Added: * allow-all-primitive-grain-types-for-autosign_grains-.patch - Add missing python modules to the bundle (bsc#1213926): * pycurl * tornado - Add jmespath python module to align the features of the salt bundle with classic salt-minion. Extra ply module was appended as a dependency of jmespath (bsc#1210954) - Add missing cryptography python module to the bundle - Add conditional venv-salt-minion-testsuite subpackage - Fix optimization_order opt to prevent testsuite fails - Improve salt.utils.json.find_json to avoid fails with transactional salt salt-ssh managed clients (bsc#1213293) - Use salt-call from salt bundle with transactional_update - Only call native_str on curl_debug message in tornado when needed - Implement the calling for batch async from the salt CLI - Added: * fix-optimization_order-opt-to-prevent-test-fails.patch * use-salt-call-from-salt-bundle-with-transactional_up.patch * improve-salt.utils.json.find_json-bsc-1213293.patch * only-call-native_str-on-curl_debug-message-in-tornad.patch * implement-the-calling-for-batch-async-from-the-salt-.patch - Modified: * include-deb * include-rpm - Make venv-dpkgnotify to use bundle python to run - Fix calculation of SLS context vars when trailing dots on targetted sls/state (bsc#1213518) - Added: * fix-calculation-of-sls-context-vars-when-trailing-do.patch - Fix inconsistency in reported version by egg-info metadata (bsc#1215489) - Added: * write-salt-version-before-building-when-using-with-s.patch - Revert usage of long running REQ channel to prevent possible missing responses on requests and dublicated responses (bsc#1213960, bsc#1213630, bsc#1213257) - Added: * revert-usage-of-long-running-req-channel-bsc-1213960.patch - Fix gitfs cachedir basename to avoid hash collisions (bsc#1193948, bsc#1214797, CVE-2023-20898) - Added: * fixed-gitfs-cachedir_basename-to-avoid-hash-collisio.patch - Ship SELinux policy module version 19 to make it compatible with broader list of Linux distributions - Updated: * venv-salt-minion-selinux.tar.gz - Make sure configured user is properly set by Salt (bsc#1210994) - Do not fail on bad message pack message (bsc#1213441, CVE-2023-20897, bsc#1214796) - Added: * make-sure-configured-user-is-properly-set-by-salt-bs.patch * do-not-fail-on-bad-message-pack-message-bsc-1213441-.patch - Do not recompile SELinux policy module on building. Use precompiled module instead to avoid incompatibility errors. - Fix broken tests to make them running in the testsuite - Prevent possible exceptions on salt.utils.user.get_group_dict (bsc#1212794) - Added: * prevent-possible-exceptions-on-salt.utils.user.get_g.patch * fix-tests-to-make-them-running-with-salt-testsuite.patch - Create minion_id with reproducible mtime - Fix detection of Salt codename by "salt_version" execution module - Fix regression: multiple values for keyword argument 'saltenv' (bsc#1212844) - Fix the regression of user.present state when group is unset (bsc#1212855) - Added: * fix-the-regression-of-user.present-state-when-group-.patch * fix-regression-multiple-values-for-keyword-argument-.patch * mark-salt-3006-as-released-586.patch - Adding missing file references: * exclude-deb * exclude-rpm * filter-requires.sh * include-deb * venv-salt-minion-rpmlintrc - Fix zypper repositories always being reconfigured - Fix utf8 handling in 'pass' renderer and make it more robust - Added: * fix-utf8-handling-in-pass-renderer-and-make-it-more-.patch * zypper-pkgrepo-alreadyconfigured-585.patch - Prevent _pygit2.GitError: error loading known_hosts when $HOME is not set (bsc#1210994) - Added: * 3006.0-prevent-_pygit2.giterror-error-loading-known_.patch - Fix ModuleNotFoundError and other issues raised by salt-support module (bsc#1211591) - Added: * fix-some-issues-detected-in-salt-support-cli-module-.patch - tornado: Fix an open redirect in StaticFileHandler (CVE-2023-28370, bsc#1211741) - Added: * tornado-fix-an-open-redirect-in-staticfilehandler-cv.patch - Make master_tops compatible with Salt 3000 and older minions (bsc#1212516) (bsc#1212517) - Added: * make-master_tops-compatible-with-salt-3000-and-older.patch - Avoid failures due transactional_update module not available in Salt 3006.0 (bsc#1211754) - Added: * define-__virtualname__-for-transactional_update-modu.patch - Avoid conflicts with Salt dependencies versions (bsc#1211612) - Added: * avoid-conflicts-with-dependencies-versions-bsc-12116.patch - Update to Salt release version 3006.0 (jsc#PED-3139) * See release notes: https://docs.saltproject.io/en/latest/topics/releases/3006.0.html - Add missing patch after rebase to fix collections Mapping issues - Add python3-looseversion as new dependency for salt - Add python3-packaging as new dependency for salt - Allow entrypoint compatibility for "importlib-metadata>=5.0.0" (bsc#1207071) - Create new salt-tests subpackage containing Salt tests - Drop conflictive patch dicarded from upstream - Fix version detection and avoid building and testing failures - Prevent deadlocks in salt-ssh executions - Require python3-jmespath runtime dependency (bsc#1209233) - Fix SLS rendering error when Jinja macros are used - Added: * fix-version-detection-and-avoid-building-and-testing.patch * make-sure-the-file-client-is-destroyed-upon-used.patch * use-rlock-to-avoid-deadlocks-in-salt-ssh.patch - Renamed: * 3004-implement-zypper-removeptf-574.patch -> 3005.1-implement-zypper-removeptf-573.patch - Modified: * activate-all-beacons-sources-config-pillar-grains.patch * add-custom-suse-capabilities-as-grains.patch * add-environment-variable-to-know-if-yum-is-invoked-f.patch * add-migrated-state-and-gpg-key-management-functions-.patch * add-publish_batch-to-clearfuncs-exposed-methods.patch * add-salt-ssh-support-with-venv-salt-minion-3004-493.patch * add-sleep-on-exception-handling-on-minion-connection.patch * add-standalone-configuration-file-for-enabling-packa.patch * add-support-for-gpgautoimport-539.patch * allow-vendor-change-option-with-zypper.patch * async-batch-implementation.patch * avoid-excessive-syslogging-by-watchdog-cronjob-58.patch * bsc-1176024-fix-file-directory-user-and-group-owners.patch * change-the-delimeters-to-prevent-possible-tracebacks.patch * control-the-collection-of-lvm-grains-via-config.patch * debian-info_installed-compatibility-50453.patch * dnfnotify-pkgset-plugin-implementation-3002.2-450.patch * do-not-load-pip-state-if-there-is-no-3rd-party-depen.patch * don-t-use-shell-sbin-nologin-in-requisites.patch * drop-serial-from-event.unpack-in-cli.batch_async.patch * early-feature-support-config.patch * enable-passing-a-unix_socket-for-mysql-returners-bsc.patch * enhance-openscap-module-add-xccdf_eval-call-386.patch * fix-bsc-1065792.patch * fixes-for-python-3.10-502.patch * fix-for-suse-expanded-support-detection.patch * fix-issue-2068-test.patch * fix-missing-minion-returns-in-batch-mode-360.patch * fix-ownership-of-salt-thin-directory-when-using-the-.patch * fix-regression-with-depending-client.ssh-on-psutil-b.patch * fix-salt-ssh-opts-poisoning-bsc-1197637-3004-501.patch * fix-salt.utils.stringutils.to_str-calls-to-make-it-w.patch * fix-the-regression-for-yumnotify-plugin-456.patch * fix-traceback.print_exc-calls-for-test_pip_state-432.patch * include-aliases-in-the-fqdns-grains.patch * info_installed-works-without-status-attr-now.patch * let-salt-ssh-use-platform-python-binary-in-rhel8-191.patch * make-aptpkg.list_repos-compatible-on-enabled-disable.patch * make-setup.py-script-to-not-require-setuptools-9.1.patch * pass-the-context-to-pillar-ext-modules.patch * prevent-affection-of-ssh.opts-with-lazyloader-bsc-11.patch * prevent-pkg-plugins-errors-on-missing-cookie-path-bs.patch * prevent-shell-injection-via-pre_flight_script_args-4.patch * read-repo-info-without-using-interpolation-bsc-11356.patch * restore-default-behaviour-of-pkg-list-return.patch * return-the-expected-powerpc-os-arch-bsc-1117995.patch * revert-fixing-a-use-case-when-multiple-inotify-beaco.patch * run-salt-api-as-user-salt-bsc-1064520.patch * run-salt-master-as-dedicated-salt-user.patch * save-log-to-logfile-with-docker.build.patch * skip-package-names-without-colon-bsc-1208691-578.patch * switch-firewalld-state-to-use-change_interface.patch * temporary-fix-extend-the-whitelist-of-allowed-comman.patch * update-target-fix-for-salt-ssh-to-process-targets-li.patch * use-adler32-algorithm-to-compute-string-checksums.patch * use-salt-bundle-in-dockermod.patch * x509-fixes-111.patch * zypperpkg-ignore-retcode-104-for-search-bsc-1176697-.patch - Removed: * 3003.3-do-not-consider-skipped-targets-as-failed-for.patch * 3003.3-postgresql-json-support-in-pillar-423.patch * add-amazon-ec2-detection-for-virtual-grains-bsc-1195.patch * add-missing-ansible-module-functions-to-whitelist-in.patch * add-rpm_vercmp-python-library-for-version-comparison.patch * adds-explicit-type-cast-for-port.patch * add-support-for-name-pkgs-and-diff_attr-parameters-t.patch * align-amazon-ec2-nitro-grains-with-upstream-pr-bsc-1.patch * backport-syndic-auth-fixes.patch * batch.py-avoid-exception-when-minion-does-not-respon.patch * check-if-dpkgnotify-is-executable-bsc-1186674-376.patch * clarify-pkg.installed-pkg_verify-documentation.patch * detect-module.run-syntax.patch * do-not-crash-when-unexpected-cmd-output-at-listing-p.patch * enhance-logging-when-inotify-beacon-is-missing-pyino.patch * fix-62092-catch-zmq.error.zmqerror-to-set-hwm-for-zm.patch * fix-crash-when-calling-manage.not_alive-runners.patch * fixes-56144-to-enable-hotadd-profile-support.patch * fix-exception-in-yumpkg.remove-for-not-installed-pac.patch * fix-for-cve-2022-22967-bsc-1200566.patch * fix-inspector-module-export-function-bsc-1097531-481.patch * fix-ip6_interface-grain-to-not-leak-secondary-ipv4-a.patch * fix-issues-with-salt-ssh-s-extra-filerefs.patch * fix-jinja2-contextfuntion-base-on-version-bsc-119874.patch * fix-multiple-security-issues-bsc-1197417.patch * fix-salt-call-event.send-call-with-grains-and-pillar.patch * fix-salt.states.file.managed-for-follow_symlinks-tru.patch * fix-state.apply-in-test-mode-with-file-state-module-.patch * fix-test_ipc-unit-tests.patch * fix-the-regression-in-schedule-module-releasded-in-3.patch * fix-wrong-test_mod_del_repo_multiline_values-test-af.patch * fopen-workaround-bad-buffering-for-binary-mode-563.patch * force-zyppnotify-to-prefer-packages.db-than-packages.patch * ignore-erros-on-reading-license-files-with-dpkg_lowp.patch * ignore-extend-declarations-from-excluded-sls-files.patch * ignore-non-utf8-characters-while-reading-files-with-.patch * implementation-of-held-unheld-functions-for-state-pk.patch * implementation-of-suse_ip-execution-module-bsc-10999.patch * improvements-on-ansiblegate-module-354.patch * include-stdout-in-error-message-for-zypperpkg-559.patch * make-pass-renderer-configurable-other-fixes-532.patch * make-sure-saltcacheloader-use-correct-fileclient-519.patch * mock-ip_addrs-in-utils-minions.py-unit-test-443.patch * normalize-package-names-once-with-pkg.installed-remo.patch * notify-beacon-for-debian-ubuntu-systems-347.patch * refactor-and-improvements-for-transactional-updates-.patch * retry-if-rpm-lock-is-temporarily-unavailable-547.patch * set-default-target-for-pip-from-venv_pip_target-envi.patch * state.apply-don-t-check-for-cached-pillar-errors.patch * state.orchestrate_single-does-not-pass-pillar-none-4.patch * support-transactional-systems-microos.patch * wipe-notify_socket-from-env-in-cmdmod-bsc-1193357-30.patch - Fix problem with detecting PTF packages (bsc#1208691) - Added: * skip-package-names-without-colon-bsc-1208691-578.patch - Do not hide SELinux installation errors and notify users (bsc#1205687) - Fixes pkg.version_cmp on openEuler systems and a few other OS flavors - Added: * fixes-pkg.version_cmp-on-openeuler-systems-and-a-few.patch - Make pkg.remove function from zypperpkg module to handle also PTF packages - Added: * 3004-implement-zypper-removeptf-574.patch - Control the collection of lvm grains via config (bsc#1204939) - Added: * control-the-collection-of-lvm-grains-via-config.patch - Pass the context to pillar ext modules - Align Amazon EC2 (Nitro) grains with upstream (bsc#1203685) - Detect module run syntax version - Implement automated patches alignment for the Salt Bundle - Added: * detect-module.run-syntax.patch * align-amazon-ec2-nitro-grains-with-upstream-pr-bsc-1.patch * pass-the-context-to-pillar-ext-modules.patch - Ignore extend declarations from excluded SLS files (bsc#1203886) - Clarify pkg.installed pkg_verify documentation - Enhance capture of error messages for Zypper calls in zypperpkg module - Added: * include-stdout-in-error-message-for-zypperpkg-559.patch * clarify-pkg.installed-pkg_verify-documentation.patch * ignore-extend-declarations-from-excluded-sls-files.patch - Make pass renderer configurable and fix detected issues - Workaround fopen line buffering for binary mode (bsc#1203834) - Added: * fopen-workaround-bad-buffering-for-binary-mode-563.patch * make-pass-renderer-configurable-other-fixes-532.patch - Removed dependency to policycoreutils for Ubuntu 20.04 and higher (bsc#1204206) - Remove kiwi python module from the bundle as no longer required - Updated: * include-rpm * remove-file - Handle non-UTF-8 bytes in core grains generation (bsc#1202165) - Added: * ignore-non-utf8-characters-while-reading-files-with-.patch - Don't include kiwi binaries - Fix Syndic authentication errors (bsc#1199562) - Added: * backport-syndic-auth-fixes.patch - Updated: * remove-file - Add Amazon EC2 detection for virtual grains (bsc#1195624) - Fix the regression in schedule module releasded in 3004 (bsc#1202631) - Fix state.apply in test mode with file state module on user/group checking (bsc#1202167) - Change the delimeters to prevent possible tracebacks on some packages with dpkg_lowpkg - Added: * add-amazon-ec2-detection-for-virtual-grains-bsc-1195.patch * fix-state.apply-in-test-mode-with-file-state-module-.patch * fix-the-regression-in-schedule-module-releasded-in-3.patch * change-the-delimeters-to-prevent-possible-tracebacks.patch - Make zypperpkg to retry if RPM lock is temporarily unavailable (bsc#1200596) - Added: * retry-if-rpm-lock-is-temporarily-unavailable-547.patch - Add SELinux profile to the package instead of using semanage - Remove Build ID links from the virtual environment and disable generating new links on building the package - Remove packages.log from the virtual environment - Added: * venv-salt-minion-selinux.tar.gz - Fix test_ipc unit test - Added: * fix-test_ipc-unit-tests.patch - Add support for gpgautoimport in zypperpkg module - Update Salt to work with Jinja >= and <= 3.1.0 (bsc#1198744) - Fix salt.states.file.managed() for follow_symlinks=True and test=True (bsc#1199372) - Make Salt 3004 compatible with pyzmq >= 23.0.0 (bsc#1201082) - Added: * add-support-for-gpgautoimport-539.patch * fix-jinja2-contextfuntion-base-on-version-bsc-119874.patch * fix-62092-catch-zmq.error.zmqerror-to-set-hwm-for-zm.patch * fix-salt.states.file.managed-for-follow_symlinks-tru.patch - Add support for name, pkgs and diff_attr parameters to upgrade function for zypper and yum (bsc#1198489) - Added: * add-support-for-name-pkgs-and-diff_attr-parameters-t.patch - Fix possible errors on running post install script if semanage is present on the system, but SELinux is not configured - Remove unused imports in the venv wrappers - Set VENV_PIP_TARGET to /var/lib/venv-salt-minion/local to force PIP use it as the destination to install modules - Updated: * venv.py.src * venv-startup - Fix ownership of salt thin directory when using the Salt Bundle - Set default target for pip from VENV_PIP_TARGET environment variable - Normalize package names once with pkg.installed/removed using yum (bsc#1195895) - Save log to logfile with docker.build - Use Salt Bundle in dockermod - Ignore erros on reading license files with dpkg_lowpkg (bsc#1197288) - Fix PAM auth issue due missing check for PAM_ACCT_MGM return value (CVE-2022-22967) (bsc#1200566) - Added: * normalize-package-names-once-with-pkg.installed-remo.patch * set-default-target-for-pip-from-venv_pip_target-envi.patch * ignore-erros-on-reading-license-files-with-dpkg_lowp.patch * fix-for-cve-2022-22967-bsc-1200566.patch * fix-ownership-of-salt-thin-directory-when-using-the-.patch * use-salt-bundle-in-dockermod.patch * save-log-to-logfile-with-docker.build.patch - Make sure SaltCacheLoader use correct fileclient (bsc#1199149) - Fix regression preventing bootstrapping new clients caused by redundant dependency on psutil (bsc#1197533) - Prevent data pollution between actions proceesed at the same time (bsc#1197637) - Added: * prevent-affection-of-ssh.opts-with-lazyloader-bsc-11.patch * fix-regression-with-depending-client.ssh-on-psutil-b.patch * make-sure-saltcacheloader-use-correct-fileclient-519.patch - Rename the python startup script to venv-startup so we can avoid python cache files creation in bin directory of the bundle * Removed: venv-exec.py.src * Added: venv-startup - Remove wsdump files from bin directory as they are not needed * Updated: remove-file - Fix the regression caused by the patch removing strict requirement for OpenSSL 1.1.1 leading to read/write issues with ssl module for SLE 15, SLE 12, CentOS 7, Debian 9 (bsc#1198556) - Fixes for Python 3.10 - Fix salt-ssh opts poisoning (bsc#1197637) - Fix multiple security issues (bsc#1197417) * Sign authentication replies to prevent MiTM (CVE-2022-22935) * Sign pillar data to prevent MiTM attacks. (CVE-2022-22934) * Prevent job and fileserver replays (CVE-2022-22936) * Fixed targeting bug, especially visible when using syndic and user auth. (CVE-2022-22941) - Added: * fix-salt-ssh-opts-poisoning-bsc-1197637-3004-501.patch * fixes-for-python-3.10-502.patch * fix-multiple-security-issues-bsc-1197417.patch - Salt version bump to 3004 - Python version bump to 3.10.2 - Added: * v3004.tar.gz * 3003.3-do-not-consider-skipped-targets-as-failed-for.patch * 3003.3-postgresql-json-support-in-pillar-423.patch * add-missing-ansible-module-functions-to-whitelist-in.patch * add-salt-ssh-support-with-venv-salt-minion-3004-493.patch * allow-vendor-change-option-with-zypper.patch * drop-serial-from-event.unpack-in-cli.batch_async.patch * fix-crash-when-calling-manage.not_alive-runners.patch * fix-inspector-module-export-function-bsc-1097531-481.patch * fix-issues-with-salt-ssh-s-extra-filerefs.patch * fix-salt-call-event.send-call-with-grains-and-pillar.patch * fix-traceback.print_exc-calls-for-test_pip_state-432.patch * mock-ip_addrs-in-utils-minions.py-unit-test-443.patch * prevent-shell-injection-via-pre_flight_script_args-4.patch * state.orchestrate_single-does-not-pass-pillar-none-4.patch * support-transactional-systems-microos.patch - Removed: * v3002.2.tar.gz * 3002.2-do-not-consider-skipped-targets-as-failed-for.patch * 3002.2-postgresql-json-support-in-pillar-424.patch * 3002.2-xen-spicevmc-dns-srv-records-backports-314.patch * 3002-set-distro-requirement-to-oldest-supported-vers.patch * accumulated-changes-from-yomi-167.patch * accumulated-changes-required-for-yomi-165.patch * add-alibaba-cloud-linux-2-by-backporting-upstream-s-.patch * add-all-ssh-kwargs-to-sanitize_kwargs-method-3002.2-.patch * add-all_versions-parameter-to-include-all-installed-.patch * add-almalinux-and-alibaba-cloud-linux-to-the-os-fami.patch * add-astra-linux-common-edition-to-the-os-family-list.patch * add-batch_presence_ping_timeout-and-batch_presence_p.patch * add-cpe_name-for-osversion-grain-parsing-u-49946.patch * add-docker-logout-237.patch * add-hold-unhold-functions.patch * adding-preliminary-support-for-rocky.