If you see outdated content please navigate to the page footer and click "Report an issue on GitHub".
It is not user documentation and should not be treated as such.
User Documentation is available here.
oVirt Architecture
A standard oVirt deployment consists of three things, primarily:
- ovirt-engine which is used to deploy, monitor, move, stop and create VM images, configure storage, network , etc.
- One or more hosts (nodes), on which we run virtual machines (VMs)
- One or more storage nodes, which hold the images and ISOs corresponding to those VMs
The nodes are Linux distributions with VDSM and libvirt installed, along with some extra packages to easily enable virtualization of networking and other system services. The supported Linux distributions to date are CentOS Stream 9 and derivatives. oVirt project also provides oVirt Node, which is basically a stripped-down CentOS Stream 9 distribution containing just enough components to allow virtualization.
The storage nodes can use block or file storage, and can be local or remote, accessed via NFS. Storage technologies like Gluster are supported through the POSIXFS storage type. Storage nodes are grouped into storage pools, which can ensure high availability and redundancy. The Vdsm Storage Terminology page has more details.
The different diagrams and descriptions below represent the architecture of the oVirt project, and its different components.
Overall architecture
The main components are:
- oVirt Engine - manages the oVirt hosts, and allows system administrators to create and deploy new VMs
- oVirt Engine Admin Portal - web based UI application on top of the engine, that sysadmins use to perform advanced actions.
- Web UI Portal - a simplified web based UI application for simpler management use-cases.
- REST API - an API which allows applications to perform virtualization actions, which is used by the command line tools and the python SDK
- SDK - The command line interface and SDK provide a way to communicate with engine via script actions.
- Database - Postgres database is used by the engine to provide persistency for the configuration of the ovirt deployment.
- Host agent (VDSM) - the oVirt engine communicates with VSDM to request VM related actions on the nodes
- QEMU Guest Agent - The guest agent runs inside the VM, and provides information on resource usage to the oVirt engine. Communication is done over a virtualised serial connection.
- DWH (Data Warehouse) - The data warehouse component performs ETL on data extracted from the db using Talend , and inserts it to history DB.
- SPICE client - utility which allows users to access the VMs.
The sections below will give a description and architectural aspects for each such component.
Engine
oVirt engine is a Wildfly based Java application which runs as a web service.
This service talks to VDSM on the hosts via vdsm-jsonrpc-java
library to deploy, start, stop, migrate and monitor VMs, and it can also create new images on storage from templates.
It is a large scale, centralized management for server and desktop virtualization, based on leading performance, scalability and security infrastructure technologies.
Some features provided by the engine:
- VM lifecycle management
- Authentication via Features/AAA
- Network management - adding logical networks, and attaching them to hosts
- Storage management - managing storage domains (NFS/iSCSI/Local), and virtual VM disks
- High Availability - restart guest VMs from failed hosts automatically on other hosts
- Live Migration - move running VM between hosts with zero downtime
- System Scheduler - continuously load balance VMs based on resource usage/policies
- Power Saver - concentrate virtual machines on fewer servers during off-peak hours
- Maintenance Manager - no downtime for virtual machines during planned maintenance windows.
- Image Management - template based provisioning, thin provisioning and snapshots
- Monitoring - for all objects in system – VM guests, hosts, networking, storage etc.
- Export/Import - import and export VMs and templates using OVF files
- V2V - convert VMs from VMware and RHEL/Xen environments to the oVirt environment
The following diagram shows the different layers in the oVirt engine component:
Engine-Core Architecture
The following diagram shows the different components in the engine-core:
The main components in the engine core are:
- DB Broker - responsible for all the DB related actions
- VDS Broker - responsible for all actions that require communicating with VDSM
- LDAP Broker - obsoleted and not used
- Backend Bean - a Singleton bean responsible for running actions, queries and monitoring of the different entities
Host Agent (VDSM)
VDSM is a component developed in Python, which covers all functionality required by oVirt Engine for host, VM, networking and storage management.
- The VDSM API is XML-RPC based (planned to move to REST API). This is how ovirt-engine communicates with VDSM.
- Configures host, networking and shared storage
- Uses libvirt for VM life cycle operations
- Multithreaded, multi-processes
- Speaks with its guest agent via virtio-serial
- Adds customized clustering support for LVM that scales to hundreds of nodes
- Implements a distributed image repository over the supported storage types (local directory, FCP, FCoE, iSCSI, NFS, SAS)
- Multihost system, one concurrent metadata writer
- Scales linearly in data writers
Hooks mechanism
- Allows administrators to define scripts to modify VM operation eg. Add extra options such as CPU pinning, watchdog device, direct LUN access, etc.
- Allows oVirt to be extended for new KVM features before full integration is done
- An easy way to test a new kvm/libvirt/linux feature
- The hook mechanism is called before VDSM initiates the VM startup using libvirt.
- The hook changes the VM definition, and VDSM passes this definition to libvirt to start the VM.
The following diagram illustrates the Hook mechanism in the VM lifetime cycle:
MOM integration
VDSM is integrated with MoM. The behavior of MOM is configured with policies. With these policies users can fine tune the host for high memory overcommit or safe operation. In order to control its mom instance, vdsm does ship a mom configuration file and a mom policy file that sets mom’s default behavior. At startup, vdsmd imports mom and initializes it with the configuration and policy files. From that point on, mom interacts with vdsm through the well-defined API in API.py and is controlling the memory balloons of each VM running on the host. The MOM Instance runs as a thread within the vdsm daemon.
Web-based User Interface
Following diagram provides a high level overview of oVirt user interface architecture:
- Google Web Toolkit: Java-based SDK providing tools and APIs for building web applications
- GWT Platform: Model-View-Presenter framework following GWT best practices (slides)
- GWT INjection: dependency injection framework for GWT
- oVirt GWT-Common: module housing common components such as widgets, abstract and infra-level classes, etc.
- oVirt UI Plugins: feature allowing WebAdmin UI to be extended by JavaScript-based plugins at runtime
Following diagram shows a typical GWT development workflow:
oVirt UI is designed around following concepts:
- web browser as application platform, capable of delivering rich user experience through JavaScript-based applications
- dependency injection and event bus to employ loosely-coupled component architecture
- Model-View-Presenter for clean separation between presentation (View) and related business logic (Presenter)
REST API
RESTful API for integration with oVirt Engine:
- REST interface exposed for all API functions
- REST stands for REpresentational State Transfer
- Modeling entity actions around HTTP verbs
- GET
- PUT
- POST
- DELETE
- Still uses ‘actions’ for some state changes
- Self describes – entity navigation and actions
REST Concepts:
- Client–server
- Stateless
- Cacheable
- Uniform interface
SDK
SDK are using on the REST api mentioned above.
- Python / Java / Go based SDK to allow performing actions on the different entities
- Complete protocol abstraction
- Full compliance with the oVirt API architecture
- Auto-completion
- Self descriptive
- Intuitive and easy to use
- Auto-Generated
DWH
The DWH (data warehouse) component contains:
- ETL based on talendforge.org
- Periodic polling from operational DB
- Types of data
- Config with version tracking
- Statistics – aggregated hourly/daily
- API is view based