Re: [Users] two node ovirt cluster with HA
Skickat från min iPhone 27 jan 2014 kl. 16:40 skrev Eli Mesika emes...@redhat.com: - Original Message - From: Tareq Alayan tala...@redhat.com To: Andrew Lau and...@andrewklau.com, Eli Mesika emes...@redhat.com Cc: d...@redhat.com, Karli Sjöberg karli.sjob...@slu.se, users@ovirt.org Sent: Monday, January 27, 2014 2:59:02 PM Subject: Re: [Users] two node ovirt cluster with HA Adding Eli. I just want to summarize the requirement as I understand it: In the case that a Host that is running HA VMs and have PM configured is turned off manually : 1) The non-responsive treatment should be modified to check Host status via PM agent 2) If Host is off , HA VMs will attempt to run on another host ASAP 3) The host status should be set to DOWN 4) No attempt to restart vdsm (soft fencing) or restart the host (hard fencing) will be done Is the above correct? if so , a RFE on that can be opened Spot on, that's exactly what I was trying to say! I'd very much like to see an RFE for that. /K On 01/27/2014 02:50 PM, Andrew Lau wrote: Hi, I think he was asking what if the power management device reported that the host was powered off. Then VMs should be brought back up as being off would essentially be the same as running a power cycle/reboot? Another example I'm seeing is what happens if the whole host loses power and it's power management device then becomes unavailable (ie. not reachable) then you're stuck in the case where it requires manual intervention. I would be interested to potentially see something like a timeout on those problematic VMs (eg. if nothing was read or write after x amount of time) then you could consider the host as offline? I guess then that adds a lot of risk.. On Mon, Jan 27, 2014 at 11:43 PM, Tareq Alayan tala...@redhat.com mailto:tala...@redhat.com wrote: Hi, Power management makes use of special *dedicated* hardware in order to restart hosts independently of host OS. The engine connects to a power management devices using a *dedicated* network IP address. The engine is capable of rebooting hosts that have entered a non-operational or non-responsive state, The abilities provided by all power management devices are: check status, start, stop and recycle (restart)... In the case of non-responsive host: all of the VMs that are currently running on that host can also become non-responsive. However, the non-responsive host keeps locking the VM hard disk for all VMs it is running. Attempting to start a VM on a different host and assign the second host write privileges for the virtual machine hard disk image can cause data corruption. Rebooting allows the engine to assume that the lock on a VM hard disk image has been released. The engine can know for sure that the problematic host has been rebooted via the power management device and then it can start a VM from the problematic host on another host without risking data corruption. Important note: A virtual machine that has been marked highly-available can not be safely started on a different host without the certainty that doing so will not cause data corruption. N-joy, --Tareq On 01/27/2014 02:05 PM, Dafna Ron wrote: I am adding Tareq for the Power Management implementation. Dafna On 01/27/2014 11:48 AM, Karli Sjöberg wrote: On Mon, 2014-01-27 at 11:11 +, Dafna Ron wrote: Powering off the host will never trigger vm migration. As far as engine is concerned it just lost connection to the host, but has no way of telling if the host is down or if a router is down. Can´t it at least check with power management if the Host status is down first? I mean, if the network is down there will be no response from either PM or Host. But if PM is up and can tell you that the Host is down, sounds rather clear cut to me... Seems to me the VM's would be restarted sooner if the flow was altered to first check with PM if it´s a network or Host issue, and if Host issue, immediately restart VM's on another Host, instead of waiting for a potentially problematic Host to boot up eventually. /K since vm's can continue running on the host even if engine has no access to it, starting the vm's on the second host can cause split brain and data corruption. The way that the engine knows what's going on is by sending heath check queries to the vdsm. Power management will try to reboot a host when the
Re: [Users] two node ovirt cluster with HA
- Original Message - From: Jaison peter urotr...@gmail.com To: Eli Mesika emes...@redhat.com Cc: users@ovirt.org, Tareq Alayan tala...@redhat.com Sent: Tuesday, January 28, 2014 7:33:35 AM Subject: Re: [Users] two node ovirt cluster with HA Thank you all for your valuable feedback . Can you please specify some of the supported fencing devices in ovirt ? For oVirt 3.4 : apc,apc_snmp,bladecenter,cisco_ucs,drac5,drac7,eps,hpblade,ilo,ilo2,ilo3,ilo4,ipmilan,rsa,rsb,wti On Mon, Jan 27, 2014 at 9:10 PM, Eli Mesika emes...@redhat.com wrote: - Original Message - From: Tareq Alayan tala...@redhat.com To: Andrew Lau and...@andrewklau.com, Eli Mesika emes...@redhat.com Cc: d...@redhat.com, Karli Sjöberg karli.sjob...@slu.se, users@ovirt.org Sent: Monday, January 27, 2014 2:59:02 PM Subject: Re: [Users] two node ovirt cluster with HA Adding Eli. I just want to summarize the requirement as I understand it: In the case that a Host that is running HA VMs and have PM configured is turned off manually : 1) The non-responsive treatment should be modified to check Host status via PM agent 2) If Host is off , HA VMs will attempt to run on another host ASAP 3) The host status should be set to DOWN 4) No attempt to restart vdsm (soft fencing) or restart the host (hard fencing) will be done Is the above correct? if so , a RFE on that can be opened On 01/27/2014 02:50 PM, Andrew Lau wrote: Hi, I think he was asking what if the power management device reported that the host was powered off. Then VMs should be brought back up as being off would essentially be the same as running a power cycle/reboot? Another example I'm seeing is what happens if the whole host loses power and it's power management device then becomes unavailable (ie. not reachable) then you're stuck in the case where it requires manual intervention. I would be interested to potentially see something like a timeout on those problematic VMs (eg. if nothing was read or write after x amount of time) then you could consider the host as offline? I guess then that adds a lot of risk.. On Mon, Jan 27, 2014 at 11:43 PM, Tareq Alayan tala...@redhat.com mailto:tala...@redhat.com wrote: Hi, Power management makes use of special *dedicated* hardware in order to restart hosts independently of host OS. The engine connects to a power management devices using a *dedicated* network IP address. The engine is capable of rebooting hosts that have entered a non-operational or non-responsive state, The abilities provided by all power management devices are: check status, start, stop and recycle (restart)... In the case of non-responsive host: all of the VMs that are currently running on that host can also become non-responsive. However, the non-responsive host keeps locking the VM hard disk for all VMs it is running. Attempting to start a VM on a different host and assign the second host write privileges for the virtual machine hard disk image can cause data corruption. Rebooting allows the engine to assume that the lock on a VM hard disk image has been released. The engine can know for sure that the problematic host has been rebooted via the power management device and then it can start a VM from the problematic host on another host without risking data corruption. Important note: A virtual machine that has been marked highly-available can not be safely started on a different host without the certainty that doing so will not cause data corruption. N-joy, --Tareq On 01/27/2014 02:05 PM, Dafna Ron wrote: I am adding Tareq for the Power Management implementation. Dafna On 01/27/2014 11:48 AM, Karli Sjöberg wrote: On Mon, 2014-01-27 at 11:11 +, Dafna Ron wrote: Powering off the host will never trigger vm migration. As far as engine is concerned it just lost connection to the host, but has no way of telling if the host is down or if a router is down. Can´t it at least check with power management if the Host status is down first? I mean, if the network is down there will be no response from either PM or Host. But if PM is up and can tell you that the Host is down, sounds rather clear cut to me... Seems to me the VM's would be restarted sooner if the flow was altered to first check with PM if it´s a
Re: [Users] two node ovirt cluster with HA
Thanks ! On Tue, Jan 28, 2014 at 2:04 PM, Eli Mesika emes...@redhat.com wrote: - Original Message - From: Jaison peter urotr...@gmail.com To: Eli Mesika emes...@redhat.com Cc: users@ovirt.org, Tareq Alayan tala...@redhat.com Sent: Tuesday, January 28, 2014 7:33:35 AM Subject: Re: [Users] two node ovirt cluster with HA Thank you all for your valuable feedback . Can you please specify some of the supported fencing devices in ovirt ? For oVirt 3.4 : apc,apc_snmp,bladecenter,cisco_ucs,drac5,drac7,eps,hpblade,ilo,ilo2,ilo3,ilo4,ipmilan,rsa,rsb,wti On Mon, Jan 27, 2014 at 9:10 PM, Eli Mesika emes...@redhat.com wrote: - Original Message - From: Tareq Alayan tala...@redhat.com To: Andrew Lau and...@andrewklau.com, Eli Mesika emes...@redhat.com Cc: d...@redhat.com, Karli Sjöberg karli.sjob...@slu.se, users@ovirt.org Sent: Monday, January 27, 2014 2:59:02 PM Subject: Re: [Users] two node ovirt cluster with HA Adding Eli. I just want to summarize the requirement as I understand it: In the case that a Host that is running HA VMs and have PM configured is turned off manually : 1) The non-responsive treatment should be modified to check Host status via PM agent 2) If Host is off , HA VMs will attempt to run on another host ASAP 3) The host status should be set to DOWN 4) No attempt to restart vdsm (soft fencing) or restart the host (hard fencing) will be done Is the above correct? if so , a RFE on that can be opened On 01/27/2014 02:50 PM, Andrew Lau wrote: Hi, I think he was asking what if the power management device reported that the host was powered off. Then VMs should be brought back up as being off would essentially be the same as running a power cycle/reboot? Another example I'm seeing is what happens if the whole host loses power and it's power management device then becomes unavailable (ie. not reachable) then you're stuck in the case where it requires manual intervention. I would be interested to potentially see something like a timeout on those problematic VMs (eg. if nothing was read or write after x amount of time) then you could consider the host as offline? I guess then that adds a lot of risk.. On Mon, Jan 27, 2014 at 11:43 PM, Tareq Alayan tala...@redhat.com mailto:tala...@redhat.com wrote: Hi, Power management makes use of special *dedicated* hardware in order to restart hosts independently of host OS. The engine connects to a power management devices using a *dedicated* network IP address. The engine is capable of rebooting hosts that have entered a non-operational or non-responsive state, The abilities provided by all power management devices are: check status, start, stop and recycle (restart)... In the case of non-responsive host: all of the VMs that are currently running on that host can also become non-responsive. However, the non-responsive host keeps locking the VM hard disk for all VMs it is running. Attempting to start a VM on a different host and assign the second host write privileges for the virtual machine hard disk image can cause data corruption. Rebooting allows the engine to assume that the lock on a VM hard disk image has been released. The engine can know for sure that the problematic host has been rebooted via the power management device and then it can start a VM from the problematic host on another host without risking data corruption. Important note: A virtual machine that has been marked highly-available can not be safely started on a different host without the certainty that doing so will not cause data corruption. N-joy, --Tareq On 01/27/2014 02:05 PM, Dafna Ron wrote: I am adding Tareq for the Power Management implementation. Dafna On 01/27/2014 11:48 AM, Karli Sjöberg wrote: On Mon, 2014-01-27 at 11:11 +, Dafna Ron wrote: Powering off the host will never trigger vm migration. As far as engine is concerned it just lost connection to the host, but has no way of telling if the host is down or if a router is down. Can´t it at least check with power management if the Host status is down first? I mean, if the network is down there will be no response from either PM or Host. But if PM is up and can tell you that the Host is
Re: [Users] Setup Networks: Unexpected exception
- Original Message - From: Frank Wall f...@moov.de To: users@ovirt.org Sent: Tuesday, January 28, 2014 1:31:41 AM Subject: [Users] Setup Networks: Unexpected exception Hi, still testing 3.4 and I'm unable to save a node's network configuration in webadmin: Error while executing action Setup Networks: Unexpected exception My configuration on the ovirt node: - manually added net2 bridge, attached to eth1 My configuration in ovirt-engine webadmin: - added new network net2 - noticed that ovirt failed to find this network on node - tried to add net2 to node with Setup Host Networks Error in engine.log [1]. Error in vdsm.log [2]. I think it could be related to BZ 1054195: https://bugzilla.redhat.com/show_bug.cgi?id=1054195 ([NetworkLabels] Attaching two labeled networks to a cluster result in failure of the latter) It shouldn't be related to this bug since you haven't provided any label to the network and neither configured a label on the host nic. But it would be nice to use the 'network labels' feature to ease network configuration on hosts. I'm not sure, because I only wanted to add *one* new network. Please note that this is a self-hosted engine setup. Just in case this makes a difference... ovirt-engine: ovirt-engine-3.4.0-0.5.beta1.el6.noarch ovirt node: vdsm-4.14.1-17.gitcf59a55.el6.x86_64 ovirt-hosted-engine-setup-1.2.0-0.0.master.20140117.gitfaf77a5.el6.noarch Thanks - Frank [1] 2014-01-27 23:41:08,813 INFO [org.ovirt.engine.core.vdsbroker.vdsbroker.SetupNetworksVDSCommand] (ajp--127.0.0.1-8702-10) [1 783e132] START, SetupNetworksVDSCommand(HostName = mgt03rn.example.com, HostId = a11f5383-b8f7-4bed-b1f3-3c7c46ecbe7a, for ce=false, checkConnectivity=true, conectivityTimeout=120, networks=[net2 {id=db98fa95-e922-4060-8d39-f9ac0cb2f16f, description=Jumphost Network, comment=null, subnet=null, gateway=null, type=null, vlanId=null, stp=false, dataCenterId=0002-0002-0002-0002-0002, mtu=0, vmNetwork=true, cl uster=NetworkCluster {id={clusterId=null, networkId=null}, status=OPERATIONAL, display=false, required=true, migration=false} , providedBy=null, label=null, qosId=null}], bonds=[], interfaces=[bond001 {id=c5b50ccf-5b74-4737-b7cd-980c9c8acf51, vdsId=a11f5383-b8f7-4bed-b1f3-3c7c46ecbe7a, name=bond001, macAddress=2c:44:fd:82:f5:5f, networkName=null, bondOptions=mode=802.3ad, bootProtocol=STATIC_IP, address=10.0.0.103, subnet=255.255.255.0, gateway=null, mtu=1500, bridged=false, type=0, networkImplementationDetails=null}, eth3 {id=7aaf1ac1-944a-4fe6-9d22-7dc41c6e275c, vdsId=a11f5383-b8f7-4bed-b1f3-3c7c46ecbe7a, name=eth3, macAddress=2C:44:FD:82:F5:5F, networkName=null, bondName=bond001, bootProtocol=NONE, address=, subnet=, gateway=null, mtu=1500, bridged=false, speed=1000, type=0, networkImplementationDetails=null}, eth4 {id=0c23834d-97ae-462a-9701-e89b3dc6a83a, vdsId=a11f5383-b8f7-4bed-b1f3-3c7c46ecbe7a, name=eth4, macAddress=D8:9D:67:22:B6:4C, networkName=null, bondName=bond001, bootProtocol=NONE, address=, subnet=, gateway=null, mtu=1500, bridged=false, speed=1000, type=0, networkImplementationDetails=null}, eth1 {id=54cb3cf6-c4bd-4907-bf28-9020022965d5, vdsId=a11f5383-b8f7-4bed-b1f3-3c7c46ecbe7a, name=eth1, macAddress=2c:44:fd:82:f5:5d, networkName=net2, bondName=null, bootProtocol=NONE, address=, subnet=, gateway=null, mtu=0, bridged=true, speed=1000, type=0, networkImplementationDetails=null}, eth2 {id=a53c448f-8061-460f-9c24-3081a2376de7, vdsId=a11f5383-b8f7-4bed-b1f3-3c7c46ecbe7a, name=eth2, macAddress=2c:44:fd:82:f5:5e, networkName=null, bondName=null, bootProtocol=NONE, address=, subnet=, gateway=null, mtu=1500, bridged=false, speed=1000, type=0, networkImplementationDetails=null}, eth5 {id=e9f15827-bb15-41d9-8ccc-49d812cde8a6, vdsId=a11f5383-b8f7-4bed-b1f3-3c7c46ecbe7a, name=eth5, macAddress=d8:9d:67:22:b6:4d, networkName=null, bondName=null, bootProtocol=DHCP, address=, subnet=, gateway=null, mtu=1500, bridged=false, speed=0, type=0, networkImplementationDetails=null}, eth0 {id=b4aea8bc-bdde-4e1e-a206-46ee853220c0, vdsId=a11f5383-b8f7-4bed-b1f3-3c7c46ecbe7a, name=eth0, macAddress=2c:44:fd:82:f5:5c, networkName=ovirtmgmt, bondName=null, bootProtocol=STATIC_IP, address=10.0.0.103, subnet=255.255.0.0, gateway=10.0.0.1, mtu=1500,
