date:20200506

I am experiencing the error message in the 
ovirt-hosted-engine-setup-ansible-create_target_vm log
{2020-05-06 14:15:30,024-0500 ERROR ansible failed {'status': 'FAILED', 
'ansible_type': 'task', 'ansible_task': u"Fail if Engine IP is different from 
engine's he_fqdn resolved IP", 'ansible_result': u'type: \nstr: 
{\'msg\': u"Engine VM IP address is  while the engine\'s he_fqdn 
ovirt1-engine.kelleykars.org resolves to 192.168.122.2. If you are using DHCP, 
check your DHCP reservation configuration", \'changed\': False, 
\'_ansible_no_log\': False}', 'task_duration': 1, 'ansible_host': u'localhost', 
'ansible_playbook': 
u'/usr/share/ovirt-hosted-engine-setup/ansible/trigger_role.yml'}}:Q!

The bug 1590266 says it should report the engine VM IP address xxx.xxx.xxx.xxx 
while the Engines he_fqdn is x
I need to see what it thins is wrong as both dig fqdn engine name and dig -x ip 
return the correct information.


Now this bug looks like it may play but I don't see the failed rediness check 
in the this log https://access.redhat.com/solutions/4462431

or is it because the vm fails or dies or ??? 
___
Users mailing list -- users@ovirt.org
To unsubscribe send an email to users-le...@ovirt.org
Privacy Statement: https://www.ovirt.org/privacy-policy.html
oVirt Code of Conduct: 
https://www.ovirt.org/community/about/community-guidelines/
List Archives: 
https://lists.ovirt.org/archives/list/users@ovirt.org/message/D4PRJYTL6DWCYFFDU57PXWTFLGCFOGUT/

[ovirt-users] Re: NFS storage domain forced to use /exports/data ?

hey wait now I show to mounts from NAS server what is going on:
One in the expected /exports/data.
the other 
/rhev/data-center/mnt/fsf-dal1001d-fz.adn.networklayer.com
___
Users mailing list -- users@ovirt.org
To unsubscribe send an email to users-le...@ovirt.org
Privacy Statement: https://www.ovirt.org/privacy-policy.html
oVirt Code of Conduct: 
https://www.ovirt.org/community/about/community-guidelines/
List Archives: 
https://lists.ovirt.org/archives/list/users@ovirt.org/message/IKTDB2V4NVGBGBSIN6COH3SMRA6S4HJP/

[ovirt-users] NFS storage domain forced to use /exports/data ?

Hello 
Should the documentation point out that the /exports/data mount point is hard 
coded in  ovirt-hosted-engine-setup-ansible-create_storage_domain.yaml.

I think some  Data Centers will want to use a different mount path
or Did I miss a prompt or entry in the  Deployment screen for 
Hosted-engine-deployment?
Bryan
___
Users mailing list -- users@ovirt.org
To unsubscribe send an email to users-le...@ovirt.org
Privacy Statement: https://www.ovirt.org/privacy-policy.html
oVirt Code of Conduct: 
https://www.ovirt.org/community/about/community-guidelines/
List Archives: 
https://lists.ovirt.org/archives/list/users@ovirt.org/message/3OBETIUZX4OLSSLPJBDH2HVKOEGNIMPA/

[ovirt-users] Safe to go to 7.8 for CentOS based hypervisors?

Hello,
supposing to be already at 4.3.9 level and to have CentOS 7.7 based hosts,
are there any blocking factors to update them to 7.8, just released some
days ago?
Thanks,
Gianluca
___
Users mailing list -- users@ovirt.org
To unsubscribe send an email to users-le...@ovirt.org
Privacy Statement: https://www.ovirt.org/privacy-policy.html
oVirt Code of Conduct: 
https://www.ovirt.org/community/about/community-guidelines/
List Archives: 
https://lists.ovirt.org/archives/list/users@ovirt.org/message/KWR5BLKHEVO2MIRMVUXCAIZEZVZK4BEU/

[ovirt-users] Proxy setup for image repositories

Eg, for the default ovirt-image-repository storage domain, is it possible
to setup a proxy server for access?
Thanks
Gianluca
___
Users mailing list -- users@ovirt.org
To unsubscribe send an email to users-le...@ovirt.org
Privacy Statement: https://www.ovirt.org/privacy-policy.html
oVirt Code of Conduct: 
https://www.ovirt.org/community/about/community-guidelines/
List Archives: 
https://lists.ovirt.org/archives/list/users@ovirt.org/message/5Z2DE64KIWVO5PN7NBAV6N4TWG6W3UDR/

[ovirt-users] Re: Fwd: Install of new ovirt baremetal system 4.3.9

On Wed, May 6, 2020 at 4:43 PM kelley bryan 
wrote:

> Thanks for the log location.
> After reading all I could in logs it appeared Firewalld had issue so I
> manually did these:
> firewall-cmd --add-service=http --permanent
> firewall-cmd --add-service=https --permanent
> Engine deploy finished with no more errors.
>
>
I don't know your particular architecture and mode of installation, but
useful readings in downstream RHV documentation follow:

- for external engine server setup:
https://access.redhat.com/documentation/en-us/red_hat_virtualization/4.3/html/installing_red_hat_virtualization_as_a_standalone_manager_with_local_databases/rhv_requirements#RHV-manager-firewall-requirements_SM_localDB_deploy

- for hosted engine using cockpit (recommended)
https://access.redhat.com/documentation/en-us/red_hat_virtualization/4.3/html/installing_red_hat_virtualization_as_a_self-hosted_engine_using_the_cockpit_web_interface/rhv_requirements#RHV-manager-firewall-requirements_SHE_cockpit_deploy

