RHEA-2018:2936 - Product Enhancement Advisory

标题

Ansible 2.7.0 release for Ansible Engine 2

描述

v2.7.0
======

Release Summary

• --------------

| Release Date: 2018-10-04
| `Porting Guide
<https://docs.ansible.com/ansible/devel/porting_guides.html>`__

Major Changes

• ------------
• Allow config to enable native jinja types

(https://github.com/ansible/ansible/pull/32738)

• Extends `module_defaults` by adding a prefix to defaults `group/` which

denotes a builtin or user-specified list of modules, such as `group/aws` or
`group/gcp`

• New keyword `ignore_unreachable` for plays and blocks. Allows ignoring

tasks that fail due to unreachable hosts, and check results with `is
unreachable` test.

• New yumdnf module defines the shared argument specification for both yum

and dnf modules and provides an entry point to share code when applicable

• Remove support for simplejson

(https://github.com/ansible/ansible/issues/42761)

• Support for running an Ansible controller with Python-2.6 has been

dropped. You can still manage machines which use Python-2.6 but you will
have to manage them from a machine which has Python-2.7 or Python-3.5 or
greater installed. See the `porting guide
<https://docs.ansible.com/ansible/devel/porting_guides/porting_guide_2.7.html>`_
if you need more information.

• new yum action plugin enables the yum module to work with both yum3 and

dnf-based yum4 by detecting the backend package manager and routing
commands through the correct Ansible module for that python API

• yum and dnf modules now at feature parity

Minor Changes

• ------------
• ActionBase - removed deprecated _fixup_perms method

(https://github.com/ansible/ansible/pull/44320)

• Add `is_boto3_error_code` function to `module_utils/aws/core.py` to make

it easier for modules to handle special AWS error codes.

• Add use_backend to yum module/action plugin
• Added PrivilegeUtil PowerShell module util to easily control Windows

Privileges in a process

• Added capability to skip ssl verification on zabbix host with dynamic

inventory

• Added inventory.any_unparsed_is_failed configuration setting. In an

inventory with a static hosts file and (say) ec2.py, enabling this setting
will cause a failure instead of a warning if ec2.py fails.

• Added new filter to generate random MAC addresses from a given string

acting as a prefix. Refer to the appropriate entry which has been added to
user_guide playbook_filters.rst document.

• Added the from_yaml_all filter to parse multi-document yaml strings.

Refer to the appropriate entry which as been added to user_guide
playbooks_filters.rst document.

• Ansible-2.7 changes the Ansiballz strategy for running modules remotely

so that invoking a module only needs to invoke python once per module on
the remote machine instead of twice.

• Better error handling for depsolve and transaction errors in DNF
• Changed the prefix of all Vultr modules from vr to vultr

(https://github.com/ansible/ansible/issues/42942).

• Enable installroot tests for yum4(dnf) integration testing, dnf backend

now supports that

• Explicit encoding for the output of the template module, to be able to

generate non-utf8 files from a utf-8 template.
(https://github.com/ansible/proposals/issues/121)

• File locking feature added, making it possible to gain exclusive access

to given file through module_utils.common.file.FileLock
(https://github.com/ansible/ansible/issues/29962)

• Fix dnf handling of autoremove to be compatible with yum
• Fix timer in exponential backoff algorithm in vmware.py.
• Fixed group action idempotent transactions in dnf backend
• Fixed group actions in check mode to report correct changed state
• GCP Modules will do home path expansion on service account file paths

See
https://github.com/ansible/ansible/blob/v2.7.0/changelogs/CHANGELOG-v2.7.rst for details on this release.

解决方案

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

受影响的产品

• Red Hat Ansible Engine 2 for RHEL 7 ppc64le

修复

CVE

(none)

参考

(none)