Wednesday, 2015-11-18

*** sacharya_ has quit IRC		00:01
*** mwheckmann has quit IRC		00:37
kfox1111	I see in the docker file where rdo's openstack-keystone is installed, but I don't see where a wsgi config is put into apache. am I missing something?	00:40
kfox1111	shoudln't it be doing something with /usr/share/keystone/wsgi-keystone.conf?	00:40
kfox1111	oh... its coming from the ansible side.	00:41
*** jasonsb_ has quit IRC		00:42
*** jasonsb has joined #kolla		00:42
SamYaple	kfox1111: right because the wsgi file controls port bindings and other config things (like ssl if you want ssl termination on the keystone side rather than the LB)	00:43
kfox1111	yeah. that makes sense.	00:44
*** jasonsb has quit IRC		00:47
openstackgerrit	Merged openstack/kolla: Remove old config-external.sh scripts for magnum https://review.openstack.org/246523	00:48
openstackgerrit	Merged openstack/kolla: Drop root for Magnum https://review.openstack.org/246529	00:50
openstackgerrit	Merged openstack/kolla: Improve README with list of supported projects and components https://review.openstack.org/246605	00:55
*** Kennan has quit IRC		00:59
*** akwasnie1 has joined #kolla		01:02
*** Kennan has joined #kolla		01:03
openstackgerrit	Merged openstack/kolla: Get kolla path from settings when provisioning box https://review.openstack.org/244670	01:05
SamYaple	mandre: https://review.openstack.org/#/c/244670/	01:05
SamYaple	i left a comment on there right after you approved it it seems	01:06
*** thumpba has joined #kolla		01:06
mandre	yeah SamYaple, you're right	01:12
*** thumpba has quit IRC		01:12
mandre	i was about to submit a patch upon it to make argument handling a bit more obvious, i'll fix it at the same time	01:12
SamYaple	its not a big thing	01:17
SamYaple	thanks for handling it	01:17
openstackgerrit	Alicja Kwasniewska proposed openstack/kolla: Fixed logging error messages from keystone to syslog. Rsyslog adapted to filter keystone error log messages. https://review.openstack.org/246703	01:23
openstackgerrit	Martin André proposed openstack/kolla: Make vagrant bootstrap scripts args more obvious https://review.openstack.org/246704	01:26
*** akwasnie1 has quit IRC		01:28
*** ssurana has quit IRC		01:40
*** weiyu_ has joined #kolla		01:42
*** cemmason has joined #kolla		01:51
*** cemason has joined #kolla		01:59
asalkeld	does anyone know why we pin docker to 1.8.2?, my docker on mesos-slave is newer than the one installed by kolla(vagrant) and so nothing will work	02:00
rhallisey	akscram, I know lately 1.9 denies mounting in /etc because of docker-selinux I think	02:00
asalkeld	just figuring out if it's ansible related - maybe I can upgrade my docker without a problem, or rebuild the mesos docker images	02:01
rhallisey	it probably also it	02:01
rhallisey	is	02:01
rhallisey	I don't recall the issue	02:01
rhallisey	I don't think that was why we originally pinned it	02:01
asalkeld	rhallisey: ok, so I'll try upgrading docker and see what happens :-O	02:01
rhallisey	but more of an issue i've had lately with 1.9	02:02
rhallisey	asalkeld, good luck!	02:02
asalkeld	thx	02:02
SamYaple	asalkeld: its ansible related	02:02
asalkeld	SamYaple: thanks	02:03
SamYaple	asalkeld: but ansible on hte deploy host related, not the kolla_ansible container	02:03
SamYaple	so youre good to do docker whatever version with mesos	02:03
openstackgerrit	Martin André proposed openstack/kolla: Make vagrant bootstrap scripts args more obvious https://review.openstack.org/246704	02:03
asalkeld	cool, i'll upgrade then	02:03
SamYaple	I actually use docker 1.9 and docker-dev with my testing and it works fine	02:04
SamYaple	but i hacked on the ansible docker module to make that work	02:04
*** mwheckmann has joined #kolla		02:05
*** sacharya has joined #kolla		02:05
asalkeld	k	02:06
*** tfukushima has joined #kolla		02:07
*** vilobhmm has quit IRC		02:12
openstackgerrit	Merged openstack/kolla: Fix namespace regression for neutron https://review.openstack.org/244768	02:14
*** akwasnie1 has joined #kolla		02:14
*** jtriley has joined #kolla		02:16
*** mwheckmann has quit IRC		02:17
*** mwheckmann has joined #kolla		02:17
*** jasonsb has joined #kolla		02:20
*** unicell1 has quit IRC		02:22
openstackgerrit	Alicja Kwasniewska proposed openstack/kolla: Fixed log error messages from keystone to syslog. https://review.openstack.org/246703	02:26
*** akwasnie1 has quit IRC		02:26
*** sdake has joined #kolla		02:28
*** dims_ has quit IRC		02:30
sdake	evening	02:54
*** tfukushima has quit IRC		02:55
rhallisey	quiet tis time of night	02:57
kjelly	hi sdake, do you have any suggestion reference about Immutable Infrastructure? I read your blog already.	03:02
*** cemmason has quit IRC		03:19
*** cemason has quit IRC		03:19
openstackgerrit	Martin André proposed openstack/kolla: Remove "../../etc/kolla" from synced folders in Vagrant https://review.openstack.org/245022	03:20
*** rhallisey has quit IRC		03:23
*** achanda has joined #kolla		03:24
*** cemason has joined #kolla		03:30
*** cemmason has joined #kolla		03:30
*** jtriley has quit IRC		03:31
*** jasonsb has quit IRC		03:33
*** sdake has quit IRC		03:35
*** Slower has quit IRC		03:37
*** tpot has quit IRC		03:39
*** alisonh has quit IRC		03:45
*** jtriley has joined #kolla		03:45
*** sdake has joined #kolla		03:45
*** sacharya has quit IRC		03:46
*** achanda has quit IRC		03:48
*** cemmason has quit IRC		03:55
*** cemason has quit IRC		03:55
asalkeld	root root 100G Nov 17 22:34 /var/lib/docker/devicemapper/devicemapper/data	03:55
*** achanda has joined #kolla		03:55
asalkeld	that grows ^	03:55
*** cemmason has joined #kolla		03:56
*** cemason has joined #kolla		03:56
*** cemason has quit IRC		03:57
*** cemmason has quit IRC		03:59
asalkeld	https://github.com/docker/docker/issues/9786	03:59
*** cemmason has joined #kolla		03:59
*** alisonh has joined #kolla		04:02
*** jasonsb has joined #kolla		04:04
*** jasonsb has quit IRC		04:09
*** mwheckmann has quit IRC		04:36
*** jtriley has quit IRC		04:38
*** tzn has joined #kolla		04:38
*** weiyu_ has quit IRC		04:39
*** tzn has quit IRC		04:42
*** tpot has joined #kolla		04:51
*** vilobhmm has joined #kolla		04:52
*** jasonsb has joined #kolla		04:52
*** Chandra has joined #kolla		05:05
Chandra	hi , when i am trying to push images i am getting error as below. if someone knows how to resolve the issue , please help	05:05
Chandra	requests.packages.urllib3.exceptions.ReadTimeoutError: UnixHTTPConnectionPool(host='localhost', port=None): Read timed out	05:05
