- Issued:
- 2018-08-20
- Updated:
- 2018-08-20
RHBA-2018:2516 - Bug Fix Advisory
Synopsis
openstack-cinder bug fix advisory
Type/Severity
Bug Fix Advisory
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
Topic
Updated OpenStack Block Storage packages that resolve various issues are
now available for Red Hat OpenStack Platform 12.0 (Pike) for RHEL 7.
Description
Red Hat OpenStack Platform provides the facilities for building, deploying
and monitoring a private or public infrastructure-as-a-service (IaaS) cloud
running on commonly available physical hardware. This advisory includes
packages for:
- OpenStack Block Storage service
OpenStack Block Storage (cinder) manages block storage mounting and the
presentation of such mounted block storage to instances. The back-end
physical storage can consist of local disks, Fiber Channel, iSCSI, and/or
NFS mounts attached to Compute nodes. In addition, Block Storage supports
volume backups, and snapshots for temporary save and restore operations.
Programmatic management is available through the Block Storage service's
API.
Changes to the openstack-cinder component:
- With debug logging enabled, Cinder logged the RabbitMQ password into log files. With this update, the password is now masked in the log files. (BZ#1546830)
- When reporting statistics from the storage back end, race conditions on the volume service caused schedulers to use out of date statistics, which allowed the schedulers to create more volumes than they should.
The race conditions were fixed. Schedulers now use more up to date statistics. This brings the maximum number of volumes closer to the configured limits. (BZ#1553740)
- The Cinder Backup service's NFS backend assumed that the NFS server has been configured to allow the Backup service to create files and directories on the server. The Backup service runs as a non-privileged 'cinder' user, and this requires file permissions and ownership on the server be set correctly. This caused backups to fail if the NFS server wasn't configured to allow the 'cinder' user to create files and directories. With this update, when initializing the NFS backend, the Backup service checks whether the server's permissions and directory ownership are correct. The permissions and directory ownership are updated automatically to ensure the Backup service works correctly. (BZ#1566091)
- Cinder volume migration between different availability zones is now supported. (BZ#1554768)
- This patch adds force-detach to the Cinder VNX driver. (BZ#1564818)
- Simultaneous requests to create a volume from an image now run in parallel when the volume image cache is disabled. When the volume image cache is enabled, locking is minimized to ensure only a single entry is created in the cache.
Previously, the scope of the lock was too broad, causing simultaneous volume creation requests to compete for the lock, even when the image cache was not enabled. As a result, simultaneous requests to create a volume from an image were serialized, and not run in parallel. (BZ#1575130)
- Cinder's default log configuration was updated to prevent the output of Cinder log messages to stderr and unnecessary recording of the messages in /var/log/messages. (BZ#1589910)
Solution
Before applying this update, ensure all previously released errata relevant
to your system have been applied.
Red Hat OpenStack Platform 12 runs on Red Hat Enterprise Linux 7.4.
The Red Hat OpenStack Platform 12 Release Notes contain the following:
- An explanation of the way in which the provided components interact to
form a working cloud computing environment.
- Technology Previews, Recommended Practices, and Known Issues.
- The channels required for Red Hat OpenStack Platform 12, including which
channels need to be enabled and disabled.
The Release Notes are available at:
https://access.redhat.com/documentation/en-us/red_hat_openstack_platform/12/
This update is available through 'yum update' on systems registered through
Red Hat Subscription Manager. For more information about Red Hat
Subscription Manager, see:
https://access.redhat.com/documentation/en-US/Red_Hat_Subscription_Management/1/html/RHSM/index.html
Affected Products
- Red Hat OpenStack for IBM Power 12 ppc64le
- Red Hat OpenStack 12 x86_64
Fixes
- BZ - 1539492 - Unity Driver get error when run case test_force_detach_volume
- BZ - 1546830 - Cinder logs rabbitmq password in debug log
- BZ - 1550100 - NetApp ONTAP Copy Offload Fix
- BZ - 1551483 - [backport request] Infinidat: fix force detach problem
- BZ - 1553740 - Delay in stats reporting in cinder
- BZ - 1554667 - [backport request] HPE: fix force detach problem
- BZ - 1554768 - [RFE] Migration between Cinder AZs
- BZ - 1560581 - Live migration post operation tries to remove wrong multipath path (Dell EMC SC)
- BZ - 1564818 - VNX Cinder Driver get error when run case test_force_detach_volume
- BZ - 1566091 - Cinder backup uses os_brick to create a nfs share for backup and fails creating subdirectories
- BZ - 1572704 - NetApp: Add use-exact-size parameter when creating a LUN on ONTAP iSCSI
- BZ - 1575130 - Cinder's image volume cache sync lock prevents parallel image downloading
- BZ - 1590518 - Rebase openstack-cinder to 970b8cb
CVEs
(none)
References
(none)
Red Hat OpenStack for IBM Power 12
SRPM | |
---|---|
openstack-cinder-11.1.0-14.el7ost.src.rpm | SHA-256: 71c601d033e2578205bdcfa53be2663a7f09b4f3a6d6adbadb8f91b876cf9e56 |
ppc64le | |
openstack-cinder-11.1.0-14.el7ost.noarch.rpm | SHA-256: 095f2ac8f0a7c2577c68047ce00fd02daa5a803223ced5685cd0cffa3290e8ad |
python-cinder-11.1.0-14.el7ost.noarch.rpm | SHA-256: a7e6664d8dde01178e01190c2f23a9e2b183ad596de82684bde2644c3930a46a |
python-cinder-tests-11.1.0-14.el7ost.noarch.rpm | SHA-256: bc2709ba8c6403b0462bccb22b64fc80306dae0205b158ca49a8d8ad2a452c3e |
Red Hat OpenStack 12
SRPM | |
---|---|
openstack-cinder-11.1.0-14.el7ost.src.rpm | SHA-256: 71c601d033e2578205bdcfa53be2663a7f09b4f3a6d6adbadb8f91b876cf9e56 |
x86_64 | |
openstack-cinder-11.1.0-14.el7ost.noarch.rpm | SHA-256: 095f2ac8f0a7c2577c68047ce00fd02daa5a803223ced5685cd0cffa3290e8ad |
python-cinder-11.1.0-14.el7ost.noarch.rpm | SHA-256: a7e6664d8dde01178e01190c2f23a9e2b183ad596de82684bde2644c3930a46a |
python-cinder-tests-11.1.0-14.el7ost.noarch.rpm | SHA-256: bc2709ba8c6403b0462bccb22b64fc80306dae0205b158ca49a8d8ad2a452c3e |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.