本次環境:
html
openstack(K版本): 控制和計算各一臺,而且安裝到dashboard,能夠正常建立虛擬機(搭建過程建官方http://docs.openstack.org/kilo/install-guide/install/yum/content/)node
ceph: 共3臺,兩臺節點一臺desploy部署機(搭建過程建官方http://ceph.com/)python
下面在控制節點安裝cinder,在控制節點上操做:mysql
##建立數據庫而且受權redis
[root@contorller ~]# mysql Welcome to the MariaDB monitor. Commands end with ; or \g. Your MariaDB connection id is 2439 Server version: 5.5.47-MariaDB MariaDB Server Copyright (c) 2000, 2015, Oracle, MariaDB Corporation Ab and others. Type 'help;' or '\h' for help. Type '\c' to clear the current input statement. MariaDB [(none)]> CREATE DATABASE cinder; Query OK, 1 row affected (0.00 sec) MariaDB [(none)]> GRANT ALL PRIVILEGES ON cinder.* TO 'cinder'@'localhost' \ -> IDENTIFIED BY 'awcloud'; Query OK, 0 rows affected (0.15 sec) MariaDB [(none)]> GRANT ALL PRIVILEGES ON cinder.* TO 'cinder'@'%' \ -> IDENTIFIED BY 'awcloud'; Query OK, 0 rows affected (0.01 sec)
##建立用戶、端點等信息sql
[root@contorller ~]# source admin-openrc.sh [root@contorller ~]# openstack user create --password-prompt cinder [root@contorller ~]# openstack role add --project service --user cinder admin [root@contorller ~]# openstack service create --name cinder \ > --description "OpenStack Block Storage" volume [root@contorller ~]# openstack service create --name cinderv2 \ > --description "OpenStack Block Storage" volumev2 [root@contorller ~]# openstack endpoint create \ > --publicurl http://controller:8776/v2/%\(tenant_id\)s \ > --internalurl http://controller:8776/v2/%\(tenant_id\)s \ > --adminurl http://controller:8776/v2/%\(tenant_id\)s \ > --region RegionOne \ > volume [root@contorller ~]# openstack endpoint create \ > --publicurl http://controller:8776/v2/%\(tenant_id\)s \ > --internalurl http://controller:8776/v2/%\(tenant_id\)s \ > --adminurl http://controller:8776/v2/%\(tenant_id\)s \ > --region RegionOne \ > volumev2
安裝cinder服務數據庫
[root@contorller ~]# yum install openstack-cinder python-cinderclient python-oslo-db -y
修改配置文件vim
[root@contorller ~]# cp /etc/cinder/cinder.conf /etc/cinder/cinder.conf.bk [root@contorller ~]# vim /etc/cinder/cinder.conf [root@contorller ~]# egrep -v "^#|^$" /etc/cinder/cinder.conf [DEFAULT] rpc_backend = rabbit auth_strategy = keystone my_ip = 192.168.8.199 verbose = True [BRCD_FABRIC_EXAMPLE] [CISCO_FABRIC_EXAMPLE] [database] connection = mysql://cinder:awcloud@controller/cinder [fc-zone-manager] [keymgr] [keystone_authtoken] auth_uri = http://controller:5000 auth_url = http://controller:35357 auth_plugin = password project_domain_id = default user_domain_id = default project_name = service username = cinder password = awcloud [matchmaker_redis] [matchmaker_ring] [oslo_messaging_amqp] [oslo_messaging_qpid] [oslo_messaging_rabbit] rabbit_host = controller rabbit_userid = guest rabbit_password = guest [profiler] [oslo_concurrency] lock_path = /var/lock/cinder
重啓服務api
[root@contorller ~]# systemctl enable openstack-cinder-api.service openstack-cinder-scheduler.service [root@contorller ~]# systemctl start openstack-cinder-api.service openstack-cinder-scheduler.service
###爲contronller節點配置實現接管cephbash
[root@contorller ~]# yum install python-rbd ceph-common -y [root@compute ~]# yum install python-rbd ceph-common -y
把驗證文件和ceph的配置文件拷貝到控制節點
[root@ceph-admin ceph]# scp ceph.client.admin.keyring ceph.conf 192.168.8.199:/etc/ceph/
此時在controller節點執行ceph命令是否成功
[root@contorller ~]# ceph -s cluster 3155ed83-9e92-43da-90f1-c7715148f48f health HEALTH_OK monmap e1: 1 mons at {node1=192.168.8.35:6789/0} election epoch 2, quorum 0 node1 osdmap e47: 2 osds: 2 up, 2 in pgmap v1325: 64 pgs, 1 pools, 0 bytes data, 0 objects 80896 kB used, 389 GB / 389 GB avail 64 active+clean
##爲cinder、nova、glance建立volume
[root@contorller ~]# ceph osd pool create vms [root@contorller ~]# ceph osd pool create volumes 50 pool 'volumes' created [root@contorller ~]# ceph osd pool create images 50 pool 'images' created [root@contorller ~]# ceph osd pool create backups 50 pool 'backups' created [root@contorller ~]# ceph osd pool create vms 50 pool 'vms' created [root@contorller ~]#
爲ceph客戶端作認證
