We're trying to deploy OpenStack on hardened Debian-based Linux distro via Kolla-ansible and we seem to be almost done but facing the issue with the nova_compute container which complaints:
2021-09-12 08:56:34.365 7 INFO nova.virt.libvirt.driver [-] Connection event '0' reason.
'Failed to connect to libvirt: Unable to query peer security context: No data available
and restarts permanently.
Here are relevant config snippets:
(venv) root@server11:~# grep nova /etc/kolla/globals.yml
nova_backend_ceph : "yes"
nova_compute_virt_type : "qemu"
(venv) root@server11:~# cat /etc/kolla/config/nova/nova-compute.conf
[libvirt]
virt_type=qemu
cpu_mode = none
(venv) root@server11:~#
Tried to figure out the root cause myself, read the docs, googled but to no avail, so any suggestions on how to fix the issue will be highly appreciated.
This error message means that the getpeercon() method failed. This method is only run it libvirt is built with SELinux support. The "No data available" return value suggests perhaps SELinux is turned off, but that should already have been caught by the "ENOSYS" / "NOPROTOOPT" checks.