-59682-391.patch * add-missing-aarch64-to-rpm-package-architectures-405.patch * add-multi-file-support-and-globbing-to-the-filetree-.patch * add-new-custom-suse-capability-for-saltutil-state-mo.patch * add-patch-support-for-allow-vendor-change-option-wit.patch * add-pkg.services_need_restart-302.patch * add-saltssh-multi-version-support-across-python-inte.patch * add-salt-ssh-support-with-venv-salt-minion-3002.2-47.patch * add-supportconfig-module-for-remote-calls-and-saltss.patch * add-virt.all_capabilities.patch * allow-extra_filerefs-as-sanitized-kwargs-for-ssh-cli.patch * allow-passing-kwargs-to-pkg.list_downloaded-bsc-1140.patch * allow-vendor-change-option-with-zypper-313.patch * ansiblegate-take-care-of-failed-skipped-and-unreacha.patch * apply-patch-from-upstream-to-support-python-3.8.patch * async-batch-implementation-fix-320.patch * avoid-traceback-when-http.query-request-cannot-be-pe.patch * backport-a-few-virt-prs-272.patch * backport-of-upstream-pr59492-to-3002.2-404.patch * backport-thread.is_alive-fix-390.patch * backport-virt-patches-from-3001-256.patch * batch_async-avoid-using-fnmatch-to-match-event-217.patch * batch-async-catch-exceptions-and-safety-unregister-a.patch * better-handling-of-bad-public-keys-from-minions-bsc-.patch * calculate-fqdns-in-parallel-to-avoid-blockings-bsc-1.patch * changed-imports-to-vendored-tornado.patch * clear-network-interface-cache-when-grains-are-reques.patch * do-noop-for-services-states-when-running-systemd-in-.patch * do-not-break-repo-files-with-multiple-line-values-on.patch * do-not-crash-when-there-are-ipv6-established-connect.patch * do-not-make-ansiblegate-to-crash-on-python3-minions.patch * do-not-monkey-patch-yaml-bsc-1177474.patch * do-not-raise-streamclosederror-traceback-but-only-lo.patch * don-t-call-zypper-with-more-than-one-no-refresh.patch * drop-wrong-mock-from-chroot-unit-test.patch * drop-wrong-virt-capabilities-code-after-rebasing-pat.patch * ensure-virt.update-stop_on_reboot-is-updated-with-it.patch * exclude-the-full-path-of-a-download-url-to-prevent-i.patch * fall-back-to-pymysql.patch * figure-out-python-interpreter-to-use-inside-containe.patch * fix-aptpkg.normalize_name-when-package-arch-is-all.patch * fix-aptpkg-systemd-call-bsc-1143301.patch * fix-async-batch-multiple-done-events.patch * fix-async-batch-race-conditions.patch * fix-a-test-and-some-variable-names-229.patch * fix-a-wrong-rebase-in-test_core.py-180.patch * fix-batch_async-obsolete-test.patch * fix-cve-2020-25592-and-add-tests-bsc-1178319.patch * fixed-bug-lvm-has-no-parttion-type.-the-scipt-later-.patch * fix-error-handling-in-openscap-module-bsc-1188647-40.patch * fixes-cve-2018-15750-cve-2018-15751.patch * fix-failing-unit-tests-for-batch-async.patch * fix-failing-unit-tests-for-systemd.patch * fix-for-log-checking-in-x509-test.patch * fix-for-some-cves-bsc1181550.patch * fix-for-temp-folder-definition-in-loader-unit-test.patch * fix-git_pillar-merging-across-multiple-__env__-repos.patch * fix-grains.test_core-unit-test-277.patch * fixing-streamclosed-issue.patch * fix-inspector-module-export-function-bsc-1097531-480.patch * fix-ipv6-scope-bsc-1108557.patch * fix-issue-parsing-errors-in-ansiblegate-state-module.patch * fix-memory-leak-produced-by-batch-async-find_jobs-me.patch * fix-__mount_device-wrapper-254.patch * fix-novendorchange-option-284.patch * fix-onlyif-unless-when-multiple-conditions-bsc-11808.patch * fix-regression-on-cmd.run-when-passing-tuples-as-cmd.patch * fix-save-for-iptables-state-module-bsc-1185131-372.patch * fix-state.orchestrate_single-to-not-pass-pillar-none.patch * fix-the-removed-six.itermitems-and-six.-_type-262.patch * fix-traceback.-_exc-calls-429.patch * fix-unit-test-for-grains-core.patch * fix-unit-tests-for-batch-async-after-refactor.patch * fix-virt.update-with-cpu-defined-263.patch * fix-zypper.list_pkgs-to-be-aligned-with-pkg-state.patch * fix-zypper-pkg.list_pkgs-expectation-and-dpkg-mockin.patch * get-os_arch-also-without-rpm-package-installed.patch * grains.extra-support-old-non-intel-kernels-bsc-11806.patch * grains-master-can-read-grains.patch * handle-master-tops-data-when-states-are-applied-by-t.patch * handle-volumes-on-stopped-pools-in-virt.vm_info-373.patch * implement-network.fqdns-module-function-bsc-1134860-.patch * improve-batch_async-to-release-consumed-memory-bsc-1.patch * integration-of-msi-authentication-with-azurearm-clou.patch * invalidate-file-list-cache-when-cache-file-modified-.patch * loop-fix-variable-names-for-until_no_eval.patch * loosen-azure-sdk-dependencies-in-azurearm-cloud-driv.patch * make-profiles-a-package.patch * mock-ip_addrs-in-utils-minions.py-unit-test-444.patch * move-server_id-deprecation-warning-to-reduce-log-spa.patch * move-vendor-change-logic-to-zypper-class-355.patch * opensuse-3000.2-virt-backports-236-257.patch * opensuse-3000.3-spacewalk-runner-parse-command-250.patch * opensuse-3000-libvirt-engine-fixes-251.patch * opensuse-3000-virt-defined-states-222.patch * open-suse-3002.2-bigvm-310.patch * open-suse-3002.2-virt-network-311.patch * open-suse-3002.2-xen-grub-316.patch * option-to-en-disable-force-refresh-in-zypper-215.patch * parsing-epoch-out-of-version-provided-during-pkg-rem.patch * path-replace-functools.wraps-with-six.wraps-bsc-1177.patch * pkgrepo-support-python-2.7-function-call-295.patch * prevent-ansiblegate-unit-tests-to-fail-on-ubuntu.patch * prevent-command-injection-in-the-snapper-module-bsc-.patch * prevent-import-errors-when-running-test_btrfs-unit-t.patch * prevent-logging-deadlock-on-salt-api-subprocesses-bs.patch * prevent-race-condition-on-sigterm-for-the-minion-bsc.patch * prevent-systemd-run-description-issue-when-running-a.patch * prevent-test_mod_del_repo_multiline_values-to-fail.patch * provide-the-missing-features-required-for-yomi-yet-o.patch * python3.8-compatibility-pr-s-235.patch * re-adding-function-to-test-for-root.patch * regression-fix-of-salt-ssh-on-processing-targets-353.patch * reintroducing-reverted-changes.patch * remove-arch-from-name-when-pkg.list_pkgs-is-called-w.patch * remove-deprecated-usage-of-no_mock-and-no_mock_reaso.patch * remove-deprecated-warning-that-breaks-miniion-execut.patch * remove-duplicated-method-definitions-in-salt.netapi-.patch * remove-msgpack-1.0.0-requirement-in-the-installed-me.patch * remove-unnecessary-yield-causing-badyielderror-bsc-1.patch * remove-vendored-backports-abc-from-requirements.patch * remove-wrong-_parse_cpe_name-from-grains.core-452.patch * revert-add-patch-support-for-allow-vendor-change-opt.patch * sanitize-grains-loaded-from-roster_grains.json.patch * strip-trailing-from-repo.uri-when-comparing-repos-in.patch * support-config-non-root-permission-issues-fixes-u-50.patch * support-for-btrfs-and-xfs-in-parted-and-mkfs.patch * support-transactional-systems-microos-271.patch * templates-move-the-globals-up-to-the-environment-jin.patch * transactional_update-detect-recursion-in-the-executo.patch * transactional_update-unify-with-chroot.call.patch * use-current-ioloop-for-the-localclient-instance-of-b.patch * use-threadpool-from-multiprocessing.pool-to-avoid-le.patch * vendor-stateresult.patch * virt-adding-kernel-boot-parameters-to-libvirt-xml-55.patch * virt._get_domain-don-t-raise-an-exception-if-there-i.patch * virt.network_update-handle-missing-ipv4-netmask-attr.patch * virt-pass-emulator-when-getting-domain-capabilities-.patch * virt-uefi-fix-backport-312.patch * virt-use-dev-kvm-to-detect-kvm-383.patch * xen-disk-fixes-264.patch * xfs-do-not-fails-if-type-is-not-present.patch * zypperpkg-filter-patterns-that-start-with-dot-244.patch - Updated: * activate-all-beacons-sources-config-pillar-grains.patch * add-custom-suse-capabilities-as-grains.patch * add-environment-variable-to-know-if-yum-is-invoked-f.patch * add-migrated-state-and-gpg-key-management-functions-.patch * add-publish_batch-to-clearfuncs-exposed-methods.patch * add-rpm_vercmp-python-library-for-version-comparison.patch * adds-explicit-type-cast-for-port.patch * add-sleep-on-exception-handling-on-minion-connection.patch * add-standalone-configuration-file-for-enabling-packa.patch * async-batch-implementation.patch * avoid-excessive-syslogging-by-watchdog-cronjob-58.patch * batch.py-avoid-exception-when-minion-does-not-respon.patch * bsc-1176024-fix-file-directory-user-and-group-owners.patch * check-if-dpkgnotify-is-executable-bsc-1186674-376.patch * debian-info_installed-compatibility-50453.patch * dnfnotify-pkgset-plugin-implementation-3002.2-450.patch * do-not-crash-when-unexpected-cmd-output-at-listing-p.patch * do-not-load-pip-state-if-there-is-no-3rd-party-depen.patch * don-t-use-shell-sbin-nologin-in-requisites.patch * early-feature-support-config.patch * enable-passing-a-unix_socket-for-mysql-returners-bsc.patch * enhance-logging-when-inotify-beacon-is-missing-pyino.patch * enhance-openscap-module-add-xccdf_eval-call-386.patch * fix-bsc-1065792.patch * fixes-56144-to-enable-hotadd-profile-support.patch * fix-exception-in-yumpkg.remove-for-not-installed-pac.patch * fix-for-suse-expanded-support-detection.patch * fix-ip6_interface-grain-to-not-leak-secondary-ipv4-a.patch * fix-issue-2068-test.patch * fix-missing-minion-returns-in-batch-mode-360.patch * fix-salt.utils.stringutils.to_str-calls-to-make-it-w.patch * fix-the-regression-for-yumnotify-plugin-456.patch * fix-wrong-test_mod_del_repo_multiline_values-test-af.patch * force-zyppnotify-to-prefer-packages.db-than-packages.patch * implementation-of-held-unheld-functions-for-state-pk.patch * implementation-of-suse_ip-execution-module-bsc-10999.patch * improvements-on-ansiblegate-module-354.patch * include-aliases-in-the-fqdns-grains.patch * info_installed-works-without-status-attr-now.patch * let-salt-ssh-use-platform-python-binary-in-rhel8-191.patch * make-aptpkg.list_repos-compatible-on-enabled-disable.patch * make-setup.py-script-to-not-require-setuptools-9.1.patch * notify-beacon-for-debian-ubuntu-systems-347.patch * prevent-pkg-plugins-errors-on-missing-cookie-path-bs.patch * read-repo-info-without-using-interpolation-bsc-11356.patch * refactor-and-improvements-for-transactional-updates-.patch * restore-default-behaviour-of-pkg-list-return.patch * return-the-expected-powerpc-os-arch-bsc-1117995.patch * revert-fixing-a-use-case-when-multiple-inotify-beaco.patch * run-salt-api-as-user-salt-bsc-1064520.patch * run-salt-master-as-dedicated-salt-user.patch * state.apply-don-t-check-for-cached-pillar-errors.patch * switch-firewalld-state-to-use-change_interface.patch * temporary-fix-extend-the-whitelist-of-allowed-comman.patch * update-target-fix-for-salt-ssh-to-process-targets-li.patch * use-adler32-algorithm-to-compute-string-checksums.patch * wipe-notify_socket-from-env-in-cmdmod-bsc-1193357-30.patch * x509-fixes-111.patch * zypperpkg-ignore-retcode-104-for-search-bsc-1176697-.patch - Clear network interfaces cache on grains request (bsc#1196050) - Remove duplicated method definitions in salt.netapi - Add salt-ssh with Salt Bundle support (venv-salt-minion) (bsc#1182851, bsc#1196432) - Remove not required binaries from virtual environment - Added: * clear-network-interface-cache-when-grains-are-reques.patch * remove-duplicated-method-definitions-in-salt.netapi-.patch * add-salt-ssh-support-with-venv-salt-minion-3002.2-47.patch - Updated: * remove-file - Restrict "state.orchestrate_single" to pass a pillar value if it exists (bsc#1194632) - Added: * fix-state.orchestrate_single-to-not-pass-pillar-none.patch - Refactor venv-exec.py wrapper and the way of calling it with PYTHONSTARTUP environment variable - Updated: * venv-exec.py.src - Fix inspector module export function (bsc#1097531) - Add all ssh kwargs to sanitize_kwargs method - Wipe NOTIFY_SOCKET from env in cmdmod (bsc#1193357) - Don't check for cached pillar errors on state.apply (bsc#1190781) - Move the logic of cleaning PYTHONHOME environment variable and fixing sys.executable value to venv-exec.py wrapper from venv executor module to prevent some side effects found - Added: * state.apply-don-t-check-for-cached-pillar-errors.patch * add-all-ssh-kwargs-to-sanitize_kwargs-method-3002.2-.patch * wipe-notify_socket-from-env-in-cmdmod-bsc-1193357-30.patch * fix-inspector-module-export-function-bsc-1097531-480.patch * vendor-stateresult.patch - Updated: * venv-exec.py.src * venv.py.src - Add venv-exec.py wrapper to prevent errors on using cmdmod module - Added: * venv-exec.py.src - Fix condition to identify correct python sitelib for dnfnotify - Remove some specific binary library dependencies - Handle transactional_update executor for the relevant systems - Add policycoreutils and policycoreutils-python-utils to post install requirements for CentOS 8+ and Fedora 22+ packages - Set sys.executable pointing to the wrapper script instead of real python executable with venv executor module - Simplify "transactional_update" module to not use SSH wrapper and allow more flexible execution - Add "--no-return-event" option to salt-call to prevent sending return event back to master. - Make "state.highstate" to acts on concurrent flag. - Added: * refactor-and-improvements-for-transactional-updates-.patch - Use dnfnotify instead yumnotify for relevant distros - Remove wrong _parse_cpe_name from grains.core - dnfnotify pkgset plugin implementation - Add rpm_vercmp python library support for version comparison - Prevent pkg plugins errors on missing cookie path (bsc#1186738) - Added: * mock-ip_addrs-in-utils-minions.py-unit-test-444.patch * add-rpm_vercmp-python-library-for-version-comparison.patch * prevent-pkg-plugins-errors-on-missing-cookie-path-bs.patch * remove-wrong-_parse_cpe_name-from-grains.core-452.patch * dnfnotify-pkgset-plugin-implementation-3002.2-450.patch - Add propagate python_ver into the venvjail - Initial package based on victor.zhestkov@suse.com one
Pablo Suárez Hernández (PSuarezHernandez)
accepted
request 1165619
from
Marek Czernek (mczernek)
(revision 66)
- Update Python version from 3.10 to 3.11 - Enable build for SLE 11 - Added: * venv-salt-minion.initd - Include salt-test in venv-salt-minion-testsuite - Modified: * include-deb * include-rpm * exclude-deb * exclude-rpm - Convert oscap output to UTF-8 - Added: * switch-oscap-encoding-to-utf-8-639.patch - Make Salt compatible with Python 3.11 - Added: * fix-salt-warnings-and-testuite-for-python-3.11-635.patch - Ignore non-ascii chars in oscap output (bsc#1219001) - Added: * decode-oscap-byte-stream-to-string-bsc-1219001.patch - Fix detected issues in Salt tests when running on VMs - Added: * fix-tests-failures-and-errors-when-detected-on-vm-ex.patch - Make importing seco.range thread safe (bsc#1211649) - Added: * make-importing-seco.range-thread-safe-bsc-1211649.patch - Fix problematic tests and allow smooth tests executions on containers - Added: * fix-problematic-tests-and-allow-smooth-tests-executi.patch - Discover Ansible playbook files as "*.yml" or "*.yaml" files (bsc#1211888) - Added: * discover-both-.yml-and-.yaml-playbooks-bsc-1211888.patch - Prevent directory traversal when creating syndic cache directory on the master (CVE-2024-22231, bsc#1219430) - Prevent directory traversal attacks in the master's serve_file method (CVE-2024-22232, bsc#1219431) - Added: * fix-cve-2024-22231-and-cve-2024-22232-bsc-1219430-bs.patch - Prevent exceptions with fileserver.update when called via state (bsc#1218482) - Added: * allow-kwargs-for-fileserver-roots-update-bsc-1218482.patch - Improve pip target override condition with VENV_PIP_TARGET environment variable (bsc#1216850) - Fixed KeyError in logs when running a state that fails - Added: * fixed-keyerror-in-logs-when-running-a-state-that-fai.patch * improve-pip-target-override-condition-with-venv_pip_.patch - Ensure that pillar refresh loads beacons from pillar without restart - Fix the aptpkg.py unit test failure - Prefer unittest.mock to python-mock in test suite - Added: * update-__pillar__-during-pillar_refresh.patch * fix-the-aptpkg.py-unit-test-failure.patch * prefer-unittest.mock-for-python-versions-that-are-su.patch - Add libffi to the bundle for EL8 based systems to make it more compatible with the clones - Enable "KeepAlive" probes for Salt SSH executions (bsc#1211649) - Added: * enable-keepalive-probes-for-salt-ssh-executions-bsc-.patch - Revert changes to set Salt configured user early in the stack (bsc#1216284) - Added: * revert-make-sure-configured-user-is-properly-set-by-.patch - Include python devel files to the bundle - Modified: * include-deb * include-rpm * venv-salt-minion-rpmlintrc - Align behavior of some modules when using salt-call via symlink (bsc#1215963) - Fix gitfs "__env__" and improve cache cleaning (bsc#1193948) - Added: * dereference-symlinks-to-set-proper-__cli-opt-bsc-121.patch * fix-gitfs-__env__-and-improve-cache-cleaning-bsc-119.patch - Add python dateutil module to the bundle - Make salt bundle testsuite package using conditional build - Prevent inconsistency on building the bundle with the testsuite build enabled - Avoid rpmlint warnings for testsuite files - Modified: * venv-salt-minion-rpmlintrc - Include building for openEuler with rpm-vercmp and dnfnotify plugin - Randomize pre_flight_script path (CVE-2023-34049 bsc#1215157) - Added: * fix-cve-2023-34049-bsc-1215157.patch - Allow all primitive grain types for autosign_grains (bsc#1214477) - Added: * allow-all-primitive-grain-types-for-autosign_grains-.patch - Add missing python modules to the bundle (bsc#1213926): * pycurl * tornado - Add jmespath python module to align the features of the salt bundle with classic salt-minion. Extra ply module was appended as a dependency of jmespath (bsc#1210954) - Add missing cryptography python module to the bundle - Add conditional venv-salt-minion-testsuite subpackage - Fix optimization_order opt to prevent testsuite fails - Improve salt.utils.json.find_json to avoid fails with transactional salt salt-ssh managed clients (bsc#1213293) - Use salt-call from salt bundle with transactional_update - Only call native_str on curl_debug message in tornado when needed - Implement the calling for batch async from the salt CLI - Added: * fix-optimization_order-opt-to-prevent-test-fails.patch * use-salt-call-from-salt-bundle-with-transactional_up.patch * improve-salt.utils.json.find_json-bsc-1213293.patch * only-call-native_str-on-curl_debug-message-in-tornad.patch * implement-the-calling-for-batch-async-from-the-salt-.patch - Modified: * include-deb * include-rpm - Make venv-dpkgnotify to use bundle python to run - Fix calculation of SLS context vars when trailing dots on targetted sls/state (bsc#1213518) - Added: * fix-calculation-of-sls-context-vars-when-trailing-do.patch - Fix inconsistency in reported version by egg-info metadata (bsc#1215489) - Added: * write-salt-version-before-building-when-using-with-s.patch - Revert usage of long running REQ channel to prevent possible missing responses on requests and dublicated responses (bsc#1213960, bsc#1213630, bsc#1213257) - Added: * revert-usage-of-long-running-req-channel-bsc-1213960.patch - Fix gitfs cachedir basename to avoid hash collisions (bsc#1193948, bsc#1214797, CVE-2023-20898) - Added: * fixed-gitfs-cachedir_basename-to-avoid-hash-collisio.patch - Ship SELinux policy module version 19 to make it compatible with broader list of Linux distributions - Updated: * venv-salt-minion-selinux.tar.gz - Make sure configured user is properly set by Salt (bsc#1210994) - Do not fail on bad message pack message (bsc#1213441, CVE-2023-20897, bsc#1214796) - Added: * make-sure-configured-user-is-properly-set-by-salt-bs.patch * do-not-fail-on-bad-message-pack-message-bsc-1213441-.patch - Do not recompile SELinux policy module on building. Use precompiled module instead to avoid incompatibility errors. - Fix broken tests to make them running in the testsuite - Prevent possible exceptions on salt.utils.user.get_group_dict (bsc#1212794) - Added: * prevent-possible-exceptions-on-salt.utils.user.get_g.patch * fix-tests-to-make-them-running-with-salt-testsuite.patch - Create minion_id with reproducible mtime - Fix detection of Salt codename by "salt_version" execution module - Fix regression: multiple values for keyword argument 'saltenv' (bsc#1212844) - Fix the regression of user.present state when group is unset (bsc#1212855) - Added: * fix-the-regression-of-user.present-state-when-group-.patch * fix-regression-multiple-values-for-keyword-argument-.patch * mark-salt-3006-as-released-586.patch - Adding missing file references: * exclude-deb * exclude-rpm * filter-requires.sh * include-deb * venv-salt-minion-rpmlintrc - Fix zypper repositories always being reconfigured - Fix utf8 handling in 'pass' renderer and make it more robust - Added: * fix-utf8-handling-in-pass-renderer-and-make-it-more-.patch * zypper-pkgrepo-alreadyconfigured-585.patch - Prevent _pygit2.GitError: error loading known_hosts when $HOME is not set (bsc#1210994) - Added: * 3006.0-prevent-_pygit2.giterror-error-loading-known_.patch - Fix ModuleNotFoundError and other issues raised by salt-support module (bsc#1211591) - Added: * fix-some-issues-detected-in-salt-support-cli-module-.patch - tornado: Fix an open redirect in StaticFileHandler (CVE-2023-28370, bsc#1211741) - Added: * tornado-fix-an-open-redirect-in-staticfilehandler-cv.patch - Make master_tops compatible with Salt 3000 and older minions (bsc#1212516) (bsc#1212517) - Added: * make-master_tops-compatible-with-salt-3000-and-older.patch - Avoid failures due transactional_update module not available in Salt 3006.0 (bsc#1211754) - Added: * define-__virtualname__-for-transactional_update-modu.patch - Avoid conflicts with Salt dependencies versions (bsc#1211612) - Added: * avoid-conflicts-with-dependencies-versions-bsc-12116.patch - Update to Salt release version 3006.0 (jsc#PED-3139) * See release notes: https://docs.saltproject.io/en/latest/topics/releases/3006.0.html - Add missing patch after rebase to fix collections Mapping issues - Add python3-looseversion as new dependency for salt - Add python3-packaging as new dependency for salt - Allow entrypoint compatibility for "importlib-metadata>=5.0.0" (bsc#1207071) - Create new salt-tests subpackage containing Salt tests - Drop conflictive patch dicarded from upstream - Fix version detection and avoid building and testing failures - Prevent deadlocks in salt-ssh executions - Require python3-jmespath runtime dependency (bsc#1209233) - Fix SLS rendering error when Jinja macros are used - Added: * fix-version-detection-and-avoid-building-and-testing.patch * make-sure-the-file-client-is-destroyed-upon-used.patch * use-rlock-to-avoid-deadlocks-in-salt-ssh.patch - Renamed: * 3004-implement-zypper-removeptf-574.patch -> 3005.1-implement-zypper-removeptf-573.patch - Modified: * activate-all-beacons-sources-config-pillar-grains.patch * add-custom-suse-capabilities-as-grains.patch * add-environment-variable-to-know-if-yum-is-invoked-f.patch * add-migrated-state-and-gpg-key-management-functions-.patch * add-publish_batch-to-clearfuncs-exposed-methods.patch * add-salt-ssh-support-with-venv-salt-minion-3004-493.patch * add-sleep-on-exception-handling-on-minion-connection.patch * add-standalone-configuration-file-for-enabling-packa.patch * add-support-for-gpgautoimport-539.patch * allow-vendor-change-option-with-zypper.patch * async-batch-implementation.patch * avoid-excessive-syslogging-by-watchdog-cronjob-58.patch * bsc-1176024-fix-file-directory-user-and-group-owners.patch * change-the-delimeters-to-prevent-possible-tracebacks.patch * control-the-collection-of-lvm-grains-via-config.patch * debian-info_installed-compatibility-50453.patch * dnfnotify-pkgset-plugin-implementation-3002.2-450.patch * do-not-load-pip-state-if-there-is-no-3rd-party-depen.patch * don-t-use-shell-sbin-nologin-in-requisites.patch * drop-serial-from-event.unpack-in-cli.batch_async.patch * early-feature-support-config.patch * enable-passing-a-unix_socket-for-mysql-returners-bsc.patch * enhance-openscap-module-add-xccdf_eval-call-386.patch * fix-bsc-1065792.patch * fixes-for-python-3.10-502.patch * fix-for-suse-expanded-support-detection.patch * fix-issue-2068-test.patch * fix-missing-minion-returns-in-batch-mode-360.patch * fix-ownership-of-salt-thin-directory-when-using-the-.patch * fix-regression-with-depending-client.ssh-on-psutil-b.patch * fix-salt-ssh-opts-poisoning-bsc-1197637-3004-501.patch * fix-salt.utils.stringutils.to_str-calls-to-make-it-w.patch * fix-the-regression-for-yumnotify-plugin-456.patch * fix-traceback.print_exc-calls-for-test_pip_state-432.patch * include-aliases-in-the-fqdns-grains.patch * info_installed-works-without-status-attr-now.patch * let-salt-ssh-use-platform-python-binary-in-rhel8-191.patch * make-aptpkg.list_repos-compatible-on-enabled-disable.patch * make-setup.py-script-to-not-require-setuptools-9.1.patch * pass-the-context-to-pillar-ext-modules.patch * prevent-affection-of-ssh.opts-with-lazyloader-bsc-11.patch * prevent-pkg-plugins-errors-on-missing-cookie-path-bs.patch * prevent-shell-injection-via-pre_flight_script_args-4.patch * read-repo-info-without-using-interpolation-bsc-11356.patch * restore-default-behaviour-of-pkg-list-return.patch * return-the-expected-powerpc-os-arch-bsc-1117995.patch * revert-fixing-a-use-case-when-multiple-inotify-beaco.patch * run-salt-api-as-user-salt-bsc-1064520.patch * run-salt-master-as-dedicated-salt-user.patch * save-log-to-logfile-with-docker.build.patch * skip-package-names-without-colon-bsc-1208691-578.patch * switch-firewalld-state-to-use-change_interface.patch * temporary-fix-extend-the-whitelist-of-allowed-comman.patch * update-target-fix-for-salt-ssh-to-process-targets-li.patch * use-adler32-algorithm-to-compute-string-checksums.patch * use-salt-bundle-in-dockermod.patch * x509-fixes-111.patch * zypperpkg-ignore-retcode-104-for-search-bsc-1176697-.patch - Removed: * 3003.3-do-not-consider-skipped-targets-as-failed-for.patch * 3003.3-postgresql-json-support-in-pillar-423.patch * add-amazon-ec2-detection-for-virtual-grains-bsc-1195.patch * add-missing-ansible-module-functions-to-whitelist-in.patch * add-rpm_vercmp-python-library-for-version-comparison.patch * adds-explicit-type-cast-for-port.patch * add-support-for-name-pkgs-and-diff_attr-parameters-t.patch * align-amazon-ec2-nitro-grains-with-upstream-pr-bsc-1.patch * backport-syndic-auth-fixes.patch * batch.py-avoid-exception-when-minion-does-not-respon.patch * check-if-dpkgnotify-is-executable-bsc-1186674-376.patch * clarify-pkg.installed-pkg_verify-documentation.patch * detect-module.run-syntax.patch * do-not-crash-when-unexpected-cmd-output-at-listing-p.patch * enhance-logging-when-inotify-beacon-is-missing-pyino.patch * fix-62092-catch-zmq.error.zmqerror-to-set-hwm-for-zm.patch * fix-crash-when-calling-manage.not_alive-runners.patch * fixes-56144-to-enable-hotadd-profile-support.patch * fix-exception-in-yumpkg.remove-for-not-installed-pac.patch * fix-for-cve-2022-22967-bsc-1200566.patch * fix-inspector-module-export-function-bsc-1097531-481.patch * fix-ip6_interface-grain-to-not-leak-secondary-ipv4-a.patch * fix-issues-with-salt-ssh-s-extra-filerefs.patch * fix-jinja2-contextfuntion-base-on-version-bsc-119874.patch * fix-multiple-security-issues-bsc-1197417.patch * fix-salt-call-event.send-call-with-grains-and-pillar.patch * fix-salt.states.file.managed-for-follow_symlinks-tru.patch * fix-state.apply-in-test-mode-with-file-state-module-.patch * fix-test_ipc-unit-tests.patch * fix-the-regression-in-schedule-module-releasded-in-3.patch * fix-wrong-test_mod_del_repo_multiline_values-test-af.patch * fopen-workaround-bad-buffering-for-binary-mode-563.patch * force-zyppnotify-to-prefer-packages.db-than-packages.patch * ignore-erros-on-reading-license-files-with-dpkg_lowp.patch * ignore-extend-declarations-from-excluded-sls-files.patch * ignore-non-utf8-characters-while-reading-files-with-.patch * implementation-of-held-unheld-functions-for-state-pk.patch * implementation-of-suse_ip-execution-module-bsc-10999.patch * improvements-on-ansiblegate-module-354.patch * include-stdout-in-error-message-for-zypperpkg-559.patch * make-pass-renderer-configurable-other-fixes-532.patch * make-sure-saltcacheloader-use-correct-fileclient-519.patch * mock-ip_addrs-in-utils-minions.py-unit-test-443.patch * normalize-package-names-once-with-pkg.installed-remo.patch * notify-beacon-for-debian-ubuntu-systems-347.patch * refactor-and-improvements-for-transactional-updates-.patch * retry-if-rpm-lock-is-temporarily-unavailable-547.patch * set-default-target-for-pip-from-venv_pip_target-envi.patch * state.apply-don-t-check-for-cached-pillar-errors.patch * state.orchestrate_single-does-not-pass-pillar-none-4.patch * support-transactional-systems-microos.patch * wipe-notify_socket-from-env-in-cmdmod-bsc-1193357-30.patch - Fix problem with detecting PTF packages (bsc#1208691) - Added: * skip-package-names-without-colon-bsc-1208691-578.patch - Do not hide SELinux installation errors and notify users (bsc#1205687) - Fixes pkg.version_cmp on openEuler systems and a few other OS flavors - Added: * fixes-pkg.version_cmp-on-openeuler-systems-and-a-few.patch - Make pkg.remove function from zypperpkg module to handle also PTF packages - Added: * 3004-implement-zypper-removeptf-574.patch - Control the collection of lvm grains via config (bsc#1204939) - Added: * control-the-collection-of-lvm-grains-via-config.patch - Pass the context to pillar ext modules - Align Amazon EC2 (Nitro) grains with upstream (bsc#1203685) - Detect module run syntax version - Implement automated patches alignment for the Salt Bundle - Added: * detect-module.run-syntax.patch * align-amazon-ec2-nitro-grains-with-upstream-pr-bsc-1.patch * pass-the-context-to-pillar-ext-modules.patch - Ignore extend declarations from excluded SLS files (bsc#1203886) - Clarify pkg.installed pkg_verify documentation - Enhance capture of error messages for Zypper calls in zypperpkg module - Added: * include-stdout-in-error-message-for-zypperpkg-559.patch * clarify-pkg.installed-pkg_verify-documentation.patch * ignore-extend-declarations-from-excluded-sls-files.patch - Make pass renderer configurable and fix detected issues - Workaround fopen line buffering for binary mode (bsc#1203834) - Added: * fopen-workaround-bad-buffering-for-binary-mode-563.patch * make-pass-renderer-configurable-other-fixes-532.patch - Removed dependency to policycoreutils for Ubuntu 20.04 and higher (bsc#1204206) - Remove kiwi python module from the bundle as no longer required - Updated: * include-rpm * remove-file - Handle non-UTF-8 bytes in core grains generation (bsc#1202165) - Added: * ignore-non-utf8-characters-while-reading-files-with-.patch - Don't include kiwi binaries - Fix Syndic authentication errors (bsc#1199562) - Added: * backport-syndic-auth-fixes.patch - Updated: * remove-file - Add Amazon EC2 detection for virtual grains (bsc#1195624) - Fix the regression in schedule module releasded in 3004 (bsc#1202631) - Fix state.apply in test mode with file state module on user/group checking (bsc#1202167) - Change the delimeters to prevent possible tracebacks on some packages with dpkg_lowpkg - Added: * add-amazon-ec2-detection-for-virtual-grains-bsc-1195.patch * fix-state.apply-in-test-mode-with-file-state-module-.patch * fix-the-regression-in-schedule-module-releasded-in-3.patch * change-the-delimeters-to-prevent-possible-tracebacks.patch - Make zypperpkg to retry if RPM lock is temporarily unavailable (bsc#1200596) - Added: * retry-if-rpm-lock-is-temporarily-unavailable-547.patch - Add SELinux profile to the package instead of using semanage - Remove Build ID links from the virtual environment and disable generating new links on building the package - Remove packages.log from the virtual environment - Added: * venv-salt-minion-selinux.tar.gz - Fix test_ipc unit test - Added: * fix-test_ipc-unit-tests.patch - Add support for gpgautoimport in zypperpkg module - Update Salt to work with Jinja >= and <= 3.1.0 (bsc#1198744) - Fix salt.states.file.managed() for follow_symlinks=True and test=True (bsc#1199372) - Make Salt 3004 compatible with pyzmq >= 23.0.0 (bsc#1201082) - Added: * add-support-for-gpgautoimport-539.patch * fix-jinja2-contextfuntion-base-on-version-bsc-119874.patch * fix-62092-catch-zmq.error.zmqerror-to-set-hwm-for-zm.patch * fix-salt.states.file.managed-for-follow_symlinks-tru.patch - Add support for name, pkgs and diff_attr parameters to upgrade function for zypper and yum (bsc#1198489) - Added: * add-support-for-name-pkgs-and-diff_attr-parameters-t.patch - Fix possible errors on running post install script if semanage is present on the system, but SELinux is not configured - Remove unused imports in the venv wrappers - Set VENV_PIP_TARGET to /var/lib/venv-salt-minion/local to force PIP use it as the destination to install modules - Updated: * venv.py.src * venv-startup - Fix ownership of salt thin directory when using the Salt Bundle - Set default target for pip from VENV_PIP_TARGET environment variable - Normalize package names once with pkg.installed/removed using yum (bsc#1195895) - Save log to logfile with docker.build - Use Salt Bundle in dockermod - Ignore erros on reading license files with dpkg_lowpkg (bsc#1197288) - Fix PAM auth issue due missing check for PAM_ACCT_MGM return value (CVE-2022-22967) (bsc#1200566) - Added: * normalize-package-names-once-with-pkg.installed-remo.patch * set-default-target-for-pip-from-venv_pip_target-envi.patch * ignore-erros-on-reading-license-files-with-dpkg_lowp.patch * fix-for-cve-2022-22967-bsc-1200566.patch * fix-ownership-of-salt-thin-directory-when-using-the-.patch * use-salt-bundle-in-dockermod.patch * save-log-to-logfile-with-docker.build.patch - Make sure SaltCacheLoader use correct fileclient (bsc#1199149) - Fix regression preventing bootstrapping new clients caused by redundant dependency on psutil (bsc#1197533) - Prevent data pollution between actions proceesed at the same time (bsc#1197637) - Added: * prevent-affection-of-ssh.opts-with-lazyloader-bsc-11.patch * fix-regression-with-depending-client.ssh-on-psutil-b.patch * make-sure-saltcacheloader-use-correct-fileclient-519.patch - Rename the python startup script to venv-startup so we can avoid python cache files creation in bin directory of the bundle * Removed: venv-exec.py.src * Added: venv-startup - Remove wsdump files from bin directory as they are not needed * Updated: remove-file - Fix the regression caused by the patch removing strict requirement for OpenSSL 1.1.1 leading to read/write issues with ssl module for SLE 15, SLE 12, CentOS 7, Debian 9 (bsc#1198556) - Fixes for Python 3.10 - Fix salt-ssh opts poisoning (bsc#1197637) - Fix multiple security issues (bsc#1197417) * Sign authentication replies to prevent MiTM (CVE-2022-22935) * Sign pillar data to prevent MiTM attacks. (CVE-2022-22934) * Prevent job and fileserver replays (CVE-2022-22936) * Fixed targeting bug, especially visible when using syndic and user auth. (CVE-2022-22941) - Added: * fix-salt-ssh-opts-poisoning-bsc-1197637-3004-501.patch * fixes-for-python-3.10-502.patch * fix-multiple-security-issues-bsc-1197417.patch - Salt version bump to 3004 - Python version bump to 3.10.2 - Added: * v3004.tar.gz * 3003.3-do-not-consider-skipped-targets-as-failed-for.patch * 3003.3-postgresql-json-support-in-pillar-423.patch * add-missing-ansible-module-functions-to-whitelist-in.patch * add-salt-ssh-support-with-venv-salt-minion-3004-493.patch * allow-vendor-change-option-with-zypper.patch * drop-serial-from-event.unpack-in-cli.batch_async.patch * fix-crash-when-calling-manage.not_alive-runners.patch * fix-inspector-module-export-function-bsc-1097531-481.patch * fix-issues-with-salt-ssh-s-extra-filerefs.patch * fix-salt-call-event.send-call-with-grains-and-pillar.patch * fix-traceback.print_exc-calls-for-test_pip_state-432.patch * mock-ip_addrs-in-utils-minions.py-unit-test-443.patch * prevent-shell-injection-via-pre_flight_script_args-4.patch * state.orchestrate_single-does-not-pass-pillar-none-4.patch * support-transactional-systems-microos.patch - Removed: * v3002.2.tar.gz * 3002.2-do-not-consider-skipped-targets-as-failed-for.patch * 3002.2-postgresql-json-support-in-pillar-424.patch * 3002.2-xen-spicevmc-dns-srv-records-backports-314.patch * 3002-set-distro-requirement-to-oldest-supported-vers.patch * accumulated-changes-from-yomi-167.patch * accumulated-changes-required-for-yomi-165.patch * add-alibaba-cloud-linux-2-by-backporting-upstream-s-.patch * add-all-ssh-kwargs-to-sanitize_kwargs-method-3002.2-.patch * add-all_versions-parameter-to-include-all-installed-.patch * add-almalinux-and-alibaba-cloud-linux-to-the-os-fami.patch * add-astra-linux-common-edition-to-the-os-family-list.patch * add-batch_presence_ping_timeout-and-batch_presence_p.patch * add-cpe_name-for-osversion-grain-parsing-u-49946.patch * add-docker-logout-237.patch * add-hold-unhold-functions.patch * adding-preliminary-support-for-rocky.