Re: [Ext.] Re: Re: Storage Design Question - GlusterFS
by Strahil Nikolov
This one shows if a setting differs from the defaults. As I don't know the default (you can see it with gluster volume set help), you can check via gluster volume get <VOLUME> cluster.lookup-optimize.
best Regards,Strahil Nikolov
On Wed, Apr 6, 2022 at 16:50, Mohamed Roushdy<mohamedroushdy(a)peopleintouch.com> wrote: <!--#yiv2710143779 _filtered {} _filtered {} _filtered {}#yiv2710143779 #yiv2710143779 p.yiv2710143779MsoNormal, #yiv2710143779 li.yiv2710143779MsoNormal, #yiv2710143779 div.yiv2710143779MsoNormal {margin:0in;font-size:11.0pt;font-family:"Calibri", sans-serif;}#yiv2710143779 a:link, #yiv2710143779 span.yiv2710143779MsoHyperlink {color:blue;text-decoration:underline;}#yiv2710143779 span.yiv2710143779EmailStyle19 {font-family:"Calibri", sans-serif;color:windowtext;}#yiv2710143779 .yiv2710143779MsoChpDefault {font-size:10.0pt;} _filtered {}#yiv2710143779 div.yiv2710143779WordSection1 {}-->
Well, I think it’s not configured. Here’s the config:
Volume Name: data
Type: Replicate
Volume ID: 06cac4b9-3d6a-410b-93e6-4f876bbfcdd1
Status: Started
Snapshot Count: 0
Number of Bricks: 1 x 3 = 3
Transport-type: tcp
Bricks:
Brick1: server1:/gluster/data/brick1
Brick2: server2:/gluster/data/brick1
Brick3: server3:/gluster/data/brick1
Options Reconfigured:
features.shard-block-size: 512MB
storage.owner-gid: 36
storage.owner-uid: 36
user.cifs: off
features.shard: on
cluster.shd-wait-qlength: 10000
cluster.shd-max-threads: 8
cluster.locking-scheme: granular
cluster.data-self-heal-algorithm: full
cluster.server-quorum-type: server
cluster.quorum-type: auto
cluster.eager-lock: enable
network.remote-dio: enable
performance.low-prio-threads: 32
performance.stat-prefetch: off
performance.io-cache: off
performance.read-ahead: off
performance.quick-read: off
transport.address-family: inet
performance.readdir-ahead: on
nfs.disable: on
From: Strahil Nikolov <hunter86_bg(a)yahoo.com>
Sent: Wednesday, April 6, 2022 1:42 PM
To: Mohamed Roushdy <mohamedroushdy(a)peopleintouch.com>; users(a)ovirt.org
Subject: [Ext.] Re: [ovirt-users] Re: Storage Design Question - GlusterFS
Can you check of the volume had 'cluster.lookup-optimize' enabled (on)?
Most probably it caused your problems .
For details check [1] [2]
Best Regards,
Strahil Nikolov
[1] https://access.redhat.com/solutions/5896761
[2] https://lists.ovirt.org/archives/list/users@ovirt.org/thread/BEYIM56H2Q3P...
On Wed, Apr 6, 2022 at 10:42,mohamedroushdy@peopleintouch.com
<mohamedroushdy(a)peopleintouch.com> wrote:
Thanks a lot for your answer. The thing is, we had data lose disaster last month, and that's why we've decided to deploy a cmmpletely new environment for taht pirpose, and let me tell you what happened. We are using Ovirt 4.1 with Gluster 3.8 for our production, and the cluster contains five hosts, three of them are storage servers. I've added two more hosts, and manually via CLI (as I couldn't do this via GUI) created a new brick on one of the newely added nodes,and expanded the volume with the parameter "replica = 4 as it was refused to expand without setting the replica count. The action was successful for both the engine vol, and the data vol, however, few minutes later we've found that the disk sizes (images) of the existing VMs got shrunk and lost all of the data, and we had to recover from backup.. We can't afford another downtime (another disaster I mean), that's why I'm so maticulous about what to do next, so, is there a good guide around for the architecure and sizing?
Thank you,
_______________________________________________
Users mailing list -- users(a)ovirt.org
To unsubscribe send an email to users-leave(a)ovirt.org
Privacy Statement: https://www.ovirt.org/privacy-policy.html
oVirt Code of Conduct: https://www.ovirt.org/community/about/community-guidelines/
List Archives:
https://lists.ovirt.org/archives/list/users@ovirt.org/message/G4LS3BEUHYF...
2 years, 11 months
oVirt 4.5.0 Beta is now available for testing
by Sandro Bonazzola
oVirt 4.5.0 Beta is now available for testing
The oVirt project is excited to announce the availability of oVirt 4.5.0
Beta release for testing , as of April 6th, 2022.
This release unleashes an altogether more powerful and flexible open source
virtualization solution that encompasses hundreds of individual changes and
a wide range of enhancements across the engine, storage, network, user
interface, and analytics on top of oVirt 4.4.
Important notes before you try it
Please note this is a Beta release.
The oVirt Project makes no guarantees as to its suitability or usefulness.
This pre-release must not be used in production, and it is not feature
complete.
In particular, please note that upgrades from 4.4 and future upgrades from
this beta to the final 4.5 release from this version are not supported.
Some of the features included in oVirt 4.5.0 Beta require content that will
be available in RHEL 8.6 and derivatives which are currently included in
CentOS Stream 8.
Known issues
After BETA compose finished a few issues have been found:
-
Cluster upgrade is not working, fix in progress:
https://github.com/oVirt/ovirt-ansible-collection/pull/474
-
Hosted Engine setup fails on Keycloak configuration, fix in progress:
https://github.com/oVirt/ovirt-ansible-collection/pull/475
An async beta refresh will be issued as soon as the fix will be ready.
Documentation
Be sure to follow instructions for oVirt 4.5!
-
If you want to try oVirt as quickly as possible, follow the instructions
on the Download <https://ovirt.org/download/> page.
-
For complete installation, administration, and usage instructions, see
the oVirt Documentation <https://ovirt.org/documentation/>.
-
For upgrading from a previous version, see the oVirt Upgrade Guide
<https://ovirt.org/documentation/upgrade_guide/>.
-
For a general overview of oVirt, see About oVirt
<https://ovirt.org/community/about.html>.
What’s new in oVirt 4.5.0 Beta Release?
