Tuesday, 2017-07-11

« Monday, 2017-07-10 Index Wednesday, 2017-07-12 »
*** oanson has joined #openstack-ansible00:01
*** cpuga has quit IRC00:08
*** dxiri_ has joined #openstack-ansible00:09
*** dxiri has quit IRC00:12
*** acormier has quit IRC00:16
*** schwicht has joined #openstack-ansible00:27
*** nollide has joined #openstack-ansible00:30
*** aslaen has quit IRC00:37
*** thorst has quit IRC00:45
*** acormier has joined #openstack-ansible00:49
*** oanson has quit IRC00:54
*** acormier has quit IRC00:55
*** oanson has joined #openstack-ansible00:56
*** acormier has joined #openstack-ansible00:56
*** galstrom_zzz is now known as galstrom01:12
*** dxiri_ has quit IRC01:18
*** dxiri has joined #openstack-ansible01:18
*** dxiri has quit IRC01:19
*** dxiri has joined #openstack-ansible01:19
*** dxiri has quit IRC01:19
*** dxiri has joined #openstack-ansible01:19
*** dxiri has quit IRC01:26
*** dxiri has joined #openstack-ansible01:26
*** thorst has joined #openstack-ansible01:28
*** thorst has quit IRC01:28
*** charcol has quit IRC01:38
*** charcol has joined #openstack-ansible01:39
*** smatzek has joined #openstack-ansible01:40
*** smatzek has quit IRC01:41
*** smatzek has joined #openstack-ansible01:41
*** nollide has quit IRC01:42
*** ricardoas has quit IRC01:42
*** nollide has joined #openstack-ansible01:42
*** cmart has joined #openstack-ansible01:43
*** ricardoas has joined #openstack-ansible01:44
*** dixiaoli has joined #openstack-ansible01:46
*** klamath has quit IRC01:46
*** klamath has joined #openstack-ansible01:47
*** nollide has quit IRC01:49
*** gkadam has joined #openstack-ansible01:49
*** tonytan_brb has joined #openstack-ansible01:49
*** acormier has quit IRC01:50
*** smatzek has quit IRC01:50
*** acormier has joined #openstack-ansible01:50
*** schwicht has quit IRC01:51
*** tonytan4ever has quit IRC01:52
*** klamath has quit IRC01:52
*** acormier_ has joined #openstack-ansible01:52
*** klamath has joined #openstack-ansible01:53
*** acormier has quit IRC01:55
*** dixiaoli_ has joined #openstack-ansible02:04
*** dixiaoli has quit IRC02:07
*** galstrom is now known as galstrom_zzz02:11
*** acormier_ has quit IRC02:12
*** acormier has joined #openstack-ansible02:13
*** hw_wutianwei has joined #openstack-ansible02:19
*** phalmos_ has quit IRC02:23
*** klamath has quit IRC02:28
*** galstrom_zzz is now known as galstrom02:37
*** ricardoas has quit IRC02:46
*** acormier has quit IRC02:49
*** acormier has joined #openstack-ansible02:50
*** ricardoas has joined #openstack-ansible02:52
*** acormier has quit IRC02:54
*** tonytan_brb has quit IRC02:58
*** schwicht has joined #openstack-ansible03:20
*** LiterateHawk has quit IRC03:24
*** schwicht has quit IRC03:27
*** tonytan4ever has joined #openstack-ansible03:28
*** thorst has joined #openstack-ansible03:29
*** thorst has quit IRC03:34
*** dixiaoli has joined #openstack-ansible03:38
*** dixiaoli_ has quit IRC03:39
*** dxiri has quit IRC03:41
*** winggundamth has joined #openstack-ansible03:42
*** udesale has joined #openstack-ansible03:46
*** LiterateHawk has joined #openstack-ansible03:47
*** dixiaoli has quit IRC03:49
*** acormier has joined #openstack-ansible03:50
*** schwicht has joined #openstack-ansible03:53
*** cNilesh has joined #openstack-ansible03:54
*** acormier has quit IRC03:54
*** tonytan4ever has quit IRC03:57
*** schwicht has quit IRC03:57
*** cathrich_ has joined #openstack-ansible03:58
*** cathrichardson has quit IRC03:58
*** galstrom is now known as galstrom_zzz04:00
*** poopcat has quit IRC04:03
*** cNilesh is now known as cNilesh|bf04:05
*** adreznec has quit IRC04:13
*** adreznec has joined #openstack-ansible04:14
*** dxiri has joined #openstack-ansible04:19
*** dxiri has quit IRC04:19
*** dxiri has joined #openstack-ansible04:19
cloudnulltots I am.04:21
cloudnullhows it ?04:21
*** dxiri has quit IRC04:26
*** hybridpollo has quit IRC04:44
*** cpuga has joined #openstack-ansible04:51
*** acormier has joined #openstack-ansible04:52
*** cpuga has quit IRC04:52
*** cpuga has joined #openstack-ansible04:53
*** acormier has quit IRC04:56
*** cpuga has quit IRC04:58
*** kristian__ has joined #openstack-ansible05:01
*** kristian__ has quit IRC05:06
*** pmannidi has quit IRC05:09
*** pmannidi has joined #openstack-ansible05:13
*** pmannidi has quit IRC05:13
*** cathrich_ has quit IRC05:15
*** dixiaoli has joined #openstack-ansible05:17
*** cathrichardson has joined #openstack-ansible05:17
*** woodard has quit IRC05:24
*** thorst has joined #openstack-ansible05:30
*** thorst has quit IRC05:34
*** kristian__ has joined #openstack-ansible05:47
*** gkadam has quit IRC05:56
*** gkadam has joined #openstack-ansible05:58
*** pcaruana has joined #openstack-ansible06:04
odyssey4meLiterateHawk and you completed the setup-hosts playbook without a hitch?06:12
odyssey4mecan you pastebin the contents of /etc/ansible/facts.d/openstack_ansible from that repo container?06:13
*** Oku_OS-away is now known as Oku_OS06:14
*** gkadam has quit IRC06:17
*** gkadam has joined #openstack-ansible06:17
*** kristian__ has quit IRC06:18
*** gkadam has quit IRC06:18
*** kristian__ has joined #openstack-ansible06:18
*** gkadam has joined #openstack-ansible06:19
*** gkadam has quit IRC06:21
*** cshen has joined #openstack-ansible06:23
*** basilAB has quit IRC06:23
*** vaishali has quit IRC06:24
*** gtrxcb has joined #openstack-ansible06:25
*** basilAB has joined #openstack-ansible06:28
*** vaishali has joined #openstack-ansible06:29
openstackgerritJesse Pretorius (odyssey4me) proposed openstack/openstack-ansible master: [WIP] Just-in-time container creation  https://review.openstack.org/47102606:35
*** mbuil has joined #openstack-ansible06:43
*** gkadam has joined #openstack-ansible06:44
*** gkadam has quit IRC06:46
*** aneos has joined #openstack-ansible06:49
*** tobberydberg has joined #openstack-ansible06:53
*** aneos has quit IRC06:54
*** acormier has joined #openstack-ansible06:54
*** tobberyd_ has joined #openstack-ansible06:55
*** anetos has joined #openstack-ansible06:56
*** tobberydberg has quit IRC06:58
*** acormier has quit IRC06:59
*** vishwana_ has joined #openstack-ansible07:06
*** vishwanathj has quit IRC07:06
anetoshello , i have galera failures  http://paste.openstack.org/show/614982/  . do i follow this to get it fixed  ? https://docs.openstack.org/openstack-ansible/newton/newton/developer-docs/ops-galera-recovery.html07:08
*** shardy has joined #openstack-ansible07:11
*** jvidal has joined #openstack-ansible07:17
*** thorst has joined #openstack-ansible07:31
*** anetos has quit IRC07:32
*** openstackgerrit has quit IRC07:33
*** thorst has quit IRC07:36
*** anetos has joined #openstack-ansible07:37
*** openstackgerrit has joined #openstack-ansible07:38
openstackgerritMerged openstack/openstack-ansible stable/ocata: Tidy up keystone need_db_sync fact  https://review.openstack.org/48223207:38
*** toddnni has joined #openstack-ansible07:40
*** toddnni has quit IRC07:40
*** toddnni has joined #openstack-ansible07:45
*** gtrxcb has quit IRC07:46
*** markvoelker_ has quit IRC07:47
*** pvradu has joined #openstack-ansible07:48
*** pbandark has joined #openstack-ansible07:54
*** openstackgerrit has quit IRC08:03
*** openstackgerrit has joined #openstack-ansible08:04
openstackgerritAdrien Cunin proposed openstack/openstack-ansible master: Vars passed to openstack-ansible take precedence  https://review.openstack.org/48244008:04
odyssey4meanetos I would suggest you do your own research, but some stuff is documented here: https://docs.openstack.org/openstack-ansible/latest/admin/maintenance-tasks/galera.html08:09
*** vnogin has joined #openstack-ansible08:13
anetosodyssey4me: i have been reading that page08:15
kristian__Hey, does anyone know how do I deploy to a non / partition? because on ovh, you have / that has 30gb ish partition and /home that has 2tb08:16
odyssey4mekristian__ sure, just prep your host before deployment accordingly08:16
kristian__on the same hdd. How can I deploy openstack-ansible on /home?08:17
anetosas i understand it i should stop all  3 failed galera containers and rebuild them per the above instructions then run setup hosts and setup infra08:17
odyssey4meah no, the paths aren't quite that flexible08:17
odyssey4mekristian__ it'll take a few patches to get it to the point that the paths are flexible, so if you're up to do it then we'd support the work08:17
kristian__odyssey4me: then what shall I do? I cannot find anything related in the docs. For now I need openstack running there and I cannot afford to reinstall the server because I have k8s running right now there and I plan on moving it to openstack. But is there a simple hack for that?08:19
kristian__odyssey4me: do you know how to do that?08:25
*** gkadam has joined #openstack-ansible08:25
*** gkadam is now known as gkadam-afk08:26
*** gkadam-afk has quit IRC08:26
kristian__please could someone help me? It will be an AIO install08:35
andymccrkristian__: if you have no access to how the file systems are mounted thats pretty hard. the majority of space is probably in /var/lib since that'd be where the containers live - but if you can't mount something there from the 2tb drive that could be difficult. maybe symlink to that location? (and remove the task that performs a disk space check)08:36
andymccrmore specifically /var/lib/lxc08:36
kristian__yeah, Thats what Im thinking about08:37
