[RBD] Cinder started requiring write access to glance images RBD pool
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Cinder |
Fix Released
|
High
|
Eric Harney | ||
Ubuntu Cloud Archive |
Fix Released
|
Undecided
|
Unassigned | ||
Ussuri |
Fix Released
|
Undecided
|
Unassigned | ||
Victoria |
Fix Released
|
High
|
Unassigned | ||
Wallaby |
Fix Released
|
Undecided
|
Unassigned | ||
Xena |
Fix Released
|
High
|
Unassigned | ||
Yoga |
Fix Released
|
Undecided
|
Unassigned | ||
Zed |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
Bug summary:
Cinder started requiring write access to glance images RBD pool (on creating volume from image).
See the log excerpt at the report's bottom for the error message.
Identified cause:
I identified the following change as introducing this issue.
"RBD: use correct stripe unit in clone operation"
Change-Id: Iec111ab83e9ed8
https:/
Unfortunately, it has been backported back to Train and broke stable deployments. :-(
The `self.rbd.Image` invocation requires write privileges to the image's pool.
This goes against the recommended caps set: https:/
The workaround is to revert the change or temporarily set the write access as allowed for Cinder.
Tested versions:
Cinder Victoria + Ceph Nautilus
Cinder Xena + Ceph Octopus
QA suggestions:
Ensure that cinder backend is tested with the recommended caps (images read-only).
Ensure that a raw image is tested (the default qcow2 image of cirros gets copied, not cloned).
Log excerpt:
2021-10-17 19:58:58.820 28 ERROR oslo_messaging.
2021-10-17 19:58:58.820 28 ERROR oslo_messaging.
2021-10-17 19:58:58.820 28 ERROR oslo_messaging.
2021-10-17 19:58:58.820 28 ERROR oslo_messaging.
2021-10-17 19:58:58.820 28 ERROR oslo_messaging.
2021-10-17 19:58:58.820 28 ERROR oslo_messaging.
2021-10-17 19:58:58.820 28 ERROR oslo_messaging.
2021-10-17 19:58:58.820 28 ERROR oslo_messaging.
2021-10-17 19:58:58.820 28 ERROR oslo_messaging.
2021-10-17 19:58:58.820 28 ERROR oslo_messaging.
description: | updated |
description: | updated |
Changed in cinder: | |
importance: | Undecided → Medium |
summary: |
- Cinder started requiring write access to glance images RBD pool + [RBD] Cinder started requiring write access to glance images RBD pool |
Changed in cinder: | |
assignee: | nobody → Eric Harney (eharney) |
Changed in cinder: | |
status: | Confirmed → In Progress |
Changed in cinder: | |
importance: | Medium → High |
Marked as confirmed by Kolla CI: https:/ /review. opendev. org/c/openstack /kolla- ansible/ +/814324
(results pending but I saw it from Zuul console already)