Tuesday, 2017-01-03

« Monday, 2017-01-02 Index Wednesday, 2017-01-04 »
*** adreznec has joined #openstack-ansible00:01
*** gaudenz has joined #openstack-ansible00:07
*** chas__ has quit IRC00:08
*** chas has joined #openstack-ansible00:08
*** gaudenz_ has quit IRC00:10
*** chris_hultin|AWA is now known as chris_hultin00:10
*** chas has quit IRC00:13
*** May-meimei has quit IRC00:38
*** chris_hultin is now known as chris_hultin|AWA00:39
*** woodard has joined #openstack-ansible00:44
*** david-lyle has joined #openstack-ansible00:51
*** SerenaFeng has joined #openstack-ansible00:54
*** david-lyle has quit IRC00:55
*** markvoelker has joined #openstack-ansible01:05
*** jamielennox is now known as jamielennox|away01:05
*** markvoelker has quit IRC01:09
*** May-meimei has joined #openstack-ansible01:58
*** markvoelker has joined #openstack-ansible02:05
*** Jack_Iv has joined #openstack-ansible02:08
*** markvoelker has quit IRC02:10
*** sdake has joined #openstack-ansible02:11
*** Jack_Iv has quit IRC02:12
*** sdake has quit IRC02:15
*** sdake has joined #openstack-ansible02:16
*** chris_hultin|AWA is now known as chris_hultin02:18
*** jamielennox|away is now known as jamielennox02:19
*** Jeffrey4l__ is now known as Jeffrey4l02:28
*** chris_hultin is now known as chris_hultin|AWA02:29
*** sdake has quit IRC02:31
*** Mahe has quit IRC02:42
*** Mahe has joined #openstack-ansible02:42
*** david-lyle has joined #openstack-ansible02:52
*** david-lyle has quit IRC02:57
*** markvoelker has joined #openstack-ansible03:06
*** marc_ab has joined #openstack-ansible03:07
*** chas has joined #openstack-ansible03:10
*** markvoelker has quit IRC03:10
*** chas has quit IRC03:15
*** marc_ab has quit IRC03:25
*** hw_wutianwei has joined #openstack-ansible03:33
*** pmannidi has quit IRC03:33
*** adreznec has quit IRC03:34
*** Mahe has quit IRC03:34
*** May-meimei has quit IRC03:34
*** gaudenz has quit IRC03:34
*** woodard has quit IRC03:34
*** Mahe has joined #openstack-ansible03:34
*** May-meimei has joined #openstack-ansible03:34
*** gaudenz has joined #openstack-ansible03:34
*** woodard has joined #openstack-ansible03:35
*** adreznec has joined #openstack-ansible03:35
*** JRobinson has joined #openstack-ansible03:43
*** woodard has quit IRC03:44
*** JRobinson has quit IRC03:44
*** jrobinson has joined #openstack-ansible03:44
*** sdake has joined #openstack-ansible03:51
*** Mudpuppy has joined #openstack-ansible03:52
*** weezS has joined #openstack-ansible03:52
*** sdake has quit IRC03:56
*** pmannidi has joined #openstack-ansible03:57
*** jrobinson has quit IRC03:58
*** havenshi has joined #openstack-ansible04:01
*** Jack_Iv has joined #openstack-ansible04:09
*** Haven_ has joined #openstack-ansible04:09
Haven_weezS04:10
weezSHaven_04:10
*** Haven_ has left #openstack-ansible04:12
*** winggundamth has quit IRC04:13
*** Jack_Iv has quit IRC04:13
*** sacharya has quit IRC04:15
*** sacharya has joined #openstack-ansible04:16
*** SerenaFeng has quit IRC04:17
*** sacharya has quit IRC04:21
*** omiday has joined #openstack-ansible04:22
*** SerenaFeng has joined #openstack-ansible04:43
*** gus has joined #openstack-ansible04:44
*** pegmanm_ has joined #openstack-ansible04:48
*** SerenaFeng has quit IRC04:49
*** havenshi has quit IRC04:50
*** sdake has joined #openstack-ansible04:56
*** ivve has joined #openstack-ansible05:01
*** shausy has joined #openstack-ansible05:10
*** chas has joined #openstack-ansible05:11
*** weezS has quit IRC05:14
*** chas has quit IRC05:16
*** sacharya has joined #openstack-ansible05:17
*** sacharya has quit IRC05:22
*** shausy has quit IRC05:27
*** shausy has joined #openstack-ansible05:32
*** shausy has quit IRC05:32
*** weezS has joined #openstack-ansible05:33
*** SerenaFeng has joined #openstack-ansible05:41
*** sdake has quit IRC05:42
*** jamielennox is now known as jamielennox|away05:52
*** jamielennox|away is now known as jamielennox06:00
*** Jack_Iv has joined #openstack-ansible06:00
*** winggundamth has joined #openstack-ansible06:02
*** Jack_Iv has quit IRC06:05
*** SerenaFeng has quit IRC06:06
*** SerenaFeng has joined #openstack-ansible06:09
*** gaudenz_ has joined #openstack-ansible06:09
*** gaudenz has quit IRC06:12
*** woodard has joined #openstack-ansible06:17
*** gaudenz has joined #openstack-ansible06:20
*** woodard has quit IRC06:21
*** gaudenz_ has quit IRC06:23
*** hw_wutianwei1 has joined #openstack-ansible06:30
*** hw_wutianwei has quit IRC06:31
*** hw_wutianwei1 is now known as hw_wutianwei06:31
*** caowei has joined #openstack-ansible06:43
*** Mudpuppy has quit IRC06:52
*** sdake has joined #openstack-ansible06:53
*** Jack_Iv has joined #openstack-ansible06:59
*** pegmanm_ has quit IRC07:04
*** pegmanm_ has joined #openstack-ansible07:04
*** sdake has quit IRC07:06
*** winggundamth has quit IRC07:06
*** Jack_Iv has quit IRC07:09
*** chas has joined #openstack-ansible07:12
*** chas has quit IRC07:17
*** woodard has joined #openstack-ansible07:18
*** sacharya has joined #openstack-ansible07:18
*** winggundamth has joined #openstack-ansible07:19
*** SerenaFeng has quit IRC07:21
*** SerenaFeng has joined #openstack-ansible07:21
*** woodard has quit IRC07:22
*** sacharya has quit IRC07:22
*** chas has joined #openstack-ansible07:25
evrardjpgood morning everyone07:33
*** pmannidi has quit IRC07:37
*** h5t4 has joined #openstack-ansible07:40
*** pcaruana has joined #openstack-ansible07:41
*** SerenaFeng has quit IRC07:52
*** SerenaFeng has joined #openstack-ansible07:53
*** Jack_Iv has joined #openstack-ansible08:07
*** Jack_Iv has quit IRC08:12
*** woodard has joined #openstack-ansible08:18
*** Jack_Iv has joined #openstack-ansible08:19
*** woodard has quit IRC08:23
*** weezS has quit IRC08:25
*** Andrew_jedi has joined #openstack-ansible08:30
*** Jack_Iv has quit IRC08:31
Andrew_jediHello Folks, Anyone has any idea how to integrate ELK stack with OSA?08:31
*** Mudpuppy has joined #openstack-ansible08:53
*** david-lyle has joined #openstack-ansible08:57
*** Mudpuppy has quit IRC08:57
*** david-lyle has quit IRC09:01
andymccrmorning morning.09:06
andymccrhey Andrew_jedi - on the ELK integration, RAX has some ELK integration that there was talk of moving to the osa ops repo. It's still an open repo atm though, so you could take a look and use it or just take a look at how theyve chosen to do it.09:07
evrardjpgood morning Andrew_jedi andymccr09:12
andymccrhey evrardjp - good christmas/new years?09:13
evrardjpyup, what about you?09:13
Andrew_jediandymccr: Thanks, let me look for it :)09:13
evrardjpAndrew_jedi: do you have the links?09:13
Andrew_jedievrardjp: Good morning !!09:13
andymccrAndrew_jedi: https://github.com/rcbops/rpc-openstack then in the rpcd directory you'll find playbooks/roles for elk and filebeat which i believe is a log shipper that replaced beaver.09:14
Andrew_jedievrardjp: this one ? https://github.com/rcbops/rpc-openstack/tree/master/maas/plugins09:14
evrardjpI pinged you the link09:14
Andrew_jediandymccr: Ohhh, thanks for sharing !!09:14
andymccrAndrew_jedi: maas is one of the "only useful for RAX" things unfortunately, since it plugs into the RAX specific MaaS - but the ELK/logging should all be applicable09:15
Andrew_jedievrardjp: thank you!09:15
evrardjpAndrew_jedi: in any case, this should be an inspiration, and I think RAX is welcoming this to be a community thing09:18
evrardjpso, "patches welcome"09:18
*** sacharya has joined #openstack-ansible09:19
Andrew_jedievrardjp: rpc-openstack is using OSA, so if somebody wants ELK stack they can directly use rpc-openstack for ubuntu based environment? right ?09:20
evrardjpAndrew_jedi: that's true, and on top of it, you can have rackspace support and managed services, but that's not a discussion for this chan IMO09:20
evrardjp:p09:20
evrardjpwe stay vendor agnostic here :)09:21
Andrew_jedievrardjp: haha , yep :)09:21
*** sacharya has quit IRC09:23
*** asettle has joined #openstack-ansible09:27
*** gaudenz_ has joined #openstack-ansible09:31
*** gaudenz has quit IRC09:35
*** May-meimei has quit IRC09:38
*** askb has quit IRC09:52
*** Mudpuppy has joined #openstack-ansible09:53
*** marc_ab has joined #openstack-ansible09:56
openstackgerritJean-Philippe Evrard proposed openstack/openstack-ansible-plugins: Cleanup temporary files after content argument usage  https://review.openstack.org/41364109:57
*** gaudenz has joined #openstack-ansible09:57
*** david-lyle has joined #openstack-ansible09:58
*** Mudpuppy has quit IRC09:58
*** gaudenz_ has quit IRC10:00
*** david-lyle has quit IRC10:02
*** markvoelker has joined #openstack-ansible10:10
*** Andrew_jedi has quit IRC10:11
openstackgerritJean-Philippe Evrard proposed openstack/openstack-ansible-plugins: Cleanup temporary files after content argument usage  https://review.openstack.org/41364110:12
*** SerenaFeng has quit IRC10:13
*** marc_ab has quit IRC10:14
*** markvoelker has quit IRC10:15
*** SerenaFeng has joined #openstack-ansible10:17
*** pegmanm_ has quit IRC10:20
*** Jack_Iv has joined #openstack-ansible10:31
*** Jack_Iv has quit IRC10:36
*** spotz is now known as spotz_zzz10:39
*** caowei has quit IRC10:41
*** Andrew_jedi has joined #openstack-ansible10:45
*** markvoelker has joined #openstack-ansible11:11
*** markvoelker has quit IRC11:16
openstackgerritJean-Philippe Evrard proposed openstack/openstack-ansible-os_monasca: Fix the token cache_time  https://review.openstack.org/41621011:16
openstackgerritMerged openstack/openstack-ansible-galera_server: Use local facts for ansible_architecture  https://review.openstack.org/41368211:16
*** sacharya has joined #openstack-ansible11:20
*** sacharya has quit IRC11:24
openstackgerritMerged openstack/openstack-ansible-tests: Run cinder-setup against cinder_volume hosts  https://review.openstack.org/41374711:34
*** shausy has joined #openstack-ansible11:38
*** smatzek has joined #openstack-ansible11:41
openstackgerritJean-Philippe Evrard proposed openstack/openstack-ansible-galera_client: Allow override of the repo filename  https://review.openstack.org/41621811:41
*** david-lyle has joined #openstack-ansible11:59
*** Jack_Iv has joined #openstack-ansible12:00
*** david-lyle has quit IRC12:04
*** Jack_Iv has quit IRC12:04
*** markvoelker has joined #openstack-ansible12:12
*** markvoelker has quit IRC12:16
*** NachoDuck has quit IRC12:19
*** worstadmin has quit IRC12:19
*** h1nch has quit IRC12:19
*** errr has quit IRC12:19
*** xar- has quit IRC12:19
*** serverascode has quit IRC12:19
*** kong_ has quit IRC12:19
*** ArchiFleKs has quit IRC12:19
*** xgerman has quit IRC12:19
*** izaakk has quit IRC12:19
*** h1nch has joined #openstack-ansible12:19
*** ArchiFleKs has joined #openstack-ansible12:19
*** errr has joined #openstack-ansible12:19
*** xar- has joined #openstack-ansible12:20
*** worstadmin has joined #openstack-ansible12:20
*** kong_ has joined #openstack-ansible12:21
*** izaakk has joined #openstack-ansible12:21
*** NachoDuck has joined #openstack-ansible12:23
*** xgerman has joined #openstack-ansible12:24
*** serverascode has joined #openstack-ansible12:25
*** SerenaFeng has quit IRC12:25
ivvehello, is this the proper channel to ask for configuration help/explanations?12:29
andymccrivve: for openstack-ansible? sure is!12:35
ivve:)12:36
pjm6good morning guys :)12:37
*** pradiprwt has joined #openstack-ansible12:37
ivveso im trying to create a configuration here but having trouble understanding how to properly configure nova/glance/cinder with ceph, from what i can read from mitaka/newton documentation (wierdly enough they differ alot, not sure why) you can configure it completely with only openstack_user_config.yml? but its also possible with user_variables.yml..12:39
*** marc_ab has joined #openstack-ansible12:39
andymccrivve: we did a big restructure of the docs last cycle, so the newton docs are more up to date and should be easier to use!12:41
ivveand of course i have a network question, is it possible to create an openstack installation with OSA with only 1 vlan but different machines? im guessing the net config will be wierd, its basically to test HA functionality12:41
ivvei only have access to a /24 cidr with one vlan (doing it in vmware, ugh..) but this is what i have available12:42
openstackgerritMerged openstack/openstack-ansible-os_monasca: Fix the token cache_time  https://review.openstack.org/41621012:42
*** hw_wutianwei has quit IRC12:42
andymccras a run down of the vars files, the openstack_user_config is generally where you would specify your physical hosts and settings for specific hosts, and the user_variables is more for generic overrides (e.g. you may override a specific var within nova for all nova hosts)12:42
andymccrivve: when you say you have only 1 vlan, for your physical hosts?12:43
ivveyes, but im using virtual hosts12:43
ivveas this is a poc sort of12:43
*** hwoarang_ is now known as hwoarang12:43
ivvebasically learning OSA and trying out functionality at the same time12:44
andymccrivve: if you can create network interfaces that can connect to each other on both hosts it should be fine, you can use internal network ranges - the fact you have 1 vlan shouldn't matter since its a POC anyway.12:46
ivvethe confusing part is for example: some documentation tells me its possible to configure "container_vars:" in openstack_user_config.yml or in user_variables.yml12:48
ivveplus when reading documentation some options are described but others are not, is there a full specification of all availble options?12:49
ivvei would prefer to use a manual than waste someones time here :)12:49
ivveyeah i got the thing with the vars vs user_config, and i can see what would be a best practice to understand configuration12:54
andymccrivve: definitely - so we don't specify all the vars you can override - the guide is meant as a "getting started here are some things you may need to know", although if you're finding things confusing and you'd like to file docs bugs that'd be great too!12:54
