the nova and nova_cell0 use the same database password
Bug #1692430 reported by
caoyuan
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| kolla-ansible |
Won't Fix
|
Undecided
|
Unassigned | ||
Bug Description
The nova and nova_cell0 use the same database password, it is not safe for openstack
TASK [nova : Creating Nova databases user and setting permissions] *******
changed: [gandalf -> gandalf] => (item={
changed: [gandalf -> gandalf] => (item={
changed: [gandalf -> gandalf] => (item={
| affects: | kolla → kolla-ansible |
Revision history for this message
| Eduardo Gonzalez (egonzalez90) wrote | #1 |
Revision history for this message
| OpenStack Infra (hudson-openstack) wrote Change abandoned on kolla-ansible (master) | #2 |
| Changed in kolla-ansible: | |
| status: | New → Won't Fix |
To post a comment you must log in.
Creation of cell0 cell is made here [1] , this cell creation takes the db value from [database]
Excerpt from [2] :
If you are not going to pass the database url on the command line in step 3, you need to name the cell0 database based on the name of your existing Nova database: <Nova database name>_cell0.
Based of above, current {{ nova_database_name }}_cell0 is correct.
What I'm not sure is, how db sync for cell is handled, takes value from database=connection option or use the value stored in the nova_api db to sync the data, and how cell0 knows what db to use once set up. I think database=connection value is the correct way to handle this, and each cell points to it's connection name.
BTW, cell0 is an especial cell, is only used to store unscheduled or failed to schedule instances, is not a "real" functional cell.
[1] https:/
[2] https:/