Re: [Users] Strange UI bug: tab VM unusable / oVirt 3.3.1+
On Dec 11, 2013, at 13:54 , Tomas Jelinek tjeli...@redhat.com wrote: While the question how did this happened I would like to start a parallel discussion about what to do when it happens next time (since this osinfo property files are editable we have to expect that some used OS will be deleted). It is certainly not correct to fail on NPE on FE... I can imagine following options to fix it: - fix only on FE by logic like: if the VM has assigned an OS which is not known, consider it is other (e.g. 0) - brings up the question what if the user deletes the 0 from the property file mapping to Other seems to be fine If you delete it 0 well, bad luck;) It also means that with this mapping if you open a running VM and try to save it it may likely fail as it tries to update various fields. Well, bad luck again. I'd address this in bug https://bugzilla.redhat.com/show_bug.cgi?id=1046809 Thanks, michal - fix this on engine side and do the magic (e.g. set the other if it is undefined) so the FE will never get an incorrectly assigned OS ID - have an undefined OS ID hardcoded in the engine which can not be deleted by the user and we can assign it when the actual does not exist - again, we can do this re-assignment on FE or engine - brings up the question what the ID should be and what if the user adds some custom item with this ID - do not transfer OS as ID and than some properties which maps to this IDs but real objects. So we could do instead of: AsyncDataProvider.hasSpiceSupport(getEntity().getOs(), getEntity().getVdsGroupCompatibilityVersion()) something like getEntity().getOs().hasSpiceSupport() So we could have an implementation of undefined os which could react appropriately. I like most the last option but at the same time it is quite a big refactoring... What do you think? - Original Message - From: Frank Wall f...@moov.de To: Roy Golan rgo...@redhat.com Cc: oVirt Users users@ovirt.org Sent: Wednesday, December 11, 2013 10:48:15 AM Subject: Re: [Users] Strange UI bug: tab VM unusable / oVirt 3.3.1+ On 2013-12-11 8:18, Roy Golan wrote: how was this engine installed, upgraded in time? nightly or with official releases? This is my complete release timeline for this host/engine: Sep 02 17:50:37 Installed: ovirt-engine-3.3.0-0.7.rc2.fc19.noarch Sep 13 22:09:41 Updated: ovirt-engine-3.3.0-3.fc19.noarch Sep 22 18:37:26 Updated: ovirt-engine-3.3.0-4.fc19.noarch Okt 27 21:29:08 Updated: ovirt-engine-3.3.0.1-1.fc19.noarch Dec 05 15:22:38 Updated: ovirt-engine-3.3.1-2.fc19.noarch Dez 08 21:31:55 Updated: ovirt-engine-3.3.2-0.1.beta1.fc19.noarch Regards - Frank ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] Storage unresponsive after sanlock
Hi Trey, Can you please also attach the engine/vdsm logs. Thanks, Maor On 01/27/2014 06:12 PM, Trey Dockendorf wrote: I setup my first oVirt instance since 3.0 a few days ago and it went very well, and I left the single host cluster running with 1 VM over the weekend. Today I come back and the primary data storage is marked as unresponsive. The logs are full of entries [1] that look very similar to a knowledge base article on RHEL's website [2]. This setup is using NFS over RDMA and so far the ib interfaces report no errors (via `ibcheckerrs -v LID 1`). Based on a doc on ovirt site [3] it seems this could be due to response problems. The storage system is a new purchase and not yet in production so if there's any advice on how to track down the cause that would be very helpful. Please let me know what additional information would be helpful as it's been about a year since I've been active in the oVirt community. Thanks - Trey [1]: http://pastebin.com/yRpSLKxJ [2]: https://access.redhat.com/site/solutions/400463 [3]: http://www.ovirt.org/SANLock ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] Spice-proxy questions
On Po, 2014-01-27 at 11:21 -0800, David Li wrote: Do I need to generate and install a x509 key pair for the squid proxy? How can I find out if the key pair has already been done? No. Spice channels are encrypted end-to-end so if you configure squid to forward the connections just to the display network range of the hosts, you anly allow connections that are encrypted anyway - so the TLS would be here quite redundant. Have you made sure that you have opened port 3128 in iptables? If the box doesn't use firewalld (which is the case on RHEL/CentOS, Fedora must be configured to disable firewalld but I presume that engine-setup does that), add the port definition among other opened ports in /etc/sysconfig/iptables. David PS: I'm mangling reply-to: header for a reason. Please don't hog my inbox, I can very well read your messages on-list. Thank you. - Original Message - From: Gianluca Cecchi gianluca.cec...@gmail.com To: David Li david...@sbcglobal.net Cc: users@ovirt.org users@ovirt.org; dj...@redhat.com dj...@redhat.com Sent: Friday, January 24, 2014 2:25 PM Subject: Re: [Users] Spice-proxy questions On Fri, Jan 24, 2014 at 8:45 PM, David Li wrote: David I set up the squid proxy on the same machine as ovirt-engine. I have this in squid.conf: --- acl localhost src 10.10.2.143/32 # for the machine running the browser #safe ports acl SSL_ports port 443 acl Safe_ports port 80 # http acl Safe_ports port 21 # ftp acl Safe_ports port 443 # https acl Safe_ports port 70 # gopher acl Safe_ports port 210 # wais acl Safe_ports port 1025-65535 # unregistered ports -- will this allow connections to spice port range (5900-6144 IIRC).??? acl Safe_ports port 280 # http-mgmt acl Safe_ports port 488 # gss-http acl Safe_ports port 591 # filemaker acl Safe_ports port 777 # multiling http # Squid normally listens to port 3128 http_port 3128 # Deny requests to certain unsafe ports http_access deny !Safe_ports - and set my SpiceProxyDefault=http://10.10.2.143:3128 So far, this is still not working. The Spice popup window still fails to connect to the graphics server and html5 browser window remains blank. Are there any log files that can be used to debug this? Thanks. There is something I don't understand or that you are doing incorrectly. From what you write it seems that: - your engine has ip 10.10.2.143 - From which ip do you run your browser? - Can this ip connect to engine on port 3128? Perhaps your engine setup already configured iptables (or firewalld) and it is blocking you? You can easily verify at runtime by putting this line on engine: iptables -I INPUT -s xxx.yyy.www.zzz -j ACCEPT where xxx.yyy.www.zzz is the ip of the client from where you run the browser so that you put this accept rule on top of INPUT chain and retry to connect to VM console - Which ip have the hosts where VMs are running? - Is engine (so your proxy in your configuration) capable to reach ip of your hosts on spice ports (5900-..)? ALso see my previous thread here: http://lists.ovirt.org/pipermail/users/2013-December/018554.html and the useful answers. I cannot test your config, because I have no control on my network and network admins only allow 80 and 443 so that they are already taken by engine itself and I can't test putting the proxy on engine itself... HIH anyway, Gianluca ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] Setup Networks: Unexpected exception
- Original Message - From: Assaf Muller amul...@redhat.com To: Dan Kenigsberg dan...@redhat.com Cc: Frank Wall f...@moov.de, Antoni Segura Puimedon asegu...@redhat.com, users@ovirt.org, Moti Asayag masa...@redhat.com Sent: Tuesday, January 28, 2014 9:58:12 AM Subject: Re: [Users] Setup Networks: Unexpected exception Looks related to the recently merged: http://gerrit.ovirt.org/#/c/23366/ Indeed! My bad in +1 it. The ifcfg.py implementation refers to self thinking it is the configurator but from the configwriter, which does not have access to the method. Assaf Muller, Cloud Networking Engineer Red Hat - Original Message - From: Moti Asayag masa...@redhat.com To: Frank Wall f...@moov.de, Antoni Segura Puimedon asegu...@redhat.com, Assaf Muller amul...@redhat.com Cc: users@ovirt.org Sent: Tuesday, January 28, 2014 10:41:46 AM Subject: Re: [Users] Setup Networks: Unexpected exception - Original Message - From: Frank Wall f...@moov.de To: users@ovirt.org Sent: Tuesday, January 28, 2014 1:31:41 AM Subject: [Users] Setup Networks: Unexpected exception Hi, still testing 3.4 and I'm unable to save a node's network configuration in webadmin: Error while executing action Setup Networks: Unexpected exception My configuration on the ovirt node: - manually added net2 bridge, attached to eth1 My configuration in ovirt-engine webadmin: - added new network net2 - noticed that ovirt failed to find this network on node - tried to add net2 to node with Setup Host Networks Error in engine.log [1]. Error in vdsm.log [2]. I think it could be related to BZ 1054195: https://bugzilla.redhat.com/show_bug.cgi?id=1054195 ([NetworkLabels] Attaching two labeled networks to a cluster result in failure of the latter) It shouldn't be related to this bug since you haven't provided any label to the network and neither configured a label on the host nic. But it would be nice to use the 'network labels' feature to ease network configuration on hosts. I'm not sure, because I only wanted to add *one* new network. Please note that this is a self-hosted engine setup. Just in case this makes a difference... ovirt-engine: ovirt-engine-3.4.0-0.5.beta1.el6.noarch ovirt node: vdsm-4.14.1-17.gitcf59a55.el6.x86_64 ovirt-hosted-engine-setup-1.2.0-0.0.master.20140117.gitfaf77a5.el6.noarch Thanks - Frank [1] 2014-01-27 23:41:08,813 INFO [org.ovirt.engine.core.vdsbroker.vdsbroker.SetupNetworksVDSCommand] (ajp--127.0.0.1-8702-10) [1 783e132] START, SetupNetworksVDSCommand(HostName = mgt03rn.example.com, HostId = a11f5383-b8f7-4bed-b1f3-3c7c46ecbe7a, for ce=false, checkConnectivity=true, conectivityTimeout=120, networks=[net2 {id=db98fa95-e922-4060-8d39-f9ac0cb2f16f, description=Jumphost Network, comment=null, subnet=null, gateway=null, type=null, vlanId=null, stp=false, dataCenterId=0002-0002-0002-0002-0002, mtu=0, vmNetwork=true, cl uster=NetworkCluster {id={clusterId=null, networkId=null}, status=OPERATIONAL, display=false, required=true, migration=false} , providedBy=null, label=null, qosId=null}], bonds=[], interfaces=[bond001 {id=c5b50ccf-5b74-4737-b7cd-980c9c8acf51, vdsId=a11f5383-b8f7-4bed-b1f3-3c7c46ecbe7a, name=bond001, macAddress=2c:44:fd:82:f5:5f, networkName=null, bondOptions=mode=802.3ad, bootProtocol=STATIC_IP, address=10.0.0.103, subnet=255.255.255.0, gateway=null, mtu=1500, bridged=false, type=0, networkImplementationDetails=null}, eth3 {id=7aaf1ac1-944a-4fe6-9d22-7dc41c6e275c, vdsId=a11f5383-b8f7-4bed-b1f3-3c7c46ecbe7a, name=eth3, macAddress=2C:44:FD:82:F5:5F, networkName=null, bondName=bond001, bootProtocol=NONE, address=, subnet=, gateway=null, mtu=1500, bridged=false, speed=1000, type=0, networkImplementationDetails=null}, eth4 {id=0c23834d-97ae-462a-9701-e89b3dc6a83a, vdsId=a11f5383-b8f7-4bed-b1f3-3c7c46ecbe7a, name=eth4, macAddress=D8:9D:67:22:B6:4C, networkName=null, bondName=bond001, bootProtocol=NONE, address=, subnet=, gateway=null, mtu=1500, bridged=false, speed=1000, type=0, networkImplementationDetails=null}, eth1 {id=54cb3cf6-c4bd-4907-bf28-9020022965d5, vdsId=a11f5383-b8f7-4bed-b1f3-3c7c46ecbe7a, name=eth1, macAddress=2c:44:fd:82:f5:5d, networkName=net2, bondName=null, bootProtocol=NONE, address=, subnet=, gateway=null, mtu=0, bridged=true, speed=1000, type=0, networkImplementationDetails=null}, eth2 {id=a53c448f-8061-460f-9c24-3081a2376de7, vdsId=a11f5383-b8f7-4bed-b1f3-3c7c46ecbe7a,
Re: [Users] Setup Networks: Unexpected exception
- Original Message - From: Antoni Segura Puimedon asegu...@redhat.com To: Assaf Muller amul...@redhat.com Cc: users@ovirt.org Sent: Tuesday, January 28, 2014 10:02:39 AM Subject: Re: [Users] Setup Networks: Unexpected exception - Original Message - From: Assaf Muller amul...@redhat.com To: Dan Kenigsberg dan...@redhat.com Cc: Frank Wall f...@moov.de, Antoni Segura Puimedon asegu...@redhat.com, users@ovirt.org, Moti Asayag masa...@redhat.com Sent: Tuesday, January 28, 2014 9:58:12 AM Subject: Re: [Users] Setup Networks: Unexpected exception Looks related to the recently merged: http://gerrit.ovirt.org/#/c/23366/ Indeed! My bad in +1 it. The ifcfg.py implementation refers to self thinking it is the configurator but from the configwriter, which does not have access to the method. Fix posted: http://gerrit.ovirt.org/#/c/23792/ Assaf Muller, Cloud Networking Engineer Red Hat - Original Message - From: Moti Asayag masa...@redhat.com To: Frank Wall f...@moov.de, Antoni Segura Puimedon asegu...@redhat.com, Assaf Muller amul...@redhat.com Cc: users@ovirt.org Sent: Tuesday, January 28, 2014 10:41:46 AM Subject: Re: [Users] Setup Networks: Unexpected exception - Original Message - From: Frank Wall f...@moov.de To: users@ovirt.org Sent: Tuesday, January 28, 2014 1:31:41 AM Subject: [Users] Setup Networks: Unexpected exception Hi, still testing 3.4 and I'm unable to save a node's network configuration in webadmin: Error while executing action Setup Networks: Unexpected exception My configuration on the ovirt node: - manually added net2 bridge, attached to eth1 My configuration in ovirt-engine webadmin: - added new network net2 - noticed that ovirt failed to find this network on node - tried to add net2 to node with Setup Host Networks Error in engine.log [1]. Error in vdsm.log [2]. I think it could be related to BZ 1054195: https://bugzilla.redhat.com/show_bug.cgi?id=1054195 ([NetworkLabels] Attaching two labeled networks to a cluster result in failure of the latter) It shouldn't be related to this bug since you haven't provided any label to the network and neither configured a label on the host nic. But it would be nice to use the 'network labels' feature to ease network configuration on hosts. I'm not sure, because I only wanted to add *one* new network. Please note that this is a self-hosted engine setup. Just in case this makes a difference... ovirt-engine: ovirt-engine-3.4.0-0.5.beta1.el6.noarch ovirt node: vdsm-4.14.1-17.gitcf59a55.el6.x86_64 ovirt-hosted-engine-setup-1.2.0-0.0.master.20140117.gitfaf77a5.el6.noarch Thanks - Frank [1] 2014-01-27 23:41:08,813 INFO [org.ovirt.engine.core.vdsbroker.vdsbroker.SetupNetworksVDSCommand] (ajp--127.0.0.1-8702-10) [1 783e132] START, SetupNetworksVDSCommand(HostName = mgt03rn.example.com, HostId = a11f5383-b8f7-4bed-b1f3-3c7c46ecbe7a, for ce=false, checkConnectivity=true, conectivityTimeout=120, networks=[net2 {id=db98fa95-e922-4060-8d39-f9ac0cb2f16f, description=Jumphost Network, comment=null, subnet=null, gateway=null, type=null, vlanId=null, stp=false, dataCenterId=0002-0002-0002-0002-0002, mtu=0, vmNetwork=true, cl uster=NetworkCluster {id={clusterId=null, networkId=null}, status=OPERATIONAL, display=false, required=true, migration=false} , providedBy=null, label=null, qosId=null}], bonds=[], interfaces=[bond001 {id=c5b50ccf-5b74-4737-b7cd-980c9c8acf51, vdsId=a11f5383-b8f7-4bed-b1f3-3c7c46ecbe7a, name=bond001, macAddress=2c:44:fd:82:f5:5f, networkName=null, bondOptions=mode=802.3ad, bootProtocol=STATIC_IP, address=10.0.0.103, subnet=255.255.255.0, gateway=null, mtu=1500, bridged=false, type=0, networkImplementationDetails=null}, eth3 {id=7aaf1ac1-944a-4fe6-9d22-7dc41c6e275c, vdsId=a11f5383-b8f7-4bed-b1f3-3c7c46ecbe7a, name=eth3, macAddress=2C:44:FD:82:F5:5F, networkName=null, bondName=bond001, bootProtocol=NONE, address=, subnet=, gateway=null, mtu=1500, bridged=false, speed=1000, type=0, networkImplementationDetails=null}, eth4 {id=0c23834d-97ae-462a-9701-e89b3dc6a83a, vdsId=a11f5383-b8f7-4bed-b1f3-3c7c46ecbe7a, name=eth4, macAddress=D8:9D:67:22:B6:4C, networkName=null, bondName=bond001, bootProtocol=NONE, address=, subnet=, gateway=null, mtu=1500, bridged=false, speed=1000, type=0, networkImplementationDetails=null}, eth1 {id=54cb3cf6-c4bd-4907-bf28-9020022965d5,
