/etc/nova/nova-compute.conf not owned by nova
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
nova (Ubuntu) |
Fix Released
|
Low
|
Unassigned |
Bug Description
On a freshly installed system, I ran:
apt-get install -y cloud-utils euca2ools glance nova-api nova-common nova-compute-lxc nova-doc nova-network nova-objectstore nova-scheduler python-greenlet python-mysqldb python-nova rabbitmq-server unzip qemu-kvm
$ ls -l /etc/nova/
total 12
-rw-r--r-- 1 root root 3080 2011-09-23 13:35 api-paste.ini
-rw-r--r-- 1 root root 19 2011-09-23 14:25 nova-compute.conf
-rw------- 1 nova root 276 2011-09-23 13:35 nova.conf
There are 2 possible issues I see here:
a.) nova-compute.conf is world readable and root owned. that may not be an issue.
Note, though, in nova-common.
b.) in the apt output I see:
Setting up nova-common (2011.3-0ubuntu2) ...
Adding system user `nova' (UID 107) ...
Adding new user `nova' (UID 107) with group `nogroup' ...
Not creating home directory `/var/lib/nova'.
[Errno 2] No such file or directory: '/etc/nova/
ERROR:: Unable to open flagfile: /etc/nova/
/usr/lib/
MigrateDeprec
nova-common's /etc/nova/nova.conf has '--flagfile=
ProblemType: Bug
DistroRelease: Ubuntu 11.10
Package: nova-compute-lxc 2011.3-0ubuntu2
ProcVersionSign
Uname: Linux 3.0.0-12-server x86_64
ApportVersion: 1.23-0ubuntu1
Architecture: amd64
Date: Wed Sep 28 10:26:52 2011
NovaConf: Error: [Errno 13] Permission denied: '/etc/nova/
PackageArchitec
ProcEnviron:
LANGUAGE=en_US:
PATH=(custom, user)
LANG=en_US.UTF-8
SHELL=/bin/bash
SourcePackage: nova
UpgradeStatus: No upgrade log present (probably fresh install)
Related branches
- Chuck Short: Pending requested
-
Diff: 56 lines (+14/-4)3 files modifieddebian/changelog (+8/-0)
debian/control (+6/-3)
debian/nova-console.install (+0/-1)
a.) nova-compute.conf is world readable and root owned. that may not be an issue.
I'm not sure if this is by design, but currently the only flag contained in nova-compute.conf is '--libvirt_type='. nova.conf usually contains credentials for accessing things like the database and messaging queue. I imagine nova-compute.conf could contain credentials for use with certain hypervisors (Xenserver, ie) but currently none of the nova-compute-* packages install anything other than --libvirt- type={kvm, uml,lxc, xen}
b.) in the apt output I see:
Bug #839796