Friday, 2023-04-14

« Thursday, 2023-04-13 Index Saturday, 2023-04-15 »
opendevreviewGregory Thiemonge proposed openstack/octavia stable/zed: Pass config to castellan  https://review.opendev.org/c/openstack/octavia/+/88043505:45
opendevreviewGregory Thiemonge proposed openstack/octavia stable/yoga: Pass config to castellan  https://review.opendev.org/c/openstack/octavia/+/88043605:45
opendevreviewGregory Thiemonge proposed openstack/octavia stable/xena: Pass config to castellan  https://review.opendev.org/c/openstack/octavia/+/88043705:46
opendevreviewGregory Thiemonge proposed openstack/octavia stable/wallaby: Pass config to castellan  https://review.opendev.org/c/openstack/octavia/+/88043805:46
opendevreviewGregory Thiemonge proposed openstack/octavia stable/zed: Rename Context to RequestContext  https://review.opendev.org/c/openstack/octavia/+/88043905:48
opendevreviewGregory Thiemonge proposed openstack/octavia stable/yoga: Rename Context to RequestContext  https://review.opendev.org/c/openstack/octavia/+/88044005:49
opendevreviewGregory Thiemonge proposed openstack/octavia stable/xena: Rename Context to RequestContext  https://review.opendev.org/c/openstack/octavia/+/88044506:01
opendevreviewGregory Thiemonge proposed openstack/octavia stable/wallaby: Rename Context to RequestContext  https://review.opendev.org/c/openstack/octavia/+/88044606:01
opendevreviewGregory Thiemonge proposed openstack/octavia stable/zed: Fix SQLAlchemy warning about conflict relationship with Tags  https://review.opendev.org/c/openstack/octavia/+/88044706:18
opendevreviewGregory Thiemonge proposed openstack/octavia stable/yoga: Fix SQLAlchemy warning about conflict relationship with Tags  https://review.opendev.org/c/openstack/octavia/+/88044806:18
opendevreviewGregory Thiemonge proposed openstack/octavia stable/xena: Fix SQLAlchemy warning about conflict relationship with Tags  https://review.opendev.org/c/openstack/octavia/+/88044906:18
opendevreviewGregory Thiemonge proposed openstack/octavia stable/wallaby: Fix SQLAlchemy warning about conflict relationship with Tags  https://review.opendev.org/c/openstack/octavia/+/88045006:19
opendevreviewGregory Thiemonge proposed openstack/octavia stable/2023.1: Fix failover when the last listener is deleted  https://review.opendev.org/c/openstack/octavia/+/88045106:46
opendevreviewGregory Thiemonge proposed openstack/octavia stable/zed: Fix failover when the last listener is deleted  https://review.opendev.org/c/openstack/octavia/+/88045206:47
opendevreviewGregory Thiemonge proposed openstack/octavia stable/yoga: Fix failover when the last listener is deleted  https://review.opendev.org/c/openstack/octavia/+/88045306:48
opendevreviewGregory Thiemonge proposed openstack/octavia stable/xena: Fix failover when the last listener is deleted  https://review.opendev.org/c/openstack/octavia/+/88045406:48
opendevreviewGregory Thiemonge proposed openstack/octavia stable/wallaby: Fix failover when the last listener is deleted  https://review.opendev.org/c/openstack/octavia/+/88045506:49
opendevreviewTom Weininger proposed openstack/octavia master: todo mypy  https://review.opendev.org/c/openstack/octavia/+/87974909:31
opendevreviewMerged openstack/octavia master: allowed_cidr validation for additional_vips  https://review.opendev.org/c/openstack/octavia/+/87604210:24
opendevreviewJulian DA CUNHA proposed openstack/octavia master: Add new spec Let's Encrypt support  https://review.opendev.org/c/openstack/octavia/+/87728110:41
opendevreviewJulian DA CUNHA proposed openstack/octavia master: Add new spec Let's Encrypt support  https://review.opendev.org/c/openstack/octavia/+/87728110:45
opendevreviewTom Weininger proposed openstack/octavia master: Remove python-neutronclient  https://review.opendev.org/c/openstack/octavia/+/86632711:06
opendevreviewJulian DA CUNHA proposed openstack/octavia master: Add new spec Let's Encrypt support  https://review.opendev.org/c/openstack/octavia/+/87728111:07
