Issued:: 2015-09-10
Updated:: 2015-09-10

RHBA-2015:1762 - Bug Fix Advisory

Overview
Updated Packages

Synopsis

Red Hat Enterprise Linux OpenStack Platform Bug Fix and Enhancement Advisory

Type/Severity

Bug Fix Advisory

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

Updated mariadb-galera, rabbitmq-server, openvswitch, openstack-selinux,
openstack-trove, sos-plugins-openstack, and python-eventlet packages that
resolve various issues are now available for Red Hat Enterprise Linux OpenStack
Platform 5.0 (Icehouse) for RHEL 7.

Description

Red Hat Enterprise Linux OpenStack Platform provides the facilities for
building a private or public infrastructure-as-a-service (IaaS) cloud
running on commonly available physical hardware.

This update addresses the following issues:

Previously, a call to the "sed" command within mysqld_safe.sh which was used

to certain command line arguments failed to accommodate arguments which included
a slash, such as the paths to the SSL key and certificate files to pass through
this function. As a consequence, the mysqld_safe.sh script produced warnings of
the form "unknown option to `s'". The script continued to work correctly
otherwise as these arguments are not actually needed in this specific context.
With this update, the call to sed has been corrected such that the SSL arguments
which include slashes are properly interpreted. As a result, the warnings
regarding sed are now resolved. (BZ#1134032)

Prior to this update, SELinux was preventing neutron from using the file

system. As a consequence, neutron failed to run. Now, an appropriate rule has
been added to SELinux, which allows neutron to run with SELinux in enforcing
mode. (BZ#1176830)

With this release, mariadb-galera is rebased to version 5.5.42, fixing an

issue where "duplicate key" errors would occur during INSERT statements, when
performed during the period of time when database connectivity was moving to
another Galera node, and when the first Galera node was entering a non-available
state. (BZ#1240326)

Previously, the GM process would send a message for all slaves to terminate

once the master process terminated, but would not wait for confirmation that the
slaves had received this message before terminating itself. As a result, a slave
that did not receive the termination message would detect that the master GM
process had terminated, and would promote itself to master, causing the previous
master process to hang indefinitely.
With this update, the GM process now waits for its broadcast buffer to empty
before terminating. This results in all slaves receiving the message to
terminate, allowing the master process to terminate as expected. (BZ#1248081)

The openvswitch packages have been upgraded to upstream version 2.3.2, which

provides a number of bug fixes over the previous version. (BZ#1250220)

The openstack-trove packages have been upgraded to upstream version 2014.1.5,

which provides a number of bug fixes over the previous version. (BZ#1254705)

The python-oslo-messaging packages have been upgraded to upstream version

1.3.1, which provides a number of bug fixes over the previous version.
(BZ#1257640)

Previously, there was a hot loop in the Send function if the connection was

lost. As a consequence, the process consumed 100% CPU and hung indefinitely. To
fix this problem, an upstream patch for the greenio module has been added, which
allows the loop to exit if this condition happens. As a result, the process no
longer consumes 100% CPU in a hot loop, and it does not hang. (BZ#1259841)

Solution

Before applying this update, ensure all previously released errata relevant to
your system have been applied.

Red Hat Enterprise Linux OpenStack Platform 5 for Red Hat Enterprise Linux 7
runs on Red Hat Enterprise Linux 7.1.

The Red Hat Enterprise Linux OpenStack Platform 5 for RHEL 7 Release Notes (see
the References section) contain the following:

An explanation of the way in which the provided components interact to form a

working cloud computing environment.

Technology Previews, Recommended Practices, and Known Issues.
The channels required for Red Hat Enterprise Linux OpenStack Platform 5 for

Red Hat Enterprise Linux 7, including which channels need to be enabled and
disabled.