This release is available now on x86_64 architecture for:
-
CentOS Stream 8
-
RHEL 8.6 Beta and derivatives
This release supports Hypervisor Hosts on x86_64:
-
oVirt Node NG (based on CentOS Stream 8)
-
CentOS Stream 8
-
RHEL 8.6 Beta and derivatives
Builds are also available for ppc64le and aarch64.
Experimental builds for CentOS Stream 9 are also provided for Hypervisor
Hosts.
Security fixes included in oVirt 4.5 compared to latest oVirt 4.4.10:
-
CVE-2021-33502 <https://access.redhat.com/security/cve/CVE-2021-33502>
[moderate] ovirt-web-ui: normalize-url: ReDoS for data URLs
-
CVE-2022-0207 <https://access.redhat.com/security/cve/CVE-2022-0207>
[low] vdsm: disclosure of sensitive values in log files
-
CVE-2022-24302 <https://access.redhat.com/security/cve/CVE-2022-24302>
[moderate] python-paramiko: Race condition in the write_private_key_file
function
-
CVE-2021-41182 <https://access.redhat.com/security/cve/CVE-2021-41182>
[moderate] jquery-ui: XSS in the altField option of the datepicker widget
[ovirt-engine]
-
CVE-2021-41183 <https://access.redhat.com/security/cve/CVE-2021-41183>
[moderate] jquery-ui: XSS in *Text options of the datepicker widget
[ovirt-engine]
-
CVE-2021-41184 <https://access.redhat.com/security/cve/CVE-2021-41184>
[moderate] jquery-ui: XSS in the 'of' option of the .position() util
[ovirt-engine]
-
CVE-2021-33502 <https://access.redhat.com/security/cve/CVE-2021-33502>
[moderate] ovirt-engine-ui-extensions: normalize-url: ReDoS for data URLs
-
CVE-2021-23425 <https://access.redhat.com/security/cve/CVE-2021-23425>
[moderate] ovirt-engine-ui-extensions: nodejs-trim-off-newlines: ReDoS via
string processing
-
CVE-2021-3807 <https://access.redhat.com/security/cve/CVE-2021-3807>
[moderate] ovirt-engine-ui-extensions: nodejs-ansi-regex: Regular
expression denial of service (ReDoS) matching ANSI escape codes
oVirt Node includes updated packages with fixes for:
-
CVE-2022-25235 <https://access.redhat.com/security/cve/CVE-2022-25235>
[important] expat: Malformed 2- and 3-byte UTF-8 sequences can lead to
arbitrary code execution
-
CVE-2022-25315 <https://access.redhat.com/security/cve/CVE-2022-25315>
[important] expat: Integer overflow in storeRawNames()
-
CVE-2022-25236 <https://access.redhat.com/security/cve/CVE-2022-25236>
[important] expat: Namespace-separator characters in "xmlns[:prefix]"
attribute values can lead to arbitrary code execution
-
CVE-2021-4083 <https://access.redhat.com/security/cve/CVE-2021-4083>
[important] kernel: fget: check that the fd still exists after getting a
ref to it
-
CVE-2022-0847 <https://access.redhat.com/security/cve/CVE-2022-0847>
[important] kernel: improper initialization of the "flags" member of the
new pipe_buffer
-
CVE-2022-0778 <https://access.redhat.com/security/cve/CVE-2022-0778>
[important] openssl: Infinite loop in BN_mod_sqrt() reachable when parsing
certificates
Some of the RFEs with high user impact are listed below:
-
1782077 [RFE] More Flexible RHV CPU Allocation Policy with HyperThreading
-
1922977 [RFE] VM shared disks are not part of the OVF_STORE
-
977778 [RFE] - Mechanism for converting disks for non-running VMS
-
1926625 [RFE] How to enable HTTP Strict Transport Security (HSTS) on
Apache HTTPD for Red Hat Virtualization Manager
-
2029830 [RFE] Hosted engine should accept OpenSCAP profile name instead
of bool
-
1933555 [RFE] Release python-ovirt-engine-sdk4 package on RHEL 9
-
1782056 [RFE] Integration of built-in ipsec feature in RHV/RHHI-V with
OVN
-
1849169 [RFE] add virtualCPUs/physicalCPUs ratio property to
evenly_distributed policy
-
1624015 [RFE] Expose Console Options and Console invocation via API
-
1998255 [RFE] [UI] Add search box for vNIC Profiles in RHVM WebUI on the
main vNIC profiles tab
-
1987121 [RFE] Support enabling nVidia Unified Memory on mdev vGPU
-
2058177 [RFE] Include the package nvme-cli on virtualization hosts
-
1927985 [RFE] Speed up export-to-OVA on NFS by aligning loopback device
offset
-
2021217 [RFE] Windows 2022 support
-
1975720 [RFE] Huge VMs require an additional migration parameter
-
1979277 [RFE] Migration - Apply automatic CPU and NUMA pinning based on
the migrated host
-
1986775 [RFE] introduce support for CentOS Stream 9 on oVirt releases
-
1990462 [RFE] Add user name and password to ELK integration
-
1838089 [RFE] Please allow placing domain in maintenance mode with
suspended VM
-
1913389 [CBT] [RFE] Provide VDSM with more information on scratch disks
Some of the Bugs with high user impact are listed below:
-
1986732 ovirt-ha services cannot set the LocalMaintenance mode in the
storage metadata and are in a restart loop
-
2035051 removing nfs-utils cause ovirt-engine removal due to cinderlib
dep tree
-
2054745 Setting SD to maintenance fails and turns the SD to inactive
mode as a result
-
1878724 vdsm-tool configure is failing with error ”dependency job for
libvirtd.service failed”
-
2024698 build failure in copr
-
2057958 oVirt Node 4.5 el9 iso doesn’t boot anymore
-
2043146 Expired /etc/pki/vdsm/libvirt-vnc/server-cert.pem certificate is
skipped during Enroll Certificate
-
2040402 unable to use --log-size=0 option
-
1932149 [blocked] Create hosted_storage with the correct storage_format
based on the Data-Center level of the backup
-
2066285 Copying from an Image domain to a Managed Block Storage domain
fails
-
1986485 otopi uses deprecated API platform.linux_distribution which has
been removed in Python 3.7 and later.
-
1986728 ovirt-log-collector uses deprecated API
platform.linux_distribution which has been removed in Python 3.7 and later.
