Preparing to issue an oVirt release post Red Hat offboarding
by Sandro Bonazzola
Hi, Oracle fixed CVE-2024-7259 ( https://github.com/oVirt/ovirt-engine/security/advisories/GHSA-8xjm-j7fq-... ) in oVirt Engine and would be nice to issue an oVirt Engine release including the fix.
As the current master also includes support for new cluster level 4.8, VDSM needs to be released as well providing cluster level 4.8.
As you know, Red Hat offboarded the project and as such there are no more people officially assigned to the project from the company, despite a few of the historical developers still spend some of their free time helping out.
I can help building the packages and getting them out on my free time but I have no capacity for doing any testing or documentation updates or release notes related to this release.
Last oVirt Engine (4.5.6) was also released last February without any formal release announce.
Any volunteer to look into differences between current master and current stable release and see if anything else needs to be released other than ovirt-engine and vdsm?
Any volunteer to write release notes and update the website accordingly?
Any volunteer to run ovirt-system-test on https://github.com/oVirt/ovirt-engine/pull/970 and https://github.com/oVirt/vdsm/pull/422 as OST doesn't run anymore on GitHub?
Regards,
--
Sandro Bonazzola
1 month, 2 weeks
Installation of hosts on RHEL9
by Fabrice Bacchella
Hi,
I’m migrating to oVirst 4.7 and RHEL9.
The engine is up and running but I have problems testing adding new hosts.
It fails running the command:
sudo vdsm-tool ovn-config $IP $FQDN.
The message is
Traceback (most recent call last):
File "/usr/lib/python3.9/site-packages/vdsm/tool/ovn_config.py", line 118, in get_network
return networks[net_name]
KeyError: '$FQDN'
And indeed if I print net_caps in the method net_caps of ovn_config, it says:
{'networks': {} ...
I have been unable to understand where this information is coming from, what is missing in my host ? Are they the networks as configured in the engine ?
1 month, 2 weeks
HostedEngine VM doesn't start because in QXL video type mode
by Mario Indelicato
Hi,
I don't know how this happened but after an host reboot, the HostedEngine VM didn't started anymore.
The error in the log is:
"unsupported configuration: domain configuration does not support video model 'qxl'"
This is a single host test environment, OS is Rocky 9.4, so I know it's expected that QXL video is not supported anymore.
I tried editing the HostedEngine VM configuration via virsh, but when I start the VM it keeps trying to use QXL.
Also the VM conf in "/var/run/ovirt-hosted-engine-ha/vm.conf" says the video type is always QXL.
I tried dumping the XML configuration, edit the XML, undefined e re-define the VM from the updated XML, but still it uses QXL!!!
I'm resigned myself that the only solution is to re-deploy the HostedEngine from scratch.
Unless some of you can provide an alternative solution.
Many thanks in advance
Mario
1 month, 2 weeks
Updating hosts OS - conflicts with ansible-core
by ivohccarvalho@gmail.com
Hi.
I'm trying to update my hosts running RHEL 8.6 however I'm getting the following error:
[root@euovi01 yum.repos.d]# yum update
Updating Subscription Management repositories.
Last metadata expiration check: 0:18:58 ago on Mon 28 Oct 2024 04:06:04 PM WET.
Error:
Problem: package ovirt-hosted-engine-setup-2.6.6-1.el8.noarch conflicts with ansible-core >= 2.13 provided by ansible-core-2.16.3-2.el8.x86_64
- cannot install the best update candidate for package ansible-core-2.12.2-4.el8_6.x86_64
- problem with installed package ovirt-hosted-engine-setup-2.6.6-1.el8.noarch
(try to add '--allowerasing' to command line to replace conflicting packages or '--skip-broken' to skip uninstallable packages or '--nobest' to use not only best candidate packages)
What would be the best approach here?
1 month, 3 weeks
Call for participation: Virtualization and Cloud infrastructure Room at FOSDEM 2025
by Piotr Kliczewski
We are excited to announce that the call for proposals is now open for the
Virtualization and Cloud infrastructure devroom at the upcoming FOSDEM
2025, to be hosted on Sunday (Feb 2) 2025.
