| -@gerrit:opendev.org- Zuul merged on behalf of James E. Blair https://matrix.to/#/@jim:acmegating.com: | 06:46 | |
| - [zuul/zuul] 920367: Move repo state to blobstore https://review.opendev.org/c/zuul/zuul/+/920367 | ||
| - [zuul/zuul] 921460: Use merger_items to get additional repo state projects https://review.opendev.org/c/zuul/zuul/+/921460 | ||
| - [zuul/nodepool] 921466: Remove unecessary azure dependencies https://review.opendev.org/c/zuul/nodepool/+/921466 | ||
| -@gerrit:opendev.org- Felix Edel proposed: | 08:00 | |
| - [zuul/zuul] 916284: Implement new status page https://review.opendev.org/c/zuul/zuul/+/916284 | ||
| - [zuul/zuul] 916285: Make helper functions available to other components https://review.opendev.org/c/zuul/zuul/+/916285 | ||
| - [zuul/zuul] 916286: Implement QueueItemPopover https://review.opendev.org/c/zuul/zuul/+/916286 | ||
| - [zuul/zuul] 916287: Implement PipelineDetails view https://review.opendev.org/c/zuul/zuul/+/916287 | ||
| - [zuul/zuul] 916288: Sort pipelines on status page by number of queue items https://review.opendev.org/c/zuul/zuul/+/916288 | ||
| - [zuul/zuul] 916289: Align QueueItem and QueueItemPopover https://review.opendev.org/c/zuul/zuul/+/916289 | ||
| - [zuul/zuul] 916290: Align job progress bars and job result labels https://review.opendev.org/c/zuul/zuul/+/916290 | ||
| - [zuul/zuul] 916744: Visualize branches in ChangeQueues https://review.opendev.org/c/zuul/zuul/+/916744 | ||
| - [zuul/zuul] 916867: Implement admin actions (promote, dequeue) in new QueueItem component https://review.opendev.org/c/zuul/zuul/+/916867 | ||
| - [zuul/zuul] 916973: Show queue lengths and fetching state on status page https://review.opendev.org/c/zuul/zuul/+/916973 | ||
| - [zuul/zuul] 916974: Add switch to show/hide empty pipelines and queues https://review.opendev.org/c/zuul/zuul/+/916974 | ||
| - [zuul/zuul] 917039: Add support for dark mode to new status view components https://review.opendev.org/c/zuul/zuul/+/917039 | ||
| - [zuul/zuul] 917952: Show last reconfiguration time on status page https://review.opendev.org/c/zuul/zuul/+/917952 | ||
| - [zuul/zuul] 918030: Show zuul version in footer section on status page https://review.opendev.org/c/zuul/zuul/+/918030 | ||
| -@gerrit:opendev.org- Jens Harbott proposed: [zuul/zuul-jobs] 921501: Drop outdated testing platforms https://review.opendev.org/c/zuul/zuul-jobs/+/921501 | 09:45 | |
| -@gerrit:opendev.org- Jens Harbott proposed on behalf of James E. Blair https://matrix.to/#/@jim:acmegating.com: [zuul/zuul-jobs] 891221: Auto-generate ensure-podman jobs https://review.opendev.org/c/zuul/zuul-jobs/+/891221 | 10:36 | |
| -@gerrit:opendev.org- Clark Boylan proposed: [zuul/zuul-jobs] 920857: Update ansible versions used in unittesting https://review.opendev.org/c/zuul/zuul-jobs/+/920857 | 10:40 | |
| -@gerrit:opendev.org- Clark Boylan proposed: [zuul/zuul-jobs] 920841: Add nox and tox py312 jobs https://review.opendev.org/c/zuul/zuul-jobs/+/920841 | 10:40 | |
| @mnaser:matrix.org | Is there a way to pull out secret containers as a Zuul admin? I know the answer is yes but if there is a lingering python script somewhere that does it would be nice... | 12:49 |
|---|---|---|
| @mnaser:matrix.org | s/secret containers/secret data/ | 12:50 |
| -@gerrit:opendev.org- Simon Westphahl proposed: [zuul/zuul] 921521: Revise Nodepool in Zuul spec https://review.opendev.org/c/zuul/zuul/+/921521 | 13:27 | |
| -@gerrit:opendev.org- Tristan Cacqueray https://matrix.to/#/@tristanc_:matrix.org proposed: [zuul/zuul] 921474: web: update re-ansi to the latest version https://review.opendev.org/c/zuul/zuul/+/921474 | 13:31 | |
| @jim:acmegating.com | mnaser: https://review.opendev.org/908507 in an emergency this might work | 13:50 |
| @sylvass:albinvass.se | mnaser: either what corvus mentions or otherwise I'd recommend sops: | 14:00 |
| https://github.com/getsops/sops | ||
| It should be quite easy to use that in zuul by storing an age key as a zuul secret. | ||