-
2066628 [UI] UI exception when updating or enabling number of VFs via
the webadmin
-
1986731 ovirt-engine uses deprecated API platform.linux_distribution
which has been removed in Python 3.7 and later.
-
2024161 Penalizing score by 1000 due to cpu load is not canceled after
load decreasing to 0
-
2019869 Local disk is not bootable when the VM is imported from OVA
-
1857815 Copying HE-VM's disk to iSCSI storage volume, during deployment
of 4.4 HE takes too long.
-
2065152 Implicit CPU pinning for NUMA VMs destroyed because of invalid
CPU policy
-
2069658 Unable to deploy HE, couldn't resolve module/action 'firewalld'.
-
2070184 Hybrid Backup - Specifying disks for backup doesn’t work, backup
is created for all disks
oVirt Node has been updated, including:
-
oVirt 4.5.0 beta: https://www.ovirt.org/release/4.5.0/
-
GlusterFS 10.1: https://docs.gluster.org/en/main/release-notes/10.1/
-
RDO OpenStack Yoga pre-release:
https://releases.openstack.org/yoga/index.html
-
OVS 2.15
-
Ansible Core 2.12.3:
https://github.com/ansible/ansible/blob/stable-2.12/changelogs/CHANGELOG-...
-
CentOS Stream 8 latest updates
-
Full list of changes compared to oVirt Node 4.5.0 Alpha:
ovirt-node-ng-image-4.5.0_alpha
ovirt-node-ng-image-4.5.0_beta
NetworkManager 1.36.0-2.el8
1.37.2-1.el8
NetworkManager-config-server 1.36.0-2.el8
1.37.2-1.el8
NetworkManager-libnm 1.36.0-2.el8
1.37.2-1.el8
NetworkManager-ovs 1.36.0-2.el8
1.37.2-1.el8
NetworkManager-team 1.36.0-2.el8
1.37.2-1.el8
NetworkManager-tui 1.36.0-2.el8
1.37.2-1.el8
ansible 2.9.27-2.el8
ansible-collection-ansible-netcommon
2.2.0-3.2.el8
ansible-collection-ansible-posix
1.3.0-1.2.el8
ansible-collection-ansible-utils
2.3.0-2.2.el8
ansible-core
2.12.3-1.el8
audispd-plugins 3.0.7-2.el8
3.0.7-3.el8
audit 3.0.7-2.el8
3.0.7-3.el8
audit-libs 3.0.7-2.el8
3.0.7-3.el8
centos-gpg-keys 8-4.el8
8-6.el8
centos-release-gluster10
1.0-1.el8s
centos-release-ovirt45 8.6-1.el8
8.6-3.el8s
centos-stream-repos 8-4.el8
8-6.el8
cockpit-ovirt-dashboard 0.15.1-1.el8
0.16.0-1.el8
dmidecode 3.3-1.el8
3.3-4.el8
dnf 4.7.0-7.el8
4.7.0-8.el8
dnf-data 4.7.0-7.el8
4.7.0-8.el8
dnf-plugins-core 4.0.21-10.el8
4.0.21-11.el8
emacs-filesystem
26.1-7.el8
expat 2.2.5-5.el8
2.2.5-8.el8
gdisk 1.0.3-8.el8
1.0.3-9.el8
git
2.31.1-2.el8
git-core-doc
2.31.1-2.el8
glibc 2.28-189.el8
2.28-196.el8
glibc-common 2.28-189.el8
2.28-196.el8
glibc-langpack-en 2.28-189.el8
2.28-196.el8
gluster-ansible-cluster 1.0.1-2.el8
1.0-4.el8
gluster-ansible-features 1.0.5-6.el8
1.0.5-12.el8
gluster-ansible-infra 1.0.4-15.el8
1.0.4-20.el8
gluster-ansible-maintenance 1.0.1-10.el8
1.0.1-12.el8
gluster-ansible-repositories 1.0.1-3.el8
1.0.1-5.el8
gluster-ansible-roles 1.0.5-21.el8
1.0.5-26.el8
ipa-client 4.9.8-2.module_el8.6.0+1054+cdb51b28
4.9.8-6.module_el8.6.0+1104+ba556574
ipa-client-common 4.9.8-2.module_el8.6.0+1054+cdb51b28
4.9.8-6.module_el8.6.0+1104+ba556574
ipa-common 4.9.8-2.module_el8.6.0+1054+cdb51b28
4.9.8-6.module_el8.6.0+1104+ba556574
ipa-selinux 4.9.8-2.module_el8.6.0+1054+cdb51b28
4.9.8-6.module_el8.6.0+1104+ba556574
iproute 5.15.0-3.el8
5.15.0-4.el8
iproute-tc 5.15.0-3.el8
5.15.0-4.el8
iputils 20180629-9.el8
20180629-10.el8
kernel 4.18.0-365.el8
4.18.0-373.el8
kernel-core 4.18.0-365.el8
4.18.0-373.el8
kernel-modules 4.18.0-365.el8
4.18.0-373.el8
kernel-tools 4.18.0-365.el8
4.18.0-373.el8
kernel-tools-libs 4.18.0-365.el8
4.18.0-373.el8
libbabeltrace 1.5.4-3.el8
1.5.4-4.el8
libblkid 2.32.1-34.el8
2.32.1-35.el8
libdnf 0.63.0-7.el8
0.63.0-8.el8
libfdisk 2.32.1-34.el8
2.32.1-35.el8
libipa_hbac 2.6.1-2.el8
2.6.2-3.el8
libmount 2.32.1-34.el8
2.32.1-35.el8
libnfsidmap 2.3.3-50.el8
2.3.3-51.el8
libsmartcols 2.32.1-34.el8
2.32.1-35.el8
libsss_autofs 2.6.1-2.el8
2.6.2-3.el8
libsss_certmap 2.6.1-2.el8
2.6.2-3.el8
libsss_idmap 2.6.1-2.el8
2.6.2-3.el8
libsss_nss_idmap 2.6.1-2.el8
2.6.2-3.el8
