RHEA-2016:1288 - Product Enhancement Advisory

Topic

Updated nfs-ganesha packages that fixes several bugs and adds various
enhancements are now available for Red Hat Gluster Storage 3.1 Update 3.

Description

NFS-Ganesha is a user space file server for the NFS protocol with support for NFSv3, v4, v4.1, pNFS. This release of Red Hat Gluster Storage introduces High Availability (HA) of NFS servers in active-active mode. pNFS is introduced as a technology preview feature. However, it does not support NFSv4 delegations and NFSv4.1. In this release, NFS-ganesha is rebased to upstream V2.3.1 stable version.

This update fixes several bugs and adds various enhancements, the most significant of which are:

• Red Hat Gluster Storage libntirpc package has been upgraded to upstream version 1.3.1 and is now unbundled from the NFS-ganesha package. This upgrade provides a number of bug fixes over the previous version and the following list includes significant enhancements:
• Build and packaging improvements
• libntirpc performance improvements
• Previously, NFS-ganesha randomly choose the ports to be used while bringing up mountd, rquota and nlm services. But these ports would change with each restart of NFS-ganesha, and was difficult to configure them to be opened by firewalld or iptables. With this fix, these ports can be configured in '/etc/ganesha/ganesha.conf' file. Now mountd, nlm, and rquota services will come up with the ports listed in '/etc/ganesha/ganesha.conf' so you can configure them to open via firewalld or iptables.
• Previously, while configuring NFS-ganesha cluster, there were cases where in NFS-ganesha process on each node would come up at the same time resulting in most of them having same epoch value. As a consequence, same epoch values on all the NFS-Ganesha heads resulted in NFS server sending NFS4ERR_FHEXPIRED error instead of NFS4ERR_STALE_CLIENTID or NFS4ERR_STALE_STATEID after failover. This resulted in NFSv4 clients not able to recover locks after failover. With this fix, a new option "EPOCH_EXEC" is added to '/etc/sysconfig/ganesha' to take the path of the script (default: '/bin/true') which is used to generate epoch value. For Gluster, a new script '/usr/libexec/ganesha/generate_epoch.py' is added and will be used to generate epoch value. A new helper service 'NFS-ganesha-config' added to process the init options provided in '/etc/sysconfig/ganesha' and copy the results to '/run/sysconfig/ganesha' to be used by NFS-ganesha while starting. Now, NFS-Ganesha will have unique epoch value on each of the nodes of the cluster resulting in smooth failover.

Users of Red Hat Gluster Storage are advised to upgrade to these updated packages, which fix these bugs and add these enhancements.

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

Affected Products

• Red Hat Gluster Storage Server for On-premise 3 for RHEL 6 x86_64

Fixes

• BZ - 1227169 - nfs-ganesha: rpcinfo is not cleared of nfs entries even after disable
• BZ - 1242957 - nfs-ganesha: ganesha process coredump "_int_free (av=0x7fa61c000020, p=0x7fa61c03a1c0, have_lock=0) at malloc.c:4836"
• BZ - 1243385 - nfs-ganesha: nfs-ganesha process coredump while executing the refresh config
• BZ - 1243668 - nfs-ganesha: extra ACE found while setting acl "inherit-only" flag
• BZ - 1255470 - crash when NFS Ganesha Volume is 100% full
• BZ - 1262776 - nfs-ganesha: ganesha process coredump with "pub_glfs_fsync (glfd=0x7f1078018e70) at glfs-fops.c"
• BZ - 1318506 - Add libntirpc for rebase nfs-ganesha to upstream 2.3 stable version

CVEs

(none)

References

• http://www.redhat.com/security/updates/classification/#normal