RHEA-2018:2072 - Product Enhancement Advisory

Topic

Updated vdsm packages that fix several bugs and add various enhancements are now available.

Description

VDSM is a management module that serves as a Red Hat Virtualization Manager
agent on Red Hat Virtualization Host or Red Hat Enterprise Linux hosts.

Changes to the vdsm component:

• Previously, when a virtual machine selected for import contained a floppy, it could prevent the virtual machine from being imported. This is now fixed and floppy drives are ignored during import. (BZ#1576675)
• This release adds a new 'ssl_ciphers' option to VDSM, which allows you to configure available ciphers for encrypted connections (for example, the Manager to VDSM, or VDSM to VDSM). The values of this option conform to OpenSSL standard.

To set this option:

1. Move the host to Maintenance in the Manager.

2. Create a new /etc/vdsm/vdsm.conf.d/99-custom-ciphers.conf file with the following content:

[vars]
ssl_ciphers = <VALUE>

where <VALUE> is one of the values described in the CIPHERS STRINGD section in https://www.openssl.org/docs/man1.0.2/apps/ciphers.html.

3. Restart VDSM.

4. Activate the host in the Manager. (BZ#1585022)

• Previously, the following issue could occur if IO tune settings were enabled:

VDSM uses the domain metadata section to store extra data that is required to configure a VM, but not properly represented on the standard libvirt domain. VDSM tried to store the IO tune settings in this metadata, which was redundant because IO tune already has a proper representation. Furthermore, the implementation of the store operation for the IO tune settings had an implementation bug that prevented the VM from starting successfully.
This has now been fixed. (BZ#1589664)

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/2974891

Affected Products

• Red Hat Virtualization 4 for RHEL 7 x86_64
• Red Hat Virtualization for IBM Power LE 4 for RHEL 7 ppc64le

Fixes

• BZ - 1576675 - RHV import fails if VM has an unreachable floppy defined
• BZ - 1578763 - [downstream clone - 4.2.4] Unreachable ISO/Export SD prevents hosts from activating
• BZ - 1583228 - [downstream clone - 4.2.4] After updating to current RHV-H, vdsmd consistently fails to start on startup.
• BZ - 1585022 - [downstream clone - 4.2.4] Add option to configure cipher list available for encrypted connections
• BZ - 1585030 - [downstream clone - 4.2.4] RAW-Preallocated disk is converted to RAW-sparse while cloning a VM in file based storage domain
• BZ - 1589664 - [downstream clone - 4.2.4] Cannot start VM with QoS IOPS after host&engine upgrade from 4.1 to 4.2
• BZ - 1591667 - [downstream clone - 4.2.4] Live storage migration completes but leaves volume un-opened.

CVEs

(none)

References

(none)