nova-common upgrade fails with runing lxc instances

Bug #861260 reported by James Page on 2011-09-28
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
nova (Ubuntu)
Medium
James Page

Bug Description

Upgrading to 2011.3-0ubuntu3 failed:

Setting up nova-common (2011.3-0ubuntu3) ...^M
^M
Configuration file `/etc/nova/nova.conf'^M
 ==> Modified (by you or by a script) since installation.^M
 ==> Package distributor has shipped an updated version.^M
   What would you like to do about it ? Your options are:^M
    Y or I : install the package maintainer's version^M
    N or O : keep your currently-installed version^M
      D : show the differences between the versions^M
      Z : start a shell to examine the situation^M
 The default action is to keep your current version.^M
*** nova.conf (Y/I/N/O/D/Z) [default=N] ? n^M
chown: changing ownership of `/var/lib/nova/instances/instance-00000006/rootfs': Read-only file system^M
dpkg: error processing nova-common (--configure):^M
 subprocess installed post-installation script returned error exit status 1^M
dpkg: dependency problems prevent configuration of nova-network:^M
 nova-network depends on nova-common (= 2011.3-0ubuntu3); however:^M
  Package nova-common is not configured yet.^M
dpkg: error processing nova-network (--configure):^M
 dependency problems - leaving unconfigured^M
dpkg: dependency problems prevent configuration of nova-compute:^M
 nova-compute depends on nova-common (= 2011.3-0ubuntu3); however:^M
  Package nova-common is not configured yet.^M
dpkg: error processing nova-compute (--configure):^M
 dependency problems - leaving unconfigured^M
dpkg: dependency problems prevent configuration of nova-compute-lxc:^M
 nova-compute-lxc depends on nova-compute (= 2011.3-0ubuntu3); however:^M
  Package nova-compute is not configured yet.^M
dpkg: error processing nova-compute-lxc (--configure):^M
 dependency problems - leaving unconfigured^M
dpkg: dependency problems prevent configuration of nova-api:^M
 nova-api depends on nova-common (= 2011.3-0ubuntu3); however:^M
  Package nova-common is not configured yet.^M
dpkg: error processing nova-api (--configure):^M
 dependency problems - leaving unconfigured^M

ProblemType: Bug
DistroRelease: Ubuntu 11.10
Package: nova-common 2011.3-0ubuntu3
ProcVersionSignature: Ubuntu 3.0.0-1204.9-omap4 3.0.3
Uname: Linux 3.0.0-1204-omap4 armv7l
ApportVersion: 1.23-0ubuntu1
Architecture: armel
Date: Wed Sep 28 09:58:57 2011
NovaConf: Error: [Errno 13] Permission denied: '/etc/nova/nova.conf'
PackageArchitecture: all
SourcePackage: nova
UpgradeStatus: No upgrade log present (probably fresh install)

James Page (james-page) wrote :
Dave Walker (davewalker) on 2011-09-28
tags: added: server-o-rs
James Page (james-page) wrote :

OK - so it looks like the filesystem associated with instance-00000006 had been remounted ro due to some sort of underlying IO error.

However this has highlighted that if nova-common is upgraded whilst there are running lxc instances the filesystem permissions within the root filesystem associated with the instance also get changed to nova:nova.

I also noticed that the group of the nova user is not changed - so new files are still created with use nogroup.

This second point only effects upgrades, not fresh installations.

James Page (james-page) on 2011-09-28
Changed in nova (Ubuntu):
assignee: nobody → James Page (james-page)
James Page (james-page) on 2011-09-28
Changed in nova (Ubuntu):
status: New → In Progress
importance: Undecided → Medium
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package nova - 2011.3-0ubuntu4

---------------
nova (2011.3-0ubuntu4) oneiric; urgency=low

  [James Page]
  * debian/nova-common.postinst:
    - Exclude mounted LXC rootfs filesystems within /var/lib/nova from
      user/group ownership changes (LP: #861260).
    - Ensure that primary group for 'nova' user is 'nova' so that files
      created by this user have the correct group ownership.

  [Adam Gandelman]
  * debian/nova-common.postinst: Restrict permissions of /var/log/nova
    (LP: #862816)

  [Ante Karamatic]
  * Add /usr/sbin/ietadm to sudoers (LP: #861547)
  * debian/control: Fix typo in Vcs-Bzr

  [Chuck Short]
  * debian/patches/backport-libvirt-console-pipe.patch:
    Move console.log to a ringbuffer so that the console.log
    keeps filling up. (LP: #832507)
  * debian/patches/backport-lxc-container-console-fix.patch:
    Make euca-get-console-output usable for LXC containers.
    (LP: #832159)
  * debian/patches/backport-snapshot-cleanup.patch:
    Enforce snapshot cleanup. (LP: #861582).
  * debian/patches/fix-lp863305-images-permission.patch:
    Fix image access control. (LP: #863305)
 -- Chuck Short <email address hidden> Fri, 30 Sep 2011 15:21:56 -0400

Changed in nova (Ubuntu):
status: In Progress → Fix Released
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers