Skip to navigation

Bug Fix Advisory cman bug-fix and feature update

Advisory: RHBA-2010:0266-1
Type: Bug Fix Advisory
Severity: N/A
Issued on: 2010-03-30
Last updated on: 2010-03-30
Affected Products: RHEL Desktop Workstation (v. 5 client)
Red Hat Enterprise Linux (v. 5 server)
CVEs (cve.mitre.org): CVE-2008-4192

Details

Updated cman packages that fix bugs and provide new features are now
available.

The Cluster Manager (cman) utility provides user-level services for
managing a Linux cluster.

This update provides the following updates & fixes:

- fence_rsa fails to login with new RSA II firmware (549473)
- fence_virsh reports vm status incorrectly (544664)
- Improve error messages from ccsd if there is a network problem (517399)
- New fence agent for VMWare (TechPreview) (548577)
- Fence agent for HP iLO2 MP (508722)
- Fence agent for RSB ends with traceback (545054)
- Security feature for SNMP based agent: apc_snmp & ibmblade (532922)
- Change default timeout values for various fence agents (549124)
- Version is not shown in several fence agents (549124)
- cman: automatically configure consensus based on token timeout (544482)
- Add readconfig & dumpconfig to fence_tool (514662)
- Make groupd handle partition merges (546082)
- groupd: clean up leaving failed node (521817)
- scsi_reserve should always echo after failure (514260)
- scsi_reserve should handle multipath with partitions (516625)
- fence_scsi_test: add debug information (516763)
- fence_scsi_test should not allow -c and -s options together (528832)
- fence: Fix fence_ipmilan read from unitialized memory (532138)
- qdiskd: Make qdiskd stop crying wolf (532773)
- fence: Fencing fails when used without telnet or ssh (512343)
- fence: APC changed product name (MasterSwitch -> Switched Rack PDU)
(447481)
- fence: fix invalid initalization introduced by retry-on option
- fence: Broken device detection for DRAC3 ERA/O (489809)
- fence: Fix case sensitivities in action parameter (528938)
- fence: fencing_snmp fails on all operations & traceback fix (528916)
- fence: accept unknown options from standard input (532920)
- fence: fence_apc unable to obtain plug status (532916)
- fence: timeout options added (507514)
- fence: better XML generation for metadata (needed for default values)
- fence: better default timeout for bladecenter
- fence: retry-on option used in iLO fence agent
- fence: add missing-as-off option (missing blade/device is always OFF)
(248006)
- make qdiskd "master-wins" node work (372901)
- make qdisk self-fence system if write errors take longer than
interval*tko (511113)
- Make service_cman.lcrso executable, so that RPM adds it to the debuginfo
pkg (511346)
- Don't check for xm command in cman init script, virsh is more appropriate
(516111)
- Allow re-registering of a quorum device (525270)
- Fix fence_scsi, multipath and persistent reservations (516625)
- scsi_reserve now handles failures (514260)
- cman_tool leave remove reduces quorum when no services are connected
(515446)
- fence_sanbox2 unable to retrieve status (512947)
- gfs_controld: GETLK should free unused resource (513285)
- fence: Allow IP addresses as node names (504158)
- fence_scsi man page contains invalid option (515731)
- fence_scsi support for 2 node clusters (516085)
- Support for power cycle in fence ipmi (482913)
- Add option 'list devices' for fencing agents (519697)
- Add support for switching IPv4/IPv6 (520458)
- Fence agent ends with traceback if option is missing
- Add option to set port for SSH/telnet
- Force stdout close for fencing agents (518622)
- Support for long options (519670)
- Fix a situation where cman could kill the wrong nodes (513260)
- Fix support for large numbers of gfs & gfs2 file systems (100+) (561892)
- Fix a problem where 'dm suspend' would hang a withdrawn GFS file system
(570530)
- Fix a problem where fence_snmp could return success when the operation
failed (573834)


Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/docs/DOC-11259

Updated packages

RHEL Desktop Workstation (v. 5 client)