Chandra	i am using command " kolla-build --base ubuntu --type source --registry 192.168.1.50:4000 --push	05:06
*** vilobhmm has quit IRC		05:07
*** achanda has quit IRC		05:12
*** vilobhmm has joined #kolla		05:21
*** weiyu_ has joined #kolla		05:23
*** achanda has joined #kolla		05:25
*** achanda has quit IRC		05:29
*** weiyu_ has quit IRC		05:32
*** weiyu_ has joined #kolla		05:33
*** achanda has joined #kolla		05:35
nihilifer	asalkeld: o/	05:41
asalkeld	hi	05:42
nihilifer	asalkeld: what kind of filesystems you're using in docker?	05:42
nihilifer	it's the issue of devicemapper, aufs, btrfs, overlayfs?	05:42
asalkeld	nihilifer: devicemapper, but i think that it is solved by running yum update in the vagrant bootstrap.sh	05:43
Chandra	i am sure about that. where i can check those ?	05:43
Chandra	base os is ubuntu	05:43
nihilifer	hey Chandra, well, about your issue	05:44
nihilifer	Chandra: does it error provide any bigger traceback?	05:44
nihilifer	Chandra: if yes, please share it on paste.openstack.org :)	05:44
*** weiyu_ has quit IRC		05:48
*** salv-orl_ has joined #kolla		05:50
*** achanda has quit IRC		05:53
*** salv-orlando has quit IRC		05:53
nihilifer	asalkeld: we discussed kazoo with SamYaple, probably today at night in Australian time ;)	05:54
nihilifer	asalkeld: SamYaple says that kazoo is not the only thing which may conflict between pip and packages	05:54
nihilifer	he mentioned about ceph-common which has some python dependencies, which are overriden later by pip	05:54
*** salv-orl_ has quit IRC		05:55
nihilifer	so it looks like we have to use virtualenvs	05:57
*** achanda has joined #kolla		05:58
asalkeld	ok nihilifer	05:58
*** suro-patz has joined #kolla		06:18
*** pbourke has quit IRC		06:18
*** pbourke has joined #kolla		06:19
*** Reddy has joined #kolla		06:20
*** suro-patz has quit IRC		06:21
*** clayton has quit IRC		06:22
*** clayton has joined #kolla		06:23
openstackgerrit	Michal Rostecki proposed openstack/kolla: [WIP] Source installation in virtualenv https://review.openstack.org/246762	06:24
*** Chandra has quit IRC		06:25
*** unicell has joined #kolla		06:26
*** vilobhmm1 has joined #kolla		06:26
*** chandra has joined #kolla		06:26
*** vilobhmm has quit IRC		06:29
*** weiyu_ has joined #kolla		06:31
*** tfukushima has joined #kolla		06:45
*** tpot has quit IRC		06:51
*** salv-orlando has joined #kolla		06:51
openstackgerrit	Michal Rostecki proposed openstack/kolla: [WIP] Source installation in virtualenv https://review.openstack.org/246762	06:55
*** tfukushima has quit IRC		06:56
*** tfukushima has joined #kolla		07:04
*** unicell1 has joined #kolla		07:08
*** unicell has quit IRC		07:09
*** tfukushima has quit IRC		07:10
*** salv-orlando has quit IRC		07:12
*** chandra has quit IRC		07:16
*** vilobhmm1 has quit IRC		07:25
*** achanda has quit IRC		07:32
*** jmccarthy1 has joined #kolla		07:33
*** jmccarthy1 has quit IRC		07:35
*** jmccarthy has quit IRC		07:47
*** jmccarthy has joined #kolla		07:48
*** slotti has joined #kolla		07:54
*** stvnoyes has quit IRC		08:03
*** stvnoyes has joined #kolla		08:03
*** tzn has joined #kolla		08:04
*** rmart04 has joined #kolla		08:11
*** salv-orlando has joined #kolla		08:19
openstackgerrit	Michal Rostecki proposed openstack/kolla: [WIP] Source installation in virtualenv https://review.openstack.org/246762	08:19
*** shardy has joined #kolla		08:21
*** salv-orlando has quit IRC		08:27
*** egonzalez has joined #kolla		08:30
*** _tzn has joined #kolla		08:35
*** nihilifer has quit IRC		08:36
*** nihilifer has joined #kolla		08:36
*** tzn has quit IRC		08:37
*** haojing has joined #kolla		08:41
*** kproskurin has joined #kolla		08:48
*** sacharya has joined #kolla		08:49
*** sacharya has quit IRC		08:53
*** gfidente has joined #kolla		08:57
*** _tzn has quit IRC		09:04
*** achanda has joined #kolla		09:05
openstackgerrit	Michal Rostecki proposed openstack/kolla: [WIP] Source installation in virtualenv https://review.openstack.org/246762	09:06
*** egonzalez has quit IRC		09:20
*** achanda has quit IRC		09:22
*** salv-orlando has joined #kolla		09:26
*** athomas has joined #kolla		09:29
*** salv-orlando has quit IRC		09:36
*** salv-orlando has joined #kolla		09:37
*** dwalsh has joined #kolla		09:37
asalkeld	nihilifer: btw we need jinja2 (as well as kazoo)	09:38
nihilifer	asalkeld: yes, we need. didn't i add it to your patch in kolla-mesos?	09:39
nihilifer	here it is https://review.openstack.org/#/c/242912/13/requirements.txt	09:40
*** tfukushima has joined #kolla		09:43
nihilifer	aww, ok, you mean jinja2 in kolla dockerfiles...	09:46
nihilifer	omg, i have to get a next coffe	09:46
asalkeld	yip in the images	09:49
*** tfukushima has quit IRC		09:50
*** dwalsh has quit IRC		09:53
*** jmccarthy has quit IRC		10:05
*** haojing has quit IRC		10:09
*** kklimonda has quit IRC		10:11
*** weiyu_ has quit IRC		10:14
*** weiyu_ has joined #kolla		10:17
*** jmccarthy has joined #kolla		10:24
*** jmccarthy has quit IRC		10:26
*** jmccarthy has joined #kolla		10:27
*** tzn has joined #kolla		10:42
*** tzn has quit IRC		10:42
*** tzn has joined #kolla		10:42
openstackgerrit	Michal Rostecki proposed openstack/kolla: [WIP] Source installation in virtualenv https://review.openstack.org/246762	10:44
*** sacharya has joined #kolla		10:54
*** tzn has quit IRC		10:55
*** sacharya has quit IRC		10:58
*** weiyu_ has quit IRC		11:00
openstackgerrit	Paul Bourke proposed openstack/kolla: Add missing usermod for magnum https://review.openstack.org/246858	11:01
openstackgerrit	Paul Bourke proposed openstack/kolla: Fix missing policy.json in Magnum https://review.openstack.org/246522	11:03
*** weiyu_ has joined #kolla		11:03
*** exploreshaifali has joined #kolla		11:05
*** dims has joined #kolla		11:07
*** jmccarthy has quit IRC		11:09
*** jmccarthy has joined #kolla		11:10
*** dims has quit IRC		11:12
*** akwasnie has joined #kolla		11:16
*** dims has joined #kolla		11:18
*** weiyu_ has quit IRC		11:29
*** weiyu has joined #kolla		11:30
*** aswadr has joined #kolla		11:32
*** weiyu has quit IRC		11:41
*** jmccarthy has quit IRC		11:47
*** jmccarthy has joined #kolla		11:47
*** weiyu_ has joined #kolla		11:49
*** exploreshaifali has quit IRC		11:49
*** ziggypup has joined #kolla		11:50
*** ziggypup has left #kolla		11:50
*** exploreshaifali has joined #kolla		11:53
openstackgerrit	Michal Rostecki proposed openstack/kolla: [WIP] Source installation in virtualenv https://review.openstack.org/246762	11:56
*** exploreshaifali has quit IRC		12:03
*** egonzalez has joined #kolla		12:03
*** tzn has joined #kolla		12:07
*** weiyu_ has quit IRC		12:08
*** weiyu has joined #kolla		12:10
openstackgerrit	Paul Bourke proposed openstack/kolla: Fix missing policy.json in Magnum https://review.openstack.org/246522	12:11
*** gfidente has quit IRC		12:12
*** aswadr has quit IRC		12:15
Reddy	Hi i am getting error while running "kolla-build --base ubuntu --type source --registry 192.168.1.50:4000 --push"	12:15
Reddy	http://paste.openstack.org/show/479243/	12:15
nihilifer	hey Reddy	12:16
nihilifer	what distro you're running on host?	12:16
nihilifer	and do you run kolla from master branch?	12:16
openstackgerrit	Merged openstack/kolla: Make vagrant bootstrap scripts args more obvious https://review.openstack.org/246704	12:16
Reddy	ubuntu	12:17
Reddy	yes i am using master branch only .	12:18
Reddy	is this error related to docker ??	12:18
Reddy	i dint faced any issue when i tried for AIO .	12:19
nihilifer	ok. one more question before I'll file a bug about this ;) could you please check whether the docker registry is running correctly? "netstat -tnlp \| grep 4000", "docker ps \| grep registry" etc.?	12:19
nihilifer	it seems to be an issue of urllib3, a part of standard python library	12:19
openstackgerrit	Merged openstack/kolla: Fixed log error messages from keystone to syslog. https://review.openstack.org/246703	12:19
openstackgerrit	Merged openstack/kolla: Remove "../../etc/kolla" from synced folders in Vagrant https://review.openstack.org/245022	12:19
nihilifer	so the problem is with connecting to registry on the "lower level"	12:19
*** gfidente has joined #kolla		12:20
Reddy	root@ubuntu1:~/kolla# docker ps \| grep registry	12:21
Reddy	693991941b55 registry:2 "/bin/registry /etc/d" 2 hours ago Up 2 hours 0.0.0.0:4000->5000/tcp registry	12:21
Reddy	netstat -tnlp \| grep 4000	12:22
Reddy	tcp6 0 0 :::4000 :::* LISTEN 1799/docker-proxy	12:22
*** egonzalez has quit IRC		12:22
Reddy	nihilifer : do we have any work around to push the images to local registry ??	12:25
nihilifer	ok, so the last thing from me to try ;) could you please try to push any image explicitly to this registry? from some host which is not running registry. you can try for example to do "docker pull wordpress", then "docker tag $(docker images \| awk '/wordpress/{print $1;}') 192.168.1.50:4000/wordpress"	12:25
nihilifer	and finally "docker push 192.168.1.50:4000/wordpress"	12:25
nihilifer	i'll think about possible workarouds after trying this one. it's important whether you are able to push images to the registry at all	12:26
nihilifer	to check whether it's issue of kolla or something wrong with registry configuration	12:27
*** rhallisey has joined #kolla		12:28
Reddy	sure i will try and will post the results	12:28
openstackgerrit	Michal Rostecki proposed openstack/kolla: [WIP] Source installation in virtualenv https://review.openstack.org/246762	12:33
pbourke	ive seen that error before	12:33
pbourke	no workaround currently other than running again	12:33
Reddy	pbourke : i had tried around 6 to 7 times . every time i cleaned all images and run as fresh setup . but no luck	12:35
*** mbound has joined #kolla		12:39
*** mbound has quit IRC		12:41
Reddy	@nihilifer : http://paste.openstack.org/show/479244/	12:48
Reddy	everything went fine for wordpress	12:48
nihilifer	Reddy: so something is wrong with kolla or libraries (urllib3, docker-py)	12:49
*** mbound has joined #kolla		12:50
nihilifer	i'll file a bug about this	12:50
nihilifer	unless you want to do this ;)	12:50
Reddy	ok Thanks nihilifer . is there any work around ?	12:50
*** odyssey4me has left #kolla		12:50
nihilifer	for now i have no idea	12:50
nihilifer	me or someone else will try to reproduce and fix this	12:51
nihilifer	maybe we'll able to do this on multinode ubuntu	12:51
Reddy	yes currently i am trying multi node deployment.	12:52
*** tfukushima has joined #kolla		13:06
*** tfukushima has quit IRC		13:07
*** jmccarthy has quit IRC		13:09
*** dwalsh has joined #kolla		13:11
*** nihilifer has quit IRC		13:14
*** nihilifer has joined #kolla		13:15
*** nihilifer has quit IRC		13:15
*** weiyu has quit IRC		13:16
*** weiyu has joined #kolla		13:16
*** nihilifer has joined #kolla		13:16
*** sacharya has joined #kolla		13:19
*** sacharya has quit IRC		13:24
*** jmccarthy has joined #kolla		13:30
*** kbyrne has quit IRC		13:36
*** kbyrne has joined #kolla		13:43
*** achanda has joined #kolla		13:44
SamYaple	monring	13:46
*** achanda has quit IRC		13:46
openstackgerrit	Martin André proposed openstack/kolla: Factor out definition of nodes in Vagrantfile https://review.openstack.org/246930	13:47
openstackgerrit	Martin André proposed openstack/kolla: Allow to customize vagrant deployment https://review.openstack.org/246931	13:47
*** achanda has joined #kolla		13:49
*** inc0 has joined #kolla		13:49
inc0	hey there	13:51
*** absubram has joined #kolla		13:52
*** achanda has quit IRC		13:53
SamYaple	im here!	13:57
inc0	Sam, any chances you could add at least a bit of docs to this one? https://review.openstack.org/#/c/242373/1	13:59
SamYaple	sure	13:59
inc0	change seems cool, but I'm kinda afraid of +2 it as I don't understand what the hell is happening there;)	14:00
*** weiyu has quit IRC		14:00
SamYaple	inc0: thats a backport	14:00
SamYaple	it doesnt change behavoiur	14:01
SamYaple	there are no docs yet	14:01
inc0	yeah I know, ok +2 it as it's alreadt intree	14:01
inc0	but...please?	14:01
SamYaple	nope	14:01
SamYaple	not going to happen for liberty anywa	14:01
inc0	for the betterment of future generations	14:01
inc0	docs wont happen for liberty?	14:01
SamYaple	right but those changes arent merging until after the 1.0.1 tag	14:01
SamYaple	we dont do docs for anything but master	14:01
SamYaple	we dont backport them	14:02
inc0	ok, I have no issues with that	14:02
inc0	so I should not +2+W this one?	14:02
inc0	when do we tag 1.0.1 anyway?	14:02
SamYaple	you cant, it wont merge until i unblock the base patch	14:03
inc0	ah ok	14:03
*** weiyu_ has joined #kolla		14:03
SamYaple	you can*, but it wont merge	14:03
inc0	so I'll go ahead and give +W on this and when you unblock base it will come in automatically	14:03
*** exploreshaifali has joined #kolla		14:04
SamYaple	idk sdake	14:05
*** achanda has joined #kolla		14:12
openstackgerrit	Merged openstack/kolla: Fix missing policy.json in Magnum https://review.openstack.org/246522	14:13
