oVirt Survey Summer 2022
by Sandro Bonazzola
oVirt Survey Summer 2022
As we continue to develop oVirt 4.5, the oVirt community would value
insights on your experience with the oVirt project.
Please help us to hit the mark by completing this short survey:
https://forms.gle/2LxoDKb7njEQwr4f7 .
Survey will close on July 29th 2022.
Please note the answers to this survey will be publicly accessible.
This survey is under oVirt Privacy Policy available at
https://ovirt.org/privacy-policy.html .
--
Sandro Bonazzola
MANAGER, SOFTWARE ENGINEERING, EMEA R&D RHV
Red Hat EMEA <https://www.redhat.com/>
sbonazzo(a)redhat.com
<https://www.redhat.com/>
*Red Hat respects your work life balance. Therefore there is no need to
answer this email out of your office hours.*
2 years, 5 months
oVirt Node 4.5.1
by Lev Veyde
On June 23rd 2022 the oVirt project released an update of oVirt Node
(4.5.1) delivering several security fixes, bug fixes and enhancements.
The update is already available on resources.ovirt.org and should land on
oVirt mirrors within 24 hours.
With oVirt 4.5.1 oVirt Node based on CentOS Stream 9 is also available as a
tech preview.
Known issues:
-
On oVirt Node based on CentOS Stream 9 with UEFI secure boot, vdsm fails
to decode DMI data due to Bug 2081648
<https://bugzilla.redhat.com/show_bug.cgi?id=2081648> – python-dmidecode
module fails to decode DMI data
Updates on el8 based oVirt Node:
Security fixes:
-
Important - Bug 2082616
<https://bugzilla.redhat.com/show_bug.cgi?id=2082616> - CVE-2022-24903 -
rsyslog: Heap-based overflow in TCP syslog server
-
Important - Bug 2072376
<https://bugzilla.redhat.com/show_bug.cgi?id=2072376> - CVE-2018-25032 -
zlib: A flaw in zlib-1.2.11 when compressing (not decompressing!) certain
inputs.
-
Important - Bug 2065568
<https://bugzilla.redhat.com/show_bug.cgi?id=2065568> - CVE-2022-27666 -
kernel: buffer overflow in IPsec ESP transformation code
Other updates:
-
CentOS Stream 8 latest updates
-
Full list of changes compared to oVirt Node 4.5.0.3:
oVirt Node 4.5.0.3
oVirt Node 4.5.1
NetworkManager 1.39.3-1.el8
1.39.5-1.el8
NetworkManager-config-server 1.39.3-1.el8
1.39.5-1.el8
NetworkManager-libnm 1.39.3-1.el8
1.39.5-1.el8
NetworkManager-ovs 1.39.3-1.el8
1.39.5-1.el8
NetworkManager-team 1.39.3-1.el8
1.39.5-1.el8
NetworkManager-tui 1.39.3-1.el8
1.39.5-1.el8
binutils 2.30-114.el8
2.30-116.el8
centos-release-ovirt45 8.7-1.el8s
8.7-2.el8s
cockpit 264.1-1.el8
270-1.el8
cockpit-bridge 264.1-1.el8
270-1.el8
cockpit-storaged 264.1-1.el8
269-1.el8
cockpit-system 264.1-1.el8
270-1.el8
cockpit-ws 264.1-1.el8
270-1.el8
cronie 1.5.2-6.el8
1.5.2-7.el8
cronie-anacron 1.5.2-6.el8
1.5.2-7.el8
cups-libs
2.2.6-45.el8
device-mapper-multipath 0.8.4-23.el8
0.8.4-25.el8
device-mapper-multipath-libs 0.8.4-23.el8
0.8.4-25.el8
dnf 4.7.0-9.el8
4.7.0-10.el8
dnf-data 4.7.0-9.el8
4.7.0-10.el8
dracut 049-201.git20220131.el8
049-202.git20220511.el8