- for hosted engine setup using cli (alternative)
https://access.redhat.com/documentation/en-us/red_hat_virtualization/4.3/html/installing_red_hat_virtualization_as_a_self-hosted_engine_using_the_command_line/rhv_requirements#RHV-manager-firewall-requirements_SHE_cli_deploy

Gianluca
___
Users mailing list -- users@ovirt.org
To unsubscribe send an email to users-le...@ovirt.org
Privacy Statement: https://www.ovirt.org/privacy-policy.html
oVirt Code of Conduct: 
https://www.ovirt.org/community/about/community-guidelines/
List Archives: 
https://lists.ovirt.org/archives/list/users@ovirt.org/message/QURU73ICCT7ZRDYOZR6LDQTHAJTT4O25/

[ovirt-users] Re: Fwd: Install of new ovirt baremetal system 4.3.9

Thanks for the log location.
After reading all I could in logs it appeared Firewalld had issue so I manually 
did these:
firewall-cmd --add-service=http --permanent
firewall-cmd --add-service=https --permanent
Engine deploy finished with no more errors.
___
Users mailing list -- users@ovirt.org
To unsubscribe send an email to users-le...@ovirt.org
Privacy Statement: https://www.ovirt.org/privacy-policy.html
oVirt Code of Conduct: 
https://www.ovirt.org/community/about/community-guidelines/
List Archives: 
https://lists.ovirt.org/archives/list/users@ovirt.org/message/FIOB3XNFCYCBYIK7FQKLPMOYSJY5SURQ/

[ovirt-users] Re: Fwd: Install of new ovirt baremetal system 4.3.9

On Wed, May 6, 2020 at 12:22 PM Anton Marchukov  wrote:
[snip]

Engine deployment fails near end:
> [ ERROR ] fatal: [localhost]: FAILED! => {"changed": true, "cmd": "set
> -euo pipefail && firewall-cmd --get-active-zones | grep -v
> \"^\\s*interfaces\"", "delta": "0:00:00.352904", "end": "2020-05-05
> 22:28:01.561606", "msg": "non-zero return code", "rc": 1, "start":
> "2020-05-05 22:28:01.208702", "stderr": "", "stderr_lines": [], "stdout":
> "", "stdout_lines": []}
>
> The system may not be provisioned according to the playbook results:
> please check the logs for the issue, fix accordingly or re-deploy from
> scratch.\n"}
>
> were does ovirt store logs?
> ___
> Infra mailing list -- in...@ovirt.org
> To unsubscribe send an email to infra-le...@ovirt.org
> Privacy Statement: https://www.ovirt.org/privacy-policy.html
> oVirt Code of Conduct:
> https://www.ovirt.org/community/about/community-guidelines/
> List Archives:
> https://lists.ovirt.org/archives/list/in...@ovirt.org/message/XALRUKVRYFC2NFN42STINRAP3W6RRIKU/
>
>


It is not clear the originator... anyway:

- for engine related logs
/var/log/ovirt-engine/engine.log on the server where the oVirt engine
service runs

- for host related logs (in case the command failure is also at host level
and then communicated to engine)
/var/log/vdsm/vdsm.log on the server representing the hypervisor involved
for the command

HIH,

Gianluca
___
Users mailing list -- users@ovirt.org
To unsubscribe send an email to users-le...@ovirt.org
Privacy Statement: https://www.ovirt.org/privacy-policy.html
oVirt Code of Conduct: 
https://www.ovirt.org/community/about/community-guidelines/
List Archives: 
https://lists.ovirt.org/archives/list/users@ovirt.org/message/VJ32T56GXVVV5GKZ7KOEEKMPKTXTGBQJ/

[ovirt-users] Re: Unable to import CA certificate list

Hi Martin,

I build the ovirt-engine from the source and copied the bll.jar to the
correct place. Indeed, my cert issue is now gone.

Thanks, Sakari

On Wed, May 6, 2020 at 12:25 PM Sakari Poussa  wrote:

> Thanks for the clarification. I would really like to avoid starting to
> build engine myself.
>
> Do you have a public CI that builds master so I can pick up the engine rpm
> from there?
> When do you plan to release beta5?
>
> Thanks, Sakari
>
> On Wed, May 6, 2020 at 11:52 AM Martin Perina  wrote:
>
>>
>> On Wed, May 6, 2020 at 9:00 AM Sakari Poussa  wrote:
>>
>>> Hi Martin,
>>>
>>> Seems that I am running the correct versions. Can you elaborate what the
>>> issue is/was and where is the fix? I can then dive deeper with my debugging.
>>>
>>
>> We have changed the way how parameters are passed from engine through
>> ansible-runner-service to ansible-runner to eliminate parameter escaping
>> and still allowing parallel playbooks execution. So you also need to have
>> patch https://gerrit.ovirt.org/108532 included in your ovirt-engine,
>> which removes the additional escaping.
>>
>>>
>>> Thanks, Sakari
>>>
>>> $ dnf info python3-ansible-runner ansible-runner-service
>>> Last metadata expiration check: 0:02:12 ago on Wed 06 May 2020 09:51:37
>>> AM EEST.
>>> Installed Packages
>>> Name : ansible-runner-service
>>> Version  : 1.0.2
>>> Release  : 1.el8
>>> Architecture : noarch
>>> Size : 252 k
>>> Source   : ansible-runner-service-1.0.2-1.el8.src.rpm
>>> Repository   : @System
>>> From repo: ovirt-4.4-centos-ovirt44
>>> Summary  : RESTful API for ansible/ansible_runner execution
>>> License  : ASL 2.0
>>> Description  : This package provides the Ansible Runner Service source
>>> files. Ansible runner service exposes a REST API interface on top of the
>>> functionality provided by ansible and
>>>  : ansible_runner.
>>>  :
>>>  : The Ansible Runner Service provided in this packages is
>>> intended to be used as uwgsi app exposed by Nginx in a Container.
>>>  : Dependencies, and configuration tasks must be performed
>>> in the container.
>>>  :
>>>  : Ansible Runner Service listens on https://localhost:5001
>>> by default for playbook or ansible inventory requests. For developers
>>> interested in using the API, all the available
>>>  : endpoints are documented at https://localhost:5001/api.
>>>  :
>>>  : In addition to the API endpoints, the daemon also
>>> provides a /metrics endpoint for prometheus integration. A sample Grafana
>>> dashboard is provided within
>>>  : /usr/share/doc/ansible-runner-service
>>>
>>> Name : python3-ansible-runner
>>> Version  : 1.4.5
>>> Release  : 1.el8
>>> Architecture : noarch
>>> Size : 340 k
>>> Source   : ansible-runner-1.4.5-1.el8.src.rpm
>>> Repository   : @System
>>> From repo: ovirt-4.4-centos-ovirt44
>>> Summary  : A tool and python library to interface with Ansible
>>> URL  : https://github.com/ansible/ansible-runner
>>> License  : ASL 2.0
>>> Description  : Ansible Runner is a tool and python library that helps
>>> when interfacing with
>>>  : Ansible from other systems whether through a container
>>> image interface, as a
>>>  : standalone tool, or imported into a python project.
>>>
>>>
>>> On Wed, May 6, 2020 at 9:27 AM Martin Perina  wrote:
>>>
 Hi,

 the issue has been fixed on master, it seems that you are using old
 ovirt-engine and/or old ansible-runner-service. Please upgrade to latest
 released ovirt-engine with ansible-runner-service-1.0.2 and
 python3-ansible-runner-1.4.5

 Regards,
 Martin


 On Wed, May 6, 2020 at 6:50 AM Sakari Poussa  wrote:

> Hi,
>
> I am using 4.4 beta4 and not able to add new hosts to the datacenter.
> Also "Enroll Certificate" fails.
>
> On nodes, I get the following error message:
>
> libvirtd[20399]: Unable to import CA certificate list
> /etc/pki/vdsm/certs/cacert.pem
>
> The root cause is the malformed cert:
>
> $ cat /etc/pki/vdsm/certs/cacert.pem
> -BEGIN CERTIFICATE-\nMIID XXX
>
> That, is the .pem file is just one long line with \n characters
> instead of real newlines. If I convert the \n to real newlines libvirtd
> starts but that is not the end solution since other issues surfaces.
>
> The malforming happens when the engine copies (via ansible) the CA
> cert to the node(s).
>
> Any ideas what is going on?
>
> Thanks, Sakari
>
>
>
>
> ___
> Users mailing list -- users@ovirt.org
> To unsubscribe send an email to users-le...@ovirt.org
> Privacy Statement: https://www.ovirt.org/privacy-policy.html
> oVirt Code of Conduct:
>

[ovirt-users] Fwd: Ovirt host GetGlusterVolumeHealInfoVDS failed events

2020-05-06 Thread Anton Marchukov

Forwarding to oVirt users list.

-- Forwarded message -
From: 
Date: Wed, May 6, 2020 at 12:01 PM
Subject: Ovirt host GetGlusterVolumeHealInfoVDS failed events
To: 

Hi,

We have a oVirt cluster with 4 hosts and hosted engine running on one of
them (all the nodes provide the storage with GlusterFS)
Currently there are 53 VMs running.
The version of the oVirt-Engine is 4.2.8.2-1.el7 and GlusterFS is 3.12.15.

>From past 1 week, we seem to have multiple events popping up on Ovirt-UI
about the GetGlusterVolumeHealInfoVDS from all the nodes randomly like one
ERROR event for every ~13minutes.

Sample Event dashboard example:
May 4, 2020, 2:32:14 PM - Status of host  was set to Up.
May 4, 2020, 2:32:11 PM - Manually synced the storage devices from host

May 4, 2020, 2:31:55 PM - Host  is not responding. Host cannot be
fenced automatically because power management for the host is disabled.
May 4, 2020, 2:31:55 PM - VDSM  command GetGlusterVolumeHealInfoVDS
failed: Message timeout which can be caused by communication issues

May 4, 2020, 2:19:14 PM - Status of host  was set to Up.
May 4, 2020, 2:19:12 PM - Manually synced the storage devices from host

May 4, 2020, 2:18:49 PM - Host  is not responding. Host cannot be
fenced automatically because power management for the host is disabled.
May 4, 2020, 2:18:49 PM - VDSM  command GetGlusterVolumeHealInfoVDS
failed: Message timeout which can be caused by communication issues

May 4, 2020, 2:05:55 PM - Status of host  was set to Up.
May 4, 2020, 2:05:54 PM - Manually synced the storage devices from host

May 4, 2020, 2:05:35 PM - Host  is not responding. Host cannot be
fenced automatically because power management for the host is disabled.
May 4, 2020, 2:05:35 PM - VDSM  command GetGlusterVolumeHealInfoVDS
failed: Message timeout which can be caused by communication issues