This update is available through the Red Hat Network. Details on how to use the
Red Hat Network to apply this update are available at
https://access.redhat.com/site/articles/11258

Affected Products

Red Hat OpenStack 5.0 for RHEL 7 x86_64

Fixes

BZ - 1122569 - Fix some OpenStack init scripts to return non-zero if service cannot start
BZ - 1134032 - mysqld_safe generates errors on sed
BZ - 1163421 - Adjust log permissions to 0750 for openstack-trove
BZ - 1176781 - Unable to collect sosreport from OpenStack nodes using 'rhos-log-collector'
BZ - 1176830 - RHOS5 with RHEL7.1 : selinux denied on neutron-ns-meta
BZ - 1254705 - Rebase openstack-trove to 2014.1.5

CVEs

References

https://access.redhat.com/site/documentation/en-US/Red_Hat_Enterprise_Linux_OpenStack_Platform/5/html/Release_Notes/index.html

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat OpenStack 5.0 for RHEL 7

SRPM
x86_64
mariadb-galera-common-5.5.42-1.el7ost.x86_64.rpm	SHA-256: 4839b7f14e6a8b1148f9514251db1c979112c8d5479ddad5b7c022fb356d5502
mariadb-galera-debuginfo-5.5.42-1.el7ost.x86_64.rpm	SHA-256: e7b4201e1067bd8702638486e73c72586d5e123cae06267febdaadb46427a6ad
mariadb-galera-server-5.5.42-1.el7ost.x86_64.rpm	SHA-256: 428698f1dc9a48ec775c864cdd7b5cb40bb5184170f1caf2d3816b4226b74b65
openstack-selinux-0.6.37-1.el7ost.noarch.rpm	SHA-256: d67d2e6a66589c01c06fa23e5bcce7a69841317d263d64a2881f44e7bf5776ad
openstack-trove-2014.1.5-1.el7ost.noarch.rpm	SHA-256: 9deb112762678dd1749cc3944a98bc92ccfadf2d64b09e9225402ab6e6b6e83b
openstack-trove-api-2014.1.5-1.el7ost.noarch.rpm	SHA-256: a44e8fe2eee10d8d9e28d0d55535b67e0d081add1d4feea80f8e716f0f0b0e86
openstack-trove-common-2014.1.5-1.el7ost.noarch.rpm	SHA-256: d2d63b83caf1fe22a8ddbf3ecafc997169e4e7bf8d9b6fb8802570f2ae66a6a1
openstack-trove-conductor-2014.1.5-1.el7ost.noarch.rpm	SHA-256: 671d869d7a94676490e1b7def6db7530bd4db21be4aafb22690fa6f31c6f0dca
openstack-trove-guestagent-2014.1.5-1.el7ost.noarch.rpm	SHA-256: 5fa876ba465f6c94626403191364026794d3aa40da62c974d0b1da2878230bd1
openstack-trove-taskmanager-2014.1.5-1.el7ost.noarch.rpm	SHA-256: 03cad2a6afcca56216723019fa53a5ec8c94487227dbb967aced5a60b33f0c18
openvswitch-2.3.2-1.git20150730.el7_1.x86_64.rpm	SHA-256: 23fb7675398dad1f0e535cd11d35d7151f1c682c13dc5952239ac7f8ed7a39b0
openvswitch-debuginfo-2.3.2-1.git20150730.el7_1.x86_64.rpm	SHA-256: 9d59fe1b85325b67bd181546388ffd200e61e819bf234a321348e5392d79584e
python-eventlet-0.14.0-4.el7ost.noarch.rpm	SHA-256: 1a03786f1adc8ebf3d44dc948e42da842236f368ac8e0be9037328fa332192cf
python-openvswitch-2.3.2-1.git20150730.el7_1.noarch.rpm	SHA-256: be25ac5e619f7b28eba01d6b2e97169381b20f214dcbdbed3cc9fd3f601869ad
python-oslo-messaging-1.3.1-1.g33f3b18.el7ost.noarch.rpm	SHA-256: 101e1333b1c3074dcb4044908dca3a72d9b6173d2fea07ecea7e9716a461a9d2
python-oslo-messaging-doc-1.3.1-1.g33f3b18.el7ost.noarch.rpm	SHA-256: 53618418ef8e347fc973e71eb363e1fddaf99d7c9029a9557880e9bc7cc27907
python-trove-2014.1.5-1.el7ost.noarch.rpm	SHA-256: 26ef325aaa8584473ef3e13af9f8ed9625a6ba41190910f5622554ed27cb9e1a
rabbitmq-server-3.3.5-4.el7ost.noarch.rpm	SHA-256: 9a4728c2d1fa90ffc67d79efb7572dc361d073f6f0dfd23ccbcf081995a38f9c
rhos-log-collector-2013.2-6.el7ost.noarch.rpm	SHA-256: 4211404a8216df57cae0af0c83b88b0eece32fdd2883f7f91d694c90ddb744e0

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation