Commit Graph

17 Commits

Author SHA1 Message Date
Martin Weinelt
9e6ee27597 ansible_2_8: 2.8.13 -> 2.8.14 2020-08-11 10:12:29 -07:00
Martin Weinelt
2a5f2725ec ansible: v2.9.10 -> v2.9.11
https://github.com/ansible/ansible/blob/stable-2.9/changelogs/CHANGELOG-v2.9.rst#v2-9-11
2020-07-23 09:29:40 +02:00
Martin Weinelt
60f0e62b3c ansible: v2.9.9 -> v2.9.10 2020-06-20 15:51:49 -07:00
Martin Weinelt
9f98f41854
ansible: add myself as maintainer 2020-05-18 01:45:30 +02:00
Martin Weinelt
0dea984634
ansible: v2.9.7 → v2.9.9 2020-05-18 01:25:33 +02:00
Martin Weinelt
dde157780c
ansible: v2.9.2 → v2.9.7
Fixes: CVE-2020-10684, CVE-2020-1733, CVE-2020-1735, CVE-2020-1739, CVE-2020-1740
2020-05-05 21:23:12 +02:00
Michael Reilly
84cf00f980
treewide: Per RFC45, remove all unquoted URLs 2020-04-10 17:54:53 +01:00
Jonathan Ringer
99eb9231d4 ansible_2_9: init at 2.9.2 2020-01-22 01:12:28 -08:00
Andreas Rammhold
71cde971c7 ansible_2_8: 2.8.4 -> 2.8.7
This addresses the following security issues:

  * Ansible: Splunk and Sumologic callback plugins leak sensitive data in logs (CVE-2019-14864)
  * CVE-2019-14846 - Several Ansible plugins could disclose aws
    credentials in log files. inventory/aws_ec2.py, inventory/aws_rds.py,
    lookup/aws_account_attribute.py, and lookup/aws_secret.py,
    lookup/aws_ssm.py use the boto3 library from the Ansible process. The
    boto3 library logs credentials at log level DEBUG. If Ansible's
    logging was enabled (by setting LOG_PATH to a value) Ansible would set
    the global log level to DEBUG. This was inherited by boto and would
    then log boto credentials to the file specified by LOG_PATH. This did
    not affect aws ansible modules as those are executed in a separate
    process. This has been fixed by switching to log level INFO
  * Convert CLI provided passwords to text initially, to prevent unsafe
    context being lost when converting from bytes->text during post
    processing of PlayContext. This prevents CLI provided passwords from
    being incorrectly templated (CVE-2019-14856)
  * properly hide parameters marked with no_log in suboptions when
    invalid parameters are passed to the module (CVE-2019-14858)

Changelog: 24220a618a/changelogs/CHANGELOG-v2.8.rst
2019-12-15 21:25:02 +01:00
Martin Weinelt
2bb4191613 Ansible: Fix connection plugins and add support for NETCONF ()
* ansible: Fix use of connection plugins

Ansible tries to execute the ansible-connection script as a python
script from within it's task executor. This does not work when it is
encapsulated in a shell script. Therefore remove the call to the python
interpreter and use the wrapped version directly.

Fixes 

* ansible: Add ncclient to support NETCONF connections

* ansible: Some cleanups

- boto was dropped from propagatedBuildInputs in 4af94d0f
- lib/ansible/constants.py does not have "/usr" anywhere in v2.4..v2.9
2019-11-20 14:55:07 +01:00
Frederik Rietdijk
4af94d0f5a ansible: drop boto dependency
Does not seem to be needed. Hasn't been updated in over a year either.
2019-10-18 09:54:03 +02:00
Jonathan Ringer
aa2bf1bc25 ansible: 2.8.2 -> 2.8.4 2019-08-25 23:15:26 -07:00
angristan
856ff1bf56 ansible: 2.8.1 -> 2.8.2 2019-07-13 10:01:09 +02:00
Giacomo Longo
646ed20652
ansible: 2.7.6 -> 2.8.1 2019-06-08 21:05:24 -05:00
Aaron Bull Schaefer
ef48aaff73 pythonPackages.ansible: 2.7.8 -> 2.7.9 () 2019-03-26 13:36:35 +01:00
Jascha Geerds
ffedc3e4a9 misc: Remove myself from list of maintainers
Unfortunately I don't have the time anymore to maintain those
packages.
2019-03-12 23:50:52 +01:00
Chris Ostrouchov
300ca8132b
pythonPackages.ansible: refactor move to python-modules 2019-03-01 14:46:56 -05:00