Tuesday, 2020-10-20

« Monday, 2020-10-19 Index Wednesday, 2020-10-21 »
openstackgerritMerged openstack/openstack-ansible-os_manila master: Add centos-8 support  https://review.opendev.org/73964600:30
*** gyee has quit IRC01:04
*** MickyMan77 has joined #openstack-ansible01:17
*** MickyMan77 has quit IRC01:25
*** bgmccollum has joined #openstack-ansible01:47
*** cyberpear has joined #openstack-ansible02:04
*** bgmccollum has left #openstack-ansible02:07
*** MickyMan77 has joined #openstack-ansible02:42
*** MickyMan77 has quit IRC02:51
*** cshen has joined #openstack-ansible03:02
*** cshen has quit IRC03:07
-openstackstatus- NOTICE: We are investigating an issue with our hosted Gerrit services. We will provide an update as soon as we can. If you want to follow the latest, feel free to join #opendev03:24
*** miloa has joined #openstack-ansible04:07
-openstackstatus- NOTICE: We identified a possible vulnerability in Gerrit and are investigating the potential impact on our services. Out of an abundance of caution we have taken our OpenDev hosted Gerrit system offline. We will update with more information once we are able.04:28
*** evrardjp has quit IRC04:33
*** evrardjp has joined #openstack-ansible04:33
*** MickyMan77 has joined #openstack-ansible04:42
*** suryasingh has joined #openstack-ansible04:46
*** MickyMan77 has quit IRC04:51
*** cshen has joined #openstack-ansible05:03
*** cshen has quit IRC05:07
*** cshen has joined #openstack-ansible06:00
*** cshen has quit IRC06:04
*** PTO has quit IRC06:17
*** ianychoi_ has joined #openstack-ansible06:23
*** ianychoi has quit IRC06:27
*** sshnaidm|afk is now known as sshnaidm06:44
*** frenzyfriday has joined #openstack-ansible06:48
noonedeadpunkseems today is a day off from upstream work:)06:49
*** PTO has joined #openstack-ansible06:55
*** cshen has joined #openstack-ansible07:00
*** rpittau|afk is now known as rpittau07:04
*** andrewbonney has joined #openstack-ansible07:10
*** PTO is now known as pto07:12
*** shyamb has joined #openstack-ansible07:26
*** mmethot_ has joined #openstack-ansible07:31
*** mmethot has quit IRC07:33
*** _mmethot_ has joined #openstack-ansible07:33
*** shyam89 has joined #openstack-ansible07:34
*** shyamb has quit IRC07:37
*** mmethot_ has quit IRC07:37
*** tosky has joined #openstack-ansible07:43
*** shyam89 has quit IRC08:32
-openstackstatus- NOTICE: We identified a possible vulnerability in Gerrit and are investigating the potential impact on our services. Out of an abundance of caution we have taken our OpenDev hosted Gerrit system offline. We will update with more information once we are able.08:34
*** ChanServ changes topic to "We identified a possible vulnerability in Gerrit and are investigating the potential impact on our services. Out of an abundance of caution we have taken our OpenDev hosted Gerrit system offline. We will update with more information once we are able."08:34
jrossermorning09:03
noonedeadpunko/09:04
*** shyamb has joined #openstack-ansible09:23
*** fridtjof[m] has quit IRC09:24
*** ioni has quit IRC09:24
*** masterpe has quit IRC09:25
ptomorning09:25
ptojrosser: Do you have time to discuss the federated identity bugs today?09:25
*** gshippey has joined #openstack-ansible09:26
noonedeadpunkhas it anything common with https://bugs.launchpad.net/bugs/1900410 or https://bugs.launchpad.net/bugs/1900407 ?09:27
openstackLaunchpad bug 1900410 in openstack-ansible "fatal: [os_infra1_keystone_container-5999bd47]: FAILED! => {"attempts": 5, "changed": false, "msg": "No package matching 'libcurl3' is available"}" [Undecided,In progress] - Assigned to Jonathan Rosser (jrosser)09:27
openstackLaunchpad bug 1900407 in openstack-ansible "Error when evaluating variable in import path: keystone_{{ keystone_web_server }}.yml." [Undecided,New]09:27
ptoI have submitted both09:27
noonedeadpunkah09:27
noonedeadpunkthen we have solution for both :p09:28
ptoCrewl :-)09:28
noonedeadpunkbut since gerrit is not working, we can't really show patches...09:28
jrosseri'll have one of them locally, just a moment09:29
noonedeadpunkwell, jrosser made patch for libcurl3 and I was going to patch another bug today but gerrit is not working09:29
noonedeadpunkfor 1900407 quick workaround will be to place keystone_sp inside user_variables but not group_vars or host_vars09:30
jrosserpto: here is the patch for libcurl3 http://paste.openstack.org/show/799198/09:31
jrosseri think for focal it's possible to co-install the shibboleth and oidc apacge modules because they both depend on libcurl4, so some of the conditional logic in the focal vars file is removed there09:32
jrossergshippey: would be good if you could check what ive done there?09:32
gshippeylooking :)09:33
*** fridtjof[m] has joined #openstack-ansible09:34
ptojrosser: i will test it right away09:39
*** shyam89 has joined #openstack-ansible09:39
ptoI have uploaded the full config (sanitized) to my git: https://github.com/pertoft/openstack-ansible-deployment/tree/master/openstack_deploy09:39
ptoCould you give it a quick look to validate its not my fault :-)09:39
jrossergshippey: we didnt have to do anything like this that i can find? https://github.com/pertoft/openstack-ansible-deployment/blob/master/openstack_deploy/user_variables.yml#L28209:40
jrossersee the error in bug 190040709:40
openstackbug 1900407 in openstack-ansible "Error when evaluating variable in import path: keystone_{{ keystone_web_server }}.yml." [Undecided,New] https://launchpad.net/bugs/190040709:40
gshippeyif federation is being deployed you shouldnt have to specify apache as far as I'm aware09:40
