| openstackgerrit | Dawson Coleman proposed openstack/octavia master: Add ability to specify TLS cipher list for pools https://review.opendev.org/717154 | 00:05 |
|---|---|---|
| dawzon | Working on that patch, I'm running into some issues create a TLS-terminated load balancer with backend encryption. Currently my amphora is failing whenever I try to add a member to the pool. From what I see in the configuration, it looks like certs/<listener-id>/*.pem should be created automatically, but for some reason none of it is showing up. I'm a bit puzzled since I don't think I touched anything related | 00:13 |
| dawzon | to certs | 00:13 |
| dawzon | This is the failed config https://www.irccloud.com/pastebin/m5a2QpmH/ | 00:13 |
| dawzon | https://www.irccloud.com/pastebin/FQgF1B6u/Certs%20for%20the%20frontend%20are%20showing%20up%20fine%2C%20but%20not%20for%20the%20backend | 00:15 |
| *** yamamoto has joined #openstack-lbaas | 01:01 | |
| *** yamamoto has quit IRC | 02:03 | |
| *** yamamoto has joined #openstack-lbaas | 02:16 | |
| *** yamamoto has quit IRC | 03:02 | |
| *** yamamoto has joined #openstack-lbaas | 03:04 | |
| *** yamamoto has quit IRC | 03:04 | |
| *** yamamoto has joined #openstack-lbaas | 03:05 | |
| *** yamamoto has quit IRC | 03:09 | |
| *** yamamoto has joined #openstack-lbaas | 03:09 | |
| *** dayou_ has quit IRC | 03:21 | |
| *** psachin has joined #openstack-lbaas | 03:25 | |
| *** dayou_ has joined #openstack-lbaas | 03:28 | |
| *** kobis1 has joined #openstack-lbaas | 05:00 | |
| *** yamamoto has quit IRC | 05:13 | |
| *** kobis1 has quit IRC | 05:20 | |
| *** yamamoto has joined #openstack-lbaas | 05:22 | |
| *** kobis1 has joined #openstack-lbaas | 05:37 | |
| *** yamamoto has quit IRC | 05:38 | |
| *** yamamoto has joined #openstack-lbaas | 06:09 | |
| *** kobis1 has quit IRC | 06:10 | |
| *** yamamoto has quit IRC | 06:22 | |
| *** ccamposr__ has joined #openstack-lbaas | 06:34 | |
| *** yamamoto has joined #openstack-lbaas | 06:35 | |
| *** ccamposr has quit IRC | 06:36 | |
| *** yamamoto has quit IRC | 07:02 | |
| *** yamamoto has joined #openstack-lbaas | 07:05 | |
| *** maciejjozefczyk has joined #openstack-lbaas | 07:08 | |
| openstackgerrit | Ann Taraday proposed openstack/octavia master: Jobboard based controller https://review.opendev.org/647406 | 07:30 |
| *** ataraday_ has joined #openstack-lbaas | 07:30 | |
| ataraday_ | jobboard change has 101 patch set, I think I've never had changes with so many patch sets | 07:32 |
| *** kobis1 has joined #openstack-lbaas | 07:33 | |
| *** gcheresh has joined #openstack-lbaas | 07:49 | |
| *** kobis1 has quit IRC | 07:55 | |
| *** rpittau|afk is now known as rpittau | 07:56 | |
| *** kobis1 has joined #openstack-lbaas | 08:04 | |
| *** kobis1 has quit IRC | 08:04 | |
| *** tkajinam has quit IRC | 08:08 | |
| *** rmart04 has joined #openstack-lbaas | 08:49 | |
| *** gcheresh has quit IRC | 08:52 | |
| rm_work | ataraday_: well, I finally gave up working on this one... https://review.opendev.org/#/c/435612/ | 08:52 |
| openstackgerrit | Gregory Thiemonge proposed openstack/octavia-dashboard master: Add missing fields for HTTPS health monitors https://review.opendev.org/717258 | 08:52 |