dracut-config-generic 049-201.git20220131.el8
049-202.git20220511.el8
dracut-live 049-201.git20220131.el8
049-202.git20220511.el8
dracut-network 049-201.git20220131.el8
049-202.git20220511.el8
dracut-squash 049-201.git20220131.el8
049-202.git20220511.el8
e2fsprogs 1.45.6-4.el8
1.45.6-5.el8
e2fsprogs-libs 1.45.6-4.el8
1.45.6-5.el8
elfutils-default-yama-scope 0.186-1.el8
0.187-4.el8
elfutils-libelf 0.186-1.el8
0.187-4.el8
elfutils-libs 0.186-1.el8
0.187-4.el8
fence-agents-all 4.2.1-94.el8
4.2.1-97.el8
fence-agents-amt-ws 4.2.1-94.el8
4.2.1-97.el8
fence-agents-apc 4.2.1-94.el8
4.2.1-97.el8
fence-agents-apc-snmp 4.2.1-94.el8
4.2.1-97.el8
fence-agents-bladecenter 4.2.1-94.el8
4.2.1-97.el8
fence-agents-brocade 4.2.1-94.el8
4.2.1-97.el8
fence-agents-cisco-mds 4.2.1-94.el8
4.2.1-97.el8
fence-agents-cisco-ucs 4.2.1-94.el8
4.2.1-97.el8
fence-agents-common 4.2.1-94.el8
4.2.1-97.el8
fence-agents-compute 4.2.1-94.el8
4.2.1-97.el8
fence-agents-drac5 4.2.1-94.el8
4.2.1-97.el8
fence-agents-eaton-snmp 4.2.1-94.el8
4.2.1-97.el8
fence-agents-emerson 4.2.1-94.el8
4.2.1-97.el8
fence-agents-eps 4.2.1-94.el8
4.2.1-97.el8
fence-agents-heuristics-ping 4.2.1-94.el8
4.2.1-97.el8
fence-agents-hpblade 4.2.1-94.el8
4.2.1-97.el8
fence-agents-ibmblade 4.2.1-94.el8
4.2.1-97.el8
fence-agents-ifmib 4.2.1-94.el8
4.2.1-97.el8
fence-agents-ilo-moonshot 4.2.1-94.el8
4.2.1-97.el8
fence-agents-ilo-mp 4.2.1-94.el8
4.2.1-97.el8
fence-agents-ilo-ssh 4.2.1-94.el8
4.2.1-97.el8
fence-agents-ilo2 4.2.1-94.el8
4.2.1-97.el8
fence-agents-intelmodular 4.2.1-94.el8
4.2.1-97.el8
fence-agents-ipdu 4.2.1-94.el8
4.2.1-97.el8
fence-agents-ipmilan 4.2.1-94.el8
4.2.1-97.el8
fence-agents-kdump 4.2.1-94.el8
4.2.1-97.el8
fence-agents-mpath 4.2.1-94.el8
4.2.1-97.el8
fence-agents-redfish 4.2.1-94.el8
4.2.1-97.el8
fence-agents-rhevm 4.2.1-94.el8
4.2.1-97.el8
fence-agents-rsa 4.2.1-94.el8
4.2.1-97.el8
fence-agents-rsb 4.2.1-94.el8
4.2.1-97.el8
fence-agents-sbd 4.2.1-94.el8
4.2.1-97.el8
fence-agents-scsi 4.2.1-94.el8
4.2.1-97.el8
fence-agents-vmware-rest 4.2.1-94.el8
4.2.1-97.el8
fence-agents-vmware-soap 4.2.1-94.el8
4.2.1-97.el8
fence-agents-wti 4.2.1-94.el8
4.2.1-97.el8
glibc 2.28-200.el8
2.28-203.el8
glibc-common 2.28-200.el8
2.28-203.el8
glibc-langpack-en 2.28-200.el8
2.28-203.el8
kernel 4.18.0-383.el8
4.18.0-394.el8
kernel-core 4.18.0-383.el8
4.18.0-394.el8
kernel-modules 4.18.0-383.el8
4.18.0-394.el8
kernel-tools 4.18.0-383.el8
4.18.0-394.el8
kernel-tools-libs 4.18.0-383.el8
4.18.0-394.el8
kexec-tools 2.0.24-1.el8
2.0.24-2.el8
kpartx 0.8.4-23.el8
0.8.4-25.el8
libbasicobjects 0.1.1-39.el8
0.1.1-40.el8
libcap 2.48-2.el8
2.48-4.el8
libcollection 0.7.0-39.el8
0.7.0-40.el8
libcom_err 1.45.6-4.el8
1.45.6-5.el8
libdhash 0.5.0-39.el8
0.5.0-40.el8
libini_config 1.3.1-39.el8
1.3.1-40.el8
libldb 2.4.1-1.el8
2.5.0-1.el8
libpath_utils 0.2.1-39.el8
0.2.1-40.el8
libref_array 0.1.5-39.el8
0.1.5-40.el8
libss 1.45.6-4.el8
1.45.6-5.el8
libtdb 1.4.4-1.el8
1.4.6-1.el8
