My finding thus far - not a blocker, could be classified as known
issues, but should consider fixing:
My environment:
OEL 6.3
CloudStack 4.3.2
vSphere 5.5 and ESXi5.5
Issues noticed:
-------------
CloudStack MS complains:
2015-02-11 00:55:58,545 DEBUG [c.c.u.s.Script] (main:null) Executing:
sudo keytool -genkey -keystore
/etc/cloudstack/management/cloudmanagementserver.keystore -storepass
vmops.com -keypass vmops.co
m -keyalg RSA -validity 3650 -dname cn="Cloudstack
User",ou="example.com",o="corp.apple.com",c="Unknown"
2015-02-11 00:55:58,572 DEBUG [c.c.u.s.Script] (main:null) Exit value is 1
2015-02-11 00:55:58,573 DEBUG [c.c.u.s.Script] (main:null) sudo: no tty
present and no askpass program specified
2015-02-11 00:55:58,574 WARN [c.c.s.ConfigurationServerImpl]
(main:null) Would use fail-safe keystore to continue.
java.io.IOException: Fail to generate certificate!: sudo: no tty present
and no askpass program specified
at
com.cloud.server.ConfigurationServerImpl.generateDefaultKeystore(ConfigurationServerImpl.java:604)
at
com.cloud.server.ConfigurationServerImpl.updateSSLKeystore(ConfigurationServerImpl.java:632)
Solution:
Append following to sudoers
> Defaults:cloud !requiretty
-----------
CloudStack MS complains:
2015-02-11 00:55:58,545 DEBUG [c.c.u.s.Script] (main:null) Executing:
sudo keytool -genkey -keystore
/etc/cloudstack/management/cloudmanagementserver.keystore -storepass
vmops.com -keypass vmops.com -keyalg RSA -validity 3650 -dname
cn="Cloudstack User",ou="example.com",o="corp.apple.com",c="Unknown"
2015-02-11 00:55:58,572 DEBUG [c.c.u.s.Script] (main:null) Exit value is 1
2015-02-11 00:55:58,573 DEBUG [c.c.u.s.Script] (main:null) sudo: no tty
present and no askpass program specified
2015-02-11 00:55:58,574 WARN [c.c.s.ConfigurationServerImpl]
(main:null) Would use fail-safe keystore to continue.
java.io.IOException: Fail to generate certificate!: sudo: no tty present
and no askpass program specified
at
com.cloud.server.ConfigurationServerImpl.generateDefaultKeystore(ConfigurationServerImpl.java:604)
at
com.cloud.server.ConfigurationServerImpl.updateSSLKeystore(ConfigurationServerImpl.java:632)
Solution:
append /usr/bin/keytool to cloud user, example:
> cloud ALL =NOPASSWD : /bin/chmod, /bin/cp, /bin/mkdir, /bin/mount,
/bin/umount, /usr/bin/keytool
alternatively, create a separate file in /etc/sudoers.d/cloudstack and
append both lines
Defaults:cloud !requiretty
cloud ALL =NOPASSWD : /bin/chmod, /bin/cp, /bin/mkdir, /bin/mount,
/bin/umount, /usr/bin/keytool
Going to open another bug about OnwireClassRegistry, what it this error?
It occurs when MS starts.
2015-02-11 01:06:59,582 DEBUG [o.a.c.f.c.i.ConfigDepotImpl] (main:null)
Retrieving keys from ExtensionRegistry
2015-02-11 01:07:02,372 DEBUG [o.a.c.f.s.OnwireClassRegistry]
(main:null) Encountered IOException
java.io.IOException: Stream closed
at java.util.zip.ZipInputStream.ensureOpen(ZipInputStream.java:66)
at java.util.zip.ZipInputStream.getNextEntry(ZipInputStream.java:115)
at java.util.jar.JarInputStream.getNextEntry(JarInputStream.java:142)
at
java.util.jar.JarInputStream.getNextJarEntry(JarInputStream.java:179)
at
org.apache.cloudstack.framework.serializer.OnwireClassRegistry.getFromJARFile(OnwireClassRegistry.java:162)
at
org.apache.cloudstack.framework.serializer.OnwireClassRegistry.getClasses(OnwireClassRegistry.java:119)
at
org.apache.cloudstack.framework.serializer.OnwireClassRegistry.getClasses(OnwireClassRegistry.java:95)
at
org.apache.cloudstack.framework.serializer.OnwireClassRegistry.scan(OnwireClassRegistry.java:76)
--------
There is something strange with db.properties and key file - i think
mostly related to ownership and perms. I will rerun upgrade to confirm -
but it seemed to be the case on my several attempts.
--------
Successful tests:
Create VM with multiple disks
Start VM
Destroy VM
Snapshot VM
No noticed issues or errors while MS core has been running for few hours
except for the ones above.
If we can get clarity on how to address the issues or note them in docs,
I dont see any blockers that cause functional issues. So i'm +0 -
pending my final tests, i would like to know what can be done for the
errors above.
I can submit a patch, but due to $work policies, it may take much longer
for me to do.
Regards
ilya
On 2/7/15 11:01 PM, David Nalley wrote:
Hi All,
I've created yet another 4.5.0 release candidate, with the following
artifacts up for a vote:
Git Branch and Commit SH:
https://git-wip-us.apache.org/repos/asf?p=cloudstack.git;a=shortlog;h=refs/heads/4.5-RC20150208T0646
Commit: 187935a0e3c68e01ed33a8f7f0e6d69e6cdb0aca
Source release (checksums and signatures are available at the same
location):
https://dist.apache.org/repos/dist/dev/cloudstack/4.5.0-rc3/
PGP release keys (signed using 0x6fe50f1c):
https://dist.apache.org/repos/dist/release/cloudstack/KEYS
Vote will be open for at least 72 hours.
For sanity in tallying the vote, can PMC members please be sure to
indicate "(binding)" with their vote?
[ ] +1 approve
[ ] +0 no opinion
[ ] -1 disapprove (and reason why)
--David