Project

General

Profile

Actions
Copy link

Bug #47298

closed

mgr/cephadm: keyrings are left behind after daemon removal

Added by Michael Fritch over 3 years ago. Updated over 3 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
Michael Fritch
Category:
cephadm
Target version:
-
% Done:

0%

Source:
Development
Tags:
Backport:
Regression:
No
Severity:
3 - minor
Reviewed:
Affected Versions:
ceph-qa-suite:
Pull request ID:
36936
Crash signature (v1):
Crash signature (v2):

Description

keyrings are not removed by cephadm after a daemon removal, which can cause the number of created keyrings to grow after several iterations of an apply/rm service or daemon redeploy.

$ ceph auth ls | grep -A1 iscsi
installed auth entries:

client.iscsi.iscsi.host3.apzsdt
        key: AQARvlFfnhiLHBAAGjQE0alC4AUDxaGW90ZoSQ==
        caps: [mon] profile rbd, allow command "osd blocklist", allow command "config-key get" with "key" prefix "iscsi/" 
        caps: [osd] allow rwx
client.iscsi.iscsi.host3.emfkwq
        key: AQC3vlFf+Q+GABAALjOIp8x7bpq1h5qXxbvQLA==
        caps: [mon] profile rbd, allow command "osd blocklist", allow command "config-key get" with "key" prefix "iscsi/" 
        caps: [osd] allow rwx

Related issues 2 (0 open2 closed)

Is duplicate of Orchestrator - Bug #44698: cephadm: removing daemons leaves auth keys behindDuplicate

Actions
Has duplicate Orchestrator - Bug #44698: cephadm: removing daemons leaves auth keys behindDuplicate

Actions
Actions
Copy link
 #1

Updated by Sebastian Wagner over 3 years ago

  • Status changed from New to Resolved
Actions
Copy link
 #2

Updated by Michael Fritch over 3 years ago

  • Is duplicate of Bug #44698: cephadm: removing daemons leaves auth keys behind added
Actions
Copy link
 #3

Updated by Sebastian Wagner over 3 years ago

  • Has duplicate Bug #44698: cephadm: removing daemons leaves auth keys behind added
Actions
Copy link

Also available in: Atom PDF