kristian__but I need all paths that I need to symlink08:37
kristian__andymccr: /var/lib/lxc is an executable. /var/lib/lxcfs is a dir08:38
andymccrall of them - well, you would definitely want /var/lib/lxc then /openstack - those would be the main ones08:38
andymccrkristian__: shouldn't be - /var/lib/lxc/container_name would be a directory for each container08:39
*** winggundamth has quit IRC08:39
kristian__yeah but /var/lib/lxc is LXD cli client08:39
kristian__and /var/lib/lxcfs is a dir with cgroup and proc dirs in it08:40
andymccrkristian__: that would be /usr/lib/lxc08:40
kristian__so I need to remove /var/lib/lxc executable and create a symlink /home/lxc -> /var/lib/lxc08:41
kristian__right?08:41
andymccrthe binary is /usr/lib/lxc (e.g. do a which lxc and it'll show you) it could be diff on your install i guess, but it would usually be /var/lib/lxc and when you have containers running there will be directories in /var/lib/lxc/mycontainer1 or w/e the name of the container is08:41
andymccrif its actually an exectuable then you dont want to do that, but it should justbe a directory08:41
kristian__so remove the exec and symlink the dir from another partition, right?08:42
*** winggundamth has joined #openstack-ansible08:42
andymccryeah - i mean i dont think anybody has tried this, its usually easier to have access to the hardware/partitioning ;) but if you need to get it done that way, that may be the only way.08:43
kristian__its ovh08:43
kristian__also I have a LOT of k8s pods running, but most of the system is free08:43
kristian__and it has a soft partitioning raid 0 on 2tb hdd08:43
odyssey4mekristian__ this is something you should have planned better using a test environment, even if that was a test environment on your laptop/desktop using vagrant... trying to sort this out after the fact is going to be very, very messy08:44
odyssey4mecrossing partitions is going to involve quite a few issues with permissions08:44
odyssey4mebut yeah, it all depends on how you've deployed too08:45
kristian__this will be only deployed for 3-4 months, then I will move to a better solution with vrack on ovh08:45
odyssey4meif you've used lvm for the containers, or you've used the file system backend08:45
kristian__also I like ovh, because they give you ips for free, all you need to pay is for the setup fee08:45
kristian__me only docker08:45
odyssey4methere will be all sorts of things dotted all over the place, but most stuff is in /openstack and some in /var/lib/lxc as andymccr said08:45
odyssey4meas the paths are not something you can edit, you'll likely have to figure out how to fudge it08:46
kristian__ok, if they will be the biggest dirs then I can live with it08:46
kristian__also I will move to rhel and maybe packstack in the future08:47
kristian__but for now, this should be goos08:47
kristian__*good08:47
kristian__gonna run the deployment, or should I rerun the bootstrap-aio script?08:49
kristian__just run-playbooks is enough I think08:49
odyssey4meuh, you should not be using the AIO bootstrap at all08:52
odyssey4meor run-playbooks08:52
odyssey4methose are both for *development* environments08:52
odyssey4meif you're wanting to do an AIO for production purposes, then you should craft your own configuration08:53
odyssey4methe AIO has loads of security holes08:53
odyssey4methe development AIO I mean08:53
kristian__its just for now, later I will deploy normal prod version. we are developing an app to run on and with openstack08:56
kristian__also got an error08:56
kristian__"/var/lib/lxc already exists as a link"08:57
kristian__odyssey4me: how can I fix it?08:59
odyssey4mekristian__ you're on your own08:59
andymccrkristian__: apparently you can set the lxc path in /etc/lxc/lxc.conf - check "man lxc.system.conf" that may be a better approach08:59
odyssey4meI cannot afford the time to replicate your situation and help you solve it08:59
kristian__gonna check ir09:00
kristian__*it09:00
kristian__"/etc/lxc/" is empty09:02
kristian__gonna try it out again. did a mount --bind09:08
*** admin0 has joined #openstack-ansible09:12
*** electrofelix has joined #openstack-ansible09:15
*** winggundamth has quit IRC09:16
admin0morning osa \o09:18
*** thorst has joined #openstack-ansible09:32
*** thorst has quit IRC09:37
*** markvoelker has joined #openstack-ansible09:48
Martin___Hi all. I am deploying openstack on a cluster with heterogeneous architectures. The control node is x86, the compute nodes are supposed to be arm. When installing the nova services to the compute nodes, I get the following error: "HTTP Error 404: Not Found" for "http://172.29.236.1:8181/os-releases/14.2.6/ubuntu-16.04-armv7l/get-pip.py"09:52
Martin___When I take a look at the repo_container, there is no path for armv7, only for x86_64. There is a spec for multiple architectures: https://specs.openstack.org/openstack/openstack-ansible-specs/specs/newton/multi-arch-support.html09:52
Martin___Is that feature already available in Newton? Do I have to apply some variables somewhere to enable that feature? Or should I set up a second repo node for arm?09:52
*** acormier has joined #openstack-ansible09:56
*** dixiaoli has quit IRC10:00
openstackgerritMarkos Chandras (hwoarang) proposed openstack/openstack-ansible-os_designate master: tests: Convert bind configuration file to template  https://review.openstack.org/48249010:01
openstackgerritMarkos Chandras (hwoarang) proposed openstack/openstack-ansible-os_designate master: Add support for the openSUSE Leap distributions  https://review.openstack.org/48249110:01
*** acormier has quit IRC10:02
*** kristia__ has joined #openstack-ansible10:05
*** kristian__ has quit IRC10:09
openstackgerritMerged openstack/openstack-ansible stable/ocata: Implement rolling upgrades for nova  https://review.openstack.org/48192410:10
openstackgerritAndy McCrae proposed openstack/openstack-ansible-os_nova master: [WIP] Move to use UWsgi for Nova  https://review.openstack.org/45142510:12
*** woodard has joined #openstack-ansible10:15
openstackgerritMarkos Chandras (hwoarang) proposed openstack/openstack-ansible-os_ceilometer master: Add support for the openSUSE Leap distributions  https://review.openstack.org/48231210:20
openstackgerritMarkos Chandras (hwoarang) proposed openstack/openstack-ansible-os_ceilometer master: tests: Provide mongodb configuration template  https://review.openstack.org/48231110:20
*** woodard has quit IRC10:20
*** markvoelker has quit IRC10:22
evrardjpsorry to push my agenda here, but can I get some votes on https://review.openstack.org/#/c/482208/ ?10:24
*** yolanda has quit IRC10:32
*** gouthamr has quit IRC10:33
*** yolanda has joined #openstack-ansible10:33
*** yolanda_ has joined #openstack-ansible10:33
*** yolanda_ has quit IRC10:33
*** stuartgr has joined #openstack-ansible10:40
*** gouthamr has joined #openstack-ansible10:40
*** schwicht has joined #openstack-ansible10:41
mbuilguys, I think the tacker role is ready to be reviewed. As far as I see, I must create a new project in openstack called openstack-ansible-os_tacker, can anybody explained me what exactly I need to do to create a new project?10:45
evrardjpmbuil: andymccr can work that out with you10:46
evrardjpwe'll ask infra to use your repo as basis for the project10:46
andymccrmbuil: let me put the patch in now. gimme 2 secs - do you have a base repo you want to be imported? (that' be the repo that gets used as the tacker role to start with)10:47
evrardjpif there is a base repo, we should probably review it too10:47
andymccrwe could create a blank one and review the initial pr10:47
*** schwicht has quit IRC10:48
mbuilandymccr: let's do it in a couple of hours because I am waiting for my pull request to be accepted. This is the repo: https://github.com/jrametta/openstack-ansible-os_tacker. I tried it using aio flavor and mini flavor and it works :)10:49
mbuilyou can start reviewing it (note that my pull request is pending)10:49
*** thorst has joined #openstack-ansible10:50
andymccrmbuil: ok sure - i'll prep that. we'll need jrametta to agree to that as well i think.10:50
mbuilandymccr: ok. I contacted him a week ago and he was ok but maybe he should officially give the ok. How can we do that?10:51
andymccras long as hes aware and happy its all good :)10:51
andymccrbasically the process is: I'll create a PR to the governance and project-config repos, a repo then gets created as a clone of that repo and then it works like all the other osa repos.10:52
andymccrit'll need some base tests which may fail at first and will probably have to be the first pr10:52
andymccr(to fix hthe tests)10:52
mbuilandymccr: This is literally what he said to me "If they are still relevant I would be happy to have them upstreamed so they can be worked on by more people."10:52
andymccrnice!10:52
andymccri mean usually people are in favour, because nobody wants to maintain a role themselves :)10:53
mbuilandymccr: ok. And in parallel I commit a patch to the OSA repo to add the tacker-installer,etc. right?10:54
andymccrmbuil: so once the repo request merges and the repo is created as openstack/openstack-ansible-os_tacker you can put PRs in, but the first PR will probably need to be fixing the tests which may fail (linters/some form of func test etc - at first func test can just be a no-op)10:55
andymccroh you mean teh openstack-ansible repo10:55