This devroom is a collaborative effort, and is organized by dedicated folks
from projects such as OpenStack, Xen Project, KubeVirt, QEMU, KVM, and
Foreman. We invite everyone involved in these fields to submit your
proposals by December 8th, 2024.
About the Devroom
The Virtualization & IaaS devroom will feature session topics such as open
source hypervisors or virtual machine managers such as Xen Project, KVM,
bhyve and VirtualBox as well as Infrastructure-as-a-Service projects such
as KubeVirt, Apache CloudStack, OpenStack, QEMU and OpenNebula.
This devroom will host presentations that focus on topics of shared
interest, such as KVM; libvirt; shared storage; virtualized networking;
cloud security; clustering and high availability; interfacing with multiple
hypervisors; hyperconverged deployments; and scaling across hundreds or
thousands of servers.
Presentations in this devroom will be aimed at developers working on these
platforms who are looking to collaborate and improve shared infrastructure
or solve common problems. We seek topics that encourage dialog between
projects and continued work post-FOSDEM.
Important Dates
Submission deadline: 8th December 2024
Acceptance notifications: 10th December 2024
Final schedule announcement: 15th December 2024
Devroom: 2nd February 2025
Submit Your Proposal
All submissions must be made via the Pretalx event planning site[1]. It is
a new submission system so you will need to create an account. If you
submitted proposals for FOSDEM in previous years, you won’t be able to use
your existing account.
During submission please make sure to select Virtualization and Cloud
infrastructure from the Track list. Please provide a meaningful abstract
and description of your proposed session.
Submission Guidelines
We expect more proposals than we can possibly accept, so it is vitally
important that you submit your proposal on or before the deadline. Late
submissions are unlikely to be considered.
All presentation slots are 30 minutes, with 20 minutes planned for
presentations, and 10 minutes for Q&A.
All presentations will be recorded and made available under Creative
Commons licenses. In the Submission notes field, please indicate that you
agree that your presentation will be licensed under the CC-By-SA-4.0 or
CC-By-4.0 license and that you agree to have your presentation recorded.
For example:
"If my presentation is accepted for FOSDEM, I hereby agree to license all
recordings, slides, and other associated materials under the Creative
Commons Attribution Share-Alike 4.0 International License.
Sincerely,
<NAME>."
In the Submission notes field, please also confirm that if your talk is
accepted, you will be able to attend FOSDEM and deliver your presentation.
We will not consider proposals from prospective speakers who are unsure
whether they will be able to secure funds for travel and lodging to attend
FOSDEM. (Sadly, we are not able to offer travel funding for prospective
speakers.)
Code of Conduct
Following the release of the updated code of conduct for FOSDEM[3], we'd
like to remind all speakers and attendees that all of the presentations and
discussions in our devroom are held under the guidelines set in the CoC and
we expect attendees, speakers, and volunteers to follow the CoC at all
times.
If you submit a proposal and it is accepted, you will be required to
confirm that you accept the FOSDEM CoC. If you have any questions about the
CoC or wish to have one of the devroom organizers review your presentation
slides or any other content for CoC compliance, please email us and we will
do our best to assist you.
Questions?
If you have any questions about this devroom, please send your questions to
our devroom mailing list. You can also subscribe to the list to receive
updates about important dates, session announcements, and to connect with
other attendees.
See you all at FOSDEM!
[1] https://pretalx.fosdem.org/fosdem-2025/cfp
[2] virtualization-devroom-manager at fosdem.org
[3] https://fosdem.org/2025/practical/conduct/
1 month, 3 weeks
IPv4 vs IPv6 vs dual-stack
by Diggy Mc
With respect to oVirt hosts and the hosted-engine, what are the pros and cons of using just IPv4, or just IPv6, or using both?
1 month, 3 weeks
Re: [External] : Lost console access to VMs after updating
by Simon Coter
Malcom,
here the solution to your actual issue:
Replace the following file with the attached one:
# /etc/httpd/conf.d/olvm45-security-fixes.conf
The final fix will be there with release ending with .23.
Restart ovirt-engine and httpd services:
# systemctl daemon-reload
# systemctl restart ovirt-engine
# systemctl restart httpd
Simon
On Oct 14, 2024, at 11:04 PM, Marcos Sungaila via Users <users(a)ovirt.org> wrote:
Hi Malcolm,
Select the Cluster line at Compute > Cluster and edit it.
