Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

CephFS mirroring: Importing Bootsrap peer secret sometimes fail with Status 22 #9151

Closed
ahmedTouati opened this issue Nov 11, 2021 · 5 comments · Fixed by #9264
Closed

CephFS mirroring: Importing Bootsrap peer secret sometimes fail with Status 22 #9151

ahmedTouati opened this issue Nov 11, 2021 · 5 comments · Fixed by #9264
Labels
bug
Projects
v1.7

Comments

@ahmedTouati
Copy link

ahmedTouati commented Nov 11, 2021
edited

We have two cephclusters each installed on an EKS cluster in a different AWS region, to ensure mirroring between both clusters, we had to change mons services type of secondary cluster to LoadBalancer so that the first cluster can connect to them, I created the bootstrap peer token and put the secret name in the cepFS manifest, but rook-operator is failing with Status 22. Here is an example bootstrap peer token that I use:

ZXlKbWMybGtJam9nSW1ReU9URXhOR05sTFRaaU1qVXROR00xWVMwNE56TXpMV0UyTVRSaU0yRmhOemd6WmlJc0lDSm1hV3hsYzNsemRHVnRJam9nSW1WNFlXMXdiR1V0Wm5NaUxDQWlkWE5sY2lJNklDSmpiR2xsYm5RdWJXbHljbTl5WDNKbGJXOTBaU0lzSUNKemFYUmxYMjVoYldVaU9pQWljbTl2YXkxalpYQm9JaXdnSW10bGVTSTZJQ0pCVVVSMU1HOWthRTFJVTI5TlFrRkJXbk5uWVRKNU1XbHphbFZvTkVsaVdIVnNZWEZrUVQwOUlpd2dJbTF2Ymw5b2IzTjBJam9nSWx0Mk1qcHBiblJsY201aGJDMWhZV0V0TVRJekxtVjFMWGRsYzNRdE1pNWxiR0l1WVcxaGVtOXVZWGR6TG1OdmJUb3pNekF3TEhZeE9tbHVkR1Z5Ym1Gc0xXRmhZUzB4TWpNdVpYVXRkMlZ6ZEMweUxtVnNZaTVoYldGNmIyNWhkM011WTI5dE9qWTNPRGxkTEZ0Mk1qcHBiblJsY201aGJDMWlZbUl0TVRJekxtVjFMWGRsYzNRdE1pNWxiR0l1WVcxaGVtOXVZWGR6TG1OdmJUb3pNekF3TEhZeE9tbHVkR1Z5Ym1Gc0xXSmlZaTB4TWpNdVpYVXRkMlZ6ZEMweUxtVnNZaTVoYldGNmIyNWhkM011WTI5dE9qWTNPRGxkTEZ0Mk1qcHBiblJsY201aGJDMWpZMk10TVRJekxtVjFMWGRsYzNRdE1pNWxiR0l1WVcxaGVtOXVZWGR6TG1OdmJUb3pNekF3TEhZeE9tbHVkR1Z5Ym1Gc0xXTmpZeTB4TWpNdVpYVXRkMlZ6ZEMweUxtVnNZaTVoYldGNmIyNWhkM011WTI5dE9qWTNPRGxkSW4wPQ==

How to reproduce it (minimal and precise):

  1. Create mirror_remote client on the secondary cluster: ceph fs authorize example-fs client.mirror_remote /dir1 rwps
  2. Create bootstrap peer token on the secondary cluster: ceph fs snapshot mirror peer_bootstrap create example-fs client.mirror_remote rook-ceph
  3. Create CephFilesystemMirror crd on the first cluster
  4. Create a k8s secret with the generated bootstrap peer token and call it in the cephFS manifest of the first cluster

Environment:

  • Cloud provider or hardware configuration: AWS
  • Rook version (use rook version inside of a Rook Pod): 1.7.5
  • Storage backend version (e.g. for ceph do ceph -v): 16.2.6
  • Kubernetes version (use kubectl version): 1.20
@leseb
Copy link
Member

leseb commented Nov 15, 2021

Can you describe the "sometimes fails"? Isn't this always reproducable? Thanks

@ahmedTouati
Copy link
Author

Can you describe the "sometimes fails"? Isn't this always reproducable? Thanks

@leseb Yes it's not always reproducible and nothing is shown in the logs to check why it fails

@leseb
Copy link
Member

leseb commented Nov 26, 2021

Can you print do a kubectl -n rook-ceph get secret <peer secret> -o yaml and paste it here? Thanks.

@leseb
Copy link
Member

leseb commented Nov 26, 2021
edited

Also, please make sure you don't make any typos or introduce white spaces/trailing spaces when creating the secret peer.

leseb added a commit to leseb/rook that referenced this issue Nov 26, 2021
@leseb
cephfs-mirror: try to mitigate peer import error
d1cdba4 
Some users have reported issues while adding the token, this is not
always reproducable so perhaps it's a typo when importing the token and
adding trailing spaces.

Closes: rook#9151
Signed-off-by: Sébastien Han <seb@redhat.com>
@leseb leseb added this to To do in v1.7 via automation Nov 26, 2021
@leseb leseb moved this from To do to In progress in v1.7 Nov 26, 2021
@leseb leseb mentioned this issue Nov 29, 2021
Merged
10 tasks
v1.7 automation moved this from In progress to Done Nov 29, 2021
@leseb
Copy link
Member

leseb commented Nov 29, 2021

Please try again in 1.7.9, it should be released in a few. Thanks

mergify bot pushed a commit that referenced this issue Nov 29, 2021
@leseb
cephfs-mirror: try to mitigate peer import error
37bacae 
Some users have reported issues while adding the token, this is not
always reproducable so perhaps it's a typo when importing the token and
adding trailing spaces.

Closes: #9151
Signed-off-by: Sébastien Han <seb@redhat.com>
(cherry picked from commit d1cdba4)
parth-gr pushed a commit to parth-gr/rook that referenced this issue Feb 22, 2022
@leseb @parth-gr
cephfs-mirror: try to mitigate peer import error
a76c071 
Some users have reported issues while adding the token, this is not
always reproducable so perhaps it's a typo when importing the token and
adding trailing spaces.

Closes: rook#9151
Signed-off-by: Sébastien Han <seb@redhat.com>
parth-gr pushed a commit to parth-gr/rook that referenced this issue Feb 22, 2022
@leseb @parth-gr
cephfs-mirror: try to mitigate peer import error
8922fb4 
Some users have reported issues while adding the token, this is not
always reproducable so perhaps it's a typo when importing the token and
adding trailing spaces.

Closes: rook#9151
Signed-off-by: Sébastien Han <seb@redhat.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug
Projects
No open projects
v1.7
Done
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

cephfs-mirror: various fixes for random bootstrap peer import errors leseb/rook
2 participants
@leseb @ahmedTouati