Friday, 2021-12-24

« Thursday, 2021-12-23 Index Saturday, 2021-12-25 »
opendevreviewJames Denton proposed openstack/openstack-ansible-os_glance master: Add boto3 module for s3 backend  https://review.opendev.org/c/openstack/openstack-ansible-os_glance/+/82287003:15
gokhani hi folks, I tried to add octavia to my OSA 22.1.0 deployment, but it gives error and can not create constrainta07:50
gokhaniconstraints.txt file07:51
gokhanithese are the logs: https://paste.openstack.org/show/811833/07:51
gokhanihow can I solve this problem ?07:52
noonedeadpunkhey08:07
noonedeadpunkgokhani: I believe you have old ca-certificates in repo containers08:09
gokhaninoonedeadpunk, it seems it is related with systemd_python package. https://paste.openstack.org/show/811836/08:11
noonedeadpunkPaste you sent first explicitly says: Command errored out with exit status 128: git clone -q https://opendev.org/openstack/octavia /tmp/pip-wheel-adgqjg40/octavia08:12
noonedeadpunkwhich is quite common issue for last severla month as opendev uses lets encrypt whos root ca expired September 3008:13
noonedeadpunkSo to be able to verify and clone from opendev you need to have recent ca-certificates package08:14
kleiniwhat is the difference between keepalived internal and external ping address?08:18
kleiniwhat exactly happens if one of both pings does not respond any more?08:19
kleinianswering my own question again: keepalived has different configuration for internal and external interface and now corresponding ping configurations08:25
gokhaninoonedeadpunk, you are right, when I run "git clone -q https://opendev.org/openstack/octavia /tmp/pip-wheel-2nx5efr6/octavia" , it gives fatal: unable to access 'https://opendev.org/openstack/octavia/': server certificate verification failed. CAfile: none CRLfile: none 08:27
noonedeadpunkkleini: I can recall some recent changes to that so you could have only one defined or smth like that?08:32
noonedeadpunkah, yes, this implemented exactly that https://review.opendev.org/c/openstack/openstack-ansible/+/78237408:33
noonedeadpunkso it's to prevent failure when external resource becomes unavailable for all deployment08:34
noonedeadpunkgokhani: you can update package easily with ad-hoc08:37
gokhaninoonedeadpunk, thanks, I reinstalled certificates, it is solved. 08:46
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible-os_glance master: Define _glance_available_stores in variables  https://review.opendev.org/c/openstack/openstack-ansible-os_glance/+/82289909:23
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible-os_glance master: Add boto3 module for s3 backend  https://review.opendev.org/c/openstack/openstack-ansible-os_glance/+/82287009:23
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible-os_glance master: Add boto3 module for s3 backend  https://review.opendev.org/c/openstack/openstack-ansible-os_glance/+/82287009:24
opendevreviewMerged openstack/openstack-ansible-plugins master: Add galaxy metadata and roles to use as a collection  https://review.opendev.org/c/openstack/openstack-ansible-plugins/+/82100909:26
kleininoonedeadpunk: thanks. That commit message would be helpful here: https://docs.openstack.org/openstack-ansible-haproxy_server/wallaby/configure-haproxy.html#configuring-keepalived-ping-checks . Will try to contribute that.09:49
noonedeadpunkyou're always welcome!)10:14
opendevreviewDmitriy Rabotyagov proposed openstack/ansible-role-python_venv_build master: Verify that wheels are built while running against multiple hosts  https://review.opendev.org/c/openstack/ansible-role-python_venv_build/+/82141510:22
opendevreviewMerged openstack/openstack-ansible-os_ironic master: Remove glance_api_servers from ironic.conf  https://review.opendev.org/c/openstack/openstack-ansible-os_ironic/+/82283910:24
*** akahat|out is now known as akahat|ruck10:31
opendevreviewMerged openstack/openstack-ansible-os_rally stable/wallaby: Install PyMySQL as rally commands may not work without it  https://review.opendev.org/c/openstack/openstack-ansible-os_rally/+/82280210:42
opendevreviewDmitriy Rabotyagov proposed openstack/ansible-role-python_venv_build master: Install python3-venv on destination hosts  https://review.opendev.org/c/openstack/ansible-role-python_venv_build/+/82290110:49
opendevreviewMerged openstack/openstack-ansible-os_rally stable/victoria: Install PyMySQL as rally commands may not work without it  https://review.opendev.org/c/openstack/openstack-ansible-os_rally/+/82280310:49
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible-os_glance master: Define _glance_available_stores in variables  https://review.opendev.org/c/openstack/openstack-ansible-os_glance/+/82289910:50
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible-os_glance master: Add boto3 module for s3 backend  https://review.opendev.org/c/openstack/openstack-ansible-os_glance/+/82287010:50