Then check if in the Console left tab, the Enable VNC Encryption is set.
If enabled, you will need to disable it, and using the web UI, put a host into Maintenance mode, then click the Installation button > Reinstall.
Marcos
-----Original Message-----
From: malcolm.strydom(a)pacxa.com <malcolm.strydom(a)pacxa.com>
Sent: Monday, October 14, 2024 11:44 AM
To: users(a)ovirt.org
Subject: [External] : [ovirt-users] Lost console access to VMs after updating
We have a couple OLVM instances. Completely separate with their own managers (ovirt-engine). One is lab and one is prod.
I updated the lab engine from 4.5.4-1.0.31.el8 to 4.5.5-1.22.el8 and as soon as that was done and it rebooted I no longer can open VM consoles.
This was the update process followed:
https://docs.oracle.com/en/virtualization/oracle-linux-virtualization-man...
In troubleshooting I checked for the SASL db which appears to be /etc/libvirt/passwd.db
# grep sasldb_path /etc/sasl2/libvirt.conf
sasldb_path: /etc/libvirt/passwd.db
I can verify the vdsm user and realm is in there
# sasldblistusers2 -f /etc/libvirt/passwd.db
vdsm@ovirt: userPassword
We are using noVNC in the browser and when I click on a vm and then console it opens a new window and just has the "connecting" message. I switched to Native VNC client and downloaded the console.vv file which looks normal inside and when I try and open it with vnc viewer or remote-viewer etc. I get a window that connects, authenticates with the password found in the console.vv but then presented with a display that says "Guest has not initialized the display (yet)."
Thinking perhaps I need to update the KVM hosts too I proceeded with the update document listed above but even with the hosts updated nothing has changed.
If I tail /var/log/messages when opening a console connection all I see is this:
Oct 14 10:33:52 olvm2 kernel: sd 6:0:0:1: Warning! Received an indication that the LUN reached a thin provisioning soft threshold.
Oct 14 10:34:41 olvm2 saslpasswd2[55701]: error deleting entry from sasldb: BDB0073 DB_NOTFOUND: No matching key/data pair found Oct 14 10:34:41 olvm2 saslpasswd2[55701]: error deleting entry from sasldb: BDB0073 DB_NOTFOUND: No matching key/data pair found Oct 14 10:34:41 olvm2 saslpasswd2[55701]: error deleting entry from sasldb: BDB0073 DB_NOTFOUND: No matching key/data pair found Oct 14 10:34:41 olvm2 saslpasswd2[55701]: error deleting entry from sasldb: BDB0073 DB_NOTFOUND: No matching key/data pair found
I checked the production OLVM cluster which has not been updated and has a properly functioning vnc consoles and it produces the exact same errors shown above in the logs when opening a console. So I don't think that error is the cause if the issue although likely something that needs to be fixed.
If I check the VM guest log when opening a console I get nothing.
tail -f /var/log/libvirt/qemu/<vm_hostname>.log
Has anyone else run into this issue when updating? Any ideas on what more I can look at or troubleshoot?
Thanks
Malcolm
_______________________________________________
Users mailing list -- users(a)ovirt.org
To unsubscribe send an email to users-leave(a)ovirt.org Privacy Statement: https://urldefense.com/v3/__https://www.ovirt.org/privacy-policy.html__;!...
oVirt Code of Conduct: https://urldefense.com/v3/__https://www.ovirt.org/community/about/communi...
List Archives: https://urldefense.com/v3/__https://lists.ovirt.org/archives/list/users@o...
_______________________________________________
Users mailing list -- users(a)ovirt.org
To unsubscribe send an email to users-leave(a)ovirt.org
Privacy Statement: https://urldefense.com/v3/__https://www.ovirt.org/privacy-policy.html__;!...
oVirt Code of Conduct: https://urldefense.com/v3/__https://www.ovirt.org/community/about/communi...
List Archives: https://urldefense.com/v3/__https://lists.ovirt.org/archives/list/users@o...
