Wednesday, 2016-04-20

« Tuesday, 2016-04-19 Index Thursday, 2016-04-21 »
*** SiRiuS has joined #openstack-kolla00:04
*** SiRiuS has quit IRC00:05
*** banix has quit IRC00:13
*** timonwong has joined #openstack-kolla00:14
*** vhosakot has joined #openstack-kolla00:16
vhosakotsdake: I see you already pushed the PS... cool... https://review.openstack.org/#/c/308073/1/tools/setup_gate.sh00:17
patchbotvhosakot: patch 308073 - kolla - Workaround broken nodepool to unblock gate00:17
sdakeya seeme easy enough00:17
sdake idont know if its corrct or not00:17
vhosakotsdake: ah cool..00:17
sdakethe grep worked for me in my testing00:18
vhosakotsdake: cool...00:18
sdakeand it figures out valid ip addresses00:18
vhosakotsdake: I was thinking should we grep for ann non-empty files.. was working on that logic00:18
*** huikang has joined #openstack-kolla00:18
vhosakotann=all00:18
sdakeour gate scripts expect correct output from nodepool00:20
sdakethis seems like a reasonale expectation00:20
sdakeatm tho nodepool is putting out incorrect data00:20
vhosakotah ok00:20
*** sdake has quit IRC00:21
*** sdake has joined #openstack-kolla00:25
*** MarMat has quit IRC00:29
ccesario_vhosakot: ping ?00:30
vhosakotccesario_: po00:30
vhosakotpong00:30
ccesario_have you any idea or could you confirm if this happen with your deployment ? https://bugs.launchpad.net/kolla/+bug/157055000:30
openstackLaunchpad bug 1570550 in kolla "elasticsearch.url param point to host address when haproxy it is enabled" [Medium,In progress] - Assigned to Carlos Cesario (ccesario)00:30
*** ravig has quit IRC00:31
ccesario_I don 't  get collect or found logs to identify this problem00:31
*** ravig has joined #openstack-kolla00:31
ccesario_but I tested it 3 times and alwasy the problem happen when the env already is deployed00:32
ccesario_in mitaka and master branch00:33
*** banix has joined #openstack-kolla00:34
ccesario_vhosakot: ooops wrong bug link.... I meant this one https://bugs.launchpad.net/kolla/+bug/157143400:35
openstackLaunchpad bug 1571434 in kolla "Kibana does not allow create index when enabled in an already deployed system" [Undecided,New]00:35
ccesario_:P00:35
*** ravig has quit IRC00:37
*** sdake has quit IRC00:38
vhosakotccesario_: I reviewed both.. will give my comments in review00:38
*** sdake has joined #openstack-kolla00:38
vhosakotsdake: https://review.openstack.org/#/c/307686/ passed gate00:39
patchbotvhosakot: patch 307686 - kolla - Fix iscsid & tgtd sections in inventory samples00:39
ccesario_vhosakot: yes, I replied your comment00:39
ccesario_vhosakot: did you see the last comment ? https://review.openstack.org/#/c/306443/  http://paste.openstack.org/show/494353/00:41
patchbotccesario_: patch 306443 - kolla - Make Kibana elasticsearch.url param point to VIP w...00:41
*** huikang has quit IRC00:42
*** huikang has joined #openstack-kolla00:42
*** huikang has quit IRC00:47
*** haplo37 has joined #openstack-kolla00:49
vhosakotsdake: https://review.openstack.org/#/c/306662/ also did not see nodepool issue is gate...00:53
patchbotvhosakot: patch 306662 - kolla - Make Cinder access glance in round robin fashion00:53
vhosakotis the gate fixed already ?00:54
ccesario_time to sleep .... good night guys... cya tomorrow!!!00:54
vhosakotccesario_: night!00:54
*** ccesario_ has quit IRC00:55
sdakevhosakot it sort of looks like it - ovh passed00:56
vhosakotah ok..00:57
*** huikang has joined #openstack-kolla00:57
vhosakotbluebox did not see nodepool issue  https://review.openstack.org/#/c/307686/00:58
patchbotvhosakot: patch 307686 - kolla - Fix iscsid & tgtd sections in inventory samples00:58
sdakeinternap failed here http://logs.openstack.org/76/307876/1/check/gate-kolla-dsvm-build-centos-binary/15893b2/console.html#_2016-04-19_15_34_13_02000:58
sdakebluebox never has the nodepool issue because it has two interfaces00:58
sdakeinternap only has one00:58
sdakeovh failed here http://logs.openstack.org/76/307876/1/check/gate-kolla-dsvm-deploy-centos-binary/7b22446/console.html#_2016-04-19_15_46_38_35601:00
vhosakotyea saw that01:00
vhosakotsdake: I see you are checking nodes_private instead of node_private  in  nodes_private01:07
vhosakothttps://review.openstack.org/#/c/308073/1/tools/setup_gate.sh01:07
patchbotvhosakot: patch 308073 - kolla - Workaround broken nodepool to unblock gate01:07
*** dave-mccowan has joined #openstack-kolla01:07
*** huikang has quit IRC01:08
*** huikang has joined #openstack-kolla01:08
openstackgerritSteven Dake proposed openstack/kolla: Workaround broken nodepool to unblock gate  https://review.openstack.org/30807301:09
*** ayoung has joined #openstack-kolla01:09
sdakevhosakot better?01:11
vhosakotsdake: cool... node_private is good :) let us wait for gate results...01:11
*** huikang has quit IRC01:13
*** ccesario___ has quit IRC01:18
*** ccesario___ has joined #openstack-kolla01:19
*** weiyu has joined #openstack-kolla01:20
*** ravig has joined #openstack-kolla01:21
sdakevhosakot have you seen this bug https://bugs.launchpad.net/kolla/+bug/157161201:21
openstackLaunchpad bug 1571612 in kolla "Prechecks fails when checking if kolla_internal_vip_address is in the same network as network_interface on all nodes" [Medium,Triaged]01:21
vhosakotsdake: yes saw that01:23
*** weiyu has quit IRC01:25
*** rhallisey has quit IRC01:26
vhosakotsdake: this is what I came up with... to add all files in /etc/nodepool/ with valid IP's into ansible inventory...http://paste.openstack.org/show/494723/01:26
vhosakotsdake: we could try if your PS still sees nodepool issue in ovh01:27
vhosakotsdake: I will reply to that bug01:27
sdakevhosakot the infra folks said he dont want public copied to private if private contains dta01:28
sdakedta/data01:28
vhosakotah ok cool01:29
*** weiyu has joined #openstack-kolla01:29
sdakeso i dont think yur approach would work correclty01:29
sdakealsot he privaet file is used elsewhere in thta setup script01:29
sdakejust a fyi :)01:29
*** weiyu has quit IRC01:30
vhosakotah ok :)01:30
sdake335 jobs in the check queue01:32
sdakeman openstack is backed up01:32
* sdake wtb plunger01:32
vhosakotyes, zuul is slow01:33
sdakeits a capacity problem wrt not enogh vms to use01:33
sdake335 jobs = 1-2k vms01:33
sdakei think ther is about 1k vms available to openstack01:33
*** weiyu_ has joined #openstack-kolla01:34
vhosakotwow... 1k vms in gate01:34
sdakeclarkb says there are 500vms in the gate01:36
sdakebut they lost a whole slew of capacity in the last couple of days01:36
*** ravig has quit IRC01:53
*** ravig has joined #openstack-kolla01:53
*** ccesario___ has quit IRC01:55
*** ccesario___ has joined #openstack-kolla01:55
*** huikang has joined #openstack-kolla02:00
*** mwheckmann has joined #openstack-kolla02:01
*** tfukushima has joined #openstack-kolla02:07
*** unicell has quit IRC02:16
*** sdake_ has joined #openstack-kolla02:20
*** banix has quit IRC02:23
*** sdake has quit IRC02:23
*** huikang has quit IRC02:23
*** fragatin_ has quit IRC02:26
*** absubram has joined #openstack-kolla02:28
*** dave-mcc_ has joined #openstack-kolla02:31
*** dave-mccowan has quit IRC02:32
*** sdake_ has quit IRC02:36
*** tfukushima has quit IRC02:40
*** tfukushima has joined #openstack-kolla02:41
*** coolsvap has joined #openstack-kolla02:42
*** sekrit is now known as CIA02:44
*** fragatina has joined #openstack-kolla02:46
*** dave-mcc_ has quit IRC02:47
*** sdake has joined #openstack-kolla02:48
*** fragatina has quit IRC02:51
*** vhosakot has quit IRC02:55
*** yuanying has quit IRC02:56
*** vhosakot has joined #openstack-kolla03:01
coolsvapvhosakot, please have a look at comment in https://review.openstack.org/#/c/304783/4/docker/base/Dockerfile.j203:02
patchbotcoolsvap: patch 304783 - kolla - Update base dockerfile for formatting03:02
vhosakotcoolsvap: yep, I will remove my -1.. thanks for the reply :)03:03
coolsvapvhosakot, thanks!03:03
vhosakotcool03:03
coolsvapsdake, vhosakot can you please have a look at https://review.openstack.org/#/c/305611/03:04
patchbotcoolsvap: patch 305611 - kolla - Remove check for config files to verify MountFlags03:04
coolsvapwe need to get some conclusion on this03:04
sdakethe gate has an 8 hour backup03:04
coolsvapthere was one more bug opened regarding the same issue yesterdya03:04
coolsvapsdake, not approve but there is a discussion about the verification step03:05
coolsvapplease have a look once03:05
vhosakotcoolsvap: yes, will look at it03:05
coolsvapvhosakot, thanks03:06
vhosakotsdake: wow 8 hr backup... crazy03:06
sdakenot having looked at jeffrey's comments03:06
sdakei think the issue with this patch is you are not producing an & operation03:06
sdakeinstead you are looking for a speciic value03:07
sdakewhereas other mountflags may be desired03:07
*** fragatina has joined #openstack-kolla03:07
sdakeis it possible to and the output with 2^20 and if != 0 proceed with a successful check?03:07
