RHBA-2014:0598 - Bug Fix Advisory

Topic

Red Hat OpenShift Enterprise release 1.2.8 is now available with updates to
packages that fix several bugs and introduce a feature enhancement. This update
adds necessary support for software dependencies that will change with the
upcoming release of Red Hat Software Collections (SCL) version 1.1.

Description

OpenShift Enterprise by Red Hat is the company's cloud computing
Platform-as-a-Service (PaaS) solution designed for on-premise or private cloud
deployments.

This update fixes the following bugs:

• When using unauthenticated DNS updates, the oo-accept-broker and

oo-register-dns commands would fail, even though the dns-nsupdate plug-in
already supported unauthenticated DNS. This bug fix updates the logic for both
commands to support unauthenticated DNS, and these commands no longer fail as a
result. (BZ#1007700)

• SSH keys with the name "." or ".." were misinterpreted by the REST API, and as

a result these keys could not be deleted. To avoid these deletion issues, this
bug fix updates the SSH key validation to prevent the addition of keys with
names beginning with ".". (BZ#1018642)

• After installing a custom or community cartridge using the oo-admin-cartridge

command and clearing the broker cache, the oo-accept-systems command reported
inconsistent cartridge lists between the broker and nodes. This was due to the
new cartridge receiving a problematic SELinux context during its installation
into the cartridge repository. This bug fix ensures that cartridges installed
using oo-admin-cartridge are relabeled using the default contexts, and
oo-accept-systems no longer reports inconsistent cartridge lists. (BZ#1053029)

This update also adds the following enhancement:

• This update adds necessary support for software dependencies that will change

with the upcoming release of Red Hat Software Collections (SCL) version 1.1 by
updating several OpenShift Enterprise components. (BZ#1093808)

All users of OpenShift Enterprise 1.2 are advised to upgrade to these updated
packages.

Solution

Before applying this update, make sure all previously released errata relevant
to your system have been applied.

This update is available via the Red Hat Network. Details on how to use the Red
Hat Network to apply this update are available at
https://access.redhat.com/site/articles/11258.

After running the yum update command on each host and ensuring all packages have
been updated, restart the mcollective service on each node host:

# service mcollective restart

On the broker host, restart the broker service and, if installed, the console
service:

# service openshift-broker restart
# service openshift-console restart

Clear the broker cache and, if installed, the console cache:

# oo-admin-broker-cache --console

Affected Products

• Red Hat OpenShift Enterprise Infrastructure 1.2 x86_64
• Red Hat OpenShift Enterprise Application Node 1.2 x86_64

Fixes

• BZ - 1007700 - oo-accept-broker and oo-register-dns will fail when using unauthenticated DNS updates
• BZ - 1018642 - Failed to delete the ssh key with name "."
• BZ - 1093808 - LD_LIBRARY_PATH updates required for v8 collection change

CVEs

(none)

References

(none)