andymccrwith an os-tacker-install.yml playbook?10:55
mbuilandymccr: yes10:55
andymccrahh ok sorry i misunderstood! yeah we can get that added once the role is up and ready to go10:55
mbuilandymccr: ok. Then I'll ping you when my PR is accepted10:56
andymccrmbuil: excellent - thanks for working on that!10:56
mbuilandymccr: you are welcome. Actually thanks for the help! This community is incredibly helpful :)10:57
*** gkadam has joined #openstack-ansible11:00
*** kristian__ has joined #openstack-ansible11:11
*** kristia__ has quit IRC11:15
*** markvoelker has joined #openstack-ansible11:20
*** smatzek has joined #openstack-ansible11:23
*** smatzek has quit IRC11:24
*** smatzek has joined #openstack-ansible11:24
*** gkadam has quit IRC11:24
*** admin0 has quit IRC11:32
openstackgerritMerged openstack/openstack-ansible stable/newton: Implement rolling upgrades for nova  https://review.openstack.org/48192511:34
*** lkoranda has quit IRC11:34
*** admin0 has joined #openstack-ansible11:36
*** acormier has joined #openstack-ansible11:42
*** acormier has quit IRC11:42
*** acormier has joined #openstack-ansible11:43
openstackgerritMarkos Chandras (hwoarang) proposed openstack/openstack-ansible-os_designate master: tests: Convert bind configuration file to template  https://review.openstack.org/48249011:43
openstackgerritMarkos Chandras (hwoarang) proposed openstack/openstack-ansible-os_designate master: Add support for the openSUSE Leap distributions  https://review.openstack.org/48249111:43
kristian__andymccr: how can I remove openstack-ansible without reinstalling the system?11:50
neithkristian__: removing lxc container with the adhoc role is the max you can do11:51
kristian__what about networks?11:51
kristian__aio install on ubuntu 16.0611:51
kristian__16.0411:51
neithkristian__: Which net?11:51
kristian__br-mgmt, br-vxlan,...11:52
kristian__because I have k8s cluster running11:52
kristian__and I need it up along with openstack11:52
kristian__also I have multiple ext ips, so no problem11:53
*** markvoelker has quit IRC11:53
openstackgerritMarkos Chandras (hwoarang) proposed openstack/openstack-ansible-os_neutron master: Add support for the openSUSE Leap distributions  https://review.openstack.org/48252911:56
*** acormier has quit IRC11:59
*** acormier has joined #openstack-ansible11:59
*** acormier has quit IRC12:04
*** gkadam has joined #openstack-ansible12:05
*** schwicht has joined #openstack-ansible12:10
mhaydenmorning12:15
*** mbuil has quit IRC12:16
*** markvoelker has joined #openstack-ansible12:19
neithkristian__: If you have a sensible deployment you should take care of it yourself12:28
anetosAIO is not meant for such deployment kristian__12:29
*** mbuil has joined #openstack-ansible12:32
*** kylek3h has joined #openstack-ansible12:38
*** woodard has joined #openstack-ansible12:44
*** yifei has quit IRC12:46
*** woodard has quit IRC12:46
*** woodard has joined #openstack-ansible12:47
*** openstackgerrit has quit IRC12:47
*** gkadam_ has joined #openstack-ansible12:51
*** gkadam has quit IRC12:54
*** udesale has quit IRC12:58
*** udesale__ has joined #openstack-ansible12:58
*** galstrom_zzz is now known as galstrom12:59
*** charcol has quit IRC12:59
*** charcol has joined #openstack-ansible12:59
*** esberglu has joined #openstack-ansible13:00
*** openstackgerrit has joined #openstack-ansible13:01
openstackgerritMarkos Chandras (hwoarang) proposed openstack/openstack-ansible-os_heat master: Add support for the openSUSE Leap distributions  https://review.openstack.org/48255113:01
openstackgerritJean-Philippe Evrard proposed openstack/openstack-ansible-ops master: Do not delete containers named rpc.*  https://review.openstack.org/48220813:02
*** chhavi has joined #openstack-ansible13:03
*** gkadam__ has joined #openstack-ansible13:04
odyssey4meos_neutron's calico job is now voting logan- andymccr https://review.openstack.org/#/c/481568/ :)13:04
odyssey4mealso, the ceph job on the integrated build is now voting too13:05
*** cNilesh has joined #openstack-ansible13:05
*** gkadam_ has quit IRC13:06
*** hmedhioub has quit IRC13:07
*** cNilesh|bf has quit IRC13:07
logan-awesome13:08
hwoaranghmm os_neutron centos7 gate job is failing http://logs.openstack.org/29/482529/1/check/gate-openstack-ansible-os_neutron-ansible-func-centos-7/42321e6/ anyone aware of it? :/13:10
*** gkadam__ has quit IRC13:11
*** cNilesh has quit IRC13:12
*** cathrich_ has joined #openstack-ansible13:13
logan-interesting it looks like the neutron service setup task file never ran there13:13
*** nollide has joined #openstack-ansible13:15
*** nollide has left #openstack-ansible13:16
*** cathrichardson has quit IRC13:16
logan-hwoarang: http://logs.openstack.org/29/482529/1/check/gate-openstack-ansible-os_neutron-ansible-func-centos-7/42321e6/console.html#_2017-07-11_12_23_42_85015713:17
logan-that's why13:17
logan-the server containers both failed out earlier in the play13:17
logan-some dns issue there i guess13:17
hwoaranglogan-: ah right thanks. i didn't even try to debug it just wanted to check if it's known before i spend time on it! but it looks like it's a temporary issue13:18
hwoarangi wonder why ansible didn't stop on that task that failed13:19
*** lostRhino has joined #openstack-ansible13:19
hwoaranghmm i guess it continued with the hosts that managed to install the packages ...13:19
logan-because there were other hosts in the play that had not failed yet. it'll continue to work the playbook until max_fail_percentage (default  100%) is reached13:19
LiterateHawkodyssey4me, I now see that setup-hosts is failing further up. It appears lxc-veth-wiring.sh is unhappy with OVS: "can't add 93d4ffa0_eth1 to bridge br-mgmt: Operation not supported"13:20
hwoaranglogan-: yeah makes sense13:21
LiterateHawkNeed to sort that one out13:21
*** DimGR has joined #openstack-ansible13:22
Martin___Just for the record, in case someone else is having the same issue in the future: I created a repo container on one of the arm hosts. For container creation to work one needs to redefine "lxc_architecture_mapping:\n  x86_64: amd64\n  ppc64le: ppc64el\n  armv7l: armhf"13:28
Martin___However, the new repo container does only contain another copy of the x86 repos and none for arm. If anyone has an idea how to overcome that hurdle and create the arm repos, they are very welcome ;)13:28
*** _nyloc_ is now known as nyloc13:28
lostRhinowhat is the best way for me to confirm the logs are making it to the logging server (I belive the openstack_user_config.yml file has the correct setting for log_host) thanks for any help13:29
odyssey4methis is why I want to implement https://review.openstack.org/48095613:29
nylocHi, I know that this might not be 100% openstack-ansible related but I have a problem that instances inside a tennant can't resolve the hostnames of other instances in that tennant.13:29
*** jamesdenton has quit IRC13:29
odyssey4meMartin___ any chance you can share that modification via a bug or a patch?13:30
nylocI have made an example with two instances if I use "dig instance2 @192.168.1.100" from instance1. .100 is the dhcp server I get a  ;; ->>HEADER<<- opcode: QUERY, status: REFUSED, id: 163813:30
nylocanswer13:30
*** jamesdenton has joined #openstack-ansible13:31
*** cpuga has joined #openstack-ansible13:31
xgerman_hi,13:31
*** askb has quit IRC13:32
xgerman_so andymccr suggested to make the aio files templates so we can have networks definitions in trove and octavia and… how would I do that?13:32
nylocI have set 8.8.8.8 as the DNS in the subnet where the two instances live in so dig google.de works as it uses 8.8.8.813:32
nylocBut I would like to be able to resolve the hostnames too, not just internet dns queries. Any hints where to look for that?13:33
Martin___odyssey4me i can file a bug report, but that change would have to be applied to several of the default variables. I simply redefined that one in user_variables13:33
openstackgerritJean-Philippe Evrard proposed openstack/openstack-ansible-ops master: Do not delete containers named rpc.*  https://review.openstack.org/48220813:35
odyssey4meMartin___ I'd like us to change it in all the places it needs to be done so that arm works out of the box :)13:36
odyssey4meso if you can file a bug with all the changes you found necessary, we can work on that as a feature13:36
openstackgerritJean-Philippe Evrard proposed openstack/openstack-ansible-ops master: Do not delete containers named rpc.*  https://review.openstack.org/48220813:37
Martin___odyssey4me ok. I'm on it13:37
nylocI found in the docs something about adding dns to extension_drivers in the [ml2] section of the ml2 plugin config. Where would I set this via openstack ansible and is this the right place to look for enabling dns inside tennants?13:37
*** cpuga has quit IRC13:38
*** cpuga has joined #openstack-ansible13:38
*** klamath has joined #openstack-ansible13:40
*** yifei has joined #openstack-ansible13:41
*** dxiri has joined #openstack-ansible13:42
*** weezS has joined #openstack-ansible13:42
odyssey4menyloc anything you want to implement in any conf file can be done using conf overrides: https://docs.openstack.org/project-deploy-guide/openstack-ansible/ocata/app-advanced-config-override.html13:43
nylocodyssey4me: I found in the ansible role that if neutron_plugin_base contains dns this is added to extension_drivers, but I don't know in which file I should set this and if it is the right way to go13:45