*** ravig has quit IRC03:08
vhosakotcoolsvap: is  MountFlags=1048576  seen _always_ and _only_ when MountFlags is set to shared03:09
coolsvapyes03:09
sdakeyes but an't mountflags be multiple things?03:09
vhosakotcoolsvap: 20th bit from where ? LSB MSB ? from left, right ? :)03:09
coolsvapvhosakot, 20th bit from LSB, 2^20 = 104857603:10
sdakeso what if mountflgs have 19th bit st as well03:11
sdakethis check will fail03:11
coolsvapyes03:11
sdakeall we care is 20th bit is set03:11
sdakenot if othe rbits are set in addition03:11
coolsvapsdake, thats what my question is03:11
coolsvapwhat are we concerned about validating03:11
coolsvapthe steps which we have documented03:12
sdakethat the 20th bit is set03:12
coolsvapor combinations03:12
sdakewe dont care about other bits03:12
coolsvapif its not documented we shouldn't care03:12
sdakewhat ar ethe othe rbits that canbe set03:12
*** fragatina has quit IRC03:12
coolsvapi think there is shared|readonly thing03:12
coolsvapwhich Jeffrey mentioned03:12
vhosakotcoolsvap: 2^20 = 1048576  in binary is  10000000000000000000003:12
*** phuongnh has joined #openstack-kolla03:13
coolsvapvhosakot, yes03:13
vhosakotso, 20th bit is 1... yes03:13
sdakeso just logical and the output with 2^2003:13
sdakeand if that is greater then 003:13
sdakeyou know 20th bit is set03:13
sdakeand the check should pass03:13
coolsvapsdake, yes03:13
coolsvapwe verified it on both centos and ubuntu03:14
vhosakot1048571 is  11111111111111111011  which also has 20th bit 1... will 1048571 be seen anytime ?03:14
coolsvapand its in systemd code as well03:14
coolsvapvhosakot, no03:14
coolsvapif you have mountflags = shared03:14
coolsvapyou will have 1048576 in systemctl show docker03:14
coolsvapyou can verify03:15
sdakecan mountflags = shared|somehtingelse?03:15
vhosakothttps://www.freedesktop.org/software/systemd/man/systemd.exec.html#MountFlags=03:15
vhosakotI see it can be shared, slave or private03:16
coolsvapI am not sure where Jeffrey has used shared|readonly03:16
coolsvapthats what I need to confirm03:16
sdakertfming it ooks like http://www.dsm.fordham.edu/cgi-bin/man-cgi.pl?topic=systemd.exec&ampsect=503:17
sdakeonly shared, slae, or private are valid flags03:17
vhosakotright  coolsvap: so, if MountFlags is not 1048576, fail the prechecks as it is not shared.. is this logic correct ?03:18
sdakeyellow like your cowardly selves!03:18
vhosakothahahahahaha03:18
openstackgerritMerged openstack/kolla: Update .gitreview for stable/liberty  https://review.openstack.org/30806403:18
sdakeenders game is rockin03:19
coolsvapvhosakot, yes03:19
sdakeok lets do this03:19
sdakelets merge the patch as is03:19
sdakeand revert the other patch which checks this stuff03:19
sdakeand if someone comes along and says "I need more mountflags anded in"03:19
sdakewe can tackle that problem i na zstream03:19
sdakeno sense chsing ghosts03:19
coolsvapagree03:20
sdakethat is why we have zstreams03:20
vhosakotme too.. right now, kolla nneds shared...03:20
sdakeis a revert availlbe for the other stuff which is broken03:20
coolsvapwhich patch you want to revert?03:20
sdakenot sure daneyon_ said the prechecks fail on systemd because of some /etc/systemd check03:20
vhosakotyes, daneyon_ reported it I think.. 1 sec03:20
coolsvapyes03:20
sdakewhich doesnt exist on centos03:20
sdakethis heck is better03:21
coolsvapi marked it duplicate of current bug in progress03:21
sdakerather hen checking files on the filesystem lets check the results of the daemon03:21
coolsvapsdake, we can merge this03:21
coolsvapi will cherrypick and do required changes for mitaka03:21
sdakeand liberty03:21
coolsvapand liberty03:21
sdakelets reveret the other patch first03:21
coolsvapI think this is it03:22
coolsvaphttps://review.openstack.org/#/c/304931/03:22
patchbotcoolsvap: patch 304931 - kolla - check /e/s/s/docker.service in ubuntu (MERGED)03:22
openstackgerritSwapnil Kulkarni (coolsvap) proposed openstack/kolla: Revert "check /e/s/s/docker.service in ubuntu"  https://review.openstack.org/30812203:23
vhosakotcoolsvap: is this the bug  you are talking about ?  https://bugs.launchpad.net/kolla/+bug/157128103:24
openstackLaunchpad bug 1571281 in kolla " Remove check for config files to verify MountFlags" [Critical,In progress] - Assigned to Swapnil Kulkarni (coolsvap)03:24
openstackgerritSteven Dake proposed openstack/kolla: Revert "check /e/s/s/docker.service in ubuntu"  https://review.openstack.org/30812403:24
coolsvapvhosakot, yes03:24
coolsvapsdake, we both did revert03:24
coolsvapshould i abandon?03:25
sdakerockin huh :)03:25
sdakeya go ahead03:25
sdakeand ack my change03:25
sdakend vhosakot ack my revert03:25
sdakethen if there are no conflicts with your change we can merge it03:25
sdakeor you can rebase it03:25
vhosakotok.. cool03:25
*** tfukushima has quit IRC03:26
*** tfukushima has joined #openstack-kolla03:27
vhosakotcoolsvap: we're reverting becasue /lib/systemd/system/docker.service does not always exist ?03:27
sdake /etc/* doesent always exist03:28
vhosakotoh ok03:28
vhosakotack'ed the revert03:29
coolsvapvhosakot, yes03:31
coolsvapI and Jeffrey discussed we need to have some way which does not rely on configuration files03:31
coolsvapwe also tested systemctl cat docker03:31
coolsvapbut it picks the configuration files alphabetically which cannot be validated for the value in system03:32
vhosakotcool03:33
*** weiyu_ has quit IRC03:34
*** haplo37 has quit IRC03:39
*** ayoung has quit IRC03:40
*** weiyu_ has joined #openstack-kolla03:42
sdakejust tot be clear, prechecks fails 100% on centos because of  htis issue coolsvap ?03:48
*** yuanying has joined #openstack-kolla03:48
coolsvapsdake, yes03:49
coolsvaponce i update docker, the MountFlag is again set to slave03:49
coolsvapalthough its set to shared in kolla.conf in /e/s/s03:50
vhosakotcoolsvap: does /lib/systemd/system/docker.service exist 100% of the time ?03:58
coolsvapvhosakot, we dont need to worry about /lib/systemd/system/docker.service03:59
vhosakotcoolsvap: checking for MountFlags=1048576 in the output of "systemctl show docker" is good for both files ?  /lib/systemd/system/docker.service or if it is overridden by /etc/systemd/system/docker.service ?04:01
coolsvapvhosakot, yes04:01
vhosakotcoolsvap: got it... so, once the revert is merged, just rebase, and merge the PS that checks MountFlags=104857604:02
coolsvapvhosakot, yes04:02
vhosakotcool04:03
vhosakotsdake: your setup_workaround_broken_nodepool PS worked fine.. gate results came out for ovh and internap..04:04
vhosakotsdake: do both ovh and internap have the nodepool issue ?04:04
sdakenice lets get it acked04:04
sdakeinternap only i think04:04
daneyon_vhosakot sdake Latest bug I hit trying to ansible deploy: https://bugs.launchpad.net/kolla/+bug/157239504:04
openstackLaunchpad bug 1572395 in kolla "Ansible Play Fail: keystone | Creating admin project" [Undecided,New]04:04
vhosakotdaneyon_: json error ?04:04
sdakedaneyon_ try https://review.openstack.org/#/c/307876/04:05
patchbotsdake: patch 307876 - kolla - Disable tty for keystone register script04:05
sdakeare you cleaning up between fialed deployed?04:05
sdakedeploys?04:05
sdakecleanup-containers04:05
sdakecleanup-images -f04:05
daneyon_i'm using ubuntu04:06
vhosakotdaneyon_: so, all the images build fine now when you rebuild ?04:06
sdakeare you using mater or stable/mitaka?04:06
sdakedaneyon_ are you using a registry?04:07
daneyon_vhosakot yes, using ubuntu and when I build image-by-image. not sure, maybe my lab has shotty Internet connectivity. sometimes I have to try building an image multiple times for the build to complete successfully.04:08
daneyon_yes, local registry.04:08
sdakeok run cleanup-containers04:08
sdakerun cleanup-images04:08
sdakewith -f flag04:09
*** fragatina has joined #openstack-kolla04:09
sdakeapply that patch linked above04:09
sdakeyou can click cherry-pick from the download menu04:09
sdakeand just paste it in04:09
sdakethen try a deploy04:09
daneyon_ok04:09
sdakeare you deploying on a centos os?04:09
daneyon_ubuntu04:10
sdakeyou wont haveto rebuild since your images are in the registry04:10
sdakejust apply patch after cleanup and kolla-ansible deploy04:10
daneyon_i can not get all the req's centos images to build... filed a bug on it with the dets04:10
sdakeone thing, run pip show olla04:10
sdakepip show kolla04:10
vhosakotdaneyon_: since rebuild works and since intermittent network issues causing kolla build breakage is not issue in kolla code, can I move https://bugs.launchpad.net/kolla/+bug/1567657 to invalid for now, and can you re-open it if you see the issue again.. let me know what yout hink ?04:10
openstackLaunchpad bug 1567657 in kolla mitaka "Build Fails Using Trunk" [Critical,Confirmed]04:10
sdakealso please use stable/mitaka ;)04:11
sdakedaneyon_ run pip show olla04:11