SRPMS:
cman-2.0.115-34.el5.src.rpm
File outdated by:  RHBA-2014:0282
    MD5: c4864f30e192c931ebeae0bcab104a8b
SHA-256: 2927159670663062e32fbfae57c7f1a6db94e1971617ebc3fdee7fde77a12617
 
IA-32:
cman-2.0.115-34.el5.i386.rpm
File outdated by:  RHBA-2014:0282
    MD5: 8687810d029c30b668d4693e978a1c08
SHA-256: 2a1a6b3e3bc274797220a58b69906c8db3853a1a5c94f2bc00b236a1506c1459
cman-devel-2.0.115-34.el5.i386.rpm
File outdated by:  RHBA-2014:0282
    MD5: 94243c5d1ffcdb2deda0438819dcf9fa
SHA-256: 6f8d7cae96c9126b923f464a18d27fff03bd3750342073d38044fda146a5528e
 
x86_64:
cman-2.0.115-34.el5.x86_64.rpm
File outdated by:  RHBA-2014:0282
    MD5: 3f414368db5e549244da19f368d7e045
SHA-256: 537c6475d17a82fd431168a14d3d968acb12cde4742fc58cfadb853c25bd0d0c
cman-devel-2.0.115-34.el5.i386.rpm
File outdated by:  RHBA-2014:0282
    MD5: 94243c5d1ffcdb2deda0438819dcf9fa
SHA-256: 6f8d7cae96c9126b923f464a18d27fff03bd3750342073d38044fda146a5528e
cman-devel-2.0.115-34.el5.x86_64.rpm
File outdated by:  RHBA-2014:0282
    MD5: c2832d157c1b32229168868a9e3930bc
SHA-256: deb194e737bb86390a412e49c65c8ebcf23fbb8d6ab08bb47c051c231ccba49a
 
Red Hat Enterprise Linux (v. 5 server)

SRPMS:
cman-2.0.115-34.el5.src.rpm
File outdated by:  RHBA-2014:0282
    MD5: c4864f30e192c931ebeae0bcab104a8b
SHA-256: 2927159670663062e32fbfae57c7f1a6db94e1971617ebc3fdee7fde77a12617
 
IA-32:
cman-2.0.115-34.el5.i386.rpm
File outdated by:  RHBA-2014:0282
    MD5: 8687810d029c30b668d4693e978a1c08
SHA-256: 2a1a6b3e3bc274797220a58b69906c8db3853a1a5c94f2bc00b236a1506c1459
cman-devel-2.0.115-34.el5.i386.rpm
File outdated by:  RHBA-2014:0282
    MD5: 94243c5d1ffcdb2deda0438819dcf9fa
SHA-256: 6f8d7cae96c9126b923f464a18d27fff03bd3750342073d38044fda146a5528e
 
IA-64:
cman-2.0.115-34.el5.ia64.rpm
File outdated by:  RHBA-2014:0282
    MD5: ddc728f7700bd63a29d7c654de4a7f84
SHA-256: ef952375f14dbbd311d8fb81276cc350aa97b701cfca41fb573e00a73c26da20
cman-devel-2.0.115-34.el5.ia64.rpm
File outdated by:  RHBA-2014:0282
    MD5: 32d2cabff13977589c46c9c5bc6a00c4
SHA-256: d3bd6c97c45fe13513ec6839e872db8056be2759003cc802391f983887623db7
 
PPC:
cman-2.0.115-34.el5.ppc.rpm
File outdated by:  RHBA-2014:0282
    MD5: 6dbba7110cf269bb4a215fd05c90f842
SHA-256: 0c3c244183d05267245efc4d092d1a2e2b7c9a80c6d8b8bff3bd9846b834c9cc
cman-devel-2.0.115-34.el5.ppc.rpm
File outdated by:  RHBA-2014:0282
    MD5: 9c883abd029f8f055087e84361a3338d
SHA-256: cca887dafe46de1b615f1275171756e9a46eedce2b85b34302b7236c93bac31f
cman-devel-2.0.115-34.el5.ppc64.rpm
File outdated by:  RHBA-2014:0282
    MD5: 4e7fa5a0cb063c90b385b76e210d1fe6
SHA-256: 4fc65451c505355e1d54ffdd3cf669f69003d5fc964edf3c9708e327491674ba
 
