RHBA-2015:0904 - Bug Fix Advisory

Topic

Updated vdsm packages that fix several bugs and add various enhancements are now
available.

Description

VDSM is a management module that serves as a Red Hat Enterprise Virtualization
Manager agent on Red Hat Enterprise Virtualization Hypervisor or Red Hat
Enterprise Linux hosts.

Changes to the vdsm component:

• Libvirt 1.2.8 introduced a regression where disk type is converted from

"block" to "file" after live storage migration. This breaks the disk extension
logic, leading to unwanted extension using all free space in the storage domain.

libvirt-daemon-1.2.8-16.el7_1.1 and libvirt-python-1.2.8-6.el7_1.1 fixed this
issue by adding a new flag. RHEV-3.5.1 uses the new flag when available, fixing
this issue; however, the fix in RHEV-3.5.1 is effective only when using fixed
versions of libvirt-daemon and libvirt-python.

Do not perform live storage migration on block storage in RHEL 7.1 unless you
have the fixed version of libvirt-daemon (libvirt-daemon-1.2.8-16.el7_1.1) and
libvirt-python (libvirt-python-1.2.8-6.el7_1.1). These versions should be
available as a zero-day async release with RHEL 7.1. (BZ#1196049)

• After adopting Red Hat Enterprise Linux 7 and systemd, the work of preparing

the environment before the VDSM service starts was managed by systemd itself
using the ExecStartPre API. This preparation work was implemented under
vdsm_init_common.sh and included network restoration. On DHCP networks, a side
effect of this was the spawning of a dhclient daemon by init scripts. Since
ExecStartPre API prohibits long-running processes, systemd kills those processes
silently, leaving hosts with no dhclient to renew their IP lease. Now, the
network restoration part of the preparation work is delegated to another
dependent systemd unit resulting in a new 'oneshot' type service that is a vdsmd
dependency, called 'vdsm-network'. Also systemd is now told not to kill dhclient
processes upon stopping vdsm-network service. (BZ#1204782)

• An unversioned hotfix of the communication protocol between the Red Hat

Enterprise Virtualization Manager and virtualization hosts resulted in
exceptions in engine-log, and caused the Manager to be unable to communicate
with hosts. To avoid this, when using Manager to host communication via JSON-RPC
(which is new in 3.5), you must update the Manager to the new version before
updating the virtualization hosts. Any host using JSON-RPC can only be upgraded
once the new engine release is running. Alternatively, configure the Manager to
use XML-RPC instead. (BZ#1196735)

• Previously, live migration of a virtual machine with an external provider

network (OpenStack Neutron) attached failed if security groups were set, because
the 'vdsm-hook-openstack' hook was not able to handle this. Now, the hook is
able to handle security groups properly on source and destination hosts, and
virtual machines can be live migrated with an external provider network
attached. (BZ#1196077)

• Previously, 'hosted-engine' called the VDSM wrapping 'vdsClient' utility over

SSL, which caused SSL timeout errors for long sync commands. Now, the 'vdscli'
library is used instead of 'vdsClient', and this prevents SSL timeouts.
(BZ#1190207)

• Previously, when upgrading hosts from 3.4.x to 3.5.0 using 'yum update vdsm',

VDSM was not restarted; as a result, the next time VDSM was restarted, it
failed, and manual steps had to be performed to restore the service. Now, this
issue has been resolved, and upgrading hosts from 3.4.x to 3.5.0 succeeds.

Note: This issue did not apply to using the 'Reinstall' button in the
Administration Portal. (BZ#1208752)

Solution

Before applying this update, make sure all previously released errata relevant
to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/articles/11258

Affected Products

• Red Hat Virtualization 3 for RHEL 7 x86_64
• Red Hat Virtualization 3 for RHEL 6 x86_64

Fixes

• BZ - 1174813 - rhev-m stops syncing the VM statuses after massive live VM migration which fails.
• BZ - 1178838 - iSCSI multipath fails to work and only succeed after adding configuration values for network using sysctl
• BZ - 1190207 - vdsClient/vdscli SSLError timeout error
• BZ - 1195113 - vdsm package causes logrotate to trigger selinux AVC alerts
• BZ - 1195116 - Problem parsing stomp frames where trailing \0 was cut off
• BZ - 1196049 - [Rhel7.1] After live storage migration on block storage vdsm extends migrated drive using all free space in the vg
• BZ - 1196735 - [performance] bad getVMList output creates unnecessary calls from Engine
• BZ - 1199815 - Failed to auto shrink qcow block volumes on merge
• BZ - 1199816 - Live-deleting a snapshot of preallocated disk results in a block domain using up all available space
• BZ - 1204782 - [RHEL 7.0 + 7.1] Host configure with DHCP is losing connectivity after some time - dhclient is not running
• BZ - 1207808 - Live Merge: Active layer merge is not properly synchronized with vdsm
• BZ - 1208752 - Vdsm upgrade 3.4 >> 3.5.1 doesn't restart vdsmd service
• BZ - 1209028 - StorageDomainAccessError: Domain is either partially accessible or entirely inacessible when creating an iSCSI storage domain with RHEV-H 6.6
• BZ - 1209108 - [3.5-6.6/7.1] Failed to retrieve iscsi lun from hardware iscsi after register to RHEV-M

CVEs

(none)

References

(none)