OnApp 6.1 Patch 1 CloudBoot Update (6.1.0-240)

23 September 2019

This documents provides information on improvements and fixes, as well as the upgrade instructions for CloudBoot.

The following packages have been released for CloudBoot:

  • onapp-ramdisk-centos6-kvm-6.1.0-47.noarch.rpm
  • onapp-ramdisk-centos6-xen-6.1.0-48.noarch.rpm
  • onapp-ramdisk-centos7-kvm-6.1.0-49.noarch.rpm
  • onapp-ramdisk-centos7-xen-6.1.0-48.noarch.rpm
  • onapp-store-install-6.1.0-46.noarch.rpm

On this page:

Improvements & Fixes


Release Notes

Affects Version/s


Added the onapp-messaging service files to liveupdate.tgz for all ramdisks.


Updated the following components for CentOS7 KVM ramdisk:

  • kernel version to 3.10.0-957.27.2.el7.x86_64 to address the CVE-2019-11479, CVE-2019-11478, CVE-2019-11477, CVE-2018-16884, CVE-2019-11811, and the CVE-2019-11085 issues
  • qemu-kvm-ev version to 2.12.0-18.el7_6.7.1 to address the CVE-2019-6778 and the CVE-2018-20815 issues
  • A UFS filesystem sources based on the kernel version 3.10.0-957.27.2.el7.x86_64 and compiled with the R/W support patch
  • An XFS filesystem driver sources version to 3.10.0-327.36.3.el7.x86_64 based on the kernel version 3.10.0-957.27.2.el7.x86_64 and compiled with the following patches:
    • xfs-make-xfs_bmbt_to_iomap-available-outside-of-xfs_.patch
    • iomap-Switch-from-blkno-to-disk-offset.patch
    • dax-give-DAX-clearing-code-correct-bdev.patch


Now the onapp-messaging service is restarted during the liveUpdate of CloudBoot Compute Resources for correct work of anti spoofing.

CLOUDBOOT-497Updated OnApp Storage with the onappstore-6.1-7747.x86_64.rpm ramdisk images for CloudBoot.
CLOUDBOOT-498Updated the kernel version for CentOS 6 KVM ramdisk to 2.6.32-754.18.2.el6.x86_64 to address the CVE-2019-1125, CVE-2018-17972, and the CVE-2019-5489 issues. 

Updated the libvirt version for CentOS 7 Xen ramdisk to 5.1.0-9.xen410.el7.

CLOUDBOOT-500Added wget for CloudBoot CentOS 7 KVM ramdisk.

Updated the following components for CentOS6 Xen ramdisk:

  • kernel version to 4.9.188-35.el6.x86_64 
  • A UFS filesystem sources based on the kernel version 4.9.188-35.el6.x86_64 and compiled with the super-ufs_fs_write.patch
  • MLNX_OFED stack is recompiled against kernel version 4.9.188-35.el6.x86_64


Updated the following components for CentOS7 Xen ramdisk:

  • kernel version to 4.9.188-35.el7.x86_64 
  • A UFS filesystem sources based on the kernel version 4.9.188-35.el7.x86_64 and compiled with the super-ufs_fs_write.patch


Updated the following components for CentOS7 KVM ramdisk:

  • libvirt version to 4.5.0-23.el7_7.1
  • A libguestfs version to 1.36.10-6.2.el7.onapp built with the sparce files handling patch

CLOUDBOOT-477Updated the kernel version for CentOS6 and CentOS7 to 4.9.188 to address the XSA-300 issue.5.0-6.1

Updated the bnx2.ko NetXtreme II driver’s version to 2.2.6 to allow to set MTU to more than 1500. 


Upgrade CloudBoot Packages

  • Create a backup of the /tftpboot directory in case the storage packages rollback is needed.
  • Power off Windows virtual servers before proceeding to the following procedures.

To upgrade the OnApp Storage packages, follow the next procedure. 

  1. Upgrade the repo (run on Control Panel box):

    # yum -y update http://rpm.repo.onapp.com/repo/onapp-repo-6.1.noarch.rpm
  2. Update the onapp-store-install package (run on Control Panel box):

    # yum update onapp-store-install
  3. Update the following packages (run on Control Panel box):

    # yum update onapp-ramdisk-tools 
    # yum update onapp-ramdisk-centos6-xen 
    # yum update onapp-ramdisk-centos6-kvm 
    # yum update onapp-ramdisk-centos7-xen 
    # yum update onapp-ramdisk-centos7-kvm 
    # yum update onapp-ramdisk-centos7-default

    After the packages installation, go to the Control Panel's Settings menu > Configuration and click the Save Configuration button.

  4. Run the script:

    # /onapp/onapp-store-install/onapp-store-install.sh

    Be aware that the disk-less nodes password is the root password for the CloudBoot compute resources. By default it is blank.

    When run in the interactive mode, enter the required information.

To upgrade CloudBoot backup servers, refer to the Upgrade Guide. The "Simple Reboot" and "Migrate and Reboot" options are available. 

If you want to update CloudBoot compute resources only to remove the accelerator issue (onapp-messaging service), you can use the liveUpdate procedure not to reboot compute resources: 

liveUpdate updateToolstack hv_ip force


hv_ip - IP of the compute resource