libtevent 0.11.0-0.el8
0.12.0-0.el8
libwbclient 4.15.5-8.el8
4.16.1-0.el8
mesa-dri-drivers 21.3.4-1.el8
21.3.4-1.0.1.el8
mesa-filesystem 21.3.4-1.el8
21.3.4-1.0.1.el8
mesa-libEGL 21.3.4-1.el8
21.3.4-1.0.1.el8
mesa-libGL 21.3.4-1.el8
21.3.4-1.0.1.el8
mesa-libgbm 21.3.4-1.el8
21.3.4-1.0.1.el8
mesa-libglapi 21.3.4-1.el8
21.3.4-1.0.1.el8
nmap-ncat 7.70-6.el8
7.70-7.el8
openvswitch-selinux-extra-policy 1.0-28.el8
1.0-29.el8s
osinfo-db 20211216-1.el8
20220516-1.el8
ovirt-ansible-collection 2.0.3-1.el8
2.1.0-1.el8
ovirt-hosted-engine-setup 2.6.3-1.el8
2.6.4-1.el8
ovirt-imageio-client 2.4.3-1.el8
2.4.5-1.el8
ovirt-imageio-common 2.4.3-1.el8
2.4.5-1.el8
ovirt-imageio-daemon 2.4.3-1.el8
2.4.5-1.el8
ovirt-node-ng-image-update-placeholder 4.5.0.3-1.el8
4.5.1-1.el8
ovirt-release-host-node 4.5.0.3-1.el8
4.5.1-1.el8
pacemaker-cluster-libs 2.1.2-4.el8
2.1.3-1.el8
pacemaker-libs 2.1.2-4.el8
2.1.3-1.el8
pacemaker-schemas 2.1.2-4.el8
2.1.3-1.el8
pam 1.3.1-16.el8
1.3.1-20.el8
python3-dnf 4.7.0-9.el8
4.7.0-10.el8
python3-perf 4.18.0-383.el8
4.18.0-394.el8
python38-ovirt-imageio-client 2.4.3-1.el8
2.4.5-1.el8
python38-ovirt-imageio-common 2.4.3-1.el8
2.4.5-1.el8
rpcbind 1.2.5-8.el8
1.2.5-9.el8
rsyslog 8.2102.0-9.el8
8.2102.0-10.el8
rsyslog-elasticsearch 8.2102.0-9.el8
8.2102.0-10.el8
rsyslog-mmjsonparse 8.2102.0-9.el8
8.2102.0-10.el8
rsyslog-mmnormalize 8.2102.0-9.el8
8.2102.0-10.el8
rsyslog-openssl 8.2102.0-9.el8
8.2102.0-10.el8
samba-client-libs 4.15.5-8.el8
4.16.1-0.el8
samba-common 4.15.5-8.el8
4.16.1-0.el8
samba-common-libs 4.15.5-8.el8
4.16.1-0.el8
scap-security-guide 0.1.60-7.el8
0.1.60-9.el8
selinux-policy 3.14.3-98.el8
3.14.3-99.el8
selinux-policy-targeted 3.14.3-98.el8
3.14.3-99.el8
sos 4.2-15.el8
4.3-1.el8
vdsm 4.50.0.13-1.el8
4.50.1.4-1.el8
vdsm-api 4.50.0.13-1.el8
4.50.1.4-1.el8
vdsm-client 4.50.0.13-1.el8
4.50.1.4-1.el8
vdsm-common 4.50.0.13-1.el8
4.50.1.4-1.el8
vdsm-gluster 4.50.0.13-1.el8
4.50.1.4-1.el8
vdsm-http 4.50.0.13-1.el8
4.50.1.4-1.el8
vdsm-jsonrpc 4.50.0.13-1.el8
4.50.1.4-1.el8
vdsm-network 4.50.0.13-1.el8
4.50.1.4-1.el8
vdsm-python 4.50.0.13-1.el8
4.50.1.4-1.el8
vdsm-yajsonrpc 4.50.0.13-1.el8
4.50.1.4-1.el8
yum 4.7.0-9.el8
4.7.0-10.el8
zlib 1.2.11-17.el8
1.2.11-19.el8
Additional resources:
-
Read more about the oVirt 4.5.1 release highlights:
https://www.ovirt.org/release/4.5.1/
-
Get more oVirt project updates on Twitter: https://twitter.com/ovirt
-
Check out the latest project news on the oVirt blog:
https://blogs.ovirt.org/
Thanks in advance,
--
Lev Veyde
Senior Software Engineer, RHCE | RHCVA | MCITP
Red Hat Israel
<https://www.redhat.com>
lev(a)redhat.com | lveyde(a)redhat.com
<https://red.ht/sig>
TRIED. TESTED. TRUSTED. <https://redhat.com/trusted>
2 years, 6 months
oVirt 4.5.1 is now generally available
by Lev Veyde
oVirt 4.5.1 is now generally available
The oVirt project is excited to announce the general availability of oVirt
4.5.1, as of June, 22nd 2022.
