Am 24.01.19 um 22:34 schrieb Alfredo Deza:
I have both, plain and luks.
At the moment I played around with the plain dmcrypt OSDs and run into
this problem. I didn't test the luks crypted OSDs.
There is support in the JSON file to define the type of encryption with the key:
On Thu, Jan 24, 2019 at 4:13 PM mlausch wrote:
>
>
>
> Am 24.01.19 um 22:02 schrieb Alfredo Deza:
> >>
> >> Ok with a new empty journal the OSD will not start. I have now rescued
> >> the data with dd and the recrypt it with a other key and copied the
> >> data back. This worked so far
> >>
> >>
Am 24.01.19 um 22:02 schrieb Alfredo Deza:
Ok with a new empty journal the OSD will not start. I have now rescued
the data with dd and the recrypt it with a other key and copied the
data back. This worked so far
Now I encoded the key with base64 and put it to the key-value store.
Also
On Thu, Jan 24, 2019 at 3:17 PM Manuel Lausch wrote:
>
>
>
> On Wed, 23 Jan 2019 16:32:08 +0100
> Manuel Lausch wrote:
>
>
> > >
> > > The key api for encryption is *very* odd and a lot of its quirks are
> > > undocumented. For example, ceph-volume is stuck supporting naming
> > > files and keys
On Wed, 23 Jan 2019 16:32:08 +0100
Manuel Lausch wrote:
> >
> > The key api for encryption is *very* odd and a lot of its quirks are
> > undocumented. For example, ceph-volume is stuck supporting naming
> > files and keys 'lockbox'
> > (for backwards compatibility) but there is no real
On Wed, Jan 23, 2019 at 11:03 AM Dietmar Rieder
wrote:
>
> On 1/23/19 3:05 PM, Alfredo Deza wrote:
> > On Wed, Jan 23, 2019 at 8:25 AM Jan Fajerski wrote:
> >>
> >> On Wed, Jan 23, 2019 at 10:01:05AM +0100, Manuel Lausch wrote:
> >>> Hi,
> >>>
> >>> thats a bad news.
> >>>
> >>> round about 5000
On 1/23/19 3:05 PM, Alfredo Deza wrote:
> On Wed, Jan 23, 2019 at 8:25 AM Jan Fajerski wrote:
>>
>> On Wed, Jan 23, 2019 at 10:01:05AM +0100, Manuel Lausch wrote:
>>> Hi,
>>>
>>> thats a bad news.
>>>
>>> round about 5000 OSDs are affected from this issue. It's not realy a
>>> solution to
On Wed, Jan 23, 2019 at 4:15 PM Manuel Lausch wrote:
> yes you are right. The activate disables system wide the ceph-disk.
> This is done by symlinking /etc/systemd/system/ceph-disk@.service
> to /dev/null.
> After deleting this symlink my OSDs started again after reboot.
> The startup processes
On Wed, 23 Jan 2019 08:11:31 -0500
Alfredo Deza wrote:
> I don't know how that would look like, but I think it is worth a try
> if re-deploying OSDs is not feasible for you.
yes, is there a working way to migrate this I will have a try it.
>
> The key api for encryption is *very* odd and a
On Wed, 23 Jan 2019 14:25:00 +0100
Jan Fajerski wrote:
> I might be wrong on this, since its been a while since I played with
> that. But iirc you can't migrate a subset of ceph-disk OSDs to
> ceph-volume on one host. Once you run ceph-volume simple activate,
> the ceph-disk systemd units and
On Wed, Jan 23, 2019 at 8:25 AM Jan Fajerski wrote:
>
> On Wed, Jan 23, 2019 at 10:01:05AM +0100, Manuel Lausch wrote:
> >Hi,
> >
> >thats a bad news.
> >
> >round about 5000 OSDs are affected from this issue. It's not realy a
> >solution to redeploy this OSDs.
> >
> >Is it possible to migrate
On Wed, Jan 23, 2019 at 10:01:05AM +0100, Manuel Lausch wrote:
Hi,
thats a bad news.
round about 5000 OSDs are affected from this issue. It's not realy a
solution to redeploy this OSDs.
Is it possible to migrate the local keys to the monitors?
I see that the OSDs with the "lockbox feature"
On Wed, Jan 23, 2019 at 4:01 AM Manuel Lausch wrote:
>
> Hi,
>
> thats a bad news.
>
> round about 5000 OSDs are affected from this issue. It's not realy a
> solution to redeploy this OSDs.
>
> Is it possible to migrate the local keys to the monitors?
> I see that the OSDs with the "lockbox
Hi,
thats a bad news.
round about 5000 OSDs are affected from this issue. It's not realy a
solution to redeploy this OSDs.
Is it possible to migrate the local keys to the monitors?
I see that the OSDs with the "lockbox feature" has only one key for
data and journal partition and the older OSDs
On Tue, Jan 22, 2019 at 6:45 AM Manuel Lausch wrote:
>
> Hi,
>
> we want upgrade our ceph clusters from jewel to luminous. And also want
> to migrate the osds to ceph-volume described in
> http://docs.ceph.com/docs/luminous/ceph-volume/simple/scan/#ceph-volume-simple-scan
>
> The clusters are
Hi,
we want upgrade our ceph clusters from jewel to luminous. And also want
to migrate the osds to ceph-volume described in
http://docs.ceph.com/docs/luminous/ceph-volume/simple/scan/#ceph-volume-simple-scan
The clusters are running since dumpling and are setup with dmcrypt.
Since dumpling there
16 matches
Mail list logo