*** dxiri has quit IRC13:46
nylocodyssey4me: I would now add13:48
nylocneutron_plugin_base:13:48
nyloc  - dns13:48
nylocto /etc/openstack_deploy/user_variables.yml, but I am a bit afraid I will break something by doing so ;).13:48
LiterateHawkHi all - does br-mgmt have to be a regular linux bridge and not an OVS bridge?13:48
nylocodyssey4me: Would this overwrite the default router and metering values? Or would this extend the list?13:49
TahvokMy galera installation fails13:51
TahvokProtocolError('Connection aborted.', error(104, 'Connection reset by peer'))13:52
TahvokIn Install pip packages step13:52
TahvokWhen I attached to the container, I could ping google just fine13:52
*** klamath has quit IRC13:52
TahvokHowever, runnig pip install requests  returns the same 104 error13:52
*** klamath has joined #openstack-ansible13:53
*** anetos has quit IRC13:54
*** ricardoas has quit IRC13:56
*** vishwana_ has quit IRC13:56
*** sachinvlk has quit IRC13:57
*** vishwanathj has joined #openstack-ansible13:57
*** klamath has quit IRC13:57
*** klamath has joined #openstack-ansible13:58
*** ricardoas has joined #openstack-ansible13:59
asuraHi, I'm about to run OSAD playbook for the first time.  I have reviewed the documentation and I believe Appendix A (https://docs.openstack.org/project-deploy-guide/openstack-ansible/ocata/app-config-test.html) has some fields that are at least no longer in the environment layout sample file (/etc/openstack_deploy/openstack_user_config.yml).  The following are the fields that I removed  https://gist.github.com/michaelbarkdol14:01
odyssey4measura that link gives us a 40414:03
Tahvokodyssey4me: remove ) at end14:04
nylocodyssey4me: I reinstalled nova with the additional dns option and the created config looks good but local resolution still does not work. Do I have to restart the neutron service somehow or should the install script have done that?14:04
odyssey4meTahvok asura I meant the gist14:04
odyssey4menyloc I have no idea.14:05
nylocodyssey4me: Ok, I will try to figure out how to restart neutron ;)14:05
asuraThe gist link works on my end, hmm.14:05
odyssey4measura so that gist may be a link to your profile, not a particular gist - can you give the link to the actual gist?14:06
asurahttps://gist.github.com/37a32e361f513c3822724304acc9d0a8  Hope this one works14:07
odyssey4measura you removed those? why?14:09
odyssey4mewithout those you have no glance, no nova, no heat, no horizon14:10
asuraWe'll at one point the guide tells me to Copy the contents of the /opt/openstack-ansible/etc/openstack_deploy directory to the /etc/openstack_deploy directory.14:11
asuraThen Change to the /etc/openstack_deploy directory.  Copy the openstack_user_config.yml.example file to /etc/openstack_deploy/openstack_user_config.yml.14:11
asuraThe example doesn't have these fields14:11
asuraAnd Appendix A has some missing required fields14:11
odyssey4meah, so we need to update the .example file14:11
odyssey4mecan you register a bug for that please14:12
asuraSo, I'll leave these fields in14:12
asuraSure, how? :)14:12
*** nollide has joined #openstack-ansible14:12
odyssey4mehttps://launchpad.net/openstack-ansible14:12
asuraThanks14:12
*** anetos has joined #openstack-ansible14:19
*** acormier has joined #openstack-ansible14:20
*** jwitko has joined #openstack-ansible14:26
TahvokI found the reason for pip failing14:26
TahvokThe repo for pip is not working..14:27
TahvokSeems that the repo container has some problem...14:27
TahvokI'm checking it now, but would like to have some tips as well14:27
odyssey4methat would usually be some sort of networking issue14:27
odyssey4mealternatively, something wrong with the haproxy config14:27
odyssey4meso check if the container can communicate with the world14:28
odyssey4meif so, validate whether haproxy is running and listening on the right things14:28
*** schwicht has quit IRC14:28
Tahvokodyssey4me: I've configured vip instead of haproxy14:28
TahvokBut that's some tip.. Gonna check if it's up14:29
*** marst has joined #openstack-ansible14:31
*** dxiri has joined #openstack-ansible14:32
openstackgerritMerged openstack/openstack-ansible-ops master: Do not delete containers named rpc.*  https://review.openstack.org/48220814:35
TahvokNop, vip is up14:37
odyssey4meTahvok you only have a VIP? Then what is going to do the reverse proxy of the services to the containers?14:38
odyssey4meif you don't want haproxy, you'll have to direct the traffic somehow14:38
Tahvokvirt on f514:39
odyssey4meah ok, that's fine - an external LB is good14:39
TahvokAll traffic is going to from this vip to the controller14:39
TahvokWhat services should I check on the repo container?14:39
odyssey4medo you have the correct IP's configured for external_lb_address and internal_lb_address?14:39
Tahvokodyssey4me: yes14:39
TahvokAlso, the pip repo received the correct ip14:40
odyssey4meok, so is the f5 seeing that the container is up?14:40
odyssey4mecan you curl the repo container address:port to validate that it's up? can you curl the vip address:port to validate that the lb is working?14:40
*** firebat has joined #openstack-ansible14:42
firebatHey guys QQ. When running the os_ciner_install.yml part of setting up openstack I'm running into an issue. When the playbook attempts to ensure the cinder service exists in keystone it can't connect because it's using http instead of https. Is that setting retrieved from the openstack_deploy/user_variables.yml file?14:43
*** cuongnv has joined #openstack-ansible14:44
Tahvokodyssey4me: mgmt and lxc bridges work14:44
TahvokHowever vip doesn't14:44
TahvokBut vip is forwarding fine to the controller. I checked with tcpdumpg14:44
*** cuongnv has left #openstack-ansible14:44
odyssey4mewhat do you mean by 'controller' ? the host or the repo container?14:45
Tahvokodyssey4me: the host14:45
odyssey4meheh, that's not going to work14:45
TahvokI tried the ip of the host, and got: Connection refused14:45
odyssey4methe LB has to forward the right ports to the right containers14:46
Tahvokodyssey4me: yes, that's what I thought, doesn't it what ansible is configuring?14:46
odyssey4mecan you rephrase the question?14:46
Tahvokdo I need to configure the lb myself to each container?14:46
odyssey4meOSA does not have f5 configuration playbooks, so you have to configure the f5 yourself.14:46
odyssey4meyep14:47
TahvokThat's not written anywhere14:47
odyssey4mehow do you expect it to be fconfigured for you?14:47
TahvokI thought you need to forward lb to the host, and the host will transfer the appropriate ports by itself to the right containers14:47
odyssey4menope14:47
TahvokBut I understand that's not the way?14:48
*** openstackgerrit has quit IRC14:48
odyssey4meyou'd have to use haproxy as an intermediary if you'd like that to happen14:48
LiterateHawkThe LB forwards to haproxy who then sends it to the appropriate ports14:48
odyssey4meyou don't have to use haproxy, but you can14:48
odyssey4mewe (rackspace) have a script to compile the f5 config14:49
odyssey4mehttps://github.com/rcbops/rpc-openstack/blob/master/scripts/f5-config.py14:49
jamesdentonAs it stands now, the F5 has to have an interface in the container network (L2 adjacency to the containers)14:49
Tahvokodyssey4me: so I need to specifically configure each port to specific container?14:51
TahvokIs there a list of this ports (by container)?14:51
odyssey4meTahvok yep14:51
odyssey4menot in documentation - but in your inventory14:51
admin0hi all ..  can cluster-metrics be installed in another system that is not the deploy host itself .. if yes, what are the minmum files that needs to be copied over from deploy ?14:51
odyssey4methat script I linked grabs it all from the inventory and prepares an f5 config14:51
admin0just the inventory ?14:52
Tahvokodyssey4me: is there any arguments for running this script?14:52
Tahvokadmin0: the inventory has all the ips your containers will get14:52
TahvokSo it should be enough14:53
odyssey4meTahvok I have no idea - never used it personally. jamesdenton may be able to help... otherwise try it with -h14:53
jamesdentonThere are some flags. Hang tight14:53
admin0it needs the deploy host ssh keys also right ?14:53
odyssey4meTahvok it would be rather nice to have some playbooks for f5 config, but that would take someone who wants that to develop and contribute them. :)14:53
odyssey4meif I had one lying about I'd probably do it myself. :p14:54
jamesdentonTahvok - f5-config.py -f <inventory file> -s <snat address> --ssl-public-ip <external lb vip> --ssl-domain-name <external lb vip fqdn> --sec-host-network "<host_net:mask>" --sec-container-net "<container_net:mask>" --sec-public-vlan-name <external vlan name on F5>14:56
jamesdentonTahvok - You can also run the haproxy playbook and reverse engineer haproxy.cfg to build your own F5 config14:57
*** cathrich_ is now known as cathrichardson15:00
TahvokThanks a lot guys! Will look into it, and try running15:02
jamesdentonsure thing15:02
*** phalmos has joined #openstack-ansible15:05
*** jamesdenton has quit IRC15:05
*** nollide has quit IRC15:08
*** jamesdenton has joined #openstack-ansible15:08
*** jamesdenton has quit IRC15:08
*** anetos has quit IRC15:09
*** jamesdenton has joined #openstack-ansible15:09
*** nollide has joined #openstack-ansible15:11
*** perniciouscaffei has joined #openstack-ansible15:11
*** chyka has joined #openstack-ansible15:16
*** chyka has quit IRC15:16
*** chyka has joined #openstack-ansible15:17
*** yifei has quit IRC15:18
admin0when openstack-ansible-ops is done , at what port will I get the metrics ?15:19