This release unleashes an altogether more powerful and flexible open source
virtualization solution that encompasses hundreds of individual changes and
a wide range of enhancements across the engine, storage, network, user
interface, and analytics on top of oVirt 4.4.
Important notes before you install / upgrade
Some of the features included in oVirt 4.5.1 require content that is
available in RHEL 8.6 (or newer) and derivatives.
NOTE: If you’re going to install oVirt 4.5.1 on RHEL or similar, please
read Installing on RHEL or derivatives
<https://ovirt.org/download/install_on_rhel.html> first.
Documentation
Be sure to follow instructions for oVirt 4.5!
-
If you want to try oVirt as quickly as possible, follow the instructions
on the Download <https://ovirt.org/download/> page.
-
For complete installation, administration, and usage instructions, see
the oVirt Documentation <https://ovirt.org/documentation/>.
-
For upgrading from a previous version, see the oVirt Upgrade Guide
<https://ovirt.org/documentation/upgrade_guide/>.
-
For a general overview of oVirt, see About oVirt
<https://ovirt.org/community/about.html>.
What’s new in oVirt 4.5.1 Release?
This release is available now on x86_64 architecture for:
-
CentOS Stream 8
-
RHEL 8.6 and derivatives
This release supports Hypervisor Hosts on x86_64:
-
oVirt Node NG (based on CentOS Stream 8)
-
CentOS Stream 8
-
RHEL 8.6 and derivatives
This release also supports Hypervisor Hosts on x86_64 as tech preview
without secure boot:
-
CentOS Stream 9
-
RHEL 9.0 and derivatives
-
oVirt Node NG based on CentOS Stream 9
Builds are also available for ppc64le and aarch64.
Known issues:
-
On EL9 with UEFI secure boot, vdsm fails to decode DMI data due to
Bug 2081648 <https://bugzilla.redhat.com/show_bug.cgi?id=2081648> -
python-dmidecode module fails to decode DMI data
Security fixes included in oVirt 4.5.1 compared to latest oVirt 4.5.0:
-
CVE-2022-31051 <https://bugzilla.redhat.com/show_bug.cgi?id=2097414> -
ovirt-web-ui - semantic-release: Masked secrets can be disclosed if they
contain characters that are excluded from uri encoding
-
CVE-2021-3807 <https://bugzilla.redhat.com/show_bug.cgi?id=2007557> -
ovirt-web-ui - nodejs-ansi-regex: Regular expression denial of service
(ReDoS) matching ANSI escape codes
-
CVE-2021-33623 <https://bugzilla.redhat.com/show_bug.cgi?id=1966615> -
ovirt-web-ui - nodejs-trim-newlines: ReDoS in .end() method
Some of the RFEs with high user impact are listed below:
-
1782077 [RFE] More Flexible oVirt CPU Allocation Policy with
HyperThreading
-
1975596 [RFE] Enhancement of oVirt monitoring by SNMP to merge each
alert message into a single line
-
1663217 [RFE] Add oVirt VM name to the matching between Satellite’s
content host to RHV (currently only VM FQDN is used)
-
1996098 [RFE] Provide options for “Disable Spice file transfer”,
“Disable spice clipboard copy and paste”
-
2021497 [RFE] Install and configure Keycloak as a default SSO provider
for ovirt-engine
-
2078500 [RFE] Add support for parallel migration connections to the REST
API
-
1937408 [RFE] Add ability to import template from OVA in image_template
role
-
1881280 [RFE] Validate HE cluster if --restore-from-file
-
2081559 [RFE] discrepancy tool should detect preallocated cow images
that were reduced
-
1986335 [RFE] Support hosts based on CentOS Stream 9
Some of the Bugs with high user impact are listed below:
-
2043146 Expired /etc/pki/vdsm/libvirt-vnc/server-cert.pem certificate is
skipped during Enroll Certificate
-
2071468 Engine fenced host that was already reconnected and set to Up
status.
