Recommended update for cloud-init, dhcp

Announcement ID:	SUSE-RU-2019:1715-1
Rating:	moderate
References:	bsc#1087331 bsc#1095627 bsc#1097388 bsc#1099340 bsc#1101894 bsc#1111427 bsc#1114160 bsc#1116767 bsc#1119397 bsc#1121878 bsc#1123694 bsc#1125950 bsc#1125992 bsc#1126101 bsc#1132692
Affected Products:	Magnum Orchestration 7 Public Cloud Module 12 SUSE CaaS Platform 3.0 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Performance Computing 12 SP2 SUSE Linux Enterprise High Performance Computing 12 SP3 SUSE Linux Enterprise High Performance Computing 12 SP4 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP4

An update that has 15 fixes can now be installed.

Description:

This update for cloud-init, dhcp provides the following fixes:

Changes to cloud-init:

• When the user configures a new rules file for network devices, the rules may not apply immediately, so trigger udevadm. (bsc#1125950)
• Fix the order of calls when writing routes so that the SUSE implementation of route config file writing has precedence over the default implementation. (bsc#1125992)
• Use the proper name to designate IPv6 addresses in ifcfg-* files. (bsc#1126101)
• Drop a '-' in the route file for the last column. (bsc#1123694)
• Make sure the resulting resolv.conf file is not empty. (bsc#1119397)
• Update to version 18.5 (bsc#1121878, bsc#1116767):
• Add cloud-id binary to packages for SUSE.
• azure: Accept variation in error msg from mount for ntfs volumes.
• azure: Add apply_network_config option to disable network from IMDS.
• azure: Add udev rules to create cloud-init Gen2 disk name symlinks.
• azure: Detect vnet migration via netlink media change event.
• azure: Fix a copy and paste error in error handling when reading azure ovf.
• azure: Fix a regression introduced when persisting ephemeral dhcp lease.
• azure: _poll_imds only retry on 404, failing on timeout.
• azure: Remove /etc/netplan/90-hotplug-azure.yaml when net from IMDS.
• azure: Report ready to fabric after reprovision and reduce logging.
• azure: Retry imds polling on requests.Timeout.
• config: On ubuntu select cloud archive mirrors for armel, armhf, arm64.
• dhclient-hook: Clean it up, add tests and fix a bug on 'down' event.
• doc: Change dns_nameserver property to dns_nameservers.
• docs: Remove colon from network v1 config example.
• instance-data: Add standard keys platform and subplatform. Refactor ec2.
• instance-data: Fallback to instance-data.json if sensitive is absent.
• logs: collect-logs ignore instance-data-sensitive.json on non-root user
• net: Ephemeral*Network: Add connectivity check via URL.
• net: Ignore nics that have "zero" mac address.
• net: Render 'metric' values in per-subnet routes.
• NoCloud: Allow top level 'network' key in network-config.
• ovf: Fix ovf network config generation gateway/routes.
• ovf: Identify label iso9660 filesystems with label 'OVF ENV'.
• query: Better error when missing read permission on instance-data.
• resizefs: Prefix discovered devpath with '/dev/' when path does not exist.
• systemd: On SUSE ensure cloud-init.service runs before wicked.
• tools: Add cloud-id command line utility.
• Update detection of openSUSE variants.
• write_files: Add support for appending to files.
• Fix a decoding error that could cause persisting the metadata to fail. (bsc#1101894)
• Fix a problem that could cause static network to be configured with BOOTPROTO=none. (bsc#1114160)
• Changes from 18.4 (bsc#1087331, bsc#1097388, bsc#1111427, bsc#1095627):
• Avoid Python 3 dependency when building for distros with Python 2 support.
• Add dhcp-client as requirement as cloud-init uses dhclient to setup a temporary network for metadata retrieval. (fate#327672)
• Use ds._crawled_metadata instance attribute if set when writing instance-data.json.
• ec2: Update crawled metadata and add standardized keys.
• lxd: Adjust to snap installed lxd.
• Add support for Infiniband network interfaces (IPoIB).
• cli: Add cloud-init query subcommand to query instance metadata.
• stages: Fix bug causing datasource to have incorrect sys_cfg.
• net_util: Ensure static configurations have netmask in translate_network result.
• Fall back to root:root on syslog permissions if other options fail.
• OpenStack: Support setting mac address on bond.
• EphemeralIPv4Network: Be more explicit when adding default route.
• OpenStack: Support reading of newer versions of metadata.
