[ovirt-users] Re: Fwd: Install of new ovirt baremetal system 4.3.9
On May 6, 2020 1:20:21 PM GMT+03:00, Anton Marchukov wrote: >Forwarding to oVirt users list since it looks to be better suited >there. > >-- Forwarded message - >From: kelley bryan >Date: Wed, May 6, 2020 at 12:02 PM >Subject: Install of new ovirt baremetal system 4.3.9 >To: > > >Engine deployment fails near end: >[ ERROR ] fatal: [localhost]: FAILED! => {"changed": true, "cmd": "set >-euo >pipefail && firewall-cmd --get-active-zones | grep -v >\"^\\s*interfaces\"", >"delta": "0:00:00.352904", "end": "2020-05-05 22:28:01.561606", "msg": >"non-zero return code", "rc": 1, "start": "2020-05-05 22:28:01.208702", >"stderr": "", "stderr_lines": [], "stdout": "", "stdout_lines": []} > >The system may not be provisioned according to the playbook results: >please >check the logs for the issue, fix accordingly or re-deploy from >scratch.\n"} > >were does ovirt store logs? >___ >Infra mailing list -- in...@ovirt.org >To unsubscribe send an email to infra-le...@ovirt.org >Privacy Statement: https://www.ovirt.org/privacy-policy.html >oVirt Code of Conduct: >https://www.ovirt.org/community/about/community-guidelines/ >List Archives: >https://lists.ovirt.org/archives/list/in...@ovirt.org/message/XALRUKVRYFC2NFN42STINRAP3W6RRIKU/ Hi Kelley, Did you enable firewalld on the hosts ? Do you have any active zones on firewalld ? Actually the play is trying to get the active zones, so it can update the firewall rules. Best Regards, Strahil Nikolov ___ Users mailing list -- users@ovirt.org To unsubscribe send an email to users-le...@ovirt.org Privacy Statement: https://www.ovirt.org/privacy-policy.html oVirt Code of Conduct: https://www.ovirt.org/community/about/community-guidelines/ List Archives: https://lists.ovirt.org/archives/list/users@ovirt.org/message/CCUF7YNPF2FP6IFVABPLTYOZM5QEPD6V/
[ovirt-users] Re: Fwd: Ovirt host GetGlusterVolumeHealInfoVDS failed events
On May 6, 2020 1:21:07 PM GMT+03:00, Anton Marchukov wrote: >Forwarding to oVirt users list. > >-- Forwarded message - >From: >Date: Wed, May 6, 2020 at 12:01 PM >Subject: Ovirt host GetGlusterVolumeHealInfoVDS failed events >To: > > >Hi, > >We have a oVirt cluster with 4 hosts and hosted engine running on one >of >them (all the nodes provide the storage with GlusterFS) >Currently there are 53 VMs running. >The version of the oVirt-Engine is 4.2.8.2-1.el7 and GlusterFS is >3.12.15. > >From past 1 week, we seem to have multiple events popping up on >Ovirt-UI >about the GetGlusterVolumeHealInfoVDS from all the nodes randomly like >one >ERROR event for every ~13minutes. > >Sample Event dashboard example: >May 4, 2020, 2:32:14 PM - Status of host was set to Up. >May 4, 2020, 2:32:11 PM - Manually synced the storage devices from host > >May 4, 2020, 2:31:55 PM - Host is not responding. Host cannot >be >fenced automatically because power management for the host is disabled. >May 4, 2020, 2:31:55 PM - VDSM command >GetGlusterVolumeHealInfoVDS >failed: Message timeout which can be caused by communication issues > >May 4, 2020, 2:19:14 PM - Status of host was set to Up. >May 4, 2020, 2:19:12 PM - Manually synced the storage devices from host > >May 4, 2020, 2:18:49 PM - Host is not responding. Host cannot >be >fenced automatically because power management for the host is disabled. >May 4, 2020, 2:18:49 PM - VDSM command >GetGlusterVolumeHealInfoVDS >failed: Message timeout which can be caused by communication issues > >May 4, 2020, 2:05:55 PM - Status of host was set to Up. >May 4, 2020, 2:05:54 PM - Manually synced the storage devices from host > >May 4, 2020, 2:05:35 PM - Host is not responding. Host cannot >be >fenced automatically because power management for the host is disabled. >May 4, 2020, 2:05:35 PM - VDSM command >GetGlusterVolumeHealInfoVDS >failed: Message timeout which can be caused by communication issues > >May 4, 2020, 1:52:45 PM - Status of host was set to Up. >May 4, 2020, 1:52:44 PM - Manually synced the storage devices from host > >May 4, 2020, 1:52:22 PM - Host is not responding. Host cannot >be >fenced automatically because power management for the host is disabled. >May 4, 2020, 1:52:22 PM - VDSM command >GetGlusterVolumeHealInfoVDS >failed: Message timeout which can be caused by communication issues > >May 4, 2020, 1:39:11 PM - Status of host was set to Up. >May 4, 2020, 1:39:11 PM - Manually synced the storage devices from host > >May 4, 2020, 1:39:11 PM - Host is not responding. Host cannot >be >fenced automatically because power management for the host is disabled. >May 4, 2020, 1:39:11 PM - VDSM command >GetGlusterVolumeHealInfoVDS >failed: Message timeout which can be caused by communication issues > >May 4, 2020, 1:26:29 PM - Status of host was set to Up. >May 4, 2020, 1:26:28 PM - Manually synced the storage devices from host > >May 4, 2020, 1:26:11 PM - Host is not responding. Host cannot >be >fenced automatically because power management for the host is disabled. >May 4, 2020, 1:26:11 PM - VDSM command >GetGlusterVolumeHealInfoVDS >failed: Message timeout which can be caused by communication issues > >May 4, 2020, 1:13:10 PM - Status of host was set to Up. >May 4, 2020, 1:13:08 PM - Manually synced the storage devices from host > >May 4, 2020, 1:12:51 PM - Host is not responding. Host cannot >be >fenced automatically because power management for the host is disabled. >May 4, 2020, 1:12:51 PM - VDSM command >GetGlusterVolumeHealInfoVDS >failed: Message timeout which can be caused by communication issues > and so on. > >When I look at the Compute > Hosts dashboard, I see the host status to >be >DOWN when VDSM event (GetGlusterVolumeHealInfoVDS failed) is popped and >automatically the host status is set to UP within no time. >FYI: when host status is DOWN, the VM's running on that host are not >migrating and everything is running perfectly fine. > >This is happening all day. Is there something I can troubleshoot? >Appreciate your comments. >___ >Infra mailing list -- in...@ovirt.org >To unsubscribe send an email to infra-le...@ovirt.org >Privacy Statement: https://www.ovirt.org/privacy-policy.html >oVirt Code of Conduct: >https://www.ovirt.org/community/about/community-guidelines/ >List Archives: >https://lists.ovirt.org/archives/list/in...@ovirt.org/message/GNE3QC7GLEER4ZPHGP3H6M27DPSKCQO3/ Hi Srivathsa, Based on the logs I have the feeling that you have some communication problems there. Could you check: 1. System load and bandwidth utilization on one of the affected nodes 2. Login on one of the hosts and run ping (to the engine) in a 'screen' or 'tmux' for longer periods 3. Run ping from the engine to each of the hosts (in separate 'screen' or 'tmux' sessions) and store that data in separate files Best Regards, Strahil Nikolov ___ Users
