Project

General

Profile

Bug #16755

ceph-disk: encryption assumes admin key is present

Added by Chris Holcombe almost 3 years ago. Updated over 2 years ago.

Status:
Resolved
Priority:
Normal
Category:
-
Target version:
-
Start date:
07/20/2016
Due date:
% Done:

20%

Source:
Community (dev)
Tags:
Backport:
Regression:
No
Severity:
2 - major
Reviewed:
Affected Versions:
ceph-qa-suite:
ceph-disk
Pull request ID:

Description

When testing the ceph-disk in jewel new behavior was noticed where it assumes an admin key is present on all the osd servers. When Ceph is deployed with juju we by default do not include the admin key on the osd servers. We only include a bootstrap key. I'm working on creating a small patch for ceph-disk where it has an --id option for ceph-disk prepare so that the create_key function can do the initial config-key put. I'd like to have a key on the osd cluster that only allows config-key put for this initial setup operation and tell ceph-disk to use that.


Related issues

Duplicates Ceph - Bug #17849: ceph-disk --dmcrypt create must not require admin key Resolved 11/09/2016

History

#2 Updated by Ken Dreyer over 2 years ago

I noticed a somewhat-related ticket today: #17849

#3 Updated by Loic Dachary over 2 years ago

  • Duplicates Bug #17849: ceph-disk --dmcrypt create must not require admin key added

#4 Updated by Nathan Cutler over 2 years ago

  • Status changed from New to Resolved

Also available in: Atom PDF