1304716 – Update ODL package

Bug 1304716 - Update ODL package

Summary: Update ODL package

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Red Hat OpenStack
Classification:	Red Hat
Component:	opendaylight
Sub Component:
Version:	8.0 (Liberty)
Hardware:	Unspecified
OS:	Unspecified
Priority:	high
Severity:	unspecified
Target Milestone:	ga
Target Release:	8.0 (Liberty)
Assignee:	Mike Kolesnik
QA Contact:	Itzik Brown
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:	1271974
TreeView+	depends on / blocked

Reported:	2016-02-04 13:00 UTC by Nir Yechiel
Modified:	2016-04-18 11:22 UTC (History)
CC List:	8 users (show)
Fixed In Version:	opendaylight-1.0.0-2.el7ost
Doc Type:	Technology Preview
Doc Text:	Red Hat OpenStack Platform 8 now includes a technology preview of integration with the OpenDaylight SDN controller. OpenDaylight is a flexible, modular, and open SDN platform that supports many different applications. The OpenDaylight distribution included with Red Hat OpenStack Platform 8 is limited to the modules required to support OpenStack deployments using OVSDB NetVirt, and is based on the upstream Beryllium version. Package(s) providing the Technology Preview: opendaylight, networking-odl
Clone Of:
Environment:
Last Closed:	2016-04-15 13:47:08 UTC
Target Upstream Version:
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Product Errata	RHBA-2016:0636	0	normal	SHIPPED_LIVE	Red Hat OpenStack Platform 8 release candidate Bugfix Advisory	2016-04-15 17:45:07 UTC

Description Nir Yechiel 2016-02-04 13:00:57 UTC

Description of problem:

Update the RPM based on upstream Beryllium

Comment 2 Summer Long 2016-03-17 03:29:48 UTC

Looks like the old, unsafe commons-collections is still there. The beryllium build log shows 3.1, and should be at least 3.2.2 or 4.1:
http://download.englab.bne.redhat.com//brewroot/packages/org.opendaylight.ovsdb-ovsdb/1.2.1.Beryllium_redhat_1/1/data/logs/maven/root.log

DEBUG util.py:257:  [INFO] Downloading: http://download.devel.redhat.com/brewroot/packages/org.opendaylight.yangtools-yangtools-aggregator/0.8.0.Beryllium_redhat_1/1/maven/commons-collections/commons-collections/3.1/commons-collections-3.1.pom

(See flaw: https://bugzilla.redhat.com/show_bug.cgi?id=1279330)

Comment 3 Stephen Kitt 2016-03-17 10:18:48 UTC

Does commons-collections actually end up in the resulting Karaf distribution? 

As far as I'm aware the only places commons-collections still turns up is the Checkstyle and Karaf plugins, which are only used during the build or tests.
https://git.opendaylight.org/gerrit/35414 removes the dependency from the Karaf plugin.

Comment 4 Mike Kolesnik 2016-03-20 10:03:14 UTC

OK I backported Sthephen's patches and incorporated them into a new build, please try the new version.

Comment 5 Summer Long 2016-03-21 00:44:05 UTC

The jar needs to be at least 3.2.2:
From http://download.englab.bne.redhat.com//brewroot/packages/org.opendaylight.ovsdb-ovsdb/1.2.1.Beryllium_redhat_2/1/data/logs/maven/root.log: 

Still pulling in 3.2.1. For example:
DEBUG util.py:257:  [INFO] Downloading: http://download.devel.redhat.com/brewroot/packages/org.opendaylight.netconf-netconf-parent/1.0.0.Beryllium_redhat_2/1/maven/commons-collections/commons-collections/3.2.1/commons-collections-3.2.1.jar

(also: brew list-tagged --inherit --latest rhos-8.0-odl-rhel-7-maven-imports | grep commons-collections
commons-collections-commons-collections-1.0-1  rhos-8.0-odl-rhel-7-maven-imports  mkolesni)

Comment 6 Mike Kolesnik 2016-03-21 07:09:52 UTC

(In reply to Summer Long from comment #5)
> The jar needs to be at least 3.2.2:
> From
> http://download.englab.bne.redhat.com//brewroot/packages/org.opendaylight.
> ovsdb-ovsdb/1.2.1.Beryllium_redhat_2/1/data/logs/maven/root.log: 
> 
> Still pulling in 3.2.1. For example:
> DEBUG util.py:257:  [INFO] Downloading:
> http://download.devel.redhat.com/brewroot/packages/org.opendaylight.netconf-
> netconf-parent/1.0.0.Beryllium_redhat_2/1/maven/commons-collections/commons-
> collections/3.2.1/commons-collections-3.2.1.jar
> 
> (also: brew list-tagged --inherit --latest rhos-8.0-odl-rhel-7-maven-imports
> | grep commons-collections
> commons-collections-commons-collections-1.0-1 
> rhos-8.0-odl-rhel-7-maven-imports  mkolesni)

The commons collections jar is not packaged in the RPM any more.

Comment 9 Andrew Dahms 2016-03-31 01:18:52 UTC

The doc text for this bug has been incorporated into the formal Technology Preview section, and does not need to be collected from this bug.

Changing 'requires_doc_text' to '-'.

Comment 14 errata-xmlrpc 2016-04-15 13:47:08 UTC

Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://rhn.redhat.com/errata/RHBA-2016-0636.html

Note You need to log in before you can comment on or make changes to this bug.