Uploaded image for project: 'Red Hat OpenStack Services on OpenShift'
  1. Red Hat OpenStack Services on OpenShift
  2. OSPRH-7572

Regex does not match mounts

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Duplicate
    • Icon: Major Major
    • rhos-18.0.0
    • None
    • edpm-ansible
    • None
    • False
    • Hide

      None

      Show
      None
    • False
    • ?
    • ?
    • ?
    • ?
    • DFG Security: UC Sprint 97
    • Important

      it seems like the "Copy certs and keys to the correct location" is skipped which causing all other services to fail having that they are missing the certs they are expecting. I this patch is the cause of this issue https://github.com/openstack-k8s-operators/edpm-ansible/commit/5cc28b3e3d1eed37ae30eee7ebecc2032c40ec40 

      TASK [osp.edpm.edpm_container_manage : Create containers managed by Podman for /var/lib/edpm-config/container-startup-config/ovn_controller] *** [WARNING]: ERROR: Container ovn_controller exited with code 125 when runed stderr: time="2024-06-09T14:49:26Z" level=info msg="podman filtering at log level info" time="2024-06-09T14:49:26Z" level=info msg="Using sqlite as database backend" time="2024-06-09T14:49:26Z" level=info msg="Not using native diff for overlay, this may cause degraded performance for building images: kernel has CONFIG_OVERLAY_FS_REDIRECT_DIR enabled" time="2024-06-09T14:49:26Z" level=info msg="Setting parallel job count to 13" time="2024-06-09T14:49:26Z" level=info msg="Sysctl net.ipv4.ping_group_range=0 0 ignored in containers.conf, since Network Namespace set to host" Error: statfs /var/lib/openstack/certs/ovn/default/tls.crt: no such file or directory fatal: [tigon01]: FAILED! => {"changed": false, "msg": "Failed containers: ovn_controller"} [WARNING]: ERROR: Container ovn_controller exited with code 125 when runed stderr: time="2024-06-09T14:49:26Z" level=info msg="podman filtering at log level info" time="2024-06-09T14:49:26Z" level=info msg="Using sqlite as database backend" time="2024-06-09T14:49:26Z" level=info msg="Not using native diff for overlay, this may cause degraded performance for building images: kernel has CONFIG_OVERLAY_FS_REDIRECT_DIR enabled" time="2024-06-09T14:49:26Z" level=info msg="Setting parallel job count to 13" time="2024-06-09T14:49:26Z" level=info msg="Sysctl net.ipv4.ping_group_range=0 0 ignored in containers.conf, since Network Namespace set to host" Error: statfs /var/lib/openstack/certs/ovn/default/ca.crt: no such file or directory fatal: [tigon02]: FAILED! => {"changed": false, "msg": "Failed containers: ovn_controller"}

      certs playbook:

      TASK [osp.edpm.edpm_install_certs : Copy certs and keys to the correct location] *** 
skipping: [tigon02] 
skipping: [tigon01]

       
      the blame I mentioned was a part of a larger patch set, I after all the patches will be merged and available the issue should go away but until then new deployment cannot be properly created
       

            dwilde@redhat.com Dave Wilde
            eshulman Ella Shulman
            rhos-dfg-security
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated:
              Resolved: