[kolla-ansible] nova-cell can't not find nova.keyring file when deploy
hello Daniel here Previously i was testing openstack-helm but it doesn't work so i switch to kolla-ansible with all-in-one mode i was following the official guide and put the keyring file i generate to the config folder: (venv) root:~# nano /etc/kolla/config/nova/ ceph.client.nova.keyring ceph.conf localhost/ nova-compute.conf But when i try to deploy it show the error below TASK [nova-cell : Check nova keyring file] ***************************************************************************************************************** fatal: [localhost]: FAILED! => {"msg": "No file was found when using first_found."} Just in case i also put the keyring file in /config/localhost/nova Still shows the same error But when i put the cinder keyring file in nova folder like this: (venv) root@:~# nano /etc/kolla/config/nova/ ceph.client.cinder.keyring ceph.client.nova.keyring ceph.conf localhost/ nova-compute.conf It can find the cinder keyring file but this time the nova-compute container show error below: unable to find a keyring on /etc/ceph/ceph.client.nova.keyring,/etc/ceph/ceph.keyring,/etc/ceph/keyring,/etc/ceph/keyring.bin: (2) No such file or directory Did i do anything wrong or something makes it not able to detect the nova.keyring file P.S. Cinder and Glance works fine and Ceph can be used normally
Update on this question it seems like the nova.keyring file was not copied into the right folder in nova-compute container for some reason Copy cinder keyring file log output: ok: [localhost] => (item=nova-compute) => { "ansible_loop_var": "item", "changed": false, "checksum": "40682a03d520fe7a873b9864b4fba1bf28418409", "dest": "/etc/ceph/ceph.client.cinder.keyring", "diff": { "after": { "path": "/etc/ceph/ceph.client.cinder.keyring" }, "before": { "path": "/etc/ceph/ceph.client.cinder.keyring" } }, "gid": 0, "group": "root", "invocation": { "module_args": { "_diff_peek": null, "_original_basename": "ceph.client.cinder.keyring", "access_time": null, "access_time_format": "%Y%m%d%H%M.%S", "attributes": null, "dest": "/etc/ceph/ceph.client.cinder.keyring", "follow": true, "force": false, "group": "root", "mode": "0660", "modification_time": null, "modification_time_format": "%Y%m%d%H%M.%S", "owner": "root", "path": "/etc/ceph/ceph.client.cinder.keyring", "recurse": false, "selevel": null, "serole": null, "setype": null, "seuser": null, "src": null, "state": "file", "unsafe_writes": false } }, "item": "nova-compute", "mode": "0660", "owner": "root", "path": "/etc/ceph/ceph.client.cinder.keyring", "size": 71, "state": "file", "uid": 0 } But with Copy over ceph nova keyring file log the dest will be : "/etc/kolla/nova/ceph.client.nova.keyring" If i change the keyring file to dest /etc/ceph/ the container will crash
Problem fixed with docker cp /etc/kolla/config/nova/ceph.client.nova.keyring nova_compute:/etc/ceph/ so it is the keyring not getting copied into the container for some reason
Hi, Well, I think the problem you are facing is that you have set nova ceph user to be cinder ansible/group_vars/all.yml:ceph_cinder_user: "cinder" ansible/group_vars/all.yml:ceph_nova_user: "{{ ceph_cinder_user }}" So, you need to fix/hadle this and then provide proper keyrings ... Doc: https://github.com/openstack/kolla-ansible/blob/master/doc/source/reference/... Kevko Michal Arbet Openstack Engineer Ultimum Technologies a.s. Na Poříčí 1047/26, 11000 Praha 1 Czech Republic +420 604 228 897 michal.arbet@ultimum.io *https://ultimum.io <https://ultimum.io/>* LinkedIn <https://www.linkedin.com/company/ultimum-technologies> | Twitter <https://twitter.com/ultimumtech> | Facebook <https://www.facebook.com/ultimumtechnologies/timeline> st 27. 11. 2024 v 6:50 odesílatel <daniel890723@gmail.com> napsal:
Problem fixed with docker cp /etc/kolla/config/nova/ceph.client.nova.keyring nova_compute:/etc/ceph/
so it is the keyring not getting copied into the container for some reason
Hi Michal Yes you are right i did not change the user in global.yml That's why it doesn't detect the nova keyring in the config folder when i deploy Thanks for your help now everything works perfectly Daniel
Hi, Yeah, I know, I’ve come across this several times and remember it well :) Another approach is to stick with the default – a single user – and change it in Ceph. I believe the latest Ceph documentation only mentions the Cinder user... But I also have it separated. Kevko Michal Arbet Openstack Engineer Ultimum Technologies a.s. Na Poříčí 1047/26, 11000 Praha 1 Czech Republic +420 604 228 897 michal.arbet@ultimum.io *https://ultimum.io <https://ultimum.io/>* LinkedIn <https://www.linkedin.com/company/ultimum-technologies> | Twitter <https://twitter.com/ultimumtech> | Facebook <https://www.facebook.com/ultimumtechnologies/timeline> čt 28. 11. 2024 v 3:38 odesílatel <daniel890723@gmail.com> napsal:
Hi Michal Yes you are right i did not change the user in global.yml That's why it doesn't detect the nova keyring in the config folder when i deploy Thanks for your help now everything works perfectly
Daniel
participants (2)
-
daniel890723@gmail.com
-
Michal Arbet