[Bug 1904580] Re: Permissions 0644 for '/var/lib/nova/.ssh/id_rsa' are too open
Nobuto Murata
1904580 at bugs.launchpad.net
Wed Aug 4 14:43:30 UTC 2021
root at casual-condor:/var/lib/nova# ll .ssh/
total 28
drwxr-xr-x 2 nova root 4096 Aug 3 10:43 ./
drwxr-xr-x 10 nova nova 4096 Aug 3 10:25 ../
-rw-r--r-- 1 root root 1197 Aug 3 10:54 authorized_keys
-rw------- 1 nova root 1823 Aug 3 10:25 id_rsa
-rw-r--r-- 1 nova root 400 Aug 3 10:25 id_rsa.pub
-rw-r--r-- 1 root root 5526 Aug 3 10:54 known_hosts
^^^ 600 to id_rsa
root at casual-condor:/var/lib/nova# find /var/lib/nova -type f -exec chmod
0644 "{}" + -o -type d -exec chmod 0755 "{}" +
root at casual-condor:/var/lib/nova# ll .ssh/
total 28
drwxr-xr-x 2 nova root 4096 Aug 3 10:43 ./
drwxr-xr-x 10 nova nova 4096 Aug 3 10:25 ../
-rw-r--r-- 1 root root 1197 Aug 3 10:54 authorized_keys
-rw-r--r-- 1 nova root 1823 Aug 3 10:25 id_rsa
-rw-r--r-- 1 nova root 400 Aug 3 10:25 id_rsa.pub
-rw-r--r-- 1 root root 5526 Aug 3 10:54 known_hosts
^^^ 644 to id_rsa
--
You received this bug notification because you are a member of Ubuntu
OpenStack, which is subscribed to nova in Ubuntu.
https://bugs.launchpad.net/bugs/1904580
Title:
Permissions 0644 for '/var/lib/nova/.ssh/id_rsa' are too open
Status in OpenStack nova-compute charm:
New
Status in nova package in Ubuntu:
New
Bug description:
Charm revision: 320
Cloud: bionic-ussuri
Permissions 0644 for '/var/lib/nova/.ssh/id_rsa' are too open.
Load key "/var/lib/nova/.ssh/id_rsa": bad permissions
nova at 10.35.80.49: Permission denied (publickey).
This was preventing nova resizing:
/var/log/nova/nova-compute.log:2020-11-17 13:14:42.210 100221 ERROR
oslo_messaging.rpc.server Command: ssh -o BatchMode=yes 10.35.80.49
mkdir -p /var/lib/nova/instances/39caee98-b81c-4cef-9810-815f2ecf1fc4
Manually setting to 0600 fixed the issue.
To manage notifications about this bug go to:
https://bugs.launchpad.net/charm-nova-compute/+bug/1904580/+subscriptions
More information about the Ubuntu-openstack-bugs
mailing list