diff --git a/CHANGELOG.md b/CHANGELOG.md index 9aa9e7b5e6..d53e700afb 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,4 +1,4 @@ -## 0.11.1 (Unreleased) +## 0.11.1 (September 5th, 2018) SECURITY: @@ -9,7 +9,8 @@ SECURITY: and weakening the security of the key. On most platforms this should never happen because reading from kernel random sources is non-blocking and always successful, but there may be platform-specific behavior that has not been - accounted for. + accounted for. (Vault has tests to check exactly this, and the tests have + never seen nonce re-use.) IMPROVEMENTS: diff --git a/terraform/aws/variables.tf b/terraform/aws/variables.tf index 59ba863f31..76576646d5 100644 --- a/terraform/aws/variables.tf +++ b/terraform/aws/variables.tf @@ -3,7 +3,7 @@ //------------------------------------------------------------------- variable "download-url" { - default = "https://releases.hashicorp.com/vault/0.11.0/vault_0.11.0_linux_amd64.zip" + default = "https://releases.hashicorp.com/vault/0.11.1/vault_0.11.1_linux_amd64.zip" description = "URL to download Vault" } diff --git a/vendor/github.com/hashicorp/vault-plugin-secrets-gcp/plugin/secrets_access_token.go b/vendor/github.com/hashicorp/vault-plugin-secrets-gcp/plugin/secrets_access_token.go index 60240923bf..e603e0297f 100644 --- a/vendor/github.com/hashicorp/vault-plugin-secrets-gcp/plugin/secrets_access_token.go +++ b/vendor/github.com/hashicorp/vault-plugin-secrets-gcp/plugin/secrets_access_token.go @@ -9,6 +9,8 @@ import ( "net/url" "time" + "strings" + "github.com/hashicorp/errwrap" "github.com/hashicorp/vault/logical" "github.com/hashicorp/vault/logical/framework" @@ -16,7 +18,6 @@ import ( "golang.org/x/oauth2/google" "google.golang.org/api/googleapi" "google.golang.org/api/iam/v1" - "strings" ) const ( @@ -95,6 +96,7 @@ func (b *backend) secretAccessTokenRevoke(ctx context.Context, req *logical.Requ } resp, err := http.Get(revokeAccessTokenEndpoint + fmt.Sprintf("?token=%s", url.QueryEscape(tokenRaw.(string)))) + defer googleapi.CloseBody(resp) if err == nil { err = googleapi.CheckResponse(resp) } diff --git a/vendor/vendor.json b/vendor/vendor.json index c5071e3319..a9c0d5942d 100644 --- a/vendor/vendor.json +++ b/vendor/vendor.json @@ -1359,8 +1359,8 @@ { "checksumSHA1": "xdrSQoX7B7Hr4iWm9T2+5wHVpHQ=", "path": "github.com/hashicorp/vault-plugin-auth-alicloud/tools", - "revision": "90acf238c385792939aade0286fcb941d9899435", - "revisionTime": "2018-08-22T21:26:04Z" + "revision": "1a078292f70a4c9e366a13d3c725d105bd5be1af", + "revisionTime": "2018-09-04T20:26:51Z" }, { "checksumSHA1": "ojr0r/jmutGEhftDXiHthCCwpIA=", @@ -1417,22 +1417,22 @@ "revisionTime": "2018-08-21T21:57:39Z" }, { - "checksumSHA1": "zkmWfxanMFQXWQIAboXj/jqF12g=", + "checksumSHA1": "91ydauzZu3czIjeQM9IAgvy7B7o=", "path": "github.com/hashicorp/vault-plugin-secrets-gcp/plugin", - "revision": "ba74744a1fcfcd9c5f3635571a0734e6a13ce349", - "revisionTime": "2018-08-17T20:56:55Z" + "revision": "e3f5ad9f075ab1b18fa665a64bdec5411a14a4bb", + "revisionTime": "2018-09-05T16:00:51Z" }, { "checksumSHA1": "zwKMP2eBB2fKeOXMf0afsbw1bS0=", "path": "github.com/hashicorp/vault-plugin-secrets-gcp/plugin/iamutil", - "revision": "ba74744a1fcfcd9c5f3635571a0734e6a13ce349", - "revisionTime": "2018-08-17T20:56:55Z" + "revision": "e3f5ad9f075ab1b18fa665a64bdec5411a14a4bb", + "revisionTime": "2018-09-05T16:00:51Z" }, { "checksumSHA1": "81kYL49zTBoj1NYczxB2Xbr2d6Y=", "path": "github.com/hashicorp/vault-plugin-secrets-gcp/plugin/util", - "revision": "ba74744a1fcfcd9c5f3635571a0734e6a13ce349", - "revisionTime": "2018-08-17T20:56:55Z" + "revision": "e3f5ad9f075ab1b18fa665a64bdec5411a14a4bb", + "revisionTime": "2018-09-05T16:00:51Z" }, { "checksumSHA1": "FkppDRdkWTF4Ry+olqZT8L0Stb8=", diff --git a/version/version_base.go b/version/version_base.go index 94d2b26254..648aafc77b 100644 --- a/version/version_base.go +++ b/version/version_base.go @@ -2,7 +2,7 @@ package version func init() { // The main version number that is being run at the moment. - Version = "0.11.0" + Version = "0.11.1" // A pre-release marker for the version. If this is "" (empty string) // then it means that it is a final release. Otherwise, this is a pre-release diff --git a/website/config.rb b/website/config.rb index 1edc5aa1fd..377d1b830e 100644 --- a/website/config.rb +++ b/website/config.rb @@ -2,7 +2,7 @@ set :base_url, "https://www.vaultproject.io/" activate :hashicorp do |h| h.name = "vault" - h.version = "0.11.0" + h.version = "0.11.1" h.github_slug = "hashicorp/vault" h.website_root = "website" end