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible-openstack_hosts master: Don not install virtualenv packages  https://review.opendev.org/c/openstack/openstack-ansible-openstack_hosts/+/82290210:53
noonedeadpunkbtw we broke gates with https://review.opendev.org/c/openstack/ansible-role-python_venv_build/+/82227410:54
noonedeadpunkhttps://review.opendev.org/c/openstack/ansible-role-python_venv_build/+/822901 hopefully will fix that10:54
jrosser_watch out, there is a venv constructed in the repo container for the wheel build11:28
jrosser_so it is possible that python3-venv is needed in both of those package lists11:28
noonedeadpunkhuh, I thought it's not11:36
noonedeadpunkbut yeah, agree11:36
noonedeadpunkbtw weird we haven't catched that11:37
opendevreviewDmitriy Rabotyagov proposed openstack/ansible-role-python_venv_build master: Install python3-venv on destination hosts  https://review.opendev.org/c/openstack/ansible-role-python_venv_build/+/82290111:38
jrosser_I wonder if on metal jobs we only see the error in the wheel build venv11:38
jrosser_but then it breaks later on other lxc jobs11:38
jrosser_we have this before with patches to minor roles that only have metal job tests11:39
noonedeadpunkoh, wait, we don't have lxc for python_venv_build11:40
noonedeadpunkthat's weird....11:41
noonedeadpunkI thought we had11:41
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible-os_gnocchi master: Add availability to define gnocchi_incoming_driver  https://review.opendev.org/c/openstack/openstack-ansible-os_gnocchi/+/82290511:42
opendevreviewDmitriy Rabotyagov proposed openstack/ansible-role-python_venv_build master: Switch to LXC jobs  https://review.opendev.org/c/openstack/ansible-role-python_venv_build/+/82290612:07
opendevreviewDmitriy Rabotyagov proposed openstack/ansible-role-python_venv_build master: Switch to LXC jobs  https://review.opendev.org/c/openstack/ansible-role-python_venv_build/+/82290612:07
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible-openstack_hosts master: Do not install virtualenv packages  https://review.opendev.org/c/openstack/openstack-ansible-openstack_hosts/+/82290213:03
noonedeadpunkjrosser_: have you everr tried to expand galera cluster? It's me not seeing how to do this or role missing this?14:13
jrosser_noonedeadpunk: we did go from 2 -> 3 nodes one time, but i don't remember if there was really an issue with that14:24
jrosser_galera_server role, but not with OSA14:24
noonedeadpunkhuh14:24
jrosser_i'm thinking "just run the role" but guess theres more to it than that?14:25
noonedeadpunkeventually what I see, is that current "boostrap"  node got reconfigured and tries to restart with handler. But can't connect to all defined in config wsrep addresses and fail14:26
noonedeadpunkbut ok, got it. (I;m just playing in aio to figure out how to scale)14:26
jrosser_if the order of the hosts in the group changes that might be bad14:27
noonedeadpunkgalera_force_bootstrap=true doesnt have any effect and hardly used in code14:27
noonedeadpunkno, bootstrap is still same14:27
noonedeadpunkas others don't have maria installed at all yet14:28
noonedeadpunkit's eventually matter of these 2 tasks https://opendev.org/openstack/openstack-ansible-galera_server/src/branch/master/handlers/main.yml#L64-L96 14:28
noonedeadpunkI guess we shouldn't restart mysql when executing `Start new cluster`14:29
noonedeadpunkand add galera_force_bootstrap as extra conditin for `Start new cluster`14:30
opendevreviewMarcus Klein proposed openstack/openstack-ansible-haproxy_server master: Describe in detail why external and internal keepalived ping addresses should be separated  https://review.opendev.org/c/openstack/openstack-ansible-haproxy_server/+/82291014:48
opendevreviewMarcus Klein proposed openstack/openstack-ansible-haproxy_server stable/wallaby: Describe in detail why external and internal keepalived ping addresses should be separated  https://review.opendev.org/c/openstack/openstack-ansible-haproxy_server/+/82280714:49
opendevreviewMarcus Klein proposed openstack/openstack-ansible-haproxy_server stable/xena: Describe in detail why external and internal keepalived ping addresses should be separated  https://review.opendev.org/c/openstack/openstack-ansible-haproxy_server/+/82280814:49
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible-galera_server master: Fix galera_force_bootstrap behaviour  https://review.opendev.org/c/openstack/openstack-ansible-galera_server/+/82291114:50
kleinidamn: https://storyboard.openstack.org/#!/story/200969014:50
noonedeadpunkThis has been already fixed and released14:50
noonedeadpunkkleini: just in case - we suggest backport patches only when master one merges14:52
kleinisorry14:53