1 month, 3 weeks
Add existing KVM host to oVirt
by gabrielappugliese@gmail.com
Hello,
I just installed oVirt as a standalone Manager with local databases and i deployed it on a VM thats inside the KVM host i want to add to it.
I get its not best practoce but its for a personal lab and i setup ssh to only allow root from the vm where oVirt is installed...anyways i attempted to add the host but its failing with this error
...
No package ovirt-hosted-engine-setup available
...
to make "ovirt-hosted-engine-setup" available im assuming i have to enable the repositories (Following this guide https://ovirt.org/download/install_on_rhel.html) to make it available but will doing all that allow me to add the kvm host which already has VMs deployed on it able to be managed by ovirt?
would this help me achieve what im trying todo?
https://ovirt.org/documentation/installing_ovirt_as_a_standalone_manager_...
Thanks in advance
1 month, 3 weeks
Re: [External] : open v-switch woes
by Tim Walsh
Yes, not only a desire to replicate the functionality of V-Switches on VM-Ware, but also to have an isolated test environment.
Create a virtual firewall (using Opensense or pfSense or something) and create VMs behind the firewall that can all talk to each other, but the firewall only passes out the application traffic (for example a web app on Nginx, or Remote Desktop to the private Environment).
Microsoft Hyper-V has "private" and "internal" switches that can be set up, (and thats the case on either a standalone or a cluster) so I figured oVirt must have something similar if not the same. these may or may not necessarily be tagged to a VLAN on a physical switch.
Thanks,
Tim
________________________________
From: Marcos Sungaila <marcos.sungaila(a)oracle.com>
Sent: Thursday, October 24, 2024 4:22 PM
To: Tim Walsh <mr_tim_walsh(a)hotmail.com>; users(a)ovirt.org <users(a)ovirt.org>
Subject: RE: [External] : [ovirt-users] open v-switch woes
Hey Tim,
Deploying an OVN-enabled cluster is not that trivial.
There are many caveats to make it run.
Is there any special use case you need to address to use OVS/OVN?
Marcos
From: Tim Walsh <mr_tim_walsh(a)hotmail.com>
Sent: Thursday, October 24, 2024 12:28 AM
To: users(a)ovirt.org
Subject: [External] : [ovirt-users] open v-switch woes
Hey community,
I'm trying to get open v-switch set up to work like it does in VMware. I am running Rocky Linux 8.9 and oVirt 4.5.5 (el8)
I got the repos but online feedback recommends installing openvswitch, and ovn-northd, ovn-central and ovn-host
I got openvswitch installed, but the other three: ovn-northd, ovn-central and ovn-host seemt o be elusive even after adding the CentOS-Advanced-Virtualization.repo and uipdating all "CentOS-" repost to point to "vault" instead of "mirrorlist"
Can someo0ne help me with what I'm missing? I've tried Bing CoPilot and ChatGPT LOL but they say add that repo and install those packages.
Thanks,
Tim
1 month, 3 weeks
Re: [External] : I did a fresh install but what is username and password?
by himalaje2022@gmail.com
Hello.
I did installed "ovirt-node-ng-installer-latest-el9.iso" and that is all.
I'm able to login now to Cockpit on port 9090 but only when I manualy set ip adress in form.
https://{ip_address}:9090/={ip_address}/system
There is no way to login normaly. When I just try https://{ip_address}:9090
then it want to login to Server: some-hostname-ovirt
and it doesn't work.
I should do reverse engineering to understand why it doesn't work but I don't have time for it at the moment.
In my configuration I need to use specific VLAN in network configuration. Maybe that is why there is no way to login.
I have never used Keycloak. I'm not new in Linux world but I'm a noob in RHEL world.
I would prefer to use Proxmox instead of trying to configure oVirt but it will not work with MegaRaid unless I will reflash the controller. Debian have huge problems with Praid CP400i and my old server still have some potential to be working as VM host.
Is there any tutorial what to do in oVirt? Maybe some oVirt for absolute dummies?
Is oVirt the kind of system that needs to be carved in marble?
I'm not able to do advanced stuff on it now. It will take me a lot of time to get to this point. At the moment I'm interested in creation basic server for VM to see will it work fine but it seams it is not so easy to start with.
1 month, 3 weeks
