6.4. Red Hat Virtualization 4.4 SP1 General Availability (ovirt-4.5.0)
6.4.1. Bug Fix
These bugs were fixed in this release of Red Hat Virtualization:
- BZ#1648985
- A user with user role permissions cannot take control of a VM from a superuser, close the superuser’s console connection, and assign the VM to a user with user role permissions.
- BZ#1687845
- Notifications for hosts rely on the server time, instead of comparing the job’s "end time" to the local browser time, to resolve the issue of multiple "Finish activating host" notifications.
- BZ#1768969
- During a self-hosted engine deployment, the TPGT value (target portal group tag) is used for the iSCSI login to resolve the issue of duplicate iSCSI sessions being created.
- BZ#1810032
- The default value of a vNIC network filter is documented in the REST API documentation.
- BZ#1834542
-
The
engine-setup
process uses theyum
proxy configuration to check for packages and RPMs. - BZ#1932149
-
The
hosted-engine --deploy
command checks the compatibility level of the cluster or data center and creates a storage domain in the appropriate format. - BZ#1944290
- If a user tries to log in to the VM Portal or the Administration Portal with an expired password, a link directs the user to the "Change password" page.
- BZ#1959186, BZ#1991240
- When a user provisions VMs from templates in the VM Portal, the Manager selects a quota that the user has access to, so that the user is not restricted to the quota specified by the template.
- BZ#1971622
- The warning icons on the Virtual Machines tab of the host’s details view are displayed correctly.
- BZ#1971863
-
The
engine-setup
process ignores DNS queries with the deprecated typeANY
. - BZ#1974741
- Previously, a bug in the finalization mechanism left the disk locked in the database. In this release, the finalization mechanism works correctly and the disk remains unlocked in all scenarios.
- BZ#1979441
- Previously, a warning appeared if the CPU of a high performance VM was different from the cluster CPU. In this release, the warning is not displayed when CPU passthrough is configured.
- BZ#1986726
- When a VM is imported as an OVA, the selected allocation policy is followed.
- BZ#1988496
-
THe
vmconsole-proxy-helper
certificate is renewed with the Manager certificate during theengine-setup
process. - BZ#2000031
- A non-responsive SPM host reboots once instead of multiple times.
- BZ#2003996
-
Previously, a regular snapshot could not be deleted if a "next run" snapshot existed because the "next run" snapshot
type
was missing. In this release, the issue is resolved by not reporting "next run" snapshots to clients. - BZ#2006745
-
Previously, when a template disk was copied to/from a Managed Block Storage domain, its storage domain ID was incorrect, the same image was saved repeatedly in the images and base disks database tables, and its
ManagedBlockStorageDisk
disk type was cast toDiskImage
. In this release, copying a template disk to/from a Managed Block Storage domain works as expected. - BZ#2007384
-
The data type of the disk
writeRate
andreadRate
parameter values has been changed frominteger
tolong
to support higher values. - BZ#2010067
- When a preallocated disk is downloaded, its image is saved as sparse instead of fully allocated.
- BZ#2010203
- The Log Collection Analysis tool handles line breaks correctly, resolving the issue of incorrect formatting in the "Virtual Machine(s) with unmanaged devices" table of the HTML report.
- BZ#2010478
- A VM behaves correctly, according to its resume policy, if the storage state changes during VM migration.
- BZ#2011309
-
Previously, a self-hosted engine deployment failed when an OpenSCAP security profile was applied, resulting in the SSH key permissions being changed to
0640
, which is insecure. In this release, the permissions remain0600
and the deployment succeeds. - BZ#2013928
- Special characters in the Log Collection Analysis tool database are escaped, resolving the issue of incorrect formatting in the "vdc_options" table of the HTML report.
- BZ#2016173
-
The LVM filter created by the
vdsm-tool
filters correctly for a multipath device instead of including SCSI devices. - BZ#2024202
- Translation strings in the Administration Portal dialogs are correctly displayed in all languages.
- BZ#2028481
- SCSI reservation works for hot-plugged disks.
- BZ#2040361
- When multiple disks with VirtIO-SCSI interfaces are hot-plugged to a virtual machine configured for multiple IO threads, each disk is assigned a unique PCI address, resolving the issue of duplicate PCI addresses.
- BZ#2040402
- Commands that use the obsolete "log_days" option of the Log Collector tool have been removed.
- BZ#2041544
- When you select a host to upload, the host list no longer jumps back to the first host if you select a different host.
- BZ#2048546
-
The Log Collector tool has been modified to use the
sos report
command in order to avoid warning messages caused by thesosreport
command, which will be deprecated in the future. - BZ#2050108
-
The
ovirt-ha-broker
service runs successfully on a host with a DISA STIG profile. - BZ#2052557
- When stateless VMs or VMs that were started in run-once mode are shut down, vGPU devices are properly released.
- BZ#2064380
- The VNC console password has been changed from 12 to 8 characters, in compliance with libvirt 8 requirements.
- BZ#2066811
-
Self-hosted engine deployment succeeds on a host with a DISA STIG profile, which does not allow non-root users to run Ansible playbooks, when the postgres user is replaced by
engine_psql.sh
.
- BZ#2075852
-
The correct version of the
nodejs
package is installed.
6.4.2. Enhancements
This release of Red Hat Virtualization features the following enhancements:
- BZ#977379
- You can edit and manage iSCSI storage domain connections in the Administration Portal. For example, you can edit a logical domain to point to a different physical storage, which is useful if the underlying LUNs are replicated for backup purposes or if the physical storage address has changed.
- BZ#1616158
- The self-hosted engine installation checks that the IP address of the Manager is in the same subnet as the host running the self-hosted engine agent.
- BZ#1624015
-
You can set a console type globally for all VMs with
engine-config
. - BZ#1667517
-
A logged-in user can set the default console type, full screen mode, smart card enablement,
Ctrl+Alt+Del
key mapping, and the SSH key in the VM Portal. - BZ#1745141
-
The SnowRidge Accelerator Interface Architecture (AIA) can be enabled by modifying the
extra_cpu_flags
custom property of a virtual machine (movdiri
,movdir64b
). - BZ#1781241
- The ability to connect automatically to a VM in the VM Portal has been restored as a configurable option.
- BZ#1849169
-
The
VCPU_TO_PHYSICAL_CPU_RATIO
parameter has been added to theEvenly Distributed
scheduling policy to prevent over-utilization of physical CPUs on a host. The value of the parameter reflects the ratio between virtual and physical CPUs. - BZ#1878930
-
You can configure a threshold for the minimum number of available MAC addresses in a pool with
engine-config
.
- BZ#1922977
- Shared disks are included in the 'OVF_STORE' configuration, which enables VMs to share disks after a storage domain is moved to a new data center and the VMs are imported.
- BZ#1925878
- A link to the Administration Portal has been added to all Grafana dashboards.
- BZ#1926625
- You can enable HTTP Strict Transport Security after installing the Manager by following the instructions in How to enable HTTP Strict Transport Security (HSTS) on Apache HTTPD.
- BZ#1944834
- You can set a delay interval for shutting down your VM console session in the Administration Portal to avoid accidental disconnection.
- BZ#1964208
- You can create and download a VM screenshot in the Administration Portal.
- BZ#1975720
- You can create parallel migration connections. See Parallel migration connections for details.
- BZ#1979797
- A warning message is displayed if you try to remove a storage domain that contains a volume leased by a VM in a different storage domain.
- BZ#1987121
-
You can specify vGPU driver parameters as a string, for example,
enable_uvm=1
, for all the vGPUs of a VM by using the vGPU editing dialog. The vGPU editing dialog has been moved from Host devices to VM devices. - BZ#1990462
- RSyslog can authenticate to Elasticsearch with a user name and password.
- BZ#1991482
- A link to the Monitoring Portal has been added to the Administration Portal dashboard.
- BZ#1995455
- You can use any number of CPU sockets, up to the number of maximum vCPUs, on cluster versions 4.6 and earlier, if the guest OS is compatible.
- BZ#1998255
- You can search and filter vNIC profiles by attributes.