[Users] oVirt 3.4 - testing days report [read only disks]
Hi, I tested read only disks feature [1] and it worked fine. I used this configuration: 1) RHEL 6 VM rhel1 with shared disk mounted as RW, 2) RHEL 6 VM rhel2 with shared disk mounted as RO 3) Windows 7 VM win71 with shared disk mounted as RO rhel2 and win71 VMs sees all files on shared disk, but the disk was read only for them. Martin [1] http://www.ovirt.org/Features/Read_Only_Disk ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] Setup Networks: Unexpected exception
On Tue, Jan 28, 2014 at 04:15:56AM -0500, Antoni Segura Puimedon wrote: Looks related to the recently merged: http://gerrit.ovirt.org/#/c/23366/ Indeed! My bad in +1 it. The ifcfg.py implementation refers to self thinking it is the configurator but from the configwriter, which does not have access to the method. Fix posted: http://gerrit.ovirt.org/#/c/23792/ Frank, thanks for reporting this; Toni, thanks for the quick fix. It has been a very misearble verification on my part. I most probably verified the last revision of my patch only with the non-default iproute2 configurator. 23:41:09,871::fileSD::225::Storage.Misc.excCmd::(getReadDelay) SUCCESS: err = '0+1 records in\n0+1 records out\n512 bytes (512 B) copied, 0.000273105 s, 1.9 MB/s\n'; rc = 0 Thread-119::ERROR::2014-01-27 23:41:10,119::BindingXMLRPC::989::vds::(wrapper) unexpected error Traceback (most recent call last): File /usr/share/vdsm/BindingXMLRPC.py, line 973, in wrapper res = f(*args, **kwargs) File /usr/share/vdsm/BindingXMLRPC.py, line 402, in setupNetworks return api.setupNetworks(networks, bondings, options) File /usr/share/vdsm/API.py, line 1294, in setupNetworks supervdsm.getProxy().setupNetworks(networks, bondings, options) File /usr/share/vdsm/supervdsm.py, line 50, in __call__ return callMethod() File /usr/share/vdsm/supervdsm.py, line 48, in lambda **kwargs) File string, line 2, in setupNetworks File /usr/lib64/python2.6/multiprocessing/managers.py, line 740, in _callmethod raise convert_to_error(kind, result) AttributeError: 'ConfigWriter' object has no attribute 'getEthtoolOpts' Seems the failure on vdsm side. Adding Toni and Assaf. I do not understand one thing: the offensive code with getEthtoolOpts was merged only to the master branch. Frank, can you tell how did it reach your ovirt-3.4 installation? Did you pull a nightly build of Vdsm ? Regards, Dan. ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] Setup Networks: Unexpected exception
On Tue, Jan 28, 2014 at 09:47:11AM +, Dan Kenigsberg wrote: Frank, can you tell how did it reach your ovirt-3.4 installation? Did you pull a nightly build of Vdsm ? Indeed, I'm currently testing vdsm nightly along with oVirt-Engine 3.4 Beta: ovirt-engine: ovirt-engine-3.4.0-0.5.beta1.el6.noarch ovirt node: vdsm-4.14.1-17.gitcf59a55.el6.x86_64 ovirt-hosted-engine-setup-1.2.0-0.0.master.20140117.gitfaf77a5.el6.noarch Regards - Frank ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
[Users] Update request to support Classless IN-ADDR.ARPA delegation
Hi guys, I found a problem on installing server, which has address from small ip zone, less than a class C. engine-setup checks FQDN resolvability in ./plugins/ovirt-engine-setup/config/hostname.py. This program requests forward reverse query to DNS, and see if it comes back to host domain name. But it does not support RFC2317(Classless IN-ADDR.ARPA delegation) type domain, and fails on FQDN check. See following URLs for RFC2317 explanation. http://support.simpledns.com/KB/a146/how-to-sub-delegate-a-reverse-zone.aspx http://www.rfc-editor.org/rfc/rfc2317.txt I made patch to hostname.py to clear this problem. Please check following patch, and consider upgrading on the next release. --- hostname.py.org 2013-12-13 17:22:11.0 +0900 +++ hostname.py 2014-01-28 18:01:09.514791351 +0900 @@ -96,15 +96,16 @@ flags=re.VERBOSE, pattern=r ^ -(?Pquery\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}).in-addr.arpa. +(?Pquery[\w/.-]+) +\. \s+ \d+ \s+ IN \s+ -PTR +(?Ptype(PTR|CNAME)) \s+ -(?Panswer[\w.-]+) +(?Panswer[\w/.-]+) \. $ @@ -171,11 +172,32 @@ args=args, raiseOnError=False ) +ad=addr.split('.') +query={3}.{2}.{1}.{0}.in-addr.arpa.format(*ad) if rc == 0: for line in stdout: found = self._DIG_REVLOOKUP_RE.search(line) -if found: -names.add(found.group('answer')) +if not found: +continue +if query != found.group('query'): +continue +answer=found.group('answer') +if found.group('type') == 'CNAME': +self.logger.debug( +'{query} CNAME to: {answer}'.format( +query=query, +answer=answer, +) +) +query=answer +continue +self.logger.debug( +'{query} resolves to: {answer}'.format( +query=query, +answer=answer, +) +) +names.add(answer) return names def _validateFQDNresolvability(self, fqdn): Upgrading to a better patch is greatly appreciated. Thank you. Regards, Mark Kachi ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] Update request to support Classless IN-ADDR.ARPA delegation
Hi, - Original Message - From: MichelleJudie love.ca...@gmail.com To: users@ovirt.org Sent: Tuesday, January 28, 2014 12:32:03 PM Subject: [Users] Update request to support Classless IN-ADDR.ARPA delegation Hi guys, I found a problem on installing server, which has address from small ip zone, less than a class C. engine-setup checks FQDN resolvability in ./plugins/ovirt-engine-setup/config/hostname.py. This program requests forward reverse query to DNS, and see if it comes back to host domain name. Indeed. Note that you can just add a suitable entry to /etc/hosts in most cases. But it does not support RFC2317(Classless IN-ADDR.ARPA delegation) type domain, and fails on FQDN check. See following URLs for RFC2317 explanation. http://support.simpledns.com/KB/a146/how-to-sub-delegate-a-reverse-zone.aspx http://www.rfc-editor.org/rfc/rfc2317.txt I made patch to hostname.py to clear this problem. Please check following patch, and consider upgrading on the next release. --- hostname.py.org 2013-12-13 17:22:11.0 +0900 +++ hostname.py 2014-01-28 18:01:09.514791351 +0900 @@ -96,15 +96,16 @@ flags=re.VERBOSE, pattern=r ^ - (?Pquery\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}).in-addr.arpa. + (?Pquery[\w/.-]+) + \. \s+ \d+ \s+ IN \s+ - PTR + (?Ptype(PTR|CNAME)) \s+ - (?Panswer[\w.-]+) + (?Panswer[\w/.-]+) \. $ @@ -171,11 +172,32 @@ args=args, raiseOnError=False ) + ad=addr.split('.') + query={3}.{2}.{1}.{0}.in-addr.arpa.format(*ad) if rc == 0: for line in stdout: found = self._DIG_REVLOOKUP_RE.search(line) - if found: - names.add(found.group('answer')) + if not found: + continue + if query != found.group('query'): + continue + answer=found.group('answer') + if found.group('type') == 'CNAME': + self.logger.debug( + '{query} CNAME to: {answer}'.format( + query=query, + answer=answer, + ) + ) + query=answer + continue + self.logger.debug( + '{query} resolves to: {answer}'.format( + query=query, + answer=answer, + ) + ) + names.add(answer) return names def _validateFQDNresolvability(self, fqdn): Nice Job! Would you like to push it to gerrit yourself for review? See [1] and [2] for details. [1] http://www.ovirt.org/Develop [2] http://www.ovirt.org/Working_with_oVirt_Gerrit Thanks, and best regards, -- Didi ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] Setup Networks: Unexpected exception
On Tue, Jan 28, 2014 at 11:07:46AM +0100, Frank Wall wrote: On Tue, Jan 28, 2014 at 09:47:11AM +, Dan Kenigsberg wrote: Frank, can you tell how did it reach your ovirt-3.4 installation? Did you pull a nightly build of Vdsm ? Indeed, I'm currently testing vdsm nightly along with oVirt-Engine 3.4 Beta: ovirt-engine: ovirt-engine-3.4.0-0.5.beta1.el6.noarch ovirt node: vdsm-4.14.1-17.gitcf59a55.el6.x86_64 ovirt-hosted-engine-setup-1.2.0-0.0.master.20140117.gitfaf77a5.el6.noarch Thank you for that! ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] Vm's being paused
OK. You have several issues in the setup... so it's a bit tricky... you had a problem with your storage on the 14th of Jan and one of the hosts rebooted (if you have the vdsm log from that day than I can see what happened on vdsm side) in engine, I could see a problem with the export domain and this should not have cause a reboot. Can you tell me if you had a problem with the data domain as well or was it just the export domain? were you having any vm's exported/imported at that time? In any case - this is a bug. As for the vm's - if the vm's are no longer in migrating state than please restart ovirt-engine service (looks like a cache issue) 2014-01-14 09:38:08,590 INFO [org.ovirt.engine.core.vdsbroker.VdsUpdateRunTimeInfo] (DefaultQuartzScheduler_Worker-34) RefreshVmList vm id 2736197b-6dc3-4155-9a29-9306ca64881d status = Down on vds node03.blabla.com ignoring it in the re fresh until migration is done if they are in migrating state - there should have been a timeout a long time ago. can you please run 'vdsClient -s 0 list table' and 'virsh -r list' on both all hosts? Last thing is that your ISO domain seems to be having issues as well. This should not effect the host status but if any of the vm's were booted from an iso or have an iso attached in the boot sequence this will explain the migration issue. Thanks, Dafna On 01/28/2014 09:28 AM, Neil wrote: Hi guys, Sorry for the very late reply, I've been out of the office doing installations. Unfortunately due to the time delay, my oldest logs are only as far back as the attached. I've only grep'd for Thread-286029 in the vdsm log. The engine.log I'm not sure what info is required, so the full log is attached. Please shout if you need any info or further details. Thank you very much. Regards. Neil Wilson. On Fri, Jan 24, 2014 at 10:55 AM, Meital Bourvine mbour...@redhat.com wrote: Could you please attach the engine.log from the same time? thanks! - Original Message - From: Neil nwilson...@gmail.com To: d...@redhat.com Cc: users users@ovirt.org Sent: Wednesday, January 22, 2014 1:14:25 PM Subject: Re: [Users] Vm's being paused Hi Dafna, Thanks. The vdsm logs are quite large, so I've only attached the logs for the pause of the VM called Babbage on the 19th of Jan. As for snapshots, Babbage has one from June 2013 and Reports has two from June and Oct 2013. I'm using FC storage, with 11 VM's and 3 nodes/hosts, 9 of the 11 VM's have thin provisioned disks. Please shout if you'd like any further info or logs. Thank you. Regards. Neil Wilson. On Wed, Jan 22, 2014 at 10:58 AM, Dafna Ron d...@redhat.com wrote: Hi Neil, Can you please attach the vdsm logs? also, as for the vm's, do they have any snapshots? from your suggestion to allocate more luns, are you using iscsi or FC? Thanks, Dafna On 01/22/2014 08:45 AM, Neil wrote: Thanks for the replies guys, Looking at my two VM's that have paused so far through the oVirt GUI the following sizes show under Disks. VM Reports: Virtual Size 35GB, Actual Size 41GB Looking on the Centos OS side, Disk size is 33G and used is 12G with 19G available (40%) usage. VM Babbage: Virtual Size is 40GB, Actual Size 53GB On the Server 2003 OS side, Disk size is 39.9Gb and used is 16.3G, so under 50% usage. Do you see any issues with the above stats? Then my main Datacenter storage is as follows... Size: 6887 GB Available: 1948 GB Used: 4939 GB Allocated: 1196 GB Over Allocation: 61% Could there be a problem here? I can allocate additional LUNS if you feel the space isn't correctly allocated. Apologies for going on about this, but I'm really concerned that something isn't right and I might have a serious problem if an important machine locks up. Thank you and much appreciated. Regards. Neil Wilson. On Tue, Jan 21, 2014 at 7:02 PM, Dafna Ron d...@redhat.com wrote: the storage space is configured in percentages and not physical size. so if 20G is less than 10% (default config) of your storage it will pause the vms regardless of how much GB you still have. this is configurable though so you can change it to less than 10% if you like. to answer the second question, vm's will not pause on ENOSpace error if they run out of space internally but only if the external storage cannot be consumed. so only if you run out of space in the storage and and not if vm runs out of space in its on fs. On 01/21/2014 09:51 AM, Neil wrote: Hi Dan, Sorry, attached is engine.log I've taken out the two sections where each of the VM's were paused. Does the error VM babbage has paused due to no Storage space error mean the main storage domain has run out of storage, or that the VM has run out? Both VM's appear to have been running on node01 when they were paused. My vdsm versions are all... vdsm-cli-4.13.0-11.el6.noarch vdsm-python-cpopen-4.13.0-11.el6.x86_64 vdsm-xmlrpc-4.13.0-11.el6.noarch vdsm-4.13.0-11.el6.x86_64 vdsm-python-4.13.0-11.el6.x86_64 I currently
[Users] oVirt 3.4 test day summary
Hi all, thanks for joining us to the first 3.4 test day. We all struggled with network bandwidth, and hopefully next testday will be better, so join us again for the next oVirt test day. Here are some statistics: Total of bugs opened: 108 Broken into areas: Unnamed 16 gluster 1 infra 21 integration 8 network 10 node 2 sla 3 storage 24 ux 1 virt 22 Top 3 reporters: amure...@redhat.com20 emes...@redhat.com7 oourf...@redhat.com7 IRC participants, top 3: 115 sbonazzo 100 didi 81 OaaSvc Special contributors: Andrew Lau (and...@andrewklau.com) for his work and reports on hosted engine. For their special contribution, Andrew Lau and OaaSvc will get special T-shirts of the oVirt community (please contact me offline). Thanks again and see you soon in the 2nd test day! Doron ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] oVirt 3.4 test day summary
The sooner we know the date for the upcoming 2nd test day, the sooner we can clear that day of meetings. Assaf Muller, Cloud Networking Engineer Red Hat - Original Message - From: Doron Fediuck dfedi...@redhat.com To: users users@ovirt.org, bo...@ovirt.org Sent: Tuesday, January 28, 2014 1:44:40 PM Subject: [Users] oVirt 3.4 test day summary Hi all, thanks for joining us to the first 3.4 test day. We all struggled with network bandwidth, and hopefully next testday will be better, so join us again for the next oVirt test day. Here are some statistics: Total of bugs opened: 108 Broken into areas: Unnamed 16 gluster 1 infra 21 integration 8 network 10 node 2 sla 3 storage 24 ux 1 virt 22 Top 3 reporters: amure...@redhat.com20 emes...@redhat.com7 oourf...@redhat.com7 IRC participants, top 3: 115 sbonazzo 100 didi 81 OaaSvc Special contributors: Andrew Lau (and...@andrewklau.com) for his work and reports on hosted engine. For their special contribution, Andrew Lau and OaaSvc will get special T-shirts of the oVirt community (please contact me offline). Thanks again and see you soon in the 2nd test day! Doron ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] oVirt 3.4 test day summary
Hi Assaf. As you can see in [1], the 2nd day is planned for 2014-02-19. Since we're monitoring things in the weekly sync, we may change the date if needed, and notify everyone. Doron [1] http://www.ovirt.org/OVirt_3.4_release-management#Timeline - Original Message - From: Assaf Muller amul...@redhat.com To: Doron Fediuck dfedi...@redhat.com Cc: users users@ovirt.org, bo...@ovirt.org Sent: Tuesday, January 28, 2014 2:00:39 PM Subject: Re: [Users] oVirt 3.4 test day summary The sooner we know the date for the upcoming 2nd test day, the sooner we can clear that day of meetings. Assaf Muller, Cloud Networking Engineer Red Hat - Original Message - From: Doron Fediuck dfedi...@redhat.com To: users users@ovirt.org, bo...@ovirt.org Sent: Tuesday, January 28, 2014 1:44:40 PM Subject: [Users] oVirt 3.4 test day summary Hi all, thanks for joining us to the first 3.4 test day. We all struggled with network bandwidth, and hopefully next testday will be better, so join us again for the next oVirt test day. Here are some statistics: Total of bugs opened: 108 Broken into areas: Unnamed 16 gluster 1 infra 21 integration 8 network 10 node 2 sla 3 storage 24 ux 1 virt 22 Top 3 reporters: amure...@redhat.com20 emes...@redhat.com7 oourf...@redhat.com7 IRC participants, top 3: 115 sbonazzo 100 didi 81 OaaSvc Special contributors: Andrew Lau (and...@andrewklau.com) for his work and reports on hosted engine. For their special contribution, Andrew Lau and OaaSvc will get special T-shirts of the oVirt community (please contact me offline). Thanks again and see you soon in the 2nd test day! Doron ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