admin0and if i am using haproxy and a DNS address, is that what it says when it talks about proxying ?15:20
*** anetos has joined #openstack-ansible15:21
admin0ok .. that part is figured out15:22
*** nollide has left #openstack-ansible15:24
admin0can someone help me in cluster-metrics error i am getting in the final playbook run.. https://pastebin.com/rbcramFD   .  openstack-ansible  playbook-grafana.yml15:27
admin0 finished OK ..  the last one  openstack-ansible  playbook-kapacitor.yml fails on TASK [Execute tickscripts]15:27
admin0what is supposed to listen on 9032 ?15:28
*** Martin___ has quit IRC15:29
asura9092*15:29
admin0yes :)15:30
admin0sorry15:30
*** Oku_OS is now known as Oku_OS-away15:30
admin0whats supposed to be listening there15:30
admin0i only see grafana listeing on 808915:30
admin0and ssh15:30
admin0whats the admin login :)15:31
admin0there is no cluser or granana in user_secrets15:33
admin0grafana*15:33
firebatHey guys when cinder tries to ensure that it is registered under keystone it is using http instead of https... I can't seem to figure out what config that is15:34
admin0figured it out :)15:35
asurahow?15:35
*** tobberydberg has joined #openstack-ansible15:35
admin0in the grafana config :)15:35
*** nollide has joined #openstack-ansible15:36
odyssey4mefirebat that comes from your keystone service catalog15:36
*** anetos has quit IRC15:37
admin0so next is to figure out influx stuff before the provided dashboards can be used15:38
*** tobberyd_ has quit IRC15:38
*** anetos has joined #openstack-ansible15:39
*** lostRhino has quit IRC15:39
*** tobberydberg has quit IRC15:39
*** lostRhino has joined #openstack-ansible15:40
*** udesale__ has quit IRC15:40
asuraIs /etc/openstack_deploy/openstack_user_config.yml defining 1000 vxlan's? https://pastebin.com/r63kWAJf  Is this enough for production, e.g., can I increase the range?15:43
*** openstackgerrit has joined #openstack-ansible15:48
openstackgerritMiguel Alex Cantu (alextricity25) proposed openstack/openstack-ansible-ops master: Improve openstack-release file discovery  https://review.openstack.org/48260815:48
*** lostRhino has left #openstack-ansible15:48
*** mhayden has quit IRC15:48
*** mhayden has joined #openstack-ansible15:48
admin0i got the dashboard and the data source in grafana working .. but the metrics are none15:50
admin0figuring it out even more15:50
anetoshello , when creating a gateway net  i get this error Flat provider networks are disabled. , i had this error in the past but i cant remember how i  had it solved. anyone care to help ?15:52
*** weezS has quit IRC15:52
*** tobberydberg has joined #openstack-ansible15:56
Tahvokexit15:56
*** vnogin has quit IRC15:56
*** admin0 has quit IRC15:56
*** admin0 has joined #openstack-ansible15:56
evrardjpTahvok: You're out of your shell now.15:59
*** tobberydberg has quit IRC16:00
evrardjpBug triage cloudnull, mattt, andymccr, d34dh0r53, hughsaunders, b3rnard0, palendae, Sam-I-Am, odyssey4me, serverascode, rromans, erikmwilson, mancdaz, _shaps_, BjoernT, claco, echiu, dstanek, jwagner, ayoung, prometheanfire, evrardjp, arbrandes, mhayden, scarlisle, luckyinva, ntt, javeriak, automagically,16:00
evrardjpspotz, vdo, jmccrory, alextricity25, jasondotstar, KLevenstein, admin0, michaelgugino, ametts, v1k0d3n, severion, bgmccollum, darrenc, JRobinson__, asettle, colinmcnamara, thorst, adreznec, eil397, qwang, nishpatwa_, cathrichardson, drifterza, sc68cal, rackertom16:00
evrardjpHere is our bug list for today https://etherpad.openstack.org/p/osa-bugtriage16:00
evrardjp#startmeeting openstack_ansible_meeting16:00
openstackMeeting started Tue Jul 11 16:00:48 2017 UTC and is due to finish in 60 minutes.  The chair is evrardjp. Information about MeetBot at http://wiki.debian.org/MeetBot.16:00
openstackUseful Commands: #action #agreed #help #info #idea #link #topic #startvote.16:00
openstackThe meeting name has been set to 'openstack_ansible_meeting'16:00
andymccrso pumped! lets do this thing.16:00
evrardjpYeah, it's not like our days are not full already, right? right?16:01
evrardjpwe have 42 bugs today.16:01
evrardjp#link https://bugs.launchpad.net/openstack-ansible/+bug/1702962 Misconfigured health check for Barbican with haproxy16:01
openstackLaunchpad bug 1702962 in openstack-ansible "Misconfigured health check for Barbican with haproxy" [Undecided,New]16:01
spotzI blame odyssey4me cause I haven't seen him yet today16:02
*** pvradu has quit IRC16:03
andymccrhmm16:03
andymccrthat should be easy enough to fix16:03
andymccrid say its high if confirmed16:03
evrardjpwell that sounds bad16:04
evrardjpjmccrory: did you deploy barbican at some point? Did you deploy it with haproxy?16:04
evrardjpOr I remember wrong?16:04
andymccrwe should get a scenario with it in at some point - tbh i thought we had one already :)16:05
evrardjpI don't see HEAD in the docs16:06
evrardjpit looks probably valid16:06
evrardjpconfirmed high ?16:06
andymccryeah id say confirmed high16:06
evrardjpor we wait for more confirmations?16:06
andymccrwe have had that with some other services recently, so i am guessing there is a change thats happened16:07
evrardjpYeah I remember seeing something on that topic16:07
evrardjpok let's move on16:08
evrardjp#link https://bugs.launchpad.net/openstack-ansible/+bug/170255316:08
openstackLaunchpad bug 1702553 in openstack-ansible "ansible-hardening : V-38660 - The snmpd service must only use SNMPv3 or newer Bad Grep" [Undecided,New]16:08
andymccrdamnit mhayden16:09
andymccrhow could you16:09
mhaydenoopsies16:09
andymccr:D16:09
mhaydeni grabbed that one16:09
evrardjplow hanging fruit confirmed ?16:09
evrardjpwhat does that mean, you already fixed it?16:09
mhaydenyeah16:09
evrardjpBecause you had other ^# issues16:09
evrardjpok16:10
mhaydenwell, grep never seems easy, but you know what i mean16:10
mhaydenthere are a shedload of bug fixes in ansible-hardening that need reviews16:10
* mhayden plugs16:10
* mhayden waits for evrardjp to hit me with the bat16:10
odyssey4memhayden you write such buggy software, sheesh16:10
mhaydenindeed16:10
evrardjpno, I'm just letting a message for the bug reporter16:11
evrardjpwe are good to go I think.16:11
evrardjp#link https://bugs.launchpad.net/openstack-ansible/+bug/170252616:11
openstackLaunchpad bug 1702526 in openstack-ansible "Setting security_pwquality_apply_rules: yes breaks passwd command" [Undecided,New]16:11
mhaydenhttps://review.openstack.org/#/q/project:openstack/ansible-hardening+status:open :)16:11
evrardjpmhayden: !16:11
andymccrhaha mhayden tbh its kinda nice the amount of bug reports you get - shows ppl are using it.16:11
mhaydeni missed this one16:11
evrardjpandymccr: Who is using openstack-ansible anyway16:11
evrardjp:p16:11
andymccrhow do we spin ansible-security-hardening into its own project so we can get rid of these bugs on our list? :P16:11
mhaydenevrardjp: confirmed, low, assign to me! :)16:11
evrardjpI like how this goes mhayden16:12
evrardjp#link https://bugs.launchpad.net/openstack-ansible/+bug/170212316:12
openstackLaunchpad bug 1702123 in openstack-ansible "SELinux error: keepalived reading haproxy pid file" [Undecided,New] - Assigned to Major Hayden (rackerhacker)16:12
evrardjpdarn.16:12
evrardjpthat's me16:12
evrardjpgood it merged.16:12
evrardjpnext16:12
evrardjpoh wait16:13
evrardjpIt's not fixed for osa16:13
andymccrhuh? :P16:13
evrardjpyes sorry16:13
mhaydenoh yeah, this was a PR in evrardjp's ansible-keepalived role16:13
evrardjpthe base code16:13
evrardjpis merged in ansible-keepalived16:13
evrardjpbut there is something to do in OSA16:14
evrardjpI assigned it to me16:14
evrardjplet's go  on16:14
evrardjp#link https://bugs.launchpad.net/openstack-ansible/+bug/170160916:14
openstackLaunchpad bug 1701609 in openstack-ansible "DNS plugin is explicitly excluded from neutron config" [Undecided,New]16:14
evrardjpIt looks like this is done according to docs16:14
evrardjpI remember this was at the source of an openstack ML thread16:14
evrardjpanyone knows more about it?16:15
*** firebat has quit IRC16:16
andymccrmugsie: do you have a recommendation on that one?16:16
evrardjpAdri2000: ArchiFleKs?16:16
mugsieandymccr: oh, I found out what was up with that last night16:16
evrardjpI remember that ArchiFleKs was on it16:16
andymccrahh sweet16:16
evrardjpok?16:16
mugsielet me close it - someone did the right thing - DNS is a "special" ML2 integration16:16
evrardjpYeah I worked with ArchiFleKs on that16:17
andymccrahh ok cool.16:17
mugsiethere is a corresponding if "dns" in neutron_plugins16:17
andymccrthanks for looking into it all the same16:17
evrardjpso we're good?16:17
evrardjpI will mark it as invalid then16:17
evrardjp316:17
evrardjp216:17
evrardjp116:17
evrardjpnext!16:17
andymccrsweet :D16:18
andymccrkilling it16:18
evrardjp#link https://bugs.launchpad.net/openstack-ansible/+bug/170048216:18
openstackLaunchpad bug 1700482 in openstack-ansible "haproxy-endpoint-manage.yml dose not exist in stable/ocata" [Undecided,New]16:18
evrardjpthis looks invalid to me16:18
evrardjpToo bad we can't talk to the user, we could have helped him16:18
