Attempting to create an image with "openstack image create cirros-0.6.1 --file cirros-0.6.1-x86_64-disk.img" fails with "HttpException: 500: Server Error for url: http://<hidden>:9292/v2/images/51db54d6-3d6a-49e5-9045-08c281cd52b1/file, Internal Server Error". The full log is as follows:
Nov 14 06:03:27 infra02 glance-wsgi-api[353973]: 2023-11-14 06:03:27.007 353973 INFO oslo.privsep.daemon [None req-23785320-f75c-49f6-adc1-a4aa603236de a29ba6a1679149ef860f1421e668044a c5080274158a4e6680f74984c8df33a7 - - default default] Running privsep helper: ['sudo', 'glance-rootwrap', '/etc/glance/rootwrap.conf', 'privsep-helper', '--config-file', '/etc/glance/glance-api-paste.ini', '--config-file', '/etc/glance/glance-api.conf', '--privsep_context', 'os_brick.privileged.default', '--privsep_sock_path', '/tmp/tmpgy4bxosv/privsep.sock']
Nov 14 06:03:27 infra02 sudo[356149]: glance : PWD=/ ; USER=root ; COMMAND=/openstack/venvs/glance-27.2.0/bin/glance-rootwrap /etc/glance/rootwrap.conf privsep-helper --config-file /etc/glance/glance-api-paste.ini --config-file /etc/glance/glance-api.conf --privsep_context os_brick.privileged.default --privsep_sock_path /tmp/tmpgy4bxosv/privsep.sock
Nov 14 06:03:27 infra02 glance-wsgi-api[353973]: 2023-11-14 06:03:27.359 353973 WARNING oslo.privsep.daemon [-] privsep log: /openstack/venvs/glance-27.2.0/bin/glance-rootwrap: Executable not found: privsep-helper (filter match = privsep-helper)
Nov 14 06:03:27 infra02 glance-wsgi-api[353973]: 2023-11-14 06:03:27.395 353973 CRITICAL oslo.privsep.daemon [None req-23785320-f75c-49f6-adc1-a4aa603236de a29ba6a1679149ef860f1421e668044a c5080274158a4e6680f74984c8df33a7 - - default default] privsep helper command exited non-zero (96)
Nov 14 06:03:27 infra02 glance-wsgi-api[353973]: 2023-11-14 06:03:27.396 353973 DEBUG os_brick.utils [None req-23785320-f75c-49f6-adc1-a4aa603236de a29ba6a1679149ef860f1421e668044a c5080274158a4e6680f74984c8df33a7 - - default default] <== get_connector_properties: exception (389ms) FailedToDropPrivileges('privsep helper command exited non-zero (96)') trace_logging_wrapper /openstack/venvs/glance-27.2.0/lib64/python3.9/site-packages/os_brick/utils.py:188
Nov 14 06:03:27 infra02 glance-wsgi-api[353973]: 2023-11-14 06:03:27.396 353973 ERROR glance_store._drivers.cinder.store [None req-23785320-f75c-49f6-adc1-a4aa603236de a29ba6a1679149ef860f1421e668044a c5080274158a4e6680f74984c8df33a7 - - default default] Failed to write to volume ac99e483-83d5-4028-9836-32c8d29d3b0b.: oslo_privsep.daemon.FailedToDropPrivileges: privsep helper command exited non-zero (96)
Nov 14 06:03:27 infra02 glance-wsgi-api[353973]: 2023-11-14 06:03:27.479 353973 ERROR glance.api.v2.image_data [None req-23785320-f75c-49f6-adc1-a4aa603236de a29ba6a1679149ef860f1421e668044a c5080274158a4e6680f74984c8df33a7 - - default default] Failed to upload image data due to internal error: oslo_privsep.daemon.FailedToDropPrivileges: privsep helper command exited non-zero (96)
Nov 14 06:03:27 infra02 glance-wsgi-api[353973]: 2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi [None req-23785320-f75c-49f6-adc1-a4aa603236de a29ba6a1679149ef860f1421e668044a c5080274158a4e6680f74984c8df33a7 - - default default] Caught error: privsep helper command exited non-zero (96): oslo_privsep.daemon.FailedToDropPrivileges: privsep helper command exited non-zero (96)
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi Traceback (most recent call last):
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi File "/openstack/venvs/glance-27.2.0/lib64/python3.9/site-packages/glance/common/wsgi.py", line 1286, in __call__
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi action_result = self.dispatch(self.controller, action,
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi File "/openstack/venvs/glance-27.2.0/lib64/python3.9/site-packages/glance/common/wsgi.py", line 1329, in dispatch
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi return method(*args, **kwargs)
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi File "/openstack/venvs/glance-27.2.0/lib64/python3.9/site-packages/glance/common/utils.py", line 414, in wrapped
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi return func(self, req, *args, **kwargs)
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi File "/openstack/venvs/glance-27.2.0/lib64/python3.9/site-packages/glance/api/v2/image_data.py", line 302, in upload
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi self._restore(image_repo, image)
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi File "/openstack/venvs/glance-27.2.0/lib64/python3.9/site-packages/oslo_utils/excutils.py", line 227, in __exit__
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi self.force_reraise()