opendevreviewTom Weininger proposed openstack/octavia master: Remove python-neutronclient  https://review.opendev.org/c/openstack/octavia/+/86632711:11
opendevreviewEdward Hope-Morley proposed openstack/octavia master: Fix hm operating status to ONLINE in single lb call  https://review.opendev.org/c/openstack/octavia/+/86836312:58
noonedeadpunkfolks, are you aware of any issues with amphora image from tarballs?14:32
noonedeadpunkI'm not sure of reasons yet, but we're having issues that ssh is basically down on it. Spawning cirros on the same network and with same security groups working nicely at the same time14:34
noonedeadpunkin console log I've spotted no ipv4 network in cloud-init output, but it's from config drive, so IP can be retrieved on some later step...14:35
noonedeadpunkBut I was wondering if amphora relies on DHCP? Or if IP is not present on config-drive it won't be fetched from dhcp?14:36
noonedeadpunkAs then it could be configuration issue...14:37
tweiningnoonedeadpunk: I am not aware of issues with those tarballs, but I haven't tested them either recently.14:58
noonedeadpunksooo... security group doesn't contain any single egress rule. So DHCP can't be reached15:30
noonedeadpunkaha... but it looks like it's operator who must ensure security groups15:31
tweiningDHCP should work in principle or else the "no-resolvconf" element for the image would be pointless. IDK it it relies on it for IP config though. I'd say probably not.15:34
noonedeadpunkor not?15:34
noonedeadpunkDoes octavia create a security group for itself?15:34
tweiningAFAIK the deployment tool is responsible to do that. I know that TripleO does it.15:35
noonedeadpunkah, yes, you're right15:36
noonedeadpunkthanks and sorry for bothering!15:41
johnsomnoonedeadpunk For the lb-mgmt-net interface, it typically gets it's address from the config drive, but will fall back to DHCP15:41
noonedeadpunkWell, looks it's not present on config drive now somehow15:42
johnsomThat is odd15:43
johnsomnoonedeadpunk Example from a recent check job: https://zuul.opendev.org/t/openstack/build/16febfbe27684287bc31b7be8deb6fc7/log/controller/logs/octavia-amphora_log.txt#108215:45
noonedeadpunkjohnsom: console log in my case shows this somehow https://paste.openstack.org/show/bUhFZrANHWWH6jgVPZcL/15:46
johnsomYeah, so no IP address provided to cloud-init15:47
noonedeadpunkit's really interesting what could be the reason15:47
noonedeadpunkthough if fetch more output it would be like that https://paste.openstack.org/show/bFH8dciiY4NoDj8V0hPh/15:49
noonedeadpunkso it waits for DHCP I assume anyway15:50
noonedeadpunkand then just fails15:50
johnsomYeah, the amphora are configured to fall back to DHCP15:50
johnsomCan you provide the output of a "openstack server show" on the amphora instance?15:51
noonedeadpunkwell, dhcp is "legitly"not allowed by security groups...15:52
johnsomYeah, that is the responsibility of the deployment tool to setup the lb-mgmt-net15:52
noonedeadpunkI know. But it used to work like that for years. And last time I know it was passing CI is march 315:53
johnsomHmmm, somebody changed something.... grin15:54
noonedeadpunkYeah and trying to understand was it us or not. At least security groups were always like that... And eventually I'd assume IP to be contained on config drive indeed15:55
johnsomI am pretty sure OSA always got the IP via config drive15:55
noonedeadpunkyeah, true15:55
johnsomCan you provide a server show output?15:55
noonedeadpunkhttps://paste.openstack.org/show/bwLWf9LMH8r4zicLDyro/15:56
tweiningcould it be caused by https://review.opendev.org/c/openstack/octavia/+/855441?15:56
johnsomNope, it never worked15:57
johnsomWhich is very odd that user_data is being passed to that amphora.15:57
johnsomDid someone change the user_data_config_drive setting in you octavia conf. It should always be False15:57
