[OpenAFS-devel] OpenAFS release team weekly meeting
Michael Meffie
mmeffie@sinenomine.net
Fri, 14 Sep 2018 09:56:02 -0400
OpenAFS release team weekly meeting
Date: September 14, 2018
Participants:
* Stephan Wiesand (Release Manager)
* Ben Kaduk
* Michael Meffie
* Mark Vitale
The weekly release team meetings are held on Fridays at 14:00 GMT on jabber
(xmpp) in release-team@conference.openafs.org. Please request login
information if you would like to participate. Logs are available at
https://conference.openafs.org/release-team@conference.openafs.org/
News
====
Security release 1.6.23/1.8.2 was announced.
- OPENAFS-SA-2018-002: information leakage in RPC output variables
- OPENAFS-SA-2018-003: denial of service due to excess resource consumption
- OPENAFS-SA-2018-001: unauthenticated volume operations via butc
1.6.x series
============
Discussion on how to handle git branches after the recent security release.
Merge commit to pull in security release changes, in preparation for
1.6.24pre1.
1.8.x series
============
Post 1.8.2 cleanup fixes pushed to gerrit:
13328 butc: repair build error
13329 budb: SBUDB_FindLatestDump should check result of FillDumpEntry
master
======
New patches for ubik code cleanup.
topic:ubik-cruft
13325 ubik: remove unused code
13327 ubik: remove superfluous signals for dbase->version
13326 ubik: remove unused condvar version_cond
Progress made on topic:static-analysis patches. Some changes broken out into
separate patches (give the same topic name).
topic:static-analysis
13163 strlcpy restricted to array length.
13206 localtime can return NULL if unable to read system clock
13157 Correct some redundant if() clauses
13154 Close files when completed
13207 afs: test condition mismatch resolved
13309 klog.krb5 -lifetime is not implemented
13196 Add checks to ensure *alloc was successful
13310 util: add defines for ktime never and now values
13305 Remove some dead assignment/increment operations
13306 util: fix tabular_output memory management
13208 Resolve possible memory leaks
13135 fix fprintf conversion specifiers
13175 Resolve a few dereference of null pointer issues
13171 Resolve use of uninitialized vars.
13162 afsweb: possible array overrun
13161 afsmonitor: avoid possible double free
13158 Fix static expressions in conditionals
13156 If realloc() == NULL we lost the pointer to old memory
13155 Resolve missing printf args
13136 Prevent sscanf format widths from overrunning array
13133 bucoord: avoid memory leaks on early returns from bc_Restorer
13089 Fix possible memory leaks
13085 Set defaults for complex if statements
Patches
=======
Recently merged onto branch 'openafs-stable-1_6_x':
n/a 0cdb370f1 Fix typos in audit format strings
n/a 3f06dd4f7 OPENAFS-SA-2018-001 backup: use authenticated connection to butc
n/a fa0458890 OPENAFS-SA-2018-001 butc: require authenticated connections with -localauth
n/a 23f3f2e0d OPENAFS-SA-2018-001 Add auditing to butc server RPC implementations
n/a 049b7eafe OPENAFS-SA-2018-001 audit: support butc types
n/a cf69365f0 OPENAFS-SA-2018-001 butc: remove dummy osi_audit() routine
n/a 289a5643e OPENAFS-SA-2018-003 rxgen: prevent unbounded input arrays
n/a 39b675e24 OPENAFS-SA-2018-003 volser: prevent unbounded input to various AFSVol* RPCs
n/a ea30e64d1 OPENAFS-SA-2018-003 volser: prevent unbounded input to AFSVolForwardMultiple