| @jim:acmegating.com | oh yeah i interpreted the question as post-facto :) but that's pretty cool pre-facto. | 14:01 |
| @sylvass:albinvass.se | yeah you're basically using zuul secrets to let zuul access your secrets, instead of storing secrets in zuul. | 14:02 |
| @jim:acmegating.com | a good idea in general in fact, since it reduces public ciphertext and the number of things you might need to rotate over time. | 14:03 |
| @mordred:waterwanders.com | ++ yeah. I feel like someone was using that approach at one point with vault | 14:03 |
| @mordred:waterwanders.com | maybe spamaps | 14:04 |
| @jim:acmegating.com | (oh though sops doesn't necessarily reduce the public ciphertext; depends on how you use it) | 14:04 |
| @sylvass:albinvass.se | I've had some ideas to set up a master vault key to generate tokens that give access to repo specific secret in zuul. But never got around to implement it | 14:04 |
| @sylvass:albinvass.se | * I've had some ideas to set up a master vault key in a config project to generate tokens that give access to repo specific secret in zuul. But never got around to implement it | 14:04 |
| @sylvass:albinvass.se | * I've had some ideas to set up a master vault key in a config project to generate tokens that give access to repo specific secrets stored in vault. But never got around to implement it | 14:05 |
| @mordred:waterwanders.com | using the project key as an access key to a vault system would also be neat. makes me want a secret store service that uses ssh as a protocol with a key-fetch api rather than a shell once you're connected | 14:07 |
| @mordred:waterwanders.com | I don't know what problem I'm solving now | 14:07 |
| @mordred:waterwanders.com | but I'm sure it must be one | 14:07 |
| @jim:acmegating.com | ssh all the things? :) | 14:08 |
| @sylvass:albinvass.se | mordred: well you can use ssh-to-age to retrieve secrets from sops, but you'd need to private key for that :) | 14:09 |
| @mordred:waterwanders.com | oh really? well - in that case, it would totally work with project keys | 14:11 |
| @mordred:waterwanders.com | oh - you need direct access to the private key | 14:12 |
| @mordred:waterwanders.com | not - there is an ssh protocol support already for sops. I now understand more better | 14:13 |
| @sylvass:albinvass.se | yeah sops is basically keeping encyrpted secrets in a yaml file, similar to what zuul does but it allows you to configure multipe recipients | 14:15 |
| @sylvass:albinvass.se | * yeah sops is basically keeping encrypted secrets in a yaml file, similar to what zuul does but it allows you to configure multipe recipients | 14:15 |
| @sylvass:albinvass.se | * mordred: well you can use ssh-to-age to retrieve secrets from sops, but you'd need to access the private key for that :) | 14:16 |
| @mordred:waterwanders.com | I'm still on early morning brain | 14:17 |
| @sylvass:albinvass.se | There's https://github.com/getsops/sops/pull/1496 that makes it a bit easier to use with ssh keys directly instead of having to convert the keys to age or gpg | 14:17 |
| -@gerrit:opendev.org- Zuul merged on behalf of Jens Harbott: [zuul/zuul-jobs] 921501: Drop outdated testing platforms https://review.opendev.org/c/zuul/zuul-jobs/+/921501 | 14:36 | |
| -@gerrit:opendev.org- Zuul merged on behalf of Clark Boylan: [zuul/zuul-jobs] 920857: Update ansible versions used in unittesting https://review.opendev.org/c/zuul/zuul-jobs/+/920857 | 14:43 | |
| -@gerrit:opendev.org- Zuul merged on behalf of Clark Boylan: [zuul/zuul-jobs] 920841: Add nox and tox py312 jobs https://review.opendev.org/c/zuul/zuul-jobs/+/920841 | 14:43 | |
| @mnaser:matrix.org | cool discussion to read and thanks for that tool, it got me out of my trouble (lost ansible galaxy token and didnt want to break the world with a new one whoops) | 15:12 |
| @sylvass:albinvass.se | tristanC: yep that fixed yarn build on arm | 20:19 |
