自从看了Havana安装文档有关Swift的安装一节,发现H版的安装过程与以前还是有些差别的。不过大致过程还是那些。下面简单介绍下我们安装的过程吧,具体请参考官方文档http://docs.openstack.org/havana/install-guide/install/apt/content/ch_swift.html

一、安装前准备

  • 对于keystone的安装,请参照有关Havana的安装指南
  • 安装过程中都必须在root下进行

$ sudo su

  • 每个结点上都必须含有Havana Package:
# apt-get install python-software-properties
# add-apt-repository cloud-archive:havana

  • 升级系统
#apt-get update
#apt-get upgrade
#apt-get dist-upgrade

二、统一安装

这一节的内容必须在每个结点上安装,无论是代理结点还是存储结点,这一步不能省,必须做到,每个结点上都一样。

2.1.安装核心Swift文件和OpenSSH

# apt-get install -y swift openssh-server rsync memcached python-netifaces python-xattr python-memcache

2.2.在所有结点上创建和填充配置目录

# mkdir -p /etc/swift
# chown -R swift:swift /etc/swift/

2.3.在所有结点上创建/etc/swift/swift.conf,内容如下:

[swift-hash]
# random unique string that can never change (DO NOT LOSE)
swift_hash_path_suffix = openstack

注:suffix的值在/etc/swift/swift.conf应该被设为随机字符串,且这个文件在集群中的所有结点都必须相同。

三、安装和配置存储结点

3.1.安装存储结点包:

# apt-get install swift-account swift-container swift-object xfsprogs

3.2.对于你想要用于存储结点上的每个设备,建立XFS卷,这里建设系统中有/dev/sdb1/(以这个为例,如果临时分出的空间,可以用fdisk新建分区,这里具体操作请查阅fdisk相关命令):

# mkdir -p /srv/node/sdb1
# mkfs.xfs /dev/sdb1
# echo "/dev/sdb1 /srv/node/sdb1 xfs noatime,nodiratime,nobarrier,logbufs=8 0 0" >> /etc/fstab
# mount /srv/node/sdb1
# chown -R swift:swift /srv/node

3.3.创建/etc/rsyncd.conf:

uid = swift
gid = swift
log file = /var/log/rsyncd.log
pid file = /var/run/rsyncd.pid
address = 10.10.10.54      #存储结点的IP地址

[account]
max connections = 2
path = /srv/node/
read only = false
lock file = /var/lock/account.lock

[container]
max connections = 2
path = /srv/node/
read only = false
lock file = /var/lock/container.lock

[object]
max connections = 2
path = /srv/node/
read only = false
lock file = /var/lock/object.lock

3.4.在/etc/default/rsync编辑下列行:

RSYNC_ENABLE = true

3.5.启动rsync守护进程:

# service rsync start

3.6.创建swift recon缓存目录并赋予它权限:

# mkdir -p /var/swift/recon
# chown -R swift:swift /var/swift/recon

四、安装和配置代理结点

4.1.安装swift-proxy服务:

# apt-get install -y swift-proxy memcached python-keystoneclient python-swiftclient python-webob python-pip

4.2.为SSL创建self-signed cert

# cd /etc/swift
# openssl req -new -x509 -nodes -out cert.crt -keyout cert.key

4.3.修改memcached以监听默认的接口在本地、非公共的网络。在/etc/memcached.conf文件中编辑这一行:

sed -i 's/-l 127.0.0.1/-l 10.10.10.51/g' > /etc/memcached.conf

4.4.重启memcached服务:

# service memcached restart

4.5.仅在ubuntu上使用:因为发布的包不包含keystoneauth中间件的拷贝,确保proxy服务包含他们:

# apt-get install -y git
# git clone https://github.com/openstack/swift.git
# cd swift
# python setup.py install
# swift-init proxy start

4.6.创建/etc/swift/proxy-server.conf

[DEFAULT]
bind_port = 8888
user = swift

[pipeline:main]
pipeline = healthcheck cache authtoken keystoneauth proxy-server

[app:proxy-server]
use = egg:swift#proxy
allow_account_management = true
account_autocreate = true

[filter:keystoneauth]
use = egg:swift#keystoneauth
operator_roles = Member,admin,swiftoperator

[filter:authtoken]
paste.filter_factory = keystoneclient.middleware.auth_token:filter_factory

# Delaying the auth decision is required to support token-less
# usage for anonymous referrers ('.r:*').
delay_auth_decision = true

# cache directory for signing certificate
signing_dir = /home/swift/keystone-signing

# auth_* settings refer to the Keystone server
auth_protocol = http
auth_host = 10.10.10.51
auth_port = 35357

# the same admin_token as provided in keystone.conf
admin_token = ADMIN

# the service tenant and swift userid and password created in Keystone
admin_tenant_name = service
admin_user = swift
admin_password = 111111

[filter:cache]
use = egg:swift#memcache

[filter:catch_errors]
use = egg:swift#catch_errors

[filter:healthcheck]
use = egg:swift#healthcheck

4.7.创建signing_dir并赋予它权限

# mkdir -p /home/swift/keystone-signing
# chown -R swift:swift /home/swift/keystone-signing

4.8.创建accout, container和object环(rings)。后面的数字第一个为存储分区数,第二个为备份次数,备份次数不能小于ZONE数目,第三个为延迟删除的时间。(红色部分可以修改,按照存储结点数修改)

# cd /etc/swift
# swift-ring-builder account.builder create 18 1 1
# swift-ring-builder container.builder create 18 1 1
# swift-ring-builder object.builder create 18 1 1

4.9.对每个存储结点设备在每个结点添加entries到每个环节中:

# swift-ring-builder account.builder add z1-10.10.10.54:6002R10.10.10.54:6005/sdb1 100
# swift-ring-builder container.builder add z1-10.10.10.54:6001R10.10.10.54:6005/sdb1 100
# swift-ring-builder object.builder add z1-10.10.10.54:6000R10.10.10.54:6005/sdb1 100

4.10.验证每个环的内容:

# swift-ring-builder account.builder
# swift-ring-builder container.builder
# swift-ring-builder object.builder

4.11.平衡环:

# swift-ring-builder accout.builder rebalance
# swift-ring-builder container.builder rebalance
# swift-ring-builder object.builder rebalance

4.12.复制account.ring.gz, container.ring.gz和object.ring.gz文件到每个proxy和storage结点的/etc/swift:

# cd /etc/swift
# scp account.ring.gz container.ring.gz object.ring.gz storage@10.10.10.54:/etc/swift/

4.13.确定所有的配置文件都被swift用户所拥有:

# chown -R swift:swift /etc/swift

4.14.启动proxy服务:

# swift-init proxy restart

4.15.在存储结点上,启动所有服务:

# swift-init all restart

五、验证安装:

5.1.在proxy结点上操作,首先导入环境变量:

$ export OS_PASSWORD=ADMIN_PASS
$ export OS_AUTH_URL=http://controller:5000/v2.0

5.2.运行下列swift命令并带上正确认证服务的URL

$ swift -V 2.0 -A $OS_AUTH_URL -U service:swift -K $ADMINPASS stat

Account: AUTH_16542d36818f480d94554438c1fc0761
Containers: 0
   Objects: 0
     Bytes: 0
Content-Type: text/plain; charset=utf-8
X-Timestamp: 1388986871.53485
X-Put-Timestamp: 1388986871.53485