Friday, 2015-09-25

« Thursday, 2015-09-24 Index Saturday, 2015-09-26 »
*** markvoelker has joined #openstack-ansible00:02
*** BjoernT has quit IRC00:11
*** shoutm has quit IRC00:23
*** shoutm has joined #openstack-ansible00:25
*** alejandrito has joined #openstack-ansible00:32
*** agireud has joined #openstack-ansible00:42
*** elo has quit IRC00:50
*** shoutm_ has joined #openstack-ansible01:00
*** alejandrito has quit IRC01:01
*** shoutm has quit IRC01:02
*** skamithi1 has joined #openstack-ansible01:55
*** kerwin_bai has joined #openstack-ansible02:00
*** shoutm_ has quit IRC02:04
*** alop has quit IRC02:07
*** shoutm has joined #openstack-ansible02:14
*** elo has joined #openstack-ansible02:45
*** tlian has quit IRC02:54
*** darrenc is now known as darrenc_afk02:54
*** elo has quit IRC02:56
*** _hanhart has joined #openstack-ansible02:58
*** skamithi13 has quit IRC03:02
*** _hanhart has quit IRC03:11
*** darrenc_afk is now known as darrenc03:12
*** sdake has joined #openstack-ansible03:12
*** markvoelker has quit IRC03:27
*** skamithi13 has joined #openstack-ansible03:28
*** skamithi1 has left #openstack-ansible03:44
*** markvoelker has joined #openstack-ansible04:27
pellaeonHas anyone seen my question regarding neutron-ha-tool.py ?04:30
*** markvoelker has quit IRC04:32
*** kerwin_bai has quit IRC04:56
*** elo has joined #openstack-ansible05:03
*** shoutm has quit IRC05:08
*** shoutm has joined #openstack-ansible05:14
*** elo has quit IRC05:20
*** shoutm_ has joined #openstack-ansible05:45
*** shoutm has quit IRC05:49
*** elo has joined #openstack-ansible05:50
*** markvoelker has joined #openstack-ansible05:59
*** openstackgerrit has quit IRC06:01
*** openstackgerrit has joined #openstack-ansible06:01
*** markvoelker has quit IRC06:05
*** harlowja has quit IRC06:19
*** elo has quit IRC06:46
*** elo has joined #openstack-ansible06:53
*** elo has quit IRC06:55
*** elo has joined #openstack-ansible06:58
*** gus has quit IRC07:00
*** neillc has quit IRC07:00
*** neillc has joined #openstack-ansible07:01
*** gus has joined #openstack-ansible07:02
*** kukacz has joined #openstack-ansible07:04
*** kukacz has quit IRC07:07
*** elo has quit IRC07:09
*** kukacz has joined #openstack-ansible07:09
*** neilus has joined #openstack-ansible07:20
*** elo has joined #openstack-ansible07:23
*** gparaskevas has joined #openstack-ansible07:38
*** pabelanger has quit IRC07:41
*** pabelanger has joined #openstack-ansible07:42
*** elo has quit IRC07:48
*** sdake has quit IRC07:53
*** markvoelker has joined #openstack-ansible08:00
*** markvoelker has quit IRC08:05
*** elo has joined #openstack-ansible08:12
*** elo has quit IRC08:13
*** openstackgerrit has quit IRC08:16
*** openstackgerrit has joined #openstack-ansible08:16
*** shoutm_ has quit IRC08:39
*** shoutm has joined #openstack-ansible08:41
openstackgerritJesse Pretorius proposed openstack/openstack-ansible: Allow Neutron Agent prevent_arp_spoofing to be configurable  https://review.openstack.org/22772108:50
odyssey4mepellaeon I seem to have missed it. What's up?08:58
openstackgerritJesse Pretorius proposed openstack/openstack-ansible: Configure HAProxy SSL frontends with cipher suite  https://review.openstack.org/22773009:09
*** shoutm has quit IRC09:31
*** markvoelker has joined #openstack-ansible10:01
*** markvoelker has quit IRC10:06
openstackgerritJesse Pretorius proposed openstack/openstack-ansible: Fix for keystone LDAP pkg missing  https://review.openstack.org/22674010:10
odyssey4memancdaz are you winning yet? :)10:12
mancdazodyssey4me yeah10:12
mancdazjust trying to work out where in the ansibles to insert the things10:12
mancdazbut I have a working setup10:12
odyssey4mehow specific does it need to be?10:13
mancdazodyssey4me I need to set some sysctl inside the containers10:13
odyssey4meie is it general, or do you have to use the mac or ip value?10:13
mancdazodyssey4me you use the mac address of the interface10:14
odyssey4meah ok - for all containers?10:14
mancdazwhich you get from /sys10:14
mancdazyeah all containers10:14
mancdazwe are already using the sysctl module on the hosts10:14
mancdazbut not in containers10:14
odyssey4meoh bother, in that case it's not a static setting is it? it changes every time the container restarts10:14
mancdazodyssey4me that's fine I've got that bit sorted10:14
mancdazI just need to set arp_notify in proc in all the containers10:15
odyssey4mewell, we can easily do it on the container creation - but that won't handle existing containers10:15
mancdazodyssey4me where would we do it on container creation?10:16
odyssey4mewe do some stuff before building the containers here: https://github.com/openstack/openstack-ansible/blob/master/playbooks/roles/lxc_hosts/tasks/lxc_cache_preparation.yml10:16
odyssey4methat preps the 'cache' aka container base 'image'10:17
odyssey4methe containers actually get created here: https://github.com/openstack/openstack-ansible/blob/master/playbooks/roles/lxc_container_create/tasks/container_create.yml10:17
mancdazodyssey4me I think we'd be better running it as a task after container creation10:17
mancdazat some point where it will also get executed on normal runs10:17
odyssey4methen as a post task in the playbooks would be best10:18
mancdazodyssey4me post what?10:18
mancdazI also need to get a change to the container interface file (inside the container), but on existing containers10:19
mancdazI know we set that up in the container create10:19
odyssey4mewell, actually a pre_task in the playbooks will work - it just needs to be executed if 'not is_metal | bool'10:19
mancdazok10:19
odyssey4methe playbooks for the services execute after the container is created, so that works10:20
odyssey4meit feels a bit wasteful though, but this is the price we pay for trying to reduce the downtime during upgrades10:20
mancdazodyssey4me what's wasteful?10:20
odyssey4mewell, lots of repeated code10:21
mancdazodyssey4me is there not some base common thing that gets included everywhere?10:21
odyssey4meI'm wondering that myself - but I think that's only done on container creation10:21
odyssey4meso https://github.com/openstack/openstack-ansible/blob/master/playbooks/roles/lxc_container_create/tasks/container_create.yml#L142-L154 gets executed whenever someone runs the setup-hosts play10:23
odyssey4meit will restart the container if something in the config changes10:23
odyssey4meso that would be the best play/role to actually include this in - it'd be one entry and would execute on creation, but also handle existing containers10:24
odyssey4melet me take a look at the container interface ini file - it seems that it can be edited on the host, which is great10:25
mancdazodyssey4me I think that's for the host side of the verth pair10:25
odyssey4memancdaz yeah, so this is more like what you'll end up having to do: https://github.com/openstack/openstack-ansible/blob/master/playbooks/roles/lxc_container_create/tasks/container_create.yml#L102-L11310:27
mancdazso for the network interface inside the container the post up can be added here: https://github.com/openstack/openstack-ansible/blob/master/playbooks/roles/lxc_container_create/defaults/main.yml#L57-L7710:28
mancdazbut that only happens on container creation10:28
mancdazfor the sysctl stuff, yeah I guess a crufty shellout using lxc_container10:28
mancdazI'd rather use the sysctl module in a normal run though10:29
odyssey4meactually, that's executed here and will execute on existing containers too https://github.com/openstack/openstack-ansible/blob/master/playbooks/roles/lxc_container_create/tasks/container_create.yml#L102-L11310:29
odyssey4meit'll require that the setup-hosts playbook is run, but it will execute on existing containers10:29
mancdazoh that runs on existing containers?10:29
mancdazok then that works10:29
odyssey4meyup10:29
mancdazfor both greenfield and upgrades10:30
mancdazso10:30
mancdazhow to use the sysclt module inside all containers without writing a new task out inside each role10:30
odyssey4meand the crufty shellout sucks, but it'll also execute inside the containers without repeating a task across all the playbooks10:30
odyssey4methe alternative is to use the sysctl module in each of the plays10:31
mancdazodyssey4me right, that's where I was hoping there was a common play to dump it in10:31
odyssey4meconsidering that this is a common setting across all containers, I'd suggest having it in the container create10:32
odyssey4meit just means you won't be able to use the sysctl module10:32
mancdazhrm10:33
mancdazodyssey4me or create a common playbook and include it from all other playbooks?10:35
odyssey4meie a role? ;)10:35
mancdazsure, a common role10:36
mancdazhow come we don't have one? there were common things in juno no?10:36
odyssey4melxc_container_create is kind-of a common role I suppose - let's look at the play that consumes it10:38
mancdazsetup-hosts ?10:38
odyssey4meyeah, it targets all containers: https://github.com/openstack/openstack-ansible/blob/master/playbooks/lxc-containers-create.yml#L1710:38
mancdazcan I add it as a post task?10:39
mancdazsince ssh will be up by then10:40
mancdazor just another task after the create containers one10:40
odyssey4meadd a task to https://github.com/openstack/openstack-ansible/blob/master/playbooks/roles/lxc_container_create/tasks/container_create.yml but don't delegate it to the host?10:40
odyssey4mehmm, that ssh check needs to run before you do something in the container - perhaps it is best to add it as a post task10:40
mancdazodyssey4me why not a second task in here: https://github.com/openstack/openstack-ansible/blob/master/playbooks/lxc-containers-create.yml#L1710:41
odyssey4meyep, that's what I'm thinking too10:42
odyssey4meeither that or the ssh wait task must get pulled into the role and the sysctl run after it10:42
odyssey4mewe need to do some analysis of all this - it seems like we're doing work all over the place and could do better at making it more intuitive and easier to figure out/understand10:44
openstackgerritMerged openstack/openstack-ansible: Do not use default LXC network in gate  https://review.openstack.org/21504010:47
odyssey4mewoohoo - mattt please backport https://review.openstack.org/215040 to kilo :)10:47
openstackgerritJesse Pretorius proposed openstack/openstack-ansible: Update Cinder to Liberty RC1  https://review.openstack.org/22720510:49
*** neilus has quit IRC10:50
*** neilus has joined #openstack-ansible10:52
openstackgerritMatt Thompson proposed openstack/openstack-ansible: Do not use default LXC network in gate  https://review.openstack.org/22776510:53
*** fawadkhaliq has joined #openstack-ansible11:00
*** elo has joined #openstack-ansible11:00
*** elo has quit IRC11:00
evrardjphello11:04
evrardjpsorry to drop in your conversation but changes to the containers sysctl should be done in the container create role11:04
evrardjpit's more readable that way11:04
evrardjpwe just need to mention in the docs that people wanting to upgrade need to run the setup-hosts again11:05
evrardjpthen we could think of cleaning up some other stuff11:05
mancdazevrardjp problem is that the containers aren't up (ssh) until that role is finished11:06
mancdazso I probably need to add it as a post task11:07
mancdaztryin to do it in the middle of that role means I can't use sysctl module11:07
evrardjpoh you mean for using the ansible sysctl module?11:08
mancdazevrardjp right11:08
evrardjpit seems more logical to me to drop it here https://github.com/openstack/openstack-ansible/blob/master/playbooks/roles/lxc_container_create/tasks/container_create.yml#L7811:10
mancdazevrardjp to edit a setting in /proc inside the container?11:11
evrardjpweren't we speaking of post-up scripts that does an ip link set?11:12
mancdazevrardjp no, I know where I need to put that one11:12
mancdazbut we also need to edit a sysctl setting inside the containers11:12
mancdazevrardjp https://github.com/openstack/openstack-ansible/blob/master/playbooks/roles/lxc_container_create/defaults/main.yml#L7111:13
evrardjpit's the equivalent of two things: writing a sysctl file in the correct folder (which can be done in the task above) and doing a sysctl -w, which can also be done11:14
evrardjpmancdaz: yeah, except I'd make it generic for this case: you can have a new loop that sets the sysctl -w on link up ;)11:14
mancdazevrardjp or just drop it into sysctl.conf using the sysctl module, so it persists properly11:15
mancdazadding it as a post up hook feels a bit dirty11:16
evrardjpsaddly that's often ubuntu's way11:16
evrardjpbut it seems weird to have a post task to wait for ssh, then doing a task improving the arp handling11:17
evrardjpand doing before won't work, because ssh isn't reactive yet11:18
evrardjpso you'll have to wait for it to be up to be improved in the future11:18
mancdazevrardjp well at that point we don't have any problems with the arp cache because the containers are up for the first time11:18
evrardjpI was thinking upgrades, but upgrades won't have problems because you should be able to reach the containers11:19
evrardjpso yeah, sorry for the discussion ;)11:19
mancdazit will affect upgrades too, you're right11:19
mancdazbut upgrades also call this task (according to odyssey4me ) because it's part of setup-hosts11:19
odyssey4memancdaz so why not move the ssh wait task into the role, then add the sysctl change after it?11:20
evrardjpthat would be fine too11:20
mancdazodyssey4me what difference does that make?11:20
odyssey4meall the tasks will be inside the role - it's more intuitive than having some in the role and some in the play11:21
evrardjpit makes more sense for the role itself, playbook will just handle the orchestration of the roles... it also bring more independance of the play11:21
evrardjprole*11:21
mancdazodyssey4me that's the pattern across the board though11:21
odyssey4mefunctionally it's no different11:21
mancdazI'm not going to change it for this one role/commit11:21
mancdazit needs to be part of a larger restructure11:21
mancdazblueprint or w/e11:21
odyssey4memancdaz so the ssh wait in the other plays is due to changes that are specific to the role implemented by the play - ie aa profile changes, extra network interfaces, etc11:22
evrardjpindeed11:22
odyssey4mebut yeah, either way is fine - I do think that we should take the time to evaluate all the roles an dplays and consider how we could do better11:22
mancdazodyssey4me I still think it's unrelated to the fix, and I'm aware we generally don't like restructures being thrown in as part of something else :)11:23
odyssey4meI have put up a suggested summit session for it :)11:23
mancdazodyssey4me cool11:23
mancdazlemme test this then, and I'll get a review up11:23
odyssey4memancdaz fair enough :)11:23
evrardjpwhen I see all this, I think we should have a something to define post-up scripts11:24
odyssey4memancdaz it probably also makes sense for the 'wait for ssh' tasks to only execute if there actually was a change resulting in a restart before it11:25
evrardjpodyssey4me: you mean it could even be a handler?11:26
odyssey4meevrardjp no, I mean that https://github.com/openstack/openstack-ansible/blob/master/playbooks/os-ceilometer-install.yml#L21-L29 should have a registered result11:27
evrardjpthat's what I expected ;)11:27
evrardjpit was just to make sure we speak the same language11:27
odyssey4meand https://github.com/openstack/openstack-ansible/blob/master/playbooks/os-ceilometer-install.yml#L35-L46 should only execute if the result was a change11:27
odyssey4me:) it's important to verify if you think there could be a misunderstanding11:28
evrardjpthat's why I said that ;)11:28
evrardjpmore than one way to do it, but sometimes the more documented way isn't the best (like this case)11:29
evrardjpquick question11:29
evrardjpwhy are we using delay?11:29
evrardjpinstead of timeout?11:29
evrardjpdelay should be really small (it's just containers here)11:30
evrardjpso I would even neglect delay11:30
mancdazevrardjp I think timeout is implied, maybe 5 seconds default iirc11:30
matttodyssey4me: https://review.openstack.org/#/c/221009/4/specs/mitaka/gate-split.rst11:30
evrardjpmaybe there is a good reason, it's just for my understanding11:30
mancdazbut yeah, maybe not much point in a delay11:30
matttodyssey4me: sorry if i missed it ... but say someone submits a keystone role change, how many gates do we do ?11:30
odyssey4meevrardjp the delay was fixed and made variable on request by another contributor working with vagrant - he needed a bigger delay11:32
odyssey4methe default timeout if 5 mins11:32
evrardjpthat could be long11:32
mancdazodyssey4me surely the delay is how long to wait before you start polling?11:32
mancdaz5 mins?11:32
evrardjpmancdaz: no11:32
odyssey4mein testing I found that it seems to fail much more prematurely, possibly due to some sort of tcp half open state11:32
mancdazok I misunderstood then11:32
evrardjpthe timeout is 5 minutes, the delay is 5 sec11:33
evrardjpoh wait11:33
evrardjpyou maybe right11:33
evrardjplet me chek11:33
odyssey4memancdaz yes, the delay is how long to wait before polling, the timeout is how long after you start polling to wait before declaring failure11:33
evrardjpcheck*11:33
mancdazodyssey4me so surely we don't wait 5 kinutes before testing to see if ssh is up11:33
odyssey4memattt I didn't specify any scoping in the gate split - but I do think that scoping would be useful and will try it out in practise11:34
evrardjpssh delay is 5 seconds by default, connect_timeout is 5 seconds, timeout is 5 minutes11:34
odyssey4meI mean there's no point in checking whether rabbitmq high availability works when none of the code relating to rabbit was changed, right11:34
mancdazafk11:34
odyssey4meevrardjp what's the diff between connect_timeout and timeout?11:35
evrardjpconnect_timeout is the number of seconds to wait for a connection to happen before retrying11:35
evrardjpwhile timeout is the task timeout11:35
evrardjpthe maximum number of seconds to wait for before task fails11:36
evrardjpso right now, with the task retries, it tries every 5 seconds until 300 x the number of retries before task fails11:37
evrardjpso if you reduce the timeout and/or the retries, the task will fail more rapidly11:38
evrardjpwhich is sometimes good11:38
evrardjpmaybe we should introduce the connect_timeout and/or timeout in the tasks, but that's not a priority right now11:39
*** markvoelker has joined #openstack-ansible11:47
*** tlian has joined #openstack-ansible11:49
*** markvoelker has quit IRC11:52
*** skamithi14 has joined #openstack-ansible11:55
*** skamithi13 has quit IRC11:58
*** tiagogomes has quit IRC11:59
*** tiagogomes has joined #openstack-ansible11:59
*** fawadkhaliq has quit IRC12:01
pellaeonodyssey4me: repost:12:01
pellaeon21:42 < pellaeon> Hello, my ./neutron-ha-tool.py --l3-agent-check always fail with:12:01
pellaeon21:42 < pellaeon> ERROR    {"error": {"message": "The resource could not be found.", "code": 404, "title": "Not Found"}}12:01
pellaeon21:43 < pellaeon> which seems to be caused by using keystone v3 API as v212:02
pellaeon21:44 < pellaeon> in openrc OS_AUTH_URL=http://172.29.236.19:5000/v312:02
pellaeon21:45 < pellaeon> use neutron-ha-tool.py with -d shows that it make requests to http://172.29.236.19:5000/v3/tokens12:02
pellaeon21:47 < pellaeon> I just upgraded from older kilo branch to the latest kilo branch12:02
pellaeon21:48 < pellaeon> before that I removed my dedicated network host and use infra1-3 instead12:02
pellaeonI think the problem happens after I move network host to infra1-3, but i'm not sure, I did not notice the problem at that time12:03
odyssey4mepellaeon interesting - the tool instantiates a v2 api connection with keystone, so whatever is in the openrc doesn't matter: https://github.com/openstack/openstack-ansible/blob/master/playbooks/roles/os_neutron/files/neutron-ha-tool.py#L9212:04
odyssey4mebut we should probably fix that to work with the v3 api12:04
tiagogomeshi, just wondering, is there any reason why l3_ha is disabled by default?12:05
odyssey4mefor liberty we might be able to remove that altogether and use the native neutron ha scheduling - we need to check if it actually works now12:05
odyssey4metiagogomes because it didn't work when we tried it with kilo12:06
tiagogomes:(12:06
odyssey4mewe need to check again12:06
tiagogomesbut it is an OpenStack bug or ansible ?12:06
tiagogomeswell, openstack12:07
odyssey4methe issue was upstream in neutron, but it may be fixed now12:07
odyssey4mepellaeon can you please register a bug for that?12:07
odyssey4meie the issue you're seeing12:08
pellaeonodyssey4me: um, things in openrc should matter, isn't it ? since it writes auth_url=os.environ['OS_AUTH_URL']12:09
evrardjpinteresting tool that I didn't know of :D12:09
pellaeonand OS_AUTH_URL is loaded from openrc12:10
odyssey4mepellaeon yeah, that might be it - but keystone is usually better at redirecting12:10
odyssey4meif you can log a bug for it we can make sure to figure it out - we need to put some time into verifying that everything is now using unversioned url's for liberty - but also to see what should be used for kilo12:11
pellaeonyes I can file a bug12:12
odyssey4methanks pellaeon - if you do figure out a solution then please note it in the bug comments to help anyone who is working on triage12:12
pellaeonso there seems to be something wrong with my keystone containers?12:13
pellaeonsince it doesn't redirect12:13
*** alejandrito has joined #openstack-ansible12:13
odyssey4menot necessarily12:14
odyssey4mepellaeon if you change the openrc to point at one of your keystone v2 endpoints, does it work?12:14
pellaeonlet me try12:14
odyssey4meif we continue to carry that tool then I'd rather that we made it work regardless of the endpoint version12:15
pellaeonyes, changing OS_AUTH_URL to http://172.29.236.19:5000/v2.0 will make neutron-ha-tool.py work again12:17
*** fawadkhaliq has joined #openstack-ansible12:17
*** skamithi14 has quit IRC12:22
odyssey4mepellaeon ok, so that gives you a workaround for now at least12:25
pellaeonwon't it break something else?12:26
mhaydenbuenos dias12:26
pellaeonhttps://bugs.launchpad.net/openstack-ansible/+bug/1499708 here's the bug report12:27
openstackLaunchpad bug 1499708 in openstack-ansible "Migrate neutron-ha-tool.py to use Keystone API v3" [Undecided,New]12:27
odyssey4mepellaeon yeah, so we can't just set that across the board as that affects other things12:27
odyssey4methe keystone v3 api is preferred by keystone and the v2 api will be deprecated, probably in the M cycle12:28
odyssey4meso we need to make all the things work with the v3 api instead12:28
pellaeonevrardjp: are you referring to neutron-ha-tool.py? this is invoked in neutron agents container by cron12:28
odyssey4meI'm busy doing tests to verify whether unversioned URI's still let everything work, so that the api version used can rather be determined by the service/client.12:29
evrardjpok, didn't know it pellaeon. Thanks for the info12:29
*** markvoelker has joined #openstack-ansible12:31
pellaeonI can probably modify the script to work with v3 though12:31
pellaeonnow it seems to be the only way and the ultimate solution12:31
*** skamithi13 has joined #openstack-ansible12:34
pellaeonaha12:34
pellaeonI have misunderstood something12:34
*** alejandrito has quit IRC12:36
pellaeon"2.0" in L92 means neutron API v2, not keystone API v212:36
odyssey4meoh right, silly me12:37
*** agireud has quit IRC12:37
*** alejandrito has joined #openstack-ansible12:38
odyssey4mewell, the bits that will be needed for it to work against the v3 API are the other environment variables you should see in openrc12:38
odyssey4methe domain related variables12:38
odyssey4meif you're able to work it out and submit a patch for it, that'd be grand!12:38
odyssey4meo/ mhayden how goes it with you this fine firday?12:39
odyssey4me*friday12:39
mhaydennot too bad, how about you?12:39
pellaeonI'll try to figure it out and submit a patch :-)12:39
odyssey4mepellaeon patches are always welcome :)12:40
odyssey4memhayden not too bad, working through nova for liberty rc1 at the moment - trying to figure out what goes and what stays12:40
* mhayden is reading the Project CameraShy report and about to bump the security-hardening spec again ;)12:43
*** fawadkhaliq has quit IRC12:45
*** fawadkhaliq has joined #openstack-ansible12:45
*** fawadkhaliq has quit IRC12:45
*** woodard has joined #openstack-ansible12:47
*** woodard has quit IRC12:47
*** woodard has joined #openstack-ansible12:48
*** shoutm has joined #openstack-ansible12:57
*** pradk has joined #openstack-ansible12:58
odyssey4memhayden if you can do the final recommended tweaks from dstanek then I think https://review.openstack.org/223717 is ready to roll13:07
* mhayden does a little dance13:07
openstackgerritMajor Hayden proposed openstack/openstack-ansible: Add SSL/TLS listener to RabbitMQ  https://review.openstack.org/22371713:12
mhaydenhopefully that will make it good to go13:12
*** gparaskevas has quit IRC13:14
openstackgerritJesse Pretorius proposed openstack/openstack-ansible: Update Nova to Liberty RC1  https://review.openstack.org/22783913:18
*** spotz_zzz is now known as spotz13:20
*** shoutm has quit IRC13:23
*** gparaskevas has joined #openstack-ansible13:31
*** sdake has joined #openstack-ansible13:34
*** sdake_ has joined #openstack-ansible13:37
mancdazodyssey4me ok in testing, the patch I'm working on ran about 3 minutes faster than current master, which still has the full flush13:37
odyssey4memancdaz that sounds great!13:38
mancdazodyssey4me I'll get cloudnull's review updated with that patchset13:38
odyssey4methat'll make it equivalent but without the disruption to other containers13:38
odyssey4mesweet, thanks13:39
mancdazodyssey4me and importantly, without the disruption to the static arp entries that the linuxbridge agent adds on the compute hosts13:39
*** sdake has quit IRC13:39
odyssey4meah yes mancdaz, that is the big upgrade disruption issue13:40
odyssey4meand quite an issue overall when running the plays13:40
odyssey4me(considering that the flush was running every time)13:40
*** KLevenstein has joined #openstack-ansible13:42
mhaydenwhoa, just flipped my default view in gerrit to the "new screen"13:42
mhaydenhandy as heck13:42
odyssey4mehehe, yeah - it takes a little getting used to but I like it13:43
odyssey4methe comment history is probably the biggest win13:43
mhaydenyeah, it's quite nice13:43
mattti always go back to the old view :-/13:44
openstackgerritDarren Birkett proposed openstack/openstack-ansible: Removes over zealous arp cache flushing  https://review.openstack.org/22536713:45
mancdazApsu ^13:45
mhaydenmattt: i still think you're cool anyway13:45
matttthanks mang13:45
*** jmckind has joined #openstack-ansible13:45
odyssey4memancdaz do you mind if I rebase that patch quickly to have it include the hpcloud-b4 fixer?13:52
odyssey4meI suppose for now I'll leave it - the patch might get iterated a little more13:52
*** skamithi13 has quit IRC13:55
*** skamithi13 has joined #openstack-ansible13:55
*** sdake has joined #openstack-ansible14:03
*** sdake_ has quit IRC14:07
*** Mudpuppy has joined #openstack-ansible14:07
*** neilus has quit IRC14:12
openstackgerritMerged openstack/openstack-ansible: Do not use default LXC network in gate  https://review.openstack.org/22776514:12
openstackgerritJesse Pretorius proposed openstack/openstack-ansible: Fix for keystone LDAP pkg missing  https://review.openstack.org/22674014:13
*** fxpester has quit IRC14:14
openstackgerritMerged openstack/openstack-ansible: Put horizon in its own process  https://review.openstack.org/22757014:20
*** kukacz has quit IRC14:26
cloudnullmorning14:32
*** galstrom_zzz is now known as galstrom14:34
openstackgerritJesse Pretorius proposed openstack/openstack-ansible: Update Keystone to Liberty RC1  https://review.openstack.org/22691714:41
*** fawadkhaliq has joined #openstack-ansible14:43
openstackgerritJesse Pretorius proposed openstack/openstack-ansible: Update Keystone to Liberty RC1  https://review.openstack.org/22691714:44
odyssey4meo/ cloudnull14:44
*** galstrom is now known as galstrom_zzz14:44
*** galstrom_zzz is now known as galstrom14:45
evrardjpI don't see much reviews around this commit: https://review.openstack.org/#/c/218818/14:47
evrardjpis this bad or good?14:47
evrardjpit's maybe too disruptive14:48
cloudnullevrardjp:  no its really quite good. :)14:49
odyssey4meevrardjp what do you think about putting that into a seperate repo?14:49
evrardjpI have two question14:50
evrardjpquestions*14:50
odyssey4mehave keepalived in its own role repo14:50
cloudnullwas meaning to come back to that but was dealing with the general gate issues for afew days and then i forgot.14:50
*** e-vad has joined #openstack-ansible14:51
evrardjpok first, do you think I should make this facultative? for example, even if you have multiple hosts, you don't nessarily use keepalived?14:51
evrardjplike defining a variable haproxy_use_keepalived: False by default14:51
cloudnullodyssey4me:  i think we can get there. IMO the role changes are good as is, it provides functionality people have been asking for, and we can look at migrating the roles out soonish.14:52
evrardjpodyssey4me: it's already in a separate repo, because it's in ansible-galaxy14:52
evrardjpI just dropped the latest edition here14:52
mancdazodyssey4me I think that gate is going as slowly as the last patchset :(14:52
cloudnullohhh. can we add the galaxy reference to the role requirements?14:52
cloudnullevrardjp: ^14:52
odyssey4meevrardjp what repo is it in?14:53
evrardjpI'm not sure cloudnull, what do you mean?14:53
cloudnullIE https://github.com/openstack/openstack-ansible/blob/master/ansible-role-requirements.yml.example but the file would be https://github.com/openstack/openstack-ansible/blob/master/ansible-role-requirements.yml instead ?14:53
evrardjpyou know this is a question I asked in a weekly meeting?14:54
cloudnullmaybe im a bad person for bringing it up...  sorry :(14:54
evrardjpand it was mentionned to do it the current way while this role separation wasn't decided14:54
evrardjpit's no problem14:54
evrardjpjust to make sure14:54
odyssey4meevrardjp yep, but since then that spec has merged14:54
cloudnullhttps://github.com/openstack/openstack-ansible-specs/blob/master/specs/mitaka/independent-role-repositories.rst14:54
odyssey4meso we can now create an openstack repo for it if you'd like, but cloudnull is right - the review is ready and looks like it works14:55
odyssey4mewe can pull it out a bit later14:55
mancdazpresumably the roles will be pulled put one at a time?14:55
cloudnullodyssey4me:  if that role already exists in the galaxy we dont need to carry it in the openstack big tent14:55
mancdazif so, doesn't it make sense for this to be the first?14:55
cloudnullwe can just use the upstream one.14:55
odyssey4memancdaz yeah, each role split out needs its own spec14:56
evrardjpthat seems more logical14:56
evrardjpcloudnull: ^14:56
cloudnullwhat we have here is the same as whats in your upstream galaxy role evrardjp?14:56
odyssey4mecloudnull yep, that's true - unless there is some value seen in having the role in the big tent14:56
evrardjpcloudnull: yup14:56
cloudnullmy 2cents, but I dont think theres any need to duplicate the role14:56
evrardjpthere was initially on first release because it was BSD and not Apache2 license14:57
odyssey4mein that case I would rather say that the review should change to a documentation addition which tells a user how to use the role from galaxy with OSA14:57
cloudnullevrardjp: this one https://github.com/evrardjp/ansible-keepalived ?14:57
evrardjpwhile I think it wasn't really an issue, I moved to Apache2, so it's not really an issue14:57
evrardjpwhoops sorry for me repeating myself14:57
evrardjpyup cloudnull14:58
evrardjpso for the ansible-role-requirements14:58
evrardjpI'd use:14:58
odyssey4mewe don't need to carry extra code, but a doc ref for how to use your role would be wonderful14:58
cloudnullall we need to do is add an entry like so http://docs.ansible.com/ansible/galaxy.html#advanced-control-over-role-requirements-files14:59
evrardjpyup, without forgetting to set name: keepalived15:00
cloudnullindeed15:00
evrardjpI'm also using path: roles/ just to make sure it's not put on a default folder location15:00
cloudnullhttp://cdn.pasteraw.com/cmmnlruhubc3x2esuostwa7k1se6o0l < so that should work15:01
evrardjpthat's a way to do it15:01
evrardjpwhat I use is this: http://paste.openstack.org/show/474046/15:02
cloudnullevrardjp:  i'd not set the path, that way its resolved into the root ansible role namespace and allows for future upgrades of the repo without dealing with the untracked role.15:02
evrardjpit doesn't stick the version15:02
evrardjpcloudnull: right15:03
cloudnullidk if its best to use the galaxy api or go direct github ?15:03
cloudnulli have no opinnions on that either way15:04
evrardjpgalaxy maps to last version by default, and also changes the name of the repo15:04
evrardjpbut if you set name: and version: it's really not that important15:04
odyssey4mecan you specify the version or sha if you only use galaxy api?15:04
cloudnullidk?15:05
odyssey4methe sha is useful as a lot of roles don't have tags15:05
evrardjpI never tried to specify the sha with galaxy15:05
evrardjpI'll try15:05
evrardjpthe other advantage of galaxy is dependance handling15:06
evrardjpwhen you're using ansible-galaxy with a galaxy role (not a zip) I'm pretty sure it will pull down the dependencies mentionned in the meta15:06
evrardjpnot a zip for example*15:07
odyssey4memancdaz https://review.openstack.org/225367 is running tempest right now, so it's within time - it's slow due to running on hpcloud - this is a fairly normal run time for hpcloud instances15:09
mancdazodyssey4me really? it's getting close to 90 minutes15:09
mancdazoh it's done15:10
odyssey4meit just finished successfully :)15:10
mancdaz:D15:10
mancdazwoot15:10
openstackgerritMerged openstack/openstack-ansible: Add ebtables to neutron agent configuration  https://review.openstack.org/21710315:10
cloudnull++ evrardjp is right, dep handling seems to be better with direct galaxy integration.15:10
cloudnull"Roles pulled from galaxy work as with other SCM sourced roles above. To download a role with dependencies, and automatically install those dependencies, the role must be uploaded to the Ansible Galaxy website."15:10
cloudnullvia http://docs.ansible.com/ansible/galaxy.html15:11
evrardjpso using tags with ansible-galaxy installation by requirements file works15:11
evrardjpI'm checking the sha now15:11
odyssey4menow we just need another core review on https://review.openstack.org/225367 :)15:11
cloudnull^ that I'm +1 nice work tuning that up Apsu mancdaz .15:12
*** gparaskevas has quit IRC15:12
cloudnullno +2 for me, im the original author .15:12
evrardjpevrardjp: it doesn't seem to work with commit sha if you're using galaxy (which makes sense)15:13
*** skamithi has joined #openstack-ansible15:13
evrardjpso if you want to pull something from galaxy that has tagged releases (or follow the master), you can use the shorter notation (evrardjp.keepalived)15:14
mancdazodyssey4me cloudnull 1:25 still feels long15:14
evrardjpif you want to have one specific commit, then you should use the github complete link, with the commit' sha in version15:14
mancdazeven for hp cloud, is that normal?15:14
cloudnullmancdaz: it worked in hp cloud. working is the bar for success :)15:15
skamithikindly request some help troubleshooting my openstack-ansible config.  http://pastebin.com/rmHxNEGu  trying to setup vxlan tunneling using the .aio config. getting error with it building neutron.conf. i cannot find the dict object that has the "address" attribute..i must be blind or something.. any clues for me? or any further info needed?15:15
mancdazcloudnull well it worked once before too, by coming in just under 90 minutes15:15
cloudnullif hp cloud , great success !15:15
mancdazha15:15
mancdazcan we recheck15:16
mancdazat this point, before getting +2s15:16
mancdazoh15:16
evrardjpskamithi could you give us your variables?15:17
odyssey4memancdaz 1:25 is around the normal time for some of the hpcloud runs - they're often 1:10-1:2515:19
mancdazok15:19
odyssey4memancdaz I wanted to rebase anyway - happy to do that?15:20
mancdazodyssey4me yup15:20
*** fawadkhaliq has quit IRC15:20
openstackgerritJesse Pretorius proposed openstack/openstack-ansible: Removes over zealous arp cache flushing  https://review.openstack.org/22536715:20
cloudnullskamithi: seems like the containers or inventory is missing the address field ? what release are you running ?15:20
cloudnullthe address attribute is in the /etc/openstack_deploy/openstack_inventory.json file15:21
cloudnullfor the container under container_networks15:21
evrardjpmaybe I didn't get it but... is defining the sysctl to do the arp_notify after the ip link set the purpose? I thought ip link set send the gratuitous arp only if arp_notify is set beforehand15:22
skamithievrardjp, cloudnull: http://pastebin.com/0GF8mVAH (openstack_user_config.yml)15:23
skamithicloudnull: ah okay. thanks. i'll look under that container definition  in that json file and see if the address is defined.15:23
skamithicloudnull: using kilo  version15:24
mancdazevrardjp, setting the sysctl setting means that any future link sets will cause a grat arp (arp_notify)15:24
evrardjpmancdaz: that's something I understand15:25
mancdazso I'm not sure the question about ordering15:25
mancdazdropping those two changes in means that every container stop/start will now ensure that the mac address table in the neighbours is updated immediately15:26
mancdazno arp_notify is sent at the time of the task to add thoe configs15:26
evrardjptrue, but before that, on the first deploy, aren't you interested by getting faster results in the first wait_for?15:26
evrardjpbut yeah, it's only the first one, not really important15:27
evrardjpeven more with the delay15:27
mancdazevrardjp no, there's no issue with the first one because there is no stale mac in the neighbour table15:27
mancdazsince it's never been up15:27
evrardjpok15:27
evrardjpI learned something about links today :)15:28
mancdazit's in subsequent stop/start events when the mac address changes that we were seeing issues15:28
evrardjpok15:28
evrardjpskamithi could you also drop us your openstack_inventory.json?15:30
evrardjpI think there is something wrong first with your used_ips15:30
evrardjpif you're using comma, you're defining the start/end of the range15:30
evrardjpmaybe not related, but I'd like to check to see if that couldn't cause a messup in the inventory15:31
evrardjpskamithi: also, your container networks seem to be your external one, instead of the internal one15:32
evrardjpdidn't you mean 192.168.50.0/24?15:33
*** elo has joined #openstack-ansible15:35
skamithievardjp: didn't know used_ips defines a start and end range..good to know15:35
evrardjpyou can find more doc about how to configure the inventory here: http://docs.openstack.org/developer/openstack-ansible/install-guide/configure-networking.html15:36
skamithievrardjp: let me read that doc carefully. redo my config and blow away the json file and redo things..see if it works then.15:37
evrardjpwait15:38
evrardjpdon't blow away your json file like that ;)15:38
skamithiwell its just in vagrant:)15:38
evrardjpok then :)15:38
odyssey4meevrardjp skamithi is prepping a review for a full vagrant build of OSA15:38
evrardjpyeah I remember now ;)15:39
odyssey4mein his vast amount of spare time :p15:39
evrardjpthat's a modern time luxury!15:39
evrardjpspare time \o/15:39
*** skamithi13 has quit IRC15:41
*** skamithi13 has joined #openstack-ansible15:42
*** skamithi13 has quit IRC15:42
*** skamithi13 has joined #openstack-ansible15:42
*** skamithi13 has quit IRC15:43
*** skamithi14 has joined #openstack-ansible15:43
*** elo has quit IRC15:46
openstackgerritKevin Carter proposed openstack/openstack-ansible-specs: Add spec for OS_.* venv support  https://review.openstack.org/22792115:47
skamithiodyssey4me: funny!  was excited though when my workplace took one of my "spare time" projects from last year and paid me to work on it full time. https://support.cumulusnetworks.com/hc/en-us/articles/21045215815:47
*** skamithi13 has joined #openstack-ansible15:48
*** skamithi13 has quit IRC15:49
*** skamithi14 has quit IRC15:49
*** skamithi13 has joined #openstack-ansible15:49
openstackgerritJesse Pretorius proposed openstack/openstack-ansible: Update Keystone to Liberty RC1  https://review.openstack.org/22691715:50
*** skamithi13 has quit IRC15:51
*** skamithi13 has joined #openstack-ansible15:51
Apsumancdaz: Why did you change from my $(< to $(cat?15:53
odyssey4meskamithi wait, is that basically an implementation of some of the cisco style outputs for a linux server?15:53
Apsu$(< doesn't call another process. I did it that way on purpose :P15:53
odyssey4methanks to mattt that job is running successfully on hpcloud-b4 :)15:55
odyssey4mecloudnull ^ woot!15:55
*** sdake_ has joined #openstack-ansible15:55
cloudnullwinning !15:55
cloudnullmattt:  for PREZ!15:55
odyssey4meApsu I think mancdaz is gone now, but that would be a pretty quick and simple change15:56
odyssey4meis not calling another process important?15:56
ApsuIt's not super important, it's just a Useless Use of Cat.15:57
skamithiodyssey4me: started out troubleshooting linux networking on cumulus linux. pain in the ass using traditional linux tools.15:57
ApsuWhich is so common that it has a name, and is shamed :P15:57
ApsuWe're already doing clever things in bash, should use the tools we have.15:58
*** sdake has quit IRC15:58
openstackgerritJesse Pretorius proposed openstack/openstack-ansible: Fix for keystone LDAP pkg missing  https://review.openstack.org/22674015:59
evrardjpskamithi: netshow...didn't know it. looks cool16:03
matttodyssey4me: woot!  awesome16:04
evrardjpyeah thanks mattt16:05
matttevrardjp: it was an easy fix, just none of us thought to get access to the instance to troubleshoot it :)16:05
evrardjpmaking something run on hpcloud-b4 deserves AT LEAST a thanks from everyone16:05
evrardjpor got the time to? ;)16:06
matttevrardjp: ha, yeah, i was allocated time to look at it, so that helps :P16:06
evrardjpwould you care to explain for the noobs like me?16:07
evrardjplike for example, showing the commit that fixed it?16:08
odyssey4meevrardjp https://review.openstack.org/21504016:08
evrardjpok nice indeed :)16:08
openstackgerritKevin Carter proposed openstack/openstack-ansible: Fact caching will store all ansible facts  https://review.openstack.org/22596716:10
openstackgerritKevin Carter proposed openstack/openstack-ansible: Fact caching will store all ansible facts  https://review.openstack.org/22596716:11
*** galstrom is now known as galstrom_zzz16:11
evrardjpcloudnull: didn't see much performance improvement on my side16:13
odyssey4mecloudnull perhaps change the co-authored-by to you?16:13
evrardjpI tried that a few weeks ago16:13
odyssey4meand the subject should perhaps be something like 'Implement fact caching'16:13
evrardjpbut it's still good to drop the json file somewhere, just to have it and understand more16:14
odyssey4meand how big does the environment need to be before you start seeing the gains here?16:14
odyssey4meevrardjp now that is entirely different, and a justification of its own - just having access to the ansible facts for troubleshooting is useful16:15
evrardjpI don't know16:15
evrardjpodyssey4me: yeah true16:15
evrardjpI'll call it ansible_facts.json though16:15
*** tnarg has joined #openstack-ansible16:15
evrardjpI'd*16:15
evrardjpI'd like to scale out my environment to give you an answer about the gains, but apparently my budget's wallet isn't strechable without more revenues first ;)16:17
openstackgerritKevin Carter proposed openstack/openstack-ansible-specs: Add spec for OS_.* venv support  https://review.openstack.org/22792116:19
cloudnullevrardjp odyssey4me, i did an almost 200 node deployment the other day and will say that enabling fact caching helped a lot in terms of general speed when starting a playbook.16:22
*** galstrom_zzz is now known as galstrom16:22
openstackgerritKevin Carter proposed openstack/openstack-ansible: Implement fact caching  https://review.openstack.org/22596716:23
cloudnullodyssey4me: updated title.16:23
odyssey4mecloudnull good to know :) prior to that statement it was only an opinion16:23
cloudnullwe didnt have it on when we added roughly 150 compute nodes to the environment and it was crazy slow to gather all facts. I had remembered what bjoern had submitted enabled the caching using the json file and while fact gathering was slow at first all subsequent runs had no lag which was quite awesome16:25
*** sdake_ is now known as sdake16:26
odyssey4mecloudnull if you can add something to that effect in the bug then that'd be great :)16:26
*** agireud has joined #openstack-ansible16:30
*** tnarg has quit IRC16:31
mhaydencloudnull: you may have my tiny +1 on virtualenvs ;)16:32
cloudnullodyssey4me: https://bugs.launchpad.net/openstack-ansible/+bug/149811116:33
openstackLaunchpad bug 1498111 in openstack-ansible "Enable fact caching in ansible" [Wishlist,In progress] - Assigned to Bjoern Teipel (bjoern-teipel)16:33
odyssey4mesweet, thanks cloudnull16:34
openstackgerritKevin Carter proposed openstack/openstack-ansible: Implement fact caching  https://review.openstack.org/22596716:35
cloudnulltied it back to the fact gathering blueprint .16:36
openstackgerritMerged openstack/openstack-ansible: Add net.netfilter.nf_conntrack_max to Swift Storage  https://review.openstack.org/22688016:37
openstackgerritJesse Pretorius proposed openstack/openstack-ansible: Install irqbalance on hosts  https://review.openstack.org/22794216:38
openstackgerritKevin Carter proposed openstack/openstack-ansible: Implement fact caching  https://review.openstack.org/22596716:39
cloudnullsorry for the spam16:39
cloudnullnow it properly linked.16:39
odyssey4mecloudnull change the co-authored-by to you?16:41
odyssey4meand rebase?16:41
openstackgerritKevin Carter proposed openstack/openstack-ansible: Implement fact caching  https://review.openstack.org/22596716:42
*** fawadkhaliq has joined #openstack-ansible16:42
cloudnulldone16:42
*** elo has joined #openstack-ansible16:42
*** harlowja has joined #openstack-ansible16:49
*** galstrom is now known as galstrom_zzz16:53
*** elo has quit IRC16:54
*** elo has joined #openstack-ansible16:56
openstackgerritKevin Carter proposed openstack/openstack-ansible: Fixes log rotate issue  https://review.openstack.org/22795716:57
cloudnullso this looks good post rebase16:59
cloudnullhttps://review.openstack.org/#/c/225367/16:59
cloudnullneed another core to do the needfuls17:00
openstackgerritJesse Pretorius proposed openstack/openstack-ansible: Add ebtables to neutron agent configuration  https://review.openstack.org/22796317:00
*** skamithi has left #openstack-ansible17:00
odyssey4meyup, looks good17:00
*** skamithi has joined #openstack-ansible17:00
odyssey4mecloudnull I need a sanity check on https://review.openstack.org/227963 - not sure if I added ebtables in the right place to cover both the neutron agents containers and the compute hosts17:01
*** fawadkhaliq has quit IRC17:01
cloudnullodyssey4me:  because the package lists collide in juno i'd add it to the https://github.com/openstack/openstack-ansible/blob/juno/rpc_deployment/vars/repo_packages/nova_libvirt.yml as that expressly runs on all compute nodes.17:03
odyssey4meok, so that will ensure that it covers both?17:03
cloudnullit will17:04
*** galstrom_zzz is now known as galstrom17:04
openstackgerritJesse Pretorius proposed openstack/openstack-ansible: Add ebtables to neutron agent configuration  https://review.openstack.org/22796317:04
odyssey4mealright, updated - it's probably worth leaving that for some testing17:04
cloudnullindeed.17:05
odyssey4meI'm hesitent to add something like that knowing what it can break - but it's a CVE related fix17:05
cloudnullthis is an issue that we should get sorted for 11.2.3 if possible https://review.openstack.org/#/c/227957/17:05
cloudnullit kinda ties back to the on-metal testing that mattt was doing. but its something that i noticed in the OSIC lab.17:06
openstackgerritKevin Carter proposed openstack/openstack-ansible: Fixes log rotate issue  https://review.openstack.org/22795717:07
odyssey4meah, that does make sense17:07
cloudnulladd buug ref17:08
*** elo has quit IRC17:08
odyssey4melgtm :)17:08
openstackgerritJesse Pretorius proposed openstack/openstack-ansible: Install nfs-common with nova-compute  https://review.openstack.org/22796917:11
*** abitha has joined #openstack-ansible17:11
openstackgerritMerged openstack/openstack-ansible: Add Administration Capabilites to the Haproxy Stats GUI  https://review.openstack.org/22704217:11
openstackgerritMerged openstack/openstack-ansible: Add SSL/TLS listener to RabbitMQ  https://review.openstack.org/22371717:11
*** alop has joined #openstack-ansible17:15
*** woodard has quit IRC17:16
* mhayden hops for rabbit17:16
*** woodard has joined #openstack-ansible17:16
odyssey4mecloudnull happy for 10.1.15 to release?17:23
cloudnulli am though maybe we wait for some feedback for the CVE release ?17:24
odyssey4methe ebtables thing? that'll be for the next tag17:25
odyssey4mewe won't get core votes in time for this one and there are other CVE's to cover for this one17:25
cloudnullok.17:25
*** elo has joined #openstack-ansible17:27
odyssey4merelease done, wheels building17:37
*** skamithi13 has quit IRC17:51
openstackgerritJesse Pretorius proposed openstack/openstack-ansible: Updated juno for new dev work - 25 Sep 2015  https://review.openstack.org/22797617:52
*** mrstanwell has joined #openstack-ansible17:53
openstackgerritJesse Pretorius proposed openstack/openstack-ansible: Updated juno for new dev work - 25 Sep 2015  https://review.openstack.org/22797617:53
*** gparaskevas has joined #openstack-ansible17:58
*** tiagogomes has quit IRC17:59
mrstanwellhi, folks.  this should be an easy one: Has "openstack-ansible -e galera_ignore_cluster_state=true galera-install.yml" replaced "openstack-ansible galera-install.yml --tags galera-bootstrap" as the recommended maneuver for recovering after a reboot?  Is there a more righter way to do it?18:05
openstackgerritMerged openstack/openstack-ansible: Update the AIO build convenience script  https://review.openstack.org/22735418:12
openstackgerritKevin Carter proposed openstack/openstack-ansible: Removes over zealous arp cache flushing  https://review.openstack.org/22536718:18
openstackgerritKevin Carter proposed openstack/openstack-ansible: Updated MariaDB to the new release version (10.0)  https://review.openstack.org/17825918:18
openstackgerritJesse Pretorius proposed openstack/openstack-ansible: Add ebtables to neutron agent configuration  https://review.openstack.org/22796318:19
cloudnullmrstanwell:  your spot on.18:20
cloudnullin https://review.openstack.org/#/c/178259/ we're looking to add back the specific function "--tags galera-bootstrap" with the ability to specify the cluster node.18:20
openstackgerritJesse Pretorius proposed openstack/openstack-ansible: Install irqbalance on hosts  https://review.openstack.org/22794218:20
mrstanwellcloudnull: thanks!  it looked like it worked right.  but... well... openstack...18:21
cloudnullthat is always the case :)18:21
cloudnullwhen in doubt, openstack. . .18:21
openstackgerritJesse Pretorius proposed openstack/openstack-ansible: Add policy changes required for OSSA-2015-018 / CVE-2015-5240  https://review.openstack.org/22687218:21
mrstanwellcloudnull:  btw, I go on vacation and when I come back it's all renamed.  And the world didn't end, even.  I am in awe at your mad config mgmt skillz.18:22
cloudnullit was a team effort :)18:23
cloudnullbut tyvm !18:23
cloudnullmattt:  i owe you a beer, soda, lunch, dinner, whatever18:29
cloudnullgates are passing in hpb4 =)18:30
*** brice has joined #openstack-ansible18:33
odyssey4mecloudnull the funny thing is that he had the source of the problem within an hour of looking at it18:34
odyssey4meto think of all the time we've wasted with rechecks :p18:34
cloudnull++ :(18:35
cloudnullbut its better now. thus beers for everyone !18:35
*** KLevenstein has quit IRC18:40
*** alejandrito has quit IRC18:42
*** dmsimard is now known as dmsimard|afk18:47
*** skamithi13 has joined #openstack-ansible18:47
*** galstrom is now known as galstrom_zzz18:48
*** grumpylama has quit IRC18:49
openstackgerritKevin Carter proposed openstack/openstack-ansible: Updated MariaDB to the new release version (10.0)  https://review.openstack.org/17825918:52
*** grumpycat has joined #openstack-ansible18:57
*** grumpycat is now known as Guest8096918:57
openstackgerritJesse Pretorius proposed openstack/openstack-ansible: Install nfs-common with nova-compute  https://review.openstack.org/22796919:02
cloudnullmhayden: can you cherry pick https://review.openstack.org/#/c/224304/ https://review.openstack.org/#/c/223717/ and https://review.openstack.org/#/c/224977/ to kilo ?19:04
mhaydencloudnull: on my way19:05
openstackgerritMajor Hayden proposed openstack/openstack-ansible: Update cached LXC image in place  https://review.openstack.org/22800519:05
odyssey4memhayden and https://review.openstack.org/226533 :)19:06
mhaydencloudnull: it says "Code review - Error \n Cherry pick failed" on the last two19:06
mhaydenfirst went through19:07
cloudnull:( likely a merge conflict19:07
odyssey4methere's likely a dependent review that needs to go before it19:07
mhaydenthat depends19:07
* mhayden attempted to make a joke19:07
mhaydenyeah, last three all complained19:08
mhaydenodyssey4me: is that something i can fix? or do i need to wait on those others?19:08
odyssey4meit's time you learned the cli tricks :)19:08
* mhayden gulps19:09
odyssey4meI'm shutting off for the night though - perhaps cloudnull can show you the way?19:09
mhaydenif there are docs, just point me to 'em19:09
mhaydennight, odyssey4me19:09
odyssey4meeffectively you need to figure out what changed the same files that were edited in the review19:10
odyssey4mesomething changed one or more of the files in almost the same line (or the same line)19:11
cloudnullwhat odyssey4me said .19:11
odyssey4meonce you've found the missing commit, then you have to decide whether it should be backported or not19:11
odyssey4meso let's pick one and figure it out19:11
odyssey4mehttps://review.openstack.org/#/c/224977/ only changed one file19:12
odyssey4mecompare https://github.com/openstack/openstack-ansible/commits/master/scripts/inventory-manage.py and https://github.com/openstack/openstack-ansible/commits/kilo/scripts/inventory-manage.py19:13
