tripleo

Bug #1907272
Comment #4

Comment 4 for bug 1907272

Revision history for this message

Harald Jensås (harald-jensas) wrote on 2020-12-10:

So, I just reproduces this issue locally.
2020-12-10 09:55:08.910489 | fa163e86-b65a-e367-7890-000000000017 | FATAL | Provision instances | localhost | error={"changed": false, "logging": "Created port compute-0-ctlplane (UUID 8dc41646-695f-4fe3-bdbf-ef704270aa01) for node baremetal-69096-leaf2-0 (UUID f4f581bb-5f20-4857-ad0c-f0a2e2a3fdfa) with {'network_id': '7575929f-4388-4011-ab4e-275c5264bd87', 'name': 'compute-0-ctlplane'}\nCreated port controller-0-ctlplane (UUID 717b8e89-320f-4a2d-b3f0-2a4cc6d2609d) for node baremetal-69096-leaf1-0 (UUID 16cdeeb7-15bd-4cee-9bd2-f8a2fd728d76) with {'network_id': '7575929f-4388-4011-ab4e-275c5264bd87', 'name': 'controller-0-ctlplane'}\nAttached port compute-0-ctlplane (UUID 8dc41646-695f-4fe3-bdbf-ef704270aa01) to node baremetal-69096-leaf2-0 (UUID f4f581bb-5f20-4857-ad0c-f0a2e2a3fdfa)\nAttached port controller-0-ctlplane (UUID 717b8e89-320f-4a2d-b3f0-2a4cc6d2609d) to node baremetal-69096-leaf1-0 (UUID 16cdeeb7-15bd-4cee-9bd2-f8a2fd728d76)\nProvisioning started on node baremetal-69096-leaf2-0 (UUID f4f581bb-5f20-4857-ad0c-f0a2e2a3fdfa)\nProvisioning started on node baremetal-69096-leaf1-0 (UUID 16cdeeb7-15bd-4cee-9bd2-f8a2fd728d76)\n", "msg": "Node f4f581bb-5f20-4857-ad0c-f0a2e2a3fdfa reached failure state \"deploy failed\"; the last error is Failed to prepare to deploy. Exception: [Errno 13] Permission denied: '/var/lib/ironic/images/f4f581bb-5f20-4857-ad0c-f0a2e2a3fdfa'"

(undercloud) [centos@undercloud ~]$ ls -l /var/lib/ironic
total 0
drwxr-xr-x. 2 42422 42422 86 Dec 9 17:53 httpboot
drwxrwxr-x. 2 root root 91 Dec 9 17:53 images
drwxr-xr-x. 3 42422 42422 133 Dec 9 17:29 tftpboot

(undercloud) [centos@undercloud ~]$ ls -l /var/lib/ironic/images
total 3495876
-rw-r--r--. 1 root root 53915577 Dec 9 17:53 overcloud-full.initrd
-rw-r--r--. 1 root root 3573940224 Dec 9 17:53 overcloud-full.raw
-rwxr-xr-x. 1 root root 9514120 Dec 9 17:53 overcloud-full.vmlinuz

(undercloud) [centos@undercloud ~]$ podman exec -it ironic_conductor
Error: no container with name or ID ironic_conductor found: no such container
(undercloud) [centos@undercloud ~]$ sudo podman exec -it ironic_conductor /bin/bash
bash-4.4$ mkdir /var/lib/ironic/images/test
mkdir: cannot create directory ‘/var/lib/ironic/images/test’: Permission denied
bash-4.4$

bash-4.4$ ls -l /var/lib/ironic
total 0
drwxr-xr-x. 2 ironic ironic 86 Dec 9 17:53 httpboot
drwxrwxr-x. 2 root root 91 Dec 9 17:53 images
drwxr-xr-x. 3 ironic ironic 133 Dec 9 17:29 tftpboot

bash-4.4$ ls -ln /var/lib/ironic
total 0
drwxr-xr-x. 2 42422 42422 86 Dec 9 17:53 httpboot
drwxrwxr-x. 2 0 0 91 Dec 9 17:53 images
drwxr-xr-x. 3 42422 42422 133 Dec 9 17:29 tftpboot

