Virtuozzo Hybrid Infrastructure 4.6 (4.6.0-208)

Issue date: 2021-06-09

Applies to: Virtuozzo Hybrid Infrastructure 4.6

Virtuozzo Advisory ID: VZA-2021-029

1. Overview

In this release, Virtuozzo Hybrid Infrastructure provides a wide range of new features that enhance service providers’ operability. The improvements cover compute services, object storage, monitoring, security, localization, and the user interface. Additionally, this release delivers stability improvements and addresses the issues found in previous releases.

2. New Features

  • [Compute] Placement improvements:

    • Soft mode for placements. The new mode allows you to schedule a virtual machine on a node that is assigned at least the same placements as the virtual machine. Together with the hard mode, this mode increases flexibility of placing virtual machines on compute nodes.

    • Placements for flavors. Now, placements can be assigned not only to images, but also to flavors. Image placements allow you to distribute virtual machines according to image properties, such as a guest operating system. Placements assigned to flavors, in their turn, help to distribute virtual machines according to hardware capabilities, such as a high-frequency CPU model. In this release, you can assign a placement to a flavor in the command-line interface.

  • [Compute] Support for Kubernetes version 1.19. The new version can be used to create and manage Kubernetes clusters.

  • [Compute] Online extension of virtual machine volumes. Volume extension is enabled for running virtual machines.

  • [Compute] Soft anti-affinity policy for placing Kubernetes instances. Instances with Kubernetes services will be distributed across different nodes in the compute cluster by default. If there are not enough compute nodes, some instances can be placed on the same node.

  • [Compute] Multiple IP addresses per VM network interface. Now, it is possible to set multiple IP addresses for a virtual machine’s network interface.

  • [Compute] Custom branding per domain. Personal branding theme, which is displayed in the self-service panel, can be configured for each domain separately.

  • [Object storage] Object storage classes. It is now possible to use up to four different storage classes for applications with specific performance and redundancy requirements. In this release, management of storage classes is available only in the command-line interface.

  • [Object storage] Object storage stability improvements. The integrity of object storage metadata is ensured by automatic built-in metadata backups.

  • [Object storage] Object storage accounts. Each S3 user can now have multiple accounts, which are isolated containers for S3 user buckers with defined usage limits.

  • [Monitoring and alerting] Advanced core and object storage monitoring. Added more metrics and alerts for core and object storage to the integrated Prometheus monitoring system, to monitor storage parameters centrally, as well as detect and fix issues faster.

  • [Security] Embedded firewall rules for outbound connections. Configurable outbound firewall rules help to secure your nodes and ensure that they can reach only allowed external resources. In this release, management of outbound firewall rules is available only in the command-line interface.

  • [User interface] New screens for node disks and network interfaces. Improved user experience with disks and network interfaces of infrastructure nodes. Introduced new properties for disks and network interfaces. Added two new dashboards for disks, to display current usage and read/write latency.

  • [Updates] Improved update speed. In future releases, large clusters can be updated up to three times faster due to enhanced maintenance mode for storage components and more efficient virtual machine migration.

  • [Localization] Turkish language localization for the admin and self-service panels.

3. Important Notes

  • Kubernetes version 1.15 is deprecated. Use the currently supported version 1.19 to plan your containerized environments.

  • Kubernetes version 1.18 will be deprecated in future releases. Use the currently supported version 1.19 to plan your containerized environments.

  • For object storage, the minimum TLS protocol version is changed to TLS 1.2, to comply with PCI DSS requirements.

4. Bug Fixes

  • Unable to release a cluster node due to a conflicting task. (VSTOR-43708)

  • An incorrect confirmation message is displayed when releasing a node from the S3 cluster. (VSTOR-43528)

  • A Kubernetes cluster might have a coreDNS deployment with 0 replicas. (VSTOR-43267)

  • Cannot create a security group for load balancers while deploying a Kubernetes cluster. (VSTOR-43204)

  • Unable to remove a VM volume in the reserved or attaching state. (VSTOR-43154)

  • An OVS bridge is created on a new compute node when the “VM public” traffic type is assigned to its VLAN interface. (VSTOR-43088)

  • Prometheus is started on every cluster node. (VSTOR-42712)

  • Connectivity checks fail with bond interfaces. (VSTOR-41925)

  • A network interface with no IP address can be assigned the “VM backups” traffic type. (VSTOR-40922)

  • Proxied requests between certain nodes fail with a timeout. (VSTOR-40334)

  • A VMDK image is not converted to the QCOW2 format while uploading in the admin panel. (VSTOR-39535)

  • Change the policy for Kubernetes and load balancer virtual machines in the HA mode from anti-affinity to soft anti-affinity. (VSTOR-30671)

  • Improvements for management node HA. (VSTOR-43646, VSTOR-43178, VSTOR-42564)

  • Update improvements. (VSTOR-43180, VSTOR-38763)

5. Known Issues

  • No error is displayed in the self-service panel if the compute cluster has not enough resources to create a Kubernetes cluster. (VSTOR-43174)

  • An error message is not shown after a failed VM live migration. (VSTOR-39553)

  • Unable to delete large volume snapshots. (VSTOR-41372)

  • An SSD disk is not recognized if it is managed by specific disk controllers. (VSTOR-36155)

  • Cannot cancel a file upload in the user interface of an S3 bucket. (VSTOR-22390)

6. Installing the Update

You can upgrade Virtuozzo Hybrid Infrastructure 4.5 to 4.6 in the SETTINGS > UPDATE section. A reboot is required to complete the upgrade. Upgraded nodes will be rebooted automatically, one at a time. During the reboot, the storage service and the admin panel might be unavailable on cluster configurations without the redundancy of services or data.

The JSON file with the list of new and updated packages is available at https://docs.virtuozzo.com/vza/VZA-2021-029.json.