yahoo-eng-team team mailing list archive

Thread
Date

[Bug 1904580] Re: Permissions 0644 for '/var/lib/nova/.ssh/id_rsa' are too open

To: yahoo-eng-team@xxxxxxxxxxxxxxxxxxx
From: Steven Parker <1904580@xxxxxxxxxxxxxxxxxx>
Date: Wed, 04 Aug 2021 14:17:19 -0000
Reply-to: Bug 1904580 <1904580@xxxxxxxxxxxxxxxxxx>
Sender: noreply@xxxxxxxxxxxxx

I just ran into this bug myself.

2021-08-04 13:04:35.136 5167 ERROR oslo_messaging.rpc.server Command: scp -r blade04-openstack:/var/lib/nova/instances/_base/629cc7c40ea2b906422db31fa818aa88b8886310 /var/lib/nova/instances/_base/629cc7c40ea2b906422db31fa818aa88b8886310
2021-08-04 13:04:35.136 5167 ERROR oslo_messaging.rpc.server Exit code: 1
2021-08-04 13:04:35.136 5167 ERROR oslo_messaging.rpc.server Stdout: ''
2021-08-04 13:04:35.136 5167 ERROR oslo_messaging.rpc.server Stderr: '@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@\r\n@         WARNING: UNPROTECTED PRIVATE KEY FILE!          @\r\n@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@\r\nPermissions 0644 for \'/var/lib/nova/.ssh/id_rsa\' are too open.\r\nIt is required that your private key files are NOT accessible by others.\r\nThis private key will be ignored.\r\nLoad key "/var/lib/nova/.ssh/id_rsa": bad permissions\r\nnova@blade04-openstack: Permission denied (publickey).\r\n'
2021-08-04 13:04:35.136 5167 ERROR oslo_messaging.rpc.server 

09:10




ok interesting that changed during the package upgrades all other servers are correct

** Also affects: nova
   Importance: Undecided
       Status: New

-- 
You received this bug notification because you are a member of Yahoo!
Engineering Team, which is subscribed to OpenStack Compute (nova).
https://bugs.launchpad.net/bugs/1904580

Title:
  Permissions 0644 for '/var/lib/nova/.ssh/id_rsa' are too open

Status in OpenStack nova-compute charm:
  New
Status in OpenStack Compute (nova):
  New

Bug description:
  Charm revision: 320
  Cloud: bionic-ussuri

  Permissions 0644 for '/var/lib/nova/.ssh/id_rsa' are too open.
  Load key "/var/lib/nova/.ssh/id_rsa": bad permissions
  nova@10.35.80.49: Permission denied (publickey).

  This was preventing nova resizing:

  /var/log/nova/nova-compute.log:2020-11-17 13:14:42.210 100221 ERROR
  oslo_messaging.rpc.server Command: ssh -o BatchMode=yes 10.35.80.49
  mkdir -p /var/lib/nova/instances/39caee98-b81c-4cef-9810-815f2ecf1fc4

  Manually setting to 0600 fixed the issue.

To manage notifications about this bug go to:
https://bugs.launchpad.net/charm-nova-compute/+bug/1904580/+subscriptions