Bug 1309150 - [RFE] Hide the hosted_storage storage domain when creating vdisks and importing from export domain
Summary: [RFE] Hide the hosted_storage storage domain when creating vdisks and importi...
Status: CLOSED DUPLICATE of bug 1354200
Alias: None
Product: ovirt-engine
Classification: oVirt
Component: Frontend.WebAdmin
Version: 3.6.3
Hardware: x86_64
OS: Linux
low vote
Target Milestone: ovirt-4.1.0-alpha
: ---
Assignee: bugs@ovirt.org
QA Contact: meital avital
Whiteboard: PM-15
: 1309151 1336200 (view as bug list)
Depends On:
Blocks: Generic_Hyper_Converged_Host Gluster-HC-2
TreeView+ depends on / blocked
Reported: 2016-02-17 01:21 UTC by Paul Cuzner
Modified: 2016-11-16 15:27 UTC (History)
8 users (show)

Fixed In Version:
Doc Type: Enhancement
Doc Text:
Clone Of:
rhevm 3.6.3
Last Closed: 2016-11-16 15:27:15 UTC
oVirt Team: SLA
sabose: ovirt-4.1?
rule-engine: planning_ack?
rule-engine: devel_ack?
rule-engine: testing_ack?

Attachments (Terms of Use)

Description Paul Cuzner 2016-02-17 01:21:22 UTC
Description of problem:
In a hosted engine environment, you need to import the hosted_storage storage domain for the hosted engine to be imported. However, once this is done you see this hosted_storage storage domain when ever you create vdisks.

Since the goal is to keep hosted_storage separate from user vm's this storage domain should be masked in the UI to provent users allocating vdisks to the 'management' storage domain.

Version-Release number of selected component (if applicable):

How reproducible:
Every time

Steps to Reproduce:
1. Import the hosted_storage
2. create a vm, and add a vdisk
3. note the targets for the vdisk allocation includes the hosted_storage domain

Actual results:
user can allocate vdisks to the hosted_storage domain

Expected results:
hosted_storage should not be available as a SD to select when creating (or moving) vdisks (in vm tab, or disks tab for example)

Additional info:

Comment 1 Michal Skrivanek 2016-02-17 06:20:53 UTC
*** Bug 1309151 has been marked as a duplicate of this bug. ***

Comment 2 Allon Mureinik 2016-02-17 08:12:47 UTC
AFAIK, this isn't the correct behavior moving forwards - we'd like to use this domain as any other domain.

Comment 3 Paul Cuzner 2016-02-17 20:04:48 UTC
(In reply to Allon Mureinik from comment #2)
> AFAIK, this isn't the correct behavior moving forwards - we'd like to use
> this domain as any other domain.

I guess I'm looking at this from a reliability/availability standpoint. By isolating the engine SD, we can strip out some of the operational 'interference' that may otherwise affect the availability or responsiveness of the engine.

Here's some of the benefits I was thinking of defined as either generic or specific to hyperconverged ;

- you insulate the management platform from user IOPS and disk contention, potentially improving responsiveness
- having a separate storage domain would allow the admin to use different caching/tiering/QoS/data protection schemes from their storage array specifically for the engine
- SD's that use thin provisioning by default could be overcommitted leading to ENOSPC errors. With the engine running in it's own SD, even if this is allowed to happen the management plane will always be available to the admin for diagnostics and troubleshooting. 

- with a smaller dedicated SD for hosted engine, recovery actions are quicker, ensuring the management plane is as stable and reliable as possible
- implementing geo-replication features becomes easier since the hosted engine SD could be ignored.
- in the case of a glusterfs environment, you can also increase reliability by using thick provisioning for the 'bricks' that support the engine - guaranteeing space. 
- a separate SD allows different lvmcache configuration and policies to be applied. For example, you could use SSD's with the engine in writethrough mode, and ssd's with the other SD's in writeback. This would give the read benefit to the engine, but if an ssd goes 'bang' it *doesn't* present the opportunity for data loss - again increasing the reliability of the engine.

I understand the desire for treating the hosted engine SD as any other, but for me reliability of the engine should take precedence

Comment 4 Doron Fediuck 2016-02-28 11:15:37 UTC
A simple solution would be based on permissions.
This is something we already have today. If your user has no permissions
on the HE SD he won't be able to see it.

Comment 5 Roy Golan 2016-07-19 09:41:48 UTC
The permission solution is still allowing superusers to override that behaviour. Do we want that? In setups where the admins are superusers this solution will not guarantee abuse of the HE SD.

Another option is to use a config item for the allowed operations on HE SD.

Another one was suggested in Bug 1354200 - to create a new data type

Comment 6 Yaniv Lavi 2016-09-14 12:42:36 UTC
*** Bug 1336200 has been marked as a duplicate of this bug. ***

Comment 7 Yaniv Lavi 2016-11-16 15:27:15 UTC

*** This bug has been marked as a duplicate of bug 1354200 ***

Note You need to log in before you can comment on or make changes to this bug.