- BZ#1998866
- Windows 11 is supported as a guest operating system.
- BZ#1999698
-
The Apache HTTPD SSLProtocol configuration is managed by crypto-policies instead of being set by
engine-setup
. - BZ#2012830
- You can now use the Logical Volume Management (LVM) devices file for managing storage devices instead of LVM filter, which can be complicated to set up and difficult to manage. Starting with RHEL 8.6, this will be the default for storage device management.
- BZ#2002283
-
You can set the number of PCI Express ports for VMs with
engine-config
. - BZ#2020620
- You can deploy a self-hosted engine on a host with a DISA STIG profile.
- BZ#2021217
- Windows 2022 is supported as a guest operating system.
- BZ#2021545
- DataCenter/Cluster compatibility level 4.7 is available for hosts with RHEL 8.6 or later.
- BZ#2023786
-
If a VM is set with the custom property
sap_agent=true
, hosts that do not have thevdsm-hook-vhostmd
package installed are filtered out by the scheduler when the VM is started. - BZ#2029830
- You can select either the DISA STIG or the PCI-DSS security profile for the self-hosted engine VM during installation.
- BZ#2030596
- The Manager can run on a host with a PCI-DSS security profile.
- BZ#2033185
- Cluster level 4.7 supports the e1000e VM NIC type. Because the e1000 driver is deprecated by RHEL 8.0, users should switch to e1000e if possible.
- BZ#2037121
- The RHV Image Discrepancy tool displays data center and storage domain names in its output.
- BZ#2040474
- The Administration Portal provides better error messages and status and progress indicators during cluster upgrade.
- BZ#2049782
- You can set user-specific preferences in the Administration Portal.
- BZ#2054756
- A link to the Migration Toolkit for Virtualization documentation has been added to the login screen of the Administration Portal.
- BZ#2058177
-
The
nvme-cli
package, used by RHEL 8 to manage storage devices, has been added to RHVH. - BZ#2066042
-
ansible-core
package, required bycockpit-ovirt
has been added to RHVH. - BZ#2070963
-
The
rng-tools
,rsyslog-gnutls
, andusbguard
packages have been added torhvm-appliance
to comply with DISA-STIG profile requirements. - BZ#2070980
-
The OVA package manifest has been added to the
rhvm-appliance
RPM. - BZ#2072881
- You can restore a backup of an earlier RHV 4 version to a datacenter/cluster with the current version.
6.4.3. Release Notes
This section outlines important details about the release, including recommended practices and notable changes to Red Hat Virtualization. You must take this information into account to ensure the best possible outcomes for your deployment.
- BZ#1782056
-
IPSec for Open Virtual Network is available for hosts with
ovirt-provider-ovn
,ovn-2021
or later, andopenvswitch2.15
or later. - BZ#1940824
- You can upgrade OVN and OVS 2.11 to OVN 2021 and OVS 2.15.
- BZ#2004852
- You can enable VirtIO-SCSI and multiple queues, depending on the number of available vCPUs, when creating a VM with an Ansible playbook.
- BZ#2015796
- The current release can be deployed on a host with the RHEL 8.6 DISA STIG OpenSCAP profile.
- BZ#2023250
-
The host installation and upgrade flows have been updated to enable the
virt:rhel
module during a new installation of the RHEL 8.6 host or upgrade from RHEL 8.5 or earlier. - BZ#2030226
- RHVH can be deployed on a machine with the PCI-DSS security profile.
- BZ#2052686
-
The current release requires
ansible-core
2.12.0 or later. - BZ#2055136
-
The
virt
DNF module version is set to the RHEL version of the host during the upgrade procedure. - BZ#2056126
- When an internal certificate is due to expire, the Manager creates a warning event 120 days in advance and an alert event 30 days in advance in the audit log. Custom certificates for HTTPS access to the Manager are not checked.
6.4.4. Deprecated Functionality
The items in this section are either no longer supported, or will no longer be supported in a future release.
- BZ#2016359
- The GlusterFS storage type is deprecated because Red Hat Gluster Storage reaches end of life in 2024.