• OpenStack: Fix a bug that was causing causing 'latest' version to be used from network.
• user-data: Use jinja template to render instance-data.json in cloud-config.
• config: Disable ssh access to a configured user account.
• sysconfig: Refactor sysconfig to accept distro specific templates paths.
• hyperv_reporting_handler: Simplify threaded publisher.
• VMWare: Fix a network config bug in vm with static IPv4 and no gateway.
• logging: Add logging config type hyperv for reporting via Azure KVP
• Add datasource Oracle Compute Infrastructure (OCI).
• azure: Allow azure to generate network configuration from IMDS per boot.
• Scaleway: Add network configuration to the DataSource.
• netplan: Correctly render macaddress on a bonds and bridges when provided.
• tools: Add 'net-convert' subcommand command to 'cloud-init devel'.
• Use typeset or local in profile.d scripts.
• OpenNebula: Fix null gateway6.
• tools: add '--debug' to tools/net-convert.py
• update_metadata: A datasource can support network re-config every boot.
• Retry on failed import of gpg receive keys.
• tools: Fix run-container when neither source or binary package requested.
• Changes from 18.3:
• Explicitly prevent sudo access for user module.
• lxd: Delete default network and detach device if lxd-init created them.
• openstack: Avoid unneeded metadata probe on non-openstack platforms.
• stages: Fix tracebacks if a module stage is undefined or empty.
• Be safer on string/bytes when writing multipart user-data to disk.
• Fix get_proc_env for pids that have non-utf8 content in environment.
• netplan: Fix mtu if provided by network config for all rendered types.
• subp: Support combine_capture argument.
• util: Add get_linux_distro function to replace platform.dist
• Do not use the systemd_prefix macro, not available in this environment.
• openstack: Allow discovery in init-local using dhclient in a sandbox.
• yaml_load/schema: Add invalid line and column nums to error message.
• Azure: Ignore NTFS mount errors when checking ephemeral drive.
• cc_mounts: Do not add devices to fstab that are already present.
• ds-identify: Ensure that we have certain tokens in PATH.
• read_file_or_url: Move to url_helper, fix bug in its FileResponse.
• ds-identify: Recognize container-other as a container.
• ds-identify: Remove duplicate call to is_ds_enabled.
• azure: Add reported ready marker file.
• netinfo: Fix netdev_pformat when a nic does not have an address assigned.
• collect-logs: Add -v flag, write to stderr, limit journal to single boot.
• IBMCloud: Disable config-drive and nocloud only if IBMCloud is enabled.
• Add reporting events and log_time around early source of blocking time.
• IBMCloud: recognize provisioning environment during debug boots.
• net: Detect unstable network names and trigger a settle if needed.
• sysconfig: dhcp6 subnet type should not imply dhcpv4.
• schema: In validation, raise ImportError if strict but no jsonschema.
• set_passwords: Add newline to end of sshd config, only restart if updated.
• net: Depend on iproute2's ip instead of net-tools ifconfig or route.
• renderer: Support unicode in render_from_file.
• Implement ntp client spec with auto support for distro selection.
• apport: Add Brightbox, IBM, LXD, and OpenTelekomCloud to list of clouds.
• tests: Fix ec2 integration network metadata validation.
• cc_resizefs, util: Handle no /dev/zfs.
• The distribution indicator is set to SUSE during template expansion. Do not replace anything set to Ubuntu.
• Do not run cloud-init after network-online, this breaks functionality in cloud-init. Certain parts of the code running in this phase expect to run before the network is on-line.
• Root should not be enabled by default. Image builders/users that want root access by default should provide an appropriate configuration file during image build or image setup.
• Set distribution default to OpenSUSE/SLES. (bsc#1099340)
• Run metadata detection after network-online. (bsc#1097388)
• Properly accumulate all the defined routes for a given network device. Previously only the last defined route was written to the routes file. (bsc#1132692)
• Write the udev rules to a different file than the default. (bsc#1125950)
• Settle udev if not all configured devices are in the device tree to avoid race a condition between udev and cloud-init. (bsc#1125950)

Changes in dhcp: - No changes, just being released together to be included in CaaS Platform.

Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

• Magnum Orchestration 7
  zypper in -t patch SUSE-OpenStack-Cloud-Magnum-Orchestration-7-2019-1715=1
• SUSE Linux Enterprise Desktop 12 SP3
  zypper in -t patch SUSE-SLE-DESKTOP-12-SP3-2019-1715=1
• SUSE Linux Enterprise Desktop 12 SP4
  zypper in -t patch SUSE-SLE-DESKTOP-12-SP4-2019-1715=1
• Public Cloud Module 12
  zypper in -t patch SUSE-SLE-Module-Public-Cloud-12-2019-1715=1
• SUSE Linux Enterprise Software Development Kit 12 SP3
  zypper in -t patch SUSE-SLE-SDK-12-SP3-2019-1715=1
• SUSE Linux Enterprise Software Development Kit 12 SP4
  zypper in -t patch SUSE-SLE-SDK-12-SP4-2019-1715=1
• SUSE Linux Enterprise Server 12 SP3
  zypper in -t patch SUSE-SLE-SERVER-12-SP3-2019-1715=1
• SUSE Linux Enterprise High Performance Computing 12 SP3
  zypper in -t patch SUSE-SLE-SERVER-12-SP3-2019-1715=1
• SUSE Linux Enterprise Server for SAP Applications 12 SP3
  zypper in -t patch SUSE-SLE-SERVER-12-SP3-2019-1715=1
• SUSE Linux Enterprise High Performance Computing 12 SP4
  zypper in -t patch SUSE-SLE-SERVER-12-SP4-2019-1715=1
• SUSE Linux Enterprise Server 12 SP4
  zypper in -t patch SUSE-SLE-SERVER-12-SP4-2019-1715=1
• SUSE Linux Enterprise Server for SAP Applications 12 SP4
  zypper in -t patch SUSE-SLE-SERVER-12-SP4-2019-1715=1
• SUSE CaaS Platform 3.0
  To install this update, use the SUSE CaaS Platform 'skuba' tool. It will inform you if it detects new updates and let you then trigger updating of the complete cluster in a controlled way.

Package List:

