kolla

  1. Bug #1969096
  2. Comment #21

Comment 21 for bug 1969096

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to kolla (master)

Reviewed: https://review.opendev.org/c/openstack/kolla/+/865516
Committed: https://opendev.org/openstack/kolla/commit/6be0068f376b0ae67bc81b50a97e042a88317d28
Submitter: "Zuul (22348)"
Branch: master

commit 6be0068f376b0ae67bc81b50a97e042a88317d28
Author: Jakub Neumann <email address hidden>
Date: Thu Nov 24 10:29:47 2022 +0100

    Fix plugin builds with sources using type=git

    A recent change to git [1] introduced a new behaviour to work around a
    CVE [2] that disallows any git operations in directories not owned by
    the current user.

    A fix was introduced for general checkouts, but it was not applied
    to the plugins archive, resulting in PBR still not working as intended.

    [1] https://github.com/git/git/commit/8959555cee7ec045958f9b6dd62e541affb7e7d9
    [2] https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-24765.

    Closes-Bug: #1969096
    Related-Bug: #1968877

    Co-Authored-By: Mark Goddard <email address hidden>
    Co-Authored-By: Marcin Juszkiewicz <email address hidden>

    Signed-off-by: Jakub Neumann <email address hidden>
    Change-Id: Ib3a37eebb29d975fc51a117cecdff74baafd8941