x86_64:
cman-2.0.115-34.el5.x86_64.rpm
File outdated by:  RHBA-2014:0282
    MD5: 3f414368db5e549244da19f368d7e045
SHA-256: 537c6475d17a82fd431168a14d3d968acb12cde4742fc58cfadb853c25bd0d0c
cman-devel-2.0.115-34.el5.i386.rpm
File outdated by:  RHBA-2014:0282
    MD5: 94243c5d1ffcdb2deda0438819dcf9fa
SHA-256: 6f8d7cae96c9126b923f464a18d27fff03bd3750342073d38044fda146a5528e
cman-devel-2.0.115-34.el5.x86_64.rpm
File outdated by:  RHBA-2014:0282
    MD5: c2832d157c1b32229168868a9e3930bc
SHA-256: deb194e737bb86390a412e49c65c8ebcf23fbb8d6ab08bb47c051c231ccba49a
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

248006 - fence_bladecenter fails when blade is not physically present
372901 - Qdisk without heuristic in a 2-nodes cluster: "master-wins" mode not working properly
447481 - APC changed product name
482913 - ipmi fence failed
489809 - Broken device detection for DRAC3 ERA/O in fence_drac
496748 - QA_ONLY: Dell iDRAC support with fence_ipmilan
504158 - fenced doesn't work with IP addresses for node names
506928 - Fence-Agents: support non-default TCP ports for the different services (SSH, Telnet)
507514 - fence_ilo fails to reboot, possibly timing problem with ilo2 1.70
508262 - Fence agents ends with traceback when option is missing
508722 - fence_ilo will fail against ilo2 device on BL860c with latest ilo2 firmware
511113 - qdisk does not autoboot/self-fence system if write errors take longer than interval*tko
511346 - /usr/lib/debug/usr/libexec/lcrso/service_cman.lcrso.debug missing
512343 - [CRM#1932634] Fencing fails if fence_wti used without telnet
512947 - fence_sanbox2 unable to retrieve status of fencing
513260 - Cman kills wrong nodes..
513285 - fcntl(GETLK) does not free unused resource
514260 - /etc/init.d/scsi_reserve should produce [FAIL] on failure as it does [ OK ] on success
515446 - cman_tool leave remove does not reduce quorum
515731 - fence_scsi man page contains invalid "-s" option
516085 - fence_scsi: support 2 node clusters
516111 - Unnecessary check for 'xm' in /etc/init.d/cman, fence_xvmd_enabled() function
516763 - fence_scsi_test advertises debug option which is not implemented
517399 - [RFE] - ccsd does not log what IPs are used for binding/sending packets to.
518622 - Force stdout close for fencing agents in python
519670 - RFE: Support for long options
519697 - RFE: List option for fencing agents
520458 - RFE: IPv6 support for fencing agents
521817 - groupd dlm:clvmd stuck in LEAVE_STOP_WAIT
528832 - fence_scsi_test should not allow -c and -s options together
528938 - Fix case sensitives in action parameter
532138 - uninitialized variable "method" in fence_ipmilan can cause breakage when trying to fence a node without explicitly specifying a value
532773 - qdiskd erroneously writes the message "qdiskd: read (system call) has hung for X seconds"
532916 - fence_apc fails to fence node: Failed: Unable to obtain correct plug status or plug is not available
532920 - Fence agents should accept unknown options from standard input
532922 - Security features for SNMP APC, IBM Bladecenter
544482 - token timeout should be smaller then consensus timeout
544664 - fence_virsh reports vm status incorrectly
545054 - Fence agent for RSB ends with traceback
546082 - groupd stuck by partition merge
546340 - LOGIN_TIMEOUT too short for fence_lpar
548577 - fence_vmware update to support vSphere/VirtualCenter integration
549113 - Option -V is not working with fence agents
549473 - fence_rsa fails to login with new RSA II firmware
570530 - cman: gfs_controld dm suspend hangs withdrawn GFS file system
573834 - SNMP APC agent returns success with bad IP address


References


Keywords

cman


These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/