Article ID: 124289, created on Jan 26, 2015, last review on Sep 13, 2015

  • Applies to:
  • Virtuozzo containers for Linux 4.7

Issue date: 2015-01-27

1. What's Included in This Update

This update includes a new Virtuozzo Containers for Linux 4.7 kernel (2.6.32-042stab103.6) based on the Red Hat Enterprise Linux 6.6 kernel (2.6.32-504.3.3.el6). The new kernel introduces security and stability fixes.

2. Bug Fixes

  • The "nf_conntrack_proto_gre" kernel module compilation is disabled in kernel config in order to prevent a possible kernel panic in the nf_ct_gre_keymap_destroy() function. (#PSBM-25735, OVZ# 2801, OVZ# 3057, OVZ# 3155)

  • Under certain circumstances, the ploop compact operation could lead to a kernel panic in case the per-Container ext4 filesystem was mounted with the "discard" mount option. (#PSBM-30451, OVZ# 3124)

  • The "vendor_id" field in /proc/cpuinfo output could contain garbage on Hardware Nodes with CPUs with the "xsave" CPU feature. (#PSBM-30887)

  • Backup creation via LVM snapshot triggered the kernel warning "WARNING: at fs/ext4/super.c:250 ext4_journal_start_sb" and could freeze the Hardware Node in case it ran Containers with the simfs filesystem. (#PSBM-30932, OVZ# 3140)

  • Containers based on the CentOS 5 OS template could fail to suspend (and migrate online correspondingly). (#PSBM-31038, OVZ# 3167)

  • A race in the kernel code between dentry cache shrinking and filesystem unmounting could lead to a kernel BUG with the following message: "kernel BUG at fs/dcache.c:823!". (#PSBM-31039, OVZ# 3158)

  • Providing a non-empty file /proc/cgroups inside a Container (starting from the kernel 2.6.32-042stab102.9) caused Gentoo-based Containers' to fail to start. As a temporary workaround for this issue, the current kernel provides an empty file /proc/cgroups inside a Container like before. (#PSBM-31107)

  • Online migration of a Container with the "iptables-ipv6" package installed could fail in case the IPv6 module was disabled on the Hardware Node using the "disable=1" module option of the "ipv6" kernel module. (#PSBM-31108)

  • The ZEBRA daemon of Quagga Routing Suite failed to send routes to the kernel with the -EPERM error and messages like: "ZEBRA: netlink-cmd error: Operation not permitted, type=RTM_NEWROUTE(24)". (#PSBM-31125, OVZ# 3135, OVZ# 3137, OVZ# 3160)

3. Obtaining the Update

You can download and install the update using the vzup2date utility included in the Virtuozzo Containers for Linux 4.7 distribution set.

4. References

Copyright (c) 1999-2015 Parallels IP Holdings GmbH and its affiliates. All rights reserved.

Search Words




e8e50b42231236b82df27684e7ec0beb 2897d76d56d2010f4e3a28f864d69223 d02f9caf3e11b191a38179103495106f 0c05f0c76fec3dd785e9feafce1099a9

Email subscription for changes to this article
Save as PDF