^^ If I am not mistaken in previous versions the "images" directory used to be owned by "ironic" when listing it from inside the container. This is no longer the case.

podman-2.0.5-5.module_el8.3.0+512+b3b58dca.x86_64

So, I just reproduces this issue locally.
2020-12-10 09:55:08.910489 | fa163e86-b65a-e367-7890-000000000017 |      FATAL | Provision instances | localhost | error={"changed": false, "logging": "Created port compute-0-ctlplane (UUID 8dc41646-695f-4fe3-bdbf-ef704270aa01) for node baremetal-69096-leaf2-0 (UUID f4f581bb-5f20-4857-ad0c-f0a2e2a3fdfa) with {'network_id': '7575929f-4388-4011-ab4e-275c5264bd87', 'name': 'compute-0-ctlplane'}\nCreated port controller-0-ctlplane (UUID 717b8e89-320f-4a2d-b3f0-2a4cc6d2609d) for node baremetal-69096-leaf1-0 (UUID 16cdeeb7-15bd-4cee-9bd2-f8a2fd728d76) with {'network_id': '7575929f-4388-4011-ab4e-275c5264bd87', 'name': 'controller-0-ctlplane'}\nAttached port compute-0-ctlplane (UUID 8dc41646-695f-4fe3-bdbf-ef704270aa01) to node baremetal-69096-leaf2-0 (UUID f4f581bb-5f20-4857-ad0c-f0a2e2a3fdfa)\nAttached port controller-0-ctlplane (UUID 717b8e89-320f-4a2d-b3f0-2a4cc6d2609d) to node baremetal-69096-leaf1-0 (UUID 16cdeeb7-15bd-4cee-9bd2-f8a2fd728d76)\nProvisioning started on node baremetal-69096-leaf2-0 (UUID f4f581bb-5f20-4857-ad0c-f0a2e2a3fdfa)\nProvisioning started on node baremetal-69096-leaf1-0 (UUID 16cdeeb7-15bd-4cee-9bd2-f8a2fd728d76)\n", "msg": "Node f4f581bb-5f20-4857-ad0c-f0a2e2a3fdfa reached failure state \"deploy failed\"; the last error is Failed to prepare to deploy. Exception: [Errno 13] Permission denied: '/var/lib/ironic/images/f4f581bb-5f20-4857-ad0c-f0a2e2a3fdfa'"

(undercloud) [centos@undercloud ~]$ ls -l /var/lib/ironic
total 0
drwxr-xr-x. 2 42422 42422  86 Dec  9 17:53 httpboot
drwxrwxr-x. 2 root  root   91 Dec  9 17:53 images
drwxr-xr-x. 3 42422 42422 133 Dec  9 17:29 tftpboot

(undercloud) [centos@undercloud ~]$ ls -l /var/lib/ironic/images
total 3495876
-rw-r--r--. 1 root root   53915577 Dec  9 17:53 overcloud-full.initrd
-rw-r--r--. 1 root root 3573940224 Dec  9 17:53 overcloud-full.raw
-rwxr-xr-x. 1 root root    9514120 Dec  9 17:53 overcloud-full.vmlinuz

bash-4.4$ ls -l /var/lib/ironic
total 0
drwxr-xr-x. 2 ironic ironic  86 Dec  9 17:53 httpboot
drwxrwxr-x. 2 root   root    91 Dec  9 17:53 images
drwxr-xr-x. 3 ironic ironic 133 Dec  9 17:29 tftpboot

bash-4.4$ ls -ln /var/lib/ironic
total 0
drwxr-xr-x. 2 42422 42422  86 Dec  9 17:53 httpboot
drwxrwxr-x. 2     0     0  91 Dec  9 17:53 images
drwxr-xr-x. 3 42422 42422 133 Dec  9 17:29 tftpboot

^^ If I am not mistaken in previous versions the "images" directory used to be owned by "ironic" when listing it from inside the container. This is no longer the case.

podman-2.0.5-5.module_el8.3.0+512+b3b58dca.x86_64