[ovirt-users] did 4.3.9 reset bug https://bugzilla.redhat.com/show_bug.cgi?id=1590266
I am experiencing the error message in the ovirt-hosted-engine-setup-ansible-create_target_vm log {2020-05-06 14:15:30,024-0500 ERROR ansible failed {'status': 'FAILED', 'ansible_type': 'task', 'ansible_task': u"Fail if Engine IP is different from engine's he_fqdn resolved IP", 'ansible_result': u'type: \nstr: {\'msg\': u"Engine VM IP address is while the engine\'s he_fqdn ovirt1-engine.kelleykars.org resolves to 192.168.122.2. If you are using DHCP, check your DHCP reservation configuration", \'changed\': False, \'_ansible_no_log\': False}', 'task_duration': 1, 'ansible_host': u'localhost', 'ansible_playbook': u'/usr/share/ovirt-hosted-engine-setup/ansible/trigger_role.yml'}}:Q! The bug 1590266 says it should report the engine VM IP address xxx.xxx.xxx.xxx while the Engines he_fqdn is x I need to see what it thins is wrong as both dig fqdn engine name and dig -x ip return the correct information. Now this bug looks like it may play but I don't see the failed rediness check in the this log https://access.redhat.com/solutions/4462431 or is it because the vm fails or dies or ??? ___ Users mailing list -- users@ovirt.org To unsubscribe send an email to users-le...@ovirt.org Privacy Statement: https://www.ovirt.org/privacy-policy.html oVirt Code of Conduct: https://www.ovirt.org/community/about/community-guidelines/ List Archives: https://lists.ovirt.org/archives/list/users@ovirt.org/message/D4PRJYTL6DWCYFFDU57PXWTFLGCFOGUT/
[ovirt-users] Re: NFS storage domain forced to use /exports/data ?
hey wait now I show to mounts from NAS server what is going on: One in the expected /exports/data. the other /rhev/data-center/mnt/fsf-dal1001d-fz.adn.networklayer.com ___ Users mailing list -- users@ovirt.org To unsubscribe send an email to users-le...@ovirt.org Privacy Statement: https://www.ovirt.org/privacy-policy.html oVirt Code of Conduct: https://www.ovirt.org/community/about/community-guidelines/ List Archives: https://lists.ovirt.org/archives/list/users@ovirt.org/message/IKTDB2V4NVGBGBSIN6COH3SMRA6S4HJP/
[ovirt-users] NFS storage domain forced to use /exports/data ?
Hello Should the documentation point out that the /exports/data mount point is hard coded in ovirt-hosted-engine-setup-ansible-create_storage_domain.yaml. I think some Data Centers will want to use a different mount path or Did I miss a prompt or entry in the Deployment screen for Hosted-engine-deployment? Bryan ___ Users mailing list -- users@ovirt.org To unsubscribe send an email to users-le...@ovirt.org Privacy Statement: https://www.ovirt.org/privacy-policy.html oVirt Code of Conduct: https://www.ovirt.org/community/about/community-guidelines/ List Archives: https://lists.ovirt.org/archives/list/users@ovirt.org/message/3OBETIUZX4OLSSLPJBDH2HVKOEGNIMPA/
[ovirt-users] Safe to go to 7.8 for CentOS based hypervisors?
Hello, supposing to be already at 4.3.9 level and to have CentOS 7.7 based hosts, are there any blocking factors to update them to 7.8, just released some days ago? Thanks, Gianluca ___ Users mailing list -- users@ovirt.org To unsubscribe send an email to users-le...@ovirt.org Privacy Statement: https://www.ovirt.org/privacy-policy.html oVirt Code of Conduct: https://www.ovirt.org/community/about/community-guidelines/ List Archives: https://lists.ovirt.org/archives/list/users@ovirt.org/message/KWR5BLKHEVO2MIRMVUXCAIZEZVZK4BEU/
[ovirt-users] Proxy setup for image repositories
Eg, for the default ovirt-image-repository storage domain, is it possible to setup a proxy server for access? Thanks Gianluca ___ Users mailing list -- users@ovirt.org To unsubscribe send an email to users-le...@ovirt.org Privacy Statement: https://www.ovirt.org/privacy-policy.html oVirt Code of Conduct: https://www.ovirt.org/community/about/community-guidelines/ List Archives: https://lists.ovirt.org/archives/list/users@ovirt.org/message/5Z2DE64KIWVO5PN7NBAV6N4TWG6W3UDR/
[ovirt-users] Re: Fwd: Install of new ovirt baremetal system 4.3.9
On Wed, May 6, 2020 at 4:43 PM kelley bryan wrote: > Thanks for the log location. > After reading all I could in logs it appeared Firewalld had issue so I > manually did these: > firewall-cmd --add-service=http --permanent > firewall-cmd --add-service=https --permanent > Engine deploy finished with no more errors. > > I don't know your particular architecture and mode of installation, but useful readings in downstream RHV documentation follow: - for external engine server setup: https://access.redhat.com/documentation/en-us/red_hat_virtualization/4.3/html/installing_red_hat_virtualization_as_a_standalone_manager_with_local_databases/rhv_requirements#RHV-manager-firewall-requirements_SM_localDB_deploy - for hosted engine using cockpit (recommended) https://access.redhat.com/documentation/en-us/red_hat_virtualization/4.3/html/installing_red_hat_virtualization_as_a_self-hosted_engine_using_the_cockpit_web_interface/rhv_requirements#RHV-manager-firewall-requirements_SHE_cockpit_deploy - for hosted engine setup using cli (alternative) https://access.redhat.com/documentation/en-us/red_hat_virtualization/4.3/html/installing_red_hat_virtualization_as_a_self-hosted_engine_using_the_command_line/rhv_requirements#RHV-manager-firewall-requirements_SHE_cli_deploy Gianluca ___ Users mailing list -- users@ovirt.org To unsubscribe send an email to users-le...@ovirt.org Privacy Statement: https://www.ovirt.org/privacy-policy.html oVirt Code of Conduct: https://www.ovirt.org/community/about/community-guidelines/ List Archives: https://lists.ovirt.org/archives/list/users@ovirt.org/message/QURU73ICCT7ZRDYOZR6LDQTHAJTT4O25/
[ovirt-users] Re: Fwd: Install of new ovirt baremetal system 4.3.9
Thanks for the log location. After reading all I could in logs it appeared Firewalld had issue so I manually did these: firewall-cmd --add-service=http --permanent firewall-cmd --add-service=https --permanent Engine deploy finished with no more errors. ___ Users mailing list -- users@ovirt.org To unsubscribe send an email to users-le...@ovirt.org Privacy Statement: https://www.ovirt.org/privacy-policy.html oVirt Code of Conduct: https://www.ovirt.org/community/about/community-guidelines/ List Archives: https://lists.ovirt.org/archives/list/users@ovirt.org/message/FIOB3XNFCYCBYIK7FQKLPMOYSJY5SURQ/
[ovirt-users] Re: Fwd: Install of new ovirt baremetal system 4.3.9
On Wed, May 6, 2020 at 12:22 PM Anton Marchukov wrote: [snip] Engine deployment fails near end: > [ ERROR ] fatal: [localhost]: FAILED! => {"changed": true, "cmd": "set > -euo pipefail && firewall-cmd --get-active-zones | grep -v > \"^\\s*interfaces\"", "delta": "0:00:00.352904", "end": "2020-05-05 > 22:28:01.561606", "msg": "non-zero return code", "rc": 1, "start": > "2020-05-05 22:28:01.208702", "stderr": "", "stderr_lines": [], "stdout": > "", "stdout_lines": []} > > The system may not be provisioned according to the playbook results: > please check the logs for the issue, fix accordingly or re-deploy from > scratch.\n"} > > were does ovirt store logs? > ___ > Infra mailing list -- in...@ovirt.org > To unsubscribe send an email to infra-le...@ovirt.org > Privacy Statement: https://www.ovirt.org/privacy-policy.html > oVirt Code of Conduct: > https://www.ovirt.org/community/about/community-guidelines/ > List Archives: > https://lists.ovirt.org/archives/list/in...@ovirt.org/message/XALRUKVRYFC2NFN42STINRAP3W6RRIKU/ > > It is not clear the originator... anyway: - for engine related logs /var/log/ovirt-engine/engine.log on the server where the oVirt engine service runs - for host related logs (in case the command failure is also at host level and then communicated to engine) /var/log/vdsm/vdsm.log on the server representing the hypervisor involved for the command HIH, Gianluca ___ Users mailing list -- users@ovirt.org To unsubscribe send an email to users-le...@ovirt.org Privacy Statement: https://www.ovirt.org/privacy-policy.html oVirt Code of Conduct: https://www.ovirt.org/community/about/community-guidelines/ List Archives: https://lists.ovirt.org/archives/list/users@ovirt.org/message/VJ32T56GXVVV5GKZ7KOEEKMPKTXTGBQJ/
[ovirt-users] Re: Unable to import CA certificate list
Hi Martin, I build the ovirt-engine from the source and copied the bll.jar to the correct place. Indeed, my cert issue is now gone. Thanks, Sakari On Wed, May 6, 2020 at 12:25 PM Sakari Poussa wrote: > Thanks for the clarification. I would really like to avoid starting to > build engine myself. > > Do you have a public CI that builds master so I can pick up the engine rpm > from there? > When do you plan to release beta5? > > Thanks, Sakari > > On Wed, May 6, 2020 at 11:52 AM Martin Perina wrote: > >> >> On Wed, May 6, 2020 at 9:00 AM Sakari Poussa wrote: >> >>> Hi Martin, >>> >>> Seems that I am running the correct versions. Can you elaborate what the >>> issue is/was and where is the fix? I can then dive deeper with my debugging. >>> >> >> We have changed the way how parameters are passed from engine through >> ansible-runner-service to ansible-runner to eliminate parameter escaping >> and still allowing parallel playbooks execution. So you also need to have >> patch https://gerrit.ovirt.org/108532 included in your ovirt-engine, >> which removes the additional escaping. >> >>> >>> Thanks, Sakari >>> >>> $ dnf info python3-ansible-runner ansible-runner-service >>> Last metadata expiration check: 0:02:12 ago on Wed 06 May 2020 09:51:37 >>> AM EEST. >>> Installed Packages >>> Name : ansible-runner-service >>> Version : 1.0.2 >>> Release : 1.el8 >>> Architecture : noarch >>> Size : 252 k >>> Source : ansible-runner-service-1.0.2-1.el8.src.rpm >>> Repository : @System >>> From repo: ovirt-4.4-centos-ovirt44 >>> Summary : RESTful API for ansible/ansible_runner execution >>> License : ASL 2.0 >>> Description : This package provides the Ansible Runner Service source >>> files. Ansible runner service exposes a REST API interface on top of the >>> functionality provided by ansible and >>> : ansible_runner. >>> : >>> : The Ansible Runner Service provided in this packages is >>> intended to be used as uwgsi app exposed by Nginx in a Container. >>> : Dependencies, and configuration tasks must be performed >>> in the container. >>> : >>> : Ansible Runner Service listens on https://localhost:5001 >>> by default for playbook or ansible inventory requests. For developers >>> interested in using the API, all the available >>> : endpoints are documented at https://localhost:5001/api. >>> : >>> : In addition to the API endpoints, the daemon also >>> provides a /metrics endpoint for prometheus integration. A sample Grafana >>> dashboard is provided within >>> : /usr/share/doc/ansible-runner-service >>> >>> Name : python3-ansible-runner >>> Version : 1.4.5 >>> Release : 1.el8 >>> Architecture : noarch >>> Size : 340 k >>> Source : ansible-runner-1.4.5-1.el8.src.rpm >>> Repository : @System >>> From repo: ovirt-4.4-centos-ovirt44 >>> Summary : A tool and python library to interface with Ansible >>> URL : https://github.com/ansible/ansible-runner >>> License : ASL 2.0 >>> Description : Ansible Runner is a tool and python library that helps >>> when interfacing with >>> : Ansible from other systems whether through a container >>> image interface, as a >>> : standalone tool, or imported into a python project. >>> >>> >>> On Wed, May 6, 2020 at 9:27 AM Martin Perina wrote: >>> Hi, the issue has been fixed on master, it seems that you are using old ovirt-engine and/or old ansible-runner-service. Please upgrade to latest released ovirt-engine with ansible-runner-service-1.0.2 and python3-ansible-runner-1.4.5 Regards, Martin On Wed, May 6, 2020 at 6:50 AM Sakari Poussa wrote: > Hi, > > I am using 4.4 beta4 and not able to add new hosts to the datacenter. > Also "Enroll Certificate" fails. > > On nodes, I get the following error message: > > libvirtd[20399]: Unable to import CA certificate list > /etc/pki/vdsm/certs/cacert.pem > > The root cause is the malformed cert: > > $ cat /etc/pki/vdsm/certs/cacert.pem > -BEGIN CERTIFICATE-\nMIID XXX > > That, is the .pem file is just one long line with \n characters > instead of real newlines. If I convert the \n to real newlines libvirtd > starts but that is not the end solution since other issues surfaces. > > The malforming happens when the engine copies (via ansible) the CA > cert to the node(s). > > Any ideas what is going on? > > Thanks, Sakari > > > > > ___ > Users mailing list -- users@ovirt.org > To unsubscribe send an email to users-le...@ovirt.org > Privacy Statement: https://www.ovirt.org/privacy-policy.html > oVirt Code of Conduct: >