libsss_simpleifp 2.6.1-2.el8
2.6.2-3.el8
libsss_sudo 2.6.1-2.el8
2.6.2-3.el8
libuuid 2.32.1-34.el8
2.32.1-35.el8
libwbclient 4.15.5-4.el8
4.15.5-5.el8
nfs-utils 2.3.3-50.el8
2.3.3-51.el8
nmstate 1.2.1-1.el8
1.3.0-0.alpha.20220310.el8
nmstate-plugin-ovsdb 1.2.1-1.el8
1.3.0-0.alpha.20220310.el8
openssl 1.1.1k-5.el8_5
1.1.1k-6.el8
openssl-libs 1.1.1k-5.el8_5
1.1.1k-6.el8
ovirt-ansible-collection 2.0.0-0.6.BETA.el8
2.0.1-1.el8
ovirt-host 4.5.0-1.el8
4.5.0-2.el8
ovirt-host-dependencies 4.5.0-1.el8
4.5.0-2.el8
ovirt-hosted-engine-setup 2.6.1-1.el8
2.6.3-1.el8
ovirt-imageio-client 2.4.1-1.el8
2.4.3-1.el8
ovirt-imageio-common 2.4.1-1.el8
2.4.3-1.el8
ovirt-imageio-daemon 2.4.1-1.el8
2.4.3-1.el8
ovirt-node-ng-image-update-placeholder 4.5.0-2.el8
4.5.0-3.el8
ovirt-node-ng-nodectl 4.4.1-1.el8
4.4.2-1.el8
ovirt-release-host-node 4.5.0-2.el8
4.5.0-3.el8
perl-Error
0.17025-2.el8
perl-Git
2.31.1-2.el8
perl-TermReadKey
2.37-7.el8
platform-python 3.6.8-45.el8
3.6.8-46.el8
procps-ng 3.3.15-6.el8
3.3.15-7.el8
python3-audit 3.0.7-2.el8
3.0.7-3.el8
python3-click 6.7-8.el8
python3-daemon 2.2.4-3.el8
2.2.4-3.2.el8
python3-dnf 4.7.0-7.el8
4.7.0-8.el8
python3-dnf-plugin-versionlock 4.0.21-10.el8
4.0.21-11.el8
python3-dnf-plugins-core 4.0.21-10.el8
4.0.21-11.el8
python3-docutils 0.14-12.module_el8.5.0+761+faacb0fb
0.14-12.2.el8
python3-hawkey 0.63.0-7.el8
0.63.0-8.el8
python3-ipaclient 4.9.8-2.module_el8.6.0+1054+cdb51b28
4.9.8-6.module_el8.6.0+1104+ba556574
python3-ipalib 4.9.8-2.module_el8.6.0+1054+cdb51b28
4.9.8-6.module_el8.6.0+1104+ba556574
python3-jmespath 0.9.0-11.el8
0.9.0-11.1.el8
python3-libdnf 0.63.0-7.el8
0.63.0-8.el8
python3-libipa_hbac 2.6.1-2.el8
2.6.2-3.el8
python3-libnmstate 1.2.1-1.el8
1.3.0-0.alpha.20220310.el8
python3-libs 3.6.8-45.el8
3.6.8-46.el8
python3-lockfile 0.12.2-1.el8
0.12.2-1.2.el8
python3-netaddr 0.7.19-8.el8
0.7.19-8.1.1.el8
python3-ovirt-engine-sdk4 4.5.0-1.el8
4.5.1-1.el8
python3-ovirt-node-ng-nodectl 4.4.1-1.el8
4.4.2-1.el8
python3-pbr 5.5.1-1.el8
5.5.1-7.2.el8
python3-perf 4.18.0-365.el8
4.18.0-373.el8
python3-pexpect 4.7.0-4.el8
4.7.0-4.3.el8
python3-ptyprocess 0.5.2-4.el8
0.5.2-4.2.el8
python3-pycurl 7.43.0.2-4.el8
7.43.0.2-4.1.el8
python3-sss 2.6.1-2.el8
2.6.2-3.el8
python3-sss-murmur 2.6.1-2.el8
2.6.2-3.el8
python3-sssdconfig 2.6.1-2.el8
2.6.2-3.el8
python3-syspurpose 1.28.25-1.el8
1.28.28-1.el8
python3-tenacity 6.2.0-1.el8
6.3.1-1.el8
python38
3.8.12-1.module_el8.6.0+929+89303463
python38-asn1crypto
1.2.0-3.module_el8.5.0+742+dbad1979
python38-babel
2.7.0-11.module_el8.6.0+929+89303463
python38-cffi
1.13.2-3.module_el8.5.0+742+dbad1979
python38-cryptography
2.8-3.module_el8.5.0+742+dbad1979
python38-idna
2.8-6.module_el8.5.0+742+dbad1979
python38-jinja2
2.10.3-5.module_el8.6.0+929+89303463
python38-jmespath
0.9.0-11.1.el8
python38-libs
3.8.12-1.module_el8.6.0+929+89303463
python38-markupsafe
1.1.1-6.module_el8.5.0+742+dbad1979
python38-netaddr
0.7.19-8.1.1.el8
python38-ovirt-engine-sdk4
4.5.1-1.el8
python38-ovirt-imageio-client
2.4.3-1.el8
python38-ovirt-imageio-common
2.4.3-1.el8
python38-passlib
1.7.0-5.1.el8
python38-pip-wheel
19.3.1-5.module_el8.6.0+960+f11a9b17
python38-ply
3.11-10.module_el8.5.0+742+dbad1979
python38-pycparser
2.19-3.module_el8.5.0+742+dbad1979
python38-pycurl
7.43.0.2-4.1.el8
python38-pytz
2019.3-3.module_el8.5.0+742+dbad1979
python38-pyyaml
5.4.1-1.module_el8.6.0+929+89303463
python38-resolvelib
0.5.4-5.el8
python38-setuptools
41.6.0-5.module_el8.6.0+929+89303463
python38-setuptools-wheel
41.6.0-5.module_el8.6.0+929+89303463
python38-six
1.12.0-10.module_el8.5.0+742+dbad1979
rsyslog 8.2102.0-7.el8
8.2102.0-8.el8
rsyslog-elasticsearch 8.2102.0-7.el8
8.2102.0-8.el8
rsyslog-mmjsonparse 8.2102.0-7.el8
8.2102.0-8.el8
rsyslog-mmnormalize 8.2102.0-7.el8
8.2102.0-8.el8
rsyslog-openssl 8.2102.0-7.el8
8.2102.0-8.el8
samba-client-libs 4.15.5-4.el8