evrardjpinvalid, ok for everyone?16:18
odyssey4methat's been fixed16:19
odyssey4meit was valid16:19
evrardjpoh ok16:19
evrardjpmy bad16:19
jmccroryhttps://review.openstack.org/#/c/477470/16:19
jmccrorywhere odyssey4me fixed it16:19
andymccrsweet16:19
andymccrso its fixed pending sha bump? or the new sha is included16:20
andymccre.g. do we need a release asap?16:20
odyssey4meit was never eeleased with the problem16:20
odyssey4methis was someone chasing the head of the branch16:20
andymccrahh ok16:20
andymccrthats even better then :D16:20
*** admin0 has quit IRC16:20
evrardjpin any case, I marked it as incomplete, waiting for user confirmation that it was solved, as I usually do. If no answer it will expire.16:21
andymccrsounds good to me16:21
evrardjpnext!16:21
evrardjp#link https://bugs.launchpad.net/openstack-ansible/+bug/170006116:21
openstackLaunchpad bug 1700061 in openstack-ansible "Telemetry doesn't work on deploying OpenStack using OSA Newton release" [Undecided,New]16:21
andymccrtelemetry16:21
evrardjpso, it was working under Mitaka, but it's not working anymore16:22
evrardjpbut nobody put the time to make it work16:22
andymccryeah unfortunately, we havent had enough interested people maintaining those roles16:22
evrardjpI'd say confirmed16:22
evrardjpand we can go for low, because of the coverage of this16:22
andymccragered16:22
andymccragreed16:22
jmccrorydoesn't mention an error or what exactly isn't working16:22
andymccryeah that too16:23
andymccrbut im guessing its just not working in general since nobody has kept those maintained16:23
*** phalmos has quit IRC16:23
evrardjplet's first agree on the importance: low16:24
andymccryeah sure16:24
evrardjpbecause of its scoping16:24
evrardjpok16:24
evrardjpso16:24
evrardjpnext16:24
evrardjpwell16:24
evrardjpI mean, do we confirm or not?16:25
andymccryeah16:25
andymccri mean i think its clear its not working16:25
andymccrjust that there doesnt seem to be much interest in fixing it up16:25
evrardjpok so confirmed low16:26
andymccrgets my vote16:26
evrardjp#link https://bugs.launchpad.net/openstack-ansible/+bug/170005116:27
openstackLaunchpad bug 1700051 in openstack-ansible "lsyncd don't work in centos7" [Undecided,New]16:27
evrardjpthat sounds bad16:27
evrardjpmgariepy: mhayden?16:27
evrardjpDid you see that?16:27
andymccrthat does sound bad16:27
andymccrwell16:29
evrardjpconfirmed high?16:29
andymccrim spinning up a centos aio right now so maybe i can double check that16:29
andymccryeah16:30
andymccrassign it to me i think16:30
evrardjpdon't forget the affinity :p16:30
evrardjpeven if not confirmed16:30
evrardjpwe can change the status16:30
andymccragreed16:30
andymccri'll probably just finish setting this up and add more hosts afterwards ;D16:31
evrardjphaha true16:31
evrardjpso16:31
evrardjpnext16:31
evrardjp#link https://bugs.launchpad.net/openstack-ansible/+bug/169987516:31
openstackLaunchpad bug 1699875 in openstack-ansible "rsyslog client postrotate script contains invalid command" [Undecided,New]16:31
andymccrhmm16:32
andymccrok we should fix that one16:33
evrardjpI don't see what's rong16:33
evrardjpoh ok16:33
evrardjpyeah16:33
evrardjpfair enough16:33
*** weezS has joined #openstack-ansible16:33
*** kristia__ has joined #openstack-ansible16:34
evrardjpwe should template that per sys_mgr or something like that16:34
evrardjpI don't really remember16:34
*** kristia__ has quit IRC16:34
andymccryeah16:34
evrardjpsounds a large annoyance16:34
evrardjpI'd like to put that into high and low hanging fruit.16:34
evrardjpsee if it helps resolving16:35
evrardjp316:35
evrardjp216:35
evrardjp116:35
evrardjpnext16:35
evrardjp#link https://bugs.launchpad.net/openstack-ansible/+bug/169953916:36
openstackLaunchpad bug 1699539 in openstack-ansible "Ansible prior 2.2.3 is vulnerable with CVE-2017-7466, CVE-2017-7473, CVE-2017-7481" [Undecided,New]16:36
evrardjpinteresting one IMO16:36
*** kristian__ has quit IRC16:36
andymccrthey surely would've backporte dthose to like 2.1 branch too16:37
odyssey4meconsidering how long ago we went from 2.1 to 2.2, and all the pain it took, I just don't see how we can do that16:37
andymccrif not we need those fixes backported if the 2.1 branch is vulnerable to those cve's16:37
andymccrwe can then bump to latest version of 2.116:37
evrardjpisn't 2.1 receiving updates for this?16:37
evrardjpsorry I didn't track it16:38
andymccrnot sure - we should look into that though16:38
andymccrodyssey4me:  is right though, moving 2.1 --> 2.2 is not really a viable plan for a stable branch16:38
evrardjpHi all, we are happy to announce that Ansible 2.3.1 and 2.1.6 final have been released.16:39
evrardjpThe 2.3.1 release fixes several bugs, and both releases include a fix for CVE-2017-7481 (SEVERITY: Moderate).16:39
evrardjpExtract from ansible project group, from jimi-c16:39
evrardjpI guess we can assume that if we bump 2.1.6 it's good enough for security.16:40
evrardjpso what are we running?16:40
logan-https://github.com/openstack/openstack-ansible/blob/stable/newton/scripts/bootstrap-ansible.sh#L2516:40
logan-2.1.6.016:40
logan-https://github.com/openstack/openstack-ansible/commit/8e0582b686b7aca97c6d34d512a3fcbeb1a6345216:41
evrardjpcool thanks logan-16:41
logan-thanks odyssey4me :P16:41
andymccryeah was looking for that :P thanks16:42
evrardjpso what's the triage?16:42
andymccrwell if we have resolved the cve's16:42
odyssey4mehaha :)16:42
evrardjpthanks odyssey4me indeed16:42
andymccrthen its resolved already16:42
*** toddnni has quit IRC16:43
evrardjplet's continue16:44
evrardjpsorry if I'm a little slow today :p16:44
evrardjp#link https://bugs.launchpad.net/openstack-ansible/+bug/169919116:44
openstackLaunchpad bug 1699191 in openstack-ansible "Keystone role fails if backend admin or internal uri protocol differs from frontend" [Undecided,New]16:44
*** mbuil has quit IRC16:45
odyssey4meah, good bug16:46
odyssey4mewe'll have to work around it16:46
evrardjpI don't think bugs can be considered good, but I still agree with you odyssey4me :D16:47
*** cshen_ has joined #openstack-ansible16:47
openstackgerritMarkos Chandras (hwoarang) proposed openstack/openstack-ansible-os_gnocchi master: templates: gnocchi-httpd: Ensure proper user control in gnocchi root  https://review.openstack.org/48263216:48
openstackgerritMarkos Chandras (hwoarang) proposed openstack/openstack-ansible-os_gnocchi master: Add support for the openSUSE Leap distributions  https://review.openstack.org/48263316:48
LiterateHawkHi all - does br-mgmt have to be a regular linuxbridge and not an OVS bridge?16:48
jamesdentonLiterateHawk Yes, as far as i know16:48
*** shardy has quit IRC16:49
evrardjpok let's mark it as confirmed and medium?16:49
evrardjplet's finish this bug triage real quick16:49
LiterateHawkjamesdenton Awesome. I got some strange errors trying to attach container veths to the bridge and figured16:49
evrardjpcould you discuss this guys at the end of the bug triage please?16:50
evrardjpok next16:50
evrardjp#link https://bugs.launchpad.net/openstack-ansible/+bug/169887116:50
openstackLaunchpad bug 1698871 in openstack-ansible "[master] [os_gnocchi]Gnocchi role tests failing on installing pip packages" [Undecided,New] - Assigned to Miguel Alejandro Cantu (miguel-cantu)16:50
odyssey4meinternal SSL on the keystone container is not a tested code path - we should add a scenario to test it16:50
evrardjpagreed odyssey4me16:51
evrardjpnext bug is targetting gnocchi, what should we do again?16:51
evrardjplet's leave it as is?16:51
andymccryeah i thinkso16:51
evrardjpok16:52
evrardjplet's move on16:52
evrardjp#link https://bugs.launchpad.net/openstack-ansible/+bug/169883116:52
openstackLaunchpad bug 1698831 in openstack-ansible "os_cinder volume service fails with Volume group "cinder-volumes" not found" [Medium,New] - Assigned to Jesse Pretorius (jesse-pretorius)16:52
evrardjpodyssey4me: what's the status of this?16:52
*** schwicht has joined #openstack-ansible16:52
evrardjpis it over with the related fixes?16:52
andymccri think thats fixed now - its an lxc issue that we couldnt get around afaik16:53
evrardjpok16:53
evrardjplet's mark it as fixed then16:53
evrardjp(waiting for odyssey4me's opinion, he is currently reading it)16:54
odyssey4meit's only worked around for now16:54
odyssey4meI still need to go back and implement a new test for it to ensure we increase coverage16:54
evrardjpok, good I'll leave it as in progress then16:55
odyssey4meI'm marking as triaged16:55
*** weezS has quit IRC16:55
evrardjpok that's good enough too.16:55
evrardjpat the end of the meeting you can add a link to remember this :p16:55
evrardjpnext16:55
*** kristian__ has joined #openstack-ansible16:55
evrardjp#link https://bugs.launchpad.net/openstack-ansible/+bug/169798116:55
openstackLaunchpad bug 1697981 in openstack-ansible "Override neutron_dnsmasq_neutron_conf_overrides is broken" [Undecided,New]16:55
evrardjplooks a problem to me16:56
evrardjpI'd personally mark it as confirmed and medium16:56
evrardjpit's not high but it's very painful16:56
evrardjpI'll take it, and I hope I will eventually have time to do it.16:58
*** cshen_ has quit IRC16:58
evrardjpnext16:58
evrardjp#link https://bugs.launchpad.net/openstack-ansible/+bug/169778216:58
openstackLaunchpad bug 1697782 in openstack-ansible "Mounting of ceph-backed cinder volumes is broken after Ocata upgrade" [Undecided,New]16:58
