- Issued:
- 2014-10-13
- Updated:
- 2014-10-13
RHBA-2014:1407 - Bug Fix Advisory
Synopsis
nfs-utils bug fix and enhancement update
Type/Severity
Bug Fix Advisory
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
Topic
Updated nfs-utils packages that fix several bugs and add various enhancements
are now available for Red Hat Enterprise Linux 6.
Description
The nfs-utils packages provide a daemon for the kernel Network File System (NFS)
server and related tools, which provides better performance than the traditional
Linux NFS server used by most users. These packages contain the mount.nfs,
umount.nfs, and showmount programs.
This update fixes the following bugs:
- Prior to this update, the nfsiostat utility was run in the background with the
stdout stream redirected to a file. As a consequence, the data was not displayed
in a timely matter. This update clears stdout periodically to ensure the
buffered output of nfsiostat does not get lost if the nfsiostat process is
terminated. (BZ#1007195)
- The nfs-utils packages were moved to an in-kernel keyring to store the ID
mappings needed for NFSv4. However, the kernel key is too small for large
enterprise environments. With this update, the nfsidmap utility, used by the
kernel to do ID mapping, has been changed to use multiple keyrings.
(BZ#1033708)
- Previously, the rpc.idmapd name mapping daemon returned a warning message
after failing to open communication with a client mount. As the warning message
was harmless and unnecessary, rpc.idmapd now displays the message only if the
user passes the "--verbose" option on the command line. (BZ#1040135)
- The starting of the rpc.statd utility caused a creation of an extra privileged
UDP socket. As a consequence, rpc.statd listened on a random port on all the
interfaces, which is required only for internal communication with the rpc.lockd
utility. With this update, rpc.statd no longer opens an extra socket in the
described situation, and instead opens an extra random port on the loopback
address only. (BZ#1018358)
- The starting of the rpc.statd utility caused messages being flooded to the
log. With this update, the socket is kept open until another one is found. As a
result, the same port is not reused, and messages are no longer
flooding the log in the described situation. (BZ#1075224)
- When root squashing was enabled and world execute permissions were
disabled, using the "-o remount" option of the mount utility caused the
mount attempt to fail. This update fixes the chk_mountpoint() function,
and the mount utility now checks only execute permissions for
unprivileged users, thus fixing this bug. (BZ#1079047)
- When the rpc.gssd daemon was started, a zero lifetime was sent to the kernel,
which then guessed and used the default lifetime. To fix this bug, the correct
lifetime is now passed to the kernel, which uses it for timeouts in GSS
contexts. (BZ#1081208)
- Previously, the rpcdebug utility did not work correctly when used with
the NFS module and the "state" option. This update allows the "state"
option to be used with the NFS module, and NFS state debugging can now be
set as expected. (BZ#1087878)
- Previously, machines with multiple disks made the rpc.mountd utility use
100% of the CPU for 30 to 40 minutes, needlessly scanning the disks. The
libblkid daemon usage has been optimized, and rpc.mountd no longer causes
downtime in this scenario. (BZ#1113204)
- Due to a wrong indentation in its code, the nfsiostat utility failed to start.
This update adds the correct indentation, and nfsiostat now starts as expected.
(BZ#1136814)
In addition, this update adds the following enhancements:
- This update enhances the nfsmount.conf file manual page to include syntax
for mount options. Now, the reader has a better understanding on how to set
variables in the configuration file. (BZ#918319)
- IPv6 is now a supported address type, and the exportfs utility can thus use
IPv6 addresses to export file systems. (BZ#1112776)
- This update adds descriptions on what each value of the column in the output
of the nfsiostat utility means. (BZ#869684)
Users of nfs-utils are advised to upgrade to these updated packages, which fix
these bugs and add these enhancements. After installing this update, the nfs
service will be restarted automatically.