| *** tkajinam has joined #openstack-lbaas | 08:54 | |
| rm_work | it just proves, Octavia can be fun! :D | 09:00 |
| rm_work | ... or something | 09:00 |
| *** gcheresh has joined #openstack-lbaas | 09:11 | |
| ataraday_ | rm_work, wow, well, you beat me :D | 09:11 |
| openstackgerrit | Gregory Thiemonge proposed openstack/octavia-dashboard master: Add missing fields for HTTPS health monitors https://review.opendev.org/717258 | 09:35 |
| *** gcheresh has quit IRC | 09:58 | |
| *** tkajinam has quit IRC | 10:11 | |
| *** rpittau is now known as rpittau|bbl | 10:29 | |
| *** rcernin has quit IRC | 10:29 | |
| rm_work | ataraday_: yeah, well, not really... since mine was an exercise in futility, and yours is actually going to merge. :D | 10:32 |
| rm_work | I wouldn't exactly say I'm the winner there | 10:32 |
| *** born2bake has joined #openstack-lbaas | 10:44 | |
| ataraday_ | rm_work, by the number of patch sets definitely you are :) | 11:03 |
| rm_work | I'm glad it's not golf then 😁 | 11:08 |
| *** yamamoto has quit IRC | 11:09 | |
| *** yamamoto has joined #openstack-lbaas | 11:27 | |
| *** rpittau|bbl is now known as rpitau | 12:08 | |
| *** rpitau is now known as rpittau | 12:09 | |
| *** zigo has quit IRC | 12:48 | |
| *** zigo has joined #openstack-lbaas | 12:51 | |
| *** ataraday_ has quit IRC | 13:28 | |
| *** TrevorV has joined #openstack-lbaas | 14:18 | |
| *** yamamoto has quit IRC | 15:00 | |
| *** maciejjozefczyk has quit IRC | 15:18 | |
| *** yamamoto has joined #openstack-lbaas | 15:20 | |
| *** happyhemant has joined #openstack-lbaas | 15:26 | |
| johnsom | I think my record is 150 patchsets on something that merged. Can't remember what it was though. | 15:37 |
| *** rpittau is now known as rpittau|afk | 15:43 | |
| *** psachin has quit IRC | 15:53 | |
| *** yamamoto has quit IRC | 15:53 | |
| *** JayF is now known as JasonF | 15:55 | |
| *** JasonF is now known as JayF | 15:55 | |
| *** yamamoto has joined #openstack-lbaas | 16:16 | |
| *** armax has joined #openstack-lbaas | 16:20 | |
| johnsom | rm_work More discussion about how "bad" DIB is on the mailing list. http://lists.openstack.org/pipermail/openstack-discuss/2020-April/013818.html | 16:33 |
| cgoncalves | I don't know where to start... | 16:37 |
| cgoncalves | "I strongly recommend 4GB instead of 2" | 16:38 |
| cgoncalves | debian-buster-rocky-octavia-amphora-2020.03.30-22.52-amd64.raw2020-04-03 13:372.0G | 16:38 |
| johnsom | yep, I don't think that is even worth a reply | 16:38 |
| johnsom | troll'n | 16:39 |
| xgerman | we should have some zoom happy hour like all the cool kids rm_work as a PTL I expect more | 16:39 |
| johnsom | lol, maybe not zoom given the recent headlines.... | 16:49 |
| *** yamamoto has quit IRC | 17:00 | |
| xgerman | +1 zppm is the new xerox | 17:08 |
| xgerman | like I zoom with you, I Xerox some paper | 17:08 |
| johnsom | lol | 17:13 |
| xgerman | maybe we should put some ahppy hour on the book — there seems to be an OpenSource conferencing system, too - but besides mugsie (who is using teams) everyone I know has been on Zoom :-) | 17:20 |
| johnsom | Hangouts is still free as well | 17:20 |
| xgerman | Hangout is fine with me :-) | 17:20 |
| johnsom | I am open to a chat sometime if folks are interested. | 17:20 |