daneyon_sdake, so stable/mitaka plus the ^ patch04:11
sdakekolla04:11
sdakeright04:11
sdakebut show me pip show kolla first04:12
sdakeneed tom kae sure you didn't pip install kolla04:12
sdakeas  the instructions recommend04:12
sdakethat needs to go from the documentation04:12
sdakeit causes more trobule then its worth04:12
daneyon_sdake https://gist.github.com/danehans/b24c0b57b8e01c0f34359f9c0b52d4f504:12
vhosakotsdake: should I recheck nodepool PS ?04:12
sdakevhosakot nah lets just merge it04:12
sdakedaneyon_ pip unisntall koll04:13
vhosakotcool04:13
sdakea04:13
sdakework from the olla owrking directory04:13
*** fragatina has quit IRC04:13
daneyon_sdake even though i pip installed kolla. i have symlinked /usr/local/share/kolla -> /root/kolla/ (git dir)04:15
sdakedont do that!!04:15
sdakeremove symlink04:15
sdakepip uninstall04:15
sdakework out of the git woring directory04:15
sdakepip install kolla is meant for peopel that don't plan to ever upgrade their koll install04:16
vhosakotdaneyon_: let me know if I can move https://bugs.launchpad.net/kolla/+bug/1567657 to invalid and you can re-open it if you see the issue again ?04:20
openstackLaunchpad bug 1567657 in kolla mitaka "Build Fails Using Trunk" [Critical,Confirmed]04:20
sdakenothign we can do about flakey mirrors04:20
sdakesay i need to go eat04:20
sdakei'll bbl04:20
daneyon_vhosakot ok04:25
vhosakotdaneyon_: thanks04:25
daneyon_yw04:25
*** fragatina has joined #openstack-kolla04:26
*** timonwong has quit IRC04:28
*** fragatina has quit IRC04:31
*** timonwong has joined #openstack-kolla04:33
*** sdake has quit IRC04:36
openstackgerritMerged openstack/kolla: Revert "check /e/s/s/docker.service in ubuntu"  https://review.openstack.org/30812404:42
daneyon_vhosakot or sdake kolla-build command is now hosed after pip uninstall, change to stable/mitaka and cherry-picked the keystone patch ^. See: https://gist.github.com/danehans/b24c0b57b8e01c0f34359f9c0b52d4f504:42
vhosakotyes, kolla-build will be removed after pip uninstall04:43
openstackgerritSwapnil Kulkarni (coolsvap) proposed openstack/kolla: Remove check for config files to verify MountFlags  https://review.openstack.org/30561104:45
*** weiyu_ has quit IRC04:46
*** coolsvap is now known as coolsvap|away04:47
*** tfukushima has quit IRC04:50
*** mwheckmann has quit IRC05:01
*** daneyon has joined #openstack-kolla05:01
*** daneyon_ has quit IRC05:04
*** sdake has joined #openstack-kolla05:09
sdakeyo05:09
vhosakotyo!05:25
*** tfukushima has joined #openstack-kolla05:29
sdakeany progress on meeges05:29
vhosakotmeeges ?05:32
*** weiyu_ has joined #openstack-kolla05:32
sdakemerges05:32
vhosakotyep, reviewing PS's in queue now05:34
sdakelet me grab my laotoo05:35
*** sdake_ has joined #openstack-kolla05:37
*** daneyon_ has joined #openstack-kolla05:37
sdake_i notice alot of gatte failures on ubuntu05:38
sdake_http://logs.openstack.org/73/308073/2/check/gate-kolla-dsvm-deploy-ubuntu-source/2864e49/console.html#_2016-04-20_03_45_27_98205:38
sdake_we need to fix all the gate failures05:38
sdake_after stable/liberty and stable/mitaka are tagged05:38
vhosakotok cool05:39
*** daneyon has quit IRC05:40
sdake_our prioriities from my perspetive are05:41
sdake_1. tag mitaka on 21st05:41
sdake_2. tag 1.1.0 as soon as feasible05:41
sdake_3. resolve all gate failures so our gates are passing consistently05:41
sdake_3. implement ipv6 support in kolla05:41
sdake_4. implement plugin support for atleast the compute kit projects05:42
sdake_5. port to ansible 2.005:42
*** weiyu_ has quit IRC05:43
sdake_6. make kola a powerful tool for -operating- openstack clouds05:44
vhosakotre: 4... does nova have plugins ?05:45
sdake_yup05:45
kklimondasdake_: does 4 mean support for neutron plugins?05:46
sdake_neutron cinder and horizon are theo nes i'm mostly concerned with05:46
vhosakotsdake_: like hypervisors - kvm, qemu, xen... ?05:46
sdake_we implement those  3 hypervisors05:46
sdake_i am not sure what the nova plugins do05:47
vhosakotyes.. i can see neutorn plugins for $05:47
vhosakotsdake_: is there a link for nova plugins ?05:47
vhosakot405:47
sdake_you would have to look at the code05:47
vhosakotah ok05:47
*** weiyu_ has joined #openstack-kolla05:47
sdake_we need to get dneyon unblocked so he can get magnum functinoal05:48
kklimondaor rather drivers, I've started looking into deploying contrail with kolla, and was wondering if you have any plans regarding that, or is it getting out of scope of kolla05:48
sdake_what is contrail05:48
sdake_one of our objectives is to deploy the big tent05:48
kklimondaneutron plugin/driver, replacement for ovs05:49
sdake_`is that like ovn?05:49
sdake_atm we implement ovs and linuxbridge05:50
sdake_that covers 90% of the deployments05:50
sdake_haven't heard of contrail05:50
vhosakotsdake_: is daneyon_ blocked by https://bugs.launchpad.net/kolla/+bug/1551992 ?05:50
openstackLaunchpad bug 1551992 in kolla "Magnum failed to create trustee" [Critical,In progress]05:50
sdake_but the more the marrier05:50
sdake_vhosakot he is going to fix that05:50
sdake_he is blocked because he ca't deploy kolla05:50
kklimondayes, I think it's similar to ovn (haven't looked much into ovn though)05:50
sdake_is it provided a a driver in the openstack git namespace?05:51
vhosakotsdake_: ok05:51
sdake_moredirctly is it under neutron governance?05:51
sdake_i would like to implement support for all vednor-specific pugins05:51
*** rstarmer has joined #openstack-kolla05:54
*** yuanying_ has joined #openstack-kolla05:57
*** yuanying has quit IRC05:58
kklimondaI don't think they are currently using openstack infrastructure, and they seem to be lagging behind with mitaka - Juniper in general seems to have problem grasping concept of building a community around that project.05:58
nihilifersdake: kklimonda: from what i know, contrail provides neutron plugin (which should be fine to just put into separate container and run), but it also provides nova-vif driver, which should be installed alongside with nova-libvirt06:01
nihiliferto run this nova-vif driver in kolla, we should find some way to install 3rd party things in nova-libvirt container06:02
nihiliferhttps://github.com/Juniper/contrail-nova-vif-driver06:02
*** fragatina has joined #openstack-kolla06:02
nihilifersome jinja2 if conditional / macro / whatever should do the job imo06:03
nihiliferawww, s/nova-libvirt/nova-compute/g06:05
kklimondacontrail runs a tons of services, 4 extra databases, plugin that replaces ml2, and a kernel module for compute nodes that does routing etc.06:05
*** weiyu_ has quit IRC06:05
kklimondaand yes, apparently a vif drive too06:06
kklimondadriver*06:06
*** fragatina has quit IRC06:07
nihiliferyep, the kernel module couldn06:07
*** weiyu_ has joined #openstack-kolla06:07
nihilifer't be installed by kolla in any way06:07
kklimondahow is openvswitch module provided? as part of host system?06:08
nihiliferoh, sorry, it looks like ovs is installed in kolla container06:09
nihiliferand modprobed in start script06:09
nihiliferso sorry, that seems to be doable too with contrail kernel module06:09
nihiliferhttps://github.com/openstack/kolla/blob/master/docker/openvswitch/openvswitch-base/Dockerfile.j2 https://github.com/openstack/kolla/blob/master/docker/openvswitch/openvswitch-vswitchd/extend_start.sh06:10
kklimondaI'm actually surprised you can load kernel modules from inside of containers. I guess it works though, being same system etc.06:11
sdake_https://drive.google.com/file/d/0B_yCSDGnhIbzTDZTN1lwT3A1M1E/view06:11
sdake_so contrail is maintained outside the openstack namespace in git?06:16
sdake_to be considered for kolla i think it makes sense for the project to use openstack namespace and ci system06:17
sdake_s06:17
nihiliferyes, it's maintained on github.com/Juniper06:19
nihiliferand review.opencontrail.org06:19
nihiliferso they have their own gerrit, own CI etc.06:19
*** weiyu_ has quit IRC06:22
nihiliferif we have a principle to not support things outside openstack infra, then the only way to support things like contrail is to implement possibility of making plugins for kolla, both with own dockerfiles and possibility of overriding the existing ones - but i have no concrete idea yet how such thing may be implemented06:22
*** weiyu_ has joined #openstack-kolla06:28
sdake_nihilifer asalkeld heads up posting to mailing list about status of kolla-mesos06:36
sdake_its t-3 days to summit and people need to know the truth06:36
asalkeldsure06:39
*** mikelk has joined #openstack-kolla06:40
*** weiyu_ has quit IRC06:40
sdake_i have made a strong attempt not to throw you or your employer under the bus in the procees06:40
sdake_tell me if I failed at that :)06:41
sdake_the main reason is lots of people arecoming at me with requeests for kolla-kubeernetess06:41
sdake_with smaller team sizes06:41