4.15.5-5.el8
samba-common 4.15.5-4.el8
4.15.5-5.el8
samba-common-libs 4.15.5-4.el8
4.15.5-5.el8
selinux-policy 3.14.3-93.el8
3.14.3-95.el8
selinux-policy-targeted 3.14.3-93.el8
3.14.3-95.el8
sssd-client 2.6.1-2.el8
2.6.2-3.el8
sssd-common 2.6.1-2.el8
2.6.2-3.el8
sssd-common-pac 2.6.1-2.el8
2.6.2-3.el8
sssd-dbus 2.6.1-2.el8
2.6.2-3.el8
sssd-ipa 2.6.1-2.el8
2.6.2-3.el8
sssd-kcm 2.6.1-2.el8
2.6.2-3.el8
sssd-krb5-common 2.6.1-2.el8
2.6.2-3.el8
sssd-tools 2.6.1-2.el8
2.6.2-3.el8
tzdata 2021e-1.el8
2022a-1.el8
util-linux 2.32.1-34.el8
2.32.1-35.el8
vdsm 4.50.0.10-1.el8
4.50.0.11-1.el8
vdsm-api 4.50.0.10-1.el8
4.50.0.11-1.el8
vdsm-client 4.50.0.10-1.el8
4.50.0.11-1.el8
vdsm-common 4.50.0.10-1.el8
4.50.0.11-1.el8
vdsm-gluster 4.50.0.10-1.el8
4.50.0.11-1.el8
vdsm-http 4.50.0.10-1.el8
4.50.0.11-1.el8
vdsm-jsonrpc 4.50.0.10-1.el8
4.50.0.11-1.el8
vdsm-network 4.50.0.10-1.el8
4.50.0.11-1.el8
vdsm-python 4.50.0.10-1.el8
4.50.0.11-1.el8
vdsm-yajsonrpc 4.50.0.10-1.el8
4.50.0.11-1.el8
virt-install 3.2.0-3.el8
3.2.0-4.el8
virt-manager-common 3.2.0-3.el8
3.2.0-4.el8
yum 4.7.0-7.el8
4.7.0-8.el8
oVirt Appliance has been updated, including:
-
oVirt 4.5.0 beta: https://www.ovirt.org/release/4.5.0/
-
GlusterFS 10.1: https://docs.gluster.org/en/main/release-notes/10.1/
-
RDO OpenStack Yoga pre-release:
https://releases.openstack.org/yoga/index.html
-
OVS 2.15
-
Ansible Core 2.12.3:
https://github.com/ansible/ansible/blob/stable-2.12/changelogs/CHANGELOG-...
-
CentOS Stream 8 latest updates
-
Full list of changes compared to oVirt Appliance 4.5.0 Alpha:
ovirt-engine-appliance-manifest-rpm-el8.4.5.0_alpha
ovirt-engine-appliance-manifest-rpm-el8.4.5.0_beta
NetworkManager 1.36.0-2.el8
1.37.2-1.el8
NetworkManager-libnm 1.36.0-2.el8
1.37.2-1.el8
NetworkManager-team 1.36.0-2.el8
1.37.2-1.el8
NetworkManager-tui 1.36.0-2.el8
1.37.2-1.el8
ansible
2.9.27-2.el8
ansible-collection-ansible-netcommon
2.2.0-3.2.el8
ansible-collection-ansible-posix
1.3.0-1.2.el8
ansible-collection-ansible-utils
2.3.0-2.2.el8
ansible-core
2.12.3-1.el8
ansible-runner
2.1.3-1.el8
ansible-runner-service
1.0.7-1.el8
audit 3.0.7-2.el8
3.0.7-3.el8
audit-libs 3.0.7-2.el8
3.0.7-3.el8
centos-gpg-keys 8-4.el8
8-6.el8
centos-release-gluster10
1.0-1.el8s
centos-release-ovirt45 8.6-1.el8s
8.6-3.el8s
centos-stream-repos 8-4.el8
8-6.el8
dmidecode 3.3-1.el8
3.3-4.el8
dnf 4.7.0-7.el8
4.7.0-8.el8
dnf-data 4.7.0-7.el8
4.7.0-8.el8
dnf-plugins-core 4.0.21-10.el8
4.0.21-11.el8
expat 2.2.5-5.el8
2.2.5-8.el8
gdisk 1.0.3-8.el8
1.0.3-9.el8
git
2.31.1-2.el8
git-core-doc
2.31.1-2.el8
glibc 2.28-189.el8
2.28-196.el8
glibc-common 2.28-189.el8
2.28-196.el8
glibc-gconv-extra 2.28-189.el8
2.28-196.el8
glibc-langpack-en 2.28-189.el8
2.28-196.el8
iproute 5.15.0-3.el8
5.15.0-4.el8
iputils 20180629-9.el8
20180629-10.el8
java-1.8.0-openjdk-headless 1.8.0.322.b06-2.el8_5
1.8.0.322.b06-11.el8
java-11-openjdk-headless 11.0.14.0.9-2.el8_5
11.0.14.1.1-6.el8
kernel 4.18.0-365.el8
4.18.0-373.el8
kernel-core 4.18.0-365.el8
4.18.0-373.el8
kernel-modules 4.18.0-365.el8
4.18.0-373.el8
kernel-tools 4.18.0-365.el8
4.18.0-373.el8
kernel-tools-libs 4.18.0-365.el8
4.18.0-373.el8
libbabeltrace 1.5.4-3.el8
1.5.4-4.el8
libblkid 2.32.1-34.el8
2.32.1-35.el8
libdnf 0.63.0-7.el8
0.63.0-8.el8
libfdisk 2.32.1-34.el8
2.32.1-35.el8
libmount 2.32.1-34.el8
2.32.1-35.el8
libnfsidmap 2.3.3-50.el8
2.3.3-51.el8
libqb
1.0.3-12.el8
libsmartcols 2.32.1-34.el8
2.32.1-35.el8
libsss_certmap 2.6.1-2.el8
2.6.2-3.el8
libsss_idmap 2.6.1-2.el8
2.6.2-3.el8
libsss_nss_idmap 2.6.1-2.el8
2.6.2-3.el8
libuuid 2.32.1-34.el8
2.32.1-35.el8
nfs-utils 2.3.3-50.el8
2.3.3-51.el8
nodejs 10.23.1-1.module_el8.4.0+645+9ce14ba2
14.17.5-1.module_el8.6.0+939+4802ccb9
nodejs-docs
14.17.5-1.module_el8.6.0+939+4802ccb9
nodejs-full-i18n 10.23.1-1.module_el8.4.0+645+9ce14ba2
14.17.5-1.module_el8.6.0+939+4802ccb9