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi File "/openstack/venvs/glance-27.2.0/lib64/python3.9/site-packages/oslo_utils/excutils.py", line 200, in force_reraise
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi raise self.value
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi File "/openstack/venvs/glance-27.2.0/lib64/python3.9/site-packages/glance/api/v2/image_data.py", line 162, in upload
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi image.set_data(data, size, backend=backend)
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi File "/openstack/venvs/glance-27.2.0/lib64/python3.9/site-packages/glance/notifier.py", line 497, in set_data
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi _send_notification(notify_error, 'image.upload', msg)
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi File "/openstack/venvs/glance-27.2.0/lib64/python3.9/site-packages/oslo_utils/excutils.py", line 227, in __exit__
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi self.force_reraise()
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi File "/openstack/venvs/glance-27.2.0/lib64/python3.9/site-packages/oslo_utils/excutils.py", line 200, in force_reraise
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi raise self.value
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi File "/openstack/venvs/glance-27.2.0/lib64/python3.9/site-packages/glance/notifier.py", line 443, in set_data
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi self.repo.set_data(data, size, backend=backend,
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi File "/openstack/venvs/glance-27.2.0/lib64/python3.9/site-packages/glance/quota/__init__.py", line 322, in set_data
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi self.image.set_data(data, size=size, backend=backend,
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi File "/openstack/venvs/glance-27.2.0/lib64/python3.9/site-packages/glance/location.py", line 585, in set_data
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi self._upload_to_store(data, verifier, backend, size)
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi File "/openstack/venvs/glance-27.2.0/lib64/python3.9/site-packages/glance/location.py", line 476, in _upload_to_store
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi multihash, loc_meta) = self.store_api.add_with_multihash(
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi File "/openstack/venvs/glance-27.2.0/lib64/python3.9/site-packages/glance_store/multi_backend.py", line 397, in add_with_multihash
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi return store_add_to_backend_with_multihash(
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi File "/openstack/venvs/glance-27.2.0/lib64/python3.9/site-packages/glance_store/multi_backend.py", line 479, in store_add_to_backend_with_multihash
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi (location, size, checksum, multihash, metadata) = store.add(
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi File "/openstack/venvs/glance-27.2.0/lib64/python3.9/site-packages/glance_store/driver.py", line 277, in add_adapter
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi metadata_dict) = store_add_fun(*args, **kwargs)
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi File "/openstack/venvs/glance-27.2.0/lib64/python3.9/site-packages/glance_store/capabilities.py", line 176, in op_checker
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi return store_op_fun(store, *args, **kwargs)
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi File "/openstack/venvs/glance-27.2.0/lib64/python3.9/site-packages/glance_store/_drivers/cinder/store.py", line 1037, in add
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi self._offline_extend(client, volume, write_props)
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi File "/openstack/venvs/glance-27.2.0/lib64/python3.9/site-packages/glance_store/_drivers/cinder/store.py", line 931, in _offline_extend
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi with self._open_cinder_volume(client, volume, 'wb') as f:
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi File "/usr/lib64/python3.9/contextlib.py", line 119, in __enter__
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi return next(self.gen)
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi File "/openstack/venvs/glance-27.2.0/lib64/python3.9/site-packages/glance_store/_drivers/cinder/store.py", line 713, in _open_cinder_volume
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi connector_prop = connector.get_connector_properties(