*** weiyu_ has joined #openstack-kolla06:42
sdake_as in 1 or 2 people06:42
sdake_anyway I had hpoed your emploeyr could have done this gracefully oon the ml but that didn't happen06:42
sdake_so it is what it is06:43
sdake_i'm tired of hiding the truth - and have hidden it for far too long for us to qualify as an open community06:43
asalkeldsdake_: no worries,all good06:45
*** yuanying_ has quit IRC06:47
*** yuanying has joined #openstack-kolla06:48
*** weiyu_ has quit IRC06:53
*** banix has joined #openstack-kolla07:04
*** coolsvap|away has quit IRC07:06
sdake_asalkeld response looks good07:10
sdake_asalkeld your welcome to stay on the cr team unless your reviews drop off in which cae i'll either send a email similar to harm's or you can step down ;)07:11
asalkeldok07:11
sdake_same story goes for your peers07:12
sdake_and nihilfer was core before mirantis really got invvolved in kolla so i expect he may still continue on07:12
sdake_we ren't making any immediate changes to the cr team as a result of this is the bottom line07:14
sdake_if you decide to sty involved with kolla (which it doesn't sound like from your response) then your morthen welcome to stay invovled :)07:15
sdake_the cr team trusts you or they wouldnt have voted you in in the first place07:15
sdake_i hope we can keep yo uaround, but with heat, i made a clean break - undersstand if that is your approach07:16
*** coolsvap|away has joined #openstack-kolla07:19
*** vhosakot has quit IRC07:21
openstackgerritSteven Dake proposed openstack/kolla-mesos: Deprecate kola-mesos in the README  https://review.openstack.org/30816507:23
openstackgerritSteven Dake proposed openstack/kolla-mesos: Deprecate kolla-mesos in the README  https://review.openstack.org/30816507:23
*** mimizone has quit IRC07:24
*** mimizone has joined #openstack-kolla07:25
*** athomas has joined #openstack-kolla07:28
*** Serlex has joined #openstack-kolla07:32
sdake_asalkeld will you be at summit?07:32
*** tfukushima has quit IRC07:35
*** shardy has joined #openstack-kolla07:36
asalkeldsdake_: yip07:37
*** tfukushima has joined #openstack-kolla07:37
sdake_cool well hope to see you there - iv'e got  a super packed schedule07:37
sdake_but we can likely catch a few beers :)07:37
*** weiyu_ has joined #openstack-kolla07:40
*** weiyu_ has quit IRC07:40
*** weiyu_ has joined #openstack-kolla07:43
*** banix has quit IRC07:48
*** yuanying has quit IRC07:49
*** yuanying has joined #openstack-kolla07:52
*** tfukushima has quit IRC07:52
*** tfukushima has joined #openstack-kolla07:56
*** gfidente has joined #openstack-kolla07:59
*** yuanying has quit IRC08:05
*** mbound has joined #openstack-kolla08:07
*** coolsvap|away is now known as coolsvap08:15
*** jmccarthy has joined #openstack-kolla08:18
*** rstarmer has quit IRC08:38
*** shardy has quit IRC08:38
*** shardy has joined #openstack-kolla08:38
ccesario___morning guys _:)08:45
coolsvapccesario, morning :)08:50
*** stvnoyes has joined #openstack-kolla08:55
*** pmisiak has joined #openstack-kolla09:45
*** athomas has quit IRC09:54
*** dougs has joined #openstack-kolla09:55
*** mbound has quit IRC09:59
*** athomas has joined #openstack-kolla10:00
*** mbound has joined #openstack-kolla10:02
openstackgerritjackning proposed openstack/kolla: Added webroot config to dashboard  https://review.openstack.org/30692810:02
*** mbound has quit IRC10:04
*** mbound has joined #openstack-kolla10:05
*** dougs has quit IRC10:13
*** dougs has joined #openstack-kolla10:14
*** dougs has quit IRC10:16
*** dougs has joined #openstack-kolla10:18
*** mbound has quit IRC10:19
*** dougs1 has joined #openstack-kolla10:19
*** mbound has joined #openstack-kolla10:20
*** dougs has quit IRC10:21
*** ccesario___ has quit IRC10:23
*** mbound has quit IRC10:23
*** mbound has joined #openstack-kolla10:25
*** weiyu_ has quit IRC10:28
*** dougs has joined #openstack-kolla10:37
*** dougs1 has quit IRC10:37
*** weiyu has joined #openstack-kolla10:40
*** dougs has quit IRC10:43
*** dougs has joined #openstack-kolla10:44
*** dougs has quit IRC10:45
*** dougs has joined #openstack-kolla10:46
*** gfidente has quit IRC10:46
*** weiyu has quit IRC10:49
*** weiyu has joined #openstack-kolla10:52
*** dougs has quit IRC10:55
*** dougs has joined #openstack-kolla10:55
*** ccesario___ has joined #openstack-kolla10:57
*** cfarquhar has quit IRC10:59
*** dougs1 has joined #openstack-kolla10:59
*** cfarquhar has joined #openstack-kolla11:00
*** cfarquhar has joined #openstack-kolla11:00
*** dougs has quit IRC11:01
*** weiyu has quit IRC11:07
*** dougs1 has quit IRC11:07
*** dougs has joined #openstack-kolla11:07
*** mikelk has quit IRC11:08
*** mikelk has joined #openstack-kolla11:09
*** dougs has quit IRC11:17
*** dougs has joined #openstack-kolla11:17
*** dougs has left #openstack-kolla11:19
*** weiyu has joined #openstack-kolla11:25
*** mlima has joined #openstack-kolla11:28
*** mlima has quit IRC11:36
*** rhallisey has joined #openstack-kolla11:39
*** phuongnh has quit IRC11:44
*** gfidente has joined #openstack-kolla11:46
*** SiRiuS has joined #openstack-kolla11:50
*** weiyu has quit IRC11:53
*** dwalsh has joined #openstack-kolla12:10
*** eal has joined #openstack-kolla12:17
*** mlima has joined #openstack-kolla12:19
*** tfukushima has quit IRC12:32
*** prithiv has joined #openstack-kolla12:35
*** coolsvap has quit IRC12:37
*** dave-mccowan has joined #openstack-kolla12:46
*** mwheckmann has joined #openstack-kolla12:47
*** salv-orlando has joined #openstack-kolla12:48
*** necuser has joined #openstack-kolla13:00
*** wznoinsk has joined #openstack-kolla13:01
*** wznoinsk has quit IRC13:02
*** wznoinsk has joined #openstack-kolla13:07
*** timonwong_ has joined #openstack-kolla13:16
*** ntpttr has quit IRC13:18
prithivhas anyone faced issue with heka container in multi node13:19
*** timonwong has quit IRC13:19
sdake_morning13:24
sdake_wtb acks https://review.openstack.org/#/c/308073/213:24
patchbotsdake_: patch 308073 - kolla - Workaround broken nodepool to unblock gate13:24
sdake_pbourke ?13:25
sdake_any other core reviewers around?13:25
mlimamorning sdake_13:25
sdake_morning dave-mccowan13:28
dave-mccowangood morning sdake_13:28
sdake_hey mlima13:29
mlimahey :013:29
mlima:)13:29
sdake_prithiv what issue are you having13:30
sbezverksdake_ morning, tried privilged: true for swift-rsyncd no go, now changing kolla_docker for capabilities13:30
*** ravig has joined #openstack-kolla13:31
sdake_sbezverk https://docs.docker.com/engine/reference/run/#runtime-privilege-and-linux-capabilities13:31
prithivunix socket error for my other compute node while running heka container13:31
prithivafter that all other tasks are skipping13:33
sdake_sbezverk its hard to tll rom the docker documentation if all capabilities are passed when --privieged is used13:39
mlimasdake_, ?13:40
sdake_prithiv could you paste the socket error13:40
openstackgerritMerged openstack/kolla: Workaround broken nodepool to unblock gate  https://review.openstack.org/30807313:42
sbezverksdake_ I changed kolla-docker and now I see net-bind capability is set for that container, but still no go, I guess it gets blocked by --security-opt13:43
sdake_are yu runnign with seinux?13:43
*** necuser has quit IRC13:43
sdake_did you add net-cap-sysadmin as the capability?13:43
sbezverksdake_ NET_BIND_SERVICEBind a socket to internet domain privileged ports (port numbers less than 1024).13:44
sdake_sbezverk if you have added capabitlies to kolla_docker lets get that merged13:44
sdake_you need netp-cap_sysdin to bind under 102413:44
sbezverksdake_ not according to doc13:44
sdake_run man capabilities on yur linux host13:44
sbezverksdake_        CAP_NET_BIND_SERVICE13:45
sbezverk              Bind a socket to Internet domain privileged ports (port numbers less than 1024).13:45
sdake_what is net-cpa-sysadmin13:45
sbezverksdake_ does not seem to be related:        CAP_SYS_ADMIN13:46
sbezverk              * Perform a range of system administration operations including: quotactl(2), mount(2), umount(2), swapon(2), swapoff(2), sethostname(2), and setdomainname(2);13:46
prithivfailed: [silpixa00394078] => {"changed": true, "failed": true}13:46
prithivmsg: APIError(HTTPError(u'500 Server Error: Internal Server Error for url: http+docker://localunixsocket/v1.23/images/create?tag=2.0.0&fromImage=10.237.214.35%3A4000%2Fkollaglue%2Fubuntu-source-heka',),)13:46
sdake_prithiv need to see your docker logs please13:46
sdake_if your on a system with sysemd run journalctl -xe > z13:46
sdake_and paste z13:46
sbezverksdake_ I will dig into --security-opt=seccomp=unconfined I think "default seccomp profile" blocks me here13:47
sdake_sbezverk are you running with selinux enabled?13:47
sbezverksdake_ permissive mode13:48
sdake_sbezverk what error do y uoget back from the rsync process13:48
sbezverksdake_ it fails to bind to the socket13:49
sbezverkbut when I used setcap it worked13:49
