- Issued:
- 2019-10-30
- Updated:
- 2019-10-30
RHEA-2019:3252 - Product Enhancement Advisory
Synopsis
NFS-Ganesha bug fix and enhancement update
Type/Severity
Product Enhancement Advisory
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
Topic
Updated NFS-Ganesha packages that fix several bugs and add various enhancements are now available.
Description
NFS-Ganesha is a user space file server for the NFS protocol with support for NFSv3 and v4.
These updated packages provide the following bug fixes:
- A race condition existed where, when attempting to re-establish
a connection with an NFS client, the server did not clean up existing
state in time. This led to the new connection being incorrectly
identified as having expired, rendering the mount point inaccessible.
State is now cleaned before a new connection is accepted so this issue
no longer occurs. (BZ#1728588)
- NFS-Ganesha used client credentials for all operations on Gluster
storage. In cases where a non-root user was operating on a read-only
file, this resulted in 'permission denied' errors. Root permissions
are now used where appropriate so that non-root users are able to
create and write to files using 0444 mode. (BZ#1751210)
They also provide the following enhancements:
- The NFS-Ganesha package has been upgraded to upstream version 2.7.3,
and libntirpc has been upgraded to upstream version 1.7.3. These
upgraded versions provide a number of fixes and enhancements,
including support for asynchronous I/O in FSAL, indexing directory
contents by name instead of hash, tracking of response sizes, caching
NFS v4.1 responses only by request, better grace period handling, and
improvements to statistics. (BZ#1660879)
- Client performance is improved because directory contents are now read
in configurable chunks. This change is made so that very large directory
listings can start to be served faster, instead of needing to wait for the
whole directory to be read before serving to clients. (BZ#1475699)
- NFS-Ganesha now receives the upcall notifications needed to maintain
active-active high availability configurations via asynchronous callbacks,
which avoids the need for continuous polling and reduces CPU and memory
usage. (BZ#1485836)
- A new dbus-send command is available for obtaining access control
lists and other export information from the NFS-Ganesha server. Refer
to the bug for details. (BZ#1523795)
All users are advised to upgrade to these updated packages, which provide
these fixes and enhancements.
Solution
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
For details on how to apply this update, refer to:
Affected Products
- Red Hat Gluster Storage Server for On-premise 3 for RHEL 7 x86_64
Fixes
- BZ - 1382343 - [Perf] : Extremely slow file system crawls during 'du -sh' on Ganesha v4 mounts.
- BZ - 1383559 - [Ganesha] : rm -rf * hangs during continuous I/O .
- BZ - 1403757 - [Ganesha] : find hangs when coupled with new writes.
- BZ - 1415608 - [Stress] : Recursive ls and finds hang on EC backed volumes over Ganesha mounts on a pure metadata intensive workload.
- BZ - 1475699 - [RFE]nfs-ganesha: Read directory contents in chunks
- BZ - 1484391 - [Ganesha] Some memory leak is observed while creating files with ACL enable
- BZ - 1485836 - [RFE]nfs-ganesha: optimize FSAL_GLUSTER upcall mechanism
- BZ - 1610261 - Update the options in ganesha configuration files
- BZ - 1618673 - [nfs-ganesha]read directory contents in chunks feature is disabled in ganesha 2.5.5-10 build
- BZ - 1660879 - nfs-ganesha: rebase to libntirpc-1.7+ and nfs-ganesha-2.7+
- BZ - 1713261 - Posix compliance test is hung on v3 mount and "open_fd_count" goes to negative value
- BZ - 1717076 - nfs-ganesha: Release state lock in case of error in LOCK fop
- BZ - 1717969 - Readdir fixes from upstream 2.7.4
- BZ - 1720564 - [Ganesha] Ganesha occupies increased memory when IO's and lookups are running in parallel and consumption is same post test completion
- BZ - 1723714 - [Ganesha] Address typo for Chunk parameter in ganesha.conf file
- BZ - 1724449 - Ganesha: add dependency for var-run-gluster-shared_storage.mount
- BZ - 1726395 - Important bug fixes from 2.7.5
- BZ - 1730654 - [Ganesha] Linux untars got error out with "Remote I/O error" when finds's and lookups were running in parallel (v4.1)
- BZ - 1730686 - [Ganesha] du -sh giving inconsistent output where lookups are running in parallel
- BZ - 1732671 - [Ganesha] du -sh stuck on mount point for more then 17+ Hours
- BZ - 1747349 - [Ganesha] Ganesha crashed on one of the node at _setglustercreds_
- BZ - 1751210 - [GSS][Permission denied errors observed when running 'git clone' command on a home directory exported by NFS-Ganesha]
CVEs
(none)
References
(none)
Red Hat Gluster Storage Server for On-premise 3 for RHEL 7
SRPM | |
---|---|
libntirpc-1.7.3-1.el7rhgs.src.rpm | SHA-256: 1419de385b34d0d04c84324b33e7680fd3c0c0a6eb6535fefc5f1fc9f381d438 |
nfs-ganesha-2.7.3-9.el7rhgs.src.rpm | SHA-256: 185710f424df3bc99ff16febc4793f04d3f3cd7b9ecdd6e85f6831ceb77e2bb1 |
x86_64 | |
libntirpc-1.7.3-1.el7rhgs.x86_64.rpm | SHA-256: 46e27611765b1433113cd552a4a0be5c6fcee0659a990e6b250b98dd7b003708 |
libntirpc-debuginfo-1.7.3-1.el7rhgs.x86_64.rpm | SHA-256: 8ff967e4d56560e5398f668a7a9a0b6ccebf7611b6458e03ef80f1107ab94005 |
libntirpc-devel-1.7.3-1.el7rhgs.x86_64.rpm | SHA-256: a41ab30ce809206ef8cc07260a3c631cd3e345a13d720bf6c90dcadc793f7cf9 |
nfs-ganesha-2.7.3-9.el7rhgs.x86_64.rpm | SHA-256: 94dda74d222a00abccbfe5ca8854905ce0532f21141c247ccb5697c40b81ba1d |
nfs-ganesha-debuginfo-2.7.3-9.el7rhgs.x86_64.rpm | SHA-256: b6aa265dd00b5e4ef31ff28383ebac43515936ec8275edcf349bd5fd9feb75c1 |
nfs-ganesha-gluster-2.7.3-9.el7rhgs.x86_64.rpm | SHA-256: 77e5304228ad12e8030d07eea313014a85e3cae484c6d9d283e467c99eac2109 |
nfs-ganesha-selinux-2.7.3-9.el7rhgs.noarch.rpm | SHA-256: 77f39c8692e1c048184ea83b96997eb8a0ef083ab72ccb33302194505217cd3e |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.