[Users] oVirt 3.4 testing day report [configuration of max allowed downtime during live migration]
Hi, During test day I've tested Martik Betak's feature Enable configuration of maximum allowed downtime during live migration per guest ( https://bugzilla.redhat.com/1055434 https://bugzilla.redhat.com/show_bug.cgi?id=1055434). For the tests I've created new VMs and tested the following: _Webadmin_ - All newly added components to the Virtual Machine popup under the Host tab appear correctly and well aligned with the rest of the components - OK - The checkbox component of Use custom migration downtime works correctly and grays out the input box when unchecked - OK - The data entered in the input box is validated for input that does not consist of numbers, empty value, a number not in the range or a negative number - OK - The valid number entered in the input is updated correctly in the database - OK - An existing migration downtime value is displayed correctly when editing the VM - OK - When unchecking the checkbox and saving the property in the database is nullified - OK _ __REST API_ - The valid number entered in the migration_downtime field is updated correctly in the database - OK - An existing migration downtime value is displayed correctly when GETting the VM - OK - A non existing migration downtime value of a VM is displayed as -1 - OK - Updating an existing migration downtime of a VM to -1 nullifies the value in the database - OK _VDSM_ The correct migration downtime value set in the VM is transferred correctly to vmMigrate command downtime parameter - OK Summary: All the tests went ok without failures but during the test I've found a bug regardless to the tests scope, when I tested a change of the migration downtime in the cluster level it turns our that the value set for the cluster custom properties via webadmin is not updated in the database, a bug was opened for that issue - https://bugzilla.redhat.com/1058703 https://bugzilla.redhat.com/show_bug.cgi?id=1058703 ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] Update request to support Classless IN-ADDR.ARPA delegation
Hi David, Thank you for your quick reply. I'll try to push it to gerrit. Thank you. Best Regards, Mark Kachi 2014-01-28 Yedidyah Bar David d...@redhat.com: Hi, From: MichelleJudie love.ca...@gmail.com To: users@ovirt.org Sent: Tuesday, January 28, 2014 12:32:03 PM Subject: [Users] Update request to support Classless IN-ADDR.ARPA delegation Hi guys, I found a problem on installing server, which has address from small ip zone, less than a class C. engine-setup checks FQDN resolvability in ./plugins/ovirt-engine-setup/config/hostname.py. This program requests forward reverse query to DNS, and see if it comes back to host domain name. Indeed. Note that you can just add a suitable entry to /etc/hosts in most cases. But it does not support RFC2317(Classless IN-ADDR.ARPA delegation) type domain, and fails on FQDN check. See following URLs for RFC2317 explanation. http://support.simpledns.com/KB/a146/how-to-sub-delegate-a-reverse-zone.aspx http://www.rfc-editor.org/rfc/rfc2317.txt I made patch to hostname.py to clear this problem. Please check following patch, and consider upgrading on the next release. --- hostname.py.org 2013-12-13 17:22:11.0 +0900 +++ hostname.py 2014-01-28 18:01:09.514791351 +0900 @@ -96,15 +96,16 @@ flags=re.VERBOSE, pattern=r ^ -(?Pquery\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}).in-addr.arpa. +(?Pquery[\w/.-]+) +\. \s+ \d+ \s+ IN \s+ -PTR +(?Ptype(PTR|CNAME)) \s+ -(?Panswer[\w.-]+) +(?Panswer[\w/.-]+) \. $ @@ -171,11 +172,32 @@ args=args, raiseOnError=False ) +ad=addr.split('.') +query={3}.{2}.{1}.{0}.in-addr.arpa.format(*ad) if rc == 0: for line in stdout: found = self._DIG_REVLOOKUP_RE.search(line) -if found: -names.add(found.group('answer')) +if not found: +continue +if query != found.group('query'): +continue +answer=found.group('answer') +if found.group('type') == 'CNAME': +self.logger.debug( +'{query} CNAME to: {answer}'.format( +query=query, +answer=answer, +) +) +query=answer +continue +self.logger.debug( +'{query} resolves to: {answer}'.format( +query=query, +answer=answer, +) +) +names.add(answer) return names def _validateFQDNresolvability(self, fqdn): Nice Job! Would you like to push it to gerrit yourself for review? See [1] and [2] for details. [1] http://www.ovirt.org/Develop [2] http://www.ovirt.org/Working_with_oVirt_Gerrit Thanks, and best regards, -- Didi ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] Multi-Host Network Configuration
On Mon, Jan 27, 2014 at 7:20 PM, Dan Kenigsberg dan...@redhat.com wrote: On Mon, Jan 27, 2014 at 04:23:47PM +0100, Piotr Kliczewski wrote: Hi, I played with multi host network config and used two boxes to test it. One el6 (vdsm) and f19 (engine, vdsm). During the test I noticed that vdsm on f19 haven't joined to cluster (known issue). I performed modification of vlan and MTU. Both boxes were modified but I noticed that by accident I modified ovirtmgmt network and I noticed that I lost connectivity. el6 box recovered whereas f19 haven't. I think it was because the vdsm was local to the engine. That may be so. To make sure, I'd love to see your vdsm.log and supervdsm.log of the time of the modification. I do not have the logs anymore but will try to recreate it and send you the logs. I spend sometime trying to recover network configuration. Thanks for testing this feature. ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
[Users] ovirt-3.3.3 release postponed due to blockers
Hi, oVirt 3.3.3 release need to be postponed. A recent release of python-cpopen-1.3 is breaking dependency resolution on EL6 and F19 so vdsm can't be installed and node can't be composed. A recent change in vdsm-python-cpopen added the needed conflict against python-cpopen and removed Provides / Obsoletes on python-cpopen. But no new releases of python-cpopen is available fixing the correct Provides / Obsoletes pair. oVirt 3.3.2 / stable is affected too. Please fix Bug 1056470 - python-cpopen-1.3 is not providing obsoleted package. Bug 1056464 - python-cpopen-1.3 is not providing obsoleted package. ASAP. -- Sandro Bonazzola Better technology. Faster innovation. Powered by community collaboration. See how it works at redhat.com ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] two node ovirt cluster with HA
On Tue, Jan 28, 2014 at 12:02 AM, Dafna Ron d...@redhat.com wrote: Andrew, Once this discussion is finished, and If what you like done is not in the current implementation can you please open a bug/feature request for it? Sure - I've opened a RFE here based on the current discussions https://bugzilla.redhat.com/show_bug.cgi?id=1058737 but I'm not sure which category it should be under. Cheers, Andrew. ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] Users Digest, Vol 28, Issue 299
Fnaly I fix my problem with following step 1) Check your maximum shared memory : $ |sudo cat /proc/sys/kernel/shmmax 33554432| You need to increase the shared memory to fix this. 2) To fix it temporarily, run this command : $ |sudo sysctl -w kernel.shmmax=134217728| 3) To fix this permenantly, set this in your configuration: $ |sudo vi /etc/sysctl.conf kernel.shmmax = 134217728 | On 28-01-2014 15:02, users-requ...@ovirt.org wrote: Send Users mailing list submissions to users@ovirt.org To subscribe or unsubscribe via the World Wide Web, visit http://lists.ovirt.org/mailman/listinfo/users or, via email, send a message with subject or body 'help' to users-requ...@ovirt.org You can reach the person managing the list at users-ow...@ovirt.org When replying, please edit your Subject line so it is more specific than Re: Contents of Users digest... Today's Topics: 1. Re: Multi-Host Network Configuration (Piotr Kliczewski) 2. ovirt-3.3.3 release postponed due to blockers (Sandro Bonazzola) 3. Re: Vm's being paused (Neil) -- Message: 1 Date: Tue, 28 Jan 2014 13:28:43 +0100 From: Piotr Kliczewski piotr.kliczew...@gmail.com To: Dan Kenigsberg dan...@redhat.com Cc: users@ovirt.org Subject: Re: [Users] Multi-Host Network Configuration Message-ID: caku0_rnogobq35prwuac+rvxeoqd00z3cjdaf4nezg+3bsz...@mail.gmail.com Content-Type: text/plain; charset=ISO-8859-1 On Mon, Jan 27, 2014 at 7:20 PM, Dan Kenigsberg dan...@redhat.com wrote: On Mon, Jan 27, 2014 at 04:23:47PM +0100, Piotr Kliczewski wrote: Hi, I played with multi host network config and used two boxes to test it. One el6 (vdsm) and f19 (engine, vdsm). During the test I noticed that vdsm on f19 haven't joined to cluster (known issue). I performed modification of vlan and MTU. Both boxes were modified but I noticed that by accident I modified ovirtmgmt network and I noticed that I lost connectivity. el6 box recovered whereas f19 haven't. I think it was because the vdsm was local to the engine. That may be so. To make sure, I'd love to see your vdsm.log and supervdsm.log of the time of the modification. I do not have the logs anymore but will try to recreate it and send you the logs. I spend sometime trying to recover network configuration. Thanks for testing this feature. -- Message: 2 Date: Tue, 28 Jan 2014 13:55:43 +0100 From: Sandro Bonazzola sbona...@redhat.com To: arch a...@ovirt.org, engine-devel engine-de...@ovirt.org, Users@ovirt.org Users@ovirt.org,VDSM Project Development vdsm-de...@lists.fedorahosted.org Subject: [Users] ovirt-3.3.3 release postponed due to blockers Message-ID: 52e7a8cf.6040...@redhat.com Content-Type: text/plain; charset=ISO-8859-15 Hi, oVirt 3.3.3 release need to be postponed. A recent release of python-cpopen-1.3 is breaking dependency resolution on EL6 and F19 so vdsm can't be installed and node can't be composed. A recent change in vdsm-python-cpopen added the needed conflict against python-cpopen and removed Provides / Obsoletes on python-cpopen. But no new releases of python-cpopen is available fixing the correct Provides / Obsoletes pair. oVirt 3.3.2 / stable is affected too. Please fix Bug 1056470 - python-cpopen-1.3 is not providing obsoleted package. Bug 1056464 - python-cpopen-1.3 is not providing obsoleted package. ASAP. ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] ovirt-3.3.3 release postponed due to blockers
Hi, I do not see any Bug tracking this behaviour on EL6. Is there none needed or will this not get resolved for EL6? Is there a known workaround? I already asked this in a different BZ, I think: Is the full blown host node install for EL6 also affected? I did not get any reply to this question. I hope someone can share some light on this. Thank you. Am 28.01.2014 13:55, schrieb Sandro Bonazzola: Hi, oVirt 3.3.3 release need to be postponed. A recent release of python-cpopen-1.3 is breaking dependency resolution on EL6 and F19 so vdsm can't be installed and node can't be composed. A recent change in vdsm-python-cpopen added the needed conflict against python-cpopen and removed Provides / Obsoletes on python-cpopen. But no new releases of python-cpopen is available fixing the correct Provides / Obsoletes pair. oVirt 3.3.2 / stable is affected too. Please fix Bug 1056470 - python-cpopen-1.3 is not providing obsoleted package. Bug 1056464 - python-cpopen-1.3 is not providing obsoleted package. ASAP. -- Mit freundlichen Grüßen / Regards Sven Kieske Systemadministrator Mittwald CM Service GmbH Co. KG Königsberger Straße 6 32339 Espelkamp T: +49-5772-293-100 F: +49-5772-293-333 https://www.mittwald.de Geschäftsführer: Robert Meyer St.Nr.: 331/5721/1033, USt-IdNr.: DE814773217, HRA 6640, AG Bad Oeynhausen Komplementärin: Robert Meyer Verwaltungs GmbH, HRB 13260, AG Bad Oeynhausen ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] ovirt-3.3.3 release postponed due to blockers
Il 28/01/2014 14:26, Sven Kieske ha scritto: Hi, I do not see any Bug tracking this behaviour on EL6. Is there none needed or will this not get resolved for EL6? the rpm built for Fedora is the same build for EPEL so I think it may be enough having the one opened against Fedora. Is there a known workaround? You can manually install vdsm-python-cpopen, this will introduce conflict on python-cpopen which shouldn't be pulled in anymore I already asked this in a different BZ, I think: Is the full blown host node install for EL6 also affected? Fabian? I did not get any reply to this question. I hope someone can share some light on this. Thank you. Am 28.01.2014 13:55, schrieb Sandro Bonazzola: Hi, oVirt 3.3.3 release need to be postponed. A recent release of python-cpopen-1.3 is breaking dependency resolution on EL6 and F19 so vdsm can't be installed and node can't be composed. A recent change in vdsm-python-cpopen added the needed conflict against python-cpopen and removed Provides / Obsoletes on python-cpopen. But no new releases of python-cpopen is available fixing the correct Provides / Obsoletes pair. oVirt 3.3.2 / stable is affected too. Please fix Bug 1056470 - python-cpopen-1.3 is not providing obsoleted package. Bug 1056464 - python-cpopen-1.3 is not providing obsoleted package. ASAP. -- Sandro Bonazzola Better technology. Faster innovation. Powered by community collaboration. See how it works at redhat.com ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] ovirt-3.3.3 release postponed due to blockers
Am Dienstag, den 28.01.2014, 14:44 +0100 schrieb Sandro Bonazzola: I already asked this in a different BZ, I think: Is the full blown host node install for EL6 also affected? Fabian? Hey, well - I ran into this while building Node, but you should also run into this when installing e.g. vdsm on a full blown host. You can probably workaround this problem on a full blown host by excluding some packages. But that's just a workaround and doesn't solve the problem. - fabian signature.asc Description: This is a digitally signed message part ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] ovirt-3.3.3 release postponed due to blockers
Hi, and thanks for your fast reply. I know this does not fix it, but I'm preparing to deploy new hosts with EL6.5 and therefore need a workaround. I will try this out, thank you! Am 28.01.2014 14:48, schrieb Fabian Deutsch: Am Dienstag, den 28.01.2014, 14:44 +0100 schrieb Sandro Bonazzola: I already asked this in a different BZ, I think: Is the full blown host node install for EL6 also affected? Fabian? Hey, well - I ran into this while building Node, but you should also run into this when installing e.g. vdsm on a full blown host. You can probably workaround this problem on a full blown host by excluding some packages. But that's just a workaround and doesn't solve the problem. - fabian -- Mit freundlichen Grüßen / Regards Sven Kieske Systemadministrator Mittwald CM Service GmbH Co. KG Königsberger Straße 6 32339 Espelkamp T: +49-5772-293-100 F: +49-5772-293-333 https://www.mittwald.de Geschäftsführer: Robert Meyer St.Nr.: 331/5721/1033, USt-IdNr.: DE814773217, HRA 6640, AG Bad Oeynhausen Komplementärin: Robert Meyer Verwaltungs GmbH, HRB 13260, AG Bad Oeynhausen ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
[Users] Shouldn't ovirt-hosted-engine-setup depend on vdsm-gluster?
Hi, I'm not sure if this needs a BZ, but when ovirt-hosted-engine-setup is installed it seems to include all the gluster packages (glusterfs etc. w/o glusterfs-server) but misses out on vdsm-gluster was that deliberate? I ended up installing this manually afterwards. When the host gets added to the ovirt-engine and into a cluster with gluster enabled because it doesn't go through the install process again vdsm-gluster is missing. Andrew ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] Shouldn't ovirt-hosted-engine-setup depend on vdsm-gluster?
Hi Andrew. Check this BZ https://bugzilla.redhat.com/show_bug.cgi?id=1001161 L. - Original Message - From: Andrew Lau and...@andrewklau.com To: users users@ovirt.org Sent: Tuesday, January 28, 2014 4:17:03 PM Subject: [Users] Shouldn't ovirt-hosted-engine-setup depend on vdsm-gluster? Hi, I'm not sure if this needs a BZ, but when ovirt-hosted-engine-setup is installed it seems to include all the gluster packages (glusterfs etc. w/o glusterfs-server) but misses out on vdsm-gluster was that deliberate? I ended up installing this manually afterwards. When the host gets added to the ovirt-engine and into a cluster with gluster enabled because it doesn't go through the install process again vdsm-gluster is missing. Andrew ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] Shouldn't ovirt-hosted-engine-setup depend on vdsm-gluster?