sbezverksdake_ it must be docker blocikng it13:49
*** ayoung has joined #openstack-kolla13:50
sdake_are you sure your proceess has the right capbilities nside the container?13:51
sdake_i'd verify that irst13:51
openstackgerritSteven Dake proposed openstack/kolla: Workaround broken nodepool to unblock gate  https://review.openstack.org/30834013:52
openstackgerritSteven Dake proposed openstack/kolla: Workaround broken nodepool to unblock gate  https://review.openstack.org/30834113:52
sbezverksdake_ yes, I found how to setup sec profile for docker, will try it and et you knwo13:52
*** prithiv has quit IRC13:54
sdake_the thing is if setpcap worked i dont understand why passing capabilities wouoldn't work13:55
*** absubram has quit IRC13:56
sdake_sbezverk how did you verify your set cap kolla_docker module worked properly?14:00
sbezverksdake_ I inspect the container14:02
sbezverkand it tells me exactl options used for thisspecific continer14:02
sbezverksdake_ 2 minutes I am about to test with sec profile14:03
sdake_options !+ capabiltieis the process has runnign in the container14:03
sdake_ok14:03
*** prithiv has joined #openstack-kolla14:05
*** stvnoyes has left #openstack-kolla14:10
*** v1k0d3n has joined #openstack-kolla14:12
*** ravig has quit IRC14:16
*** mbound has quit IRC14:20
*** rafiki has joined #openstack-kolla14:21
sdake_prithiv the docker logs would be helpful on a 500 error14:22
prithivyes. i am building images so i will have to see the logs after i deploy. will update you in a while14:22
sdake_ok14:24
*** jmccarthy1 has left #openstack-kolla14:25
*** prithiv has quit IRC14:28
*** rafiki_ has joined #openstack-kolla14:29
*** inc0 has joined #openstack-kolla14:30
inc0hey, good mornign14:30
*** absubram has joined #openstack-kolla14:32
sbezverksdake_  man I set up capabilities and security profile still it fails http://paste.openstack.org/show/494831/14:38
sdake_run a process in the container to print out the capabilities14:39
sdake_make sure the process is actuallyg ettting thecapabilites you set14:39
sdake_capsh --print14:39
sbezverksdake_ cannot it is flapping14:40
sdake_add it at start of extend_start.sh for the container14:40
sdake_the nuse docker logs to display the output14:41
sbezverksdake_ ok doing it14:41
sdake_dropping off vpn brb14:42
*** sdake_ has quit IRC14:42
*** sdake_ has joined #openstack-kolla14:45
*** athomas has quit IRC14:47
*** secman has joined #openstack-kolla14:48
*** ravig has joined #openstack-kolla14:48
sbezverksdake_ changes in kolla_docker, should I push them for review or drop?14:49
sdake_once they are working keep them of coursse14:49
sdake_we need capability setting14:49
sbezverksdake_ they are wroking :-) just not helping in this specific case14:50
sdake_what does capsh --print show?14:50
sbezverksdake_ still waiting for rebuild to complete14:50
*** athomas has joined #openstack-kolla14:52
sdake_[sdake@minime-03 swift-rsyncd]$ docker run -it --cap-add=NET_BIND_SERVICE 192.168.1.103:4000/kollaglue/centos-binary-swift-rsyncd:2.0.0 bash14:52
sdake_[root@1cdad6c423d3 /]#14:52
sdake_i would expect to be logged in as the swift user after this operation14:52
*** ravig has quit IRC14:53
sdake_swift user has nologin set14:54
sdake_this is odd when i run the swift rsync contner it doesnt drop root14:56
sdake_which is not what i would expect14:56
sbezverksdake_ you are on centos right?14:57
sdake_yup14:58
sdake_mybe my rsyncd is old14:58
sbezverksdake_ in this case docker was built with setcap command14:58
*** ravig has joined #openstack-kolla14:59
*** mlima has quit IRC15:00
*** prithiv has joined #openstack-kolla15:00
sdake_yo inc015:01
sdake_i got your backportwork unblocked15:01
openstackgerritMichal Jastrzebski (inc0) proposed openstack/kolla: Making Mitaka deploying liberty  https://review.openstack.org/30839015:04
inc0really sdake_ ?;)15:04
sdake_really15:04
sdake_go wild15:04
inc0look at patchset15:04
inc0I just submitted15:04
inc0like a minute ago15:04
*** ravig has quit IRC15:06
*** ravig has joined #openstack-kolla15:07
*** ravig has quit IRC15:08
*** mlima has joined #openstack-kolla15:14
sbezverksdake_ http://paste.openstack.org/show/494833/15:14
sdake_it ooks like yur runnign with privielged15:15
sbezverksdake_ I think there is something specific to rsyncd binary15:16
sbezverkwhich is fixed either by running as root or with setcap on the actual binary file15:17
sdake_run it via strace15:23
*** ravig has joined #openstack-kolla15:23
inc0sdake_, we have bug for backport? oO15:24
sdake_file one15:24
sdake_if we have one we can dupe it15:24
*** pmisiak has quit IRC15:25
*** dwalsh has quit IRC15:25
*** salv-orlando has quit IRC15:26
*** Serlex has quit IRC15:27
*** pbourke has quit IRC15:27
*** pbourke has joined #openstack-kolla15:28
sdake_ secure-keep-caps: no (unlocked)15:31
sdake_what is this sbezverk ?15:31
openstackgerritMichal Jastrzebski (inc0) proposed openstack/kolla: Changes needed to deploy liberty with mitaka code  https://review.openstack.org/30839015:32
*** falanx has joined #openstack-kolla15:32
*** LiftedKilt has joined #openstack-kolla15:33
falanxcan Kolla use calico or opencontrail as its neutron plugin?15:33
sbezverksdake_ I think it is good because I have the same on root user15:33
sdake_falanx atm no15:33
inc0but afair we had some mechanism to provide your own plugin15:34
inc0let me check15:34
sbezverksdake_ what about apparmor? I do not have much experience with this, do you know how to disable it on a container unconditionally?15:37
sdake_your on ubuntu?15:38
sdake_run dmesg15:38
sdake_it will tell you if apparmor is complaining15:38
sdake_outside teh container15:38
inc0yeah, we can't really deploy contrail of calico now15:38
sbezverksdake_ the issue with setcap is ONLY on ubuntu and I got strace, http://paste.openstack.org/show/494839/15:39
LiftedKiltinc0: are contrail/calico on the roadmap to add support for?15:39
sbezverksdake_ despite all permissions it fails to bind to a socket :-(15:39
inc0don't we have meeting now guys?15:40
sdake_EPRM?15:40
sdake_meeting is in 50 minuts inc015:40
inc0LiftedKilt, we need to figure out different plugins, and that is on roadmap15:40
inc0probably won't write code to deploy calico (although I like it)15:41
inc0but will make it easier15:41
sbezverksdake_ we can rollback swift-rsyncd to use root until we figure out15:41
inc0with a bit of hacking you could do this now I think15:41
sbezverkor Ubuntu fixes aufs attributes15:41
*** ravig has quit IRC15:43
sdake_sbezverk can i see the full strace output please15:44
LiftedKiltinc0: ok thanks15:44
LiftedKiltinc0: unfortunately calico/contrail is an absolute must for us15:45
inc0LiftedKilt, let me think15:45
sbezverksdake_ I pasted it! did it get trimmed?15:45
inc0I would expect to make it possible to deploy right now with a bit of legwork15:45
sbezverksdake_ it is here and it is complete: http://paste.openstack.org/show/494839/15:46
inc0LiftedKilt, soo15:48
inc0as for calico15:48
inc0while we don't have calico in containers15:48
inc0if you run this one on host, it might just work15:48
inc0contrail might be trickier15:50
LiftedKiltrunning calico outside a container is fine, I just want to make sure the integration is tight enough that it stays manageable15:50
sdake_bind(3, {sa_family=AF_INET, sin_port=htons(873), sin_addr=inet_addr("192.168.80.25")}, 16) = -1 EACCES (Permission denied)15:51
inc0so if you run neutron services inside container, that shouldn't affect calico at all15:51
sbezverksdake_ it is not supposed to hapen as we allow binding to lower ports15:51
inc0and you can override your configs with kolla now15:51
*** mikelk has quit IRC15:52
inc0as for contrail15:52
LiftedKiltinc0: you're saying to just integrate calico with docker itself?15:52
inc0LiftedKilt, no15:52
inc0so we don't run docker networking15:52
inc0we run host networking15:52
LiftedKiltinc0: ok15:52
sdake_       EACCES The address is protected, and the user is not the superuser.15:53
inc0neutron has access to host network stack in it's full capability15:53
inc0so it won't be any different than running it on host from network perspective15:53
inc0therefore calico shouldnt be affected15:53
sdake_http://man7.org/linux/man-pages/man2/bind.2.html15:53
sbezverksdake_ but we have this capability: cap_net_bind_service we do not need to superuser15:53
inc0you'd need to deploy calico manually ofc but well15:54
*** ccesario___ has quit IRC15:54
*** ccesario___ has joined #openstack-kolla15:54
inc0as for contrail, I never deployed contrail so it's hard to tell how much work would be involved15:54
inc0we dont install opencontrail in our containers, but that one is doable15:54
LiftedKiltsorry yeah when I asked about contrail I primarily meant opencontrail15:55
inc0well, same thing, we don't install it15:55
inc0but you can15:55
LiftedKiltright15:55