n/a c5c3a858b OPENAFS-SA-2018-003 budb: prevent unbounded input to BUDB_SaveText
n/a 38f401ae7 OPENAFS-SA-2018-003 vlserver: prevent unbounded input to VL_RegisterAddrs
n/a babbb2824 OPENAFS-SA-2018-002 butc: Initialize OUT scalar value
n/a 9db5fcf46 OPENAFS-SA-2018-002 ubik: prevent VOTE_Debug, VOTE_XDebug information leak
n/a 04fb009f1 OPENAFS-SA-2018-002 kaserver: prevent KAM_ListEntry information leak
n/a a41b75a13 OPENAFS-SA-2018-002 butc: prevent TC_DumpStatus, TC_ScanStatus information leaks
n/a 3e0294543 OPENAFS-SA-2018-002 butc: prevent TC_ReadLabel information leak
n/a b4543ae23 OPENAFS-SA-2018-002 budb: prevent BUDB_* information leaks
n/a 0dbbcc9ac OPENAFS-SA-2018-002 afs: prevent RXAFSCB_TellMeAboutYourself information leak
n/a f0c4f8d89 OPENAFS-SA-2018-002 afs: prevent RXAFSCB_GetLock information leak
n/a 7ee258616 OPENAFS-SA-2018-002 ptserver: prevent PR_ListEntries information leak
n/a 37cbe6857 OPENAFS-SA-2018-002 volser: prevent AFSVolMonitor information leak
n/a f1c9c0160 OPENAFS-SA-2018-002 volser: prevent AFSVolPartitionInfo(64) information leak
n/a 40343287f OPENAFS-SA-2018-002 ptserver: prevent PR_IDToName information leak
Recently submitted for branch 'openafs-stable-1_8_x':
13307 afs: Return memcache allocation errors
Recently merged onto branch 'openafs-stable-1_8_x':
n/a a33cb937b Make OpenAFS 1.8.2
n/a aecb8aef7 Update NEWS for 1.8.2
n/a 906018182 Fix typos in audit format strings
n/a ed217df4b OPENAFS-SA-2018-001 backup: use authenticated connection to butc
n/a 1b199eeaf OPENAFS-SA-2018-001 butc: require authenticated connections with -localauth
n/a 6f8c0c813 OPENAFS-SA-2018-001 Add auditing to butc server RPC implementations
n/a 41d2dd569 OPENAFS-SA-2018-001 audit: support butc types
n/a 7eb650a6e OPENAFS-SA-2018-001 butc: remove dummy osi_audit() routine
n/a 2cf5cfa85 OPENAFS-SA-2018-003 rxgen: prevent unbounded input arrays
n/a fe41fa565 OPENAFS-SA-2018-003 volser: prevent unbounded input to various AFSVol* RPCs
n/a fac3749f0 OPENAFS-SA-2018-003 volser: prevent unbounded input to AFSVolForwardMultiple
n/a 87f199c14 OPENAFS-SA-2018-003 budb: prevent unbounded input to BUDB_SaveText
n/a 4218dc0a2 OPENAFS-SA-2018-003 vlserver: prevent unbounded input to VL_RegisterAddrs
n/a 418b2ab56 OPENAFS-SA-2018-002 butc: Initialize OUT scalar value
n/a 0ee86cc3f OPENAFS-SA-2018-002 ubik: prevent VOTE_Debug, VOTE_XDebug information leak
n/a c912830e9 OPENAFS-SA-2018-002 kaserver: prevent KAM_ListEntry information leak
n/a 43b3efd4f OPENAFS-SA-2018-002 butc: prevent TC_DumpStatus, TC_ScanStatus information leaks
n/a b7e53b9e9 OPENAFS-SA-2018-002 butc: prevent TC_ReadLabel information leak
n/a 6f26a945a OPENAFS-SA-2018-002 budb: prevent BUDB_* information leaks
n/a a6557ffa6 OPENAFS-SA-2018-002 afs: prevent RXAFSCB_TellMeAboutYourself information leak
n/a 3dea4adaa OPENAFS-SA-2018-002 afs: prevent RXAFSCB_GetLock information leak
n/a e19ad4cdd OPENAFS-SA-2018-002 ptserver: prevent PR_ListEntries information leak
n/a 2d22756de OPENAFS-SA-2018-002 volser: prevent AFSVolMonitor information leak
n/a 28edf734d OPENAFS-SA-2018-002 volser: prevent AFSVolPartitionInfo(64) information leak
n/a c8c8682bb OPENAFS-SA-2018-002 ptserver: prevent PR_IDToName information leak
13297 e819a011a Update NEWS for 1.8.1.1
13298 9128c17c5 Make OpenAFS 1.8.1.1
Recently submitted for branch 'master':
13324 fsint: remove dead code
13325 ubik: remove unused code