[ovirt-users] Fwd: Ovirt host GetGlusterVolumeHealInfoVDS failed events
Forwarding to oVirt users list. -- Forwarded message - From: Date: Wed, May 6, 2020 at 12:01 PM Subject: Ovirt host GetGlusterVolumeHealInfoVDS failed events To: Hi, We have a oVirt cluster with 4 hosts and hosted engine running on one of them (all the nodes provide the storage with GlusterFS) Currently there are 53 VMs running. The version of the oVirt-Engine is 4.2.8.2-1.el7 and GlusterFS is 3.12.15. >From past 1 week, we seem to have multiple events popping up on Ovirt-UI about the GetGlusterVolumeHealInfoVDS from all the nodes randomly like one ERROR event for every ~13minutes. Sample Event dashboard example: May 4, 2020, 2:32:14 PM - Status of host was set to Up. May 4, 2020, 2:32:11 PM - Manually synced the storage devices from host May 4, 2020, 2:31:55 PM - Host is not responding. Host cannot be fenced automatically because power management for the host is disabled. May 4, 2020, 2:31:55 PM - VDSM command GetGlusterVolumeHealInfoVDS failed: Message timeout which can be caused by communication issues May 4, 2020, 2:19:14 PM - Status of host was set to Up. May 4, 2020, 2:19:12 PM - Manually synced the storage devices from host May 4, 2020, 2:18:49 PM - Host is not responding. Host cannot be fenced automatically because power management for the host is disabled. May 4, 2020, 2:18:49 PM - VDSM command GetGlusterVolumeHealInfoVDS failed: Message timeout which can be caused by communication issues May 4, 2020, 2:05:55 PM - Status of host was set to Up. May 4, 2020, 2:05:54 PM - Manually synced the storage devices from host May 4, 2020, 2:05:35 PM - Host is not responding. Host cannot be fenced automatically because power management for the host is disabled. May 4, 2020, 2:05:35 PM - VDSM command GetGlusterVolumeHealInfoVDS failed: Message timeout which can be caused by communication issues May 4, 2020, 1:52:45 PM - Status of host was set to Up. May 4, 2020, 1:52:44 PM - Manually synced the storage devices from host May 4, 2020, 1:52:22 PM - Host is not responding. Host cannot be fenced automatically because power management for the host is disabled. May 4, 2020, 1:52:22 PM - VDSM command GetGlusterVolumeHealInfoVDS failed: Message timeout which can be caused by communication issues May 4, 2020, 1:39:11 PM - Status of host was set to Up. May 4, 2020, 1:39:11 PM - Manually synced the storage devices from host May 4, 2020, 1:39:11 PM - Host is not responding. Host cannot be fenced automatically because power management for the host is disabled. May 4, 2020, 1:39:11 PM - VDSM command GetGlusterVolumeHealInfoVDS failed: Message timeout which can be caused by communication issues May 4, 2020, 1:26:29 PM - Status of host was set to Up. May 4, 2020, 1:26:28 PM - Manually synced the storage devices from host May 4, 2020, 1:26:11 PM - Host is not responding. Host cannot be fenced automatically because power management for the host is disabled. May 4, 2020, 1:26:11 PM - VDSM command GetGlusterVolumeHealInfoVDS failed: Message timeout which can be caused by communication issues May 4, 2020, 1:13:10 PM - Status of host was set to Up. May 4, 2020, 1:13:08 PM - Manually synced the storage devices from host May 4, 2020, 1:12:51 PM - Host is not responding. Host cannot be fenced automatically because power management for the host is disabled. May 4, 2020, 1:12:51 PM - VDSM command GetGlusterVolumeHealInfoVDS failed: Message timeout which can be caused by communication issues and so on. When I look at the Compute > Hosts dashboard, I see the host status to be DOWN when VDSM event (GetGlusterVolumeHealInfoVDS failed) is popped and automatically the host status is set to UP within no time. FYI: when host status is DOWN, the VM's running on that host are not migrating and everything is running perfectly fine. This is happening all day. Is there something I can troubleshoot? Appreciate your comments. ___ Infra mailing list -- in...@ovirt.org To unsubscribe send an email to infra-le...@ovirt.org Privacy Statement: https://www.ovirt.org/privacy-policy.html oVirt Code of Conduct: https://www.ovirt.org/community/about/community-guidelines/ List Archives: https://lists.ovirt.org/archives/list/in...@ovirt.org/message/GNE3QC7GLEER4ZPHGP3H6M27DPSKCQO3/ -- Anton Marchukov Associate Manager - RHV DevOps - Red Hat ___ Users mailing list -- users@ovirt.org To unsubscribe send an email to users-le...@ovirt.org Privacy Statement: https://www.ovirt.org/privacy-policy.html oVirt Code of Conduct: https://www.ovirt.org/community/about/community-guidelines/ List Archives: https://lists.ovirt.org/archives/list/users@ovirt.org/message/RGUTF3DUTK4XTG7N4MM3MM3LUAFIIPJE/
[ovirt-users] Fwd: Install of new ovirt baremetal system 4.3.9
Forwarding to oVirt users list since it looks to be better suited there. -- Forwarded message - From: kelley bryan Date: Wed, May 6, 2020 at 12:02 PM Subject: Install of new ovirt baremetal system 4.3.9 To: Engine deployment fails near end: [ ERROR ] fatal: [localhost]: FAILED! => {"changed": true, "cmd": "set -euo pipefail && firewall-cmd --get-active-zones | grep -v \"^\\s*interfaces\"", "delta": "0:00:00.352904", "end": "2020-05-05 22:28:01.561606", "msg": "non-zero return code", "rc": 1, "start": "2020-05-05 22:28:01.208702", "stderr": "", "stderr_lines": [], "stdout": "", "stdout_lines": []} The system may not be provisioned according to the playbook results: please check the logs for the issue, fix accordingly or re-deploy from scratch.\n"} were does ovirt store logs? ___ Infra mailing list -- in...@ovirt.org To unsubscribe send an email to infra-le...@ovirt.org Privacy Statement: https://www.ovirt.org/privacy-policy.html oVirt Code of Conduct: https://www.ovirt.org/community/about/community-guidelines/ List Archives: https://lists.ovirt.org/archives/list/in...@ovirt.org/message/XALRUKVRYFC2NFN42STINRAP3W6RRIKU/ -- Anton Marchukov Associate Manager - RHV DevOps - Red Hat ___ Users mailing list -- users@ovirt.org To unsubscribe send an email to users-le...@ovirt.org Privacy Statement: https://www.ovirt.org/privacy-policy.html oVirt Code of Conduct: https://www.ovirt.org/community/about/community-guidelines/ List Archives: https://lists.ovirt.org/archives/list/users@ovirt.org/message/CVPOWRYJKS4QWDI3M5EPKCEXAEBNZSEW/
[ovirt-users] Re: Unable to import CA certificate list
Thanks for the clarification. I would really like to avoid starting to build engine myself. Do you have a public CI that builds master so I can pick up the engine rpm from there? When do you plan to release beta5? Thanks, Sakari On Wed, May 6, 2020 at 11:52 AM Martin Perina wrote: > > On Wed, May 6, 2020 at 9:00 AM Sakari Poussa wrote: > >> Hi Martin, >> >> Seems that I am running the correct versions. Can you elaborate what the >> issue is/was and where is the fix? I can then dive deeper with my debugging. >> > > We have changed the way how parameters are passed from engine through > ansible-runner-service to ansible-runner to eliminate parameter escaping > and still allowing parallel playbooks execution. So you also need to have > patch https://gerrit.ovirt.org/108532 included in your ovirt-engine, > which removes the additional escaping. > >> >> Thanks, Sakari >> >> $ dnf info python3-ansible-runner ansible-runner-service >> Last metadata expiration check: 0:02:12 ago on Wed 06 May 2020 09:51:37 >> AM EEST. >> Installed Packages >> Name : ansible-runner-service >> Version : 1.0.2 >> Release : 1.el8 >> Architecture : noarch >> Size : 252 k >> Source : ansible-runner-service-1.0.2-1.el8.src.rpm >> Repository : @System >> From repo: ovirt-4.4-centos-ovirt44 >> Summary : RESTful API for ansible/ansible_runner execution >> License : ASL 2.0 >> Description : This package provides the Ansible Runner Service source >> files. Ansible runner service exposes a REST API interface on top of the >> functionality provided by ansible and >> : ansible_runner. >> : >> : The Ansible Runner Service provided in this packages is >> intended to be used as uwgsi app exposed by Nginx in a Container. >> : Dependencies, and configuration tasks must be performed in >> the container. >> : >> : Ansible Runner Service listens on https://localhost:5001 >> by default for playbook or ansible inventory requests. For developers >> interested in using the API, all the available >> : endpoints are documented at https://localhost:5001/api. >> : >> : In addition to the API endpoints, the daemon also provides >> a /metrics endpoint for prometheus integration. A sample Grafana dashboard >> is provided within >> : /usr/share/doc/ansible-runner-service >> >> Name : python3-ansible-runner >> Version : 1.4.5 >> Release : 1.el8 >> Architecture : noarch >> Size : 340 k >> Source : ansible-runner-1.4.5-1.el8.src.rpm >> Repository : @System >> From repo: ovirt-4.4-centos-ovirt44 >> Summary : A tool and python library to interface with Ansible >> URL : https://github.com/ansible/ansible-runner >> License : ASL 2.0 >> Description : Ansible Runner is a tool and python library that helps >> when interfacing with >> : Ansible from other systems whether through a container >> image interface, as a >> : standalone tool, or imported into a python project. >> >> >> On Wed, May 6, 2020 at 9:27 AM Martin Perina wrote: >> >>> Hi, >>> >>> the issue has been fixed on master, it seems that you are using old >>> ovirt-engine and/or old ansible-runner-service. Please upgrade to latest >>> released ovirt-engine with ansible-runner-service-1.0.2 and >>> python3-ansible-runner-1.4.5 >>> >>> Regards, >>> Martin >>> >>> >>> On Wed, May 6, 2020 at 6:50 AM Sakari Poussa wrote: >>> Hi, I am using 4.4 beta4 and not able to add new hosts to the datacenter. Also "Enroll Certificate" fails. On nodes, I get the following error message: libvirtd[20399]: Unable to import CA certificate list /etc/pki/vdsm/certs/cacert.pem The root cause is the malformed cert: $ cat /etc/pki/vdsm/certs/cacert.pem -BEGIN CERTIFICATE-\nMIID XXX That, is the .pem file is just one long line with \n characters instead of real newlines. If I convert the \n to real newlines libvirtd starts but that is not the end solution since other issues surfaces. The malforming happens when the engine copies (via ansible) the CA cert to the node(s). Any ideas what is going on? Thanks, Sakari ___ Users mailing list -- users@ovirt.org To unsubscribe send an email to users-le...@ovirt.org Privacy Statement: https://www.ovirt.org/privacy-policy.html oVirt Code of Conduct: https://www.ovirt.org/community/about/community-guidelines/ List Archives: https://lists.ovirt.org/archives/list/users@ovirt.org/message/TZ6EA3X257YGFYQTLFRILGGCQKQKTT2V/ >>> >>> >>> -- >>> Martin Perina >>> Manager, Software Engineering >>> Red Hat Czech s.r.o. >>> >> >> >> -- >> Sakari Poussa >> 040 348 2970 >> > > > -- > Martin Perina > Manager,
[ovirt-users] Re: Unable to import CA certificate list
On Wed, May 6, 2020 at 9:00 AM Sakari Poussa wrote: > Hi Martin, > > Seems that I am running the correct versions. Can you elaborate what the > issue is/was and where is the fix? I can then dive deeper with my debugging. > We have changed the way how parameters are passed from engine through ansible-runner-service to ansible-runner to eliminate parameter escaping and still allowing parallel playbooks execution. So you also need to have patch https://gerrit.ovirt.org/108532 included in your ovirt-engine, which removes the additional escaping. > > Thanks, Sakari > > $ dnf info python3-ansible-runner ansible-runner-service > Last metadata expiration check: 0:02:12 ago on Wed 06 May 2020 09:51:37 AM > EEST. > Installed Packages > Name : ansible-runner-service > Version : 1.0.2 > Release : 1.el8 > Architecture : noarch > Size : 252 k > Source : ansible-runner-service-1.0.2-1.el8.src.rpm > Repository : @System > From repo: ovirt-4.4-centos-ovirt44 > Summary : RESTful API for ansible/ansible_runner execution > License : ASL 2.0 > Description : This package provides the Ansible Runner Service source > files. Ansible runner service exposes a REST API interface on top of the > functionality provided by ansible and > : ansible_runner. > : > : The Ansible Runner Service provided in this packages is > intended to be used as uwgsi app exposed by Nginx in a Container. > : Dependencies, and configuration tasks must be performed in > the container. > : > : Ansible Runner Service listens on https://localhost:5001 > by