-59682-391.patch * add-missing-aarch64-to-rpm-package-architectures-405.patch * add-multi-file-support-and-globbing-to-the-filetree-.patch * add-new-custom-suse-capability-for-saltutil-state-mo.patch * add-patch-support-for-allow-vendor-change-option-wit.patch * add-pkg.services_need_restart-302.patch * add-saltssh-multi-version-support-across-python-inte.patch * add-salt-ssh-support-with-venv-salt-minion-3002.2-47.patch * add-supportconfig-module-for-remote-calls-and-saltss.patch * add-virt.all_capabilities.patch * allow-extra_filerefs-as-sanitized-kwargs-for-ssh-cli.patch * allow-passing-kwargs-to-pkg.list_downloaded-bsc-1140.patch * allow-vendor-change-option-with-zypper-313.patch * ansiblegate-take-care-of-failed-skipped-and-unreacha.patch * apply-patch-from-upstream-to-support-python-3.8.patch * async-batch-implementation-fix-320.patch * avoid-traceback-when-http.query-request-cannot-be-pe.patch * backport-a-few-virt-prs-272.patch * backport-of-upstream-pr59492-to-3002.2-404.patch * backport-thread.is_alive-fix-390.patch * backport-virt-patches-from-3001-256.patch * batch_async-avoid-using-fnmatch-to-match-event-217.patch * batch-async-catch-exceptions-and-safety-unregister-a.patch * better-handling-of-bad-public-keys-from-minions-bsc-.patch * calculate-fqdns-in-parallel-to-avoid-blockings-bsc-1.patch * changed-imports-to-vendored-tornado.patch * clear-network-interface-cache-when-grains-are-reques.patch * do-noop-for-services-states-when-running-systemd-in-.patch * do-not-break-repo-files-with-multiple-line-values-on.patch * do-not-crash-when-there-are-ipv6-established-connect.patch * do-not-make-ansiblegate-to-crash-on-python3-minions.patch * do-not-monkey-patch-yaml-bsc-1177474.patch * do-not-raise-streamclosederror-traceback-but-only-lo.patch * don-t-call-zypper-with-more-than-one-no-refresh.patch * drop-wrong-mock-from-chroot-unit-test.patch * drop-wrong-virt-capabilities-code-after-rebasing-pat.patch * ensure-virt.update-stop_on_reboot-is-updated-with-it.patch * exclude-the-full-path-of-a-download-url-to-prevent-i.patch * fall-back-to-pymysql.patch * figure-out-python-interpreter-to-use-inside-containe.patch * fix-aptpkg.normalize_name-when-package-arch-is-all.patch * fix-aptpkg-systemd-call-bsc-1143301.patch * fix-async-batch-multiple-done-events.patch * fix-async-batch-race-conditions.patch * fix-a-test-and-some-variable-names-229.patch * fix-a-wrong-rebase-in-test_core.py-180.patch * fix-batch_async-obsolete-test.patch * fix-cve-2020-25592-and-add-tests-bsc-1178319.patch * fixed-bug-lvm-has-no-parttion-type.-the-scipt-later-.patch * fix-error-handling-in-openscap-module-bsc-1188647-40.patch * fixes-cve-2018-15750-cve-2018-15751.patch * fix-failing-unit-tests-for-batch-async.patch * fix-failing-unit-tests-for-systemd.patch * fix-for-log-checking-in-x509-test.patch * fix-for-some-cves-bsc1181550.patch * fix-for-temp-folder-definition-in-loader-unit-test.patch * fix-git_pillar-merging-across-multiple-__env__-repos.patch * fix-grains.test_core-unit-test-277.patch * fixing-streamclosed-issue.patch * fix-inspector-module-export-function-bsc-1097531-480.patch * fix-ipv6-scope-bsc-1108557.patch * fix-issue-parsing-errors-in-ansiblegate-state-module.patch * fix-memory-leak-produced-by-batch-async-find_jobs-me.patch * fix-__mount_device-wrapper-254.patch * fix-novendorchange-option-284.patch * fix-onlyif-unless-when-multiple-conditions-bsc-11808.patch * fix-regression-on-cmd.run-when-passing-tuples-as-cmd.patch * fix-save-for-iptables-state-module-bsc-1185131-372.patch * fix-state.orchestrate_single-to-not-pass-pillar-none.patch * fix-the-removed-six.itermitems-and-six.-_type-262.patch * fix-traceback.-_exc-calls-429.patch * fix-unit-test-for-grains-core.patch * fix-unit-tests-for-batch-async-after-refactor.patch * fix-virt.update-with-cpu-defined-263.patch * fix-zypper.list_pkgs-to-be-aligned-with-pkg-state.patch * fix-zypper-pkg.list_pkgs-expectation-and-dpkg-mockin.patch * get-os_arch-also-without-rpm-package-installed.patch * grains.extra-support-old-non-intel-kernels-bsc-11806.patch * grains-master-can-read-grains.patch * handle-master-tops-data-when-states-are-applied-by-t.patch * handle-volumes-on-stopped-pools-in-virt.vm_info-373.patch * implement-network.fqdns-module-function-bsc-1134860-.patch * improve-batch_async-to-release-consumed-memory-bsc-1.patch * integration-of-msi-authentication-with-azurearm-clou.patch * invalidate-file-list-cache-when-cache-file-modified-.patch * loop-fix-variable-names-for-until_no_eval.patch * loosen-azure-sdk-dependencies-in-azurearm-cloud-driv.patch * make-profiles-a-package.patch * mock-ip_addrs-in-utils-minions.py-unit-test-444.patch * move-server_id-deprecation-warning-to-reduce-log-spa.patch * move-vendor-change-logic-to-zypper-class-355.patch * opensuse-3000.2-virt-backports-236-257.patch * opensuse-3000.3-spacewalk-runner-parse-command-250.patch * opensuse-3000-libvirt-engine-fixes-251.patch * opensuse-3000-virt-defined-states-222.patch * open-suse-3002.2-bigvm-310.patch * open-suse-3002.2-virt-network-311.patch * open-suse-3002.2-xen-grub-316.patch * option-to-en-disable-force-refresh-in-zypper-215.patch * parsing-epoch-out-of-version-provided-during-pkg-rem.patch * path-replace-functools.wraps-with-six.wraps-bsc-1177.patch * pkgrepo-support-python-2.7-function-call-295.patch * prevent-ansiblegate-unit-tests-to-fail-on-ubuntu.patch * prevent-command-injection-in-the-snapper-module-bsc-.patch * prevent-import-errors-when-running-test_btrfs-unit-t.patch * prevent-logging-deadlock-on-salt-api-subprocesses-bs.patch * prevent-race-condition-on-sigterm-for-the-minion-bsc.patch * prevent-systemd-run-description-issue-when-running-a.patch * prevent-test_mod_del_repo_multiline_values-to-fail.patch * provide-the-missing-features-required-for-yomi-yet-o.patch * python3.8-compatibility-pr-s-235.patch * re-adding-function-to-test-for-root.patch * regression-fix-of-salt-ssh-on-processing-targets-353.patch * reintroducing-reverted-changes.patch * remove-arch-from-name-when-pkg.list_pkgs-is-called-w.patch * remove-deprecated-usage-of-no_mock-and-no_mock_reaso.patch * remove-deprecated-warning-that-breaks-miniion-execut.patch * remove-duplicated-method-definitions-in-salt.netapi-.patch * remove-msgpack-1.0.0-requirement-in-the-installed-me.patch * remove-unnecessary-yield-causing-badyielderror-bsc-1.patch * remove-vendored-backports-abc-from-requirements.patch * remove-wrong-_parse_cpe_name-from-grains.core-452.patch * revert-add-patch-support-for-allow-vendor-change-opt.patch * sanitize-grains-loaded-from-roster_grains.json.patch * strip-trailing-from-repo.uri-when-comparing-repos-in.patch * support-config-non-root-permission-issues-fixes-u-50.patch * support-for-btrfs-and-xfs-in-parted-and-mkfs.patch * support-transactional-systems-microos-271.patch * templates-move-the-globals-up-to-the-environment-jin.patch * transactional_update-detect-recursion-in-the-executo.patch * transactional_update-unify-with-chroot.call.patch * use-current-ioloop-for-the-localclient-instance-of-b.patch * use-threadpool-from-multiprocessing.pool-to-avoid-le.patch * vendor-stateresult.patch * virt-adding-kernel-boot-parameters-to-libvirt-xml-55.patch * virt._get_domain-don-t-raise-an-exception-if-there-i.patch * virt.network_update-handle-missing-ipv4-netmask-attr.patch * virt-pass-emulator-when-getting-domain-capabilities-.patch * virt-uefi-fix-backport-312.patch * virt-use-dev-kvm-to-detect-kvm-383.patch * xen-disk-fixes-264.patch * xfs-do-not-fails-if-type-is-not-present.patch * zypperpkg-filter-patterns-that-start-with-dot-244.patch - Updated: * activate-all-beacons-sources-config-pillar-grains.patch * add-custom-suse-capabilities-as-grains.patch * add-environment-variable-to-know-if-yum-is-invoked-f.patch * add-migrated-state-and-gpg-key-management-functions-.patch * add-publish_batch-to-clearfuncs-exposed-methods.patch * add-rpm_vercmp-python-library-for-version-comparison.patch * adds-explicit-type-cast-for-port.patch * add-sleep-on-exception-handling-on-minion-connection.patch * add-standalone-configuration-file-for-enabling-packa.patch * async-batch-implementation.patch * avoid-excessive-syslogging-by-watchdog-cronjob-58.patch * batch.py-avoid-exception-when-minion-does-not-respon.patch * bsc-1176024-fix-file-directory-user-and-group-owners.patch * check-if-dpkgnotify-is-executable-bsc-1186674-376.patch * debian-info_installed-compatibility-50453.patch * dnfnotify-pkgset-plugin-implementation-3002.2-450.patch * do-not-crash-when-unexpected-cmd-output-at-listing-p.patch * do-not-load-pip-state-if-there-is-no-3rd-party-depen.patch * don-t-use-shell-sbin-nologin-in-requisites.patch * early-feature-support-config.patch * enable-passing-a-unix_socket-for-mysql-returners-bsc.patch * enhance-logging-when-inotify-beacon-is-missing-pyino.patch * enhance-openscap-module-add-xccdf_eval-call-386.patch * fix-bsc-1065792.patch * fixes-56144-to-enable-hotadd-profile-support.patch * fix-exception-in-yumpkg.remove-for-not-installed-pac.patch * fix-for-suse-expanded-support-detection.patch * fix-ip6_interface-grain-to-not-leak-secondary-ipv4-a.patch * fix-issue-2068-test.patch * fix-missing-minion-returns-in-batch-mode-360.patch * fix-salt.utils.stringutils.to_str-calls-to-make-it-w.patch * fix-the-regression-for-yumnotify-plugin-456.patch * fix-wrong-test_mod_del_repo_multiline_values-test-af.patch * force-zyppnotify-to-prefer-packages.db-than-packages.patch * implementation-of-held-unheld-functions-for-state-pk.patch * implementation-of-suse_ip-execution-module-bsc-10999.patch * improvements-on-ansiblegate-module-354.patch * include-aliases-in-the-fqdns-grains.patch * info_installed-works-without-status-attr-now.patch * let-salt-ssh-use-platform-python-binary-in-rhel8-191.patch * make-aptpkg.list_repos-compatible-on-enabled-disable.patch * make-setup.py-script-to-not-require-setuptools-9.1.patch * notify-beacon-for-debian-ubuntu-systems-347.patch * prevent-pkg-plugins-errors-on-missing-cookie-path-bs.patch * read-repo-info-without-using-interpolation-bsc-11356.patch * refactor-and-improvements-for-transactional-updates-.patch * restore-default-behaviour-of-pkg-list-return.patch * return-the-expected-powerpc-os-arch-bsc-1117995.patch * revert-fixing-a-use-case-when-multiple-inotify-beaco.patch * run-salt-api-as-user-salt-bsc-1064520.patch * run-salt-master-as-dedicated-salt-user.patch * state.apply-don-t-check-for-cached-pillar-errors.patch * switch-firewalld-state-to-use-change_interface.patch * temporary-fix-extend-the-whitelist-of-allowed-comman.patch * update-target-fix-for-salt-ssh-to-process-targets-li.patch * use-adler32-algorithm-to-compute-string-checksums.patch * wipe-notify_socket-from-env-in-cmdmod-bsc-1193357-30.patch * x509-fixes-111.patch * zypperpkg-ignore-retcode-104-for-search-bsc-1176697-.patch - Clear network interfaces cache on grains request (bsc#1196050) - Remove duplicated method definitions in salt.netapi - Add salt-ssh with Salt Bundle support (venv-salt-minion) (bsc#1182851, bsc#1196432) - Remove not required binaries from virtual environment - Added: * clear-network-interface-cache-when-grains-are-reques.patch * remove-duplicated-method-definitions-in-salt.netapi-.patch * add-salt-ssh-support-with-venv-salt-minion-3002.2-47.patch - Updated: * remove-file - Restrict "state.orchestrate_single" to pass a pillar value if it exists (bsc#1194632) - Added: * fix-state.orchestrate_single-to-not-pass-pillar-none.patch - Refactor venv-exec.py wrapper and the way of calling it with PYTHONSTARTUP environment variable - Updated: * venv-exec.py.src - Fix inspector module export function (bsc#1097531) - Add all ssh kwargs to sanitize_kwargs method - Wipe NOTIFY_SOCKET from env in cmdmod (bsc#1193357) - Don't check for cached pillar errors on state.apply (bsc#1190781) - Move the logic of cleaning PYTHONHOME environment variable and fixing sys.executable value to venv-exec.py wrapper from venv executor module to prevent some side effects found - Added: * state.apply-don-t-check-for-cached-pillar-errors.patch * add-all-ssh-kwargs-to-sanitize_kwargs-method-3002.2-.patch * wipe-notify_socket-from-env-in-cmdmod-bsc-1193357-30.patch * fix-inspector-module-export-function-bsc-1097531-480.patch * vendor-stateresult.patch - Updated: * venv-exec.py.src * venv.py.src - Add venv-exec.py wrapper to prevent errors on using cmdmod module - Added: * venv-exec.py.src - Fix condition to identify correct python sitelib for dnfnotify - Remove some specific binary library dependencies - Handle transactional_update executor for the relevant systems - Add policycoreutils and policycoreutils-python-utils to post install requirements for CentOS 8+ and Fedora 22+ packages - Set sys.executable pointing to the wrapper script instead of real python executable with venv executor module - Simplify "transactional_update" module to not use SSH wrapper and allow more flexible execution - Add "--no-return-event" option to salt-call to prevent sending return event back to master. - Make "state.highstate" to acts on concurrent flag. - Added: * refactor-and-improvements-for-transactional-updates-.patch - Use dnfnotify instead yumnotify for relevant distros - Remove wrong _parse_cpe_name from grains.core - dnfnotify pkgset plugin implementation - Add rpm_vercmp python library support for version comparison - Prevent pkg plugins errors on missing cookie path (bsc#1186738) - Added: * mock-ip_addrs-in-utils-minions.py-unit-test-444.patch * add-rpm_vercmp-python-library-for-version-comparison.patch * prevent-pkg-plugins-errors-on-missing-cookie-path-bs.patch * remove-wrong-_parse_cpe_name-from-grains.core-452.patch * dnfnotify-pkgset-plugin-implementation-3002.2-450.patch - Add propagate python_ver into the venvjail - Initial package based on victor.zhestkov@suse.com one
Pablo Suárez Hernández (PSuarezHernandez)
accepted
request 1158232
from
Yeray Gutiérrez Cedrés (ygutierrez)
(revision 65)
- Ignore non-ascii chars in oscap output (bsc#1219001) - Added: * decode-oscap-byte-stream-to-string-bsc-1219001.patch
Yeray Gutiérrez Cedrés (ygutierrez)
accepted
request 1157992
from
Pablo Suárez Hernández (PSuarezHernandez)
(revision 64)
- Fix detected issues in Salt tests when running on VMs - Added: * fix-tests-failures-and-errors-when-detected-on-vm-ex.patch
Pablo Suárez Hernández (PSuarezHernandez)
accepted
request 1155591
from
Marek Czernek (mczernek)
(revision 63)
- Make importing seco.range thread safe (bsc#1211649) - Added: * make-importing-seco.range-thread-safe-bsc-1211649.patch
Pablo Suárez Hernández (PSuarezHernandez)
accepted
request 1155508
from
Victor Zhestkov (vizhestkov)
(revision 62)
!!! ALIGNMENT OF THE MISMATCHES BETWEEN next AND testing !!! - Include salt-test in venv-salt-minion-testsuite - Modified: * include-deb * include-rpm * exclude-deb * exclude-rpm * improve-pip-target-override-condition-with-venv_pip_.patch * fix-the-aptpkg.py-unit-test-failure.patch * prefer-unittest.mock-for-python-versions-that-are-su.patch - Add libffi to the bundle for EL8 based systems to make it more compatible with the clones - Enable "KeepAlive" probes for Salt SSH executions (bsc#1211649) - Added: * enable-keepalive-probes-for-salt-ssh-executions-bsc-.patch
Victor Zhestkov (vizhestkov)
accepted
request 1151248
from
Pablo Suárez Hernández (PSuarezHernandez)
(revision 61)
- Fix problematic tests and allow smooth tests executions on containers - Added: * fix-problematic-tests-and-allow-smooth-tests-executi.patch
Yeray Gutiérrez Cedrés (ygutierrez)
accepted
request 1148678
from
Pablo Suárez Hernández (PSuarezHernandez)
(revision 60)
- Discover Ansible playbook files as "*.yml" or "*.yaml" files (bsc#1211888) - Added: * discover-both-.yml-and-.yaml-playbooks-bsc-1211888.patch
Victor Zhestkov (vizhestkov)
accepted
request 1148201
from
Pablo Suárez Hernández (PSuarezHernandez)
(revision 59)
Alexander Graul (agraul)
accepted
request 1143340
from
Pablo Suárez Hernández (PSuarezHernandez)
(revision 58)
- Prevent directory traversal when creating syndic cache directory on the master (CVE-2024-22231, bsc#1219430) - Prevent directory traversal attacks in the master's serve_file method (CVE-2024-22232, bsc#1219431) - Added: * fix-cve-2024-22231-and-cve-2024-22232-bsc-1219430-bs.patch - Prevent exceptions with fileserver.update when called via state (bsc#1218482) - Added: * allow-kwargs-for-fileserver-roots-update-bsc-1218482.patch - Improve pip target override condition with VENV_PIP_TARGET environment variable (bsc#1216850) - Fixed KeyError in logs when running a state that fails - Added: * improve-pip-target-override-condition-with-venv_pip_.patch * fixed-keyerror-in-logs-when-running-a-state-that-fai.patch
Alexander Graul (agraul)
accepted
request 1139720
from
Marek Czernek (mczernek)
(revision 57)
- Ensure that pillar refresh loads beacons from pillar without restart - Fix the aptpkg.py unit test failure - Prefer unittest.mock to python-mock in test suite - Enable "KeepAlive" probes for Salt SSH executions (bsc#1211649) - Added: * prefer-unittest.mock-for-python-versions-that-are-su.patch * fix-the-aptpkg.py-unit-test-failure.patch * enable-keepalive-probes-for-salt-ssh-executions-bsc-.patch * update-__pillar__-during-pillar_refresh.patch
Alexander Graul (agraul)
accepted
request 1138313
from
Pablo Suárez Hernández (PSuarezHernandez)
(revision 56)
Pablo Suárez Hernández (PSuarezHernandez)
accepted
request 1137550
from
Alexander Graul (agraul)
(revision 55)
- Include salt-test in venv-salt-minion-testsuite - Modified: * include-deb * include-rpm * exclude-deb * exclude-rpm
Yeray Gutiérrez Cedrés (ygutierrez)
accepted
request 1126829
from
Pablo Suárez Hernández (PSuarezHernandez)
(revision 54)
- Revert changes to set Salt configured user early in the stack (bsc#1216284) - Added: * revert-make-sure-configured-user-is-properly-set-by-.patch
Pablo Suárez Hernández (PSuarezHernandez)
accepted
request 1125893
from
Victor Zhestkov (vizhestkov)
(revision 53)
- Include python devel files to the bundle - Modified: * include-deb * include-rpm * venv-salt-minion-rpmlintrc
Victor Zhestkov (vizhestkov)
accepted
request 1125691
from
Pablo Suárez Hernández (PSuarezHernandez)
(revision 52)
- Align behavior of some modules when using salt-call via symlink (bsc#1215963) - Fix gitfs "__env__" and improve cache cleaning (bsc#1193948) - Added: * dereference-symlinks-to-set-proper-__cli-opt-bsc-121.patch * fix-gitfs-__env__-and-improve-cache-cleaning-bsc-119.patch
Displaying revisions 1 - 20 of 71