andymccrthe diff between container_Vars and puting a setting in user_variables is that container_vars would only apply to hosts/containers on the specified host, whereas user_variables would apply globally12:54
ivvehmm alright is there a good example where you would put a specific variable on a host/container that exists on all? i mean as an example, "cinder_backends" would only apply to storage_hosts, no?12:58
ivveah okay, i get it now... forget this question12:59
andymccrivve: well its not so much that it only applies to storage_hosts, but its that a cinder_backend is specific to an individual host, so thats a great example of one that would go into the openstack_user_config.yml rather than user_variables.12:59
ivvei see that it would be applicable in a very large environment where you have multiple storage_hosts serving different backend storages?13:00
andymccrivve: yeah i guess if you had one storage_host you could specify it in user_variables. but if you had more than one you wouldn't want to have the same applies to multiple storage hosts.13:00
andymccr*applied13:00
ivvethere are configs like that in the examples so they confused me a bit13:02
ivvei would tag it a rather "advanced" configuration :)13:02
ivvebut perhaps its more common than i would think :P13:02
*** sdake has joined #openstack-ansible13:03
openstackgerritJean-Philippe Evrard proposed openstack/openstack-ansible-galera_server: Allow override of the repo filename  https://review.openstack.org/41623413:08
evrardjpandymccr: I saw your comment on the release note, I'll do it for all the commits on the same topic -- my prose isn't good so I delay as much as possible right now :p13:10
evrardjp(this way you don't review the one just here ^ )13:10
andymccrevrardjp: thanks :D13:11
*** markvoelker has joined #openstack-ansible13:12
*** alextricity25_ is now known as alextricity2513:16
*** markvoelker has quit IRC13:17
*** Mudpuppy has joined #openstack-ansible13:18
*** sacharya has joined #openstack-ansible13:20
mhaydenbuenos dias13:21
*** Mudpuppy has quit IRC13:23
*** sacharya has quit IRC13:25
evrardjpbonjour mhayden13:29
*** thorst has joined #openstack-ansible13:30
*** jheroux has joined #openstack-ansible13:34
*** shausy has quit IRC13:36
openstackgerritJean-Philippe Evrard proposed openstack/openstack-ansible-galera_client: Allow override of the repo filename  https://review.openstack.org/41621813:38
*** klamath has joined #openstack-ansible13:39
*** klamath has quit IRC13:39
*** klamath has joined #openstack-ansible13:39
*** shausy has joined #openstack-ansible13:40
*** sdake has quit IRC13:41
*** shausy has quit IRC13:43
openstackgerritJean-Philippe Evrard proposed openstack/openstack-ansible-galera_server: Allow override of the repo filename  https://review.openstack.org/41623413:44
*** mgariepy has quit IRC13:47
*** mamitchl has quit IRC13:47
*** toddnni has quit IRC13:47
*** Jolrael has quit IRC13:47
*** toddnni has joined #openstack-ansible13:47
*** ivve has quit IRC13:48
*** furlongm_ has quit IRC13:48
*** furlongm has joined #openstack-ansible13:48
*** ivve has joined #openstack-ansible13:49
*** Jeffrey4l has quit IRC13:49
*** mgariepy has joined #openstack-ansible13:50
*** Jeffrey4l has joined #openstack-ansible13:59
*** woodard has joined #openstack-ansible14:00
*** david-lyle has joined #openstack-ansible14:01
openstackgerritJean-Philippe Evrard proposed openstack/openstack-ansible-os_neutron: Allow override of the repo filename  https://review.openstack.org/41624514:02
*** woodard has quit IRC14:02
*** woodard has joined #openstack-ansible14:03
*** ivve has quit IRC14:04
*** david-lyle has quit IRC14:05
openstackgerritAlexandra Settle proposed openstack/openstack-ansible: Update title for index file  https://review.openstack.org/41624714:09
openstackgerritJean-Philippe Evrard proposed openstack/openstack-ansible-os_neutron: Allow override of the repo filename  https://review.openstack.org/41624514:11
*** markvoelker has joined #openstack-ansible14:13
*** Jack_Iv has joined #openstack-ansible14:16
openstackgerritJean-Philippe Evrard proposed openstack/openstack-ansible-os_nova: Allow override of the repo filename  https://review.openstack.org/41625114:16
*** fguillot has joined #openstack-ansible14:18
openstackgerritMerged openstack/openstack-ansible: Update title for index file  https://review.openstack.org/41624714:18
*** markvoelker has quit IRC14:18
*** kylek3h has joined #openstack-ansible14:18
*** Jack_Iv has quit IRC14:20
evrardjpandymccr: bug triage today?14:30
evrardjpand others :)14:31
evrardjpWe have 11 bugs, 5 are old14:31
andymccrevrardjp: yeah think we should, i dont think there are too many - i had a look last week14:31
andymccreasier if we keep on top of it imo14:31
evrardjpok14:31
evrardjplet me ping everyone14:31
evrardjpdear cloudnull, mattt, andymccr, d34dh0r53, hughsaunders, b3rnard0, palendae, Sam-I-Am, odyssey4me, serverascode, rromans, erikmwilson, mancdaz, _shaps_, BjoernT, claco, echiu, dstanek, jwagner, ayoung, prometheanfire, evrardjp, arbrandes, mhayden, scarlisle, luckyinva, ntt, javeriak, automagically,14:32
evrardjpspotz, vdo, jmccrory, alextricity25, jasondotstar, KLevenstein, admin0, michaelgugino, ametts, v1k0d3n, severion, bgmccollum, darrenc, JRobinson__, asettle, colinmcnamara, thorst, adreznec, eil397 :14:32
evrardjpthe osa bug triage will start in 1h30’. Please have a look at the bug list before starting: https://etherpad.openstack.org/p/osa-bugtriage14:32
evrardjpqwang,nishpatwa_, cathrichardson, drifterza ^14:32
*** smatzek has quit IRC14:34
*** jperry has joined #openstack-ansible14:36
*** markvoelker has joined #openstack-ansible14:38
*** woodard has quit IRC14:39
*** galstrom_zzz is now known as galstrom14:40
*** julian1 has quit IRC14:44
*** julian1 has joined #openstack-ansible14:45
asettleevrardjp: thanks man14:46
*** ivve has joined #openstack-ansible14:47
*** chhavi has joined #openstack-ansible14:47
*** shananigans has quit IRC14:48
*** galstrom is now known as galstrom_zzz14:50
*** jamesden_ has joined #openstack-ansible14:53
*** shananigans has joined #openstack-ansible14:53
*** v1k0d3n has joined #openstack-ansible14:59
*** smatzek has joined #openstack-ansible15:01
openstackgerritKyle L. Henderson proposed openstack/openstack-ansible: Add retries to apt update in cache proxy task  https://review.openstack.org/41626215:01
*** david-lyle has joined #openstack-ansible15:01
*** david-lyle has quit IRC15:06
*** chris_hultin|AWA is now known as chris_hultin15:07
openstackgerritJean-Philippe Evrard proposed openstack/openstack-ansible-repo_build: Allow override of the repo filename  https://review.openstack.org/41626615:13
*** spotz_zzz is now known as spotz15:14
*** sacharya has joined #openstack-ansible15:21
*** sacharya has quit IRC15:26
*** woodard has joined #openstack-ansible15:26
openstackgerritMajor Hayden proposed openstack/openstack-ansible-security: [WIP] Testing security role gate  https://review.openstack.org/41626915:27