noonedeadpunkhere's octavia.conf https://paste.openstack.org/show/bT5zrTehrFOYb5yCZon8/ 15:59
noonedeadpunk(i don't care about secrets - it's sandbox)15:59
johnsomHmm, can you do a show on the nova flavor?  ad6028fb-af69-4c86-886a-83047c7e0d9216:00
noonedeadpunkhttps://paste.openstack.org/show/bdaqYPuA1VUPz6KWCsbO/16:02
noonedeadpunkI can place an SSH key there if you're up to :)16:03
johnsomWell, if it doesn't get an IP.... lol16:03
noonedeadpunkOn the deployment I meant - it's a VM.16:03
noonedeadpunkAND, I changed image to include arbitrary user with sudo :)16:04
johnsomI'm really puzzled by where that "user_data" would be coming from16:04
noonedeadpunkSo with ssh port forwarding VNC console is available16:04
johnsomYeah, you can attach with virsh too16:05
noonedeadpunkwell, yeah16:05
johnsomOh, ok, I think that was a workaround Greg added to a rsyslog/systemd issue:16:06
johnsomruncmd:16:06
johnsom-   systemctl restart rsyslog16:06
johnsomI guess next step is to find the lb-mgmt-net port in neutron and see if it has an IP16:07
noonedeadpunkit does16:07
noonedeadpunkAs once I assign IP inside VM LB is marked as active16:08
johnsomOh: networks                            | None 16:08
johnsomThat is odd, since the conf has: amp_boot_network_list = 1e2fa36c-12b6-4fc9-bc1e-48668cda152316:09
johnsomNova never attached the network16:09
noonedeadpunkalso - https://paste.openstack.org/show/bTep3gFgHrAcHW55cnfR/16:09
noonedeadpunkwell, I do see an interface inside16:09
noonedeadpunkhttps://pasteboard.co/SPAZVEjbbWjW.png16:11
johnsomYeah, that just seemed odd in the server show output. I'm restacking so I can compare.16:11
johnsomFYI, you can mount the config drive by mounting the  sr0 device if you want to look at the metadata16:12
noonedeadpunkI think it's somewhere on 2023.1 - at least octavia version is exactly 12.0.016:14
noonedeadpunkit kinda aligned with having no IP in it https://paste.openstack.org/show/bNGH0dceR991yU0OthqO/16:15
noonedeadpunkwhich might be kinda nova thing...16:15
noonedeadpunk`"type": "ipv4_dhcp"`16:16
noonedeadpunksorry, this is output from another amphora - the one I've pasted before got deleted as LB went to ERROR16:16
johnsomYeah, the port output and the server show had an IP, so I would expect it to be in the metadata. I can confirm in just a few minutes, just about done with the stack16:17
noonedeadpunkNova is 27.0.1.dev2 (so 2 commits from 27.0.0)16:18
johnsomhttps://www.irccloud.com/pastebin/fEVIIOCM/16:22
noonedeadpunkhuh16:22
johnsomSo my "networks" is also None, but the config drive does have an IP in it16:22
noonedeadpunkfor what version is that?16:22
johnsommaster branches across the board16:23
noonedeadpunkmeaning - metadata version16:23
noonedeadpunkI looked at `openstack/2020-10-14/network_data.json `16:23
johnsomOh, I opened "latest", let me check16:23
noonedeadpunkyeah latest is the same16:24
johnsomYeah, 2020-10-14 is the same 16:24
noonedeadpunkhm16:24
noonedeadpunkI probably should bug nova folks then...16:24
johnsomYeah, that is an odd one. No idea why it wouldn't populate that correctly. It's on the port and server instance info16:25
noonedeadpunkdo you have dhcp enabled for the network?16:25
gthiemongeI also have type: "ipv4" and an ip address in this file16:25
johnsom| enable_dhcp          | True16:25
johnsomBut I'm 99% sure cloud-init is overriding that 16:26
noonedeadpunkWeird part is that somehow upgrade job from yoga is passing16:27
noonedeadpunkWell, the biggest change we did - updated version of ansible collections. So smth might be off with network creation16:27
johnsomYeah, I am pretty sure all of our jobs are passing as we have been merging a bunch of backports16:27
johnsomWe haven't cut in stable branch releases yet though16:28
noonedeadpunkyeah, smth is obviously off in metadata16:28
« Thursday, 2023-04-13 Index Saturday, 2023-04-15 »

Generated by irclog2html.py 2.17.3 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!