Issued:

2012-02-21

Updated:

2012-02-21

RHBA-2012:0318 - fence-agents bug fix update

Synopsis

fence-agents bug fix update

Type/Severity

Bug Fix Advisory

Topic

An updated fence-agents package that fixes various bugs is now available.

Description

Red Hat fence agents are a collection of scripts to handle remote power management for several devices. They allow failed or unreachable nodes to be forcibly restarted and removed from the cluster.

This update includes the following bug fixes:

• Fence devices using fence_ilo previously failed with the message "Unable to connect/login to fencing device" when pyOpenSSL was not installed. The fence-agents package now includes pyOpenSSL as a dependency to ensure that it is always installed (BZ#698002).

• Fence devices using fence_bladecenter previously reported the fence operation as failed when the --missing_as_off and reboot parameters were provided and the blade was not in the chassis. This logic has now been updated and the fence operation is correctly reported as successful if the blade is not in the chassis (BZ#708053).

• The list operation for Dell DRAC CMC fence devices previously did not function correctly. When the list operation was invoked it failed and a traceback error presented.

The fence-agents have been updated and the list operation now works correctly for Dell DRAC CMC fence devices (BZ#718195).

• DRAC 5 fence devices were prone to not closing SSH sessions correctly. This resulted in the fence device quickly reaching its limit for maximum concurrent SSH sessions and preventing further connections. New DRAC firmware and changes in the fence_drac5 fence agent have corrected this issue.

Users of Dell RAC 5 fence devices with the DRAC Firmware Version - 1.60, and above, now experience correct handling of SSH sessions (BZ#730633).

• Previously the fence_ipmilan device did not support or honor the -L option to specify the session privilege level. As a result connections had to be made with privileges higher than strictly necessary for the fence operation.

As a result of this update fence_ipmilan now supports and honors the use of the -L option to specify the session privilege level (BZ#738715).

• Previously fence_ipmilan did not handle values for the passwd_script argument which contained spaces. In particular this meant it was impossible to use a password script that required additional parameters. This update ensures that fence_ipmilan accepts and parses values for the passwd_script argument that contain spaces (BZ#738718).

All users requiring any of the changes noted above should upgrade to this new package, which fixes these issues and adds these enhancements.

Solution

Before applying this update, make sure all previously-released errata relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at This content is not included.https://access.redhat.com/kb/docs/DOC-11259

Affected Products

Updated Packages

• fence-agents-3.0.17-15.el5.x86_64.rpm
• fence-agents-3.0.17-15.el5.src.rpm

Fixes

• This content is not included.BZ - 708053
• This content is not included.BZ - 718195

CVEs

(none)

References

(none)

Additional information

• The Red Hat security contact is This content is not included.secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
• Offline Security Data data is available for integration with other systems. See Offline Security Data API to get started.