During rehome, the new destination system controller swact'd and system commands failed for a time
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
StarlingX |
Fix Released
|
Medium
|
Juanita-Balaraj |
Bug Description
Brief Description
-----------------
Unexpected SystemController swact during rehome migrate of a AIO-SX subcloud.
Severity
--------
Major
Steps to Reproduce
------------------
1 Step up two central clouds
2 Bring up a subcloud under central cloud A, update the registry credentials with the sysinv credentials in the subcloud
3 Migreate the subcloud to Central cloud B
4 Delete the subcloud in central cloud A
4 Unlock the subcloud after the migration
Expected Behavior
------------------
The central cloud B with the subcloud can be managed w/o any issues
Actual Behavior
----------------
The sysinv user in the central cloud B is locked, which causes the system controllers in central cloud B swact'd back n forth
Reproducibility
---------------
100% reproducible
System Configuration
-------
Distributed cloud
Branch/Pull Time/Commit
-------
21.05
Last Pass
---------
NA
Timestamp/Logs
--------------
**controller-0 Time of migrate command
2021-10-
**controller-0 sysinv.log showing first keystonemiddleware warning.
sysinv 2021-10-01 00:50:24.962 591764 WARNING keystonemiddlew
: Unauthorized: The account is locked for user: 893669cdd4254ba
sysinv 2021-10-01 00:50:24.979 591764 WARNING keystonemiddlew
: Unauthorized: The account is locked for user: 893669cdd4254ba
sysinv 2021-10-01 00:50:24.979 591764 CRITICAL keystonemiddlew
sysinv 2021-10-01 00:52:19.787 590850 INFO sysinv.
**controller-0 SIGTERM caught
sysinv 2021-10-01 00:53:26.011 591769 WARNING keystonemiddlew
: Unauthorized: The account is locked for user: 893669cdd4254ba
sysinv 2021-10-01 00:53:26.011 591769 CRITICAL keystonemiddlew
sysinv 2021-10-01 00:53:26.092 590907 INFO oslo_service.
sysinv 2021-10-01 00:53:26.093 590907 INFO oslo.service.wsgi [-] Stopping WSGI server.
Second SIGTERM
sysinv 2021-10-01 00:53:57.762 398585 INFO oslo_service.
sysinv 2021-10-01 00:53:57.763 398585 INFO oslo.service.wsgi [-] Stopping WSGI server.
sysinv 2021-10-01 00:53:57.763 398585 INFO oslo_service.
sysinv 2021-10-01 00:53:57.763 398811 INFO oslo.service.wsgi [-] Stopping WSGI server.
sysinv 2021-10-01 00:53:57.763 398820 INFO oslo.service.wsgi [-] Stopping WSGI server.
sysinv 2021-10-01 00:54:03.218 590850 INFO sysinv.
sysinv 2021-10-01 00:54:10.275 7147 ERROR sysinv.
SIGTERMS continue from here.
**controller-0 dcmanager.log shows oslo_service stopping children
2021-10-01 00:53:26.672 592602 INFO oslo_service.
2021-10-01 00:53:26.673 592602 INFO oslo.service.wsgi [-] Stopping WSGI server.
2021-10-01 00:53:26.673 592602 INFO oslo_service.
2021-10-01 00:53:26.674 593156 INFO oslo.service.wsgi [-] Stopping WSGI server.
2021-10-01 00:53:26.674 593153 INFO oslo.service.wsgi [-] Stopping WSGI server.
Test Activity
-------------
Evaluation
Workaround
----------
Migrate the registry credentials with the new sysinv credentials before rehoming
Changed in starlingx: | |
assignee: | nobody → Yuxing (yuxing) |
tags: | added: stx.distcloud |
tags: | added: stx.6.0 |
Changed in starlingx: | |
importance: | Undecided → Medium |
status: | New → Triaged |
Changed in starlingx: | |
status: | Triaged → In Progress |
tags: | added: stx.docs |
Changed in starlingx: | |
assignee: | Yuxing (yuxing) → Juanita-Balaraj (balaraj) |
Changed in starlingx: | |
status: | Fix Released → In Progress |
Reviewed: https:/ /review. opendev. org/c/starlingx /utilities/ +/814645 /opendev. org/starlingx/ utilities/ commit/ 5bc220bc2bc13d7 6e227c3d6382d86 c5db39ea43
Committed: https:/
Submitter: "Zuul (22348)"
Branch: master
commit 5bc220bc2bc13d7 6e227c3d6382d86 c5db39ea43
Author: Yuxing Jiang <email address hidden>
Date: Tue Oct 19 16:03:10 2021 -0400
Add a script to update registry credentials
We have a script in https:/ /docs.starlingx .io/dist_ cloud/kubernete s/\ docker- registry- credentials- on-a-subcloud. html
updating-
to update the docker registry credentials on a subcloud. As this
script is expected to use in multiple scenarios, this commit adds this
script in the /usr/local/bin directory, so it can be called to update
the registry credentials.
Changes against the original script: openrc" , so the OpenStack environmental
1. Add ghcr-registry as it is newly introduced.
2. Add "source /etc/platform/
variables can be included.
3. Prompt for input username and password if not provided.
Test: util-controller " and apply it on
1. Create a patch with the "platform-
an AIOSX controller.
2. Call the script with the sysinv username and password, check the
OpenStack secrets payload that the username and password are updated.
And the secrets' UUIDs are updated to service parameters.
3. Call the script without username and password, prompt for username
and password.
4. Call the script with 3 arguments, exit with an error message and
the usage.
Partial-Bug: 1947014 addb15f4d4edcfa c31af5d440b
Signed-off-by: Yuxing Jiang <email address hidden>
Change-Id: I4d930b06992a22