• Magnum Orchestration 7 (x86_64)
  • cloud-init-18.5-37.21.1
  • cloud-init-config-suse-18.5-37.21.1
• SUSE Linux Enterprise Desktop 12 SP3 (x86_64)
  • dhcp-client-debuginfo-4.3.3-10.16.4
  • dhcp-debuginfo-4.3.3-10.16.4
  • dhcp-client-4.3.3-10.16.4
  • dhcp-debugsource-4.3.3-10.16.4
  • dhcp-4.3.3-10.16.4
• SUSE Linux Enterprise Desktop 12 SP4 (x86_64)
  • dhcp-client-debuginfo-4.3.3-10.16.4
  • dhcp-debuginfo-4.3.3-10.16.4
  • dhcp-client-4.3.3-10.16.4
  • dhcp-debugsource-4.3.3-10.16.4
  • dhcp-4.3.3-10.16.4
• Public Cloud Module 12 (aarch64 ppc64le s390x x86_64)
  • cloud-init-18.5-37.21.1
  • cloud-init-config-suse-18.5-37.21.1
• SUSE Linux Enterprise Software Development Kit 12 SP3 (aarch64 ppc64le s390x x86_64)
  • dhcp-debuginfo-4.3.3-10.16.4
  • dhcp-debugsource-4.3.3-10.16.4
  • dhcp-devel-4.3.3-10.16.4
• SUSE Linux Enterprise Software Development Kit 12 SP4 (aarch64 ppc64le s390x x86_64)
  • dhcp-debuginfo-4.3.3-10.16.4
  • dhcp-debugsource-4.3.3-10.16.4
  • dhcp-devel-4.3.3-10.16.4
• SUSE Linux Enterprise Server 12 SP3 (aarch64 ppc64le s390x x86_64)
  • dhcp-client-debuginfo-4.3.3-10.16.4
  • dhcp-debuginfo-4.3.3-10.16.4
  • dhcp-client-4.3.3-10.16.4
  • dhcp-server-debuginfo-4.3.3-10.16.4
  • dhcp-server-4.3.3-10.16.4
  • dhcp-relay-4.3.3-10.16.4
  • dhcp-debugsource-4.3.3-10.16.4
  • dhcp-relay-debuginfo-4.3.3-10.16.4
  • dhcp-4.3.3-10.16.4
• SUSE Linux Enterprise High Performance Computing 12 SP3 (aarch64 x86_64)
  • dhcp-client-debuginfo-4.3.3-10.16.4
  • dhcp-debuginfo-4.3.3-10.16.4
  • dhcp-client-4.3.3-10.16.4
  • dhcp-server-debuginfo-4.3.3-10.16.4
  • dhcp-server-4.3.3-10.16.4
  • dhcp-relay-4.3.3-10.16.4
  • dhcp-debugsource-4.3.3-10.16.4
  • dhcp-relay-debuginfo-4.3.3-10.16.4
  • dhcp-4.3.3-10.16.4
• SUSE Linux Enterprise Server for SAP Applications 12 SP3 (ppc64le x86_64)
  • dhcp-client-debuginfo-4.3.3-10.16.4
  • dhcp-debuginfo-4.3.3-10.16.4
  • dhcp-client-4.3.3-10.16.4
  • dhcp-server-debuginfo-4.3.3-10.16.4
  • dhcp-server-4.3.3-10.16.4
  • dhcp-relay-4.3.3-10.16.4
  • dhcp-debugsource-4.3.3-10.16.4
  • dhcp-relay-debuginfo-4.3.3-10.16.4
  • dhcp-4.3.3-10.16.4
• SUSE Linux Enterprise High Performance Computing 12 SP4 (aarch64 x86_64)
  • dhcp-client-debuginfo-4.3.3-10.16.4
  • dhcp-debuginfo-4.3.3-10.16.4
  • dhcp-client-4.3.3-10.16.4
  • dhcp-server-debuginfo-4.3.3-10.16.4
  • dhcp-server-4.3.3-10.16.4
  • dhcp-relay-4.3.3-10.16.4
  • dhcp-debugsource-4.3.3-10.16.4
  • dhcp-relay-debuginfo-4.3.3-10.16.4
  • dhcp-4.3.3-10.16.4
• SUSE Linux Enterprise Server 12 SP4 (aarch64 ppc64le s390x x86_64)
  • dhcp-client-debuginfo-4.3.3-10.16.4
  • dhcp-debuginfo-4.3.3-10.16.4
  • dhcp-client-4.3.3-10.16.4
  • dhcp-server-debuginfo-4.3.3-10.16.4
  • dhcp-server-4.3.3-10.16.4
  • dhcp-relay-4.3.3-10.16.4
  • dhcp-debugsource-4.3.3-10.16.4
  • dhcp-relay-debuginfo-4.3.3-10.16.4
  • dhcp-4.3.3-10.16.4
• SUSE Linux Enterprise Server for SAP Applications 12 SP4 (ppc64le x86_64)
  • dhcp-client-debuginfo-4.3.3-10.16.4
  • dhcp-debuginfo-4.3.3-10.16.4
  • dhcp-client-4.3.3-10.16.4
  • dhcp-server-debuginfo-4.3.3-10.16.4
  • dhcp-server-4.3.3-10.16.4
  • dhcp-relay-4.3.3-10.16.4
  • dhcp-debugsource-4.3.3-10.16.4
  • dhcp-relay-debuginfo-4.3.3-10.16.4
  • dhcp-4.3.3-10.16.4
• SUSE CaaS Platform 3.0 (x86_64)
  • cloud-init-18.5-37.21.1
  • dhcp-client-4.3.3-10.16.4
  • dhcp-4.3.3-10.16.4
  • dhcp-client-debuginfo-4.3.3-10.16.4

References:

• https://bugzilla.suse.com/show_bug.cgi?id=1087331
• https://bugzilla.suse.com/show_bug.cgi?id=1095627
• https://bugzilla.suse.com/show_bug.cgi?id=1097388
• https://bugzilla.suse.com/show_bug.cgi?id=1099340
• https://bugzilla.suse.com/show_bug.cgi?id=1101894
• https://bugzilla.suse.com/show_bug.cgi?id=1111427
• https://bugzilla.suse.com/show_bug.cgi?id=1114160
• https://bugzilla.suse.com/show_bug.cgi?id=1116767
• https://bugzilla.suse.com/show_bug.cgi?id=1119397
• https://bugzilla.suse.com/show_bug.cgi?id=1121878
• https://bugzilla.suse.com/show_bug.cgi?id=1123694
• https://bugzilla.suse.com/show_bug.cgi?id=1125950
• https://bugzilla.suse.com/show_bug.cgi?id=1125992
• https://bugzilla.suse.com/show_bug.cgi?id=1126101
• https://bugzilla.suse.com/show_bug.cgi?id=1132692