*** mwheckmann has joined #kolla		14:14
inc0	sdake gave +2 to it so I guess..	14:16
SamYaple	inc0: no sdake is the guy to talk to about 1.0.1	14:17
SamYaple	he is waiting on something idk wat	14:17
*** cemmason has quit IRC		14:17
inc0	well, it won't merge anyway, so I can always revoke my review, I'll ask him around once he wakes up	14:17
*** weiyu_ has quit IRC		14:18
inc0	now I'll have whole day to interact with US \o/	14:18
*** cemmason has joined #kolla		14:18
pbourke	SamYaple: how would you feel about converting kolla-build.conf to yaml	14:18
stvnoyes	SamYaple: good morning. you mentioned something about work underway for monitoring in mitaka. Is there a blueprint for that? I'd like to take a look. thanks.	14:18
inc0	pbourke, for me it would be good change, but with "keep backward compatibility" in mind, I would be careful	14:20
pbourke	inc0: yeah Im not sure for build it matters as much though	14:20
inc0	aestethics is not reason enough for me to break backward compatibility	14:20
SamYaple	stvnoyes: inc0 ^^	14:20
SamYaple	stvnoyes: inc0 was working on it and had discussed it. is ther ea blueprint inc0 ?	14:21
pbourke	its not about aesthetics, its to allow specifying multiple sources for plugins	14:21
inc0	you mean centralized logging or sanity checks?	14:21
SamYaple	pbourke: I would say I dont care, except thats not backwards compatible and then makes it a bit of a pain for upgrades	14:21
inc0	https://blueprints.launchpad.net/kolla/+spec/central-logging-service there is this one	14:21
pbourke	it depends if people can think of another way to specify plugins for the build	14:22
SamYaple	inc0: yea all of the stuff we have that culminates in "monitoring", it should be in several blueprints	14:22
pbourke	ini is not so flexible that way	14:22
inc0	we were talking about having monitoring tools like zabbix in container	14:22
inc0	there is no bp for that, but I'd be super happy to have that stuff integrated	14:22
openstackgerrit	Paul Bourke proposed openstack/kolla: [Do not merge] Reformat kolla-build.conf to YAML https://review.openstack.org/246942	14:24
SamYaple	pbourke: yea im neutral on that change. ill wait for others to review and cast an opinion	14:25
pbourke	yeah just wanted an example up to help discussion	14:25
*** absubram has quit IRC		14:27
inc0	well, don't get me wrong, it's good thing to do	14:31
*** openstackgerrit has quit IRC		14:31
*** openstackgerrit has joined #kolla		14:32
inc0	just..peoples configs will stop working	14:32
inc0	that's my only issue	14:32
inc0	that's only build.conf so I don't think it's super critical	14:32
inc0	but still...	14:32
*** akwasnie has quit IRC		14:32
pbourke	SamYaple: want to talk about where you're at with this ansible gate patch?	14:34
*** akwasnie has joined #kolla		14:35
SamYaple	inc0: thats where im at	14:35
SamYaple	pbourke: yea	14:35
SamYaple	its ready but stupid centos	14:35
SamYaple	i need someone with centos knowlege	14:36
SamYaple	pbourke: https://review.openstack.org/#/c/244538/	14:38
SamYaple	let me rebase	14:38
pbourke	whats the centos problem	14:39
SamYaple	but whats happening is when centos tries to connect to itself with an ssh keep iwth ansible.... it hangs	14:39
SamYaple	no rythme or reason	14:39
SamYaple	i cant figure it out	14:39
SamYaple	i can run ssh commands, but with ansbile it doesnt work	14:39
SamYaple	well ansible+sudo	14:39
*** ashestakov has joined #kolla		14:41
pbourke	can you not just use a local connection?	14:42
openstackgerrit	Sam Yaple proposed openstack/kolla: Convert gate to Ansible setup https://review.openstack.org/244538	14:42
SamYaple	pbourke: i can, but not on multinode	14:42
ashestakov	Hi. Can anyone point me to any docs how to get Ironic works with Kolla?	14:42
SamYaple	im trying to unify the single and multinode gates	14:43
SamYaple	ashestakov: Ironic is in a tech preview state	14:43
pbourke	ashestakov: http://docs.openstack.org/developer/kolla/ironic-guide.html	14:43
pbourke	there's not much there unfortunately	14:43
ashestakov	should it works at all now?	14:43
inc0	ashestakov, we still experience lots of issues unfortunately	14:44
SamYaple	pbourke: here are the lines in question	14:44
SamYaple	2015-11-13 13:01:19.151 \| + ansible-playbook -i /tmp/kolla/raw_inventory -edocker_dev=vdb tests/setup_nodes.yml	14:44
SamYaple	2015-11-13 14:00:48.885 \| Build timed out (after 60 minutes). Marking the build as failed.	14:44
SamYaple	http://logs.openstack.org/38/244538/6/check/gate-kolla-dsvm-deploy-centos-binary/9559b87/console.html.gz#_2015-11-13_13_01_19_151	14:44
SamYaple	it just hangs no idea why	14:44
*** jtriley has joined #kolla		14:44
pbourke	tack on -vvv ?	14:46
SamYaple	its in the history	14:46
SamYaple	it doesnt help	14:46
SamYaple	so the whole ansible output actually hangs	14:46
SamYaple	its really wierd	14:46
inc0	have you tried running it on centos locally?	14:48
inc0	try to deploy similar vm somewhere	14:48
SamYaple	i dont run centos	14:48
inc0	right, that's why VMs are so useful;)	14:48
SamYaple	it works anywhere ive tested it	14:48
SamYaple	i dont run centos	14:49
SamYaple	oops repeat	14:49
SamYaple	pbourke: https://jenkins03.openstack.org/job/gate-kolla-dsvm-deploy-centos-binary/11/console	14:52
SamYaple	it will hang there for 60 minutes now	14:52
SamYaple	no new output	14:52
SamYaple	whats really weird is the ansible command runs once before	14:57
ashestakov	anyone works with ironic issues currently? maybe i can help?	14:57
SamYaple	this has got to be a sudo thing	14:57
SamYaple	ashestakov: i dont think anyone is focused on irnoic at the moment. you are welcome to take the reigns	14:57
SamYaple	we will definetely help you out	14:58
*** mbound has quit IRC		14:58
pbourke	SamYaple: do you need sudo -H or something	15:01
SamYaple	no	15:02
SamYaple	it hangs on something in the setup_RedHat.sh script, but i dont know why	15:02
SamYaple	i also dont know why ansible doesnt buffer its output tothe gate	15:02
*** signed8bit has joined #kolla		15:04
Reddy	Hi if someone is aware of this error please help me . http://paste.openstack.org/show/479243/	15:09
Reddy	i was stuck at pushing images to local registry for multi node. command used is "kolla-build --base ubuntu --type source --registry 192.168.1.100:4000 --push	15:10
Reddy	and my base os is ubuntu	15:10
openstackgerrit	Sam Yaple proposed openstack/kolla: DO NOT MERGE https://review.openstack.org/246979	15:12
*** exploreshaifali has quit IRC		15:12
SamYaple	http://paste.openstack.org/show/479243/	15:13
SamYaple	Reddy: looks like your registry is not up/reachable	15:13
SamYaple	can you push manually?	15:13
SamYaple	`docker push <image>`	15:13
Reddy	http://paste.openstack.org/show/479244/	15:13
SamYaple	Reddy: do you have an insecure registry (no ssl)? if so have you configured the daemon properly	15:14
Reddy	i tested that also . my register is running and i was able to push images manually	15:15
SamYaple	https://github.com/alunduil/etest/issues/16	15:16
Reddy	yes . DOCKER_OPTS="--dns 8.8.8.8 --dns 8.8.4.4 --insecure-registry 192.168.1.100:4000"	15:16
SamYaple	looks like a similiar (exaclty the same) issue	15:16
Reddy	SamYaple : what daemon you are referring . could you please help me in knowing where i can set it ?	15:17
SamYaple	Reddy: no looks like you set it correctly	15:18
SamYaple	see the github link i pasted above	15:18
SamYaple	they comment it is an overloaded daemon	15:18
SamYaple	im not sure	15:18
*** akwasnie has quit IRC		15:19
SamYaple	we could back in a push retry	15:19
*** blahRus has joined #kolla		15:20
*** sdake has quit IRC		15:20
*** sdake has joined #kolla		15:20
Reddy	i tried around 7 to 8 times by cleaning it and running the same command . every time it gives me same result	15:20
Reddy	is it something related to my config ? if i upgrade my python to version 3 , will it helps me ? do we have any dependence of pyhton version ?	15:21
SamYaple	Reddy: that link i posted was talking about your docker daemon, not the registry	15:23
SamYaple	so you could try to reduce the build threads	15:23
SamYaple	that might help	15:23
SamYaple	drop it to 1 build thread	15:23
*** sacharya has joined #kolla		15:23
Reddy	ok . Thanks SamYaple i will give a try	15:23
*** sacharya has quit IRC		15:28
*** mbound has joined #kolla		15:29
*** salv-orlando has quit IRC		15:30
*** salv-orlando has joined #kolla		15:31
nihilifer	Reddy: i probably have another idea	15:35
Reddy	yes nihilifer . please tell me	15:35
nihilifer	Reddy: as far as i see, all images were built successfully and problem is only with push to registry	15:35
nihilifer	and at the same time you were able to push manually wordpress image	15:36
nihilifer	maybe you should try to push kolla images by hand	15:36
Reddy	ok . you want me to push each image manually ?	15:36
nihilifer	yes	15:36
nihilifer	something like	15:36
Reddy	ok its good idea . let me try	15:36
SamYaple	oh i thought that was what you tried	15:36
SamYaple	yea if the daemon is just overloaded then that would work	15:37
nihilifer	Reddy: you probably will need to tag all these images	15:37
SamYaple	Reddy: `docker images \| awk '/kolla/ {print $1}' \| xargs -n1 docker push`	15:37
SamYaple	that would push all images with 'kolla' in the name	15:38
nihilifer	ah, ok, no need to tag images manually, forget my last message ;)	15:38
Reddy	ok. while pulling should i need to mention tag in global.yml file ?	15:40
Reddy	or just i need to follow normal steps to deploy ?	15:40
Reddy	ok got it . i hope its working . Thanks for help SamYaple and nihilifer	15:45
Reddy	:-)	15:45
*** rmart04 has quit IRC		15:46
SamYaple	nihilifer: no you were correct. that one liner doesnt pull in the tag so it just assumes latest	15:50
SamYaple	`docker images \| awk '/kolla/ {print $1 ":" $2}' \| xargs -n1 docker push`	15:51
SamYaple	that would reassemble the tag	15:51
openstackgerrit	Sam Yaple proposed openstack/kolla: DO NOT MERGE https://review.openstack.org/246997	15:55
sdake	morning	15:59
SamYaple	monring	15:59
sdake	hey sam	15:59
sdake	noticed there were some comments on my oslo log patch	15:59
sdake	i'll fix those up	15:59
sdake	i was totally out yesterday with some kind of stomach bug	15:59
SamYaple	yea i noticed you were just poo	16:00
*** inc0 has quit IRC		16:04
*** wuhg has quit IRC		16:11
*** jmccarthy has quit IRC		16:14
*** akwasnie has joined #kolla		16:15
*** akwasnie_ has joined #kolla		16:17
*** dims_ has joined #kolla		16:22
*** dims has quit IRC		16:24
*** exploreshaifali has joined #kolla		16:25
*** jmccarthy has joined #kolla		16:27
*** akwasnie has left #kolla		16:27
sdake	yo folks team meeting	16:29
*** akwasnie_ has quit IRC		16:29
SamYaple	sdake: you havent started it	16:30
*** ssurana has joined #kolla		16:31
*** jmccarthy has quit IRC		16:32
SamYaple	pbourke: meeting	16:33
*** jmccarthy has joined #kolla		16:33
SamYaple	nvm :)	16:33
*** suro-patz has joined #kolla		16:37
britthouser	Are we in openstack-meetings-4 ?	16:37
*** slotti has quit IRC		16:40
SamYaple	britthouser: yes	16:41
*** inc0 has joined #kolla		16:43
inc0	hey guys, meeting	16:43
inc0	is right now?	16:43
SamYaple	inc0: yup were in it	16:44
*** sacharya has joined #kolla		16:45
*** britthouser has quit IRC		16:46
openstackgerrit	Paul Bourke proposed openstack/kolla: [Do not merge] Reformat kolla-build.conf to YAML https://review.openstack.org/246942	16:51
*** britthouser has joined #kolla		16:54
openstackgerrit	Sam Yaple proposed openstack/kolla: DO NOT MERGE https://review.openstack.org/246997	16:54
openstackgerrit	Paul Bourke proposed openstack/kolla: [Do not merge] Reformat kolla-build.conf to YAML https://review.openstack.org/246942	16:57
*** unicell has joined #kolla		17:07
*** unicell1 has quit IRC		17:07
*** vbel has quit IRC		17:09
*** vbel has joined #kolla		17:10
*** suro-patz has quit IRC		17:12
*** mbound has quit IRC		17:19
openstackgerrit	Sam Yaple proposed openstack/kolla: DO NOT MERGE https://review.openstack.org/246997	17:20
*** exploreshaifali has quit IRC		17:22
*** Slower has joined #kolla		17:23
*** exploreshaifali has joined #kolla		17:23
SamYaple	first	17:29
sdake	yo dudes and dudettes	17:29
rhallisey	yo yo	17:29
inc0	ok, I'm going back to cluster meetings	17:29
inc0	first days in new work...duh	17:29
rhallisey	inc0, how have you not had BBQ yet	17:29
SamYaple	rhallisey: he said he ate a meal yesterday	17:30
SamYaple	i dont think he plans on eating again	17:30
SamYaple	big meal	17:30
SamYaple	..... for him	17:30
SamYaple	i call it tuesday	17:30
rhallisey	:)	17:30
inc0	yesterday I went to a shrimp place and took one meal for me and my wife	17:30
inc0	it was first time we've eaten whole meal since we're here	17:30
rhallisey	inc0, nice. That's always fun	17:31
inc0	and I was still stuffed	17:31
inc0	portions in TX are...well	17:31
SamYaple	everythings bigger in tx	17:31
inc0	yup	17:31
inc0	yesterday I saw a car carrying a house	17:31
sdake	haha inc0	17:31
rhallisey	inc0, go to a deli in NYC you get a cheesecake slice that can feed a family	17:31
inc0	yeah, I'll probably visit NYC at some point of me being in US	17:32
sdake	nihilifer your in kolla-drivers now	17:32
inc0	bbl	17:32
*** unicell has quit IRC		17:33
nihilifer	sdake: thx	17:34
salv-orlando	hi, I have spent some time trying kolla - deploying with baremetal instructions (even if I'm actually doing that in a VM). Things were good expect for the rabbitmq container which kept restart without providing any info in logs	17:40
salv-orlando	anyone has hints about that?	17:40
rhallisey	docker logs rabbitmq gave you nothing?	17:41
salv-orlando	last line says that it's starting rabbitmq-server and then nothing more	17:41
*** kproskurin has quit IRC		17:41
rhallisey	if you restart it `docker restart rabbitmq` is it actually up for a few seconds or does it immediately go to restarting	17:42
*** jmccarthy has quit IRC		17:43
salv-orlando	rhallisey: snippet from docker logs -> http://paste.openstack.org/show/479311/	17:43
salv-orlando	it just keeps restarting	17:43
salv-orlando	I was expecting some error message, it looks like rabbitmq-server is segfaulting	17:44
rhallisey	the error should be in the log in the container, the problem is getting to it	17:44
rhallisey	sometimes when you restart containers they will be briefly active so you can exec into them and snatch the logs	17:45
rhallisey	`docker restart rabbitmq` then `docker exec -it rabbitmq cat /var/log/rabbitmq.log`	17:45
rhallisey	given those logs I think the container is up for like 2 seconds then restarts a few times and fails	17:46
*** exploreshaifali has quit IRC		17:47
*** exploreshaifali has joined #kolla		17:48
salv-orlando	rhallisey: yes I have tried to quickly grasp something with docker restart rabbitmq && docker exec rabbitmq cat /var/log/rabbitmq.log but without luck	17:48
rhallisey	darn	17:49
rhallisey	ok other option is to `docker exec -it rabbitmq /bin/bash` and run the kolla commands by hand	17:50
salv-orlando	I thought it might be because of apparmor still active (shot in the dark), but while re-deploying I hit another issue with docker, as it lists containers but is unable to operate on it - it says "no such file or directory"	17:50
salv-orlando	rhallisey: right, but to do so I'd need a running rabbitmq container	17:50
rhallisey	I mean no exec	17:50
rhallisey	not*	17:50
rhallisey	ok other option is to `docker run -it rabbitmq /bin/bash` and run the kolla commands by hand	17:51
rhallisey	docker run -it rabbitmq /bin/bash	17:51
rhallisey	kolla scripts are in /usr/local/bin	17:51
salv-orlando	rhallisey: ah yes, that makes sense. Unfortunately docker is now messing up with me as it refuses to run the container. I'm trying to rebuild the whole thing now.	17:51
rhallisey	wait why wont it run it?	17:52
rhallisey	docker run -it <rabbitmq_image> /bin/bash	17:52
rhallisey	grab that image from docker images	17:52
salv-orlando	"Docker API Error: Cannot start container f1ab652dc946678c998a887b434d8879c2c87d5ad35bab37b722de0fdc1d59c2: [8] System error: no such file or directory"	17:52
salv-orlando	rhallisey: yeah pulling the image again	17:53
rhallisey	wait is there no /bin/bash? Why did you get that error..	17:53
*** achanda has quit IRC		18:00
*** achanda has joined #kolla		18:02
sdake	rhallisey that happens with the lvm driver and docker older versions	18:03
sdake	salv-orlando which version o docker are yo u using	18:03
*** achanda has quit IRC		18:03
rhallisey	sdake, oh I didn't know that	18:04
sdake	salv-orlando i'd recommend if yur buildling to use the btrfs graph driver or deploying to use the oerlayfs driver	18:04
salv-orlando	thanks sdake. I upgraded kernel to 3.19 to avoid the issue with aufs but if you reckon is better I can use btrfs	18:05
*** sdake has quit IRC		18:08
*** inc0 has quit IRC		18:13
*** sdake has joined #kolla		18:13
*** signed8b_ has joined #kolla		18:17
*** suro-patz has joined #kolla		18:17
*** unicell has joined #kolla		18:18
*** tzn has quit IRC		18:19
*** signed8bit has quit IRC		18:19
*** vilobhmm has joined #kolla		18:28
*** sdake has quit IRC		18:28
*** inc0 has joined #kolla		18:32
*** cemmason has quit IRC		18:33
*** cemmason has joined #kolla		18:34
*** athomas has quit IRC		18:36
*** signed8b_ is now known as signed8bit_ZZZzz		18:44
*** inc0 has quit IRC		18:44
*** signed8bit_ZZZzz is now known as signed8b_		18:47
*** gfidente is now known as gfidente\|afk		18:50
*** salv-orl_ has joined #kolla		18:54
*** salv-orl_ has quit IRC		18:54
*** mbound has joined #kolla		18:56
*** salv-orlando has quit IRC		18:57
*** suro-patz has quit IRC		19:00
*** suro-patz has joined #kolla		19:02
*** suro-patz has quit IRC		19:03
*** suro-patz has joined #kolla		19:03
*** signed8bit has joined #kolla		19:03
*** signed8b_ has quit IRC		19:04
*** Reddy has quit IRC		19:06
*** mbound has quit IRC		19:10
*** mbound has joined #kolla		19:12
*** inc0 has joined #kolla		19:12
*** bmace has quit IRC		19:17
*** bmace has joined #kolla		19:18
*** absubram has joined #kolla		19:18
*** cemmason has quit IRC		19:20
*** inc0 has quit IRC		19:30
*** jtriley has quit IRC		19:45
*** tzn has joined #kolla		19:53
*** jasonsb has quit IRC		19:55
*** tzn has quit IRC		19:58
*** suro-patz has quit IRC		19:58
*** suro-patz has joined #kolla		20:00
*** salv-orlando has joined #kolla		20:11
openstackgerrit	Sam Yaple proposed openstack/kolla: Convert gate to Ansible setup https://review.openstack.org/244538	20:20
*** jasonsb has joined #kolla		20:50
*** jasonsb has quit IRC		20:50
*** jtriley has joined #kolla		20:50
*** jasonsb has joined #kolla		20:51
*** shardy_ has joined #kolla		20:52
*** shardy_ has quit IRC		21:00
*** vinkman has joined #kolla		21:01
*** openstack has joined #kolla		21:05
*** mbound has joined #kolla		21:06
*** sdake has joined #kolla		21:08
*** jtriley has quit IRC		21:09
*** mbound has quit IRC		21:11
*** jtriley has joined #kolla		21:12
*** signed8bit_ZZZzz is now known as signed8bit		21:19
openstackgerrit	OpenStack Proposal Bot proposed openstack/kolla: Updated from global requirements https://review.openstack.org/247183	21:24
*** inc0 has joined #kolla		21:31
inc0	hey	21:31
inc0	is latest version of docker still busted?	21:31
Slower	inc0!!	21:31
inc0	hey Slower :) nice to meet you in any managable time	21:32
*** gfidente\|afk has quit IRC		21:33
Slower	inc0: ya you too!	21:33
*** jtriley has quit IRC		21:35
*** dwalsh has quit IRC		21:41
*** dave-mccowan has joined #kolla		21:44
sdake	dave-mccowan meet samyaple :)	21:45
sdake	SamYaple dave-mccowan is the cat who has some ideas about TLS certification with kolla	21:45
sdake	i think i expressed the idea that you suggested we dont need self signed certs	21:45
sdake	and he asked "and the user should always supply them?"	21:45
dave-mccowan	hi SamYaple sdake	21:45
sdake	and then I go "damn I have no idea what I'm talking about"	21:46
sdake	so would you two folks mind having a discussion - or put the design in the etherpad for example :)	21:46
sdake	or open a blueprint and we c an put in the discussion phase	21:46
sdake	and do things the normal openstack way? :)	21:46
SamYaple	hello dave-mccowan	21:47
dave-mccowan	i'll open a blueprint soon.	21:47
sdake	i'd be happy to open it if you like dave-mccowan	21:47
sdake	and c&p your design into an etherpad on etherpad.openstack.org	21:48
SamYaple	so im not quite sure what was said, but I don't see why Kolla should be generating the certs. Kolla should just be a consumer of user provider certs like basically every other serivce	21:48
SamYaple	im not sure were are on the same page though with the 3rd party communnication	21:48
sdake	ya, telephoen sucks	21:49
dave-mccowan	so, i'm a kolla n00b, so let me know if i get this part wrong....	21:49
sdake	i'm sorry guys, i struggle to communicate opposing ideas ;)	21:49
*** jtriley has joined #kolla		21:49
sdake	dave-mccowan its a-ok we are rfrom the federal government an we are here to help :)	21:50
dave-mccowan	i think when kolla stands up a cloud it configures HAProxy as a front end to the API end point. when it does this now, there is no TLS. am i correct on this?	21:50
SamYaple	dave-mccowan: correct, we do not have ssl/tls support anywhere in kolla yet	21:50
SamYaple	the plan was to do it firstly at the haproxy endpoint and then later internally	21:51
dave-mccowan	so, i'm proposing, optionally, turning on the TLS proxy feature of HAProxy with a minimal config option and customized options.	21:51
SamYaple	yes this is the plan	21:52
SamYaple	haproxy does ssl offloading	21:52
dave-mccowan	For HAProxy to be a TLS proxy it needs a server certificate.	21:52
SamYaple	with 1.5+ (and we have that)	21:52
SamYaple	yes im with you	21:52
sdake	i think the question was whether or not kolla should be in the business of generating the certificates	21:53
dave-mccowan	a good deployment will have a certificate signed by an authority. a quick-and-dirty implementation would be happy with a self-signed certificate.	21:53
SamYaple	dave-mccowan: agreed	21:53
dave-mccowan	It's about 4 commands to generate one... i think it would be a nice feature for Kolla to do that on demand, but suppose we could document it and have a user manually do it.	21:54
SamYaple	dave-mccowan: yea so ansible doesnt provide interaction like that	21:54
SamYaple	so if you want a script in the tools/* directory im 100% ok with that	21:54
SamYaple	but to bake it into the playbooks isnt doable	21:55
SamYaple	my thoughts on this inteface was 'if you want ssl, provide a pem/cert+key in /etc/kolla/certs/'	21:55
SamYaple	that way it doesnt matter if you self-sign or cert-authority sign it	21:56
SamYaple	if those files exist there, it doesnt matter how they were made	21:56
SamYaple	with that said we could have a small script to genereate a quick self-signed cert	21:56
*** salv-orl_ has joined #kolla		21:57
dave-mccowan	what do you mean by "to bake it into the playbooks isnt doable" ?	21:57
*** salv-orlando has quit IRC		21:57
SamYaple	dave-mccowan: to geenrate a cert yo uneed to provide some imformation. openssl will promt you for this or you can supply it on the command line	21:58
SamYaple	we would have to turn all those questions into variables	21:58
SamYaple	we as a general practice dont do that	21:58
dave-mccowan	which questions? the stuff for the distinguished name?	21:59
SamYaple	yea stuff like that	22:01
SamYaple	since the only time this would be useful would be self-signed, a small script is fine	22:02
SamYaple	generating certs is a rare thing	22:02
dave-mccowan	i was thinking, since the auto-gen cert is meant to be quick and dirty, we could come up with smart defaults for everything. really the auto-gen is for developers who just want it to work quickly. user provided certs are for operators who are really deploying.	22:03
sdake	i dont see how a script to generate for the developer workflow isn't the most optimal choice	22:04
dave-mccowan	not a big difference of opinion between us... there's a required step, either provide it out of band or in band. until i get smarter on kolla, my opinion doesn't count for much yet. :-)	22:04
sdake	since its not a normal flow - probblly shouldn't be a normal part of the playbooks	22:04
sdake	dave-mccowan what is the advantage of providing in-band? one less step?	22:07
sdake	SamYaple what is the disadvantage to porviding in-band? more complexixty	22:09
sdake	?	22:09
dave-mccowan	yep. my thought was it is a significant step for those afraid of openssl, but hiding it all inside a tools/ script gets most of the way there. i had assumed that turn-key was goal.	22:09
sdake	i htink a turn key script can get the job done without complexity introduction into kolla proper	22:10
sdake	then everyone is happy	22:10
SamYaple	dave-mccowan: i think the uniform step here is to have it out-of-band for generation	22:12
SamYaple	that way it doesnt matter if you have a self-sigend cert or a REAL cert	22:12
dave-mccowan	is there a relationship between kolla and the openstack-ansible project?	22:12
sdake	SamYaple but provide a script to do the job you mean?	22:13
SamYaple	dave-mccowan: not directly	22:13
SamYaple	dave-mccowan: i just left RAX	22:13
SamYaple	sdake: yes	22:13
sdake	the relationship is we are both openstack projects ;)	22:13
SamYaple	we share a bit of knowlege from time to time	22:13
sdake	ya we get along	22:13
dave-mccowan	here's how they do certs in ansible:	22:14
dave-mccowan	https://github.com/openstack/openstack-ansible/blob/master/playbooks/roles/haproxy_server/tasks/haproxy_ssl_configuration.yml	22:14
sdake	well i wouldnt look to OSAD as the go-to reference architecture for openstack deployment via ansible dave-mccowan :)	22:17
dave-mccowan	just an example of how create a self-signed cert in ansible	22:18
dave-mccowan	they're able to create self signed certs in less than 25 lines of ansible using all default values. so it's a pretty small amount of complexity that we're proposing to move to a separate script.	22:24
