PMIx v5.0.1
This is a critical bug fix release in the v5.0 series
WARNING: CVE-2023-41915
A security issue was reported by François Diakhate (CEA)
which is addressed in the PMIx v4.2.6 and v5.0.1 releases.
(Older PMIx versions may be vulnerable, but are no longer
supported.)
A filesystem race condition could permit a malicious user
to obtain ownership of an arbitrary file on the filesystem
when parts of the PMIx library are called by a process
running as uid 0. This may happen under the default
configuration of certain workload managers, including Slurm.
WARNING: Cross-version incompatibility
There is a known issue when operating between
PMIx versions v5.0.1 and v5.0.0. This occurs due
to a difference in the key-to-index conversion
between the two versions. Users are advised
to set the PMIX_MCA_gds=hash parameter
in their environment when using these two
versions.
Detailed changes include:
- PR #3149 Multiple commits
- Do not follow links when doing
chown - Cleanup a little debug in new pctrl tool
- Do not follow links when doing
- PR #3145
- Retrieve pset names upon PMIx_Get request
- Add a new "pctrl" tool for requesting job control ops
- PR #3144
- Properly support the "log" example
- show_help: strip leading/trailing blank lines
- docs: fix some leftover "Open MPI" references
- docs: fix HTML word wapping in table cells
- Improve error handling in setup_topology
- Define a new server type and connection flags
- Minor cleanups for disable-dlopen
- Fix Python bindings
- PR #3131 Multiple commits
- Switch to using event lib for connections
- Roll to v5.0.1
SHASUMS
b25476dcf32dfea2de6d5f8ca55a6cdf8b3840fc pmix-5.0.1.tar.bz2
6a31303a0cb77b4397ecba30fcf0be2e5495f701 pmix-5.0.1.tar.gz
64f9a1e75426b46bc7375a7522fc685f700f5d6b pmix-5.0.1-1.src.rpm