Ah must have missed that in my search - thanks. On Wed, Jan 29, 2014 at 1:51 AM, Leonid Natapov lnata...@redhat.com wrote: Hi Andrew. Check this BZ https://bugzilla.redhat.com/show_bug.cgi?id=1001161 L. - Original Message - From: Andrew Lau and...@andrewklau.com To: users users@ovirt.org Sent: Tuesday, January 28, 2014 4:17:03 PM Subject: [Users] Shouldn't ovirt-hosted-engine-setup depend on vdsm-gluster? Hi, I'm not sure if this needs a BZ, but when ovirt-hosted-engine-setup is installed it seems to include all the gluster packages (glusterfs etc. w/o glusterfs-server) but misses out on vdsm-gluster was that deliberate? I ended up installing this manually afterwards. When the host gets added to the ovirt-engine and into a cluster with gluster enabled because it doesn't go through the install process again vdsm-gluster is missing. Andrew ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] ***UNCHECKED*** Re: [vdsm] ovirtmgmt vanishes after reboot
On 28/01/14 11:27, Francisco Pérez wrote: Im setting up two networks. ovirtmgmt and a LAN. Both of them are gone after reboot on the node, its starts only with eth0 initial configuration. Antoni, here are the outputs you requested: [root@ovirth1 ~]# /etc/init.d/vdsmd status VDS daemon server is running [root@ovirth1 ~]# service vdsmd status VDS daemon server is running [root@ovirth1 ~]# virsh -r net-list setlocale: No such file or directory Name State Autostart Persistent -- ;vdsmdummy; active nono [root@ovirth1 ~]# ls /etc/sysconfig/network-scripts/ ifcfg-eth0 ifdown-eth ifdown-postifdown-tunnel ifup-eth ifup-plip ifup-routesinit.ipv6-global route-LAN ifcfg-lo ifdown-ippp ifdown-ppp ifup ifup-ippp ifup-plusb ifup-sit net.hotplug route-ovirtmgmt ifdown ifdown-ipv6 ifdown-routes ifup-aliases ifup-ipv6 ifup-post ifup-tunnelnetwork-functions rule-LAN ifdown-bnep ifdown-isdn ifdown-sit ifup-bnep ifup-isdn ifup-pppifup-wireless network-functions-ipv6 rule-ovirtmgmt Dan those command are excecuted where? on the manager or the node? Im new at this and the logs are a little overwhelming so if you help me to interpret them i'll apreciate them. I have attached the whole log directory /var/log/vdsm/ Regards On Thu, Jan 23, 2014 at 4:32 PM, Dan Kenigsberg dan...@redhat.com mailto:dan...@redhat.com wrote: On Thu, Jan 23, 2014 at 05:12:17PM +0100, Fabian Deutsch wrote: Am Donnerstag, den 23.01.2014, 12:34 -0300 schrieb Francisco Pérez: Hi. I have configured an ovirt-engine to manage an ovirt node succesfully. I have created VM and all runs well but im trying to do some escenario testing and i have found an issue. If somehow the ovirt node is rebooted(Power failure, crash, manual reboot, etc) when its comes up it does not start the ovirtmgmt network. Even if in the ovirt-engine you save network configuration or if you execute persist on /etc/sysconfig/network-scripts/ifcfg-ovirtmgmt. It tells you it's already been added to the configuration. Is this normal behavior after ovirt node's is rebooted? Am i doing something wrong? Hey Francisco, that sounds like a bug. VDSM Devs, how can we debug why the network is not brought up? Could you share vdsm.log and supervdsm.log? When you set up ovirtmgmt, as setupNetworks command should be visible there. Later, on save, a call to setSafeNetworkConfig is sent, which is expected to persist your network configuration. Is it visible? Is it successful? What do you see in the logs post boot? Can you tell whether the vdsm-restore-net-config.init server was run? (its job is to revert unsaved network config changes on non-ovirt-nodes). ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users I had the same issue with 3.0.1-1.0.2.el6, I saw other posts about this problem ( http://lists.ovirt.org/pipermail/users/2013-September/016705.html ) and then I decided to discard ovirt-node and use a full blown distro (Centos 6.5) Regards Federico ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] ***UNCHECKED*** Re: [vdsm] ovirtmgmt vanishes after reboot
- Original Message - From: Federico Alberto Sayd fs...@uncu.edu.ar To: users@ovirt.org Sent: Tuesday, January 28, 2014 5:23:13 PM Subject: Re: [Users] ***UNCHECKED*** Re: [vdsm] ovirtmgmt vanishes after reboot On 28/01/14 11:27, Francisco Pérez wrote: Im setting up two networks. ovirtmgmt and a LAN. Both of them are gone after reboot on the node, its starts only with eth0 initial configuration. Antoni, here are the outputs you requested: [root@ovirth1 ~]# /etc/init.d/vdsmd status VDS daemon server is running [root@ovirth1 ~]# service vdsmd status VDS daemon server is running [root@ovirth1 ~]# virsh -r net-list setlocale: No such file or directory Name State Autostart Persistent -- ;vdsmdummy; active no no [root@ovirth1 ~]# ls /etc/sysconfig/network-scripts/ ifcfg-eth0 ifdown-eth ifdown-post ifdown-tunnel ifup-eth ifup-plip ifup-routes init.ipv6-global route-LAN ifcfg-lo ifdown-ippp ifdown-ppp ifup ifup-ippp ifup-plusb ifup-sit net.hotplug route-ovirtmgmt ifdown ifdown-ipv6 ifdown-routes ifup-aliases ifup-ipv6 ifup-post ifup-tunnel network-functions rule-LAN ifdown-bnep ifdown-isdn ifdown-sit ifup-bnep ifup-isdn ifup-ppp ifup-wireless network-functions-ipv6 rule-ovirtmgmt Just to maek sure, /etc/vdsm/vdsm.conf does not modify net_persistence nor net_configurator, does it? If it does not, and you ticked Save on the setupNetworks dialogs, there is some issue with the net persistence flow on the ovirt node and a bug should be opened for it. Dan those command are excecuted where? on the manager or the node? Im new at this and the logs are a little overwhelming so if you help me to interpret them i'll apreciate them. I have attached the whole log directory /var/log/vdsm/ Regards On Thu, Jan 23, 2014 at 4:32 PM, Dan Kenigsberg dan...@redhat.com wrote: On Thu, Jan 23, 2014 at 05:12:17PM +0100, Fabian Deutsch wrote: Am Donnerstag, den 23.01.2014, 12:34 -0300 schrieb Francisco Pérez: Hi. I have configured an ovirt-engine to manage an ovirt node succesfully. I have created VM and all runs well but im trying to do some escenario testing and i have found an issue. If somehow the ovirt node is rebooted(Power failure, crash, manual reboot, etc) when its comes up it does not start the ovirtmgmt network. Even if in the ovirt-engine you save network configuration or if you execute persist on /etc/sysconfig/network-scripts/ifcfg-ovirtmgmt. It tells you it's already been added to the configuration. Is this normal behavior after ovirt node's is rebooted? Am i doing something wrong? Hey Francisco, that sounds like a bug. VDSM Devs, how can we debug why the network is not brought up? Could you share vdsm.log and supervdsm.log? When you set up ovirtmgmt, as setupNetworks command should be visible there. Later, on save, a call to setSafeNetworkConfig is sent, which is expected to persist your network configuration. Is it visible? Is it successful? What do you see in the logs post boot? Can you tell whether the vdsm-restore-net-config.init server was run? (its job is to revert unsaved network config changes on non-ovirt-nodes). ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users I had the same issue with 3.0.1-1.0.2.el6, I saw other posts about this problem ( http://lists.ovirt.org/pipermail/users/2013-September/016705.html ) and then I decided to discard ovirt-node and use a full blown distro (Centos 6.5) Regards Federico ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] ***UNCHECKED*** Re: [vdsm] ovirtmgmt vanishes after reboot
On the node the content of that file is only this: [addresses] management_port = 54321 [vars] ssl = true so i don't see any options wich will modify net config. Yes, on ovirt manager i have ticked save network configuration. For the record im using oVirt Node Hypervisor release 3.0.1 (1.0.2.el6) Regards On Tue, Jan 28, 2014 at 1:34 PM, Antoni Segura Puimedon asegu...@redhat.com wrote: - Original Message - From: Federico Alberto Sayd fs...@uncu.edu.ar To: users@ovirt.org Sent: Tuesday, January 28, 2014 5:23:13 PM Subject: Re: [Users] ***UNCHECKED*** Re: [vdsm] ovirtmgmt vanishes after reboot On 28/01/14 11:27, Francisco Pérez wrote: Im setting up two networks. ovirtmgmt and a LAN. Both of them are gone after reboot on the node, its starts only with eth0 initial configuration. Antoni, here are the outputs you requested: [root@ovirth1 ~]# /etc/init.d/vdsmd status VDS daemon server is running [root@ovirth1 ~]# service vdsmd status VDS daemon server is running [root@ovirth1 ~]# virsh -r net-list setlocale: No such file or directory Name State Autostart Persistent -- ;vdsmdummy; active no no [root@ovirth1 ~]# ls /etc/sysconfig/network-scripts/ ifcfg-eth0 ifdown-eth ifdown-post ifdown-tunnel ifup-eth ifup-plip ifup-routes init.ipv6-global route-LAN ifcfg-lo ifdown-ippp ifdown-ppp ifup ifup-ippp ifup-plusb ifup-sit net.hotplug route-ovirtmgmt ifdown ifdown-ipv6 ifdown-routes ifup-aliases ifup-ipv6 ifup-post ifup-tunnel network-functions rule-LAN ifdown-bnep ifdown-isdn ifdown-sit ifup-bnep ifup-isdn ifup-ppp ifup-wireless network-functions-ipv6 rule-ovirtmgmt Just to maek sure, /etc/vdsm/vdsm.conf does not modify net_persistence nor net_configurator, does it? If it does not, and you ticked Save on the setupNetworks dialogs, there is some issue with the net persistence flow on the ovirt node and a bug should be opened for it. Dan those command are excecuted where? on the manager or the node? Im new at this and the logs are a little overwhelming so if you help me to interpret them i'll apreciate them. I have attached the whole log directory /var/log/vdsm/ Regards On Thu, Jan 23, 2014 at 4:32 PM, Dan Kenigsberg dan...@redhat.com wrote: On Thu, Jan 23, 2014 at 05:12:17PM +0100, Fabian Deutsch wrote: Am Donnerstag, den 23.01.2014, 12:34 -0300 schrieb Francisco Pérez: Hi. I have configured an ovirt-engine to manage an ovirt node succesfully. I have created VM and all runs well but im trying to do some escenario testing and i have found an issue. If somehow the ovirt node is rebooted(Power failure, crash, manual reboot, etc) when its comes up it does not start the ovirtmgmt network. Even if in the ovirt-engine you save network configuration or if you execute persist on /etc/sysconfig/network-scripts/ifcfg-ovirtmgmt. It tells you it's already been added to the configuration. Is this normal behavior after ovirt node's is rebooted? Am i doing something wrong? Hey Francisco, that sounds like a bug. VDSM Devs, how can we debug why the network is not brought up? Could you share vdsm.log and supervdsm.log? When you set up ovirtmgmt, as setupNetworks command should be visible there. Later, on save, a call to setSafeNetworkConfig is sent, which is expected to persist your network configuration. Is it visible? Is it successful? What do you see in the logs post boot? Can you tell whether the vdsm-restore-net-config.init server was run? (its job is to revert unsaved network config changes on non-ovirt-nodes). ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users I had the same issue with 3.0.1-1.0.2.el6, I saw other posts about this problem ( http://lists.ovirt.org/pipermail/users/2013-September/016705.html ) and then I decided to discard ovirt-node and use a full blown distro (Centos 6.5) Regards Federico ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] two node ovirt cluster with HA
On 01/28/2014 01:12 PM, Andrew Lau wrote: On Tue, Jan 28, 2014 at 12:02 AM, Dafna Ron d...@redhat.com mailto:d...@redhat.comwrote: Andrew, Once this discussion is finished, and If what you like done is not in the current implementation can you please open a bug/feature request for it? Sure - I've opened a RFE here based on the current discussions https://bugzilla.redhat.com/show_bug.cgi?id=1058737 but I'm not sure which category it should be under. Cheers, Andrew. Thanks Andrew! I really appreciate it :) -- Dafna Ron ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] Spice-proxy questions
On Tue, Jan 28, 2014 at 9:49 AM, David Jaša wrote: On Po, 2014-01-27 at 11:21 -0800, David Li wrote: Do I need to generate and install a x509 key pair for the squid proxy? How can I find out if the key pair has already been done? No. Spice channels are encrypted end-to-end so if you configure squid to forward the connections just to the display network range of the hosts, you anly allow connections that are encrypted anyway - so the TLS would be here quite redundant. Have you made sure that you have opened port 3128 in iptables? If the box doesn't use firewalld (which is the case on RHEL/CentOS, Fedora must be configured to disable firewalld but I presume that engine-setup does that), add the port definition among other opened ports in /etc/sysconfig/iptables. David PS: I'm mangling reply-to: header for a reason. Please don't hog my inbox, I can very well read your messages on-list. Thank you. I made a test setting proxy on engine and it seems it is ok. I have no other ports than 80 and 443 allowed so I have to use environment with all the servers in 10.4.4.0 network client 10.4.4.61 engine 10.4.4.60 test VM 10.4.4.63 host (where test VM is running on) 10.4.4.59 # engine-config -s SpiceProxyDefault=http://10.4.4.60:3128; # systemctl restart ovirt-engine configured squid on engine on its default port 3128 I have firewalld configured on engine, so that I have this in /etc/firewalld/zones/public.xml ?xml version=1.0 encoding=utf-8? zone shortPublic/short descriptionFor use in public areas. You do not trust the other computers on networks to not harm your computer. Only selected incoming connections are accepted./description service name=mdns/ service name=ovirt-nfs/ service name=ovirt-http/ service name=dhcpv6-client/ service name=ovirt-websocket-proxy/ service name=ovirt-https/ service name=ssh/ service name=ovirt-postgres/ port protocol=tcp port=6100/ port protocol=tcp port=3128/ /zone On client CentOS 6.5 (10.4.4.61): I run firefox and connect to webadmin gui of engine (https://10.4.4.60) I have enabled spice proxy for the test VM I select console and specify to run /usr/bin/remote-viewer at popup window, enabling popups in firefox I successfully get the console $ ps -ef|grep remote g.cecchi 23897 23726 0 15:50 pts/000:00:00 /usr/bin/remote-viewer /tmp/console.vv g.cecchi 23923 23704 0 15:52 pts/000:00:00 grep remote $ sudo lsof -Pp 23897 | grep TCP remote-vi 23897 g.cecchi4u IPv6 498441 0t0TCP localhost:45817-localhost:6010 (ESTABLISHED) remote-vi 23897 g.cecchi 14u IPv4 498447 0t0TCP 10.4.4.61:36909-10.4.4.60:3128 (ESTABLISHED) remote-vi 23897 g.cecchi 20u IPv4 498449 0t0TCP 10.4.4.61:36910-10.4.4.60:3128 (ESTABLISHED) remote-vi 23897 g.cecchi 24u IPv4 498451 0t0TCP 10.4.4.61:36911-10.4.4.60:3128 (ESTABLISHED) remote-vi 23897 g.cecchi 25u IPv4 498452 0t0TCP 10.4.4.61:36912-10.4.4.60:3128 (ESTABLISHED) remote-vi 23897 g.cecchi 60u IPv4 497799 0t0TCP 10.4.4.61:44961-10.4.4.60:443 (ESTABLISHED) On engine (10.4.4.60) # netstat -an|grep 3128 tcp6 0 0 :::3128 :::*LISTEN tcp6 0 0 10.4.4.60:3128 10.4.4.61:36912 ESTABLISHED tcp6 0 0 10.4.4.60:3128 10.4.4.61:36911 ESTABLISHED tcp6 0 0 10.4.4.60:3128 10.4.4.61:36910 ESTABLISHED tcp6 0 0 10.4.4.60:3128 10.4.4.61:36909 ESTABLISHED On hypervisor (10.4.4.59) $ netstat -an|grep 5901 tcp0 0 0.0.0.0:59010.0.0.0:* LISTEN tcp0 0 10.4.4.59:5901 10.4.4.60:38879 ESTABLISHED tcp0 0 10.4.4.59:5901 10.4.4.60:38881 ESTABLISHED tcp0 0 10.4.4.59:5901 10.4.4.60:38880 ESTABLISHED tcp0 0 10.4.4.59:5901 10.4.4.60:38882 ESTABLISHED So all seems ok. Gianluca ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
[Users] Ovirt Gluster problems
Hi, I had some issues with a gluster cluster and after some time trying to get the storage domain up or delete it (I opened a BZ about a deadlock in the process of removing the domain) I gave up and destroyed the DC. The thing is that I want to add the hosts that where part of the DC and now I get that I can't as they have the volume. I try to stop the volume but I can't as no host is running in the deleted cluster and for some reason, ovirt needs that. I can't delete the hosts either as they have the volume... so I'm back in another chicken and egg problem. Any hints?? PD: I can't nuke the hole ovirt plataform as I have another DC in production otherwise I would :-) Regards, signature.asc Description: OpenPGP digital signature ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] Spice-proxy questions
