Description of problem: Because of bug 1809458 and bug 1806276 engine-setup sets the private key files for OVN readable by hugetlbfs groups. This enables members of hugetlbfs other than OVN to read these files, too. Actual results: The OVN's private key files can be read by other memebers of hugetlbfs. Expected results: The OVN's private key files cannot be read by other memebers of hugetlbfs.
This bug could be backported to 4.4, as soon as OVS/OVN allows this.
Verified on - rhvm-4.5.0-0.237.el8ev.noarch
This bugzilla is included in oVirt 4.5.0 release, published on April 20th 2022. Since the problem described in this bug report should be resolved in oVirt 4.5.0 release, it has been closed with a resolution of CURRENT RELEASE. If the solution does not work for you, please open a new bug report.