13308 Run ctfconvert/ctfmerge for all objects
13327 ubik: remove superfluous signals for dbase->version
13326 ubik: remove unused condvar version_cond
13309 klog.krb5 -lifetime is not implemented
13323 audit: simplify build dependencies
13322 remove unused src/butc/common.h
13321 volser: apply static keyword to VolPartitionInfo definition
13320 ptserver: rename NameToID and IDToName helpers
13319 ptserver: move IDToName, NameToID to ptprocs.c and make static
13318 butc: consistently spell taskId parameter
13317 Assign explicit opcodes to butc RPCs
13316 Remove commented-out butc RPC definitions
13315 ptserver: move allocation out of put_prentries() into listEntries()
13314 butc: Initialize RPC outputs at top of function
13313 Detect realloc failure
13312 budb: SBUDB_FindLatestDump should check result of FillDumpEntry
13311 butc: repair build error
13310 util: add defines for ktime never and now values
13305 Remove some dead assignment/increment operations
13306 util: fix tabular_output memory management
Recently merged onto branch 'master':
13177 fa55a3fe7 doc: the last partition name is /vicepiu
13176 358812719 tests: partition name to id function tests
10565 709269590 Add rxgk_crypto_rfc3961.c
13260 6534b10a4 Remove DUX/OSF code
12293 8ad4e15ff venus: fix memory leak
13165 c553170bc rx: reset packet header userStatus field on reuse
13312 2d8045d67 budb: SBUDB_FindLatestDump should check result of FillDumpEntry
13311 91bab84e7 butc: repair build error
n/a d5816fd6c Fix typos in audit format strings
n/a 345ee3423 OPENAFS-SA-2018-001 backup: use authenticated connection to butc
n/a 736364f1e OPENAFS-SA-2018-001 butc: require authenticated connections with -localauth
n/a c43169fd3 OPENAFS-SA-2018-001 Add auditing to butc server RPC implementations
n/a 9ebff4c6c OPENAFS-SA-2018-001 audit: support butc types
n/a 50216dbbc OPENAFS-SA-2018-001 butc: remove dummy osi_audit() routine
n/a a4c1d5c48 OPENAFS-SA-2018-003 rxgen: prevent unbounded input arrays
n/a 8b92d015c OPENAFS-SA-2018-003 volser: prevent unbounded input to various AFSVol* RPCs
n/a 97b0ee4d9 OPENAFS-SA-2018-003 volser: prevent unbounded input to AFSVolForwardMultiple
n/a 124445c0c OPENAFS-SA-2018-003 budb: prevent unbounded input to BUDB_SaveText
n/a 762920921 OPENAFS-SA-2018-003 vlserver: prevent unbounded input to VL_RegisterAddrs
n/a f5a80115f OPENAFS-SA-2018-002 butc: Initialize OUT scalar value
n/a 7a7c1f751 OPENAFS-SA-2018-002 ubik: prevent VOTE_Debug, VOTE_XDebug information leak
n/a b604ee7ad OPENAFS-SA-2018-002 kaserver: prevent KAM_ListEntry information leak
n/a be0142707 OPENAFS-SA-2018-002 butc: prevent TC_DumpStatus, TC_ScanStatus information leaks
n/a 52f4d6314 OPENAFS-SA-2018-002 butc: prevent TC_ReadLabel information leak
n/a e96771471 OPENAFS-SA-2018-002 budb: prevent BUDB_* information leaks
n/a 211b6d6a4 OPENAFS-SA-2018-002 afs: prevent RXAFSCB_TellMeAboutYourself information leak
n/a b52eb11a0 OPENAFS-SA-2018-002 afs: prevent RXAFSCB_GetLock information leak
n/a 9d1aeb5d7 OPENAFS-SA-2018-002 ptserver: prevent PR_ListEntries information leak
n/a 26924fd50 OPENAFS-SA-2018-002 volser: prevent AFSVolMonitor information leak
n/a 76e62c1de OPENAFS-SA-2018-002 volser: prevent AFSVolPartitionInfo(64) information leak
n/a 70b0136d5 OPENAFS-SA-2018-002 ptserver: prevent PR_IDToName information leak
--
Michael Meffie <mmeffie@sinenomine.net>