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi File "/openstack/venvs/glance-27.2.0/lib64/python3.9/site-packages/os_brick/utils.py", line 185, in trace_logging_wrapper
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi result = f(*args, **kwargs)
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi File "/openstack/venvs/glance-27.2.0/lib64/python3.9/site-packages/os_brick/initiator/connector.py", line 232, in get_connector_properties
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi connector.get_connector_properties(
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi File "/openstack/venvs/glance-27.2.0/lib64/python3.9/site-packages/os_brick/initiator/connectors/iscsi.py", line 69, in get_connector_properties
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi initiator = iscsi.get_initiator()
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi File "/openstack/venvs/glance-27.2.0/lib64/python3.9/site-packages/os_brick/initiator/connectors/iscsi.py", line 994, in get_initiator
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi lines, _err = self._execute('cat', file_path, run_as_root=True,
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi File "/openstack/venvs/glance-27.2.0/lib64/python3.9/site-packages/os_brick/executor.py", line 55, in _execute
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi result = self.__execute(*args, **kwargs)
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi File "/openstack/venvs/glance-27.2.0/lib64/python3.9/site-packages/os_brick/privileged/rootwrap.py", line 172, in execute
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi return execute_root(*cmd, **kwargs)
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi File "/openstack/venvs/glance-27.2.0/lib64/python3.9/site-packages/oslo_privsep/priv_context.py", line 269, in _wrap
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi self.start()
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi File "/openstack/venvs/glance-27.2.0/lib64/python3.9/site-packages/oslo_privsep/priv_context.py", line 283, in start
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi channel = daemon.RootwrapClientChannel(context=self)
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi File "/openstack/venvs/glance-27.2.0/lib64/python3.9/site-packages/oslo_privsep/daemon.py", line 358, in __init__
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi raise FailedToDropPrivileges(msg)
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi oslo_privsep.daemon.FailedToDropPrivileges: privsep helper command exited non-zero (96)
2023-11-14 06:03:27.512 353973 ERROR glance.common.wsgi
Nov 14 06:03:27 infra02 glance-wsgi-api[353973]: 2023-11-14 06:03:27.527 353973 DEBUG glance.api.middleware.version_negotiation [None req-23785320-f75c-49f6-adc1-a4aa603236de a29ba6a1679149ef860f1421e668044a c5080274158a4e6680f74984c8df33a7 - - default default] Determining version of request: DELETE /v2/images/a33239f0-956a-4f2b-b32a-0580ff6a7ae3 Accept: */* process_request /openstack/venvs/glance-27.2.0/lib64/python3.9/site-packages/glance/api/middleware/version_negotiation.py:44
Nov 14 06:03:27 infra02 glance-wsgi-api[353973]: 2023-11-14 06:03:27.527 353973 DEBUG glance.api.middleware.version_negotiation [None req-23785320-f75c-49f6-adc1-a4aa603236de a29ba6a1679149ef860f1421e668044a c5080274158a4e6680f74984c8df33a7 - - default default] Using url versioning process_request /openstack/venvs/glance-27.2.0/lib64/python3.9/site-packages/glance/api/middleware/version_negotiation.py:57
Nov 14 06:03:27 infra02 glance-wsgi-api[353973]: 2023-11-14 06:03:27.527 353973 DEBUG glance.api.middleware.version_negotiation [None req-23785320-f75c-49f6-adc1-a4aa603236de a29ba6a1679149ef860f1421e668044a c5080274158a4e6680f74984c8df33a7 - - default default] Matched version: v2 process_request /openstack/venvs/glance-27.2.0/lib64/python3.9/site-packages/glance/api/middleware/version_negotiation.py:69
Nov 14 06:03:27 infra02 glance-wsgi-api[353973]: 2023-11-14 06:03:27.528 353973 DEBUG glance.api.middleware.version_negotiation [None req-23785320-f75c-49f6-adc1-a4aa603236de a29ba6a1679149ef860f1421e668044a c5080274158a4e6680f74984c8df33a7 - - default default] new path /v2/images/a33239f0-956a-4f2b-b32a-0580ff6a7ae3 process_request /openstack/venvs/glance-27.2.0/lib64/python3.9/site-packages/glance/api/middleware/version_negotiation.py:70
Yet privsep-helper seems to be in the system:
[root@infra02 ~]# find / -name \*privsep-helper*
/openstack/venvs/glance-27.2.0/bin/privsep-helper
/openstack/venvs/cinder-27.2.0/bin/privsep-helper
/openstack/venvs/nova-27.2.0/bin/privsep-helper
/openstack/venvs/neutron-27.2.0/bin/privsep-helper
/openstack/venvs/ceilometer-27.2.0/bin/privsep-helper
Fix proposed to branch: master
Review: https:/