Releases: gluster/gluster-block
gluster-block release v0.5.1
This is a security and bugfix release.
Highlights:
An information-disclosure flaw was found in the way gluster-block logs
sensitive information. This flaw allows an attacker with access to the
gluster-block logs to read potentially sensitive information, such as
the CHAP passwords for block volumes.
When tuned to debug log-level, gluster-block captutures the targetcli exec
commands output at gluster-blockd.log which might contain sensitive details.
Also block volume create/modify/info cli command outputs might contain
sensitive information, as part of the audit logging these outputs will be
captured at cmd_history.log and gluster-blockd.log (CVE-2020-10762)
Administrators may want to check old logs for gluster-block passwords if they
created block volumes with CHAP authentication enabled. Restrict access or
remove old logs that retain the passwords.
The flaw was discovered and fixed by Prasanna Kumar Kalever of Red Hat.
Refer: https://access.redhat.com/security/cve/CVE-2020-10762
Notable Fixes:
- Fix CVE-2020-10762
- Fix delete failures when backend file is absent
- Add logo for gluster-block project
Read more at [1] and [2]
[1] https://github.com/gluster/gluster-block/blob/master/README.md
[2] https://github.com/gluster/gluster-block/blob/master/INSTALL
Cheers!
gluster-block release v0.5
This is the new stable version of gluster-block
Highlights:
- Switch to targetclid daemon, this will improve management ops performance (62473a1)
- Add ability to reload a single block volume (70165bd)
- Add support to set custom hw-block size (698dbac)
- Add ability to set custom io timeout option (d8fb2f2)
- Fix replace node for missing auth on newly configured node (e224f42)
- Fix genconfig failing with block hosting volumes list bigger than 5 (9767ece)
- Add vagrant+ansible scripts which help developers quickly bringup setups (e680065)
- Info will now list resize failed nodes with their effective size details (df1be39)
Other Notable Fixes:
- resize: retry doesn't care about all nodes status (44ebd6b)
- resize: update the size in metafile soon after ResizeEntry (ac88d6b)
- version: fall back to rpm package nvr if needed (bdb34a4)
- gluster-blockd: fix import error (d170e56)
- ringbuffer: fix the max limited size to 1024M (c5bb230)
- tests: fix error handling in gfapi test (08ebf97)
- fix coverity issues reported on 0.5dev (master) (3b72a6a)
- block_svc_routines: split the code into various new files (d617f15)
- create: check the StorageObject's existence before creating (34b65ea)
- delete: use gbid instead of block_name to do the saveconfig check (a438b0f)
- upgrade_activities: always wait till the background daemon is terminated (cadf491)
- alua: disable the useless ALUA state (d44f799)
- misc: makesure to kill gluster-blockd on exit (419d752)
- daemon: remove the tcmu-runner active check in systemd case (0aa12a2)
- misc: fix bash path (92f4640)
Read more at [1] and [2]
[1] https://github.com/gluster/gluster-block/blob/master/README.md
[2] https://github.com/gluster/gluster-block/blob/master/INSTALL
Cheers!