inc0so when you build your containers15:55
inc0you can provide kolla-build -I your_dockerfile_part15:56
inc0it will inject contents of your_dockerfile_part to our dockerfile15:56
LiftedKiltI'm definitely more interested in calico than opencontrail - I'll go back and talk to the calico team and see what they think about creating a playbook to complement kolla15:56
inc0so if you add contrail code installation15:56
dasm\15:56
inc0LiftedKilt, for newton we have plugins on roadmap and fairly high on it15:56
inc0we want kolla deployment code to be pluggable15:57
inc0so you could hack around it for liberty and mitaka and make it proper in newton15:57
*** mark-casey1 has joined #openstack-kolla15:57
inc0I would be happy to have calico plugin working with kolla:)15:57
LiftedKilthow are you guys doing with nova plugins?15:57
inc0kvm15:58
LiftedKiltin order to make a go of this we need to get lxd working15:58
inc0didn't do anything besides libvirt15:58
*** salv-orlando has joined #openstack-kolla15:58
inc0haha running lxd inside docker?;)15:58
inc0you dawg I heard you like containers15:58
LiftedKiltinc0: haha15:59
inc0again, doable and hackable around15:59
inc0would like to see it working;)15:59
inc0thing is, if we support in kolla every possible way to deploy openstack, it will be hell to maintain15:59
inc0having multiple distros is hard enough16:00
sdake_sbezverk reading kernel soruce tree gie me a bit16:00
inc0however what we can and will do is to enable pluggable architecture16:00
inc0LiftedKilt, it you want we have session in Austin about that, so your input would be values16:00
inc0valued16:00
sbezverksdake_ sure16:01
inc0in any case16:01
LiftedKiltinc0: unfortunately we won't be able to make it to Austin this time16:01
sbezverksdake_ meanwhile I will git review changes to kolla-dicker16:01
LiftedKiltinc0: yeah I understand the code sprawl hell16:01
inc0worst case scenerio is that you write your own ansible part16:01
inc0at least part of it16:01
inc0docker is really only runtime of services, we didn't focus on separating containers too much16:02
inc0so everything should be doable with a bit of legwork16:02
inc0and we're here to help16:02
mark-casey1anyone seen this? multinode ubuntu launching a single VM gives libvirtError: Failed to connect socket to '/var/run/libvirt/virtlogd-sock': No such file or directory http://paste.openstack.org/show/494845/16:03
mark-casey1googling lead me to https://review.openstack.org/#/c/279910/16:04
patchbotmark-casey1: patch 279910 - kolla - Use ubuntu Mitaka repo (MERGED)16:04
*** vhosakot has joined #openstack-kolla16:05
LiftedKiltinc0: cool - I'll keep playing with it16:05
LiftedKiltinc0: thanks for the help and tips16:05
inc0if you hit any issue that kolla makes it impossible to use different neutron plugins16:05
*** banix has joined #openstack-kolla16:05
inc0make sure to let us know16:05
inc0we'll probably want to remove that obstacle16:06
LiftedKiltinc0: for sure16:06
*** prithiv has quit IRC16:08
*** ccesario___ has quit IRC16:08
*** ccesario___ has joined #openstack-kolla16:08
*** prithiv has joined #openstack-kolla16:09
sdake_        err = -EACCES;16:16
sdake_        if (snum && snum < PROT_SOCK &&16:16
sdake_            !ns_capable(net->user_ns, CAP_NET_BIND_SERVICE))16:16
sdake_                goto out;16:16
sdake_thats the kernel code16:17
vhosakotmeeting in 12 minutes16:18
*** haplo37 has joined #openstack-kolla16:18
openstackgerritSerguei Bezverkhi proposed openstack/kolla: Addining abbility to specify capabilities and security  https://review.openstack.org/30844716:18
sdake_https://github.com/torvalds/linux/blob/master/net/ipv4/af_inet.c#L47916:19
sbezverksdake_ we have CAP_NET blah what is snum check?16:19
sdake_sbezverk did you run dmesg16:19
sbezverksdake_ yes, but there is nothing interesting ther16:20
sdake_snum is the protocol service16:20
sdake_what about the audit log16:20
sdake_if snum and snum < prot-sOCK (which I assume is 1024)16:20
sdake_is it not possible to specify the rsync port?16:21
sdake_one tidy workaround woudl be specifign the rsync port of our own liking above 102416:21
*** prithiv has quit IRC16:22
openstackgerritSerguei Bezverkhi proposed openstack/kolla: Addining abbility to specify capabilities and security  https://review.openstack.org/30844716:22
*** MarMat has joined #openstack-kolla16:23
*** ccesario___ has quit IRC16:23
sbezverksdake_ what I do nto get is what is the difference between running setcap and we setting up capabilities16:23
sdake_that is why we are looing ath  the kernel16:23
sdake_this is probably a kernel bug16:23
sdake_related to --net=host16:23
sdake_since we are not using namespaced networking16:23
*** ccesario___ has joined #openstack-kolla16:23
sdake_and clearl ythe kernel is doing something with namespacing here16:23
sdake_if I culd find the ns_ function16:23
sdake_it would be helpful16:24
*** prithiv has joined #openstack-kolla16:24
*** prithiv has quit IRC16:24
sdake_https://github.com/torvalds/linux/blob/master/kernel/capability.c#L37516:26
*** sacharya has joined #openstack-kolla16:26
openstackgerritSerguei Bezverkhi proposed openstack/kolla: Addining ability to specify capabilities and security  https://review.openstack.org/30844716:28
sdake_smels like a kernel bug to me16:28
sdake_sbezverk can you make rsync run no a different port above 1024?16:29
vhosakotmeeting now16:30
sbezverksdake_ will investigate it16:31
sbezverksdake_ would be really cool to catch a bug in Linus' code ;-)16:32
*** rajathagasthya has joined #openstack-kolla16:47
daneyon_sdake_ kolla-build does not work since doing the pip uninstall: https://gist.github.com/danehans/b24c0b57b8e01c0f34359f9c0b52d4f516:48
sdake_team meeting16:48
sdake_be with you in 40 minutes16:48
daneyon_np, thx16:48
*** hectaman has joined #openstack-kolla16:49
*** ccesario___ has quit IRC16:50
*** ccesario___ has joined #openstack-kolla16:50
*** jasonsb has joined #openstack-kolla16:56
*** thumpba has joined #openstack-kolla16:58
*** mbound has joined #openstack-kolla17:06
*** fragatina has joined #openstack-kolla17:08
*** ccesario___ has quit IRC17:09
*** v1k0d3n has quit IRC17:12
*** athomas has quit IRC17:13
*** unicell has joined #openstack-kolla17:15
*** ccesario___ has joined #openstack-kolla17:22
*** ravig has joined #openstack-kolla17:23
*** jtriley has joined #openstack-kolla17:23
*** ravig has quit IRC17:25
*** ravig has joined #openstack-kolla17:25
*** mbound has quit IRC17:26
*** jasonsb has quit IRC17:32
*** jasonsb has joined #openstack-kolla17:32
sbezverksdake_ I got rsyncd listening on a non-default port by there is a trick with configuration, so clients would be aware of it17:32
*** ccesario___ has quit IRC17:33
sdake_need to automate that sbezverk17:33
sbezverksdake_ let me get it working properly ;-) first17:35
*** ccesario___ has joined #openstack-kolla17:35
*** jtriley has quit IRC17:37
*** jasonsb has quit IRC17:37
sdake_makesure port is configurble as othe services are done atm17:39
*** sdake__ has joined #openstack-kolla17:41
*** fragatina has quit IRC17:42
*** fragatina has joined #openstack-kolla17:42
*** sdake__ has quit IRC17:43
*** sdake_ has quit IRC17:43
openstackgerritHui Kang proposed openstack/kolla: Add Kuryr Docker container  https://review.openstack.org/29800017:44
*** sdake_ has joined #openstack-kolla17:45
*** SiRiuS has quit IRC17:46
*** SiRiuS has joined #openstack-kolla17:47
*** mwheckmann has quit IRC17:50
inc0sdake_ https://review.openstack.org/#/c/308390/ gates are green besides centos binary17:50
patchbotinc0: patch 308390 - kolla (stable/liberty) - Changes needed to deploy liberty with mitaka code17:50
inc0which is expected17:51
sdake_inc0 hot17:51
sdake_brb need to connect to vpn17:51
*** sdake__ has joined #openstack-kolla17:53
inc0sdake__, one thing tho17:56
inc0it only has liberty versions of stuff we deployed in liberty17:57
*** sdake_ has quit IRC17:57
inc0so if we introduces service in mitaka, it's mitaka in repo17:57
sdake__i think all of the keys used for ubuntu need to use the liberty cloud repo versoins17:57
*** gfidente has quit IRC17:57
sdake__so mariadb for eg is the liberty version17:58
sdake__and so on17:58
inc0mariadb is not liberty...mariadb is mariadb17:58
inc0but well17:58
inc0we didn't test mariadb with liberty17:58
inc0I'd rather risk version mismatch between openstack - maria than incorrect maria deployment code because we didnt write it for this version17:59
mark-casey1if I wanted to test a different value in nova.conf could I know I need to rebuild nova containers but could I only kill those containers in the deployment and then re-run deploy? or does that really need clean-containers and clean-images?18:10
*** jtriley has joined #openstack-kolla18:14
inc0mark-casey1, neither18:14
inc0you don't need to rebuild anything18:14
