ceph encryption: relation with ceph-mon needs to be restarted after ceph is ready
Bug #1780988 reported by
Ashley Lai
This bug report is a duplicate of:
Bug #1774279: unable to create pools before OSD's are up and running.
Edit
Remove
This bug affects 2 people
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| Ceph RADOS Gateway Charm |
New
|
Undecided
|
Unassigned | ||
| Gnocchi Charm |
New
|
Undecided
|
Unassigned | ||
| OpenStack Cinder-Ceph charm |
New
|
Undecided
|
Unassigned | ||
| OpenStack Glance Charm |
New
|
Undecided
|
Unassigned | ||
| OpenStack Nova Compute Charm |
New
|
Undecided
|
Unassigned | ||
Bug Description
Ceph encryption requires the vault to be initialized before ceph services can become ready for use. This requires the charms that have relation to ceph-mon to re-run the relation hook for it to work properly. The work around is to remove the relation and add the relation back on but we need the fix in the charm to do this.
Revision history for this message
| James Page (james-page) wrote | #1 |
Revision history for this message
| Lorenzo Cavassa (lorenzo-cavassa) wrote | #2 |
Revision history for this message
| James Page (james-page) wrote | #3 |
| affects: | charm-gnocchi → charm-glance |
To post a comment you must log in.
I'm not sure this is the case; the vault charm won't give out any access credentials until vault is initialized and the charm is authorized for access; at this point, the vault charm can actually access vault so can start granting access and creating backends.
Is this specific to gnocchi? or does it impact all charms consuming the secrets backend from from vault.