evrardjpit's the last one for today, on the gong16:58
*** maybebuggy has joined #openstack-ansible16:59
evrardjplogan-: ?17:00
logan-reading thru17:00
evrardjpcould you have a look at that? I think that might interest you17:00
logan-yeah for sure. assign to me and ill try to confirm it. seems like it ought to be breaking our tempest runs in ceph builds if one of the tests tries to attach a volume to a nova instance17:01
logan-ill make an aio and try to break it17:01
evrardjpthat's cool17:01
evrardjpthanks logan-!17:01
evrardjpwe are done for today!17:02
evrardjpthanks everyone, as usual.17:02
evrardjpsorry for the time it took17:02
evrardjp#endmeeting17:02
openstackMeeting ended Tue Jul 11 17:02:33 2017 UTC.  Information about MeetBot at http://wiki.debian.org/MeetBot . (v 0.1.4)17:02
openstackMinutes:        http://eavesdrop.openstack.org/meetings/openstack_ansible_meeting/2017/openstack_ansible_meeting.2017-07-11-16.00.html17:02
openstackMinutes (text): http://eavesdrop.openstack.org/meetings/openstack_ansible_meeting/2017/openstack_ansible_meeting.2017-07-11-16.00.txt17:02
openstackLog:            http://eavesdrop.openstack.org/meetings/openstack_ansible_meeting/2017/openstack_ansible_meeting.2017-07-11-16.00.log.html17:02
evrardjpLiterateHawk: jamesdenton you may continue :) sorry for the interruption!17:03
andymccrmhayden: do you know how the centos7 caching bits work?17:03
andymccror mgariepy - i mean the apt-cacher-ng integration piece17:04
LiterateHawkevrardjp No, I'm sorry for the interruption!17:04
openstackgerritMerged openstack/openstack-ansible master: Optimize the link address  https://review.openstack.org/48157017:04
jamesdentonevrardjp :)17:05
openstackgerritMarkos Chandras (hwoarang) proposed openstack/openstack-ansible-galera_server master: tasks: galera_install_zypper: Drop zypper workaround for Ansible < 2.2  https://review.openstack.org/48263817:06
*** kristian__ has quit IRC17:06
*** kristian__ has joined #openstack-ansible17:07
openstackgerritMarkos Chandras (hwoarang) proposed openstack/openstack-ansible-galera_client master: tasks: galera_client_install_zypper: Drop zypper workaround for Ansible < 2.2  https://review.openstack.org/48263917:07
*** chyka has quit IRC17:10
*** kristian__ has quit IRC17:11
*** kristian__ has joined #openstack-ansible17:11
*** schwicht has quit IRC17:13
*** chyka has joined #openstack-ansible17:14
*** schwicht has joined #openstack-ansible17:14
*** dxiri has quit IRC17:14
*** dxiri has joined #openstack-ansible17:15
openstackgerritMiguel Alex Cantu (alextricity25) proposed openstack/openstack-ansible master: Remove telemetry roles from role requirements  https://review.openstack.org/47857317:18
*** kristian__ has quit IRC17:18
*** esberglu has quit IRC17:19
*** kristian__ has joined #openstack-ansible17:19
*** cshen_ has joined #openstack-ansible17:22
*** kristian__ has quit IRC17:24
*** nollide has quit IRC17:25
*** ricardoas1 has joined #openstack-ansible17:26
*** ricardoas has quit IRC17:29
openstackgerritMarkos Chandras (hwoarang) proposed openstack/openstack-ansible-tests master: test-setup-swifthosts: Optimize xfsprogs installation  https://review.openstack.org/48264617:31
*** cpuga has quit IRC17:39
*** cpuga has joined #openstack-ansible17:39
*** nollide has joined #openstack-ansible17:40
*** chhavi has quit IRC17:43
*** toddnni has joined #openstack-ansible17:44
*** jrniemijr has joined #openstack-ansible17:45
*** cshen_ has quit IRC17:46
*** cshen_ has joined #openstack-ansible17:47
*** perniciouscaffei has quit IRC17:48
*** weezS has joined #openstack-ansible17:55
*** stuartgr has quit IRC17:56
*** anetos has quit IRC18:02
*** electrofelix has quit IRC18:02
*** esberglu has joined #openstack-ansible18:02
*** tobberydberg has joined #openstack-ansible18:04
*** esberglu has quit IRC18:04
*** esberglu has joined #openstack-ansible18:05
*** poopcat has joined #openstack-ansible18:07
*** perniciouscaffei has joined #openstack-ansible18:08
*** albertcard1 has joined #openstack-ansible18:09
*** poopcat has quit IRC18:12
asuraIs /etc/openstack_deploy/openstack_user_config.yml defining 1000 vxlan's? https://pastebin.com/r63kWAJf  Is this enough for production, e.g., can I increase the range?18:14
asuraI'm just not certain does this mean that range 1 - 1000 vxlans will be available?  So this would mean essentially 1000 tenant networks?18:16
*** ggillies_ has quit IRC18:19
*** ggillies has joined #openstack-ansible18:21
openstackgerritJesse Pretorius (odyssey4me) proposed openstack/openstack-ansible-os_glance master: Correct major upgrade detection logic  https://review.openstack.org/48265818:28
*** kristian__ has joined #openstack-ansible18:29
*** kristian__ has quit IRC18:34
*** yusef has joined #openstack-ansible18:35
*** albertcard1 is now known as poopcat18:42
*** esberglu_ has joined #openstack-ansible18:44
*** cshen_ has quit IRC18:46
openstackgerritGerman Eichberger proposed openstack/openstack-ansible-os_octavia master: Octavia will create the network upon request itself  https://review.openstack.org/48266418:47
*** esberglu has quit IRC18:47
*** nollide has left #openstack-ansible18:53
*** tobberydberg has quit IRC19:02
*** tobberydberg has joined #openstack-ansible19:02
jamesdentonasura Yes, the default is VNI 1 thru 1000. You can increase that at any time, but would need to rerun the os-neutron-install.yml playbook with neutron-config tag (i think) to modify the configuration across hosts and restart neutron server service19:04
*** redondo-mk has joined #openstack-ansible19:05
jamesdentonThe answer to 'is it enough' really varies between each cloud. It has been enough for us. You're likely to hit scaling limitations with stock neutron agents long before you hit the top of that range19:05
*** tobberydberg has quit IRC19:06
*** tobberydberg has joined #openstack-ansible19:06
*** tobberydberg has quit IRC19:10
*** kristian__ has joined #openstack-ansible19:12
*** tobberydberg has joined #openstack-ansible19:18
openstackgerritGerman Eichberger proposed openstack/openstack-ansible-os_octavia master: Octavia will create the network upon request itself  https://review.openstack.org/48266419:18
*** kristian__ has quit IRC19:19
skapeHi all! I was following the faq http://www.openstackfaq.com/openstack-ansible-ceph/   but I have a question in my case the ceph cluster is already installed , which machines do I set as storage hosts?19:19
*** kristian__ has joined #openstack-ansible19:20
skapeI want the compute nodes to access directly the OSDs19:20
asuraWouldn't you have the ceph monitor node be the storage node?19:22
skapein the faq the ceph monitors are on other ip addresses .19:24
*** hybridpollo has joined #openstack-ansible19:24
*** kristian__ has quit IRC19:24
asuraIdk, with cloudstack I configured it with the monitor node IP addresses, since I think they maintain the crush map, to the storage node OSDs.  I'm planning to try that guide after testing a deployment today of OSAD.  Perhaps someone else has more knowledge of the guide and Ceph to OSAD though..19:27
*** kristian__ has joined #openstack-ansible19:28
asuraI'm at the last step of the test deployment guide with OSAD and have an fail when running, openstack-ansible setup-openstack.yml; TASK [os_keystone : Wait for services to be up]; https://pastebin.com/RAaE5P7g19:33
asurafailed: [deploy_keystone_container-ad839eb8] (item={u'url': u'http://172.29.236.150:5000', u'validate_certs': True}) => {"attempts": 12, "content": "", "failed": true, "item": {"url": "http://172.29.236.150:5000", "validate_certs": true}, "msg": "Status code was not [300]: Request failed: <urlopen error [Errno 111] Connection refused>", "redirected": false, "status": -1, "url": "http://172.29.236.150:5000"}19:34
asuraI tried logging into the container and confirmed the port wasn't open.  Restarted the container and the port is then open.  Tried the playbook again, it fails port closes.19:35
asuraIs there any particular logs I can look at to understand the issue further?19:35
*** dxiri has quit IRC19:36
jamesdentonasura Which version are you working with?19:36
*** dxiri has joined #openstack-ansible19:37
asuragit clone -b 15.1.6 https://git.openstack.org/openstack/openstack-ansible \   /opt/openstack-ansible19:37
jamesdentonIs it an AIO?19:38
asuraI have three nodes19:38
asuradeploy, target, storage19:38
*** pbandark has quit IRC19:39
asuraUsing VyOS to network between them with virtualbox19:39
*** tobberydberg has quit IRC19:44
*** tobberydberg has joined #openstack-ansible19:44
jamesdentonDo you have your openstack_user_config.yml handy?19:45
*** cathrichardson has quit IRC19:46
*** tobberydberg has quit IRC19:46
asuraYes, https://pastebin.com/PLtCS9CA19:46
*** tobberydberg has joined #openstack-ansible19:46
*** cathrichardson has joined #openstack-ansible19:47
*** jamesden_ has joined #openstack-ansible19:48
*** jamesdenton has quit IRC19:49
*** jamesden_ has quit IRC19:49
*** jamesdenton has joined #openstack-ansible19:51
asuraYes, I have /etc/openstack_deploy/openstack_user_config.yml available https://pastebin.com/PLtCS9CA19:52
*** esberglu_ is now known as esberglu19:53
redondo-mkHi. I'm trying to deploy OpenStack AIO in Ubuntu 16.04, tag 16.0.0.0b2 for the sake of checking out Ocata but I have some issues...19:53
redondo-mkhttps://www.irccloud.com/pastebin/ebYo1cCh/19:54