*** sdake__ has quit IRC18:14
inc0change value in your /etc/kolla/configs18:15
inc0and kolla-ansible reconfigure18:15
inc0or even kolla-ansible reconfigure -t nova18:15
mark-casey1at 10,000 feet view what does that do? single layer change to container and redeploy it?18:16
inc0mark-casey1, so we don't embed configs into containers18:17
*** ravig has quit IRC18:17
inc0instead we bindmount a directory18:17
mark-casey1ah18:17
rhalliseymark-casey1, the layer doesn't change18:17
inc0and on container start it copies over content from this to /etc18:17
*** mlima has quit IRC18:17
inc0so what reconfigure does is to copy new files there and restarts container really18:17
mark-casey1awesome. I knew there was a thing there in how that part worked but now it makes sense18:18
mark-casey1thnx both18:18
*** jtriley has quit IRC18:20
*** jtriley has joined #openstack-kolla18:21
*** ayoung has quit IRC18:25
*** ravig has joined #openstack-kolla18:25
*** mlima has joined #openstack-kolla18:29
*** ravig has quit IRC18:30
mark-casey1inc0: change the config in /etc/kolla on the deployer or all targets?18:30
*** ravig has joined #openstack-kolla18:30
mark-casey1/etc/kolla only has 3 files on deployer18:31
inc0mark-casey1, if you create /etc/kolla/config/nova.conf it will override config every option from your nova.conf18:32
inc0so you can specify just one, and it will override only this one and rest will be there18:32
inc0config/nova-conductor.conf will override just conductors18:33
*** ravig has quit IRC18:33
mark-casey1inc0: if I've pip installed can I change stuff in /usr/share/kolla too and have reconfigure pick it up? or would that require rebuilding?18:33
inc0config/nova/my_hostname/nova.conf will override just nova.conf on my_hostname18:33
*** ravig has joined #openstack-kolla18:33
*** ravig has quit IRC18:35
inc0what's in /usr/share/kolla? you set up this as your node config directory?18:35
mark-casey1I checked the repo out from git a pip installed on the deployer, which I thikn is what created it in /usr/share. but I was assuming that changes there still required rebuilding images18:36
inc0ah18:36
inc0I use virtualenvs18:36
inc0but no, you should work on /etc/kolla/config regardless18:36
*** mwheckmann has joined #openstack-kolla18:37
inc0if there is no config dir there, just create one18:37
inc0for .conf changes that is18:37
mark-casey1inc0: ok. last q hopefully. what is the path inside ../config based on? how would I place an override for /etc/libvirt/qemu.conf?18:38
mark-casey1/etc/kolla/config/nova/qemu.conf?18:38
inc0mark-casey1, https://github.com/openstack/kolla/blob/master/ansible/roles/nova/tasks/config.yml#L55 this is for merge_configs18:39
inc0let me check if you can pull that off with libvirt as well18:39
inc0this was designed for .ini format18:39
inc0no, unfortunately you can't do that with qemu or libvirt18:40
*** ravig has joined #openstack-kolla18:40
inc0you need to modift kolla templates18:40
mark-casey1ok. I'll edit the template and rebuild. fyi qemu.conf is empty, so I think this is failing https://github.com/openstack/kolla/blob/master/docker/nova/nova-libvirt/Dockerfile.j2#L3218:41
*** SiRiuS has quit IRC18:41
mark-casey1so I'm getting libvirtError: Failed to connect socket to '/var/run/libvirt/virtlogd-sock': No such file or directory18:41
*** ravig has quit IRC18:41
mark-casey1https://bugzilla.redhat.com/show_bug.cgi?id=129035718:41
openstackbugzilla.redhat.com bug 1290357 in systemd "virtlogd is not started/enabled on fresh libvirt install" [Urgent,New] - Assigned to systemd-maint18:41
inc0mark-casey1, rebuild isn't needed regardless18:41
mark-casey1oh ok18:41
inc0do you run COPY_ONCE or COPY_ALWAYS?18:42
mark-casey1then I'll reconfigure after editing template and see if that fixes it18:42
mark-casey1default value on that one18:42
inc0so if you chagne your globals to COPY_ALWAYS and redeploy18:42
*** jtriley has quit IRC18:42
inc0https://github.com/openstack/kolla/blob/master/etc/kolla/globals.yml#L1118:42
inc0which is default18:43
inc0all you need to do is change template18:43
inc0and restart containers18:43
inc0however18:43
mark-casey1I uncommented it just in case. changed template and reconfigure is running18:43
inc0if you go to node itself18:43
inc0and kolla_config_directory18:44
inc0and change file out there18:44
inc0it will work as well18:44
inc0there are ways:)18:44
mark-casey1right... cause the configs are bind mounted from target not deployer(?)18:44
inc0yup18:45
inc0they're copied from deployer to target18:45
inc0and then bindmouned and copied inside container to containers /etc18:45
mark-casey1boom. active vms18:50
inc0congrats:)18:50
mark-casey1ty18:50
*** rajathagasthya has quit IRC18:51
mark-casey1trying floating ip now but I'm pretty sure that's a bug I hit in stable/mitaka18:51
mark-casey1inc0:18:51
*** mwheckmann has quit IRC18:54
inc0mark-casey1, with floatings? care to share details?18:55
*** SiRiuS has joined #openstack-kolla18:56
mark-casey1was trying a floating ip. not working but I"m pretty sure that's on me https://github.com/ropsoft/kolla_from_vagrant/blob/master/layout.png18:56
*** v1k0d3n has joined #openstack-kolla18:56
mark-casey1the thing I thought was a bug is qemu.conf being empty making this fail (https://github.com/openstack/kolla/blob/master/docker/nova/nova-libvirt/Dockerfile.j2#L32) making libvirt look for /var/run/libvirt/virtlogd-sock and fail to start VMs. implemented here https://review.openstack.org/#/c/306671/18:58
patchbotmark-casey1: patch 306671 - kolla - Use proper protocol scheme with nova18:58
mark-casey1no floating ips though is probably just something I've screwed up with my vlans. gotta afk for a bit. thx a million though! been working on this for a bit now so active VM is exciting19:00
*** salv-orlando has quit IRC19:03
*** mwheckmann has joined #openstack-kolla19:08
*** salv-orlando has joined #openstack-kolla19:26
*** SiRiuS has quit IRC19:30
*** ccesario___ has quit IRC19:36
*** rajathagasthya has joined #openstack-kolla19:49
*** mlima has quit IRC19:55
*** ravig has joined #openstack-kolla19:59
*** eal has quit IRC20:00
*** shardy has quit IRC20:03
*** ravig has quit IRC20:04
*** ravig has joined #openstack-kolla20:05
*** shardy has joined #openstack-kolla20:12
*** ntpttr_ is now known as ntpttr20:17
mark-casey1inc0: ping20:21
inc0mark-casey1, whats up?20:21
mark-casey1wanted to see if what I was saying earlier about qemu.conf being empty was making any sense, and if I should file something on it20:22
*** thumpba has quit IRC20:23
inc0mark-casey1, thats strange20:37
*** banix has quit IRC20:39
mark-casey1I'm on Ubuntu 15.10, not Trusty. If package choices are made based on parent OS and if Trusty had an older version of libvirt I could see it not being an issue for some others20:40
inc0mark-casey1, do you have nova-libvirt/qemu.conf on host?20:40
inc0I run 15.10 all the time20:40
inc0but with 15.10 you still need to make shared /run20:41
mark-casey1root@jovial-shop:~# docker exec nova_libvirt ls -la /etc/libvirt/qemu.conf20:41
mark-casey1-rw-r--r-- 1 root root 23 Apr 20 18:49 /etc/libvirt/qemu.conf20:41
inc0and you do it with systemd conf20:41
inc0did you do it?20:41
mark-casey1yes, took some figuring out but I found that20:41
mark-casey1so that ls -la I posted deffinitely said the file was empty before I changed the template20:41
mark-casey1and AFAICT the template really is empty in git20:42
mark-casey1https://bugzilla.redhat.com/show_bug.cgi?id=1290357    I dunno if upstream is the right word in this case but it's being done for this20:42
openstackbugzilla.redhat.com bug 1290357 in systemd "virtlogd is not started/enabled on fresh libvirt install" [Urgent,New] - Assigned to systemd-maint20:42
mark-casey1oh but I pasted the wrong review for kolla! oops. one sec20:45
mark-casey1this was the one I meant to say was for the kolla side, to address the thing in the redhat bugzilla link20:46
mark-casey1https://review.openstack.org/#/c/279910/20:46
patchbotmark-casey1: patch 279910 - kolla - Use ubuntu Mitaka repo (MERGED)20:46
inc0hmm, let me try to deploy this one20:52
*** shardy has quit IRC20:55
*** rajathagasthya has quit IRC20:58
*** rafiki_ has quit IRC21:02
*** ccesario___ has joined #openstack-kolla21:03
*** SiRiuS has joined #openstack-kolla21:06
*** inc0 has quit IRC21:17
*** ccesario___ has quit IRC21:18
*** ccesario___ has joined #openstack-kolla21:18
*** rajathagasthya has joined #openstack-kolla21:21
*** ccesario___ has quit IRC21:21
*** ccesario___ has joined #openstack-kolla21:22
*** SiRiuS has quit IRC21:24
*** sbezverk has quit IRC21:25
*** ccesario___ has quit IRC21:26
*** ccesario___ has joined #openstack-kolla21:27
*** sbezverk has joined #openstack-kolla21:27
*** sdake_ has joined #openstack-kolla21:28
*** ccesario___ has quit IRC21:28
sdake_yo21:29
