Issued:

2018-06-27

Updated:

2018-06-27

RHEA-2018:2072 - VDSM bug fix and enhancement update 4.2

Synopsis

VDSM bug fix and enhancement update 4.2

Type/Severity

Product Enhancement Advisory None

Topic

Updated vdsm packages that fix several bugs and add various enhancements are now available.

Description

VDSM is a management module that serves as a Red Hat Virtualization Manager agent on Red Hat Virtualization Host or Red Hat Enterprise Linux hosts.

Changes to the vdsm component:

• Previously, when a virtual machine selected for import contained a floppy, it could prevent the virtual machine from being imported. This is now fixed and floppy drives are ignored during import. (BZ#1576675)

• This release adds a new 'ssl_ciphers' option to VDSM, which allows you to configure available ciphers for encrypted connections (for example, the Manager to VDSM, or VDSM to VDSM). The values of this option conform to OpenSSL standard. To set this option:

1. Move the host to Maintenance in the Manager.

2. Create a new /etc/vdsm/vdsm.conf.d/99-custom-ciphers.conf file with the following content:

[vars] ssl_ciphers =

where is one of the values described in the CIPHERS STRINGD section in https://www.openssl.org/docs/man1.0.2/apps/ciphers.html.

3. Restart VDSM.

4. Activate the host in the Manager. (BZ#1585022)

• Previously, the following issue could occur if IO tune settings were enabled: VDSM uses the domain metadata section to store extra data that is required to configure a VM, but not properly represented on the standard libvirt domain. VDSM tried to store the IO tune settings in this metadata, which was redundant because IO tune already has a proper representation. Furthermore, the implementation of the store operation for the IO tune settings had an implementation bug that prevented the VM from starting successfully. This has now been fixed. (BZ#1589664)

Solution

Before applying this update, make sure all previously released errata relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/2974891

Affected Products

Updated Packages

• vdsm-hook-ethtool-options-4.20.31-1.el7ev.noarch.rpm
• vdsm-http-4.20.31-1.el7ev.noarch.rpm
• vdsm-network-4.20.31-1.el7ev.x86_64.rpm
• vdsm-yajsonrpc-4.20.31-1.el7ev.noarch.rpm
• vdsm-4.20.31-1.el7ev.ppc64le.rpm
• vdsm-hook-checkips-4.20.31-1.el7ev.ppc64le.rpm
• vdsm-hook-extra-ipv4-addrs-4.20.31-1.el7ev.ppc64le.rpm
• vdsm-client-4.20.31-1.el7ev.noarch.rpm
• vdsm-hook-extra-ipv4-addrs-4.20.31-1.el7ev.x86_64.rpm
• vdsm-hook-checkips-4.20.31-1.el7ev.x86_64.rpm
• vdsm-4.20.31-1.el7ev.x86_64.rpm
• vdsm-api-4.20.31-1.el7ev.noarch.rpm
• vdsm-hook-fcoe-4.20.31-1.el7ev.noarch.rpm
• vdsm-hook-localdisk-4.20.31-1.el7ev.noarch.rpm
• vdsm-hook-vhostmd-4.20.31-1.el7ev.noarch.rpm
• vdsm-4.20.31-1.el7ev.src.rpm
• vdsm-hook-vfio-mdev-4.20.31-1.el7ev.noarch.rpm
• vdsm-jsonrpc-4.20.31-1.el7ev.noarch.rpm
• vdsm-hook-nestedvt-4.20.31-1.el7ev.noarch.rpm
• vdsm-python-4.20.31-1.el7ev.noarch.rpm
• vdsm-gluster-4.20.31-1.el7ev.x86_64.rpm
• vdsm-hook-openstacknet-4.20.31-1.el7ev.noarch.rpm
• vdsm-common-4.20.31-1.el7ev.noarch.rpm
• vdsm-hook-vmfex-dev-4.20.31-1.el7ev.noarch.rpm
• vdsm-hook-cpuflags-4.20.31-1.el7ev.noarch.rpm
• vdsm-network-4.20.31-1.el7ev.ppc64le.rpm
• vdsm-gluster-4.20.31-1.el7ev.ppc64le.rpm
• vdsm-hook-macspoof-4.20.31-1.el7ev.noarch.rpm

Fixes

• This content is not included.BZ - 1576675
• This content is not included.BZ - 1578763
• This content is not included.BZ - 1583228
• This content is not included.BZ - 1585022
• This content is not included.BZ - 1585030
• This content is not included.BZ - 1589664
• This content is not included.BZ - 1591667

CVEs

(none)

References

(none)

Additional information

• The Red Hat security contact is This content is not included.secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
• Offline Security Data data is available for integration with other systems. See Offline Security Data API to get started.