linux/meta-virtualization.git/recipes-extended/ceph, branch hardknott-next

ceph: update to 15.2.12 to address CVEs

2021-05-25T18:13:21+00:00

Updated sha* Fixes: CVE-2021-3509 Fixes: CVE-2021-3524 Fixes: CVE-2021-3531 Signed-off-by: Saul Wold Signed-off-by: Bruce Ashfield

ceph: uprev from 15.2.8 to 15.2.9

2021-03-30T20:42:52+00:00

Notable Changes: 1. progress module can now be turned on/off, using the commands: ceph progress on and ceph progress off. 2. PG removal has been optimized in this release. Signed-off-by: Zqiang Signed-off-by: Bruce Ashfield

ceph: uprev v15.2.0 -> v15.2.8

2020-12-29T03:54:19+00:00

Removed patches that are contained in newer version. Contains fixes to CVES: CVE-2020-27781 CVE 2020-25660 CVE-2020-10753 CVE-2020-10736 CVE-2020-1759 CVE-2020-1760 Built and run tested. Signed-off-by: Sakib Sajal Signed-off-by: Bruce Ashfield

ceph: add support for python3.9

2020-11-15T04:07:20+00:00

Add support for python3.9, or it will do_configure failed. Signed-off-by: Yanfei Xu Signed-off-by: Bruce Ashfield

ceph: add missing include for atomic

2020-11-15T04:07:13+00:00

ceph do_compile failed with error: src/tools/rbd/action/Bench.cc:20:26: error: aggregate 'std::atomic terminating' has incomplete type and cannot be defined Add missing include to fix it. Signed-off-by: Sakib Sajal Signed-off-by: Bruce Ashfield

ceph: fix do_compile error: 'sys_siglist' was not declared

2020-08-17T01:20:12+00:00

glibc 2.32 has deprecated sys_siglist, oe-core commit 7c19f30849e9a73a7497d8e6c4719a2e57017086, causing ceph build to fail with error: ceph-15.2.0/src/global/signal_handler.h:24:26: error: 'sys_siglist' was not declared ceph has support for using reentrant strsignal, hence use it. See commit 82c40b67f5843162a93ebb2c1a006572d8f256a5 in upstream ceph. Signed-off-by: Sakib Sajal Signed-off-by: Bruce Ashfield

ceph: fix CVE-2020-10736

2020-07-06T20:28:54+00:00

An authorization bypass vulnerability was found in Ceph versions 15.2.0 before 15.2.2, where the ceph-mon and ceph-mgr daemons do not properly restrict access, resulting in gaining access to unauthorized resources. This flaw allows an authenticated client to modify the configuration and possibly conduct further attacks. Upstream patches: [master] https://github.com/ceph/ceph/commit/c7e7009a690621aacd4ac2c70c6469f25d692868 [v15.2.2] https://github.com/ceph/ceph/commit/f2cf2ce1bd9a86462510a7a12afa4e528b615df2 CVE: CVE-2020-10736 Signed-off-by: Liu Haitao Signed-off-by: Bruce Ashfield

ceph: backport CVE fixes

2020-05-02T15:02:58+00:00

Fix CVE-2020-1759 and CVE-2020-1760 PR for fix: https://github.com/ceph/ceph/pull/34482 Signed-off-by: Sakib Sajal Signed-off-by: Bruce Ashfield

ceph: fix host library paths were used

2020-04-14T21:05:54+00:00

... |ERROR: ceph-15.2.0-r0 do_package_qa: QA Issue: ceph: The compile log indicates that host include and/or library paths were used. | Please check the log 'tmp-glibc/work/corei7-64-wrs-linux/ ceph/15.2.0-r0/temp/log.do_compile' for more information. [compile-host-path] |ERROR: ceph-15.2.0-r0 do_package_qa: QA Issue: ceph: The install log indicates that host include and/or library paths were used. | Please check the log 'tmp-glibc/work/corei7-64-wrs-linux/ ceph/15.2.0-r0/temp/log.do_install' for more information. [install-host-path] ... While python setup, test var-LIBPL contains recipe-sysrooot prefix, add it back if lost Signed-off-by: Hongxu Jia Signed-off-by: Bruce Ashfield

ceph: fix installed-vs-shipped QA issue

2020-04-14T21:05:54+00:00

... |ERROR: ceph-15.2.0-r0 do_package: QA Issue: ceph: Files/directories were installed but not shipped in any package: | /lib/systemd/system/ceph-immutable-object-cache@.service | /lib/systemd/system/ceph-immutable-object-cache.target ... Signed-off-by: Hongxu Jia Signed-off-by: Bruce Ashfield