noonedeadpunknp, just for the future)14:53
opendevreviewMerged openstack/openstack-ansible master: Update notes on how to enable TLS for VNC  https://review.opendev.org/c/openstack/openstack-ansible/+/82269015:05
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible master: [doc] Update infra node scaling documentation  https://review.opendev.org/c/openstack/openstack-ansible/+/82291215:06
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible stable/xena: Update notes on how to enable TLS for VNC  https://review.opendev.org/c/openstack/openstack-ansible/+/82280915:07
opendevreviewMerged openstack/openstack-ansible-os_nova stable/xena: Add release note issue for no console access when TLS for VNC enabled  https://review.opendev.org/c/openstack/openstack-ansible-os_nova/+/82271315:13
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible master: [doc] Update infra node scaling documentation  https://review.opendev.org/c/openstack/openstack-ansible/+/82291215:20
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible master: [doc] Update infra node scaling documentation  https://review.opendev.org/c/openstack/openstack-ansible/+/82291215:24
noonedeadpunkkleini: do you know if https://bugs.launchpad.net/openstack-ansible/+bug/1948456 has been fixed?15:38
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible-os_nova stable/victoria: Fix usage of tags  https://review.opendev.org/c/openstack/openstack-ansible-os_nova/+/82293015:52
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible-os_nova stable/victoria: Fix usage of tags  https://review.opendev.org/c/openstack/openstack-ansible-os_nova/+/82293015:54
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible-os_keystone stable/wallaby: Avoid Apache conflict with haproxy on metal  https://review.opendev.org/c/openstack/openstack-ansible-os_keystone/+/82291316:20
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible-os_keystone stable/victoria: Avoid Apache conflict with haproxy on metal  https://review.opendev.org/c/openstack/openstack-ansible-os_keystone/+/82293116:20
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible-os_keystone stable/ussuri: Avoid Apache conflict with haproxy on metal  https://review.opendev.org/c/openstack/openstack-ansible-os_keystone/+/82293216:20
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible-os_keystone stable/train: Avoid Apache conflict with haproxy on metal  https://review.opendev.org/c/openstack/openstack-ansible-os_keystone/+/82293316:20
kleininoonedeadpunk: I fixed it for me by using overrides: https://paste.opendev.org/show/811843/16:22
kleinideployment in staging is still running for W. will check afterwards16:22
kleinibtw Merry Christmas!16:22
noonedeadpunkthanks, Merry Christmas to you too! :)16:23
* noonedeadpunk having Christmas on 7th of January :p16:23
noonedeadpunkok, let me try to triage this the16:24
noonedeadpunk*then16:24
noonedeadpunkhuh, so we need service types for like every service we have...16:25
noonedeadpunkwould be great to merge work on that with implementing service roles...16:26
noonedeadpunkwill try to take care of that on Monday I believe16:27
noonedeadpunkthis probably won't be backportable though16:27
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible-galera_server master: Fix galera_force_bootstrap behaviour  https://review.opendev.org/c/openstack/openstack-ansible-galera_server/+/82291116:29
kleinibackporting is not necessary, as I have my solution with overrides16:44
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible-tests master: Add config_template collection  https://review.opendev.org/c/openstack/openstack-ansible-tests/+/82291517:12
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible-tests stable/victoria: Add config_template collection  https://review.opendev.org/c/openstack/openstack-ansible-tests/+/82293517:13
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible-os_nova stable/victoria: Fix usage of tags  https://review.opendev.org/c/openstack/openstack-ansible-os_nova/+/82293017:13
opendevreviewMerged openstack/openstack-ansible stable/xena: Update notes on how to enable TLS for VNC  https://review.opendev.org/c/openstack/openstack-ansible/+/82280917:49
opendevreviewMerged openstack/openstack-ansible-haproxy_server master: Describe in detail why external and internal keepalived ping addresses should be separated  https://review.opendev.org/c/openstack/openstack-ansible-haproxy_server/+/82291017:52
opendevreviewMerged openstack/openstack-ansible-os_nova master: Disable shell for nova when tunneled migration not used  https://review.opendev.org/c/openstack/openstack-ansible-os_nova/+/82283823:54
« Thursday, 2021-12-23 Index Saturday, 2021-12-25 »

Generated by irclog2html.py 2.17.3 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!