7.0
7.0
Docs menu
MENU

OnApp 6.3 Patch 1 CloudBoot Update (6.3.1-1)

02 December 2020

This document provides information on improvements and fixes, as well as the upgrade instructions for CloudBoot.

Improvements

Key

Release Notes

CLOUDBOOT-677

Updated kernel version 2.6.32-754.33.1.el6.x86_64 to fix: CVE-2017-2647 for CentOS6 KVM ramdisk

CLOUDBOOT-678Included new onappstore-6.3-8125-master.x86_64.rpm into all ramdisks.
CLOUDBOOT-680

Updated xen version 4.10.4.87.gf58caa40cd-2.el7 to fix: XSA-335, XSA-336, XSA-337, XSA-338, XSA-339, XSA-340, XSA-342, XSA-343, XSA-344 for CentOS7 Xen ramdisk

CLOUDBOOT-681

Updated the following elements for CentOS7 KVM ramdisk:

  • CentOS release 7.8.2003
  • kernel version 3.10.0-1127.19.1.el7.x86_64 to provide fixes for rhbz ##: 1867441, 1842715, 1866971, 1862840
  • XFS filesystem driver sources version 3.10.0-327.36.3.el7.x86_64 compiled against the kernel 3.10.0-1127.19.1.el7.x86_64 with xfs-make-xfs_bmbt_to_iomap-available-outside-of-xfs_.patch, iomap-Switch-from-blkno-to-disk-offset.patch, dax-give-DAX-clearing-code-correct-bdev.patch;
  • UFS file-system sources from the kernel 3.10.0-1127.19.1.el7.x86_64 compeled with R/W support patch

Fixes

Key

Release Notes

Affected Versions
CLOUDBOOT-658XSA-338/CVE-2020-255976.0 - 6.3
CLOUDBOOT-659XSA-339/CVE-2020-255966.0 - 6.3
CLOUDBOOT-679XSA-335/CVE-2020-143646.1 Patch - 6.3
CLOUDBOOT-662XSA-336/CVE-2020-256046.0 - 6.3
CLOUDBOOT-663XSA-340/CVE-2020-256036.0 - 6.3
CLOUDBOOT-664XSA-337/CVE-2020-255956.0 - 6.3
CLOUDBOOT-665XSA-342/CVE-2020-256006.0 - 6.3
CLOUDBOOT-666XSA-344/CVE-2020-256016.0 - 6.3
CLOUDBOOT-667XSA-343/CVE-2020-255996.0 - 6.3
STORAGE-2268The vDisk related API calls on Static Hypervisors running Integrated Storage did not always complete without delays.6.1
STORAGE-2307A fully loaded Storage Controller was allowing to overcommit memory which could cause OOM issues.6.1 Patch 1 - 6.3

Upgrade CloudBoot Packages

  • Create a backup of the /tftpboot directory in case the storage packages rollback is needed.
  • Power off Windows virtual servers before proceeding to the following procedures.

To upgrade the OnApp Storage packages, follow the next procedure.

  1. Upgrade the repo (run on Control Panel box):

    1

    # yum -y update http://rpm.repo.onapp.com/repo/onapp-repo-6.3.noarch.rpm

  2. Update the onapp -store-install package (run on Control Panel box):

    1

    # yum update onapp-store-install

  3. Update the following packages (run on Control Panel box):

    1
2
3
4
5
6

    # yum update onapp-ramdisk-tools
# yum update onapp-ramdisk-centos6-xen
# yum update onapp-ramdisk-centos6-kvm
# yum update onapp-ramdisk-centos7-xen
# yum update onapp-ramdisk-centos7-kvm
# yum update onapp-ramdisk-centos7-default

    After the packages installation, go to the Control Panel’s Settings menu > Configuration and click the Save Configuration button.

  4. Run the script:

    1

    # /onapp/onapp-store-install/onapp-store-install.sh

    Be aware that the disk-less nodes password is the root password for the CloudBoot compute resources. By default it is blank.

    When run in the interactive mode, enter the required information.

To upgrade CloudBoot backup servers, refer to the Upgrade Guide. The “Simple Reboot” and “Migrate and Reboot” options are available.

If you want to update CloudBoot compute resources only to remove the accelerator issue (onapp-messaging service), you can use the liveUpdate procedure not to reboot compute resources:

1

liveUpdate updateToolstack hv_ip force

Where:

  • hv_ip - IP of the compute resource.