*** whiteveil has joined #openstack-ansible15:27
spotzHappy New Years all15:29
palendaeo/15:30
*** Jolrael has joined #openstack-ansible15:30
pjm6happy new year spotz  :)15:34
*** woodard has quit IRC15:35
*** sliver has quit IRC15:38
openstackgerritMerged openstack/openstack-ansible-pip_install: Using sys.exit(main()) instead of main()  https://review.openstack.org/41531715:40
*** whiteveil has quit IRC15:41
kysseguys, I'm having weird problems with dnsmasq and newton.15:41
kyssednsmasq's logs says "dhcp not using configured address because it is leased to", and half of my instances don't get ip-addresses15:42
kysse(not related to openstack-ansible project so this is not a bug report)15:42
kysseI'm just interested if you guys have experienced anything like this.15:42
evrardjphappy new year everyone15:43
evrardjpkysse: you mean your instances have issues with your lxcbr0 ?15:44
mhaydensame to you, evrardjp15:44
evrardjpkysse: what do you mean by don't get ip-addresses -- i.e. on which networks15:44
evrardjpmhayden: while you're here, did you experience any issues with SSH when upgrading 14.04 to 16.04?15:45
mhaydenevrardjp: ssh was the least of my problems :/15:45
*** sdake has joined #openstack-ansible15:45
mhaydenstill trying to figure out some of the blackscreening on boot that i had15:45
evrardjpwell with ansible it could be the worst if the init script is borked15:45
evrardjpand you lose ssh everywhere15:45
evrardjpoh well15:45
evrardjpok I see15:46
openstackgerritMerged openstack/openstack-ansible-os_aodh: Remove pki support  https://review.openstack.org/41556015:46
evrardjpunderstood it was really the least of your problems!15:46
kysseevrardjp: on any network. DNSMasq provides leases to ~50% of my instances. This problem is not ansible project related.15:46
openstackgerritMerged openstack/openstack-ansible-os_gnocchi: Remove pki support  https://review.openstack.org/41558315:47
mhaydenif you set up a periodic openstack ci job for a repo, what happens with the results?15:48
mhaydenin other words, if it fails, what happens?15:48
*** TxGirlGeek has joined #openstack-ansible15:49
*** galstrom_zzz is now known as galstrom15:50
*** adrian_otto has joined #openstack-ansible15:51
*** shausy has joined #openstack-ansible15:51
openstackgerritMerged openstack/openstack-ansible-os_watcher: Remove pki support  https://review.openstack.org/41560415:52
*** spotz_zzz has joined #openstack-ansible15:52
mhaydensecurity role gate is broken again :| razzafrazza15:52
*** weezS has joined #openstack-ansible15:53
openstackgerritMerged openstack/openstack-ansible-os_barbican: Remove pki support  https://review.openstack.org/41557115:54
openstackgerritMerged openstack/openstack-ansible-os_sahara: Remove pki support  https://review.openstack.org/41560315:54
kysseit feels like dnsmasq is too slow15:55
kysseand it seems so. bah.15:55
openstackgerritMerged openstack/openstack-ansible-os_designate: Remove pki support  https://review.openstack.org/41558015:55
*** whiteveil has joined #openstack-ansible15:57
*** sliver has joined #openstack-ansible15:58
andymccrmhayden: that damn security role!15:58
mhaydenlawl15:58
*** shausy has quit IRC15:59
openstackgerritMerged openstack/openstack-ansible-os_trove: Remove pki support  https://review.openstack.org/41560516:00
openstackgerritMerged openstack/openstack-ansible-os_ceilometer: Remove pki support  https://review.openstack.org/41557416:01
*** h5t4 has quit IRC16:01
evrardjpBug triage cloudnull, mattt, andymccr, d34dh0r53, hughsaunders, b3rnard0, palendae, Sam-I-Am, odyssey4me, serverascode, rromans, erikmwilson, mancdaz, _shaps_, BjoernT, claco, echiu, dstanek, jwagner, ayoung, prometheanfire, evrardjp, arbrandes, mhayden, scarlisle, luckyinva, ntt, javeriak, automagically,16:03
evrardjpspotz, vdo, jmccrory, alextricity25, jasondotstar, KLevenstein, admin0, michaelgugino, ametts, v1k0d3n, severion, bgmccollum, darrenc, JRobinson__, asettle, colinmcnamara, thorst, adreznec, eil397, qwang, nishpatwa_, cathrichardson, drifterza16:03
evrardjpHere is our bug list for today https://etherpad.openstack.org/p/osa-bugtriage16:03
asettleDanke danke16:03
andymccrlets do this16:04
alextricity25o/16:04
d34dh0r53o/16:04
prometheanfireo/16:04
evrardjpfirst bug: https://bugs.launchpad.net/openstack-ansible/+bug/165348316:04
openstackLaunchpad bug 1653483 in openstack-ansible "/etc/keystone/ssl empty" [Undecided,New]16:04
evrardjpI don't get this one, can keystone store things in ceph, like tokens?16:05
asettleThat doesn't seem like our problem?16:05
evrardjprados is cool but it's an unknown feature to me16:05
evrardjpI'd be enclined to say invalid indeed, or ask for more questions -- not sure what's the problem here16:06
asettleThis honestly doesn't read as if it's an OPenStack-Ansible problem either. The reporter is simply trying to integrate a thing into OpenStack but is expecting a certificate in keystone.16:06
asettleWhich, we don't even have Ceph integrated properly either.16:06
asettleI would comment on it, evrardjp with reasoning, and mark as invalid.16:06
asettleWe do not generate certificate16:06
asettlecertificates*16:06
alextricity25Keystone SSL is offloaded in the LB right?16:06
alextricity25If so, it makes sense that there are no certs in that container16:06
openstackgerritMerged openstack/openstack-ansible-os_ironic: Remove pki support  https://review.openstack.org/41559616:07
evrardjpso there is no ceph object feature integrated with keystone16:07
alextricity25Where it would be a problem is if external_ssl is set to false, and it was still empty16:07
evrardjpso then yes, it's invalid :p16:07
evrardjpoh I understand what you mean -- but I'm sure we are using that folder in that case16:07
evrardjpwell it's worth clarifying in all cases, I'll ask the usual questions16:08
evrardjpI'll handle this!16:08
evrardjpnext16:08
*** marst has joined #openstack-ansible16:08
alextricity25Right - maybe we could mark this one as "needs more info". Still, it sounds like a configurations problem/lack of understanding.16:08
evrardjphttps://bugs.launchpad.net/openstack-ansible/+bug/165322816:08
openstackLaunchpad bug 1653228 in openstack-ansible "Install Guide not found (404)" [Undecided,New]16:08
asettleYeah I just read this one.16:08
logan-that nss database is only used when keystone is using pki tokens. radosgw needs the keys to validate the keystone tokens it receives16:08
asettleHonestly this shouldn't actually be a problem if someone was following hte right guide links16:08
evrardjpalextricity25: yes indeed -- it will be marked as incomplete for now16:09
asettleBUT this made me realise that people might be trying to access this link from google.16:09
alextricity25k16:09
asettleAnd then it's returning a 40416:09
*** chris_hultin is now known as chris_hultin|AWA16:09
evrardjplogan-: oh16:09
evrardjpI forgot these different tokens16:09
evrardjppki and pki-z16:09
asettleIt might be worthwhile talking to infra evrardjp and andymccr to see if they could put a redirect on: http://docs.openstack.org/developer/openstack-ansible/install-guide/16:10
evrardjpor something like that16:10
asettleOr maybe we could do it16:10
*** chris_hultin|AWA is now known as chris_hultin16:10
evrardjpif you don't mind guys it's worth getting back to previous bug:16:11
evrardjpit means we have problem with deployers using PKI tokens16:11
*** winggundamth has quit IRC16:11
evrardjpI vote for still incomplete, but it's something we have to pay attention to16:11
openstackgerritMajor Hayden proposed openstack/openstack-ansible-security: [WIP] Testing security role gate  https://review.openstack.org/41626916:11
evrardjpok now the docs one16:11
andymccrevrardjp: i doubt theyre using pki - just default and wondering why its not there = but yeah more info is better16:12
evrardjpredirect is not that easy IIRC - andymccr your opinion? Maybe just a page that says -- old content, see here instead ?16:13
openstackgerritMerged openstack/openstack-ansible-os_nova: Remove pki support  https://review.openstack.org/41560216:13
andymccrthe docs one would be good to get more info too - was the url typed in manually, or did the user get there some other way? if its manual im not too sure the best approach - we could maybe find out about a redirect like asettle suggested.16:13
asettleYeah I'm commenting on that now. I don't think we need a redirect. But I'm going to include a note.16:13
andymccri can look into that, but id like to get an idea of what actually happened vs what was expected before trying that16:13
asettleI'll take this one and confirm it.16:13
andymccrok cool thanks asettle16:13
*** dxiri has joined #openstack-ansible16:13
evrardjpasettle: ok cool , thanks!16:14
evrardjpnext16:14
evrardjphttps://bugs.launchpad.net/openstack-ansible/+bug/165250116:14
openstackLaunchpad bug 1652501 in openstack-ansible "API: rados and rbd python libraries not found" [Undecided,New]16:14
dxirihey OSA, I am facing a problem during setup-hosts, any help?16:14
dxiriHTTPConnectionPool(host='172.29.236.11', port=8181): Max retries exceeded with url: /os-releases/14.0.2/ (Caused by ResponseError('too many 503 error responses',))\n"}16:14
*** KLevenstein has joined #openstack-ansible16:15
smatzekevrardjp, on that Ceph bug.  Ceph lets you setup its gateway servers to use Keystone for authentication.  The Rados GW servers provide REST APIs for object access that have a high level of parity with Swift.  The bug creator seems to be having problems because of a lack of SSL certs in the OSA deployed Keystone16:15
andymccrdxiri: we're just doing bug triage, but we'll be done soon - and happy to help debug after that!16:15
dxiriandymccr: awesome thanks :) sry to interrupt16:16
evrardjpsmatzek: ok so there was a feature with ceph and keystone, not just the way I thought! Cool to know16:16
evrardjpI'll ask for more details and see if it wouldn't be a bug for ceph-ansible too16:16
evrardjpwell it seems it's a specific use case, but let's discuss that in the bug16:17
evrardjpfor the https://bugs.launchpad.net/openstack-ansible/+bug/1652501 -- incomplete -> ok for everyone?16:17
openstackLaunchpad bug 1652501 in openstack-ansible "API: rados and rbd python libraries not found" [Undecided,New]16:17
andymccrevrardjp: seems fine to me16:17
openstackgerritMajor Hayden proposed openstack/openstack-ansible-security: [WIP] Testing security role gate  https://review.openstack.org/41626916:17
evrardjpnext: https://bugs.launchpad.net/openstack-ansible/+bug/165152116:17
openstackLaunchpad bug 1651521 in openstack-ansible "OSA uses deprecated tenant_id for endpoints in catalog" [Undecided,New]16:17
openstackgerritMerged openstack/openstack-ansible-os_glance: Remove pki support  https://review.openstack.org/41558116:18
evrardjpconfirmed low?16:18
andymccryeah seems right to me16:18
evrardjpexcept if alextricity25 thinks it higher prio?16:18
evrardjpit doesn't seem blocking16:18
alextricity25evrardjp: That sounds good to me16:18
openstackgerritAlexandra Settle proposed openstack/openstack-ansible: [DOCS] Remove ops content from dev docs  https://review.openstack.org/41628616:18
evrardjpok16:19
evrardjpnext16:19
evrardjphttps://bugs.launchpad.net/openstack-ansible/+bug/165064716:19
openstackLaunchpad bug 1650647 in openstack-ansible "Newton: Git server not working " [Undecided,Invalid]16:19
evrardjpgood fixed!16:19
evrardjp(or not)16:19
evrardjp:p16:19
evrardjphttps://bugs.launchpad.net/openstack-ansible/+bug/164572816:19
openstackLaunchpad bug 1645728 in openstack-ansible "Liberty to Liberty Upgrade: MariaDB upgrade stuck on post dpkg configure task" [Undecided,New]16:19
evrardjpsadly BjoernT isn't here16:19
andymccryeah that git one seems fixed16:20
*** ivve has quit IRC16:20
andymccrand that mariadb one is still pending more info. afaict its not really something we can fix, would be good to know it's being looked at upstream though16:20
evrardjpnext one on the list is also done16:20
evrardjpandymccr: yes precisely16:20
evrardjpthat's why I don't close and I'm sad Bjoern isn't here to talk abou it16:21
evrardjpbut yes, we can't do much16:21
evrardjpnext next then16:21
evrardjphttps://bugs.launchpad.net/openstack-ansible/+bug/164612416:21
openstackLaunchpad bug 1646124 in openstack-ansible "Swift is generating audit.log errors on CentOS with selinux enabled" [Wishlist,New]16:21
evrardjpmgariepy: are you there?16:21
evrardjpprobably still in the new year's holidays -- let's go to next one16:22
evrardjphttps://bugs.launchpad.net/openstack-ansible/+bug/164938116:22
openstackLaunchpad bug 1649381 in openstack-ansible "config_template does not support {% raw %}" [Low,New] - Assigned to Praveen N (praveenn)16:22
openstackgerritMerged openstack/openstack-ansible-os_cinder: Remove pki support  https://review.openstack.org/41557816:22
evrardjpmaybe worth discussing with praveen to see news, but I didn't see any commits -- logan- do you have news from this one?16:23
andymccryeah agreed16:23
andymccrotherwise i think its fine where it is - at low, we can wait some for movement on that16:23
evrardjpyes, it's not like if it was a performance issue that's unfixed...16:24
*** chhavi has quit IRC16:24
evrardjp #loveubuntuxenial16:24
*** KLevenstein has quit IRC16:24
evrardjpso last one for today16:24
evrardjphttps://bugs.launchpad.net/openstack-ansible/+bug/165035016:24
openstackLaunchpad bug 1650350 in openstack-ansible "Newton: Haproxy and repo roles SSL issues when internal=extenal VIP" [Medium,New]16:24
*** rromans has quit IRC16:24
evrardjpI still think we should explain to ppl not to do that16:25
*** cathrichardson has joined #openstack-ansible16:25
evrardjpwe could still write a lot of jinja code to fix this, but I still think we shouldn't do it16:25
andymccrhmm.16:26
andymccryou mean set intenral and external to the same?16:26
evrardjpwe have public and internal endpoints -- why would you collocate all of them on the same IP port? It makes sense to me to at least separate them, even on the same network16:26
evrardjpyes, we've done code to fix this already16:26
evrardjpbut we may need to add more16:26
evrardjpand more16:26
andymccryeah true16:27
evrardjpfor something that shouldn't exist IMO16:27
openstackgerritMajor Hayden proposed openstack/openstack-ansible-security: [WIP] Testing security role gate  https://review.openstack.org/41626916:27
evrardjpit's not expensive to have ONE more ip16:27
evrardjpeven private16:27
andymccresp if youre using haproxy16:27
evrardjpyou can even assign 127.0.0.2 if you want16:27
evrardjp:p16:27
evrardjpwell that doesn't make sense either16:27
evrardjpbut just as a point16:27
andymccrhaha yeah but at the same time, should you be able to do SSL internal?16:28
andymccri guess we dont support it so no?16:28
*** dmellado_ has joined #openstack-ansible16:28
evrardjpwell internal SSL or internal no SSL is just detail -- not binding on the same IP and port is not a detail16:28
andymccrtrue16:29
openstackgerritAlexandra Settle proposed openstack/openstack-ansible: [DOCS] Remove ops content from dev docs  https://review.openstack.org/41628616:29
evrardjpand if we're lacking the flexibility of configuring haproxy differently (only one front for the backends), then we may need to find contributors willing to spend time to refactor this16:30
evrardjpin the mean time I'd say low at best16:30
evrardjpand confirmed16:30
evrardjpbecause yes it sucks16:30
evrardjp:p16:30
*** Andrew_jedi has quit IRC16:30
andymccryeah16:30
andymccrok16:31
evrardjpbut we should really educate ppl to not do that16:31
andymccrim sure when bjoernt is back we can get more discussion on that16:31
evrardjpso the fix may only be a doc fix16:31
evrardjpsure16:31
*** rromans has joined #openstack-ansible16:31
asettleevrardjp and andymccr - Bjoern actually should be back. He was only off until the 26th16:32
asettleHe probably just isn't online rn16:32
asettleIf it's not urgent, just email him and he'll get there16:32
evrardjpthat's so personal :)16:32
evrardjpwe can wait, it's now classified as a "low" bug :p16:32
evrardjpanyway, thanks for your time everyone!16:33
evrardjpand happy new year!16:33
evrardjpwooot!16:33
asettle\o/ yay16:33
asettleAndy is watching PPAP16:33
asettle*head desk*16:33
*** Andrew_jedi has joined #openstack-ansible16:34
palendae?16:34
palendaePineapple pen?16:34
asettlePen pineapple apple pen16:34
palendaeOh16:34
asettleThere's a orchestra version that Japan did for NY16:34
openstackgerritMajor Hayden proposed openstack/openstack-ansible-security: [WIP] Testing security role gate  https://review.openstack.org/41626916:35
*** adrian_otto has quit IRC16:35
andymccrdxiri: sorry for the delay - the 503's on port 8181, that suggests the repo server is failing out - it would be go good to check the logs on the repo container(s). Otherwise confirm that haproxy is working properly for the repo server16:36
evrardjpwhat is that?16:36
asettleandymccr and evrardjp - in partial response to that install guide related bug, I've added this: https://review.openstack.org/#/c/416286/2/doc/source/developer-docs/index.rst16:36
*** adrian_otto has joined #openstack-ansible16:36
asettleIt's just a little link within the dev docs16:36
asettleBut the rest of the bug is marked as incomplete and need context.16:36
evrardjpoh man PPAP was definitely something lacking in my culture16:38
evrardjpok I think the context is the most important part here16:39
evrardjpthe bug was filed from main page so it's hard to know16:40
evrardjpcloudnull: are you there?16:40
evrardjpor still renovating?16:40
palendaeevrardjp: He's still out16:42
spotzo/ late16:43
openstackgerritAlexandra Settle proposed openstack/openstack-ansible: [DOCS] Remove ops content from dev docs  https://review.openstack.org/41628616:44
*** adrian_otto has quit IRC16:45
*** KLevenstein has joined #openstack-ansible16:47
*** michaelgugino has joined #openstack-ansible16:50
openstackgerritMajor Hayden proposed openstack/openstack-ansible-security: [WIP] Testing security role gate  https://review.openstack.org/41626916:50
dxiriandymccr: even after destroying the containers and starting from scratch, I am seeing that same issue.16:52
andymccrdxiri: 503 is service unavailable, so my guess is that the VIP is setup but it isn't pointing to the correct place16:54
dxiriis it safe to remove /etc/haproxy/conf.d/ dir from the container host so the haproxy config gets recreated?16:54
andymccror the service inside the containers isn't running properly - so it can't be balanced to.16:54
andymccrdxiri: it would be, but there shouldnt be any point since it should just write over it16:54
andymccrbrb!16:54
dxirik, so to give some context, I initially went trough all the playbooks and on the setup-openstack one I noticed I had an incorrect setting for the vxlan interface, so I fixed that, destroyed all containers and started over again16:56
dxiriand now I am facing this 503 thing16:56
*** sdake has quit IRC16:57
*** david-lyle has joined #openstack-ansible17:03
kyssehttps://www.softwareab.net/wordpress/openstack-debugging-neutron-dhcp/ how to fix this in newton other than restarting dhcp-agent? It seems to happen randomly.17:05
*** adrian_otto has joined #openstack-ansible17:06
*** chris_hultin is now known as chris_hultin|AWA17:07
*** cathrichardson has quit IRC17:07
*** david-lyle has quit IRC17:08
*** chas has quit IRC17:09
*** chas has joined #openstack-ansible17:09
openstackgerritMajor Hayden proposed openstack/openstack-ansible-security: [WIP] Testing security role gate  https://review.openstack.org/41626917:09
*** chris_hultin|AWA is now known as chris_hultin17:11
*** jgriffiths has joined #openstack-ansible17:12
*** chas has quit IRC17:14
dxiriok...the previous haproxy process was running, I moved /etc/haproxy to haproxy.backup and stopped haproxy, that seemed to have worked :)17:20
*** mudpuppy has joined #openstack-ansible17:23
*** erikmwilson has quit IRC17:24
*** erikmwilson has joined #openstack-ansible17:24
*** joelgriffiths has joined #openstack-ansible17:26
*** chris_hultin is now known as chris_hultin|AWA17:26
*** cathrichardson has joined #openstack-ansible17:28
*** jgriffiths has quit IRC17:29
*** chris_hultin|AWA is now known as chris_hultin17:32
*** adrian_otto has quit IRC17:33
andymccrdxiri: ahh nice, sorry i was away longer than expected - glad its working now though!17:34
*** thorst is now known as thorst_afk17:35
dxiriand of course there is a new problem now :)17:35
*** adrian_otto has joined #openstack-ansible17:35
*** chris_hultin is now known as chris_hultin|AWA17:37
*** dxiri has quit IRC17:37
*** dxiri has joined #openstack-ansible17:37
*** chris_hultin|AWA is now known as chris_hultin17:37
*** cmart has joined #openstack-ansible17:37
*** joelgriffiths has quit IRC17:38
*** dxiri_ has joined #openstack-ansible17:38
*** dxiri has quit IRC17:38
cmartis this the place to discuss the host security measures (specifically AIDE) that OSA implements?17:41
cmartI'm curious why OSA configures AIDE to use so many checksums for each tracked file: "sha256+sha512+rmd160+haval+gost+crc32+tiger". Seems like super overkill and sha512 should suffice17:42
palendaemhayden's probably the expert there17:43
cmartIt looks like that's the default for Ubuntu and OSA doesn't override it -- so maybe I should be bugging the AIDE developers or Ubuntu/Debian packagers instead :)17:46
*** whiteveil has quit IRC17:48
stevellecmart: good call on the ubuntu default there17:49
*** thorst_afk is now known as thorst17:51
openstackgerritMerged openstack/openstack-ansible: [DOCS] Remove ops content from dev docs  https://review.openstack.org/41628617:57
*** pcaruana has quit IRC17:58
*** zz_pwnall1337 is now known as pwnall133717:58
*** asettle has quit IRC18:02
*** asettle has joined #openstack-ansible18:03
*** david-lyle has joined #openstack-ansible18:03
*** asettle has quit IRC18:07
*** david-lyle has quit IRC18:08
*** Jack_Iv has joined #openstack-ansible18:17
openstackgerritMajor Hayden proposed openstack/openstack-ansible-security: Unblock security role gate  https://review.openstack.org/41626918:19
mhaydencmart: i thought that was silly as well, but i found the requirement in the STIG for RHEL 718:20
mhaydencmart: https://github.com/openstack/openstack-ansible-security/blob/master/files/aide_extra.conf18:21
*** Jack_Iv has quit IRC18:21
mhaydenhttp://rhel7stig.readthedocs.io/en/latest/low.html#rhel-07-021600-the-file-integrity-tool-must-be-configured-to-verify-access-control-lists-acls18:21
*** cathrichardson has quit IRC18:23
*** spotz_zzz is now known as spotz_18:23
*** KLevenstein has quit IRC18:25
*** cathrichardson has joined #openstack-ansible18:25
*** marc_ab has quit IRC18:28
cmartmhayden I'm not seeing where all of those other checksum algorithms are listed -- I see here http://rhel7stig.readthedocs.io/en/latest/medium.html?highlight=file%20integrity%20tool#rhel-07-021620-the-file-integrity-tool-must-use-fips-140-2-approved-cryptographic-hashes-for-validating-file-contents-and-directories basically says sha512 on its own is OK18:28
mhaydenhmm, i may need to go re-review that18:29
mhaydenubuntu was weird because it's configured so much differently than centos18:29
mhaydenthe config had a lot less in it18:29
*** marc_ab has joined #openstack-ansible18:32
cmartya. not a big deal, but using seven different checksums for each file makes for looong reports from AIDE.18:33
*** whiteveil has joined #openstack-ansible18:35
*** adrian_otto has quit IRC18:38
*** adrian_otto has joined #openstack-ansible18:39
*** sdake has joined #openstack-ansible18:41
*** chyka has joined #openstack-ansible18:42
*** david-lyle has joined #openstack-ansible18:42
*** KLevenstein has joined #openstack-ansible18:50
bgmccollummhayden: regarding black console, ive noticed this too. toggling between TTYs seems to force a redraw...work around while you dig for root cause...18:53
openstackgerritMajor Hayden proposed openstack/openstack-ansible-security: Handle SELinux properly when it is disabled  https://review.openstack.org/41029419:02
mhaydenif someone has a few moments to help me unblock the security role gate, i'd be much obliged: https://review.openstack.org/#/c/416269/19:03
*** sdake has quit IRC19:04
*** chas has joined #openstack-ansible19:10
*** h5t4 has joined #openstack-ansible19:13
*** chas has quit IRC19:15
*** MasterOfBugs has joined #openstack-ansible19:20
*** pramodrj07 has joined #openstack-ansible19:20
*** pramodrj07 has quit IRC19:23
*** MasterOfBugs has quit IRC19:23
*** MasterOfBugs has joined #openstack-ansible19:27
*** cathrichardson has quit IRC19:27
*** cmart has quit IRC19:30
stevellewould take me more than a moment to review it but I'll start19:33
*** cathrichardson has joined #openstack-ansible19:34
*** joelgriffiths has joined #openstack-ansible19:34
*** serverascode has quit IRC19:35
*** NachoDuck has quit IRC19:35
*** kong_ has quit IRC19:35
*** ArchiFleKs has quit IRC19:35
*** h1nch has quit IRC19:35
*** gaudenz has quit IRC19:35
*** gus has quit IRC19:35
*** jamesdenton has quit IRC19:35
*** mrhillsman has quit IRC19:35
*** mathlin_ has quit IRC19:35
*** gfa has quit IRC19:35
*** irtermite has quit IRC19:35
*** swente has quit IRC19:35
*** gaudenz has joined #openstack-ansible19:35
*** mathlin has joined #openstack-ansible19:36
*** irtermite has joined #openstack-ansible19:36
*** h1nch has joined #openstack-ansible19:36
*** swente has joined #openstack-ansible19:36
*** sdake has joined #openstack-ansible19:36
*** gfa has joined #openstack-ansible19:36
*** ArchiFleKs has joined #openstack-ansible19:36
*** gus has joined #openstack-ansible19:36
*** mrhillsman has joined #openstack-ansible19:36
*** asettle has joined #openstack-ansible19:37
alextricity25Does OSA have a mascot?19:39
alextricity25or logo?19:39
stevellein process19:39
alextricity25stevelle: Nice. What are our options?19:40
stevellewe selected the cape buffalo19:40
stevellethere was a 1st draft of the art but I don't have a convenient link19:40
alextricity25neat19:41
*** kong_ has joined #openstack-ansible19:41
*** cmart has joined #openstack-ansible19:49
*** poopcat has joined #openstack-ansible19:50
*** serverascode has joined #openstack-ansible19:52
*** NachoDuck has joined #openstack-ansible19:54
*** sdake has quit IRC19:54
*** jwitko has joined #openstack-ansible19:56
openstackgerritMerged openstack/openstack-ansible-os_cinder: Update paste, policy and rootwrap configurations 2016-12-30  https://review.openstack.org/41585019:58
*** TxGirlGeek has quit IRC20:03
*** openstackgerrit has quit IRC20:03
*** openstackgerrit has joined #openstack-ansible20:07
openstackgerritJames Denton proposed openstack/openstack-ansible-os_neutron: First add for SR-IOV support in OpenStack-Ansible  https://review.openstack.org/41590320:07
*** hybridpollo has joined #openstack-ansible20:09
openstackgerritJames Denton proposed openstack/openstack-ansible-os_nova: Add pci_passthrough_whitelist config option for SR-IOV support in Nova  https://review.openstack.org/41590720:09
*** Andrew_jedi has quit IRC20:10
*** hybridpolio has joined #openstack-ansible20:11
openstackgerritJames Denton proposed openstack/openstack-ansible: Make changes to inventory and user_variables for SR-IOV support  https://review.openstack.org/41590920:11
*** adrian_otto has quit IRC20:11
*** hybridpollo has quit IRC20:14
*** cathrichardson has quit IRC20:19
*** askb has joined #openstack-ansible20:20
*** cathrichardson has joined #openstack-ansible20:22
openstackgerritDarren Chan proposed openstack/openstack-ansible: [docs] Add replace failed hardware section  https://review.openstack.org/41439220:32