Hi Gianluca, Finally it worked for me! Thanks a lot for help! The doc is little vague in terms of all the things you need to do. I will try to write something up based on my own experience and share with everyone here. David - Original Message - From: Gianluca Cecchi gianluca.cec...@gmail.com To: users@ovirt.org users@ovirt.org Cc: David Li david...@sbcglobal.net Sent: Tuesday, January 28, 2014 9:21 AM Subject: Re: [Users] Spice-proxy questions On Tue, Jan 28, 2014 at 9:49 AM, David Jaša wrote: On Po, 2014-01-27 at 11:21 -0800, David Li wrote: Do I need to generate and install a x509 key pair for the squid proxy? How can I find out if the key pair has already been done? No. Spice channels are encrypted end-to-end so if you configure squid to forward the connections just to the display network range of the hosts, you anly allow connections that are encrypted anyway - so the TLS would be here quite redundant. Have you made sure that you have opened port 3128 in iptables? If the box doesn't use firewalld (which is the case on RHEL/CentOS, Fedora must be configured to disable firewalld but I presume that engine-setup does that), add the port definition among other opened ports in /etc/sysconfig/iptables. David PS: I'm mangling reply-to: header for a reason. Please don't hog my inbox, I can very well read your messages on-list. Thank you. I made a test setting proxy on engine and it seems it is ok. I have no other ports than 80 and 443 allowed so I have to use environment with all the servers in 10.4.4.0 network client 10.4.4.61 engine 10.4.4.60 test VM 10.4.4.63 host (where test VM is running on) 10.4.4.59 # engine-config -s SpiceProxyDefault=http://10.4.4.60:3128; # systemctl restart ovirt-engine configured squid on engine on its default port 3128 I have firewalld configured on engine, so that I have this in /etc/firewalld/zones/public.xml ?xml version=1.0 encoding=utf-8? zone shortPublic/short descriptionFor use in public areas. You do not trust the other computers on networks to not harm your computer. Only selected incoming connections are accepted./description service name=mdns/ service name=ovirt-nfs/ service name=ovirt-http/ service name=dhcpv6-client/ service name=ovirt-websocket-proxy/ service name=ovirt-https/ service name=ssh/ service name=ovirt-postgres/ port protocol=tcp port=6100/ port protocol=tcp port=3128/ /zone On client CentOS 6.5 (10.4.4.61): I run firefox and connect to webadmin gui of engine (https://10.4.4.60) I have enabled spice proxy for the test VM I select console and specify to run /usr/bin/remote-viewer at popup window, enabling popups in firefox I successfully get the console $ ps -ef|grep remote g.cecchi 23897 23726 0 15:50 pts/0 00:00:00 /usr/bin/remote-viewer /tmp/console.vv g.cecchi 23923 23704 0 15:52 pts/0 00:00:00 grep remote $ sudo lsof -Pp 23897 | grep TCP remote-vi 23897 g.cecchi 4u IPv6 498441 0t0 TCP localhost:45817-localhost:6010 (ESTABLISHED) remote-vi 23897 g.cecchi 14u IPv4 498447 0t0 TCP 10.4.4.61:36909-10.4.4.60:3128 (ESTABLISHED) remote-vi 23897 g.cecchi 20u IPv4 498449 0t0 TCP 10.4.4.61:36910-10.4.4.60:3128 (ESTABLISHED) remote-vi 23897 g.cecchi 24u IPv4 498451 0t0 TCP 10.4.4.61:36911-10.4.4.60:3128 (ESTABLISHED) remote-vi 23897 g.cecchi 25u IPv4 498452 0t0 TCP 10.4.4.61:36912-10.4.4.60:3128 (ESTABLISHED) remote-vi 23897 g.cecchi 60u IPv4 497799 0t0 TCP 10.4.4.61:44961-10.4.4.60:443 (ESTABLISHED) On engine (10.4.4.60) # netstat -an|grep 3128 tcp6 0 0 :::3128 :::* LISTEN tcp6 0 0 10.4.4.60:3128 10.4.4.61:36912 ESTABLISHED tcp6 0 0 10.4.4.60:3128 10.4.4.61:36911 ESTABLISHED tcp6 0 0 10.4.4.60:3128 10.4.4.61:36910 ESTABLISHED tcp6 0 0 10.4.4.60:3128 10.4.4.61:36909 ESTABLISHED On hypervisor (10.4.4.59) $ netstat -an|grep 5901 tcp 0 0 0.0.0.0:5901 0.0.0.0:* LISTEN tcp 0 0 10.4.4.59:5901 10.4.4.60:38879 ESTABLISHED tcp 0 0 10.4.4.59:5901 10.4.4.60:38881 ESTABLISHED tcp 0 0 10.4.4.59:5901 10.4.4.60:38880 ESTABLISHED tcp 0 0 10.4.4.59:5901 10.4.4.60:38882 ESTABLISHED So all seems ok. Gianluca ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
[Users] Xeon 5060 support Dempsey
Thanks in advance for any help you can provide We are testing Ovirt 3.2.2 on a 2007 vintage dual Xeon 5060 (Dempsey) Supermicro Superserver. http://en.wikipedia.org/wiki/Xeon#5000-series_.22Dempsey.22. This hardware runs Centos 6.5 and KVM / virt manager just fine, and we have be running many virtual machines on this hardware with reasonable performance for many years We are getting the message: Non-Operational state as host does not meet the cluster's minimum CPU level each time we create a host. After researching this list, we are coming to the conclusion that this older processor is not being recognized by ovirt. Output of virsh -r capabilities and vdsClient -s 0 getVdsCaps are posted below. We havent found anyone with exactly this use case in our research. The closest thread is this: http://lists.ovirt.org/pipermail/users/2012-May/007536.html This poster was able to add some lines to the db to recognize his processor. Here is the advice he received in that post. ok, indeed an old host. the below config is what we used before going to the 'model' approach, so you can try this out (though highly recommended for newer cpu since they improved virt support in each generation) set the ServerCPUList config to this string for the relevant cluster compatibility level. I'm not sure upgrade won't override this for you though, so pay attention on upgrades to such a low level tweak (it's config, but not all configs are really expected to be changed by user) '2:Intel Xeon w/o XD/NX:vmx,sse2:qemu64,-nx,+sse2; 3:Intel Xeon:vmx,sse2,nx:qemu64,+sse2; 4:Intel Conroe Family:vmx,sse2,nx,cx16,ssse3:qemu64,+sse2,+cx16,+ssse3; 5:Intel Penryn Family:vmx,sse2,nx,cx16,ssse3,sse4_1:qemu64,+sse2,+cx16,+ssse3,+sse4.1; 6:Intel Nehalem Family:vmx,sse2,nx,cx16,ssse3,sse4_1,sse4_2,popcnt:qemu64,+sse2,+cx16,+ssse3,+sse4.1,+sse4.2,+popcnt; 2:AMD Opteron G1 w/o NX:svm,sse2:qemu64,-nx,+sse2; 3:AMD Opteron G1:svm,sse2,nx:qemu64,+sse2; 4:AMD Opteron G2:svm,sse2,nx,cx16:qemu64,+sse2,+cx16; 5:AMD Opteron G3:svm,sse2,nx,cx16,sse4a,misalignsse,popcnt,abm:qemu64,+sse2,+cx16,+sse4a,+misalignsse,+popcnt,+abm;' We think we understand what is happening: our processors capabilities will be matched by processor type line 2 or 3, and then the host won't be rendered non-operational. My Questions: 1. is this the correct change to ServerCPUList config in the db, 2. Is this the proper way to get support for older processors? 3. Is this documented anywhere? Can someone please help with a step by step for less experienced users? 4. Wouldn't it be reasonable to expect Ovirt to support processors that KVM supports by default? What is the minimum perceived processor expected to be? why is is conroe, when perfectly functional processors a few months older cause errors? The server hardware we are using is fine for our purposes, we don't intend to upgrade for this purpose.at this time. Thanks again Peter [root@sun1 /]# virsh -r capabilities capabilities host uuid46d8f975-c4c9-44af-b4f8-d4851e2331e0/uuid cpu archx86_64/arch modelcpu64-rhel6/model vendorIntel/vendor topology sockets='2' cores='2' threads='2'/ feature name='pdcm'/ feature name='xtpr'/ feature name='cid'/ feature name='vmx'/ feature name='ds_cpl'/ feature name='monitor'/ feature name='dtes64'/ feature name='pbe'/ feature name='tm'/ feature name='ht'/ feature name='ss'/ feature name='acpi'/ feature name='ds'/ feature name='vme'/ /cpu [root@sun1 /]# vdsClient -s 0 getVdsCaps HBAInventory = {'FC': [], 'iSCSI': [{'InitiatorName': 'iqn.1994-05.com.redhat:f52e99df611'}]} ISCSIInitiatorName = 'iqn.1994-05.com.redhat:f52e99df611' bondings = {'bond0': {'addr': '', 'cfg': {}, 'hwaddr': '00:00:00:00:00:00', 'ipv6addrs': [], 'mtu': '1500', 'netmask': '', 'slaves': []}, 'bond1': {'addr': '', 'cfg': {}, 'hwaddr': '00:00:00:00:00:00', 'ipv6addrs': [], 'mtu': '1500', 'netmask': '', 'slaves': []}, 'bond2': {'addr': '', 'cfg': {}, 'hwaddr': '00:00:00:00:00:00', 'ipv6addrs': [], 'mtu': '1500', 'netmask': '', 'slaves': []}, 'bond3': {'addr': '', 'cfg': {}, 'hwaddr': '00:00:00:00:00:00', 'ipv6addrs': [], 'mtu': '1500',
Re: [Users] Shouldn't ovirt-hosted-engine-setup depend on vdsm-gluster?
Adding Leonid. On 01/28/2014 02:17 PM, Andrew Lau wrote: Hi, I'm not sure if this needs a BZ, but when ovirt-hosted-engine-setup is installed it seems to include all the gluster packages (glusterfs etc. w/o glusterfs-server) but misses out on vdsm-gluster was that deliberate? I ended up installing this manually afterwards. When the host gets added to the ovirt-engine and into a cluster with gluster enabled because it doesn't go through the install process again vdsm-gluster is missing. Andrew ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users -- Dafna Ron ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
[Users] Notes on setting spice-proxy console option
Hi, I have struggled quite a bit to get it up and running. Over the time, I have accumulated some notes on various things I did so to share with everyone who is interested in doing this. This complements the online doc in a way that might give me a complete picture in one place. However I need some clarifications as I might have forgotten to document certain steps or certain steps I did turn out to be not necessary in the end. It will be great if experts here can help me get the things straight. My setup is like: Browser (firefox 24.2 on RHEL6) ovirt-engine (3.3.2) ovirt-node (3.0.3) No direct network connectivity from the browser machine to the node machine. These are the major things I installed for spice-proxy to work: * On ovirt-engine: yum install spice-gtk, virt-viewer, spice-xpi yum-install squid /etc/squid/squid.conf updates: acl localhost src browser IP addr #http_access deny CONNECT !SSL_ports http_access deny !Safe_ports http_port 3128 service squid restart make sure iptables allow 3128 engine-config -s SpiceProxyDefault= http://ovirt-engine-IP:3128 service ovirt-engine restart * On browser machine running firefox 24.2.0 on RHEL6 for running browser console plugin client yum install spice-xpi. make sure VM's console option is set to SPICE Are the above steps reasonable? any missing or redundant? Additional questions: 1. Will spice-proxy work with the Spice HTML5 client in the browser? 2. Is the spice-proxy architecture diagram like: browser - squid proxy - spice-proxy -- VM 3. I didn't explicitly install any certs for the squid proxy. Is it automatically taken care of? References: http://www.ovirt.org/Console_Client_Resources http://www.ovirt.org/Features/Spice_Proxy https://access.redhat.com/site/documentation/en-US/Red_Hat_Enterprise_Virtualization/3.3/pdf/Installation_Guide/Red_Hat_Enterprise_Virtualization-3.3-Installation_Guide-en-US.pdf Thanks. David ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] Xeon 5060 support Dempsey
Von: users-boun...@ovirt.org [users-boun...@ovirt.org] im Auftrag von Peter Galgano [pe...@cleftstoneworks.com] Gesendet: Dienstag, 28. Januar 2014 18:53 An: users@ovirt.org Betreff: [Users] Xeon 5060 support Dempsey Thanks in advance for any help you can provide We are testing Ovirt 3.2.2 on a 2007 vintage dual Xeon 5060 (Dempsey) Supermicro Superserver. ... 4. Wouldn't it be reasonable to expect Ovirt to support processors that KVM supports by default? What is the minimum perceived processor expected to be? why is is conroe, when perfectly functional processors a few months older cause errors? Hello Peter, welcome to the list. The OVirt developers are quite open to enhancement. So the best would be to open a Redhat bugzilla entry for that request. In the meantime you should give the the database update a try. I don't know how but the value you are searching for is in the table vdc_options in the engine schema: # su - postgres # psql # \c engine # select * from vdc_options where option_name='ServerCPUList'; - 304 | ServerCPUList | 3:Intel Conroe Family:vmx,nx,model... 305 | ServerCPUList | 3:Intel Conroe Family:vmx,nx,model... ... Markus Diese E-Mail enthält vertrauliche und/oder rechtlich geschützte Informationen. Wenn Sie nicht der richtige Adressat sind oder diese E-Mail irrtümlich erhalten haben, informieren Sie bitte sofort den Absender und vernichten Sie diese Mail. Das unerlaubte Kopieren sowie die unbefugte Weitergabe dieser Mail ist nicht gestattet. Ãber das Internet versandte E-Mails können unter fremden Namen erstellt oder manipuliert werden. Deshalb ist diese als E-Mail verschickte Nachricht keine rechtsverbindliche Willenserklärung. Collogia Unternehmensberatung AG Ubierring 11 D-50678 Köln Vorstand: Kadir Akin Dr. Michael Höhnerbach Vorsitzender des Aufsichtsrates: Hans Kristian Langva Registergericht: Amtsgericht Köln Registernummer: HRB 52 497 This e-mail may contain confidential and/or privileged information. If you are not the intended recipient (or have received this e-mail in error) please notify the sender immediately and destroy this e-mail. Any unauthorized copying, disclosure or distribution of the material in this e-mail is strictly forbidden. e-mails sent over the internet may have been written under a wrong name or been manipulated. That is why this message sent as an e-mail is not a legally binding declaration of intention. Collogia Unternehmensberatung AG Ubierring 11 D-50678 Köln executive board: Kadir Akin Dr. Michael Höhnerbach President of the supervisory board: Hans Kristian Langva Registry office: district court Cologne Register number: HRB 52 497 ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] ovirt-3.3.3 release postponed due to blockers
I found manually installing python-cpopen before adding a node in the engine is a viable workaround. This was on EL6.5 - Trey On Jan 28, 2014 7:57 AM, Sven Kieske s.kie...@mittwald.de wrote: Hi, and thanks for your fast reply. I know this does not fix it, but I'm preparing to deploy new hosts with EL6.5 and therefore need a workaround. I will try this out, thank you! Am 28.01.2014 14:48, schrieb Fabian Deutsch: Am Dienstag, den 28.01.2014, 14:44 +0100 schrieb Sandro Bonazzola: I already asked this in a different BZ, I think: Is the full blown host node install for EL6 also affected? Fabian? Hey, well - I ran into this while building Node, but you should also run into this when installing e.g. vdsm on a full blown host. You can probably workaround this problem on a full blown host by excluding some packages. But that's just a workaround and doesn't solve the problem. - fabian -- Mit freundlichen Grüßen / Regards Sven Kieske Systemadministrator Mittwald CM Service GmbH Co. KG Königsberger Straße 6 32339 Espelkamp T: +49-5772-293-100 F: +49-5772-293-333 https://www.mittwald.de Geschäftsführer: Robert Meyer St.Nr.: 331/5721/1033, USt-IdNr.: DE814773217, HRA 6640, AG Bad Oeynhausen Komplementärin: Robert Meyer Verwaltungs GmbH, HRB 13260, AG Bad Oeynhausen ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] Notes on setting spice-proxy console option
- Original Message - From: David Li david...@sbcglobal.net To: users@ovirt.org Cc: david li david...@sbcglobal.net Sent: Tuesday, January 28, 2014 7:41:26 PM Subject: [Users] Notes on setting spice-proxy console option Hi, I have struggled quite a bit to get it up and running. Over the time, I have accumulated some notes on various things I did so to share with everyone who is interested in doing this. This complements the online doc in a way that might give me a complete picture in one place. However I need some clarifications as I might have forgotten to document certain steps or certain steps I did turn out to be not necessary in the end. It will be great if experts here can help me get the things straight. My setup is like: Browser (firefox 24.2 on RHEL6) ovirt-engine (3.3.2) ovirt-node (3.0.3) No direct network connectivity from the browser machine to the node machine. These are the major things I installed for spice-proxy to work: * On ovirt-engine: yum install spice-gtk, virt-viewer, spice-xpi These components are client components (what you call Browser machine). yum-install squid /etc/squid/squid.conf updates: acl localhost src browser IP addr #http_access deny CONNECT !SSL_ports I would rather allow CONNECT to specific Spice ports only 5634-6166: acl Spice_ports port 5634-6166 http_access denny CONNECT !Spice_ports http_access deny !Safe_ports http_port 3128 service squid restart make sure iptables allow 3128 engine-config -s SpiceProxyDefault= http://ovirt-engine-IP:3128 service ovirt-engine restart * On browser machine running firefox 24.2.0 on RHEL6 for running browser console plugin client yum install spice-xpi. spice-xpi should bring its dependencies virt-viewer - spice-gtk - etc. but If you do not wish to use the plugin launch type, you may install only virt-viewer (without spice-xpi) and use what I guess is called Native client launch type. make sure VM's console option is set to SPICE Are the above steps reasonable? any missing or redundant? Seems fine, just no need the client packages on the engine. Additional questions: 1. Will spice-proxy work with the Spice HTML5 client in the browser? Probably, but you would need to set the websocket proxy which is part of installation steps for engine as well (I believe). 2. Is the spice-proxy architecture diagram like: browser - squid proxy - spice-proxy -- VM Browser plugin spice-xpi invokes start of Spice client (virt-viewer) which makes CONNECT to Host machine (where the VM is hosted) through the HTTP proxy (in your case squid). Client machine --- Squid --- Host (where the VM is hosted). 3. I didn't explicitly install any certs for the squid proxy. Is it automatically taken care of? No, no authentication to Squid is supported with Spice now. So If It is publicly visible proxy It's important to set careful proxy rules. References: http://www.ovirt.org/Console_Client_Resources http://www.ovirt.org/Features/Spice_Proxy https://access.redhat.com/site/documentation/en-US/Red_Hat_Enterprise_Virtualization/3.3/pdf/Installation_Guide/Red_Hat_Enterprise_Virtualization-3.3-Installation_Guide-en-US.pdf Thanks. David ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] Extremely poor disk access speeds in Windows guest