default for playbook or ansible inventory requests. For developers > interested in using the API, all the available > : endpoints are documented at https://localhost:5001/api. > : > : In addition to the API endpoints, the daemon also provides > a /metrics endpoint for prometheus integration. A sample Grafana dashboard > is provided within > : /usr/share/doc/ansible-runner-service > > Name : python3-ansible-runner > Version : 1.4.5 > Release : 1.el8 > Architecture : noarch > Size : 340 k > Source : ansible-runner-1.4.5-1.el8.src.rpm > Repository : @System > From repo: ovirt-4.4-centos-ovirt44 > Summary : A tool and python library to interface with Ansible > URL : https://github.com/ansible/ansible-runner > License : ASL 2.0 > Description : Ansible Runner is a tool and python library that helps when > interfacing with > : Ansible from other systems whether through a container > image interface, as a > : standalone tool, or imported into a python project. > > > On Wed, May 6, 2020 at 9:27 AM Martin Perina wrote: > >> Hi, >> >> the issue has been fixed on master, it seems that you are using old >> ovirt-engine and/or old ansible-runner-service. Please upgrade to latest >> released ovirt-engine with ansible-runner-service-1.0.2 and >> python3-ansible-runner-1.4.5 >> >> Regards, >> Martin >> >> >> On Wed, May 6, 2020 at 6:50 AM Sakari Poussa wrote: >> >>> Hi, >>> >>> I am using 4.4 beta4 and not able to add new hosts to the datacenter. >>> Also "Enroll Certificate" fails. >>> >>> On nodes, I get the following error message: >>> >>> libvirtd[20399]: Unable to import CA certificate list >>> /etc/pki/vdsm/certs/cacert.pem >>> >>> The root cause is the malformed cert: >>> >>> $ cat /etc/pki/vdsm/certs/cacert.pem >>> -BEGIN CERTIFICATE-\nMIID XXX >>> >>> That, is the .pem file is just one long line with \n characters instead >>> of real newlines. If I convert the \n to real newlines libvirtd starts but >>> that is not the end solution since other issues surfaces. >>> >>> The malforming happens when the engine copies (via ansible) the CA cert >>> to the node(s). >>> >>> Any ideas what is going on? >>> >>> Thanks, Sakari >>> >>> >>> >>> >>> ___ >>> Users mailing list -- users@ovirt.org >>> To unsubscribe send an email to users-le...@ovirt.org >>> Privacy Statement: https://www.ovirt.org/privacy-policy.html >>> oVirt Code of Conduct: >>> https://www.ovirt.org/community/about/community-guidelines/ >>> List Archives: >>> https://lists.ovirt.org/archives/list/users@ovirt.org/message/TZ6EA3X257YGFYQTLFRILGGCQKQKTT2V/ >>> >> >> >> -- >> Martin Perina >> Manager, Software Engineering >> Red Hat Czech s.r.o. >> > > > -- > Sakari Poussa > 040 348 2970 > -- Martin Perina Manager, Software Engineering Red Hat Czech s.r.o. ___ Users mailing list -- users@ovirt.org To unsubscribe send an email to users-le...@ovirt.org Privacy Statement: https://www.ovirt.org/privacy-policy.html oVirt Code of Conduct: https://www.ovirt.org/community/about/community-guidelines/ List Archives: https://lists.ovirt.org/archives/list/users@ovirt.org/message/OXRUJGZCZUOIFULIFMBZDTS5DJOFJGTI/
[ovirt-users] Re: Unable to import CA certificate list
Hi Martin, Few more data points. 1) I have the latest released ovirt-engine. 2) I also tried using the ovirt.infra ansible role and I get the exact same issue and behavior. Thanks, Sakari dnf info ovirt-engine Last metadata expiration check: 0:00:08 ago on Wed 06 May 2020 11:49:20 AM EEST. Installed Packages Name : ovirt-engine Version : 4.4.0 Release : 0.7.beta4.20200417092918.gitd2e0a32d1a6.el8 Architecture : noarch Size : 38 M Source : ovirt-engine-4.4.0-0.7.beta4.20200417092918.gitd2e0a32d1a6.el8.src.rpm Repository : @System >From repo: ovirt-4.4-pre Summary : Management server for Open Virtualization URL : http://www.ovirt.org License : ASL 2.0 Description : oVirt Engine is a feature-rich server virtualization management : system that provides advanced capabilities for managing the Open : virtualization infrastructure for Servers and Desktops. On Wed, May 6, 2020 at 10:00 AM Sakari Poussa wrote: > Hi Martin, > > Seems that I am running the correct versions. Can you elaborate what the > issue is/was and where is the fix? I can then dive deeper with my debugging. > > Thanks, Sakari > > $ dnf info python3-ansible-runner ansible-runner-service > Last metadata expiration check: 0:02:12 ago on Wed 06 May 2020 09:51:37 AM > EEST. > Installed Packages > Name : ansible-runner-service > Version : 1.0.2 > Release : 1.el8 > Architecture : noarch > Size : 252 k > Source : ansible-runner-service-1.0.2-1.el8.src.rpm > Repository : @System > From repo: ovirt-4.4-centos-ovirt44 > Summary : RESTful API for ansible/ansible_runner execution > License : ASL 2.0 > Description : This package provides the Ansible Runner Service source > files. Ansible runner service exposes a REST API interface on top of the > functionality provided by ansible and > : ansible_runner. > : > : The Ansible Runner Service provided in this packages is > intended to be used as uwgsi app exposed by Nginx in a Container. > : Dependencies, and configuration tasks must be performed in > the container. > : > : Ansible Runner Service listens on https://localhost:5001 > by default for playbook or ansible inventory requests. For developers > interested in using the API, all the available > : endpoints are documented at https://localhost:5001/api. > : > : In addition to the API endpoints, the daemon also provides > a /metrics endpoint for prometheus integration. A sample Grafana dashboard > is provided within > : /usr/share/doc/ansible-runner-service > > Name : python3-ansible-runner > Version : 1.4.5 > Release : 1.el8 > Architecture : noarch > Size : 340 k > Source : ansible-runner-1.4.5-1.el8.src.rpm > Repository : @System > From repo: ovirt-4.4-centos-ovirt44 > Summary : A tool and python library to interface with Ansible > URL : https://github.com/ansible/ansible-runner > License : ASL 2.0 > Description : Ansible Runner is a tool and python library that helps when > interfacing with > : Ansible from other systems whether through a container > image interface, as a > : standalone tool, or imported into a python project. > > > On Wed, May 6, 2020 at 9:27 AM Martin Perina wrote: > >> Hi, >> >> the issue has been fixed on master, it seems that you are using old >> ovirt-engine and/or old ansible-runner-service. Please