Issued:
2019-12-12
Updated:
2019-12-12

RHBA-2019:4229 - Red Hat Virtualization Manager ovirt-engine - 4.3.7

Synopsis

Red Hat Virtualization Manager (ovirt-engine) 4.3.7

Type/Severity

Bug Fix Advisory None

Topic

Updated ovirt-engine and its dependent packages that fix several bugs and add various enhancements are now available.

Description

The ovirt-engine package provides the manager for virtualization environments. This manager enables admins to define hosts and networks, as well as to add storage, create VMs and manage user permissions.

A list of bugs fixed in this update is available in the Technical Notes book:

https://access.redhat.com/documentation/en-us/red_hat_virtualization/4.3/html-single/technical_notes

Changes to the ovirt-engine component:

  • Read permissions were not restricted in 10-setup-ovirt-provider-ovn.conf In this release, only the necessary read permissions are defined. (BZ#1750801)

  • After updating the IPv6 gateway, the host IPv6 default route was not defined. In this release, the IPv6 Default Route is configured correctly following an IPv6 gateway update (BZ#1759461)

  • The following improvements have been made to host certificates used for encrypted communication between the RHV Manager and the Virtual Desktop Server Manager:

  1. All newly added host will have certificates with correct SAN field
  2. A periodic check for certificate validity is performed and if the SAN field is not populated an error is reported in the audit log, notifying administrators that the host certificate needs to be re-enrolled.
  3. The SAN field in the certificate is also checked during host upgrade, so that the host certificate can be re-enrolled during host upgrade. (BZ#1763109)

  • The default maximum timeout for an Ansible playbook executed from the engine was 30 minutes. As a result, the upgrade process of the host failed due to the short timeout. In this release the timeout was raised to 120 minutes. (BZ#1765161)

  • A missing alias name prevented the Virtual Desktop Server Manager from identifying the VNIC which required a hot unplug. As a result, the hot unplug failed. In this release, if an alias name is not defined in the RHV Manager, it will be generated on the fly, and the hot unplug will succeed. (BZ#1766666)

  • When importing a KVM in RHV, "Hardware Clock Time Offset" was not set. In this release a default engine setting is set for the "Hardware Clock Time Offset" field. As a result, the engine will recognize the guest agent on a virtual machine imported from KVM. (BZ#1743427)

Changes to the rhvm-setup-plugins component:

  • The Windows Guest Tools ISO was automatically attached to a Windows virtual machine even when it was an older version. In this release the ISO version is checked in the data domains and the ISO domains, and the ISO is automatically attached only if it is a newer version than the existing one. (BZ#1730538)

Solution

Before applying this update, make sure all previously released errata relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/2974891

Affected Products

ProductVersionArch
Red Hat Virtualization Manager4.3x86_64

Updated Packages

  • ovirt-engine-health-check-bundler-4.3.7.2-0.1.el7.noarch.rpm
  • ovirt-engine-setup-plugin-ovirt-engine-common-4.3.7.2-0.1.el7.noarch.rpm
  • rhv-log-collector-analyzer-0.2.14-0.el7ev.noarch.rpm
  • ovirt-ansible-vm-infra-1.1.22-1.el7ev.src.rpm
  • ovirt-ansible-vm-infra-1.1.22-1.el7ev.noarch.rpm
  • ovirt-ansible-infra-1.1.13-1.el7ev.noarch.rpm
  • ovirt-engine-webadmin-portal-4.3.7.2-0.1.el7.noarch.rpm
  • ovirt-engine-backend-4.3.7.2-0.1.el7.noarch.rpm
  • ovirt-engine-setup-plugin-vmconsole-proxy-helper-4.3.7.2-0.1.el7.noarch.rpm
  • ovirt-engine-dbscripts-4.3.7.2-0.1.el7.noarch.rpm
  • ovirt-engine-vmconsole-proxy-helper-4.3.7.2-0.1.el7.noarch.rpm
  • ovirt-engine-tools-backup-4.3.7.2-0.1.el7.noarch.rpm
  • rhvm-setup-plugins-4.3.5-1.el7ev.noarch.rpm
  • ovirt-engine-extensions-api-impl-javadoc-4.3.7.2-0.1.el7.noarch.rpm
  • ovirt-ansible-infra-1.1.13-1.el7ev.src.rpm
  • ovirt-ansible-cluster-upgrade-1.1.14-1.el7ev.src.rpm
  • ovirt-engine-setup-base-4.3.7.2-0.1.el7.noarch.rpm
  • ovirt-engine-setup-plugin-websocket-proxy-4.3.7.2-0.1.el7.noarch.rpm
  • ovirt-engine-4.3.7.2-0.1.el7.noarch.rpm
  • ovirt-engine-tools-4.3.7.2-0.1.el7.noarch.rpm
  • rhv-log-collector-analyzer-0.2.14-0.el7ev.src.rpm
  • ovirt-ansible-cluster-upgrade-1.1.14-1.el7ev.noarch.rpm
  • rhvm-4.3.7.2-0.1.el7.noarch.rpm
  • ovirt-engine-websocket-proxy-4.3.7.2-0.1.el7.noarch.rpm
  • ovirt-engine-metrics-1.3.5.1-1.el7ev.src.rpm
  • ovirt-engine-restapi-4.3.7.2-0.1.el7.noarch.rpm
  • ovirt-engine-setup-4.3.7.2-0.1.el7.noarch.rpm
  • ovirt-engine-4.3.7.2-0.1.el7.src.rpm
  • python2-ovirt-engine-lib-4.3.7.2-0.1.el7.noarch.rpm
  • ovirt-engine-setup-plugin-ovirt-engine-4.3.7.2-0.1.el7.noarch.rpm
  • ovirt-engine-metrics-1.3.5.1-1.el7ev.noarch.rpm
  • rhvm-setup-plugins-4.3.5-1.el7ev.src.rpm
  • ovirt-engine-extensions-api-impl-4.3.7.2-0.1.el7.noarch.rpm
  • ovirt-engine-setup-plugin-cinderlib-4.3.7.2-0.1.el7.noarch.rpm

Fixes

CVEs

(none)

References

(none)

Additional information