New features

MOSK 22.2 features

Component	Support scope	Feature
OpenStack	Full	MariaDB minor version update
	Full	End-user IP addresses captured in cloud’s logs
	TechPreview	CPU isolation using cpusets
	n/a	OpenStack security checklist compliance
	Full	LoadBalancer configuration for PowerDNS
Tungsten Fabric	Full	Access to external DNS for Tungsten Fabric
Bare metal	TechPreview	MOSK on local mdadm RAID devices of level 10

MariaDB minor version update

Updated the minor version of MariaDB from 10.4 to 10.6. The update applies automatically during the MOSK cluster update procedure.

Learn more

• Operations Guide: Update a MOSK cluster

• Reference Architecture: Cluster update flow

End-user IP addresses captured in cloud’s logs

Exposed the IP addresses of the cloud users that consume API of a cloud to all user-facing cloud services, such as OpenStack, Ceph, and others. Now, the IP addresses get recoded in the corresponding logs allowing for easy troubleshooting and security auditing of the cloud.

CPU isolation using cpusets

TechPreview

Implemented the capability to configure CPU isolation using the cpusets mechanism in Linux kernel. Configuring CPU isolation using the isolcpus configuration parameter for Linux kernel is considered deprecated.

Learn more

• Deployment Guide: Configure CPU isolation using cpusets

• Cpusets

OpenStack security checklist compliance

Validated MOSK against the upstream OpenStack Security Checklist. The default configuration of MOSK services that include Identity, Dashboard, Compute, Block Storage, and Networking services is compliant with the security recommendations from the OpenStack community.

Encryption of all the internal communications for MOSK services will become available in one of the nearest product releases.

LoadBalancer configuration for PowerDNS

Implemented the capability to configure the LoadBalancer type for PowerDNS through the spec:features:designate definition in the OpenStackDeployment CR, for example, to expose the TCP protocol instead of the default UDP, or both.

Learn more

Reference Architecture: LoadBalancer type for PowerDNS

Access to external DNS for Tungsten Fabric

Added the tf-control-dns-external service to the list of the Tungsten Fabric configuration options. The service is created by default to expose TF control dns. You can disable creation of this service using the enableDNSExternal parameter in the TFOperator CR.

Learn more

Reference Architecture: Access to external DNS

MOSK on local mdadm RAID devices of level 10

TechPreview

Implemented the initial Technology Preview support for MOSK deployment on local software-based mdadm Redundant Array of Independent Disks (RAID) devices of level 10 (raid10) to withstand failure of one device at a time.

The raid10 RAID type requires at least four and in total an even number of storage devices available on your servers.

To create and configure RAID, use the softRaidDevices field in BaremetalHostProfile.

Also, added the capability to create LVM volume groups on top of mdadm-based RAID devices.

Learn more

• Deployment Guide: Configure RAID support

• Deployment Guide: Create LVM volume groups on top of RAID devices