[Bug 1744758] Re: libvirt 2.5.0-3ubuntu5.6~cloud0 appears to be compiled without gnutls
Corey Bryant
corey.bryant at canonical.com
Tue Jan 23 18:31:36 UTC 2018
Lee, thanks very much for the recreate details. I was able to recreate
the error you were seeing, and also tested successfully with libvirt
installed from ppa:corey.bryant/xenial-ocata-bug1744758.
$ apt policy libvirt-bin
libvirt-bin:
Installed: 2.5.0-3ubuntu5.6~cloud1~ubuntu16.04.1~ppa201801231058
Candidate: 2.5.0-3ubuntu5.6~cloud1~ubuntu16.04.1~ppa201801231058
Version table:
*** 2.5.0-3ubuntu5.6~cloud1~ubuntu16.04.1~ppa201801231058 500
500 http://ppa.launchpad.net/corey.bryant/xenial-ocata-bug1744758/ubuntu xenial/main amd64 Packages
100 /var/lib/dpkg/status
$ cat /tmp/disk.xml
<disk type="file" device="disk">
<driver name="qemu" type="qcow2" cache="none" io="native"/>
<source file="/var/lib/libvirt/images/test.img"/>
<target dev='vdb' bus='virtio'/>
<encryption format='luks'>
<secret type='passphrase' uuid='8b0c5785-9e28-4c39-8b5d-21b42446ce45'/>
</encryption>
</disk>
$ sudo virsh attach-device test /tmp/disk.xml
Device attached successfully
Since this seems to be working I'll go ahead and get this uploaded to
ocata-proposed for more testing.
--
You received this bug notification because you are a member of Ubuntu
OpenStack, which is subscribed to Ubuntu Cloud Archive.
https://bugs.launchpad.net/bugs/1744758
Title:
libvirt 2.5.0-3ubuntu5.6~cloud0 appears to be compiled without gnutls
Status in Ubuntu Cloud Archive:
New
Status in libvirt package in Ubuntu:
Incomplete
Bug description:
Currently seeing the following error in OpenStack CI on 16.04 with
Libvirt 2.5.0 provided via the UCA when attempting to create a `luks`
Libvirt secret:
http://logs.openstack.org/50/536350/1/check/legacy-grenade-dsvm-
neutron-multinode-live-
migration/5f7ed57/logs/screen-n-cpu.txt.gz?level=ERROR#_Jan_22_15_09_28_467904
~~~
libvirtError: unsupported configuration: luks encryption requires encrypted secrets to be supported
~~~
This appears to be bubbling up due to the HAVE_GNUTLS_CIPHER_ENCRYPT
macro being 0 in this build due to gnutls_cipher_encrypt being missing
at build time :
src/util/vircrypto.c
102 virCryptoHaveCipher(virCryptoCipher algorithm)
103 {
104 switch (algorithm) {
105
106 case VIR_CRYPTO_CIPHER_AES256CBC:
107 #ifdef HAVE_GNUTLS_CIPHER_ENCRYPT
108 return true;
109 #else
110 return false;
111 #endif
112
113 case VIR_CRYPTO_CIPHER_NONE:
114 case VIR_CRYPTO_CIPHER_LAST:
115 break;
116 };
117
118 return false;
119 }
To manage notifications about this bug go to:
https://bugs.launchpad.net/cloud-archive/+bug/1744758/+subscriptions
More information about the Ubuntu-openstack-bugs
mailing list