[Openstack-security] [Bug 1252519] Re: Live migration failed because of file permission changed

Hendrik Frenzel 1252519 at bugs.launchpad.net
Mon Sep 8 18:12:24 UTC 2014 

I would suggest to set user="nova" and group="nova" in qemu.conf too.
Without them, a permission denied error occured on instance creation:

2014-09-08 20:08:33.267 4740 TRACE nova.compute.manager [instance:
6fbc9080-772d-4c18-a630-2196763742bf] qemu-kvm: -drive
file=/var/lib/nova/instances/6fbc9080-772d-
4c18-a630-2196763742bf/disk,if=none,id=drive-virtio-
disk0,format=qcow2,cache=none: could not open disk image
/var/lib/nova/instances/6fbc9080-772d-4c18-a630-2196763742bf/disk:
Permission denied

-- 
You received this bug notification because you are a member of OpenStack
Security Group, which is subscribed to OpenStack.
https://bugs.launchpad.net/bugs/1252519

Title:
  Live migration failed because of file permission changed

Status in OpenStack Compute (Nova):
  Confirmed

Bug description:
  Openstack : Havana
  OS : CentOS 6.4
  Shared storage with GlusterFS :  /var/lib/nova/instances mounted on glusterfs shared

  
  Instance start up fine on node01.  When live migration happen, it moved to node02 but failed with the following error

  2013-11-18 16:27:37.813 9837 ERROR nova.openstack.common.periodic_task [-] Error during ComputeManager.update_available_resource: Unexpected error while running command.
  Command: env LC_ALL=C LANG=C qemu-img info /var/lib/nova/instances/aa1deb40-ae1d-45e4-a37e-7b0607df372f/disk
  Exit code: 1
  Stdout: ''
  Stderr: "qemu-img: Could not open '/var/lib/nova/instances/aa1deb40-ae1d-45e4-a37e-7b0607df372f/disk'\n"
  2013-11-18 16:27:37.813 9837 TRACE nova.openstack.common.periodic_task Traceback (most recent call last):
  2013-11-18 16:27:37.813 9837 TRACE nova.openstack.common.periodic_task   File "/usr/lib/python2.6/site-packages/nova/openstack/common/periodic_task.py", line 180, in run_periodic_tasks
  2013-11-18 16:27:37.813 9837 TRACE nova.openstack.common.periodic_task     task(self, context)


  The problem is with the file ownership of "console.log" and "disk".
  Those file should be owned by user "qemu" and group "qemu" but after
  the migration, both files are owned by root

  
  drwxr-xr-x 2 nova nova       53 Nov 18 13:40 .
  drwxr-xr-x 6 nova nova      110 Nov 18 13:43 ..
  -rw-rw---- 1 root root     1546 Nov 18 13:43 console.log
  -rw-r--r-- 1 root root 12058624 Nov 18 13:42 disk
  -rw-r--r-- 1 nova nova     1569 Nov 18 13:42 libvirt.xml

To manage notifications about this bug go to:
https://bugs.launchpad.net/nova/+bug/1252519/+subscriptions

More information about the Openstack-security mailing list