*** cshen_ has joined #openstack-ansible19:55
jmccroryredondo-mk ocata is the 15 tag series, 16 is pike19:55
redondo-mkjmccrory: Yes, you are right. What I meant is for the sake of checking out Octavia. I'm having some lack of sleep that are causing me naming issues :)19:57
redondo-mkOctavia is not present in Ocata...19:58
jamesdentonasura There may be some information in /var/log/keystone inside that keystone container that can help identify why the process is dying.20:02
*** schwicht has quit IRC20:04
LiterateHawkHi all - I'm trudging through installing OSA and hit the following error. Destroying and recreating the container doesn't help. Is there perhaps a variable I should set? https://pastebin.com/jSa1ss9g20:05
openstackgerritGerman Eichberger proposed openstack/openstack-ansible-os_octavia master: Octavia will create the network upon request itself  https://review.openstack.org/48266420:05
LiterateHawkExecuting the command manually from within the container yields the same issue20:05
*** schwicht has joined #openstack-ansible20:07
*** marst has quit IRC20:08
LiterateHawkIt appears the -n "" is what causes the error, but I'm not sure of where it came from20:11
jmccroryredondo-mk which version of the systemd package do you have installed?20:11
redondo-mkjmccrory: I have systemd 21920:14
redondo-mkShould putting the latest one help?20:15
asurajamesdenton does my /var/log/keystone/ssl_access.log mean that I'm getting error 300 due to SSL failing? https://pastebin.com/Sey63Bsv also keystone.log https://pastebin.com/UQVhq4Y9  keystone-apache-error.log https://pastebin.com/PBsHgupw20:15
jmccroryyeah, try updating that, 219 is right at the cutoff where the loopback is created automatically. the role probably needs to be more specific in checking for the right version20:16
redondo-mkMy bad again...it's 229 and not 219...the latest version is 233...I'll try with that...20:17
LiterateHawkHm. Do these playbooks cache information outside of the containers? That might explain why deleting and recreating it doesn't fix the problem20:21
*** askb has joined #openstack-ansible20:26
LiterateHawkActually, this bug looks like it's the same thing https://bugs.launchpad.net/openstack-ansible/+bug/167179520:26
openstackLaunchpad bug 1671795 in openstack-ansible "setting rabbitmq_policy failes during initial deployment" [Undecided,Expired]20:26
*** cpuga has quit IRC20:29
*** cpuga_ has joined #openstack-ansible20:29
*** jrniemijr has quit IRC20:31
*** cpuga_ has quit IRC20:34
*** thorst has quit IRC20:35
jamesdentonasura The 300 is the expected response from the service. The interval and IP indicates the healthcheck from haproxy.20:39
jamesdentonIn my AIO, it looks like apache is restarted every 24 hours. Guess there's a cron or something20:39
*** cshen_ has quit IRC20:42
jamesdentonIt's possible the playbook is restarting the service and they next play is simply timing out waiting for it to come back. Not sure what the retry interval is.20:42
jamesdenton5 sec delay, 12 retries20:43
jamesdentonyou can try modifying /etc/ansible/roles/os_keystone/tasks/keystone_service_setup.yml and increasing the number of retries in that tasks - or let it fail again on the next run and pop into the container and see how long it takes for the service to come up, if ever20:44
*** yusef has quit IRC20:44
asuraIs there a way to start haproxy manual inside the container?20:44
asuraor whatever service is running on 3535720:45
asuraI increased the verbosity of the playbook https://pastebin.com/VLeu2v5i20:46
jamesdentonwell haproxy lives outside that container and appears to be working OK based on those logs. The deploy node is attempting to hit the individual service directly, and is timing out due to 'connection refused'. Apache is listening on 5000 and 35357 in the keystone container20:48
jamesdentonAnd you were able to verify there was nothing listening on 5000|35357? Using netstat?20:48
asuraroot@deploy-keystone-container-ad839eb8:~# netcat -z -v localhost 35357 netcat: connect to localhost port 35357 (tcp) failed: Connection refused; same for 500020:51
asuraoutput of ps -aux inside container and tailf of /var/log/syslog https://pastebin.com/NYz1nr5e20:51
asuraI don't see apache running and systemctl restart apache don't work20:52
LiterateHawkApache's not on20:52
LiterateHawkjournalctl -u apache will dump out log20:52
asurasays no entires20:52
asurathink i'll restart the container and see if apache starts20:53
asuraYou know your desperate when you have to turn it off and back on again :)20:54
LiterateHawkIt's okay, I've been deleting and recreating this container, which I think is a more extreme version of the same thing20:54
asuraYeah, now apache is running again...20:55
*** oneswig has joined #openstack-ansible20:56
asuraBoth ports 5000 and 35357 are working as well20:56
*** tobberydberg has quit IRC20:57
*** tobberydberg has joined #openstack-ansible20:57
*** tobberydberg has quit IRC21:01
openstackgerritMerged openstack/openstack-ansible-tests master: test-setup-swifthosts: Optimize xfsprogs installation  https://review.openstack.org/48264621:03
*** kristian__ has quit IRC21:03
*** jvidal has quit IRC21:05
*** vnogin has joined #openstack-ansible21:16
*** smatzek has quit IRC21:17
*** kylek3h has quit IRC21:19
*** admin0 has joined #openstack-ansible21:20
*** pcaruana has quit IRC21:23
jamesdentonasura I was able to recreate your issue. Digging into it21:23
asurareally?21:23
jamesdentonwas the environment already deployed to some extent?21:24
asuraWell, I don't think so21:25
asuraI just followed the user guide21:25
asuraI ran it again only on this error21:25
jamesdentonhmm ok21:25
LiterateHawkRabbitmq is getting confused because it's expecting a hostname with underscores, but "hostname" in the container returns hyphens21:26
LiterateHawkDoes that sound crazy?21:26
*** vnogin has quit IRC21:27
LiterateHawkI can take the command that fails in the playbook, swap out the hostname and it works21:28
jamesdentonLiterateHawk Is this an upgrade?21:28
LiterateHawkjamesdenton blank install21:29
asuraWell, I did a systemctl restart apache2.service right when the error occurs21:29
jamesdentonThat's been an issue before but i don't think i've seen it in a new install21:29
asuraand I think it is running past it21:29
jamesdentonasura Yes that would do it. There's a restart task missing, i think21:29
*** vnogin has joined #openstack-ansible21:30
LiterateHawkjamesdenton, It's taken more than one failed run to get to here, so maybe there's some old state. I've deleted and recreated the containers, but that didn't tick it over21:30
asuraI have a new error in the glance container https://pastebin.com/L74RLKCr21:30
asuraThat will have to wait til tomorrow21:31
jamesdentonyeah i;'ve gotta bolt, to. I may open a bug for this keystone thing if i nail it down21:31
asuraThanks for the help21:31
*** thorst has joined #openstack-ansible21:35
openstackgerritJimmy McCrory proposed openstack/openstack-ansible-rsyslog_server master: Consolidate package install tasks  https://review.openstack.org/48271521:41
*** thorst has quit IRC21:42
openstackgerritweezer su proposed openstack/openstack-ansible-ops master: Do not exit if the REDEPLOY_EXTRA_SCRIPT is null or not set  https://review.openstack.org/48271621:45
*** dfflanders has joined #openstack-ansible21:48
*** systems-sk has quit IRC21:55
*** perniciouscaffei has quit IRC22:00
LiterateHawkAh yeah, this appears to be the issue, /etc/rabbitmq/rabbitmq.config doesn't exist, which causes erlang to use the hostname and not the container name. It's strange though, the bits that set the config are after the parts that set the policy22:02
*** vnogin has quit IRC22:05
*** oneswig has quit IRC22:07
*** perniciouscaffei has joined #openstack-ansible22:09
*** markvoelker has quit IRC22:16
*** markvoelker has joined #openstack-ansible22:17
*** kristian__ has joined #openstack-ansible22:20
*** kristian__ has quit IRC22:25
*** jbadiapa_ has joined #openstack-ansible22:29
*** acormier has quit IRC22:29
*** acormier has joined #openstack-ansible22:29
*** jbadiapa has quit IRC22:31
*** perniciouscaffei has quit IRC22:33
*** acormier has quit IRC22:34
*** galstrom is now known as galstrom_zzz22:38
openstackgerritJimmy McCrory proposed openstack/openstack-ansible master: Restart glance services only when necessary  https://review.openstack.org/48272722:40
*** brad[] has quit IRC22:46
*** weezS has quit IRC22:47
*** admin0 has quit IRC22:48
*** brad[] has joined #openstack-ansible22:49
*** ricardoas1 has quit IRC22:51
*** ricardoas has joined #openstack-ansible22:53
*** charcol has quit IRC22:58
*** perniciouscaffei has joined #openstack-ansible23:02
*** cpuga has joined #openstack-ansible23:02
*** chyka has quit IRC23:07
*** cpuga has quit IRC23:12
LiterateHawkI can't seem to figure out how rabbitmq is supposed to be configured to set nodename to the ansible version (with _) instead of the container's hostname (with -). I cant find anything in the role that actually sets is23:18
*** klamath has quit IRC23:25
*** perniciouscaffei has quit IRC23:28
*** weezS has joined #openstack-ansible23:31
*** weezS has quit IRC23:40
*** thorst has joined #openstack-ansible23:47
*** dxiri has quit IRC23:47
« Monday, 2017-07-10 Index Wednesday, 2017-07-12 »

Generated by irclog2html.py 2.15.3 by Marius Gedminas - find it at mg.pov.lt!