v0.4: NEWS: update
This is the new stable version of gluster-block
Highlights
- add replacing block volume support (540e816)
- add block volume resizing support (cfa7677)
- add configuration generation support (4a0ac49)
- add load-balancing support across available target nodes (f6bb475)
- add logrotate support (73dd5ba)
- add libtirpc support (3ac1399)
- add auditlog support (8416247)
- add dynamic reloading of config (/etc/sysconfig/gluster-blockd) support (4d56cd0)
- add cli rpc timeout option support (2629966)
- add ability to create block volume with configurable ring-buffer size (34c4a6d)
- add capabilities(versioning) support to work with heterogeneous cluster (46f460f)
- add ablility to create block volume with existing backend file (450f7e8)
- add option for leaving the backend file without unlinking while deleting the block (7008073)
- save-config only alter given block configuration (17832a4)
- automatically align the target device size to sector size (e971593)
- fix various cli operations exitcode (dc0c037)
- reserve 10M space for meta store, this avoids op failures when block hosting volume is 100% full (812ca9a)
- add the gfapi version check, and use the api based on available version (dbb0b26)
- use slow zeroing if glfs_zerofill is not supported (7b11fb1)
- defend on minimum recommended kernel version (c521390)
- defend on dependencies version at runtime (8599bd6)
- on stop service, clear the target config only when tcmu-runner is running (6bc89f4)
- add travis-integration for build verification using docker (bb046e5)
- support volfile server (discovery service) setting through Env (471401c)
- create block volume with 'prealloc full' by default (e9faa8e)
- convert cli and remote threads to individual processes to fix contention in tirpc (f70857a)
- increase max backup files (/etc/target/backup/) count (ae79a80)
- fix high severity issues from coverity (d913aa7)
- fix leaks reported by asan (c3307ff)
- add a simple demo to README doc (08be8c9)
- add more test cases (b2cac85)
Other Notable Fixes
- add a script for upgrade time activities (f6b40cc)
- script to wait for bricks to come online (2d89eaf)
- inotify watch the directory not just file (ac702ac)
- correct some rpc socket setup bits (b246756)
- fix create failure with ring-buffer option (b512de2)
- fix block delete failure (a4de1ee)
- fix heap-buffer-overflow reported by asan (872016e)
- fix dereference of undefined pointer value (6f04510)
- add CRIT loglevel in logger (149255f)
- add simple gfapi access test (8d34b29)
- silent building as default with automake (07dd59a)
- read configfile line-by-line instead of allocating a fixed 32K buffer (a661484)
- fix memleak for GB_LOG_LEVEL (4a47361)
- dump all failure msgs to stderr (fd62ac4)
- fix memleak for errMsg (9f705e7)
- avoid socket double free (766f97e)
- introduce remote exit value GB_BLOCK_NOT_FOUND (0a65c01)
- defend on block not loaded and CLEANUPFAIL status with delete (43d0a74)
- report block is not loaded status with modify (0b0b7db)
- fix auth command args parsing with modify (5a180e9)
- cleanup json object releasing (38cac9a)
- replace strcat and strcpy with their secure versions (d7ebb69)
- make create size unit prefixes case insensitive (f03d641)
- update docs to the latest (1eb1507)
- and many more ...
v0.3
This is the new stable version of gluster-block
Highlights
- Improvements to cli response time
- Support preallocated block device creation
- Switch to MT-safe rpc routines
- Switch to port 24010 for management connections
- Do not allow delete if all the nodes are not up
- Init scripts added
Other Notable Fixes
- Fix configshell file loglevel to INFO
- Fix systemd dependency list
- Support logdir choosing via Environment variable
- Fix LOG segfault if log dir does not exist - fall back to stderr.
- Fix (null) prints in log-file while trying to log volname
- Block info shows size in human readable format
- And many more ...
v0.2.1
This release is more focused on bug fixing
Highlights
-
Implement LRU cache to hold glfs objects, this makes the cli commands run fast.
For example on a single node,
create command takes ~1 sec now, while it was ~5 sec before. -
Log severity level is configurable now.
look for --log-level option of daemon and '/etc/sysconfig/gluster-blockd'
Other Notable Fixes
- betterments in messages on failure
- fix heap-buffer-overflow
- prevent crashes when errMsg is not set
- print human readable timestamp in log files
- improve logging at server side
- handle SIGPIPE in daemon
- update journal-data/block meta-data synchronously
- reuse port 24006 (SO_REUSEADDR) on bind
- add manual for gluster-blockd
- updated ReadMe
- and many more ...
v0.2
v0.1.1
This release is more focused on bug fixing
Highlights
- Login failues at initiator side.
v0.1
gluster-block initial release
Read all about it at [1] and [2]
[1] https://github.com/gluster/gluster-block/blob/master/README.md
[2] https://github.com/gluster/gluster-block/blob/master/INSTALL