npm 6.14.10-1.10.23.1.1.module_el8.4.0+645+9ce14ba2
6.14.14-1.14.17.5.1.module_el8.6.0+939+4802ccb9
openssl 1.1.1k-5.el8_5
1.1.1k-6.el8
openssl-libs 1.1.1k-5.el8_5
1.1.1k-6.el8
openstack-java-cinder-client 3.2.9-1.el8
3.2.9-9.el8
openstack-java-cinder-model 3.2.9-1.el8
3.2.9-9.el8
openstack-java-client 3.2.9-1.el8
3.2.9-9.el8
openstack-java-glance-client 3.2.9-1.el8
3.2.9-9.el8
openstack-java-glance-model 3.2.9-1.el8
3.2.9-9.el8
openstack-java-keystone-client 3.2.9-1.el8
3.2.9-9.el8
openstack-java-keystone-model 3.2.9-1.el8
3.2.9-9.el8
openstack-java-quantum-client 3.2.9-1.el8
3.2.9-9.el8
openstack-java-quantum-model 3.2.9-1.el8
3.2.9-9.el8
openstack-java-resteasy-connector 3.2.9-1.el8
3.2.9-9.el8
ovirt-ansible-collection 2.0.0-0.6.BETA.el8
2.0.1-1.el8
ovirt-engine 4.5.0-1.el8
4.5.0.1-1.el8
ovirt-engine-backend 4.5.0-1.el8
4.5.0.1-1.el8
ovirt-engine-dbscripts 4.5.0-1.el8
4.5.0.1-1.el8
ovirt-engine-dwh 4.5.0-1.el8
4.5.2-1.el8
ovirt-engine-dwh-grafana-integration-setup 4.5.0-1.el8
4.5.2-1.el8
ovirt-engine-dwh-setup 4.5.0-1.el8
4.5.2-1.el8
ovirt-engine-keycloak-setup
15.0.2-1.el8
ovirt-engine-metrics 1.4.4-1.el8
1.6.0-1.el8
ovirt-engine-restapi 4.5.0-1.el8
4.5.0.1-1.el8
ovirt-engine-setup 4.5.0-1.el8
4.5.0.1-1.el8
ovirt-engine-setup-base 4.5.0-1.el8
4.5.0.1-1.el8
ovirt-engine-setup-plugin-cinderlib 4.5.0-1.el8
4.5.0.1-1.el8
ovirt-engine-setup-plugin-imageio 4.5.0-1.el8
4.5.0.1-1.el8
ovirt-engine-setup-plugin-ovirt-engine 4.5.0-1.el8
4.5.0.1-1.el8
ovirt-engine-setup-plugin-ovirt-engine-common 4.5.0-1.el8
4.5.0.1-1.el8
ovirt-engine-setup-plugin-vmconsole-proxy-helper 4.5.0-1.el8
4.5.0.1-1.el8
ovirt-engine-setup-plugin-websocket-proxy 4.5.0-1.el8
4.5.0.1-1.el8
ovirt-engine-tools 4.5.0-1.el8
4.5.0.1-1.el8
ovirt-engine-tools-backup 4.5.0-1.el8
4.5.0.1-1.el8
ovirt-engine-ui-extensions 1.3.1-1.el8
1.3.2-1.el8
ovirt-engine-vmconsole-proxy-helper 4.5.0-1.el8
4.5.0.1-1.el8
ovirt-engine-webadmin-portal 4.5.0-1.el8
4.5.0.1-1.el8
ovirt-engine-websocket-proxy 4.5.0-1.el8
4.5.0.1-1.el8
ovirt-imageio-client 2.4.1-1.el8
2.4.3-1.el8
ovirt-imageio-common 2.4.1-1.el8
2.4.3-1.el8
ovirt-imageio-daemon 2.4.1-1.el8
2.4.3-1.el8
ovirt-web-ui 1.8.0-1.el8
1.8.1-1.el8
perl-Error
0.17025-2.el8
perl-Git
2.31.1-2.el8
perl-TermReadKey
2.37-7.el8
platform-python 3.6.8-45.el8
3.6.8-46.el8
platform-python-devel 3.6.8-45.el8
3.6.8-46.el8
procps-ng 3.3.15-6.el8
3.3.15-7.el8
protobuf
3.11.2-2.el8
python3-aniso8601
8.1.0-1.el8
python3-ansible-runner
1.4.6-3.el8
python3-audit 3.0.7-2.el8
3.0.7-3.el8
python3-click
6.7-8.el8
python3-daemon 2.2.4-3.el8
2.2.4-3.2.el8
python3-dataclasses
0.8-1.el8
python3-dnf 4.7.0-7.el8
4.7.0-8.el8
python3-dnf-plugin-versionlock 4.0.21-10.el8
4.0.21-11.el8
python3-dnf-plugins-core 4.0.21-10.el8
4.0.21-11.el8
python3-docutils
0.14-12.module_el8.5.0+761+faacb0fb
0.14-12.2.el8
python3-flask
1.1.2-4.el8
python3-flask-restful
0.3.9-2.el8
python3-hawkey 0.63.0-7.el8
0.63.0-8.el8
python3-itsdangerous
0.24-14.el8
python3-jmespath 0.9.0-11.el8
0.9.0-11.1.el8
python3-libdnf 0.63.0-7.el8
0.63.0-8.el8
python3-libs 3.6.8-45.el8
3.6.8-46.el8
python3-lockfile 0.12.2-1.el8
0.12.2-1.2.el8
python3-mod_wsgi
4.6.4-4.el8
python3-netaddr 0.7.19-8.el8
0.7.19-8.1.1.el8
python3-notario
0.0.16-4.el8
python3-ntlm-auth
1.5.0-1.el8
python3-ovirt-engine-lib 4.5.0-1.el8
4.5.0.1-1.el8
python3-ovirt-engine-sdk4 4.5.0-1.el8
4.5.1-1.el8
python3-paramiko 2.7.2-2.el8
2.7.2-3.el8
python3-pbr 5.5.1-1.el8
5.5.1-7.2.el8
python3-perf 4.18.0-365.el8
4.18.0-373.el8
python3-pexpect
4.7.0-4.el8
python3-psycopg2 2.7.5-7.el8
2.8.6-3.el8
python3-ptyprocess
0.5.2-4.el8
python3-pycurl 7.43.0.2-4.el8
7.43.0.2-4.1.el8
python3-requests_ntlm
1.1.0-9.el8
python3-sqlalchemy 1.4.18-1.1.el8
1.4.31-1.el8
python3-syspurpose 1.28.25-1.el8
1.28.28-1.el8
python3-tenacity 6.2.0-1.el8
6.3.1-1.el8
python3-tkinter 3.6.8-45.el8
3.6.8-46.el8
