Bug Fix Advisory docker bug fix and enhancement update

Advisory: RHBA-2016:0536-1
Type: Bug Fix Advisory
Severity: N/A
Issued on: 2016-03-31
Last updated on: 2016-03-31
Affected Products: Red Hat Enterprise Linux Extras (v. 7)

Details

Updated docker packages that fix several bugs and add various enhancements are
now available for Red Hat Enterprise Linux 7 Extras.

Docker is an open source engine that automates the deployment of any application
as a lightweight, portable, self-sufficient container that will run virtually
anywhere.

The docker packages have been upgraded to upstream version 1.9.1, which provides
a number of bug fixes and enhancements over the previous version. (BZ1286806)

This update also fixes the following bugs:

* The docker daemon constantly writes to stdout and stderr inside of its unit
file. The systemd-journald writes this stdout and stderr content to the journal.
If the journal is restarted, this results in the docker daemon getting a SIGPIPE
signal. As a consequence, when the docker daemon receives a SIGPIPE signal it
shuts down stopping all containers. To fix this bug, a helper program has been
added that will capture stdout and stderr from docker and forward the content to
the journal. This helper program has improved handling of the SIGPIPE signal. As
a result, if systemd-journal is restarted, then the docker daemon will no longer
shut down, stopping all containers. (BZ#1300076)

* In previous versions of the docker packages, the docker daemon could hang when
pulling multiple container images in parallel. As a consequence, this caused
OpenShift to fail to deploy PODS in production. This bugs has been fixed and now
OpenShift is able to deploy all of its POD's images. (BZ#1256877)

Users of docker are advised to upgrade to these updated packages, which fix
these bugs and add these enhancements.


Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

Updated packages

Red Hat Enterprise Linux Extras (v. 7)

SRPMS:
docker-1.9.1-25.el7.src.rpm
File outdated by:  RHSA-2017:0116
    MD5: 3ad4a5ec920d20e47b915ab539ff5b13
SHA-256: df86d446a8e830c8597b3ace806449412c5582d7e69ed8bd6cbac4f19765dcb2
 
x86_64:
docker-1.9.1-25.el7.x86_64.rpm
File outdated by:  RHSA-2017:0116
    MD5: f3a40d772ad7dd1ec95e57fc1765123a
SHA-256: 7434026902336166bb7648a8765fe8da0e42276e13efe3787be8367ef2927454
docker-forward-journald-1.9.1-25.el7.x86_64.rpm
File outdated by:  RHBA-2016:1274
    MD5: 559e5b3030bd738e25e87c86b2eeac56
SHA-256: 54dc8d6cf8ecb652e37b3adc0aa30bdd252184d7370d9d5a61f5617bdd842d89
docker-logrotate-1.9.1-25.el7.x86_64.rpm
File outdated by:  RHSA-2017:0116
    MD5: f1d3897e7722a3418beccc16f84a8fa7
SHA-256: ada2c0c6feaa98a27b50ff33734ef6bed02f7e7579449f9c3b2d2053d6a1078c
docker-selinux-1.9.1-25.el7.x86_64.rpm
File outdated by:  RHSA-2016:2634
    MD5: 618896315702d7322e04a4897774bc27
SHA-256: d64e945d74ba2deba304c8dcf4c7d693351b2083f449e4684591c164d5efa7dc
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

1256877 - PODs are failing to be deployed because docker couldn’t pull the images
1259342 - docker: Fail to start if selinux is enabled and overlayfs is being used as graph driver
1262374 - docker-selinux: Package upgrade taking a long time and using large amounts of resources
1275399 - docker spam about loginuid and pwuid...
1275554 - Error response from daemon: Relabeling of / is not allowed after upgrading docker
1277867 - yum install docker fails with dependency conflict
1279015 - Docker 1.8.2 fails to set iptables rules
1286765 - docker should not time out on sd_notify
1286806 - [extras-rhel-7.2.2] rebase docker to upstream 1.9.1 + RH patches
1293502 - Docker spawns a docker-proxy process for each port in a container
1298363 - docker: Backport device maper deferred device deletion fix in 1.9
1300076 - Docker command crashes after journald is stopped
1301199 - docker adds distro tag to docker version which causes kubelet to fail
1302411 - Docker 1.9 has issues assigning IP addresses correctly
1302418 - Starting container sometimes fails on Docker 1.9.1-14
1304038 - docker-1.9 is unstable when used with openshift-3.1.
1317627 - cgroups: cpu.shares: no such file or directory error seen during openshift builds
1317662 - manpage for docker-daemon should exist but doesn't
1317991 - cgroups: cgroups.proc no such file or directory error during docker build
1320302 - --cgroup-parent doesn't work correctly in docker 1.9



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/