I've had a bit of luck here. Overall IO performance is very poor during Windows updates, but a contributing factor seems to be the SCSI Controller device in the guest. This last install I didn't install a driver for that device, and my performance is much better. Updates still chug along quite slowly, but I seem to have more than the 100KB/s write speeds I was seeing previously. Does anyone know what this device is for? I have the Red Hat VirtIO SCSI Controller listed under storage controllers. *Steve Dainard * IT Infrastructure Manager Miovision http://miovision.com/ | *Rethink Traffic* 519-513-2407 ex.250 877-646-8476 (toll-free) *Blog http://miovision.com/blog | **LinkedIn https://www.linkedin.com/company/miovision-technologies | Twitter https://twitter.com/miovision | Facebook https://www.facebook.com/miovision* -- Miovision Technologies Inc. | 148 Manitou Drive, Suite 101, Kitchener, ON, Canada | N2C 1L3 This e-mail may contain information that is privileged or confidential. If you are not the intended recipient, please delete the e-mail and any attachments and notify us immediately. On Sun, Jan 26, 2014 at 2:33 AM, Itamar Heim ih...@redhat.com wrote: On 01/26/2014 02:37 AM, Steve Dainard wrote: Thanks for the responses everyone, really appreciate it. I've condensed the other questions into this reply. Steve, What is the CPU load of the GlusterFS host when comparing the raw brick test to the gluster mount point test? Give it 30 seconds and see what top reports. You'll probably have to significantly increase the count on the test so that it runs that long. - Nick Gluster mount point: *4K* on GLUSTER host [root@gluster1 rep2]# dd if=/dev/zero of=/mnt/rep2/test1 bs=4k count=50 50+0 records in 50+0 records out 204800 tel:204800 bytes (2.0 GB) copied, 100.076 s, 20.5 MB/s Top reported this right away: PID USER PR NI VIRT RES SHR S %CPU %MEMTIME+ COMMAND 1826 root 20 0 294m 33m 2540 S 27.2 0.4 0:04.31 glusterfs 2126 root 20 0 1391m 31m 2336 S 22.6 0.4 11:25.48 glusterfsd Then at about 20+ seconds top reports this: PID USER PR NI VIRT RES SHR S %CPU %MEMTIME+ COMMAND 1826 root 20 0 294m 35m 2660 R 141.7 0.5 1:14.94 glusterfs 2126 root 20 0 1392m 31m 2344 S 33.7 0.4 11:46.56 glusterfsd *4K* Directly on the brick: dd if=/dev/zero of=test1 bs=4k count=50 50+0 records in 50+0 records out 204800 tel:204800 bytes (2.0 GB) copied, 4.99367 s, 410 MB/s 7750 root 20 0 102m 648 544 R 50.3 0.0 0:01.52 dd 7719 root 20 0 000 D 1.0 0.0 0:01.50 flush-253:2 Same test, gluster mount point on OVIRT host: dd if=/dev/zero of=/mnt/rep2/test1 bs=4k count=50 50+0 records in 50+0 records out 204800 tel:204800 bytes (2.0 GB) copied, 42.4518 s, 48.2 MB/s PID USER PR NI VIRT RES SHR S %CPU %MEMTIME+ COMMAND 2126 root 20 0 1396m 31m 2360 S 40.5 0.4 13:28.89 glusterfsd Same test, on OVIRT host but against NFS mount point: dd if=/dev/zero of=/mnt/rep2-nfs/test1 bs=4k count=50 50+0 records in 50+0 records out 204800 tel:204800 bytes (2.0 GB) copied, 18.8911 s, 108 MB/s PID USER PR NI VIRT RES SHR S %CPU %MEMTIME+ COMMAND 2141 root 20 0 550m 184m 2840 R 84.6 2.3 16:43.10 glusterfs 2126 root 20 0 1407m 30m 2368 S 49.8 0.4 13:49.07 glusterfsd Interesting - It looks like if I use a NFS mount point, I incur a cpu hit on two processes instead of just the daemon. I also get much better performance if I'm not running dd (fuse) on the GLUSTER host. The storage servers are a bit older, but are both dual socket quad core opterons with 4x 7200rpm drives. A block size of 4k is quite small so that the context switch overhead involved with fuse would be more perceivable. Would it be possible to increase the block size for dd and test? I'm in the process of setting up a share from my desktop and I'll see if I can bench between the two systems. Not sure if my ssd will impact the tests, I've heard there isn't an advantage using ssd storage for glusterfs. Do you have any pointers to this source of information? Typically glusterfs performance for virtualization work loads is bound by the slowest element in the entire stack. Usually storage/disks happen to be the bottleneck and ssd storage does benefit glusterfs. -Vijay I had a couple technical calls with RH (re: RHSS), and when I asked if SSD's could add any benefit I was told no. The context may have been in a product comparison to other storage vendors, where they use SSD's for read/write caching, versus having an all SSD storage domain (which I'm not proposing, but
Re: [Users] Notes on setting up spice-proxy console option
Hi Marian, Thanks a lot for the clarification! Another question: In my spice-xpi console window, I can't get out of it by SHIFT+F12. Should I use something else? David - Original Message - From: Marian Krcmarik mkrcm...@redhat.com To: David Li david...@sbcglobal.net Cc: users@ovirt.org Sent: Tuesday, January 28, 2014 11:14 AM Subject: Re: [Users] Notes on setting spice-proxy console option - Original Message - From: David Li david...@sbcglobal.net To: users@ovirt.org Cc: david li david...@sbcglobal.net Sent: Tuesday, January 28, 2014 7:41:26 PM Subject: [Users] Notes on setting spice-proxy console option Hi, I have struggled quite a bit to get it up and running. Over the time, I have accumulated some notes on various things I did so to share with everyone who is interested in doing this. This complements the online doc in a way that might give me a complete picture in one place. However I need some clarifications as I might have forgotten to document certain steps or certain steps I did turn out to be not necessary in the end. It will be great if experts here can help me get the things straight. My setup is like: Browser (firefox 24.2 on RHEL6) ovirt-engine (3.3.2) ovirt-node (3.0.3) No direct network connectivity from the browser machine to the node machine. These are the major things I installed for spice-proxy to work: * On ovirt-engine: yum install spice-gtk, virt-viewer, spice-xpi These components are client components (what you call Browser machine). yum-install squid /etc/squid/squid.conf updates: acl localhost src browser IP addr #http_access deny CONNECT !SSL_ports I would rather allow CONNECT to specific Spice ports only 5634-6166: acl Spice_ports port 5634-6166 http_access denny CONNECT !Spice_ports http_access deny !Safe_ports http_port 3128 service squid restart make sure iptables allow 3128 engine-config -s SpiceProxyDefault= http://ovirt-engine-IP:3128 service ovirt-engine restart * On browser machine running firefox 24.2.0 on RHEL6 for running browser console plugin client yum install spice-xpi. spice-xpi should bring its dependencies virt-viewer - spice-gtk - etc. but If you do not wish to use the plugin launch type, you may install only virt-viewer (without spice-xpi) and use what I guess is called Native client launch type. make sure VM's console option is set to SPICE Are the above steps reasonable? any missing or redundant? Seems fine, just no need the client packages on the engine. Additional questions: 1. Will spice-proxy work with the Spice HTML5 client in the browser? Probably, but you would need to set the websocket proxy which is part of installation steps for engine as well (I believe). 2. Is the spice-proxy architecture diagram like: browser - squid proxy - spice-proxy -- VM Browser plugin spice-xpi invokes start of Spice client (virt-viewer) which makes CONNECT to Host machine (where the VM is hosted) through the HTTP proxy (in your case squid). Client machine --- Squid --- Host (where the VM is hosted). 3. I didn't explicitly install any certs for the squid proxy. Is it automatically taken care of? No, no authentication to Squid is supported with Spice now. So If It is publicly visible proxy It's important to set careful proxy rules. References: http://www.ovirt.org/Console_Client_Resources http://www.ovirt.org/Features/Spice_Proxy https://access.redhat.com/site/documentation/en-US/Red_Hat_Enterprise_Virtualization/3.3/pdf/Installation_Guide/Red_Hat_Enterprise_Virtualization-3.3-Installation_Guide-en-US.pdf Thanks. David ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] [vdsm] ovirtmgmt vanishes after reboot
On Tue, Jan 28, 2014 at 11:27:21AM -0300, Francisco Pérez wrote: Im setting up two networks. ovirtmgmt and a LAN. Both of them are gone after reboot on the node, its starts only with eth0 initial configuration. Antoni, here are the outputs you requested: [root@ovirth1 ~]# /etc/init.d/vdsmd status VDS daemon server is running [root@ovirth1 ~]# service vdsmd status VDS daemon server is running [root@ovirth1 ~]# virsh -r net-list setlocale: No such file or directory Name State Autostart Persistent -- ;vdsmdummy; active nono [root@ovirth1 ~]# ls /etc/sysconfig/network-scripts/ ifcfg-eth0 ifdown-eth ifdown-postifdown-tunnel ifup-eth ifup-plip ifup-routesinit.ipv6-globalroute-LAN ifcfg-lo ifdown-ippp ifdown-ppp ifup ifup-ippp ifup-plusb ifup-sit net.hotplug route-ovirtmgmt ifdown ifdown-ipv6 ifdown-routes ifup-aliases ifup-ipv6 ifup-post ifup-tunnelnetwork-functions rule-LAN ifdown-bnep ifdown-isdn ifdown-sit ifup-bnep ifup-isdn ifup-ppp ifup-wireless network-functions-ipv6 rule-ovirtmgmt Dan those command are excecuted where? on the manager or the node? Im new at this and the logs are a little overwhelming so if you help me to interpret them i'll apreciate them. I have attached the whole log directory /var/log/vdsm/ Could you share vdsm.log and supervdsm.log? When you set up ovirtmgmt, as setupNetworks command should be visible there. Later, on save, a call to setSafeNetworkConfig is sent, which is expected to persist your network configuration. Is it visible? Is it successful? Your supervdsmd has MainProcess|Thread-26::DEBUG::2014-01-27 15:51:48,866::configNetwork::561::Storage.Misc.excCmd::(setSafeNetworkConfig) '/usr/share/vdsm/vdsm-store-net-config' (cwd None) which reports success, too. What do you see in the logs post boot? Can you tell whether the vdsm-restore-net-config.init server was run? (its job is to revert unsaved network config changes on non-ovirt-nodes). Maybe you can debug the issue: Setup up a network but do not save it yet. Log into your ovirt-node. You should see /etc/sysconfig/network-scripts/ifcfg-YOURNET and /var/lib/vdsm/netconfback/ifcfg-YOURNET, the latter meaning that it's not yet persisted. Now run locally vdsClient -s 0 setSafeNetworkConfig You should see /config/etc/sysconfig/network-scripts/ifcfg-YOURNET created, and /var/lib/vdsm/netconfback/ifcfg-YOURNET gone. Now please run /usr/share/vdsm/vdsm-restore-net-config which should do absolutely nothing. If the process above breaks, it's a Vdsm bug. If not, it most probably something in ovirt-node. ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] [vdsm] ovirtmgmt vanishes after reboot
- Original Message - From: Dan Kenigsberg dan...@redhat.com To: Francisco Pérez fpere...@gmail.com Cc: Fabian Deutsch fabi...@redhat.com, amul...@redhat.com, asegu...@redhat.com, VDSM Project Development vdsm-de...@lists.fedorahosted.org, users@ovirt.org Sent: Tuesday, January 28, 2014 10:47:17 PM Subject: Re: [vdsm] [Users] ovirtmgmt vanishes after reboot On Tue, Jan 28, 2014 at 11:27:21AM -0300, Francisco Pérez wrote: Im setting up two networks. ovirtmgmt and a LAN. Both of them are gone after reboot on the node, its starts only with eth0 initial configuration. Antoni, here are the outputs you requested: [root@ovirth1 ~]# /etc/init.d/vdsmd status VDS daemon server is running [root@ovirth1 ~]# service vdsmd status VDS daemon server is running [root@ovirth1 ~]# virsh -r net-list setlocale: No such file or directory Name State Autostart Persistent -- ;vdsmdummy; active nono [root@ovirth1 ~]# ls /etc/sysconfig/network-scripts/ ifcfg-eth0 ifdown-eth ifdown-postifdown-tunnel ifup-eth ifup-plip ifup-routesinit.ipv6-globalroute-LAN ifcfg-lo ifdown-ippp ifdown-ppp ifup ifup-ippp ifup-plusb ifup-sit net.hotplug route-ovirtmgmt ifdown ifdown-ipv6 ifdown-routes ifup-aliases ifup-ipv6 ifup-post ifup-tunnelnetwork-functions rule-LAN ifdown-bnep ifdown-isdn ifdown-sit ifup-bnep ifup-isdn ifup-ppp ifup-wireless network-functions-ipv6 rule-ovirtmgmt Dan those command are excecuted where? on the manager or the node? Im new at this and the logs are a little overwhelming so if you help me to interpret them i'll apreciate them. I have attached the whole log directory /var/log/vdsm/ Could you share vdsm.log and supervdsm.log? When you set up ovirtmgmt, as setupNetworks command should be visible there. Later, on save, a call to setSafeNetworkConfig is sent, which is expected to persist your network configuration. Is it visible? Is it successful? Your supervdsmd has MainProcess|Thread-26::DEBUG::2014-01-27 15:51:48,866::configNetwork::561::Storage.Misc.excCmd::(setSafeNetworkConfig) '/usr/share/vdsm/vdsm-store-net-config' (cwd None) which reports success, too. What do you see in the logs post boot? Can you tell whether the vdsm-restore-net-config.init server was run? (its job is to revert unsaved network config changes on non-ovirt-nodes). Maybe you can debug the issue: Setup up a network but do not save it yet. Log into your ovirt-node. You should see /etc/sysconfig/network-scripts/ifcfg-YOURNET and /var/lib/vdsm/netconfback/ifcfg-YOURNET, the latter meaning that it's not yet persisted. Now run locally vdsClient -s 0 setSafeNetworkConfig You should see /config/etc/sysconfig/network-scripts/ifcfg-YOURNET created, and /var/lib/vdsm/netconfback/ifcfg-YOURNET gone. /var/lib/vdsm/netconfback/ifcfg-YOURNET is not removed on oVirt Node as /var/lib/vdsm/netconfback is sitting on a tmpfs so there was no need to call it for the reboot case. We made some more tests with Francisco on #ovirt today and we saw that for some unknown reason, when rebooting the machine the ifcfg-YOURNET files disappear while the rule-YOURNET and route-YOURNET stay. That happens even when the both ifcfg, rule and route have the correct entry in /config/files and are bound to /config/etc/sysconfig/ After reboot it returns to eth0 having the connectivity as it was defined with the TUI. For libvirt networks a bit of the same as for ifcfg files. Before reboot /etc/libvirt/qemu/networks is present in /config/files and findmnt reports that /etc/libvirt/qemu/networks is a bound mount of /config/etc/libvirt/qemu/networks. After reboot it is not the case anymore. @Fabian: Do you think there is something on the reboot that restores the network conf to the TUI settings? Now please run /usr/share/vdsm/vdsm-restore-net-config which should do absolutely nothing. If the process above breaks, it's a Vdsm bug. If not, it most probably something in ovirt-node. ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] Ovirt Gluster problems
Not sure if this is exactly your issue, but this post here: http://comments.gmane.org/gmane.comp.emulators.ovirt.user/12200 might lead you in the right direction. one note - if you back it up while its attached to an engine, you will need to edit its meta data file to remove the association to allow the other engine to connect it to the new pool for restore. *Steve Dainard * On Tue, Jan 28, 2014 at 12:41 PM, Juan Pablo Lorier jplor...@gmail.comwrote: Hi, I had some issues with a gluster cluster and after some time trying to get the storage domain up or delete it (I opened a BZ about a deadlock in the process of removing the domain) I gave up and destroyed the DC. The thing is that I want to add the hosts that where part of the DC and now I get that I can't as they have the volume. I try to stop the volume but I can't as no host is running in the deleted cluster and for some reason, ovirt needs that. I can't delete the hosts either as they have the volume... so I'm back in another chicken and egg problem. Any hints?? PD: I can't nuke the hole ovirt plataform as I have another DC in production otherwise I would :-) Regards, ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
[Users] about the size of an offline snapshot
Assign 20G virtio disk for VM, create an offline snapshot, find the true size of Vm-disk bigger than the virtual size (assign size)? I want to know how to compute the true size of vm-disk. Anbody can tell me the answer ? thanks. ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] Ovirt 3.4 - Fail to set permissions to VM
