ovirt-engine-appliance bad gpg key
by Nathanaël Blanchet
Hello,
I tried to reinstall HE from a backup but I can't download ovirt-
engine-appliance because of a GPG failure:
2024-02-28 17:26:32,642+0000 ERROR
otopi.ovirt_hosted_engine_setup.ansible_utils
ansible_utils._process_output:113 fatal: [localhost]: FAILED! =>
{"attempts": 10, "changed": false, "msg": "Failed to validate GPG
signature for ovirt-engine-appliance-4.5-20231201120252.1.el8.x86_64:
Public key for ovirt-engine-appliance-4.5-
20231201120252.1.el8.x86_64.rpm is not installed
Thank you to help me how to do because there is non -nogpgcheck option
as a workaround.
--
Nathanaël Blanchet
Administrateur Systèmes et Réseaux
Service Informatique et REseau (SIRE)
Département des systèmes d'information
227 avenue Professeur-Jean-Louis-Viala
34193 MONTPELLIER CEDEX 5
Tél. 33 (0)4 67 54 84 55
Fax 33 (0)4 67 54 84 14
blanchet(a)abes.fr
2 months, 1 week
virtio-scsi. SSD vs HDD
by duparchy@esrf.fr
HI,
Is there a way to set a disk as being SSD (which really is). Or, better, set an entire Storage Domain being SSD ?
This would prevent the schedule optimization to be automatically ON in Windows. and maybe enable other underlying optimization (TRIM ?)
2 months, 1 week
VM actual size is showing more than the virtual size
by rootpentester20@gmail.com
Hi team,
I am using Ovirt 4.4 and ISCSI as my storage domain. Some of my VMs have actual sizes showing more than virtual size and when we look inside the Vm the used space is much less than the actual size.
What could be an issue here and how can we resolve the same? Any help will be highly appreciated.
2 months, 1 week
hosted engine deployment fails with certificate error
by jerome lardeux
Hello
I,m trying to deploy a hosted engine in my lab, but i keep getting the same error
Every time, while trying to install evirt packages, i got this:
"ERROR otopi.ovirt_hosted_engine_setup.ansible_utils ansible_utils._process_output:113 fatal: [localhost -> 192.168.222.91]: FAILED! => {"changed": false, "msg": "Failed to download metadata for repo 'ovirt-45-upstream': Cannot prepare internal mirrorlist: Curl error (60): Peer certificate cannot be authenticated with given CA certificates for https://mirrorlist.ovirt.org/mirrorlist-ovirt-4.5-el8 [SSL certificate problem: self signed certificate in certificate chain]", "rc": 1, "results": []}"
it is an ovirt node 4.5
thank you for your help
2 months, 1 week
Locked VHDD - Help To Unlock/Delete
by Matthew J Black
Hi All,
I've gone and made a (bad) mistake.
When creating a new VM I accidentally selected the wrong Storage Domain for the VM's VHDD; a Storage Domain with less space available than the size of the new (thick provisioned) VHDD.
So now I want to delete that VHDD (and possibly the accompanying VM) and start over.
However, the VHDD is "Locked" and I can't figure out a way to delete it (or Unlock it, or delete the VM, or Unattach the VHDD, etc, etc, etc). I can't find anything online so hopefully someone here can help me out.
For the record I have full Admin access to *all* physical and virtual resources and I don't mind doing things via CLI (which I suspect is what's going to be required). I'm also familia with SQL (MariaDB, MS-SQL) but not Postgres, so if this is going to required manipulating the oVirt DB then so-be-it, I can do that as well.
Thanks in advance
Cheers
Dulux-Oz
2 months, 1 week
ovirt-45-upstream GPG Key Error
by Matthew J Black
Hi All,
We just picked up a GPG Key error when running `dnf install ovirt-engine-appliance` in preparation of a fresh oVirt v4.5.5 install on RL v9.3:
~~~
oVirt upstream for CentOS Stream 9 - oVirt 4.5 79 kB/s | 1.6 kB 00:00
Importing GPG key 0x24901D0C:
Userid : "oVirt <infra(a)ovirt.org>"
Fingerprint: 3C98 E81D B93D EA6D 54DE 690E 44E4 75CB 2490 1D0C
From : /etc/pki/rpm-gpg/RPM-GPG-KEY-oVirt-4.5
Is this ok [y/N]: y
Key imported successfully
Import of key(s) didn't help, wrong key(s)?
Public key for ovirt-engine-appliance-4.5-20231201120201.1.el9.x86_64.rpm is not installed. Failing package is: ovirt-engine-appliance-4.5-20231201120201.1.el9.x86_64
GPG Keys are configured as: file:///etc/pki/rpm-gpg/RPM-GPG-KEY-oVirt-4.5
~~~
An error? An issue with the repo definition? Can it safely be ignored (normally I'd say "No" but its from the oVirt Tam's own repo...)? Is the fingerprint above the correct one (and for that matter, where is the GPG Key's Fingerprint recorded on the oVirt Website so that we can check compliance ourselves)?
Anyway, thought I'd let people know (further details can be provide upon request)
Cheers
Dulux-Oz
2 months, 1 week
Using External CA
by Brent Saner
Hello all-
I am looking for a methodology to force oVirt to use certs/keys managed and deployed externally. These are automated by our various automation systems and are configured to match our security policies. Rogue and/or non-transparent and/or standalone CAs in our org do not comply with our security policy.
If I pre-deploy certificates and keys, does oVirt engine still need to be a CA?
Similarly, our encryption policy requires use of RSA 4096 or ED25519 for SSH. This, as I understand it, is also not compatible with the RSA 2048 generated/used by the engine's internal CA. Is SSHing to this new host using this key necessary, or can I externally enroll a new host into a cluster or - if not - use different SSH key via the engine (likely derived from the above/below-mentioned certs, which may be RSA 4096)?
Essentially, could I:
1.
Pre-provision certificates and keys in /etc/pki/ovirt-*/ with the appropriate filenames<https://www.ovirt.org/develop/release-management/features/infra/pki.html#...>
2.
Run engine-setup for the first time (using an answers file)?
Will engine-setup balk at the existence of those files, silently overwrite them, or use them?
Thanks in advance.
Brent Saner
SENIOR SYSTEMS ENGINEER
Follow us on LinkedIn!
brent.saner(a)netfire.com
855-696-3834 Ext. 110
www.netfire.com
2 months, 1 week
VM disk went un-allocated after storage migration
by rootpentester20@gmail.com
Hi Team,
I am using Ovirt 4.4, I added new storage LUN and did a storage migration of one VM disk which had 400GB of data. AFter migration, the disk became un-allocated in windows and now it's asking to re-initialize, I am afraid that data has been lost. Is there a way we can recover it back?
Thanks
2 months, 2 weeks
oVirt Node 4.5.5 web login
by Aditya Prasad
Hi
I am new to oVirt so apologies for ignorance.
I have installed oVirt Node 4.5.5 and how to login to Web-Interface (https://<IP>:9090) what is the default user and password.
2 months, 2 weeks