May 4, 2020, 1:52:45 PM - Status of host  was set to Up.
May 4, 2020, 1:52:44 PM - Manually synced the storage devices from host

May 4, 2020, 1:52:22 PM - Host  is not responding. Host cannot be
fenced automatically because power management for the host is disabled.
May 4, 2020, 1:52:22 PM - VDSM  command GetGlusterVolumeHealInfoVDS
failed: Message timeout which can be caused by communication issues

May 4, 2020, 1:39:11 PM - Status of host  was set to Up.
May 4, 2020, 1:39:11 PM - Manually synced the storage devices from host

May 4, 2020, 1:39:11 PM - Host  is not responding. Host cannot be
fenced automatically because power management for the host is disabled.
May 4, 2020, 1:39:11 PM - VDSM  command GetGlusterVolumeHealInfoVDS
failed: Message timeout which can be caused by communication issues

May 4, 2020, 1:26:29 PM - Status of host  was set to Up.
May 4, 2020, 1:26:28 PM - Manually synced the storage devices from host

May 4, 2020, 1:26:11 PM - Host  is not responding. Host cannot be
fenced automatically because power management for the host is disabled.
May 4, 2020, 1:26:11 PM - VDSM  command GetGlusterVolumeHealInfoVDS
failed: Message timeout which can be caused by communication issues

May 4, 2020, 1:13:10 PM - Status of host  was set to Up.
May 4, 2020, 1:13:08 PM - Manually synced the storage devices from host

May 4, 2020, 1:12:51 PM - Host  is not responding. Host cannot be
fenced automatically because power management for the host is disabled.
May 4, 2020, 1:12:51 PM - VDSM  command GetGlusterVolumeHealInfoVDS
failed: Message timeout which can be caused by communication issues
 and so on.

When I look at the Compute > Hosts dashboard, I see the host status to be
DOWN when VDSM event (GetGlusterVolumeHealInfoVDS failed) is popped and
automatically the host status is set to UP within no time.
FYI: when host status is DOWN, the VM's running on that host are not
migrating and everything is running perfectly fine.

This is happening all day. Is there something I can troubleshoot?
Appreciate your comments.
___
Infra mailing list -- in...@ovirt.org
To unsubscribe send an email to infra-le...@ovirt.org
Privacy Statement: https://www.ovirt.org/privacy-policy.html
oVirt Code of Conduct:
https://www.ovirt.org/community/about/community-guidelines/
List Archives:
https://lists.ovirt.org/archives/list/in...@ovirt.org/message/GNE3QC7GLEER4ZPHGP3H6M27DPSKCQO3/

-- 
Anton Marchukov
Associate Manager - RHV DevOps - Red Hat
___
Users mailing list -- users@ovirt.org
To unsubscribe send an email to users-le...@ovirt.org
Privacy Statement: https://www.ovirt.org/privacy-policy.html
oVirt Code of Conduct: 
https://www.ovirt.org/community/about/community-guidelines/
List Archives: 
https://lists.ovirt.org/archives/list/users@ovirt.org/message/RGUTF3DUTK4XTG7N4MM3MM3LUAFIIPJE/

[ovirt-users] Fwd: Install of new ovirt baremetal system 4.3.9

2020-05-06 Thread Anton Marchukov

Forwarding to oVirt users list since it looks to be better suited there.

-- Forwarded message -
From: kelley bryan 
Date: Wed, May 6, 2020 at 12:02 PM
Subject: Install of new ovirt baremetal system 4.3.9
To: 


Engine deployment fails near end:
[ ERROR ] fatal: [localhost]: FAILED! => {"changed": true, "cmd": "set -euo
pipefail && firewall-cmd --get-active-zones | grep -v \"^\\s*interfaces\"",
"delta": "0:00:00.352904", "end": "2020-05-05 22:28:01.561606", "msg":
"non-zero return code", "rc": 1, "start": "2020-05-05 22:28:01.208702",
"stderr": "", "stderr_lines": [], "stdout": "", "stdout_lines": []}

The system may not be provisioned according to the playbook results: please
check the logs for the issue, fix accordingly or re-deploy from scratch.\n"}

were does ovirt store logs?
___
Infra mailing list -- in...@ovirt.org
To unsubscribe send an email to infra-le...@ovirt.org
Privacy Statement: https://www.ovirt.org/privacy-policy.html
oVirt Code of Conduct:
https://www.ovirt.org/community/about/community-guidelines/
List Archives:
https://lists.ovirt.org/archives/list/in...@ovirt.org/message/XALRUKVRYFC2NFN42STINRAP3W6RRIKU/


-- 
Anton Marchukov
Associate Manager - RHV DevOps - Red Hat
___
Users mailing list -- users@ovirt.org
To unsubscribe send an email to users-le...@ovirt.org
Privacy Statement: https://www.ovirt.org/privacy-policy.html
oVirt Code of Conduct: 
https://www.ovirt.org/community/about/community-guidelines/
List Archives: 
https://lists.ovirt.org/archives/list/users@ovirt.org/message/CVPOWRYJKS4QWDI3M5EPKCEXAEBNZSEW/

[ovirt-users] Re: Unable to import CA certificate list

Thanks for the clarification. I would really like to avoid starting to
build engine myself.

Do you have a public CI that builds master so I can pick up the engine rpm
from there?
When do you plan to release beta5?

