- Issued:
- 2019-06-13
- Updated:
- 2019-06-13
RHBA-2019:1408 - Bug Fix Advisory
Synopsis
heketi bug fix and enhancement update
Type/Severity
Bug Fix Advisory
Red Hat Lightspeed patch analysis
Identify and remediate systems affected by this advisory.
Topic
Updated heketi packages that add various enhancements and fixes one bug are now available for OpenShift Container Storage 3.11 Batch 3 Update.
Description
Heketi provides the Red Hat Gluster Storage volume lifecycle management. It creates the Red Hat Gluster Storage volumes dynamically and supports multiple Red Hat Gluster Storage clusters.
This advisory adds the following enhancements:
- Heketi now enforces a limit on the number of file volumes that can be created in a gluster trusted storage pool. The default limit is set to 1000 volumes. To override this value, admins should set the max_volumes_per_cluster option in 'glusterfs' section of heketi.json or set the env variable HEKETI_GLUSTER_MAX_VOLUMES_PER_CLUSTER. (BZ#1476223)
- Previous versions of Heketi allowed setting an "administrative mode" using the heketi-cli tool. These modes could be used to prepare the server for shut down or restrict access to locally issued commands. However, these modes could only be applied after the server was started. In some circumstances, allowing the server to start normally before the administrative mode was set opened a window for undesired changes to be requested by clients. Now, an initial state at startup via the HEKETI_DEFAULT_STATE environment variable can be provided to Heketi. (BZ#1691509)
This advisory also fixes the following bug:
- Previously, volume options provided with the "user.heketi" prefix was handled in an unexpected order that did not match with the behavior seen in gluster. Now, when any options that start with the "user.heketi" prefix is specified multiple times, the final option in the list takes precedence. (BZ#1685005)
Users of Heketi are advised to upgrade to these updated packages, which adds these enhancements and fixes this bug.
Solution
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
For details on how to apply this update, refer to:
Affected Products
- Red Hat Enterprise Linux Server 7 x86_64
- Red Hat Gluster Storage Server for On-premise 3 for RHEL 7 x86_64
Fixes
- BZ - 1685005 - Heketi sets "user.heketi.zone-checking" to strict or none based on DC/template settings & not based on settings in the SC used
- BZ - 1691509 - [RFE] Provide a way for heketi to start in an "administrative mode"
CVEs
(none)
References
(none)
Red Hat Enterprise Linux Server 7
| SRPM | |
|---|---|
| heketi-8.0.0-12.el7rhgs.src.rpm | SHA-256: de8831d648e92277659e196b0d2136e4c4458a47459fd5181112ef4afa6c9e32 |
| x86_64 | |
| heketi-client-8.0.0-12.el7rhgs.x86_64.rpm | SHA-256: 7996154adb8ebbdbd9a0205894bd9b35cc204ef2b6c57b8e7abd26654f19484d |
Red Hat Gluster Storage Server for On-premise 3 for RHEL 7
| SRPM | |
|---|---|
| heketi-8.0.0-12.el7rhgs.src.rpm | SHA-256: de8831d648e92277659e196b0d2136e4c4458a47459fd5181112ef4afa6c9e32 |
| x86_64 | |
| heketi-8.0.0-12.el7rhgs.x86_64.rpm | SHA-256: 5c4d6a1d05548600cb4bab0b3e93513b466c24e03fce75067a7b432e130ee163 |
| heketi-client-8.0.0-12.el7rhgs.x86_64.rpm | SHA-256: 7996154adb8ebbdbd9a0205894bd9b35cc204ef2b6c57b8e7abd26654f19484d |
| python-heketi-8.0.0-12.el7rhgs.x86_64.rpm | SHA-256: 540582671cbffbfd520a3750fc617b0f38f4431844925dfe80f8c62f00965da8 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
