7.0
7.0
Docs menu
MENU

OnApp 6.0 Patch 5 CloudBoot Update (6.0.0-238)

21 August 2019

This documents provides information on improvements and fixes, as well as the upgrade instructions for CloudBoot.

The following packages have been released for CloudBoot:

  • onapp-ramdisk-centos6-kvm-6.0.0-38.noarch.rpm
  • onapp-ramdisk-centos6-xen-6.0.0-38.noarch.rpm
  • onapp-ramdisk-centos7-default-6.0.0-33.noarch.rpm
  • onapp-ramdisk-centos7-kvm-6.0.0-38.noarch.rpm
  • onapp-ramdisk-centos7-xen-6.0.0-38.noarch.rpm
  • onapp-store-install-6.0.0-38.noarch.rpm

Improvements & Fixes

Key

Release Notes

Affects Version/s

CLOUDBOOT-469

Updated libvirt version to 0.10.2-64.el6_10.2 patched with fixed-xt_physdev-warning-when-defining-ip-6-tables patch for CentOS6 KVM ramdisk to address the CVE-2019-10161 issue.

CLOUDBOOT-474

Updated the following components for CentOS6 KVM ramdisk:

  • kernel version to 2.6.32-754.17.1.el6.x86_64 to address the CVE-2019-3896, CVE-2019-11477, CVE-2019-11478, and the CVE-2019-11479 issue
  • qemu-kvm version to 0.12.1.2-2.506.el6_10.4 compiled with --enable-io-throttling to address the CVE-2019-9824 issue
CLOUDBOOT-475

Updated the following components for CentOS 7 Xen ramdisk:

  • A kernel version to 4.9.184-35.el7.x86_64
  • A UFS filesystem sources based on the kernel version 4.9.184-35.el7.x86_64 and compiled with the super-ufs_fs_write.patch
CLOUDBOOT-476

Updated the following components for CentOS 6 Xen ramdisk:

  • A kernel version to 4.9.184-35.el6.x86_64
  • A UFS filesystem sources based on the kernel version 4.9.184-35.el6.x86_64 and compiled with the super-ufs_fs_write.patch
  • MLNX_OFED stack is recompiled against kernel version 4.9.184-35.el6.x86_64
CLOUDBOOT-485Updated a Xen version for CentOS 7 ramdisk to 4.10.4-1.el7.
CLOUDBOOT-486

Updated the following components for CentOS7 KVM ramdisk:

  • kernel version to 3.10.0-957.27.2.el7.x86_64 to address the CVE-2019-11479, CVE-2019-11478, CVE-2019-11477, CVE-2018-16884, CVE-2019-11811, and the CVE-2019-11085 issues
  • qemu-kvm-ev version to 2.12.0-18.el7_6.7.1 to address the CVE-2019-6778 and the CVE-2018-20815 issues
  • A UFS filesystem sources based on the kernel version 3.10.0-957.27.2.el7.x86_64 and compiled with the R/W support patch
  • An XFS filesystem driver sources version to 3.10.0-327.36.3.el7.x86_64 based on the kernel version 3.10.0-957.27.2.el7.x86_64 and compiled with the following patches:
    • xfs-make-xfs_bmbt_to_iomap-available-outside-of-xfs_.patch
    • iomap-Switch-from-blkno-to-disk-offset.patch
    • dax-give-DAX-clearing-code-correct-bdev.patch
CLOUDBOOT-487Added the onapp-messaging service files to liveupdate.tgz for all ramdisks.
CLOUDBOOT-493

Now the onapp-messaging service is restarted during the liveUpdate of CloudBoot Compute Resources for correct work of anti spoofing.

CLOUDBOOT-465

Updated a kernel version to 2.6.32-754.15.3.el6.x86_64 for CentOS6 KVM ramdisk to address the CVE-2018-12130, CVE-2018-12126, CVE-2018-12127, and the CVE-2019-11091 issue.

5.5.0-92-6.1 Edge 1
CLOUDBOOT-472When the value of RAM on CloudBoot KVM compute resource exceeded 1 TB, it was not displayed properly at the Compute Resources page.5.0-6.1 Edge 2
CLOUDBOOT-484When you enabled acceleration for a network at the Accelerator Dashboard page, the traffic was too high and resulted in system slowdowns. To address this issue, updated an onapp-messaging version to 6.1 for all CloudBoot compute resources.6.0
CLOUDBOOT-491There was not enough free space for the filesystem, therefore increased a dom0_mem value for CentOS 7 Xen compute resources in a PXE config.6.1
STORAGE-2135Improved the process of assigning/unassigning drive to Integrated Storage cache to enable wiping redundant data from the disk assigned to cache.
STORAGE-2153Now you can repair vDisks for datastores with 4 stripes and 2 copies successfully.6.0.0-196

Upgrade CloudBoot Packages

  • Create a backup of the /tftpboot directory in case the storage packages rollback is needed.
  • Power off Windows virtual servers before proceeding to the following procedures.

To upgrade the OnApp Storage packages, follow the next procedure.

  1. Upgrade the repo (run on Control Panel box):

    1

    # yum -y update http://rpm.repo.onapp.com/repo/onapp-repo-6.0.noarch.rpm

  2. Update the onapp -store-install package (run on Control Panel box):

    1

    # yum update onapp-store-install

  3. Update the following packages (run on Control Panel box):

    1
2
3
4
5
6

    # yum update onapp-ramdisk-tools 
# yum update onapp-ramdisk-centos6-xen 
# yum update onapp-ramdisk-centos6-kvm 
# yum update onapp-ramdisk-centos7-xen 
# yum update onapp-ramdisk-centos7-kvm 
# yum update onapp-ramdisk-centos7-default
    After the packages installation, go to the Control Panel’s Settings menu > Configuration and click the Save Configuration button.

  4. Run the script:

    1

    # /onapp/onapp-store-install/onapp-store-install.sh
    Be aware that the disk-less nodes password is the root password for the CloudBoot compute resources. By default it is blank.

    When run in the interactive mode, enter the required information.

To upgrade CloudBoot backup servers, refer to the Upgrade Guide. The “Simple Reboot” and “Migrate and Reboot” options are available.

If you want to update CloudBoot compute resources only to remove the accelerator issue (onapp-messaging service), you can use the liveUpdate procedure not to reboot compute resources:

1

liveUpdate updateToolstack hv_ip force

Where:

  • hv_ip - IP of the compute resource.