Bug 1154783 - openssl version check recommended for RHEL 6.6 support
Summary: openssl version check recommended for RHEL 6.6 support
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: Red Hat Gluster Storage
Classification: Red Hat Storage
Component: rhs-hadoop-install
Version: rhgs-3.0
Hardware: Unspecified
OS: Unspecified
unspecified
unspecified
Target Milestone: ---
: RHGS 3.0.4
Assignee: Jeff Vance
QA Contact: Martin Kudlej
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2014-10-20 18:28 UTC by Jeff Vance
Modified: 2015-05-13 17:54 UTC (History)
9 users (show)

Fixed In Version: 2.45-1
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2015-03-31 10:18:15 UTC
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Product Errata RHEA-2015:0761 0 normal SHIPPED_LIVE Red Hat Storage Server 3 Hadoop plug-in enhancement update 2015-03-31 14:17:20 UTC

Description Jeff Vance 2014-10-20 18:28:42 UTC 
Description of problem:
The current 2.25 installer yum upgrades openssl on rhel nodes (eg. yarn-master server). If the openssl version is 1.0.1e-16 or greater then the yum upgrade should be skipped.

Version-Release number of selected component (if applicable):
2.25

How reproducible:


Steps to Reproduce:
1.
2.
3.

Actual results:


Expected results:


Additional info:
Comment 1 Jeff Vance 2014-10-20 18:29:51 UTC 
Fixed in 2.26 by adding a new function, version_ok(), which handles a mix of numeric and non-numeric version string components and accurate compare.
Comment 3 Martin Kudlej 2014-10-21 13:25:00 UTC 
I don't understand why do you need to check openssl version in rhs-hadoop. Do you require any specific openssl feature in installer which is not in older version?
Comment 4 Jeff Vance 2014-10-21 15:31:32 UTC 
Ambari rquires openssl 1.0.1e-16 or greater. This version of openssl is not, by default, on rhel 6.5 (at least not the 6.5 ISOs we've been using).
Comment 5 Martin Kudlej 2014-11-20 13:03:31 UTC 
tested with rhs-hadoop-install-2_29-1.el6rhs.noarch and it's OK. -->VERIFIED

Just one note: if version name format will change this test will break. I recommend use something like this:
rpm -q --queryformat "%{Version},%{RELEASE}" openssl
Comment 8 Jeff Vance 2014-12-03 16:12:41 UTC 
Using rpm -q  now for openssl and glusterfs version checking.
Comment 11 Martin Kudlej 2015-03-13 11:39:17 UTC 
I've found small bug which I think is not important but should be documented.
When openssl version will be  something like "1.0.2-16" this check will not work.

--- prepping rhel nodes...
installed openssl version on mkudlej-mgmt.os1.phx2.redhat.com is 1.0.2-16 and needs updating
yum upgrade openssl on mkudlej-mgmt.os1.phx2.redhat.com: Loaded plugins: product-id, security, subscription-manager
This system is not registered to Red Hat Subscription Management. You can use subscription-manager to register.
Setting up Upgrade Process
No Packages marked for Update
installed openssl version on mkudlej-master.os1.phx2.redhat.com is 1.0.2-16 and needs updating
yum upgrade openssl on mkudlej-master.os1.phx2.redhat.com: Loaded plugins: product-id, security, subscription-manager
This system is not registered to Red Hat Subscription Management. You can use subscription-manager to register.
Setting up Upgrade Process
No Packages marked for Update
--- done prepping rhel nodes


Anyway it will not affect functionality of any rhs-hadoop component and only extra upgrade of openssl will be triggered. -->VERIFIED
Comment 12 Jeff Vance 2015-03-17 04:41:40 UTC 
this has been fixed in 2.45
Comment 14 errata-xmlrpc 2015-03-31 10:18:15 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://rhn.redhat.com/errata/RHEA-2015-0761.html
Note You need to log in before you can comment on or make changes to this bug.