SamYaple	dave-mccowan: just fyi, they are way overbloated with ansible code	22:25
SamYaple	thats the kind of bloat we dont want	22:25
SamYaple	we dont want those extra variables	22:25
SamYaple	and thier haproxy implementation is not for production (as they say)	22:25
SamYaple	sdake: i WOULD look to OSA as openstack deployment via ansible. they are the only game in town. I wouldn't look to them for openstack deployment in containers	22:26
SamYaple	we use ansible to orchestrate contaienrs. they use ansbiel to install openstack (optionally in containers)	22:27
sdake	thanks SamYaple - pointing out the obvious ;)	22:27
dave-mccowan	n00b question: help me understand what you mean by avoiding variables.	22:28
*** jasonsb has quit IRC		22:28
SamYaple	dave-mccowan: we dont like the user to interact with variables (the ones you specify them in globals.yml) and we avoid it as much as possible	22:29
SamYaple	we document most/all the variables the average user should change	22:29
SamYaple	if we have to add to those list of variables the file sizes grow	22:29
SamYaple	we don't embrace the ansible spirit is the point. We embrace the 'easy to use, operate, and understand' spirit	22:30
SamYaple	also DRY	22:30
dave-mccowan	For TLS support, we need to add filenames for the PEM and KEY files. those are OK, right?	22:30
*** jasonsb has joined #kolla		22:30
SamYaple	CRT + KEY, or PEM	22:30
SamYaple	PEM is crert + key	22:31
sdake	file targets are all over the ansible pllaoybooks so i'd say yes dave-mccowan	22:31
sdake	we hae hundreds of file targets :)	22:32
SamYaple	dave-mccowan: since HAproxy only deals with PEM, I think we may be able to get away with PEM only, we can always split it if needed	22:32
*** jpeeler has quit IRC		22:32
SamYaple	but for the initial implemntation PEM only would be fine. then its single file in /etc/kolla/	22:32
dave-mccowan	alright... i guess i'm convinced. "one way to do something" probably adds to simplicity more than "we can hack something unsecure with no effort on your part"	22:33
*** jpeeler has joined #kolla		22:36
sdake	dave-mccowan could you reword that i dont understand what you mean	22:37
SamYaple	sdake: he says 'i agree with samyaple'	22:37
SamYaple	which is the same as 'samyaple wont shut up, i give up'	22:37
SamYaple	at least thats what my wife tells me	22:37
sdake	its not the same	22:38
sdake	maybe in your mind ;)	22:38
SamYaple	whats the end result?	22:38
*** sacharya has quit IRC		22:38
dave-mccowan	One Way To Do Something: If a user want to use TLS, they have to provide a certificate. (we'll help you make one if want, look in /tools for help)	22:38
SamYaple	ends means and justifying, how do they work	22:38
sdake	dave-mccowan cool i like that approach too	22:39
sdake	SamYaple see that wasn't dave givign up, that was dave using rationale thinking processses to come ot a logical concllusion :)	22:39
dave-mccowan	No Effort Turn Key : You want to do TLS? no problem. You can provide a Cert. Too hard? No worries, we can whip up something for you.	22:39
dave-mccowan	No Effort Turn Key is easy: no input necessary... but it adds complexity, because now there are two ways.	22:40
SamYaple	sdake: i dont actually want people to give up... it was just a joke...	22:41
sdake	in both cases there are two ways, one just has one input the other has two	22:41
dave-mccowan	i've done it that way before with embedded systems... it's not like a router can refuse to boot if a cert is not provided... the fallback is to create a self-signed certificate.	22:41
*** inc0 has quit IRC		22:41
sdake	SamYaple sometimes I'm not so sure! :)	22:41
SamYaple	sdake: no there is one way. user provides cert	22:41
SamYaple	how the user gets that cert is up to the user	22:41
sdake	right the user buys a cert or creates a self signed one (two inputs)	22:42
SamYaple	yup	22:42
sdake	vs autogeneration (one input)	22:42
SamYaple	sdake: i just want logical back and forth and people dont want to do that	22:42
sdake	i'm pretty sure i do that most of the time with you SamYaple	22:43
SamYaple	you do which is why we only kinda hate eachother sometimes	22:43
sdake	how do yo uthink I get you to do what I want? :)	22:43
sdake	i have never hated you sam	22:43
SamYaple	says the guy that is now running a yaodu clone	22:43
sdake	frustrated - yes	22:43
dave-mccowan	i'm happy to have the discussion and debate.	22:43
SamYaple	sdake: yea thats a better word, im a man of simple vocab^H^H^H^H^H words	22:44
dave-mccowan	what's the plan for implementing? it sounds like this has already been planned. SamYaple have you already been planning on coding this?	22:44
SamYaple	dave-mccowan: you are welcome to it	22:45
SamYaple	i can do it too	22:45
sdake	nobody has planned anything yet	22:45
SamYaple	if its a requirement i can do it in the next few hours	22:45
sdake	except just today we had a w ondderful palnning session just now :)	22:45
SamYaple	right now im just going down a priority list	22:45
dave-mccowan	i have some internal work to do for the next week or so. if the work item is still available after thanksgiving, i'll pick it up. probably not in time for mitaka-1, so mitaka-2 i guess.	22:47
SamYaple	sdake, do we want to backport ssl?	22:48
SamYaple	people are going t ask for that..	22:48
dave-mccowan	backport ssl?	22:48
dave-mccowan	ah... copy this stuff to liberty.	22:49
SamYaple	yea	22:49
SamYaple	if its non-canging of exist behaviour	22:49
SamYaple	which i think it will be	22:49
*** unicell has quit IRC		22:55
*** tzn has joined #kolla		23:08
*** tzn has quit IRC		23:12
*** tpot has joined #kolla		23:16
*** sdake_ has joined #kolla		23:17
*** sdake has quit IRC		23:18
*** tzn has joined #kolla		23:18
*** signed8bit is now known as signed8bit_ZZZzz		23:20
*** tpot has quit IRC		23:20
sdake_	SamYaple yes since it doesn't break any kind of compatability i see zero harm in backport	23:22
*** suro-patz has quit IRC		23:30
*** rmart04 has joined #kolla		23:31
*** suro-patz has joined #kolla		23:32
*** tpot has joined #kolla		23:33
*** signed8bit_ZZZzz is now known as signed8bit		23:34
*** jtriley has quit IRC		23:35
*** sdake_ has quit IRC		23:40
*** sdake has joined #kolla		23:40
*** vinkman has left #kolla		23:44
*** tzn has quit IRC		23:45
*** suro-patz has quit IRC		23:46
*** mwheckmann has quit IRC		23:47
*** signed8bit is now known as signed8bit_ZZZzz		23:50
*** rmart04 has quit IRC		23:56
*** suro-patz has joined #kolla		23:59

Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!