Bug 1288166

Summary: [RHEL] package version dependencies are looser than needed
Product: [Red Hat Storage] Red Hat Ceph Storage Reporter: Ken Dreyer (Red Hat) <kdreyer>
Component: BuildAssignee: Ken Dreyer (Red Hat) <kdreyer>
Status: CLOSED ERRATA QA Contact: ceph-qe-bugs <ceph-qe-bugs>
Severity: medium Docs Contact:
Priority: unspecified    
Version: 1.3.1CC: flucifre, hnallurv, hyelloji, kdreyer
Target Milestone: rcFlags: hyelloji: needinfo+
Target Release: 1.3.2   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: RHEL: ceph-0.94.5-1.el7cp Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2016-02-29 14:44:25 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Ken Dreyer (Red Hat) 2015-12-03 17:39:19 UTC 
Description of problem:
Ceph's sub-package version dependencies are looser than they need to be. This means someone could install a slightly newer version of "ceph-common" than "ceph".

Ideally this would not happen, and customers would always subscribe to all the correct repositories and "yum update" all packages at the same time. But this doesn't always happen. Currently it is possible that if a customer uses yum to update

Version-Release number of selected component (if applicable):
RHCS 1.3.1

How reproducible:
Depends on customer's steps (whether they've subscribed to all appropriate repos and run "yum update" without additional arguments).

Steps to Reproduce:
1. Select a plain RHEL 7 Server node to be a Ceph OSD.

2. Ensure the node is *not* subscribed to rhel-7-server-rhceph-1.3-osd-rpms or any other ceph repo in subscription-manager, like rhel-7-server-rhceph-1.3-tools-rpms.

3. Install the ceph-osd package from the RHCS 1.3.0 ISO. `rpm -qv ceph-osd` should show ceph-osd-0.94.1-13.el7cp.

(Note, I'm using RHCS 1.3.0 in this example, so that it will be easy to test a "yum update" in the next steps. But this affects the package set in RHCS 1.3.1 as well.)

4. Subscribe the node to the OSD repo in the CDN:
   sudo subscription-manager repos --enable=rhel-7-server-rhceph-1.3-osd-rpms

5. Run `yum update ceph-common-0.94.1-19.el7cp` on the OSD node. The key here is that the version (0.94.1) stays the same, but the Release field (-19) is different.

Actual results:
Yum updates ceph-common without updating "ceph" and "ceph-osd".

Expected results:
Yum should update all ceph subpackages when the user tries to update any one sub-package.
Comment 1 Ken Dreyer (Red Hat) 2015-12-03 17:53:36 UTC 
(In reply to Ken Dreyer (Red Hat) from comment #0)
> Currently it is possible that if a customer uses yum to update

... I meant to say: it is possible that if a customer uses yum to update packages individually, or subscribes to "rhel-7-server-rhceph-1.3-tools-rpms" without also subscribing to "rhel-7-server-rhceph-1.3-osd-rpms", etc. then they could hit this bug.
Comment 4 Hemanth Kumar 2016-02-02 13:16:55 UTC 
Hi Ken,

I verified this fix by installing OSD packages from 1.3.1 ISO and then upgrading ceph-common from 1.3.2 puddle and all the dependent packages also got upgraded. I have captured the execution steps in pastebin(http://pastebin.test.redhat.com/345504), can you check if the procedure I followed is same as the problem you have raised. Let me know if my understanding is right as I was bit confused with the Bug Description
Comment 5 Ken Dreyer (Red Hat) 2016-02-04 00:55:44 UTC 
Looks fine to me
Comment 6 Hemanth Kumar 2016-02-04 14:19:14 UTC 
Moving to Verified State
Comment 8 errata-xmlrpc 2016-02-29 14:44:25 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2016:0313