*** ccesario___ has joined #openstack-kolla21:31
*** rhallisey has quit IRC21:37
daneyon_sdake_ kolla-build does not work since I did a pip uninstall. Here is the error: https://gist.github.com/danehans/b24c0b57b8e01c0f34359f9c0b52d4f521:37
sdake_dont use kolla-build21:37
sdake_use tools/buid.py21:37
daneyon_ok21:38
*** ccesario___ has quit IRC21:38
sdake_was that the prolemf from themorning21:39
sdake_apologies i laid down andj ust owke up21:39
daneyon_np21:39
daneyon_looks like my ks image is building now, thx21:39
sbezverksdake_ it looks like swift has confiugration for nondefault ports but it is so wierd21:40
*** ccesario___ has joined #openstack-kolla21:40
sdake_cool so lets use that orkaround21:42
sbezverksdake_ could you check this please: https://review.openstack.org/#/c/308447/21:43
patchbotsbezverk: patch 308447 - kolla - Addining ability to specify capabilities and security21:43
sbezverkif you are not super busy of course21:43
sdake_i just woke up21:44
sdake_gie me 5 minutes to get warmed up21:44
sbezverksdake_ another allnighter last night ;-) ??21:44
*** daneyon has joined #openstack-kolla21:44
*** sdake_ has quit IRC21:45
*** v1k0d3n has quit IRC21:45
*** sdake_ has joined #openstack-kolla21:47
sdake_sbezverk what cli do you pass to rsync?21:51
*** salv-orl_ has joined #openstack-kolla21:56
sbezverksdake_ for rsync I specify port to listen for example 1087321:56
sdake_anyone know what the system call is that creaates a container?21:56
sbezverksdake_ but the main issue is rings must be generated using new syntax21:56
sbezverkand each replicator container needs to be reconfiguredd.21:57
sdake_whatis new about the syntax21:57
sdake_cant the replicator container be preconfigured?21:57
sdake_another ptoin is not to use net=host for rsync21:58
sdake_i am teting if my assuption is correct abut --net=host incompatible with cap21:58
sbezverksdake_ do not know yet I am still not satisfied by what I see in replication logs21:58
*** salv-orlando has quit IRC21:59
sdake_note rsync wm on centos kernel22:02
sdake_without --net=host22:03
sdake_note rsync works or me with net=host22:03
sdake_cli optoin i use is rsync --daemon22:04
sbezverksdake --port 1087322:04
sdake_i thought it had to be run on a port uner 1000 for the bind error the happen22:04
sdake_()[swift@minime-03 /]$ ps -ef | grep rsync22:05
sdake_swift       26     1  0 22:05 ?        00:00:00 rsync --port 500 --daemon22:05
sdake_swift       34     1  0 22:05 ?        00:00:00 grep rsync22:05
sdake_[sdake@minime-03 tools]$ docker run -it --cap-add=NET_BIND_SERVICE 192.168.1.103:4000/kollaglue/centos-binary-swift-rsyncd:2.0.0 bash22:06
sbezverksdake_ it looks like net_bind is working properly in centos22:06
sbezverkif you do not get that error22:07
sdake_[sdake@minime-03 tools]$ docker run -it --cap-add=NET_BIND_SERVICE --net=host 192.168.1.103:4000/kollaglue/centos-binary-swift-rsyncd:2.0.0 bash22:07
sdake_()[swift@minime-03 /]$ rsync --port 500 --daemon22:07
sdake_()[swift@minime-03 /]$ ps -ef | grep rsync22:07
sdake_swift       19     1  0 22:07 ?        00:00:00 rsync --port 500 --daemon22:07
sdake_arn't you on selinux?22:09
sdake_rather ubuntuian?22:09
sbezverksdake_ ubuntu does not have it by default22:09
sdake_ok i am generating logs to report a bug22:09
sdake_so these people will gte this shit fixed22:09
sbezverksdake_ I am on centos in general, but since we hit this issue on ubuntu I use ubuntu now to debug it22:09
sdake_can you replicate this log22:09
sdake_wich is your kernel version?22:10
sbezverk4.2.0.2722:10
sdake_http://paste.fedoraproject.org/357995/19065814/ -> http://paste.fedoraproject.org/357995/1906581422:17
sdake_replicate that typescript on ubuntu please22:17
sbezverksdake_ http://paste.openstack.org/show/494898/22:26
sdake_try touch /etc/rsyncd.conf22:28
sdake_then again run the command22:28
sbezverksdake_ cannot do it, I run under swift user22:29
sdake_tocuh a config file in your home dir22:30
*** daneyon has quit IRC22:30
mark-casey1sdake_:   thought you might like this   http://paste.openstack.org/show/494899/22:31
openstackgerritMerged openstack/kolla: Use proper protocol scheme with nova  https://review.openstack.org/30667122:31
mark-casey1(run from deployer, that is)22:32
*** ayoung has joined #openstack-kolla22:33
*** ccesario___ has quit IRC22:34
sdake_sbezverk rebuild a container for ubuntu with the touch /etc/rsync.conf22:34
sdake_or whatever file it is coplaining abut22:34
sdake_mark-casey1 what does all that do22:35
* sdake_ not a neutorn wizard22:35
*** mwheckmann has quit IRC22:35
mark-casey1oh trust me, me either. more time on that than I'd care to admit.    eth1.163 is neutron_external_bridge.     all that adds a br-xo  for our second WAN and gets it into neutron so I can have multiple externals22:36
mark-casey1adds eth1.162 to br-xo, and etc22:36
sdake_mark-casey1 we have an advanced admin guide - that wuld be hepful theer if you could explain how its useful :)22:38
*** haplo37 has quit IRC22:38
mark-casey1essentially I can have a VM with a floating IP on my LAN and then move it to a public IP on one ISP with a few clicks, and the to a public on another ISP with a few more. it isn't quite working yet... I have to add the extra floating pools.22:39
mark-casey1but yes, I can write it up22:39
sdake_cool sounds good ;)22:39
sdake_sbezverk can you rebuild a continer with a rsync.conf in it plz22:40
sdake_id like to rule out apparmor as a cause22:42
sdake_and identify it squarly at the kernel22:42
sbezverksdake_ strange thing is in normal rsyncd container rsyncd.conf should be there, I guess it is not there now since ansible is not used to start it22:44
sdake_yes it gets copied in by ansible22:44
sdake_so you nneed tom ake an empty file22:44
sdake_reproducing through our call chain wont work for docker cats22:47
sdake_they want to see it reproduced through their call chain (dockercli)22:47
sbezverksdake_ if I start container with root priv to be able to create rsyncd.conf file, then exit it how I can start it (the same container) again but with normal user swift??22:49
sdake_yu cant yu need to rebuild a container as i said 10 minutes ago22:49
sbezverksdake_ ok I must have missed it ;-)22:51
sdake_mdoify the docker file to create an empty rsync.conf file22:51
sdake_via touch22:51
sbezverksdake_ even if I create empty file I will not be able to modify it, I copy good file to the right location22:55
sdake_all we care is if rsync startsup22:56
sdake_fro mwhat icould tell your rsyn wasn't starting previousy22:56
sbezverksdake_ before trying to bind to a socket it cheks for config file22:57
sdake_i know, so we are oging to create an empty one22:57
sbezverkI saw that before I was fighting with setcap22:57
sdake_just do it - we are burning daylight and i hae to leave for trave lsooon22:58
sdake_2 hour drive to phoenix22:58
sbezverksdake_ it is building, takes the same time if I touch the file or copy it ;-)22:59
*** mark-casey1 has quit IRC22:59
sbezverksdake_ http://paste.openstack.org/show/494900/23:01
*** mark-casey has joined #openstack-kolla23:01
*** daneyon has joined #openstack-kolla23:05
*** mark-casey has quit IRC23:05
*** mark-casey has joined #openstack-kolla23:06
*** daneyon has quit IRC23:09
*** ravig has quit IRC23:13
*** mark-casey1 has joined #openstack-kolla23:18
*** mark-casey has quit IRC23:20
*** mark-casey1 has quit IRC23:23
*** MarMat has quit IRC23:25
*** MarMat_ has joined #openstack-kolla23:25
*** salv-orl_ has quit IRC23:26
*** ravig has joined #openstack-kolla23:27
*** thumpba has joined #openstack-kolla23:38
sdake_sbezverk any luck?23:40
sdake_sbezverk was that with --net=host?23:43
sbezverksdake_ have you check the paste?23:45
sbezverk http://paste.openstack.org/show/494900/23:45
sdake_sbezverk i hae ano ther idea23:45
sdake_perhaps the rsync port is alrady in use by your host23:45
sbezverksdake_ I do not think so as --net=host also ansible paramter23:45
sdake_wel run with --net=host23:45
sdake_look t my typescript23:45
sdake_it runs the continer with --cap and --net23:45
sdake_and anothe wiwth just --cap23:45
sbezverksdake_ my bad it was with --net23:46
sdake_so it does work23:47
sdake_try without --cap and se if it fails23:47
sbezverkI copied and pasted exact command you gave just changed a few ubuntu related things23:47
sdake_where is your kolla_docker change23:48
sdake_sbezverk if it works rom the cli the kolla-docker integratin is wrong23:48
sdake_use docker inspect to see i yu see any deltas23:49
*** mwheckmann has joined #openstack-kolla23:50
*** sbezverk has quit IRC23:52
*** ozialien has joined #openstack-kolla23:54
*** sbezverk has joined #openstack-kolla23:56
*** ravig has quit IRC23:57
*** ravig has joined #openstack-kolla23:58
*** sdake__ has joined #openstack-kolla23:58
*** ravig has quit IRC23:59
« Tuesday, 2016-04-19 Index Thursday, 2016-04-21 »

Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!