odyssey4meeasy enough to see https://github.com/openstack/openstack-ansible/commit/3962b9fb393f7c3658ba4f0202d70185cb33d8a2 was merged directly to the kilo branch19:14
mhaydenyeah, there's one commit different between them19:14
odyssey4meit seems that'd be useful in master too, so let's forward port that19:15
odyssey4mefind it in https://review.openstack.org/#/q/is:watched+status:merged+branch:kilo,n,z and cherry-pick it to master19:15
mhaydenokay19:15
mhaydenhttps://review.openstack.org/#/c/223097/ <-- that one19:16
mhaydenso cherry pick that to master?19:16
odyssey4meyep, except it appears that there was one in master already19:16
odyssey4meselect the change id in gerrit and you'll see all the matching change id's19:16
odyssey4methe matching reviews with the same id19:17
cloudnulllooks like the rabbit ssl change is a simple doc update.19:17
odyssey4meso you'll have to restore that one, then make it the same as the final commit in the kilo branch19:17
*** elo has quit IRC19:18
cloudnullodyssey4me mhayden i dont think https://review.openstack.org/#/c/223097/ should be in master. its a kilo specific change and if someone was going juno> to liberty they'd have to go through kilo first.19:19
odyssey4mecloudnull, yes - now that I look at the details I agree19:19
cloudnulli mean it doesnt hurt really, but it also is additionally debt that we dont need19:20
mhaydenby "restore that one", what do you mean?19:20
cloudnullmhayden: i'd just fix the merge conflicts in the file and submit the cherrypick as is.19:20
cloudnullno need to jump through that commit19:20
odyssey4memhayden so skip that train of thought, now we just go to the cli19:20
odyssey4meget to your clone of openstack-ansible19:21
mhaydenso do i checkout kilo on my local box and apply my change, then git review?19:21
odyssey4meyep19:21
mhaydenor well check it out so that the patch in conflict is right before mine?19:21
odyssey4mewell, hang on19:21
cloudnullcheckout kilo19:21
cloudnullgit cherry-pick -x d4d6b042df19:21
odyssey4meyou cherry pick your change onto origin/kilo with -x19:21
odyssey4mewhat cloudnull  said19:21
cloudnullgit status to see conflicts19:21
mhaydenah and fix the conflicts after cherrypickin'?19:21
odyssey4meyup19:22
mhaydenthat kinda makes sense19:22
mhaydenthanks for the tutelage ;)19:22
cloudnullonce you fix the bits19:22
cloudnullgit cherry-pick --continue19:22
cloudnullrather: git add <file>19:23
cloudnullthen:  git cherry-pick --continue19:23
cloudnullthen: git review kilo19:23
cloudnullfinally: do the cherry-pick happy dance19:24
odyssey4menot to be confused with the merge happy dance19:24
mhaydenimma take a crack at it19:25
cloudnullexactly.19:25
cloudnullok im going to eat. BBL19:25
*** Mudpuppy has quit IRC19:27
odyssey4meok, now I am really out19:27
odyssey4mehave a great w/end all :)19:27
*** galstrom_zzz is now known as galstrom19:34
*** KLevenstein has joined #openstack-ansible19:47
openstackgerritMerged openstack/openstack-ansible: Fix for keystone LDAP pkg missing  https://review.openstack.org/22674019:47
*** alejandrito has joined #openstack-ansible20:11
*** woodard_ has joined #openstack-ansible20:11
*** woodard has quit IRC20:15
*** dmsimard|afk is now known as dmsimard20:15
*** woodard_ has quit IRC20:18
*** Mudpuppy has joined #openstack-ansible20:31
*** galstrom is now known as galstrom_zzz20:39
*** pradk has quit IRC20:40
*** skamithi has left #openstack-ansible20:41
*** elo has joined #openstack-ansible20:41
*** alejandrito has quit IRC20:41
*** alejandrito has joined #openstack-ansible20:46
*** elo has quit IRC20:51
*** skamithi13 has quit IRC20:58
*** brice has quit IRC21:02
*** sdake has quit IRC21:05
*** galstrom_zzz is now known as galstrom21:07
*** tlian has quit IRC21:11
*** gparaskevas_ has joined #openstack-ansible21:14
*** openstackgerrit has quit IRC21:16
*** openstackgerrit has joined #openstack-ansible21:16
*** gparaskevas_ has quit IRC21:18
*** KLevenstein has quit IRC21:18
*** jmckind has quit IRC21:28
*** Mudpuppy has quit IRC21:28
*** galstrom is now known as galstrom_zzz21:31
*** galstrom_zzz is now known as galstrom21:32
*** jhesketh has quit IRC21:39
*** jhesketh has joined #openstack-ansible21:39
*** Mudpuppy has joined #openstack-ansible21:39
openstackgerritKevin Carter proposed openstack/openstack-ansible: Updated MariaDB to the new release version (10.0)  https://review.openstack.org/17825921:40
*** spotz is now known as spotz_zzz21:44
*** elo has joined #openstack-ansible21:53
*** Mudpuppy has quit IRC21:55
*** Mudpuppy has joined #openstack-ansible21:55
*** openstackgerrit has quit IRC22:01
*** openstackgerrit has joined #openstack-ansible22:01
*** Mudpuppy has quit IRC22:06
*** jlvillal has quit IRC22:06
*** jlvillal has joined #openstack-ansible22:10
openstackgerritKevin Carter proposed openstack/openstack-ansible: Updated MariaDB to the new release version (10.0)  https://review.openstack.org/17825922:10
*** elo has quit IRC22:11
*** alejandrito has quit IRC22:16
*** elo has joined #openstack-ansible22:22
openstackgerritKevin Carter proposed openstack/openstack-ansible: Updated MariaDB to the new release version (10.0)  https://review.openstack.org/17825922:29
openstackgerritKevin Carter proposed openstack/openstack-ansible: Create config_template plugin  https://review.openstack.org/22806822:30
*** elo has quit IRC22:31
*** openstack has joined #openstack-ansible22:35
openstackgerritKevin Carter proposed openstack/openstack-ansible: Adds the config_template to OpenStack Services  https://review.openstack.org/22807022:35
openstackgerritKevin Carter proposed openstack/openstack-ansible: adds the config_template to swift  https://review.openstack.org/22807122:36
*** elo has quit IRC22:36
openstackgerritKevin Carter proposed openstack/openstack-ansible: Adds the config_template to heat  https://review.openstack.org/22807222:36
openstackgerritKevin Carter proposed openstack/openstack-ansible: adds the config_template to galera_server  https://review.openstack.org/22807322:36
*** galstrom is now known as galstrom_zzz22:37
openstackgerritKevin Carter proposed openstack/openstack-ansible: Adds the config_template to glance  https://review.openstack.org/22807522:37
openstackgerritKevin Carter proposed openstack/openstack-ansible: Adds the config_template to keystone  https://review.openstack.org/22807622:37
openstackgerritKevin Carter proposed openstack/openstack-ansible: adds the config_template to tempest  https://review.openstack.org/22807722:37
openstackgerritKevin Carter proposed openstack/openstack-ansible: adds the config_template to neutron  https://review.openstack.org/22807822:38
openstackgerritKevin Carter proposed openstack/openstack-ansible: adds the config_template to nova  https://review.openstack.org/22807922:38
openstackgerritKevin Carter proposed openstack/openstack-ansible: Adds the config_template to cinder  https://review.openstack.org/22808022:39
openstackgerritKevin Carter proposed openstack/openstack-ansible: adds the config_template to galera_client  https://review.openstack.org/22808122:39
openstackgerritKevin Carter proposed openstack/openstack-ansible: adds the config_template to pip_lock_down  https://review.openstack.org/22808222:41
*** markvoelker has quit IRC22:46
*** openstackstatus has quit IRC22:47
*** openstack has joined #openstack-ansible22:50
*** galstrom_zzz is now known as galstrom22:54
openstackgerritKevin Carter proposed openstack/openstack-ansible: set unique galera server-id  https://review.openstack.org/20940422:54
*** mrstanwell has quit IRC22:57
*** markvoelker has joined #openstack-ansible23:33
*** galstrom is now known as galstrom_zzz23:49
*** alop has quit IRC23:49
*** sdake has joined #openstack-ansible23:49
« Thursday, 2015-09-24 Index Saturday, 2015-09-26 »

Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!