| @sylvass:albinvass.se | However now the python build fails instead. Trying to see what goes wrong | 20:21 |
| @sylvass:albinvass.se | Stacktrace in thread in case anyone has any idea, I'm guessing it's something with a missing arm64 wheel so it fails to build from sdist | 20:25 |
| @sylvass:albinvass.se | ``` | 20:25 |
| + install_wheels | ||
| + /tmp/venv/bin/python3 -m build -o /output/toplevel_wheels ./ | ||
| * Creating isolated environment: venv+pip... | ||
| * Installing packages in isolated environment: | ||
| - setuptools >= 40.8.0 | ||
| * Getting build dependencies for sdist... | ||
| * Installing packages in isolated environment: | ||
| - pbr | ||
| * Building sdist... | ||
| Traceback (most recent call last): | ||
| File "/tmp/venv/lib/python3.11/site-packages/pyproject_hooks/_in_process/_in_process.py", line 373, in <module> | ||
| main() | ||
| File "/tmp/venv/lib/python3.11/site-packages/pyproject_hooks/_in_process/_in_process.py", line 357, in main | ||
| json_out["return_val"] = hook(**hook_input["kwargs"]) | ||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||
| File "/tmp/venv/lib/python3.11/site-packages/pyproject_hooks/_in_process/_in_process.py", line 326, in build_sdist | ||
| return backend.build_sdist(sdist_directory, config_settings) | ||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||
| File "/tmp/build-env-5vaf74bu/lib/python3.11/site-packages/setuptools/build_meta.py", line 419, in build_sdist | ||
| return self._build_with_temp_dir( | ||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||
| File "/tmp/build-env-5vaf74bu/lib/python3.11/site-packages/setuptools/build_meta.py", line 395, in _build_with_temp_dir | ||
| self.run_setup() | ||
| File "/tmp/build-env-5vaf74bu/lib/python3.11/site-packages/setuptools/build_meta.py", line 487, in run_setup | ||
| super().run_setup(setup_script=setup_script) | ||
| File "/tmp/build-env-5vaf74bu/lib/python3.11/site-packages/setuptools/build_meta.py", line 311, in run_setup | ||
| exec(code, locals()) | ||
| File "<string>", line 20, in <module> | ||
| File "/tmp/build-env-5vaf74bu/lib/python3.11/site-packages/setuptools/__init__.py", line 103, in setup | ||
| return distutils.core.setup(**attrs) | ||
| ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ | ||
| File "/tmp/build-env-5vaf74bu/lib/python3.11/site-packages/setuptools/_distutils/core.py", line 146, in setup | ||
| _setup_distribution = dist = klass(attrs) | ||
| ^^^^^^^^^^^^ | ||
| File "/tmp/build-env-5vaf74bu/lib/python3.11/site-packages/setuptools/dist.py", line 307, in __init__ | ||
| _Distribution.__init__(self, dist_attrs) | ||
| File "/tmp/build-env-5vaf74bu/lib/python3.11/site-packages/setuptools/_distutils/dist.py", line 284, in __init__ | ||
| self.finalize_options() | ||
| File "/tmp/build-env-5vaf74bu/lib/python3.11/site-packages/setuptools/dist.py", line 659, in finalize_options | ||
| ep(self) | ||
| File "/tmp/build-env-5vaf74bu/lib/python3.11/site-packages/setuptools/dist.py", line 679, in _finalize_setup_keywords | ||
| ep.load()(self, ep.name, value) | ||
| File "/tmp/build-env-5vaf74bu/lib/python3.11/site-packages/pbr/core.py", line 100, in pbr | ||
| raise errors.DistutilsFileError( | ||
| distutils.errors.DistutilsFileError: The setup.cfg file /tmp/src/setup.cfg does not exist. | ||
| ERROR Backend subprocess exited when trying to invoke build_sdist | ||
| Error: building at STEP "RUN assemble": while running runtime: exit status 1 | ||
| ``` | ||
| @clarkb:matrix.org | I would've guessed that a wheel for arm64 was missing too, but it seems that the setup.cfg for zuul is missing in the build env instead. Maybe it didn't get copied over properly? | 20:27 |
| @sylvass:albinvass.se | oh you're right, the repo looks corrupt | 20:27 |
| @sylvass:albinvass.se | yep that works. I must have done something strange when I copied over the repo, sorry for the noise | 21:44 |
Generated by irclog2html.py 2.17.3 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!