Hi Jonas Apparently there is a quite new bug open about this issue (https://bugzilla.redhat.com/1057147). CC-ing Juan and Yair - perhaps the'll know what's the source of the issue, as I think they were the last ones to make changes in it. Oved - Original Message - From: Jonas Israelsson jo...@israelsson.com To: users@ovirt.org Sent: Tuesday, January 28, 2014 11:34:50 AM Subject: [Users] Ovirt 3.4 - Fail to set permissions to VM Greetings. I have set up oVirt to use Openldap for its users store. I managed to make two users SuperUser but now when trying to add a third as a normal user and give him permission to a VM it fails. From the log I see it complains about duplicate key violations. No matter what user I try to add to this vm I get the same error. Maybe it's beyond me but I really do not understand why It wants to add something to the users table (since the user is already there), sounds like a bug to me.. Anyone else have the same setup as me, and have this working ? [root@dashboard ovirt-engine]# tail -100 engine.log 2014-01-28 10:19:14,655 INFO [org.ovirt.engine.core.bll.AddPermissionCommand] (org.ovirt.thread.pool-6-thread-26) [5c95fa5a] Running command: AddPermissionCommand internal: false. Entities affected : ID: 18bcf10a-6f63-44ea-8a9b-70f423476473 Type: StoragePool, ID: aaa0----123456789aaa Type: System 2014-01-28 10:19:14,658 ERROR [org.ovirt.engine.core.bll.AddPermissionCommand] (org.ovirt.thread.pool-6-thread-26) [5c95fa5a] Command org.ovirt.engine.core.bll.AddPermissionCommand throw exception: org.springframework.dao.DuplicateKeyException: CallableStatementCallback; SQL [{call insertuser(?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)}]; ERROR: duplicate key value violates unique constraint users_domain_external_id_unique Where: SQL statement INSERT INTO users(department, domain, email, groups, name, note, role, active, surname, user_id, username, group_ids, external_id) VALUES( $1 , $2 , $3 , $4 , $5 , $6 , $7 , $8 , $9 , $10 , $11 , $12 , $13 ) PL/pgSQL function insertuser line 2 at SQL statement; nested exception is org.postgresql.util.PSQLException: ERROR: duplicate key value violates unique constraint users_domain_external_id_unique Where: SQL statement INSERT INTO users(department, domain, email, groups, name, note, role, active, surname, user_id, username, group_ids, external_id) VALUES( $1 , $2 , $3 , $4 , $5 , $6 , $7 , $8 , $9 , $10 , $11 , $12 , $13 ) PL/pgSQL function insertuser line 2 at SQL statement at org.springframework.jdbc.support.SQLErrorCodeSQLExceptionTranslator.doTranslate(SQLErrorCodeSQLExceptionTranslator.java:241) [spring-jdbc.jar:3.1.1.RELEASE] at org.springframework.jdbc.support.AbstractFallbackSQLExceptionTranslator.translate(AbstractFallbackSQLExceptionTranslator.java:72) [spring-jdbc.jar:3.1.1.RELEASE] at org.springframework.jdbc.core.JdbcTemplate.execute(JdbcTemplate.java:1030) [spring-jdbc.jar:3.1.1.RELEASE] at org.springframework.jdbc.core.JdbcTemplate.call(JdbcTemplate.java:1064) [spring-jdbc.jar:3.1.1.RELEASE] at org.springframework.jdbc.core.simple.AbstractJdbcCall.executeCallInternal(AbstractJdbcCall.java:388) [spring-jdbc.jar:3.1.1.RELEASE] at org.springframework.jdbc.core.simple.AbstractJdbcCall.doExecute(AbstractJdbcCall.java:351) [spring-jdbc.jar:3.1.1.RELEASE] at org.springframework.jdbc.core.simple.SimpleJdbcCall.execute(SimpleJdbcCall.java:181) [spring-jdbc.jar:3.1.1.RELEASE] at org.ovirt.engine.core.dao.DbUserDAODbFacadeImpl.save(DbUserDAODbFacadeImpl.java:119) [dal.jar:] at org.ovirt.engine.core.bll.AddPermissionCommand.executeCommand(AddPermissionCommand.java:94) [bll.jar:] at org.ovirt.engine.core.bll.CommandBase.executeWithoutTransaction(CommandBase.java:1114) [bll.jar:] at org.ovirt.engine.core.bll.CommandBase.executeActionInTransactionScope(CommandBase.java:1199) [bll.jar:] at org.ovirt.engine.core.bll.CommandBase.runInTransaction(CommandBase.java:1875) [bll.jar:] at org.ovirt.engine.core.utils.transaction.TransactionSupport.executeInNewTransaction(TransactionSupport.java:210) [utils.jar:] at org.ovirt.engine.core.utils.transaction.TransactionSupport.executeInRequired(TransactionSupport.java:149) [utils.jar:] at org.ovirt.engine.core.utils.transaction.TransactionSupport.executeInScope(TransactionSupport.java:118) [utils.jar:] at org.ovirt.engine.core.bll.CommandBase.execute(CommandBase.java:1219) [bll.jar:] at org.ovirt.engine.core.bll.CommandBase.executeAction(CommandBase.java:351) [bll.jar:] at org.ovirt.engine.core.bll.MultipleActionsRunner.executeValidatedCommand(MultipleActionsRunner.java:179) [bll.jar:] at org.ovirt.engine.core.bll.MultipleActionsRunner.runCommands(MultipleActionsRunner.java:151) [bll.jar:]
[Users] Adding node to local storage cluster
Hello all I wanted to ask if there's a way to add a node to a local storage cluster i-e adding one more besides the one that's already there? Regards Nauman Abbas Assistant System Administrator (LMS), Room No. A-207, SEECS, National University of Sciences Technology, + 92 321 5359946 ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
[Users] Hosted Engine adding host SSL Failure (w/ engine custom cert)
Hi, After running through the new patch posted in BZ 1055153 I'm adding a second host to the hosted-engine cluster but it seems to fail right before the finish: [ ERROR ] Failed to execute stage 'Closing up': [ERROR]::oVirt API connection failure, [Errno 1] _ssl.c:492: error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed Couple Extra Notes: Engine has a custom SSL cert but the CA has been trusted by the new host. When I temporarily return the engine's SSL back to the default generated one the install will succeed. Setup logs: http://www.fpaste.org/72624/13909770/ What confuses me is: curl https://engine.example.net with the custom SSL cert will succeed but with the original self-signed gives the expected insecure message. What criteria need to be met so the install will pass? Thanks, Andrew ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] Hosted Engine adding host SSL Failure (w/ engine custom cert)
Reverting back to the original cert would take me past that error but would just continue to spam the message until timeout [ INFO ] Still waiting for VDSM host to become operational... [ INFO ] Still waiting for VDSM host to become operational... Logs seem to just repeat 2014-01-29 17:44:53 DEBUG otopi.plugins.ovirt_hosted_engine_setup.engine.add_host add_host._wait_host_ready:229 VDSM host in state 2014-01-29 17:44:54 DEBUG otopi.plugins.ovirt_hosted_engine_setup.engine.add_host add_host._wait_host_ready:213 Error fetching host state: 'NoneType' object has no attribute 'status' 2014-01-29 17:44:54 DEBUG otopi.plugins.ovirt_hosted_engine_setup.engine.add_host add_host._wait_host_ready:229 VDSM host in state 2014-01-29 17:44:55 DEBUG otopi.plugins.ovirt_hosted_engine_setup.engine.add_host add_host._wait_host_ready:213 Error fetching host state: 'NoneType' object has no attribute 'status' 2014-01-29 17:44:55 DEBUG otopi.plugins.ovirt_hosted_engine_setup.engine.add_host add_host._wait_host_ready:229 VDSM host in state 2014-01-29 17:44:56 DEBUG otopi.plugins.ovirt_hosted_engine_setup.engine.add_host add_host._wait_host_ready:213 Error fetching host state: 'NoneType' object has no attribute 'status' 2014-01-29 17:44:56 DEBUG otopi.plugins.ovirt_hosted_engine_setup.engine.add_host add_host._wait_host_ready:229 VDSM host in state On Wed, Jan 29, 2014 at 5:38 PM, Andrew Lau and...@andrewklau.com wrote: Hi, After running through the new patch posted in BZ 1055153 I'm adding a second host to the hosted-engine cluster but it seems to fail right before the finish: [ ERROR ] Failed to execute stage 'Closing up': [ERROR]::oVirt API connection failure, [Errno 1] _ssl.c:492: error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed Couple Extra Notes: Engine has a custom SSL cert but the CA has been trusted by the new host. When I temporarily return the engine's SSL back to the default generated one the install will succeed. Setup logs: http://www.fpaste.org/72624/13909770/ What confuses me is: curl https://engine.example.net with the custom SSL cert will succeed but with the original self-signed gives the expected insecure message. What criteria need to be met so the install will pass? Thanks, Andrew ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] Vm's being paused
Hi Dafna, Thanks for clarifying that, I found the migration issue and this was resolved once I sorted out the ISO domain problem. I'm sorry I don't understand your last question? after the engine restart, do you still see a problem with the size or did the report of size changed? The migration issue was resolved, it's now just trying to track down why the two VM's paused on their own, one on the 8th of Jan(I think) and one on the 19th of Jan. Thank you. Regards. Neil Wilson. On Tue, Jan 28, 2014 at 8:18 PM, Dafna Ron d...@redhat.com wrote: yes - engine lost communication with vdsm and it has no way of knowing if the host is down or if there was a network issue so a network issue would cause the same errors that I see in the logs. The error you put on the iso is the reason the vm's have failed migration - if a vm is run with a cd and the cd is gone than the vm will not be able to be migrated. after the engine restart, do you still see a problem with the size or did the report of size changed? Dafna On 01/28/2014 01:02 PM, Neil wrote: Hi Dafna, Thanks for coming back to me. I'll try answer your queries one by one. On Tue, Jan 28, 2014 at 1:38 PM, Dafna Ron d...@redhat.com wrote: you had a problem with your storage on the 14th of Jan and one of the hosts rebooted (if you have the vdsm log from that day than I can see what happened on vdsm side) in engine, I could see a problem with the export domain and this should not have cause a reboot. 1.) I don't unfortunately have logs going back that far. Looking at all 3 hosts uptime, the one with the least uptime is 21 days, the others are all over 40 days, so there definitely wasn't a host that rebooted on the 14th of Jan, would a network issue or Firewall issue also cause the error you've seen to look as if a host rebooted? There was a bonding mode change on the 14th of January, so perhaps this caused the issue? Can you tell me if you had a problem with the data domain as well or was it just the export domain? were you having any vm's exported/imported at that time? In any case - this is a bug. 2.) I think this was the same day that the bonding mode was changed on the host while the host was live (by mistake), and had SPM running on it. I haven't done any importing or exporting for a few years on this oVirt setup. As for the vm's - if the vm's are no longer in migrating state than please restart ovirt-engine service (looks like a cache issue) 3.) Restarted ovirt-engine, logging now appears to be normal without any errors. if they are in migrating state - there should have been a timeout a long time ago. can you please run 'vdsClient -s 0 list table' and 'virsh -r list' on both all hosts? 4.) Ran on all hosts... node01.blabla.com 63da7faa-f92a-4652-90f2-b6660a4fb7b3 11232 adam Up 502170aa-0fc6-4287-bb08-5844be6e0352 13986 babbage Up ff9036fb-1499-45e4-8cde-e350eee3c489 26733 reports Up 2736197b-6dc3-4155-9a29-9306ca64881d 13804 tux Up 0a3af7b2-ea94-42f3-baeb-78b950af4402 25257 Moodle Up IdName State 1 adam running 2 reportsrunning 4 tuxrunning 6 Moodle running 7 babbagerunning node02.blabla.com dfa2cf7c-3f0e-42e3-b495-10ccb3e0c71b 2879 spam Up 23b9212c-1e25-4003-aa18-b1e819bf6bb1 32454 proxy02 Up ac2a3f99-a6db-4cae-955d-efdfb901abb7 5605 software Up 179c293b-e6a3-4ec6-a54c-2f92f875bc5e 8870 zimbra Up IdName State 9 proxy02running 10spam running 12software running 13zimbra running node03.blabla.com e42b7ccc-ce04-4308-aeb2-2291399dd3ef 25809 dhcp Up 16d3f077-b74c-4055-97d0-423da78d8a0c 23939 oliver Up IdName State 13oliver running 14dhcp running Last thing is that your ISO domain seems to be having issues as well. This should not effect the host status but if any of the vm's were booted from an iso or have an iso attached in the boot sequence this will explain the migration issue. There was an ISO domain issue a while back, but this was corrected about 2 weeks ago after iptables re-enabled itself on boot after running updates, I've checked now and the ISO domain appears to be fine and I can see all the images stored within. I've stumbled across what appears to be another error and
Re: [Users] Hosted Engine adding host SSL Failure (w/ engine custom cert)
From: Andrew Lau and...@andrewklau.com To: users users@ovirt.org Sent: Wednesday, January 29, 2014 8:38:33 AM Subject: [Users] Hosted Engine adding host SSL Failure (w/ engine custom cert) Hi, After running through the new patch posted in BZ 1055153 I'm adding a second host to the hosted-engine cluster but it seems to fail right before the finish: [ ERROR ] Failed to execute stage 'Closing up': [ERROR]::oVirt API connection failure, [Errno 1] _ssl.c:492: error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed Couple Extra Notes: Engine has a custom SSL cert but the CA has been trusted by the new host. When I temporarily return the engine's SSL back to the default generated one the install will succeed. Setup logs: http://www.fpaste.org/72624/13909770/ What confuses me is: curl https://engine.example.net with the custom SSL cert will succeed but with the original self-signed gives the expected insecure message. What criteria need to be met so the install will pass? Seems like a bug (or a missing feature) - hosted-engine only supports the self-signed cert. Can you please open a bug for this? You might manage to make it work by replacing /etc/pki/ovirt-engine/ca.pem with the certificate of your ca, but this will prevent adding hosts (because it's needed to create a certificate for them). Perhaps other things will break too, I didn't try that. -- Didi ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] Hosted Engine adding host SSL Failure (w/ engine custom cert)
From: Andrew Lau and...@andrewklau.com To: users users@ovirt.org Sent: Wednesday, January 29, 2014 8:48:42 AM Subject: Re: [Users] Hosted Engine adding host SSL Failure (w/ engine custom cert) Reverting back to the original cert would take me past that error but would just continue to spam the message until timeout [ INFO ] Still waiting for VDSM host to become operational... [ INFO ] Still waiting for VDSM host to become operational... Logs seem to just repeat 2014-01-29 17:44:53 DEBUG otopi.plugins.ovirt_hosted_engine_setup.engine.add_host add_host._wait_host_ready:229 VDSM host in state 2014-01-29 17:44:54 DEBUG otopi.plugins.ovirt_hosted_engine_setup.engine.add_host add_host._wait_host_ready:213 Error fetching host state: 'NoneType' object has no attribute 'status' 2014-01-29 17:44:54 DEBUG otopi.plugins.ovirt_hosted_engine_setup.engine.add_host add_host._wait_host_ready:229 VDSM host in state 2014-01-29 17:44:55 DEBUG otopi.plugins.ovirt_hosted_engine_setup.engine.add_host add_host._wait_host_ready:213 Error fetching host state: 'NoneType' object has no attribute 'status' 2014-01-29 17:44:55 DEBUG otopi.plugins.ovirt_hosted_engine_setup.engine.add_host add_host._wait_host_ready:229 VDSM host in state 2014-01-29 17:44:56 DEBUG otopi.plugins.ovirt_hosted_engine_setup.engine.add_host add_host._wait_host_ready:213 Error fetching host state: 'NoneType' object has no attribute 'status' 2014-01-29 17:44:56 DEBUG otopi.plugins.ovirt_hosted_engine_setup.engine.add_host add_host._wait_host_ready:229 VDSM host in state Can you please post vdsm logs? Thanks. -- Didi ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users
Re: [Users] Hosted Engine adding host SSL Failure (w/ engine custom cert)
From: Yedidyah Bar David d...@redhat.com To: Andrew Lau and...@andrewklau.com Cc: users users@ovirt.org Sent: Wednesday, January 29, 2014 9:05:06 AM Subject: Re: [Users] Hosted Engine adding host SSL Failure (w/ engine custom cert) From: Andrew Lau and...@andrewklau.com To: users users@ovirt.org Sent: Wednesday, January 29, 2014 8:38:33 AM Subject: [Users] Hosted Engine adding host SSL Failure (w/ engine custom cert) Hi, After running through the new patch posted in BZ 1055153 I'm adding a second host to the hosted-engine cluster but it seems to fail right before the finish: [ ERROR ] Failed to execute stage 'Closing up': [ERROR]::oVirt API connection failure, [Errno 1] _ssl.c:492: error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed Couple Extra Notes: Engine has a custom SSL cert but the CA has been trusted by the new host. When I temporarily return the engine's SSL back to the default generated one the install will succeed. Setup logs: http://www.fpaste.org/72624/13909770/ What confuses me is: curl https://engine.example.net with the custom SSL cert will succeed but with the original self-signed gives the expected insecure message. What criteria need to be met so the install will pass? Seems like a bug (or a missing feature) - hosted-engine only supports the self-signed cert. Can you please open a bug for this? You might manage to make it work by replacing /etc/pki/ovirt-engine/ca.pem with the certificate of your ca, but this will prevent adding hosts (because it's needed to create a certificate for them). Perhaps other things will break too, I didn't try that. On a second thought, I don't think it will work. The engine will still sign certs for hosts with its private key, but the hosts will try to verify that with the ca.pem you put there and fail. -- Didi ___ Users mailing list Users@ovirt.org http://lists.ovirt.org/mailman/listinfo/users