*** Jack_Iv has joined #openstack-ansible20:32
*** dxiri_ has quit IRC20:32
*** cathrichardson has quit IRC20:33
*** cathrichardson has joined #openstack-ansible20:36
*** Jack_Iv has quit IRC20:37
*** TxGirlGeek has joined #openstack-ansible20:37
*** dxiri has joined #openstack-ansible20:39
*** dfflanders has joined #openstack-ansible20:41
openstackgerritMerged openstack/openstack-ansible: Add Apache 2.0 license to source file  https://review.openstack.org/41266520:41
openstackgerritMerged openstack/openstack-ansible: Update all SHAs for Ocata 2016-12-30  https://review.openstack.org/41585420:41
*** asettle has quit IRC20:44
openstackgerritMajor Hayden proposed openstack/openstack-ansible-security: Fix invalid user/group checks bug  https://review.openstack.org/41139520:50
openstackgerritJames Denton proposed openstack/openstack-ansible-os_neutron: First add for SR-IOV support in OpenStack-Ansible  https://review.openstack.org/41590320:59
*** adrian_otto has joined #openstack-ansible21:02
openstackgerritMerged openstack/openstack-ansible-security: Unblock security role gate  https://review.openstack.org/41626921:03
openstackgerritMerged openstack/openstack-ansible-security: Handle SELinux properly when it is disabled  https://review.openstack.org/41029421:03
*** whiteveil has quit IRC21:08
openstackgerritMajor Hayden proposed openstack/openstack-ansible: [WIP] Test RHEL 7 STIG integration  https://review.openstack.org/41140621:10
*** chas has joined #openstack-ansible21:11
*** jheroux has quit IRC21:14
*** jheroux has joined #openstack-ansible21:15
*** chas has quit IRC21:15
mrdaMorning OSA21:17
openstackgerritMerged openstack/openstack-ansible-galera_client: Allow override of the repo filename  https://review.openstack.org/41621821:18
*** dxiri_ has joined #openstack-ansible21:20
*** smatzek has quit IRC21:20
*** Andrew_jedi has joined #openstack-ansible21:22
spotz_hey mrda, happy new years21:22
*** dxiri has quit IRC21:23
*** sdake has joined #openstack-ansible21:25
mrdaHNYTY spotz_21:26
*** KLevenstein has quit IRC21:29
*** hybridpollo has joined #openstack-ansible21:32
openstackgerritMerged openstack/openstack-ansible-security: Fix invalid user/group checks bug  https://review.openstack.org/41139521:34
mhaydenand there was much rejoicing21:35
*** Jeffrey4l has quit IRC21:35
mhaydenthe security role is feature complete! :)21:35
mhaydennow to find the bugs!21:35
*** Jeffrey4l has joined #openstack-ansible21:36
spotz_mhayden: I'm pretty sure you said you were done before we all went off for holiday21:38
mhaydenwell i was missing one thing21:38
mhaydenbut now it's in21:38
palendaeuntil the stig is updated again21:38
mhaydeni already told the us govt to leave it alone21:38
palendaeI'm sure all the attck vectors have been found :)21:38
mhayden:P21:38
stevelleSome say it can do attack vector math in it's head. All we know is it's called the Stig.21:41
*** whiteveil has joined #openstack-ansible21:41
palendaeOof21:41
spotz_hehe21:42
palendaeDid the stig go over to the Grand Tour, too?21:42
stevelleyeah, shoulda had another thing in the middle there for accuracy, but feeling lazy21:42
openstackgerritMajor Hayden proposed openstack/openstack-ansible: [WIP] Test RHEL 7 STIG integration  https://review.openstack.org/41140621:46
spotz_poor mhayden21:47
*** KLevenstein has joined #openstack-ansible21:47
openstackgerritMajor Hayden proposed openstack/openstack-ansible: Add ANSIBLE_TEST_PLUGINS env variable  https://review.openstack.org/41635821:48
*** h5t4 has quit IRC21:48
*** sdake has quit IRC21:51
*** chas has joined #openstack-ansible21:51
*** jrobinson has joined #openstack-ansible21:51
bgmccollumpalendae no, they have some nascar guy...and he talks while driving, which is weird21:53
*** jrobinson has quit IRC21:53
*** sdake has joined #openstack-ansible21:53
*** jrobinson has joined #openstack-ansible21:54
openstackgerritMajor Hayden proposed openstack/openstack-ansible: Add ANSIBLE_TEST_PLUGINS env variable  https://review.openstack.org/41635821:56
*** chas has quit IRC21:56
openstackgerritMajor Hayden proposed openstack/openstack-ansible: [WIP] Test RHEL 7 STIG integration  https://review.openstack.org/41140621:57
*** michaelgugino has quit IRC21:57
*** agrebennikov has joined #openstack-ansible21:58
*** Andrew_jedi has quit IRC21:59
*** smatzek has joined #openstack-ansible22:01
*** thorst has quit IRC22:07
*** thorst has joined #openstack-ansible22:08
openstackgerritBjoern Teipel proposed openstack/openstack-ansible-plugins: Implementation Neutron SR-IOV  https://review.openstack.org/41636222:10
*** KLevenstein has quit IRC22:11
*** chas has joined #openstack-ansible22:12
*** thorst has quit IRC22:13
*** chris_hultin is now known as chris_hultin|AWA22:15
*** chas has quit IRC22:16
*** whiteveil has quit IRC22:16
*** cmart has quit IRC22:19
*** fguillot has quit IRC22:22
openstackgerritBjoern Teipel proposed openstack/openstack-ansible-plugins: Implementation Neutron SR-IOV  https://review.openstack.org/41636222:23
*** cathrichardson has quit IRC22:27
*** cathrichardson has joined #openstack-ansible22:28
*** sdake has quit IRC22:30
*** pwnall1337 is now known as zz_pwnall133722:30
*** cathrichardson has quit IRC22:32
*** thorst has joined #openstack-ansible22:32
*** cmart has joined #openstack-ansible22:35
*** jlockwood has joined #openstack-ansible22:36
*** thorst has quit IRC22:37
*** galstrom is now known as galstrom_zzz22:41
*** jheroux has quit IRC22:42
*** smatzek has quit IRC22:44
*** pmannidi has joined #openstack-ansible22:48
*** adrian_otto has quit IRC22:52
openstackgerritBjoern Teipel proposed openstack/openstack-ansible-plugins: Implementation Neutron SR-IOV  https://review.openstack.org/41636222:53
*** thorst has joined #openstack-ansible22:53
*** zz_pwnall1337 is now known as pwnall133722:54
*** jamesden_ has quit IRC22:57
*** thorst has quit IRC22:57
*** phalmos has joined #openstack-ansible22:58
*** sdake has joined #openstack-ansible22:58
*** jamesdenton has joined #openstack-ansible22:59
*** chris_hultin|AWA is now known as chris_hultin22:59
*** spotz_ is now known as spotz_zzz23:01
*** jamesdenton has quit IRC23:01
openstackgerritBjoern Teipel proposed openstack/openstack-ansible-plugins: Implementation Neutron SR-IOV  https://review.openstack.org/41636223:06
*** jperry has quit IRC23:11
*** openstack has joined #openstack-ansible23:16
*** chris_hultin is now known as chris_hultin|AWA23:19
*** marst has quit IRC23:21
*** jlockwood has quit IRC23:27
*** chris_hultin|AWA is now known as chris_hultin23:29
*** chris_hultin is now known as chris_hultin|AWA23:30
*** jlockwood has joined #openstack-ansible23:36
*** rmelero has joined #openstack-ansible23:38
*** winggundamth has joined #openstack-ansible23:47
*** TxGirlGeek has quit IRC23:50
*** klamath has quit IRC23:56
*** woodard has joined #openstack-ansible23:56
*** woodard has quit IRC23:56
*** woodard has joined #openstack-ansible23:57
« Monday, 2017-01-02 Index Wednesday, 2017-01-04 »

Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!