python3-werkzeug
2.0.1-2.el8
python3-winrm
0.4.1-1.el8
python3-xmltodict
0.12.0-6.el8
python38
3.8.12-1.module_el8.6.0+929+89303463
python38-ansible-runner
2.1.3-1.el8
python38-asn1crypto
1.2.0-3.module_el8.5.0+742+dbad1979
python38-babel
2.7.0-11.module_el8.6.0+929+89303463
python38-cffi
1.13.2-3.module_el8.5.0+742+dbad1979
python38-cryptography
2.8-3.module_el8.5.0+742+dbad1979
python38-daemon
2.2.4-3.2.el8
python38-docutils
0.14-12.2.el8
python38-idna
2.8-6.module_el8.5.0+742+dbad1979
python38-jinja2
2.10.3-5.module_el8.6.0+929+89303463
python38-jmespath
0.9.0-11.1.el8
python38-libs
3.8.12-1.module_el8.6.0+929+89303463
python38-lockfile
0.12.2-1.2.el8
python38-markupsafe
1.1.1-6.module_el8.5.0+742+dbad1979
python38-netaddr
0.7.19-8.1.1.el8
python38-ovirt-engine-sdk4
4.5.1-1.el8
python38-ovirt-imageio-client
2.4.3-1.el8
python38-ovirt-imageio-common
2.4.3-1.el8
python38-passlib
1.7.0-5.1.el8
python38-pexpect
4.7.0-4.3.el8
python38-pip
19.3.1-5.module_el8.6.0+960+f11a9b17
python38-pip-wheel
19.3.1-5.module_el8.6.0+960+f11a9b17
python38-ply
3.11-10.module_el8.5.0+742+dbad1979
python38-ptyprocess
0.5.2-4.2.el8
python38-pycparser
2.19-3.module_el8.5.0+742+dbad1979
python38-pycurl
7.43.0.2-4.1.el8
python38-pytz
2019.3-3.module_el8.5.0+742+dbad1979
python38-pyyaml
5.4.1-1.module_el8.6.0+929+89303463
python38-resolvelib
0.5.4-5.el8
python38-setuptools
41.6.0-5.module_el8.6.0+929+89303463
python38-setuptools-wheel
41.6.0-5.module_el8.6.0+929+89303463
python38-six
1.12.0-10.module_el8.5.0+742+dbad1979
python38-tkinter
3.8.12-1.module_el8.6.0+929+89303463
rhel-system-roles 1.15.1-1.el8
1.16.1-1.el8
rng-tools
6.14-4.git.b2b7934e.el8
rsyslog 8.2102.0-7.el8
8.2102.0-8.el8
rsyslog-elasticsearch 8.2102.0-7.el8
8.2102.0-8.el8
rsyslog-gnutls
8.2102.0-8.el8
rsyslog-mmjsonparse 8.2102.0-7.el8
8.2102.0-8.el8
rsyslog-mmnormalize 8.2102.0-7.el8
8.2102.0-8.el8
selinux-policy 3.14.3-93.el8
3.14.3-95.el8
selinux-policy-targeted 3.14.3-93.el8
3.14.3-95.el8
sssd-client 2.6.1-2.el8
2.6.2-3.el8
sssd-common 2.6.1-2.el8
2.6.2-3.el8
sssd-kcm 2.6.1-2.el8
2.6.2-3.el8
tzdata 2021e-1.el8
2022a-1.el8
tzdata-java 2021e-1.el8
2022a-1.el8
usbguard
1.0.0-9.el8
usbguard-selinux
1.0.0-9.el8
util-linux 2.32.1-34.el8
2.32.1-35.el8
yum 4.7.0-7.el8
4.7.0-8.el8
yum-utils 4.0.21-10.el8
4.0.21-11.el8
See the release notes for installation instructions and a list of new
features and bugs fixed.
Additional resources:
-
Read more about the oVirt 4.5.0 release highlights:
https://www.ovirt.org/release/4.5.0/
-
Get more oVirt project updates on Twitter: https://twitter.com/ovirt
-
Check out the latest project news on the oVirt blog:
https://blogs.ovirt.org/
oVirt 4.5.0 Beta test day - April 7th 2022
If you're willing to help testing the release during the test days please
join the oVirt development mailing list at
https://lists.ovirt.org/archives/list/devel@ovirt.org/ and report your
feedback there.
Please join the trello board at
https://trello.com/b/3FZ7gdhM/ovirt-450-test-day for sharing what you're
going to test so others can focus on different areas not covered by your
test.
If you don't want to register to trello, please share on the oVirt
development mailing list and we'll add it to the board.
The board is publicly visible also to non-registered users.
Instructions for installing oVirt 4.5.0 Beta for testing have been added to
the release page
https://www.ovirt.org/release/4.5.0/.
Professional Services, Integrators and Backup vendors: please run a test
session against your additional services, integrated solutions, downstream
rebuilds, backup solution on the released beta release and report issues as
soon as possible.
If you're not listed here:
https://ovirt.org/community/user-stories/users-and-providers.html
consider adding your company there.
Do you want to contribute to getting ready for this release?