Thanks, Sakari

On Wed, May 6, 2020 at 11:52 AM Martin Perina  wrote:

>
> On Wed, May 6, 2020 at 9:00 AM Sakari Poussa  wrote:
>
>> Hi Martin,
>>
>> Seems that I am running the correct versions. Can you elaborate what the
>> issue is/was and where is the fix? I can then dive deeper with my debugging.
>>
>
> We have changed the way how parameters are passed from engine through
> ansible-runner-service to ansible-runner to eliminate parameter escaping
> and still allowing parallel playbooks execution. So you also need to have
> patch https://gerrit.ovirt.org/108532 included in your ovirt-engine,
> which removes the additional escaping.
>
>>
>> Thanks, Sakari
>>
>> $ dnf info python3-ansible-runner ansible-runner-service
>> Last metadata expiration check: 0:02:12 ago on Wed 06 May 2020 09:51:37
>> AM EEST.
>> Installed Packages
>> Name : ansible-runner-service
>> Version  : 1.0.2
>> Release  : 1.el8
>> Architecture : noarch
>> Size : 252 k
>> Source   : ansible-runner-service-1.0.2-1.el8.src.rpm
>> Repository   : @System
>> From repo: ovirt-4.4-centos-ovirt44
>> Summary  : RESTful API for ansible/ansible_runner execution
>> License  : ASL 2.0
>> Description  : This package provides the Ansible Runner Service source
>> files. Ansible runner service exposes a REST API interface on top of the
>> functionality provided by ansible and
>>  : ansible_runner.
>>  :
>>  : The Ansible Runner Service provided in this packages is
>> intended to be used as uwgsi app exposed by Nginx in a Container.
>>  : Dependencies, and configuration tasks must be performed in
>> the container.
>>  :
>>  : Ansible Runner Service listens on https://localhost:5001
>> by default for playbook or ansible inventory requests. For developers
>> interested in using the API, all the available
>>  : endpoints are documented at https://localhost:5001/api.
>>  :
>>  : In addition to the API endpoints, the daemon also provides
>> a /metrics endpoint for prometheus integration. A sample Grafana dashboard
>> is provided within
>>  : /usr/share/doc/ansible-runner-service
>>
>> Name : python3-ansible-runner
>> Version  : 1.4.5
>> Release  : 1.el8
>> Architecture : noarch
>> Size : 340 k
>> Source   : ansible-runner-1.4.5-1.el8.src.rpm
>> Repository   : @System
>> From repo: ovirt-4.4-centos-ovirt44
>> Summary  : A tool and python library to interface with Ansible
>> URL  : https://github.com/ansible/ansible-runner
>> License  : ASL 2.0
>> Description  : Ansible Runner is a tool and python library that helps
>> when interfacing with
>>  : Ansible from other systems whether through a container
>> image interface, as a
>>  : standalone tool, or imported into a python project.
>>
>>
>> On Wed, May 6, 2020 at 9:27 AM Martin Perina  wrote:
>>
>>> Hi,
>>>
>>> the issue has been fixed on master, it seems that you are using old
>>> ovirt-engine and/or old ansible-runner-service. Please upgrade to latest
>>> released ovirt-engine with ansible-runner-service-1.0.2 and
>>> python3-ansible-runner-1.4.5
>>>
>>> Regards,
>>> Martin
>>>
>>>
>>> On Wed, May 6, 2020 at 6:50 AM Sakari Poussa  wrote:
>>>
 Hi,

 I am using 4.4 beta4 and not able to add new hosts to the datacenter.
 Also "Enroll Certificate" fails.

 On nodes, I get the following error message:

 libvirtd[20399]: Unable to import CA certificate list
 /etc/pki/vdsm/certs/cacert.pem

 The root cause is the malformed cert:

 $ cat /etc/pki/vdsm/certs/cacert.pem
 -BEGIN CERTIFICATE-\nMIID XXX

 That, is the .pem file is just one long line with \n characters instead
 of real newlines. If I convert the \n to real newlines libvirtd starts but
 that is not the end solution since other issues surfaces.

 The malforming happens when the engine copies (via ansible) the CA cert
 to the node(s).

 Any ideas what is going on?

 Thanks, Sakari




 ___
 Users mailing list -- users@ovirt.org
 To unsubscribe send an email to users-le...@ovirt.org
 Privacy Statement: https://www.ovirt.org/privacy-policy.html
 oVirt Code of Conduct:
 https://www.ovirt.org/community/about/community-guidelines/
 List Archives:
 https://lists.ovirt.org/archives/list/users@ovirt.org/message/TZ6EA3X257YGFYQTLFRILGGCQKQKTT2V/

>>>
>>>
>>> --
>>> Martin Perina
>>> Manager, Software Engineering
>>> Red Hat Czech s.r.o.
>>>
>>
>>
>> --
>> Sakari Poussa
>> 040 348 2970
>>
>
>
> --
> Martin Perina
> Manager,

[ovirt-users] Re: Unable to import CA certificate list

2020-05-06 Thread Martin Perina

On Wed, May 6, 2020 at 9:00 AM Sakari Poussa  wrote:

> Hi Martin,
>
> Seems that I am running the correct versions. Can you elaborate what the
> issue is/was and where is the fix? I can then dive deeper with my debugging.
>

We have changed the way how parameters are passed from engine through
ansible-runner-service to ansible-runner to eliminate parameter escaping
and still allowing parallel playbooks execution. So you also need to have
patch https://gerrit.ovirt.org/108532 included in your ovirt-engine, which
removes the additional escaping.

>
> Thanks, Sakari
>
> $ dnf info python3-ansible-runner ansible-runner-service
> Last metadata expiration check: 0:02:12 ago on Wed 06 May 2020 09:51:37 AM
> EEST.
> Installed Packages
> Name : ansible-runner-service
> Version  : 1.0.2
> Release  : 1.el8
> Architecture : noarch
> Size : 252 k
> Source   : ansible-runner-service-1.0.2-1.el8.src.rpm
> Repository   : @System
> From repo: ovirt-4.4-centos-ovirt44
> Summary  : RESTful API for ansible/ansible_runner execution
> License  : ASL 2.0
> Description  : This package provides the Ansible Runner Service source
> files. Ansible runner service exposes a REST API interface on top of the
> functionality provided by ansible and
>  : ansible_runner.
>  :
>  : The Ansible Runner Service provided in this packages is
> intended to be used as uwgsi app exposed by Nginx in a Container.
>  : Dependencies, and configuration tasks must be performed in
> the container.
>  :
>  : Ansible Runner Service listens on https://localhost:5001
> by default for playbook or ansible inventory requests. For developers
> interested in using the API, all the available
>  : endpoints are documented at https://localhost:5001/api.
>  :
>  : In addition to the API endpoints, the daemon also provides
> a /metrics endpoint for prometheus integration. A sample Grafana dashboard
> is provided within
>  : /usr/share/doc/ansible-runner-service
>
> Name : python3-ansible-runner
> Version  : 1.4.5
> Release  : 1.el8
> Architecture : noarch
> Size : 340 k
> Source   : ansible-runner-1.4.5-1.el8.src.rpm
> Repository   : @System
> From repo: ovirt-4.4-centos-ovirt44
> Summary  : A tool and python library to interface with Ansible
> URL  : https://github.com/ansible/ansible-runner
> License  : ASL 2.0
> Description  : Ansible Runner is a tool and python library that helps when
> interfacing with
>  : Ansible from other systems whether through a container
> image interface, as a
>  : standalone tool, or imported into a python project.
>
>
> On Wed, May 6, 2020 at 9:27 AM Martin Perina  wrote:
>
>> Hi,
>>
>> the issue has been fixed on master, it seems that you are using old
>> ovirt-engine and/or old ansible-runner-service. Please upgrade to latest
>> released ovirt-engine with ansible-runner-service-1.0.2 and
>> python3-ansible-runner-1.4.5
>>
>> Regards,
>> Martin
>>
>>
>> On Wed, May 6, 2020 at 6:50 AM Sakari Poussa  wrote:
>>
>>> Hi,
>>>
>>> I am using 4.4 beta4 and not able to add new hosts to the datacenter.
>>> Also "Enroll Certificate" fails.
>>>
>>> On nodes, I get the following error message:
>>>
>>> libvirtd[20399]: Unable to import CA certificate list
>>> /etc/pki/vdsm/certs/cacert.pem
>>>
>>> The root cause is the malformed cert:
>>>
>>> $ cat /etc/pki/vdsm/certs/cacert.pem
>>> -BEGIN CERTIFICATE-\nMIID XXX
>>>
>>> That, is the .pem file is just one long line with \n characters instead
>>> of real newlines. If I convert the \n to real newlines libvirtd starts but
>>> that is not the end solution since other issues surfaces.
>>>
>>> The malforming happens when the engine copies (via ansible) the CA cert
>>> to the node(s).
>>>
>>> Any ideas what is going on?
>>>
>>> Thanks, Sakari
>>>
>>>
>>>
>>>
>>> ___
>>> Users mailing list -- users@ovirt.org
>>> To unsubscribe send an email to users-le...@ovirt.org
>>> Privacy Statement: https://www.ovirt.org/privacy-policy.html
>>> oVirt Code of Conduct:
>>> https://www.ovirt.org/community/about/community-guidelines/
>>> List Archives:
>>> https://lists.ovirt.org/archives/list/users@ovirt.org/message/TZ6EA3X257YGFYQTLFRILGGCQKQKTT2V/
>>>
>>
>>
>> --
>> Martin Perina
>> Manager, Software Engineering
>> Red Hat Czech s.r.o.
>>
>
>
> --
> Sakari Poussa
> 040 348 2970
>


-- 
Martin Perina
Manager, Software Engineering
Red Hat Czech s.r.o.
___
Users mailing list -- users@ovirt.org
To unsubscribe send an email to users-le...@ovirt.org
Privacy Statement: https://www.ovirt.org/privacy-policy.html
oVirt Code of Conduct: 
https://www.ovirt.org/community/about/community-guidelines/
List Archives: 
https://lists.ovirt.org/archives/list/users@ovirt.org/message/OXRUJGZCZUOIFULIFMBZDTS5DJOFJGTI/

[ovirt-users] Re: Unable to import CA certificate list

Hi Martin,

Few more data points.

1) I have the latest released ovirt-engine.

2) I also tried using the ovirt.infra ansible role and I get the exact same
issue and behavior.

Thanks, Sakari

dnf info ovirt-engine
Last metadata expiration check: 0:00:08 ago on Wed 06 May 2020 11:49:20 AM
EEST.
Installed Packages
Name : ovirt-engine
Version  : 4.4.0
Release  : 0.7.beta4.20200417092918.gitd2e0a32d1a6.el8
Architecture : noarch
Size : 38 M
Source   :
ovirt-engine-4.4.0-0.7.beta4.20200417092918.gitd2e0a32d1a6.el8.src.rpm
Repository   : @System
>From repo: ovirt-4.4-pre
Summary  : Management server for Open Virtualization
URL  : http://www.ovirt.org
License  : ASL 2.0
Description  : oVirt Engine is a feature-rich server virtualization
management
 : system that provides advanced capabilities for managing the
Open
 : virtualization infrastructure for Servers and Desktops.

