Ask Your Question

Should instance creation fail if key-pair injection fails

asked 2012-03-30 05:02:46 -0600

unmesh-gurjar gravatar image

While launching an instance with a key-pair specified, even if the key-pair injection fails, the instance comes up active and running. The user comes to know of this (unless Compute logs are being monitored), only when he is unable to ssh into the instance using the specified key-pair.

What should be the behavior in such a scenario? Should instance creation fail?

edit retag flag offensive close merge delete

3 answers

Sort by ยป oldest newest most voted

answered 2012-04-29 00:53:32 -0600

fifieldt gravatar image

Hi Umesh,

Does this comment from Vish Ishaya (Nova core developer) in the associated bug ( ) answer your question:

" Keypair injection is for developer convenience. The guest can still set up keypairs via the metadata server via cloud_init. In general we lean towards not messing with guest instances, so it should be the responsibility of the guest to setup keypairs. In fact, keypair injection should be optional and I would expect most cloud providers to turn it off.

By the way, libvirt can try to inject passwords as well via the config option:

libvirt_inject_password=true "




edit flag offensive delete link more

answered 2012-04-04 05:00:38 -0600

unmesh-gurjar gravatar image

The root password can be set for an instance using the change password API. However, that feature is not supported for KVM. Therefore I think the instance creation should fail if key injection fails.

edit flag offensive delete link more

answered 2012-09-26 05:17:54 -0600

unmesh-gurjar gravatar image

I agree that key injection should not be fatal.

edit flag offensive delete link more

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower


Asked: 2012-03-30 05:02:46 -0600

Seen: 161 times

Last updated: Sep 26 '12