| johnsom | Today is not good for me, but next week would be fine. | 17:21 |
| xgerman | it’s not only chat…. we would also need drinks :-) | 17:21 |
| xgerman | Yeah. I am sheltering in place… so my agenda is wide open... | 17:21 |
| johnsom | lol. Given the timezones for folks, mine might be coffee | 17:21 |
| xgerman | Irish coffee? | 17:21 |
| johnsom | Sadly no, I am out of Jameson. | 17:23 |
| xgerman | 😞 | 17:24 |
| johnsom | But, it is good coffee. Stumptown | 17:24 |
| xgerman | +1 | 17:26 |
| *** yamamoto has joined #openstack-lbaas | 17:39 | |
| *** yamamoto has quit IRC | 17:47 | |
| *** roukoswarf has joined #openstack-lbaas | 18:10 | |
| *** mloza has joined #openstack-lbaas | 18:14 | |
| roukoswarf | anyone have any pointers on trying to find out why some amphoras timeout on boot up? | 18:15 |
| roukoswarf | http://paste.openstack.org/show/SDKvpgwByErFUmRspZyj/ i get this, after its timed out. | 18:16 |
| johnsom | roukoswarf Hi. I have seen that issue a long time ago. It was a bug in the designate DNS code added to neutron. But I thought that was long fixed, like years ago. | 18:28 |
| johnsom | What version of OpenStack are you running? | 18:28 |
| johnsom | We also had a workaround for that at one point, we deleted the DNS name off the port. | 18:29 |
| johnsom | https://github.com/openstack/octavia/blob/master/octavia/network/drivers/neutron/allowed_address_pairs.py#L581 | 18:30 |
| johnsom | Hmm, but yeah, I only remember having that problem on a failover. You are seeing this on load balancer create? | 18:30 |
| *** rmart04 has quit IRC | 18:38 | |
| *** TrevorV has quit IRC | 19:54 | |
| roukoswarf | failover, trying to recovcer from an inexplicably dead amphora | 19:59 |
| roukoswarf | stein version, 4.0 controller, 4.1 amphora | 19:59 |
| roukoswarf | i have about... 25 dead amphoras, mostly unfixable due to this error on fail | 20:00 |
| roukoswarf | but, im working on getting up to stable/stein | 20:01 |
| roukoswarf | i have not updated since stein came out, so im probably a buggy mess | 20:04 |
| cgoncalves | https://github.com/openstack/octavia/compare/4.0.0...stable/stein | 20:06 |
| cgoncalves | 98 commits between 4.0.0 and stable/stein | 20:06 |
| roukoswarf | yep, im aware of how bad of a person i am | 20:06 |
| cgoncalves | lol :) | 20:07 |
| *** KeithMnemonic has quit IRC | 21:34 | |
| *** yamamoto has joined #openstack-lbaas | 21:44 | |
| *** yamamoto has quit IRC | 21:50 | |
| *** born2bake has quit IRC | 22:04 | |
| openstackgerrit | Michael Johnson proposed openstack/octavia-tempest-plugin master: WIP: Adjust scenario tests for NotImplemented skip https://review.opendev.org/714004 | 22:26 |
| roukoswarf | yeah i can still reproduce the dns issues even on stable/stein built 2 hours ago. | 22:43 |
| roukoswarf | and failovers dont work, for some pairs. | 22:43 |
| roukoswarf | but hey hey, blanking its dns_name manually does make the port work again, so i guess i can repair all these via a script. | 22:51 |
| *** roukoswarf has quit IRC | 23:11 | |
| *** gthiemonge has quit IRC | 23:39 | |
| *** gthiemonge has joined #openstack-lbaas | 23:39 | |
Generated by irclog2html.py 2.15.3 by Marius Gedminas - find it at mg.pov.lt!