Support #17183
open
caught error when trying to handle auth request, probably malformed request
Added by Chris MacNaughton over 7 years ago.
Updated over 7 years ago.
Description
When trying to start up a new MDS server, I'm getting an authentication failure. Attached is a snippet of the authentication request logs coming off of a mon node. The MDS client has an admin key on the cluster
Files
- Tracker changed from Bug to Support
- Project changed from Ceph to CephFS
You'll need to be a little more clear about the keyring involved; I imagine that's the problem. You should be able to use an admin "client" keyring for the MDS, but it needs to be carefully configured to make that happen; otherwise it will try and connect without any kind of authentication at all.
The keyring in question has mon "allow *" osd "allow *" mds "allow *" permissions, and is configured in the ceph.conf and the keychain to use
I'm guessing blob_size=2 is never a reasonable thing for the MDS to be sending to the mon, so I'd suspect that something is wrong on the MDS side. Run it with "debug auth = 20" and "debug monc = 20"
Please post your "ceph auth list" output here (obscure the keys if you care about that) and the verbose log from your MDS failing to authenticate. By the way, your MDS key should look something like this:
mds.a
key: AQBoqMZXN3hAMRAAG7YS5YAUXZzNDnoctgP3GQ==
caps: [mds] allow
caps: [mon] allow profile mds
caps: [osd] allow *
Also available in: Atom
PDF