On Wed, May 6, 2020 at 10:00 AM Sakari Poussa  wrote:

> Hi Martin,
>
> Seems that I am running the correct versions. Can you elaborate what the
> issue is/was and where is the fix? I can then dive deeper with my debugging.
>
> Thanks, Sakari
>
> $ dnf info python3-ansible-runner ansible-runner-service
> Last metadata expiration check: 0:02:12 ago on Wed 06 May 2020 09:51:37 AM
> EEST.
> Installed Packages
> Name : ansible-runner-service
> Version  : 1.0.2
> Release  : 1.el8
> Architecture : noarch
> Size : 252 k
> Source   : ansible-runner-service-1.0.2-1.el8.src.rpm
> Repository   : @System
> From repo: ovirt-4.4-centos-ovirt44
> Summary  : RESTful API for ansible/ansible_runner execution
> License  : ASL 2.0
> Description  : This package provides the Ansible Runner Service source
> files. Ansible runner service exposes a REST API interface on top of the
> functionality provided by ansible and
>  : ansible_runner.
>  :
>  : The Ansible Runner Service provided in this packages is
> intended to be used as uwgsi app exposed by Nginx in a Container.
>  : Dependencies, and configuration tasks must be performed in
> the container.
>  :
>  : Ansible Runner Service listens on https://localhost:5001
> by default for playbook or ansible inventory requests. For developers
> interested in using the API, all the available
>  : endpoints are documented at https://localhost:5001/api.
>  :
>  : In addition to the API endpoints, the daemon also provides
> a /metrics endpoint for prometheus integration. A sample Grafana dashboard
> is provided within
>  : /usr/share/doc/ansible-runner-service
>
> Name : python3-ansible-runner
> Version  : 1.4.5
> Release  : 1.el8
> Architecture : noarch
> Size : 340 k
> Source   : ansible-runner-1.4.5-1.el8.src.rpm
> Repository   : @System
> From repo: ovirt-4.4-centos-ovirt44
> Summary  : A tool and python library to interface with Ansible
> URL  : https://github.com/ansible/ansible-runner
> License  : ASL 2.0
> Description  : Ansible Runner is a tool and python library that helps when
> interfacing with
>  : Ansible from other systems whether through a container
> image interface, as a
>  : standalone tool, or imported into a python project.
>
>
> On Wed, May 6, 2020 at 9:27 AM Martin Perina  wrote:
>
>> Hi,
>>
>> the issue has been fixed on master, it seems that you are using old
>> ovirt-engine and/or old ansible-runner-service. Please upgrade to latest
>> released ovirt-engine with ansible-runner-service-1.0.2 and
>> python3-ansible-runner-1.4.5
>>
>> Regards,
>> Martin
>>
>>
>> On Wed, May 6, 2020 at 6:50 AM Sakari Poussa  wrote:
>>
>>> Hi,
>>>
>>> I am using 4.4 beta4 and not able to add new hosts to the datacenter.
>>> Also "Enroll Certificate" fails.
>>>
>>> On nodes, I get the following error message:
>>>
>>> libvirtd[20399]: Unable to import CA certificate list
>>> /etc/pki/vdsm/certs/cacert.pem
>>>
>>> The root cause is the malformed cert:
>>>
>>> $ cat /etc/pki/vdsm/certs/cacert.pem
>>> -BEGIN CERTIFICATE-\nMIID XXX
>>>
>>> That, is the .pem file is just one long line with \n characters instead
>>> of real newlines. If I convert the \n to real newlines libvirtd starts but
>>> that is not the end solution since other issues surfaces.
>>>
>>> The malforming happens when the engine copies (via ansible) the CA cert
>>> to the node(s).
>>>
>>> Any ideas what is going on?
>>>
>>> Thanks, Sakari
>>>
>>>
>>>
>>>
>>> ___
>>> Users mailing list -- users@ovirt.org
>>> To unsubscribe send an email to users-le...@ovirt.org
>>> Privacy Statement: https://www.ovirt.org/privacy-policy.html
>>> oVirt Code of Conduct:
>>> https://www.ovirt.org/community/about/community-guidelines/
>>> List Archives:
>>>

[ovirt-users] Re: Backup software recommendations

2020-05-06 Thread houwei . chen

You are welcome! Maybe some deeper answers can help you more:
- disk to disk backups - Vinchin Backup & Recovery is VM level backup, is disk
to disk backup.
- inter-site replication with rate limiting - though Vinchin currently not
support physical server backup, next version in June will support file backup
for physical servers. is this inter-site replication request for your physical
servers or virtual servers?
- be able to handle Linux thin volumes (think RHGS) - be able to backup data to
this RHGS? or RHGS as a production storage? anyway,Vinchin can handle it in
both.
- support BMR ans granular file / directory restore - file level restore of
course vinchin supported! but I really have no idea what is "BMR" you mentioned.
- correctly handle Windows VSS - application awareness, yes, vinchin supported!
- support RHEL point releases as soon as they are released - if you mean
physical servers running RHEL OS, oops! We can't help you. But if you mean the
OS running in RHV and Hyper-V, then all new point releases will be catched up
with by Vinchin!

Hope my answer help you!
You can go to Vinchin website to free try this software and make further
evaluation.

