kolla-ansible

Cinder not using ceph keyring defined in globals.yml

Bug #2025168 reported by Yuri Blas
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
kolla-ansible
New
Undecided
Unassigned

Bug Description

On master branch, running deploy with an external ceph cluster and keyring defined in globals.yml fails as kolla does not use the keyring defined in ceph_cinder_keyring (seems to append an additional ceph. to defined keyring when deploying).

Deploy fails with despite having the proper keyring in place as it is looking for one with additional ceph. appended to it: "msg": "Could not find or access '/etc/kolla/config/cinder/cinder-volume/ceph.ceph.client.cinder.keyring' on the Ansible Controller.\nIf you are using a module and expect the file to exist on the remote, see the remote_src option"

I am able to Deploy by either renaming my keyring or removing ceph. in the defined globals.yml value but this does not seem like intended behavior.

This seems to only affect cinder as the glance and nova ceph keyrings function as expected.

Yuri Blas (dfgyuri)
summary: - Kolla not using ceph keyring defined in globals.yml
+ Cinder not using ceph keyring defined in globals.yml
Revision history for this message
chanyeol yoon (ycy1766) wrote (last edit ):

Looks like incorrect external ceph keyrings variable.
How did you define eph_cinder_keyring variable?
External ceph keyrings variable in globals.yml file has been modified.
https://opendev.org/openstack/kolla-ansible/commit/fdf2385f14850cdd580afb5762b6fb29ab246992
...
# External Ceph keyrings
ceph_cinder_keyring: "ceph.client.cinder.keyring" -> ceph_cinder_keyring: "client.{{ ceph_cinder_user }}.keyring"
ceph_cinder_backup_keyring: "ceph.client.cinder-backup.keyring" -> ceph_cinder_backup_keyring: "client.{{ ceph_cinder_backup_user }}.keyring"
...

Revision history for this message
Yuri Blas (dfgyuri) wrote :

I had it defined in globals.yml as:
ceph_cinder_keyring: "ceph.client.cinder.keyring"

Leaving it as default value or removing ceph. works.
I dont see why defining the exact keyring filename doesnt.
My definitions for the glance and nova keyrings are similar and there is no issue with them.

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.