upgrade to latest >> released ovirt-engine with ansible-runner-service-1.0.2 and >> python3-ansible-runner-1.4.5 >> >> Regards, >> Martin >> >> >> On Wed, May 6, 2020 at 6:50 AM Sakari Poussa wrote: >> >>> Hi, >>> >>> I am using 4.4 beta4 and not able to add new hosts to the datacenter. >>> Also "Enroll Certificate" fails. >>> >>> On nodes, I get the following error message: >>> >>> libvirtd[20399]: Unable to import CA certificate list >>> /etc/pki/vdsm/certs/cacert.pem >>> >>> The root cause is the malformed cert: >>> >>> $ cat /etc/pki/vdsm/certs/cacert.pem >>> -BEGIN CERTIFICATE-\nMIID XXX >>> >>> That, is the .pem file is just one long line with \n characters instead >>> of real newlines. If I convert the \n to real newlines libvirtd starts but >>> that is not the end solution since other issues surfaces. >>> >>> The malforming happens when the engine copies (via ansible) the CA cert >>> to the node(s). >>> >>> Any ideas what is going on? >>> >>> Thanks, Sakari >>> >>> >>> >>> >>> ___ >>> Users mailing list -- users@ovirt.org >>> To unsubscribe send an email to users-le...@ovirt.org >>> Privacy Statement: https://www.ovirt.org/privacy-policy.html >>> oVirt Code of Conduct: >>> https://www.ovirt.org/community/about/community-guidelines/ >>> List Archives: >>>
[ovirt-users] Re: Backup software recommendations
You are welcome! Maybe some deeper answers can help you more: - disk to disk backups - Vinchin Backup & Recovery is VM level backup, is disk to disk backup. - inter-site replication with rate limiting - though Vinchin currently not support physical server backup, next version in June will support file backup for physical servers. is this inter-site replication request for your physical servers or virtual servers? - be able to handle Linux thin volumes (think RHGS) - be able to backup data to this RHGS? or RHGS as a production storage? anyway,Vinchin can handle it in both. - support BMR ans granular file / directory restore - file level restore of course vinchin supported! but I really have no idea what is "BMR" you mentioned. - correctly handle Windows VSS - application awareness, yes, vinchin supported! - support RHEL point releases as soon as they are released - if you mean physical servers running RHEL OS, oops! We can't help you. But if you mean the OS running in RHV and Hyper-V, then all new point releases will be catched up with by Vinchin! Hope my answer help you! You can go to Vinchin website to free try this software and make further evaluation. Best Regards, ___ Users mailing list -- users@ovirt.org To unsubscribe send an email to users-le...@ovirt.org Privacy Statement: https://www.ovirt.org/privacy-policy.html oVirt Code of Conduct: https://www.ovirt.org/community/about/community-guidelines/ List Archives: https://lists.ovirt.org/archives/list/users@ovirt.org/message/EPVTCAPZNHUWPMUYZPRL4D5EOELBSZC2/
[ovirt-users] Re: Backup software recommendations
Also: Storware vprotect Acronis Cyber Backup There might be others. /tony On Wed, 2020-05-06 at 16:03 +0800, Colin Coe wrote: > Thanks for the reply > > On Wed, 6 May 2020 at 15:18, wrote: > > Take Vinchin Backup & Recovery as a chioce, it can agentlessly > > backup RHV and Hyper-V. But current version does not support > > physical windows/linux server backup. > > ___ > > Users mailing list -- users@ovirt.org > > To unsubscribe send an email to users-le...@ovirt.org > > Privacy Statement: https://www.ovirt.org/privacy-policy.html > > oVirt Code of Conduct: > > https://www.ovirt.org/community/about/community-guidelines/ > > List Archives: > > https://lists.ovirt.org/archives/list/users@ovirt.org/message/6AEOXON2ZUO3PIG5Z7RPPAB6VP35D5XA/ > > ___ > Users mailing list -- users@ovirt.org > To unsubscribe send an email to users-le...@ovirt.org > Privacy Statement: https://www.ovirt.org/privacy-policy.html > oVirt Code of Conduct: > https://www.ovirt.org/community/about/community-guidelines/ > List Archives: > https://lists.ovirt.org/archives/list/users@ovirt.org/message/3NDXFSL6UELAKYGSD7B3ZUWZMDSUGBQH/ -- Tony Albers - Systems Architect - IT Development Royal Danish Library, Victor Albecks Vej 1, 8000 Aarhus C, Denmark Tel: +45 2566 2383 - CVR/SE: 2898 8842 - EAN: 5798000792142 ___ Users mailing list -- users@ovirt.org To unsubscribe send an email to users-le...@ovirt.org Privacy Statement: https://www.ovirt.org/privacy-policy.html oVirt Code of Conduct: https://www.ovirt.org/community/about/community-guidelines/ List Archives: https://lists.ovirt.org/archives/list/users@ovirt.org/message/WZ3XDLVXKGERXH2ROSHNBH55QBYTJWMM/
[ovirt-users] Re: Backup software recommendations
Thanks for the reply On Wed, 6 May 2020 at 15:18, wrote: > Take Vinchin Backup & Recovery as a chioce, it can agentlessly backup RHV > and Hyper-V. But current version does not support physical windows/linux > server backup. > ___ > Users mailing list -- users@ovirt.org > To unsubscribe send an email to users-le...@ovirt.org > Privacy Statement: https://www.ovirt.org/privacy-policy.html > oVirt Code of Conduct: > https://www.ovirt.org/community/about/community-guidelines/ > List Archives: > https://lists.ovirt.org/archives/list/users@ovirt.org/message/6AEOXON2ZUO3PIG5Z7RPPAB6VP35D5XA/ > ___ Users mailing list -- users@ovirt.org To unsubscribe send an email to users-le...@ovirt.org Privacy Statement: https://www.ovirt.org/privacy-policy.html oVirt Code of Conduct: https://www.ovirt.org/community/about/community-guidelines/ List Archives: https://lists.ovirt.org/archives/list/users@ovirt.org/message/3NDXFSL6UELAKYGSD7B3ZUWZMDSUGBQH/
[ovirt-users] centos 8 stream status
Hello, Centos 8 stream should be the preview of centos 8, so why not using right now it instead of waiting GA 8.2? -- Nathanaël Blanchet Supervision réseau SIRE 227 avenue Professeur-Jean-Louis-Viala 34193 MONTPELLIER CEDEX 5 Tél. 33 (0)4 67 54 84 55 Fax 33 (0)4 67 54 84 14 blanc...@abes.fr ___ Users mailing list -- users@ovirt.org To unsubscribe send an email to users-le...@ovirt.org Privacy Statement: https://www.ovirt.org/privacy-policy.html oVirt Code of Conduct: https://www.ovirt.org/community/about/community-guidelines/ List Archives: https://lists.ovirt.org/archives/list/users@ovirt.org/message/WFGADEFI7FIUTHQUO4XN6HCG5U3HYBMP/
[ovirt-users] Re: Backup software recommendations