Best Regards,
___
Users mailing list -- users@ovirt.org
To unsubscribe send an email to users-le...@ovirt.org
Privacy Statement: https://www.ovirt.org/privacy-policy.html
oVirt Code of Conduct:
https://www.ovirt.org/community/about/community-guidelines/
List Archives:
https://lists.ovirt.org/archives/list/users@ovirt.org/message/EPVTCAPZNHUWPMUYZPRL4D5EOELBSZC2/

[ovirt-users] Re: Backup software recommendations

2020-05-06 Thread Tony Brian Albers

Also:

Storware vprotect
Acronis Cyber Backup

There might be others.

/tony

On Wed, 2020-05-06 at 16:03 +0800, Colin Coe wrote:
> Thanks for the reply
> 
> On Wed, 6 May 2020 at 15:18,  wrote:
> > Take Vinchin Backup & Recovery as a chioce, it can agentlessly
> > backup RHV and Hyper-V. But current version does not support
> > physical windows/linux server backup.
> > ___
> > Users mailing list -- users@ovirt.org
> > To unsubscribe send an email to users-le...@ovirt.org
> > Privacy Statement: https://www.ovirt.org/privacy-policy.html
> > oVirt Code of Conduct: 
> > https://www.ovirt.org/community/about/community-guidelines/
> > List Archives: 
> > https://lists.ovirt.org/archives/list/users@ovirt.org/message/6AEOXON2ZUO3PIG5Z7RPPAB6VP35D5XA/
> 
> ___
> Users mailing list -- users@ovirt.org
> To unsubscribe send an email to users-le...@ovirt.org
> Privacy Statement: https://www.ovirt.org/privacy-policy.html
> oVirt Code of Conduct: 
> https://www.ovirt.org/community/about/community-guidelines/
> List Archives: 
> https://lists.ovirt.org/archives/list/users@ovirt.org/message/3NDXFSL6UELAKYGSD7B3ZUWZMDSUGBQH/
-- 
Tony Albers - Systems Architect - IT Development
Royal Danish Library, Victor Albecks Vej 1, 8000 Aarhus C, Denmark
Tel: +45 2566 2383 - CVR/SE: 2898 8842 - EAN: 5798000792142
___
Users mailing list -- users@ovirt.org
To unsubscribe send an email to users-le...@ovirt.org
Privacy Statement: https://www.ovirt.org/privacy-policy.html
oVirt Code of Conduct: 
https://www.ovirt.org/community/about/community-guidelines/
List Archives: 
https://lists.ovirt.org/archives/list/users@ovirt.org/message/WZ3XDLVXKGERXH2ROSHNBH55QBYTJWMM/

[ovirt-users] Re: Backup software recommendations

2020-05-06 Thread Colin Coe

Thanks for the reply

On Wed, 6 May 2020 at 15:18,  wrote:

> Take Vinchin Backup & Recovery as a chioce, it can agentlessly backup RHV
> and Hyper-V. But current version does not support physical windows/linux
> server backup.
> ___
> Users mailing list -- users@ovirt.org
> To unsubscribe send an email to users-le...@ovirt.org
> Privacy Statement: https://www.ovirt.org/privacy-policy.html
> oVirt Code of Conduct:
> https://www.ovirt.org/community/about/community-guidelines/
> List Archives:
> https://lists.ovirt.org/archives/list/users@ovirt.org/message/6AEOXON2ZUO3PIG5Z7RPPAB6VP35D5XA/
>
___
Users mailing list -- users@ovirt.org
To unsubscribe send an email to users-le...@ovirt.org
Privacy Statement: https://www.ovirt.org/privacy-policy.html
oVirt Code of Conduct: 
https://www.ovirt.org/community/about/community-guidelines/
List Archives: 
https://lists.ovirt.org/archives/list/users@ovirt.org/message/3NDXFSL6UELAKYGSD7B3ZUWZMDSUGBQH/

[ovirt-users] centos 8 stream status

2020-05-06 Thread Nathanaël Blanchet


Hello,

Centos 8 stream should be the preview of centos 8, so why not using 
right now it instead of waiting GA 8.2?


--
Nathanaël Blanchet

Supervision réseau
SIRE
227 avenue Professeur-Jean-Louis-Viala
34193 MONTPELLIER CEDEX 5   
Tél. 33 (0)4 67 54 84 55
Fax  33 (0)4 67 54 84 14
blanc...@abes.fr
___
Users mailing list -- users@ovirt.org
To unsubscribe send an email to users-le...@ovirt.org
Privacy Statement: https://www.ovirt.org/privacy-policy.html
oVirt Code of Conduct: 
https://www.ovirt.org/community/about/community-guidelines/
List Archives: 
https://lists.ovirt.org/archives/list/users@ovirt.org/message/WFGADEFI7FIUTHQUO4XN6HCG5U3HYBMP/

[ovirt-users] Re: Backup software recommendations

2020-05-06 Thread houwei . chen

Take Vinchin Backup & Recovery as a chioce, it can agentlessly backup RHV and 
Hyper-V. But current version does not support physical windows/linux server 
backup.
___
Users mailing list -- users@ovirt.org
To unsubscribe send an email to users-le...@ovirt.org
Privacy Statement: https://www.ovirt.org/privacy-policy.html
oVirt Code of Conduct: 
https://www.ovirt.org/community/about/community-guidelines/
List Archives: 
https://lists.ovirt.org/archives/list/users@ovirt.org/message/6AEOXON2ZUO3PIG5Z7RPPAB6VP35D5XA/

[ovirt-users] Re: Unable to import CA certificate list