-
2078025 [Docs] Now that certificates only last 13 months, oVirt needs to
document how to renew them
-
1986732 ovirt-ha services cannot set the LocalMaintenance mode in the
storage metadata and are in a restart loop
-
2054745 Setting SD to maintenance fails and turns the SD to inactive
mode as a result
-
2057958 oVirt Node 4.5 el9 iso doesn’t boot anymore
-
2035051 removing nfs-utils cause ovirt-engine removal due to cinderlib
dep tree
-
1878724 vdsm-tool configure is failing with error “dependency job for
libvirtd.service failed”
-
2075435 Hybrid Backup - backup href has changed and causing backups to
get stuck in finalizing stage
-
2055136 virt module is not changed to the correct stream during host
upgrade
oVirt Node will be released shortly after the release will reach the CentOS
mirrors.
See the release notes for installation instructions and a list of new
features and bugs fixed.
Additional resources:
-
Read more about the oVirt 4.5.1 release highlights:
https://www.ovirt.org/release/4.5.1/
-
Get more oVirt project updates on Twitter: https://twitter.com/ovirt
-
Check out the latest project news on the oVirt blog:
https://blogs.ovirt.org/
Thanks in advance,
--
Lev Veyde
Senior Software Engineer, RHCE | RHCVA | MCITP
Red Hat Israel
<https://www.redhat.com>
lev(a)redhat.com | lveyde(a)redhat.com
<https://red.ht/sig>
TRIED. TESTED. TRUSTED. <https://redhat.com/trusted>
2 years, 6 months
[ANN] oVirt 4.5.1 First Release Candidate is now available for testing
by Lev Veyde
oVirt 4.5.1 First Release Candidate is now available for testing
The oVirt Project is pleased to announce the availability of oVirt 4.5.1
First Release Candidate for testing, as of June 9th, 2022.
This update is the first in a series of stabilization updates to the 4.5
series.
Documentation
-
If you want to try oVirt as quickly as possible, follow the instructions
on the Download <https://ovirt.org/download/> page.
-
For complete installation, administration, and usage instructions, see
the oVirt Documentation <https://ovirt.org/documentation/>.
-
For upgrading from a previous version, see the oVirt Upgrade Guide
<https://ovirt.org/documentation/upgrade_guide/>.
-
For a general overview of oVirt, see About oVirt
<https://ovirt.org/community/about.html>.
Important notes before you try it
Please note this is a pre-release build.
The oVirt Project makes no guarantees as to its suitability or usefulness.
This pre-release must not be used in production.
Installation instructions
For installation instructions and additional information please refer to:
https://ovirt.org/documentation/
This release is available now on x86_64 architecture for:
-
CentOS Stream 8
-
RHEL 8.6 Beta and derivatives
This release supports Hypervisor Hosts on x86_64:
-
oVirt Node NG (based on CentOS Stream 8)
-
CentOS Stream 8
-
RHEL 8.6 Beta and derivatives
Builds are also available for ppc64le and aarch64.
Experimental builds for CentOS Stream 9 are also provided for Hypervisor
Hosts.
See the release notes [1] for installation instructions and a list of new
features and bugs fixed.
Notes:
- oVirt Appliance is already available based on CentOS Stream 8
- oVirt Node NG is already available based on CentOS Stream 8
Additional Resources:
* Read more about the oVirt 4.5.1 pre-release highlights:
http://www.ovirt.org/release/4.5.1/
* Get more oVirt project updates on Twitter: https://twitter.com/ovirt
* Check out the latest project news on the oVirt blog:
http://www.ovirt.org/blog/
[1] http://www.ovirt.org/release/4.5.1/
[2] http://resources.ovirt.org/pub/ovirt-4.5-pre/iso/
Thanks in advance,
--
Lev Veyde
Senior Software Engineer, RHCE | RHCVA | MCITP
Red Hat Israel
<https://www.redhat.com>
lev(a)redhat.com | lveyde(a)redhat.com
<https://red.ht/sig>
TRIED. TESTED. TRUSTED. <https://redhat.com/trusted>
2 years, 6 months