Take Vinchin Backup & Recovery as a chioce, it can agentlessly backup RHV and Hyper-V. But current version does not support physical windows/linux server backup. ___ Users mailing list -- users@ovirt.org To unsubscribe send an email to users-le...@ovirt.org Privacy Statement: https://www.ovirt.org/privacy-policy.html oVirt Code of Conduct: https://www.ovirt.org/community/about/community-guidelines/ List Archives: https://lists.ovirt.org/archives/list/users@ovirt.org/message/6AEOXON2ZUO3PIG5Z7RPPAB6VP35D5XA/
[ovirt-users] Re: Unable to import CA certificate list
Hi Martin, Seems that I am running the correct versions. Can you elaborate what the issue is/was and where is the fix? I can then dive deeper with my debugging. Thanks, Sakari $ dnf info python3-ansible-runner ansible-runner-service Last metadata expiration check: 0:02:12 ago on Wed 06 May 2020 09:51:37 AM EEST. Installed Packages Name : ansible-runner-service Version : 1.0.2 Release : 1.el8 Architecture : noarch Size : 252 k Source : ansible-runner-service-1.0.2-1.el8.src.rpm Repository : @System >From repo: ovirt-4.4-centos-ovirt44 Summary : RESTful API for ansible/ansible_runner execution License : ASL 2.0 Description : This package provides the Ansible Runner Service source files. Ansible runner service exposes a REST API interface on top of the functionality provided by ansible and : ansible_runner. : : The Ansible Runner Service provided in this packages is intended to be used as uwgsi app exposed by Nginx in a Container. : Dependencies, and configuration tasks must be performed in the container. : : Ansible Runner Service listens on https://localhost:5001 by default for playbook or ansible inventory requests. For developers interested in using the API, all the available : endpoints are documented at https://localhost:5001/api. : : In addition to the API endpoints, the daemon also provides a /metrics endpoint for prometheus integration. A sample Grafana dashboard is provided within : /usr/share/doc/ansible-runner-service Name : python3-ansible-runner Version : 1.4.5 Release : 1.el8 Architecture : noarch Size : 340 k Source : ansible-runner-1.4.5-1.el8.src.rpm Repository : @System >From repo: ovirt-4.4-centos-ovirt44 Summary : A tool and python library to interface with Ansible URL : https://github.com/ansible/ansible-runner License : ASL 2.0 Description : Ansible Runner is a tool and python library that helps when interfacing with : Ansible from other systems whether through a container image interface, as a : standalone tool, or imported into a python project. On Wed, May 6, 2020 at 9:27 AM Martin Perina wrote: > Hi, > > the issue has been fixed on master, it seems that you are using old > ovirt-engine and/or old ansible-runner-service. Please upgrade to latest > released ovirt-engine with ansible-runner-service-1.0.2 and > python3-ansible-runner-1.4.5 > > Regards, > Martin > > > On Wed, May 6, 2020 at 6:50 AM Sakari Poussa wrote: > >> Hi, >> >> I am using 4.4 beta4 and not able to add new hosts to the datacenter. >> Also "Enroll Certificate" fails. >> >> On nodes, I get the following error message: >> >> libvirtd[20399]: Unable to import CA certificate list >> /etc/pki/vdsm/certs/cacert.pem >> >> The root cause is the malformed cert: >> >> $ cat /etc/pki/vdsm/certs/cacert.pem >> -BEGIN CERTIFICATE-\nMIID XXX >> >> That, is the .pem file is just one long line with \n characters instead >> of real newlines. If I convert the \n to real newlines libvirtd starts but >> that is not the end solution since other issues surfaces. >> >> The malforming happens when the engine copies (via ansible) the CA cert >> to the node(s). >> >> Any ideas what is going on? >> >> Thanks, Sakari >> >> >> >> >> ___ >> Users mailing list -- users@ovirt.org >> To unsubscribe send an email to users-le...@ovirt.org >> Privacy Statement: https://www.ovirt.org/privacy-policy.html >> oVirt Code of Conduct: >> https://www.ovirt.org/community/about/community-guidelines/ >> List Archives: >> https://lists.ovirt.org/archives/list/users@ovirt.org/message/TZ6EA3X257YGFYQTLFRILGGCQKQKTT2V/ >> > > > -- > Martin Perina > Manager, Software Engineering > Red Hat Czech s.r.o. > -- Sakari Poussa 040 348 2970 ___ Users mailing list -- users@ovirt.org To unsubscribe send an email to users-le...@ovirt.org Privacy Statement: https://www.ovirt.org/privacy-policy.html oVirt Code of Conduct: https://www.ovirt.org/community/about/community-guidelines/ List Archives: https://lists.ovirt.org/archives/list/users@ovirt.org/message/KQLNCPVTS5YT3JS5HR6WOCSWKCGVNL7Z/
[ovirt-users] Re: Unable to import CA certificate list
Hi, the issue has been fixed on master, it seems that you are using old ovirt-engine and/or old ansible-runner-service. Please upgrade to latest released ovirt-engine with ansible-runner-service-1.0.2 and python3-ansible-runner-1.4.5 Regards, Martin On Wed, May 6, 2020 at 6:50 AM Sakari Poussa wrote: > Hi, > > I am using 4.4 beta4 and not able to add new hosts to the datacenter. Also > "Enroll Certificate" fails. > > On nodes, I get the following error message: > > libvirtd[20399]: Unable to import CA certificate list > /etc/pki/vdsm/certs/cacert.pem > > The root cause is the malformed cert: > > $ cat /etc/pki/vdsm/certs/cacert.pem > -BEGIN CERTIFICATE-\nMIID XXX > > That, is the .pem file is just one long line with \n characters instead of > real newlines. If I convert the \n to real newlines libvirtd starts but > that is not the end solution since other issues surfaces. > > The malforming happens when the engine copies (via ansible) the CA cert to > the node(s). > > Any ideas what is going on? > > Thanks, Sakari > > > > > ___ > Users mailing list -- users@ovirt.org > To unsubscribe send an email to users-le...@ovirt.org > Privacy Statement: https://www.ovirt.org/privacy-policy.html > oVirt Code of Conduct: > https://www.ovirt.org/community/about/community-guidelines/ > List Archives: > https://lists.ovirt.org/archives/list/users@ovirt.org/message/TZ6EA3X257YGFYQTLFRILGGCQKQKTT2V/ > -- Martin Perina Manager, Software Engineering Red Hat Czech s.r.o. ___ Users mailing list -- users@ovirt.org To unsubscribe send an email to users-le...@ovirt.org Privacy Statement: https://www.ovirt.org/privacy-policy.html oVirt Code of Conduct: https://www.ovirt.org/community/about/community-guidelines/ List Archives: https://lists.ovirt.org/archives/list/users@ovirt.org/message/REDL7UPJOU6WAWWD3X7DJ6MYVXE5RCW2/