RHBA-2011:0749 - Bug Fix Advisory

Topic

Updated ricci packages that fix various bugs are now available.

Description

The ricci packages contain a daemon and a client which allow a cluster to be
configured and managed remotely.

This update addresses the following bugs:

• Ricci no longer sends non-SSL data when it has reached its maximum number of

connections. (BZ#652837)

• Ricci no longer depends on the the root user password to permit access;

authentication is now done using the ricci user password. (BZ#644047)

• Ricci can now be configured remotely using ccs. (BZ#614647)
• Nodes can now be started and stopped using ccs. (BZ#623734)
• A man page has been added for ricci. (BZ#602399)
• It is now possible to pipe passwords into ccs_sync. (BZ#682317)
• ccs now fails (with an error) if a non-validating cluster.conf file is used.

(BZ#682868)

• When an incorrect password is entered for a node in ccs_sync, it no longer

continues to ask for the password in an endless loop. (BZ#682323)

All users of ricci are advised to upgrade to these updated packages, which
address these issues.

Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/docs/DOC-11259

Affected Products

• Red Hat Enterprise Linux High Availability for x86_64 6 x86_64
• Red Hat Enterprise Linux High Availability for x86_64 6 i386
• Red Hat Enterprise Linux Resilient Storage for x86_64 6 x86_64
• Red Hat Enterprise Linux Resilient Storage for x86_64 6 i386
• Red Hat Enterprise Linux High Availability (for RHEL Server) from RHUI 6 x86_64
• Red Hat Enterprise Linux High Availability (for RHEL Server) from RHUI 6 i386
• Red Hat Enterprise Linux Resilient Storage (for RHEL Server) from RHUI 6 x86_64
• Red Hat Enterprise Linux Resilient Storage (for RHEL Server) from RHUI 6 i386

Fixes

• BZ - 602399 - ricci does not have a man page
• BZ - 623734 - support for command line tool to start or stop cluster across all nodes
• BZ - 644047 - Remove dependence on root password based authentication
• BZ - 652837 - ricci sends non-SSL data where client expects SSL
• BZ - 681646 - Need to add ability to unfence to ccs
• BZ - 682317 - Need method to automate ccs_sync password entry
• BZ - 682323 - if ricci authentication hasn't taken place yet, then state that and exit
• BZ - 682868 - Fix ccs logic to prevent bad cluster.conf files (and update man page).
• BZ - 683192 - When using --setmulticast with no options it should remove the multicast configurartion

CVEs

(none)

References

(none)