[root@contorller ~]# ceph auth get-or-create client.cinder mon 'allow r' osd 'allow class-read object_prefix rbd_children, allow rwx pool=volumes, allow rwx pool=vms, allow rx pool=images' rbd_children, allow rwx pool=images' ceph auth get-or-create client.cinder-backup mon 'allow r' osd 'allow class-read object_prefix rbd_children, allow rwx pool=backups' [root@contorller ~]# ceph auth get-or-create client.glance mon 'allow r' osd 'allow class-read object_prefix rbd_children, allow rwx pool=images' [root@contorller ~]# ceph auth get-or-create client.cinder-backup mon 'allow r' osd 'allow class-read object_prefix rbd_children, allow rwx pool=backups' [root@contorller ~]#
##建立用戶的認證文件
[root@contorller ceph]# ceph auth get-or-create client.glance|tee /etc/ceph/ceph.client.glance.keyring [client.glance] key = AQANyXRXb5l7CRAA2yVyM92BIm+U3QDseZGqow== [root@contorller ceph]# chown glance:glance /etc/ceph/ceph.client.glance.keyring [root@contorller ceph]# ceph auth get-or-create client.cinder | sudo tee /etc/ceph/ceph.client.cinder.keyring [client.cinder] key = AQDkyHRXvOTwARAAbRha/MtmqPcJm0RF9jcrsQ== [root@contorller ceph]# sudo chown cinder:cinder /etc/ceph/ceph.client.cinder.keyring [root@contorller ceph]# ceph auth get-or-create client.cinder-backup |sudo tee /etc/ceph/ceph.client.cinder-backup.keyring [client.cinder-backup] key = AQAVyXRXQDKFBRAAtY9DuiGGRSTBDu0MRckXbA== [root@contorller ceph]# chown cinder:cinder /etc/ceph/ceph.client.cinder-backup.keyring [root@contorller ceph]# [root@contorller ceph]#
##把/etc/ceph/ceph.client.cinder.keyring用戶認證文件拷貝到計算節點
[root@contorller ceph]# scp /etc/ceph/ceph.client.cinder.keyring compute:/etc/ceph/ ##在compute節點建立libvirt的key [root@compute ~]# uuidgen 457eb676-33da-42ec-9a8c-9293d545c337 cat > secret.xml <<EOF <secret ephemeral='no' private='no'> <uuid>457eb676-33da-42ec-9a8c-9293d545c337</uuid> <usage type='ceph'> <name>client.cinder secret</name> </usage> </secret> EOF [root@compute ~]# sudo virsh secret-define --file secret.xml [root@compute ~]# sudo virsh secret-set-value --secret 457eb676-33da-42ec-9a8c-9293d545c337 --base64 $(cat client.cinder.key) ###爲glance對接ceph
vi /etc/glance/glance-api.conf
[DEFAULT] ... default_store=rbd rbd_store_user=glance rbd_store_pool=images show_image_direct_url=True [root@contorller ceph]# systemctl restart openstack-glance-api.service [root@contorller ceph]# systemctl restart openstack-glance-registry.service
##爲cinder和ceph對接
[root@contorller ceph]# vim /etc/cinder/cinder.conf [DEFAULT] volume_driver=cinder.volume.drivers.rbd.RBDDriver rbd_pool=volumes rbd_ceph_conf=/etc/ceph/ceph.conf rbd_flatten_volume_from_snapshot=false rbd_max_clone_depth=5 glance_api_version=2 rbd_user=cinder rbd_secret_uuid=457eb676-33da-42ec-9a8c-9293d545c337 [root@contorller ceph]# systemctl restart openstack-cinder-api.service [root@contorller ceph]# systemctl restart openstack-glance-registry.service
##爲cinder backup對接ceph
[DEFAULT] backup_driver=cinder.backup.drivers.ceph backup_ceph_conf=/etc/ceph/ceph.conf backup_ceph_user=cinder-backup backup_ceph_chunk_size=134217728 backup_ceph_pool=backups backup_ceph_stripe_unit=0 backup_ceph_stripe_count=0 restore_discard_excess_bytes=true [root@contorller ceph]# systemctl restart openstack-cinder-backup.service 爲nova對接ceph [root@compute ~]# vim /etc/nova/nova.conf [DEFAULT] libvirt_images_type=rbd libvirt_images_rbd_pool=vms libvirt_images_rbd_ceph_conf=/etc/ceph/ceph.conf rbd_user=cinder rbd_secret_uuid=457eb676-33da-42ec-9a8c-9293d545c337 libvirt_inject_password=false libvirt_inject_key=false libvirt_inject_partition=-2 libvirt_live_migration_flag="VIR_MIGRATE_UNDEFINE_SOURCE,VIR_MIGRATE_PEER2PEER,VIR_MIGRATE_LIVE,VIR_MIGRATE_PERSIST_DEST" [root@compute ~]# systemctl restart openstack-nova-compute.service
至此已經所有完成!下面進行驗證操做:
建立一個虛擬機磁盤做用在雲硬盤上,若出報錯,
tailf /var/log/cinder/volume.log 2016-06-24 03:21:00.458 58907 ERROR oslo_messaging.rpc.dispatcher [req-41df406d-44b9-4e59-b317-faafcdd880c7 9d20f58520ad43658dceda03cf4e266c dce7915317f14e6aacad0b6ef84c4483 - - -] Exception during message handling: [Errno 13] Permission denied: '/var/lock/cinder'
查看是否有這個目錄
[root@contorller cinder]# ll /var/lock/cinder ls: cannot access /var/lock/cinder: No such file or directory
##建立此目錄
[root@contorller cinder]# mkdir /var/lock/cinder -p [root@contorller cinder]# chown cinder.cinder /var/lock/cinder/
建立一臺雲主機,使用cinder命令驗證
[root@contorller images]# rbd ls volumes volume-8a1ff9c3-0dbd-41d7-a46b-ebaa45bc2230
如今建立的虛擬機已經在ceph集羣中了。
參考文檔:
http://docs.ceph.com/docs/master/rbd/rbd-openstack/
http://docs.openstack.org/kilo/install-guide/install/yum/content/cinder-install-controller-node.html