Read more about oVirt community at https://ovirt.org/community/ and join
the oVirt developers https://ovirt.org/develop/
--
Sandro Bonazzola
MANAGER, SOFTWARE ENGINEERING, EMEA R&D RHV
Red Hat EMEA <https://www.redhat.com/>
sbonazzo(a)redhat.com
<https://www.redhat.com/>
*Red Hat respects your work life balance. Therefore there is no need to
answer this email out of your office hours.*
2 years, 11 months
Storage Design Question - GlusterFS
by mohamedroushdy@peopleintouch.com
Hello,
we are designing a new production cluster, and I have to questsions about GlusterFS please:
1- this quote from the documentation os not clear to me "
Creating additional data domains in the same data center as the self-hosted engine storage domain is highly recommended. If you deploy the self-hosted engine in a data center with only one active data storage domain, and that storage domain is corrupted, you will not be able to add new storage domains or remove the corrupted storage domain; you will have to redeploy the self-hosted engine." Does this mean that we should have more than one "Data" domain? or here this paragraph is talking about sharing a single domain for both the hosted-engine and VMs?
2- the documentation mentioned that Replica 1 or Replica 3 are only supported, but is this only for the hosted-engine volume? or also for Data volumes? so the max is only 3? and waht if I wanted to expand capacity later?
Thank you,
2 years, 11 months
Enroll Host Certificate
by dlotarev@yahoo.com
Hi there! I have a problem to enroll host certificate.
The steps that I took:
1) Move host to maintenance mode (all VMs transferred to another host including HE VM)
2) Enroll certificate via web interface without errors
3) Exit from maintenance mode (transferred all VMs back including HE VM)
4) Restart ovirt-engine service
But my problem that after 6 hours i get message from oVirt engine notifier that my certificate expired soon.
I know that my oVirt installation is old (4.1.9), but what can i do with that? Maybe i missed something. I didn't reboot the host after renewing the certificate
Thank you for any advice!
2 years, 11 months
Synology NAS
by Keith Forman
Hi all
I just wanted to find out if anyone has had any success configuring 2x
Synology NAS devices in a High Availability setup as the storage for
their Ovirt environment?
So that if the active NAS goes down, the passive NAS takes over?
Regards
--
2 years, 11 months
ovirt hosted engine restore backup fails: remot host identifaction changed
by jeroen.gui@telenet.be
I have a backup file from our ovirt hosted engine. When I try to run "hosted-engine --deploy --restore-from-file=backup.bck" on the same machine with a fresh install of ovirt node 4.3 I get this error after some minutes:
[ ERROR ] fatal: [localhost -> ovirt.*mydomain.com*]: FAILED! => {"changed": false, "elapsed": 185, "msg": "timed out waiting for ping module test success: Failed to connect to the host via ssh: @@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@\r\n@ WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! @\r\n@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@\r\nIT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!\r\nSomeone could be eavesdropping on you right now (man-in-the-middle attack)!\r\nIt is also possible that a host key has just been changed.\r\nThe fingerprint for the ECDSA key sent by the remote host is\nSHA256:aer7BMZyKHhfzMXX4pzVULHN7OwSSNDrCuOyvdmG8sQ.\r\nPlease contact your system administrator.\r\nAdd correct host key in /dev/null to get rid of this message.\r\nOffending ED25519 key in /var/lib/sss/pubconf/known_hosts:6\r\nPassword authentication is disabled to avoid man-in-the-middle attacks.\r\nKeyboard-interactive authentication is disabled to
avoid man-in-the-middle attacks.\r\nPermission denied (publickey,gssapi-keyex,gssapi-with-mic,password)."}
I can't find anything in the docs about this problem. I already removed all the entries in /var/lib/sss/pubconf/known_hosts on my ovirt host machine. But that didn't change anything. Is their something wrong with the backup. At the moment I have 2 other hosts running my VM's but no ovirt manager.
2 years, 11 months
Failed to start service jboss.deployment.subunit."engine.ear"."webadmin.war".STRUCTURE Ovirt 4.4.10 Self-hosted engine
by wthomas85@gmail.com
I'm trying to deploy a new ovirt 4.4.10 self-hosted engine. Whenever I try to access the server via a web browser I get 404 - Not Found. In /var/log/ovirt-engine/server.log I see Failed to start service jboss.deployment.subunit."engine.ear"."webadmin.war".STRUCTURE due to a java.io.FileNotFoundException for /var/lib/ovirt-engine/jboss_runtime/tmp/vfs/deployment/deployment38ca8fb55a7d2674/gwt-servlet.jar-ab669e949f887030/gwt-servlet.jar. Inside /var/lib/ovirt-engine/jboss_runtime/tmp/vfs/deployment/deployment38ca8fb55a7d2674/, I do not have the gwt-servlet.jar-ab669e949f887030 dir. I can create it and copy gwt-servlet.jar to it and set the proper ownership and permissions, but then I am not sure how to restart jboss. I am not sure what is happening that would prevent the gwt-servlet.jar dir from being created inside the /var/lib/ovirt-engine/jboss_runtime/tmp/vfs/deployment/ dir. I can see bll.jar, 4 branding.jar dirs, docs.jar, enginesso.jar, scheduler.jar, services.jar, vdsbroker.ja
r, and welcome.jar dirs inside /var/lib/ovirt-engine/jboss_runtime/tmp/vfs/deployment/deployment38ca8fb55a7d2674 but no gwt-servlet.jar dir unless I make it myself.
2 years, 11 months
Python Unsupported Version Detection (ovirt Manager 4.4.10)
by michael.li@hactlsolutions.com
Hi,
We have installed oVirt manger in Centos stream 8 and running the security scanning by Tenable Nessus ID 148367
When I try to remove the python3.6. It will remove many dependency package related ovirt.
How can I fixed this vulnerability as below?
Python Unsupported Version Detection
Plugin Output:
The following Python installation is unsupported :
Path : /
Port : 35357
Installed version : 3.6.8
Latest version : 3.10
Support dates : 2021-12-23 (end of life)
Regards,
Michael Li
2 years, 11 months
Network filters in oVirt : zero-trust, IP and port filtering
by ravi k
Good people of the community,
Hope you are all doing well. We are exploring the network filters in oVirt to check if we can implement a zero-trust model at the network level. The intention is to have a filter which takes two parameters, IP and PORT. After that there will be a 'deny all' rule. We realized that none of the default network filters offer such a functionality and the only option is to write a custom filter.
Why don't we have such a filter in libvirt and thereby in oVirt? Someone would've already thought about such a use case. So I was thinking maybe network filters aren't meant to be used for implementing such functionalities like zero-trust?
Also what are some practical use cases of the default filters that are provided? I was able to understand and use the clean-traffic and clean-traffic-gateway.
Regards,
ravi
2 years, 11 months