The L3 agent is not using the root helper when checking to see that a namespace already exists. This causes it get no listed namespaces if using an unprivileged account and try to create a duplicate namespace, which then fails because it already exists and raises a runtime error like the one below.
Traceback (most recent call last):
File "/usr/lib/python2.7/dist-packages/eventlet/greenpool.py", line 80, in _spawn_n_impl
func(*args, **kwargs)
File "/usr/lib/python2.7/dist-packages/neutron/agent/l3_agent.py", line 434, in process_router
p['ip_cidr'], p['mac_address'])
File "/usr/lib/python2.7/dist-packages/neutron/agent/l3_agent.py", line 710, in internal_network_added
prefix=INTERNAL_DEV_PREFIX)
File "/usr/lib/python2.7/dist-packages/neutron/agent/linux/interface.py", line 195, in plug
namespace_obj = ip.ensure_namespace(namespace)
File "/usr/lib/python2.7/dist-packages/neutron/agent/linux/ip_lib.py", line 137, in ensure_namespace
ip = self.netns.add(name)
File "/usr/lib/python2.7/dist-packages/neutron/agent/linux/ip_lib.py", line 447, in add
self._as_root('add', name, use_root_namespace=True)
File "/usr/lib/python2.7/dist-packages/neutron/agent/linux/ip_lib.py", line 218, in _as_root
kwargs.get('use_root_namespace', False))
File "/usr/lib/python2.7/dist-packages/neutron/agent/linux/ip_lib.py", line 71, in _as_root
namespace)
File "/usr/lib/python2.7/dist-packages/neutron/agent/linux/ip_lib.py", line 82, in _execute
root_helper=root_helper)
File "/usr/lib/python2.7/dist-packages/neutron/agent/linux/utils.py", line 76, in execute
raise RuntimeError(m)
RuntimeError:
Command: ['sudo', 'neutron-rootwrap', '/etc/neutron/rootwrap.conf', 'ip', 'netns', 'add', 'qrouter-d24d57d0-2155-4011-80d4-f4dbd382c897']
Exit code: 1
Stdout: ''
Stderr: 'Could not create /var/run/netns/qrouter-d24d57d0-2155-4011-80d4-f4dbd382c897: File exists\n'
Fix proposed to branch: master
Review: https:/