Monday, 2019-04-01

« Sunday, 2019-03-31 Index Tuesday, 2019-04-02 »
*** hongbin has joined #openstack-kuryr02:05
*** irclogbot_1 has quit IRC02:19
*** hongbin has quit IRC04:17
*** janki has joined #openstack-kuryr06:21
*** ccamposr has joined #openstack-kuryr06:24
*** gcheresh has joined #openstack-kuryr06:50
openstackgerritDaniel Mellado proposed openstack/kuryr-kubernetes master: Add support for text ports on Network Policy Spec  https://review.openstack.org/64890506:54
*** pcaruana has joined #openstack-kuryr06:58
*** maysams has joined #openstack-kuryr06:58
*** aperevalov_ has quit IRC07:01
*** pcaruana has quit IRC07:02
*** pcaruana has joined #openstack-kuryr07:02
*** maysams has quit IRC07:08
*** maysams has joined #openstack-kuryr07:16
maysamsdmellado: ping07:20
dmelladomaysams: pong07:20
dmelladoI was rebasing your patch07:20
dmelladohad to regenerate the commit id as there's a gerrit limitation in terms of PS07:21
dmelladoso I can't rebase 11 onto 10 and so...07:21
dmelladowhat's up? ;)07:21
maysamsdmellado: right, thanks for rebasing it. But regarding the named-port support with IPBlock that I mentioned in the PS07:23
dmelladoso, what's your concern into that?07:23
dmelladoas a first glance I don't think it'd be an issue07:24
maysamsdmellado: The problem is that I did not add support for named-port + ipblock yet07:24
maysamsdmellado: in order to give support I need to go over the containers in the pods that matches the ipBlock section07:26
maysamsdmellado: so, I think it might be good to address this case in another PS, because this PS is already too big07:27
dmelladoyeah, sounds good to me, let's finish with the rebases and add a new PS for this07:29
dmelladootherwise it'll be tough to handle it07:29
*** celebdor has joined #openstack-kuryr07:30
maysamsdmellado, but you already rebase it right?07:31
dmelladoI did rebase on PS1007:35
dmelladobut you changed some stuff on PS1107:35
dmelladogerrit doesn't allow you to do rebase in between PS07:35
dmelladoso I published another change so I can do PS10-11 rebase07:36
dmelladowhich is being a pain so far xD07:37
*** maysams has quit IRC07:49
*** aperevalov has joined #openstack-kuryr07:50
openstackgerritAlexey Perevalov proposed openstack/kuryr-kubernetes master: Support sriovdp arbitrary resource names  https://review.openstack.org/64249107:53
openstackgerritDaniel Mellado proposed openstack/kuryr-kubernetes master: Add support for text ports on Network Policy Spec  https://review.openstack.org/64890507:53
dmelladomaysams ^^07:53
dmelladopls do take a look when you're back aroudn07:53
*** maysams has joined #openstack-kuryr07:59
*** gkadam has joined #openstack-kuryr08:02
maysamsdmellado: thanks for rebasing with my last PS08:04
dmelladoyw!08:04
dmelladoaperevalov: btw, I'm seeing some trivial errors on your patch docs08:04
dmelladowill leave some comments08:05
dmelladobasically you need to leave a space below the code block, otherwise it'll treat the code block itself as arguments08:05
aperevalovdmellado, ok. Yes, I'm not yet generated it to view.08:05
maysamsdulek, morning.08:18
maysamsdulek, I just remembered you've mentioned on Friday an issue regarding allowed_cidrs, while running the tests. Do you remember what was that?08:19
dmelladoallowed_cidrs won't even be there anymore08:20
dulekmaysams: It haven't manifested again, I was probably seeing some false alarm back then.08:26
dulekmaysams: Because it started to work fine with your patch applied after restacking.08:26
maysamsdulek: great, thanks!08:27
dmelladodulek: if after maysams patch you still see allowed_cidrs, then that'd be bad xD08:31
*** gkadam has quit IRC08:32
openstackgerritAlexey Perevalov proposed openstack/kuryr-kubernetes master: Support sriovdp arbitrary resource names  https://review.openstack.org/64249108:36
dmelladobtw, folks, I'll be changing the upstream meeting time to 14:00 UTC08:58
dmelladoso we follow DST, otherwise I won't really be able to attend myself08:58
*** ccamposr has quit IRC09:01
*** ccamposr has joined #openstack-kuryr09:01
*** ccamposr has quit IRC09:04
*** ccamposr has joined #openstack-kuryr09:05
dulekdmellado: I was to ask you about that when I looked at the calendar. :) Good call.09:21
*** gkadam has joined #openstack-kuryr09:28
dmelladohttps://review.openstack.org/#/c/648927/09:33
dmelladodulek: ^^09:33
dulekdmellado: I guess an email to the ML is also required.09:34
dmelladodulek: I was already writing that xD09:34
dulek:)09:35
dmelladodulek: in any case I'm shifting today's meeting to openstack-kuryr, as I'm not sure if the time slot would already be taken09:36
dulekdmellado: It's not.09:38
dulekhttp://eavesdrop.openstack.org/09:38
dmelladooh, great, then we'll hijack it09:39
dmelladoxD09:39
dulekdmellado: I think the tests on your patch would fail if there was a conflict.09:39
dmelladoallright, done09:40
openstackgerritAlexey Perevalov proposed openstack/kuryr-kubernetes master: Support sriovdp arbitrary resource names  https://review.openstack.org/64249110:10
*** celebdor has quit IRC10:12
openstackgerritDaniel Mellado proposed openstack/kuryr-kubernetes master: Add support for text ports on Network Policy Spec  https://review.openstack.org/64890510:14
dulekltomasbo, maysams: "should allow ingress access on one named port [Feature:NetworkPolicy]" - Pod client-a should be able to connect to service svc-server, but was not able to connect10:56
dulekIt's with ltomasbo's patch applied.10:56
maysamsdulek: and also mine, right?10:57
dulekmaysams: Yup. And both mine.10:58
maysamsdulek: hmm.. okay. I will setup this in my env and run the test, to analyze it better11:00
maysamsdulek: or you still have the client and server SGs?11:04
*** gcheresh_ has joined #openstack-kuryr11:05
*** gcheresh has quit IRC11:05
*** gcheresh_ has quit IRC11:10
*** gcheresh has joined #openstack-kuryr11:10
*** rh-jelabarre has joined #openstack-kuryr11:41
openstackgerritAlexey Perevalov proposed openstack/kuryr-kubernetes master: Support sriovdp arbitrary resource names  https://review.openstack.org/64249111:41
*** celebdor has joined #openstack-kuryr12:25
*** maysams has quit IRC12:44
*** maysams has joined #openstack-kuryr12:45
dulekHm, those failures look very odd…12:56
*** irclogbot_0 has joined #openstack-kuryr13:26
maysamsdulek: I just remembered one thing13:34
maysamsdulek: Openshift folks mentioned they were skipping 2 tests13:35
maysamsdulek: and one of them is the one that is failing13:35
maysamsdulek: https://github.com/openshift/origin/blob/master/test/extended/util/test.go#L37213:35
dulekHa, interesting!13:35
dulekI'll refer to them if I don't find the reason it's failing with Kuryr.13:36
maysamsdulek: this is the skip list ^ defined in the testMaps variable13:36
maysamsdulek, okay. But the test seems correct to me13:46
maysamsdulek: Ah, I think I know why it's wrong. When allowing ingress in the named-port "serve-80" we need to look for all the pods selected by that policy and search for that port in them13:55
maysamsdulek: the client pods created do not have "serve-80"13:55
dulekmaysams: Sounds right!14:04
maysamsdulek: The documentation is not clear about which pod should be looked in order to find the port number. If it's the selected in the spec or the ones selected in the ingress/egress section14:04
*** gcheresh has quit IRC14:11
maysamsdulek: maybe ltomasbo has some idea regarding this ^14:11
dulekmaysams: I guess the test is best documentation on how this is supposed to work.14:12
maysamsdulek: so, I need to rework the ps14:14
maysamsdulek: I was thinking the other way around14:15
maysamsdulek: There is no rule with port 80 in the client nor in the server right?14:17
dulekmaysams: https://paste.fedoraproject.org/paste/O8KqWmIgnnM0yfiEZGZfDg14:18
dulekmaysams: fb87af95-481f-4451-8e25-5a33d206ecda was added by me and fixed the connectivity.14:18
maysamsdulek: is this the svc subnet?14:21
maysams'10.1.1.212/32'14:21
dulekmaysams: This is IP of client-a. And I added that rule myself. :P14:21
dulek10.1.1.206/32 - this is in subnet. Actually this is IP of the Service.14:22
dulekdmellado: Guess which project seems to behave badly in the gate. :P14:29
dulekdmellado: Obviously it's always Octavia. :D14:29
dmelladodulek: hmmmm14:29
dmelladodamn, I shou've known?14:29
dmelladooctavia-dashboard?14:29
dmelladokinda recall listening something about issues with npm14:30
dmelladoxD14:30
dmelladodulek: of course, whenever there's any issue, I blame octavia and celebdor14:30
dulekdmellado: Hm, I don't know yet. But the root cause is lack of connectivity to K8s API through it's LB.14:30
dmelladohmm, I'm checking what could've been within their code14:31
dmelladohttps://github.com/openstack/octavia/commits/master14:31
dmelladodoesn't look like anything outrageous14:31
*** gcheresh has joined #openstack-kuryr14:33
celebdorand rightly so14:36
celebdor(even the order)14:36
*** gcheresh has quit IRC14:37
*** janki has quit IRC14:47
*** janki has joined #openstack-kuryr14:47
dmelladodulek: did you reproduce it on your environment?14:49
dulekdmellado: I'm working on that.14:50
dmelladoI'm deploying one environment as well14:50
dmelladowill go now on kid duty, so let's sync later ;)14:50
*** premsankar has joined #openstack-kuryr15:06
*** aperevalov has quit IRC15:14
*** maysams has quit IRC15:21
*** gcheresh has joined #openstack-kuryr15:26
*** janki has quit IRC15:37
*** ccamposr has quit IRC15:44
*** maysams has joined #openstack-kuryr15:56
*** gcheresh has quit IRC15:59
*** gkadam has quit IRC17:05
dulekDamn, looks like the issue is not manifesting locally.17:18
dulekAt least on my env. :(17:18
*** maysams has quit IRC19:29
*** spsurya has quit IRC19:36
*** rh-jelabarre has quit IRC20:22
*** rh-jelabarre has joined #openstack-kuryr20:26
*** pcaruana has quit IRC21:17
*** rh-jelabarre has quit IRC22:55
*** openstackgerrit has quit IRC23:56
« Sunday, 2019-03-31 Index Tuesday, 2019-04-02 »

Generated by irclog2html.py 2.15.3 by Marius Gedminas - find it at mg.pov.lt!