Support #17183
opencaught error when trying to handle auth request, probably malformed request
0%
Description
When trying to start up a new MDS server, I'm getting an authentication failure. Attached is a snippet of the authentication request logs coming off of a mon node. The MDS client has an admin key on the cluster
Files
Updated by Greg Farnum over 7 years ago
- Tracker changed from Bug to Support
- Project changed from Ceph to CephFS
You'll need to be a little more clear about the keyring involved; I imagine that's the problem. You should be able to use an admin "client" keyring for the MDS, but it needs to be carefully configured to make that happen; otherwise it will try and connect without any kind of authentication at all.
Updated by Chris MacNaughton over 7 years ago
The keyring in question has mon "allow *" osd "allow *" mds "allow *" permissions, and is configured in the ceph.conf and the keychain to use
Updated by John Spray over 7 years ago
I'm guessing blob_size=2 is never a reasonable thing for the MDS to be sending to the mon, so I'd suspect that something is wrong on the MDS side. Run it with "debug auth = 20" and "debug monc = 20"
Please post your "ceph auth list" output here (obscure the keys if you care about that) and the verbose log from your MDS failing to authenticate. By the way, your MDS key should look something like this:
mds.a key: AQBoqMZXN3hAMRAAG7YS5YAUXZzNDnoctgP3GQ== caps: [mds] allow caps: [mon] allow profile mds caps: [osd] allow *