Solution
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/site/articles/11258
Affected Products
- Red Hat Enterprise Linux Server 6 x86_64
- Red Hat Enterprise Linux Server 6 i386
- Red Hat Enterprise Linux Server - Extended Life Cycle Support 6 x86_64
- Red Hat Enterprise Linux Server - Extended Life Cycle Support 6 i386
- Red Hat Enterprise Linux Workstation 6 x86_64
- Red Hat Enterprise Linux Workstation 6 i386
- Red Hat Enterprise Linux Desktop 6 x86_64
- Red Hat Enterprise Linux Desktop 6 i386
- Red Hat Enterprise Linux for IBM z Systems 6 s390x
- Red Hat Enterprise Linux for Power, big endian 6 ppc64
- Red Hat Enterprise Linux for Scientific Computing 6 x86_64
- Red Hat Enterprise Linux Server from RHUI 6 x86_64
- Red Hat Enterprise Linux Server from RHUI 6 i386
- Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 6 s390x
- Red Hat Enterprise Linux Server - Retired Extended Life Cycle Support 6 x86_64
Fixes
- BZ - 1003555 - In rpc.mountd man page -V -f -p -H and so on need and args
- BZ - 1017477 - manpage for NFS(5) implies that local_lock is not supported in RHEL 6, when it is
- BZ - 1024035 - Support junction resolution in RHEL 6 rpc.mountd
- BZ - 1033708 - Updating to nfs-utils-1.2.3-39.el6 causes rpcidmapd to be chkconfig deleted
- BZ - 1067423 - Use short hostname when using AD based KDC for secure NFS
- BZ - 1070927 - RPC: AUTH_GSS upcall timed out
- BZ - 1081198 - RHEL 6.5 nfs-utils-1.2.3 sends RPCSEC_GSS_DESTROY with no verifier right after context creation
- BZ - 1081208 - RHEL GSSD: Pass GSS_context lifetime to the kernel
- BZ - 1087878 - rpcdebug is missing handling for the 'state' flag for the nfs module
- BZ - 1116698 - [rpc.gssd] rpc.gssd always start fail, and no enough log/message to user
- BZ - 1133562 - exportfs: warning – 'exp' may be used uninitialized in this function
- BZ - 1136814 - nfsiostat can not work : IndentationError: unindent does not match any outer indentation level
CVEs
(none)
References
(none)
Red Hat Enterprise Linux Server 6
SRPM | |
---|---|
nfs-utils-1.2.3-54.el6.src.rpm | SHA-256: 2e84b49c9da319c253c3682dff1b82ddad34264761ddd4116f7a32e4697963fd |
x86_64 | |
nfs-utils-1.2.3-54.el6.x86_64.rpm | SHA-256: bce5bb516c9057591e6cb017d7506d6f9c358f5d9f49e71d5eb0c73feb90bd9e |
nfs-utils-debuginfo-1.2.3-54.el6.x86_64.rpm | SHA-256: 0280e7b8297d3819b5ae6904b56dc39a9cb72191800dcc28c331df4731a8b676 |
i386 | |
nfs-utils-1.2.3-54.el6.i686.rpm | SHA-256: 232347008fe955cd0d807b197e5b452fd2a133a6b4db0bbc1f8607b2d0acb1b1 |
nfs-utils-debuginfo-1.2.3-54.el6.i686.rpm | SHA-256: b39edf2564032f476014e2f59eeb8bd97b262135c0f7a5efdcef90e2ecfa231f |
Red Hat Enterprise Linux Server - Extended Life Cycle Support 6
SRPM | |
---|---|
nfs-utils-1.2.3-54.el6.src.rpm | SHA-256: 2e84b49c9da319c253c3682dff1b82ddad34264761ddd4116f7a32e4697963fd |
x86_64 | |
nfs-utils-1.2.3-54.el6.x86_64.rpm | SHA-256: bce5bb516c9057591e6cb017d7506d6f9c358f5d9f49e71d5eb0c73feb90bd9e |
nfs-utils-debuginfo-1.2.3-54.el6.x86_64.rpm | SHA-256: 0280e7b8297d3819b5ae6904b56dc39a9cb72191800dcc28c331df4731a8b676 |
i386 | |
nfs-utils-1.2.3-54.el6.i686.rpm | SHA-256: 232347008fe955cd0d807b197e5b452fd2a133a6b4db0bbc1f8607b2d0acb1b1 |
nfs-utils-debuginfo-1.2.3-54.el6.i686.rpm | SHA-256: b39edf2564032f476014e2f59eeb8bd97b262135c0f7a5efdcef90e2ecfa231f |
Red Hat Enterprise Linux Workstation 6
SRPM | |
---|---|
nfs-utils-1.2.3-54.el6.src.rpm | SHA-256: 2e84b49c9da319c253c3682dff1b82ddad34264761ddd4116f7a32e4697963fd |
x86_64 | |
nfs-utils-1.2.3-54.el6.x86_64.rpm | SHA-256: bce5bb516c9057591e6cb017d7506d6f9c358f5d9f49e71d5eb0c73feb90bd9e |
nfs-utils-debuginfo-1.2.3-54.el6.x86_64.rpm | SHA-256: 0280e7b8297d3819b5ae6904b56dc39a9cb72191800dcc28c331df4731a8b676 |
i386 | |
nfs-utils-1.2.3-54.el6.i686.rpm | SHA-256: 232347008fe955cd0d807b197e5b452fd2a133a6b4db0bbc1f8607b2d0acb1b1 |
nfs-utils-debuginfo-1.2.3-54.el6.i686.rpm | SHA-256: b39edf2564032f476014e2f59eeb8bd97b262135c0f7a5efdcef90e2ecfa231f |
Red Hat Enterprise Linux Desktop 6
SRPM | |
---|---|
nfs-utils-1.2.3-54.el6.src.rpm | SHA-256: 2e84b49c9da319c253c3682dff1b82ddad34264761ddd4116f7a32e4697963fd |
x86_64 | |
nfs-utils-1.2.3-54.el6.x86_64.rpm | SHA-256: bce5bb516c9057591e6cb017d7506d6f9c358f5d9f49e71d5eb0c73feb90bd9e |
nfs-utils-debuginfo-1.2.3-54.el6.x86_64.rpm | SHA-256: 0280e7b8297d3819b5ae6904b56dc39a9cb72191800dcc28c331df4731a8b676 |
i386 | |
nfs-utils-1.2.3-54.el6.i686.rpm | SHA-256: 232347008fe955cd0d807b197e5b452fd2a133a6b4db0bbc1f8607b2d0acb1b1 |
nfs-utils-debuginfo-1.2.3-54.el6.i686.rpm | SHA-256: b39edf2564032f476014e2f59eeb8bd97b262135c0f7a5efdcef90e2ecfa231f |
Red Hat Enterprise Linux for IBM z Systems 6
SRPM | |
---|---|
nfs-utils-1.2.3-54.el6.src.rpm | SHA-256: 2e84b49c9da319c253c3682dff1b82ddad34264761ddd4116f7a32e4697963fd |
s390x | |
nfs-utils-1.2.3-54.el6.s390x.rpm | SHA-256: 7728668af1924e5ecb39a80d8b72fac52a967b3b88c482f625b7f648643ea752 |
nfs-utils-debuginfo-1.2.3-54.el6.s390x.rpm | SHA-256: fee9e8f615c041d770ffae810b3280ffb16c0f7ad4b63206c7841d3680289628 |
Red Hat Enterprise Linux for Power, big endian 6
SRPM | |
---|---|
nfs-utils-1.2.3-54.el6.src.rpm | SHA-256: 2e84b49c9da319c253c3682dff1b82ddad34264761ddd4116f7a32e4697963fd |
ppc64 | |
nfs-utils-1.2.3-54.el6.ppc64.rpm | SHA-256: 049e3896c93f2f285935638ae7ae8872975afd7fe3da5568bec8beb26c132f50 |
nfs-utils-debuginfo-1.2.3-54.el6.ppc64.rpm | SHA-256: c9a70c7025ddf537c5cb65d900b38ce2f626a949a142823789a96ed118e03033 |
Red Hat Enterprise Linux for Scientific Computing 6
SRPM | |
---|---|
nfs-utils-1.2.3-54.el6.src.rpm | SHA-256: 2e84b49c9da319c253c3682dff1b82ddad34264761ddd4116f7a32e4697963fd |
x86_64 | |
nfs-utils-1.2.3-54.el6.x86_64.rpm | SHA-256: bce5bb516c9057591e6cb017d7506d6f9c358f5d9f49e71d5eb0c73feb90bd9e |
nfs-utils-debuginfo-1.2.3-54.el6.x86_64.rpm | SHA-256: 0280e7b8297d3819b5ae6904b56dc39a9cb72191800dcc28c331df4731a8b676 |
Red Hat Enterprise Linux Server from RHUI 6
SRPM | |
---|---|
nfs-utils-1.2.3-54.el6.src.rpm | SHA-256: 2e84b49c9da319c253c3682dff1b82ddad34264761ddd4116f7a32e4697963fd |
x86_64 | |
nfs-utils-1.2.3-54.el6.x86_64.rpm | SHA-256: bce5bb516c9057591e6cb017d7506d6f9c358f5d9f49e71d5eb0c73feb90bd9e |
nfs-utils-debuginfo-1.2.3-54.el6.x86_64.rpm | SHA-256: 0280e7b8297d3819b5ae6904b56dc39a9cb72191800dcc28c331df4731a8b676 |
i386 | |
nfs-utils-1.2.3-54.el6.i686.rpm | SHA-256: 232347008fe955cd0d807b197e5b452fd2a133a6b4db0bbc1f8607b2d0acb1b1 |
nfs-utils-debuginfo-1.2.3-54.el6.i686.rpm | SHA-256: b39edf2564032f476014e2f59eeb8bd97b262135c0f7a5efdcef90e2ecfa231f |
Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 6
SRPM | |
---|---|
nfs-utils-1.2.3-54.el6.src.rpm | SHA-256: 2e84b49c9da319c253c3682dff1b82ddad34264761ddd4116f7a32e4697963fd |
s390x | |
nfs-utils-1.2.3-54.el6.s390x.rpm | SHA-256: 7728668af1924e5ecb39a80d8b72fac52a967b3b88c482f625b7f648643ea752 |
nfs-utils-debuginfo-1.2.3-54.el6.s390x.rpm | SHA-256: fee9e8f615c041d770ffae810b3280ffb16c0f7ad4b63206c7841d3680289628 |
Red Hat Enterprise Linux Server - Retired Extended Life Cycle Support 6
SRPM | |
---|---|
nfs-utils-1.2.3-54.el6.src.rpm | SHA-256: 2e84b49c9da319c253c3682dff1b82ddad34264761ddd4116f7a32e4697963fd |
x86_64 | |
nfs-utils-1.2.3-54.el6.x86_64.rpm | SHA-256: bce5bb516c9057591e6cb017d7506d6f9c358f5d9f49e71d5eb0c73feb90bd9e |
nfs-utils-debuginfo-1.2.3-54.el6.x86_64.rpm | SHA-256: 0280e7b8297d3819b5ae6904b56dc39a9cb72191800dcc28c331df4731a8b676 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.