File _patchinfo of Package patchinfo.41642
<patchinfo incident="41642">
<issue tracker="bnc" id="1253001">L3: python-azure-agent uses non FIPS-140-3 compliant ciphers</issue>
<packager>rjschwei</packager>
<rating>important</rating>
<category>recommended</category>
<summary>Recommended update for python-azure-agent</summary>
<description>This update for python-azure-agent fixes the following issues:
- Update to version 2.14.0.1 (bsc#1253001)
* FIPS 140-3 support
* Block extensions disallowed by policy
* Report ext policy errors in heartbeat
* Implement signature validation helper functions
* Prevent ssh public key override
* Use proper filesystem creation flag for btrfs
* Enable resource monitoring in cgroup v2 machines
* Update agent cgroup cleanup
* Add cgroupv2 distros to supported list
* Clean old agent cgroup setup
* Redact sas tokens in telemetry events and agent log
* Add conf option to use hardcoded wireserver ip instead of dhcp request
to discover wireserver ip
* Support for python 3.12
* Update telemetry message for agent updates and send new telemetry for
ext resource governance
* Disable rsm downgrade
* Add community support for Chainguard OS
* Swap out legacycrypt for crypt-r for Python 3.13+
* Pin setuptools version
* Set the agent config file path for FreeBSD
* Handle errors importing crypt module
- From 2.13.1.1
* Setup: Fix install_requires list syntax
* Pickup latest goal state on tenant certificate rotation + Avoid
infinite loop when the tenant certificate is missing
* Fix unsupported syntax in py2.6
* Cgroup rewrite: uses systemctl for expressing desired configuration instead drop-in files
* Remove usages of tempfile.mktemp
* Use random time for attempting new Agent update
* Enable logcollector in v2 machines
* Clean history files
* Missing firewall rules reason
* Add support for nftables (+ refactoring of firewall code)
* Create walinuxagent nftable atomically
</description>
</patchinfo>