jrosseransible seems to blow up on the task import here https://github.com/openstack/openstack-ansible-os_keystone/blob/2b125eca319271b9ad8fc700f5b5aba00dc09037/tasks/main.yml#L15209:41
gshippeyin relation to your patch jon, that should be fine in letting both packages being installed side by side, but the logic i put in https://github.com/openstack/openstack-ansible-os_keystone/blob/dcc16da7e20f50e1f9e9cd56170427ec9491d15c/tasks/main.yml#L51 will prevent anyone from deploying both at once, so may need to look at that09:41
*** shyamb has quit IRC09:42
jrossergshippey: i guess we could allow both to be deployed on an OS that supports both packages present at once09:46
ptoI just did cd /etc/ansible/roles/os_keystone; git fetch;  git reset --hard origin/master; git apply idp.patch09:47
ptoAnd it appears to have broken the os_keystone module ERROR! couldn't resolve module/action 'community.mysql.mysql_db'. This often indicates a misspelling, missing collection, or incorrect module path.09:47
ptoWhat is the correct way to rollback to the release tag?09:47
jrosseroh right, yeah09:47
jrosserwhich release is this?09:47
gshippeyyes, shouldn't be an issue having them side by side. I can confirm at we don't set keystone_web_server anywhere in our user_variables09:48
*** sshnaidm is now known as sshnaidm|afk09:48
jrosserpto: i think that your os_keystone repo would have been checked out to the correct SHA - no need to do git reset --hard origin/master09:49
jrosserpto: the way to find the correct SHA for your release is to look here (this is an example for stable/ussuri) https://github.com/openstack/openstack-ansible/blob/stable/ussuri/ansible-role-requirements.yml#L5909:55
jrosserpto: the only difference i see between my keystone_sp and yours is that i have not used any {{ variables }} at all inside that dict09:58
*** masterpe has joined #openstack-ansible09:59
*** ioni has joined #openstack-ansible09:59
*** shyam89 has quit IRC10:02
*** shyamb has joined #openstack-ansible10:03
ptoShoud i remove "keystone_web_server: apache" from user_variables.yml?10:13
ptojrosser: The patch seem to work when the keystone_web_server is defined. However, im still stuck at "Ensure Role for external IDP users exists"10:18
gshippeywhat is the error you are getting there?10:18
*** recyclehero has quit IRC10:20
*** recyclehero has joined #openstack-ansible10:22
ptogshippey: http://paste.openstack.org/show/799202/10:22
ptogshippey: TASK [os_keystone : Ensure Group for external IDP users exists]10:24
ptoOops. The paste was trucated10:25
ptoHere is the error shown: http://paste.openstack.org/show/799203/10:27
pto "msg": "Failed to get domain Default: Client Error for url: http://172.21.224.254:5000/v3/domains/Default, Could not find domain: Default."10:29
jrosserare we talking about the same thing? the paste shows a templating error10:32
jrosserit looks like this line https://github.com/openstack/openstack-ansible-os_keystone/blob/master/tasks/keystone_federation_sp_idp_setup.yml#L67 has got included in the previous multiline string which is really strange10:34
gshippeyhttps://docs.openstack.org/api-ref/identity/v3/#show-domain-details, shows that the domain id should be used. In this case https://github.com/pertoft/openstack-ansible-deployment/blob/655531057931ff03fc73c7b0e6ada31ad6b9e908/openstack_deploy/user_variables.yml#L303 should be default (lower case)11:00
gshippeyknowing when to reference Default (domain name) or default (domain id) can be quite frustrating and it's got me a few times too!11:01
-openstackstatus- NOTICE: Update on gerrit downtime: After investigation, we believe the incident is related to a compromised Gerrit user account rather than a vulnerability in Gerrit software. We are continuing to review activity to verify the integrity of git data and expect to have an additional update with possible service restoration in approximately 2 hours.11:03
*** mgariepy has quit IRC11:03
*** ChanServ changes topic to "Update on gerrit downtime: After investigation, we believe the incident is related to a compromised Gerrit user account rather than a vulnerability in Gerrit software. We are continuing to review activity to verify the integrity of git data and expect to have an additional update with possible service restoration in approximately 2 hours."11:03
*** shyamb has quit IRC11:07
*** shyamb has joined #openstack-ansible11:10
*** mbuil has quit IRC11:22
*** mbuil has joined #openstack-ansible11:23
*** SecOpsNinja has joined #openstack-ansible11:30
ptogshippey: Sorry. I linked the wrong paste. Here is the correct one with the right error: http://paste.openstack.org/show/799205/11:30
ptoI suspect its to be a firewall issue, where the vip.examlpe.com:5000 is not accessible from the outside. Do you know if this should be open for SAML2 "callback"?11:30
*** yann-kaelig has joined #openstack-ansible11:32
*** frenzyfriday has quit IRC11:34
*** shyamb has quit IRC11:36
*** rh-jelabarre has joined #openstack-ansible12:01
ptogshippey: Regarding the domain name vs id. The code snip is exactly as in the reference example in the openstack-ansible-os_keystone/defaults/main.yml12:02
ptogshippey: But you are right, fixing the domain: Default -> domain: default fixed it12:02
*** mgariepy has joined #openstack-ansible12:06
ptoIs is possible to propose pull request when gerrit is down?12:09
*** rfolco has joined #openstack-ansible12:15
*** sshnaidm|afk is now known as sshnaidm12:20
*** scanepa has quit IRC12:41
gshippey@pto in regards to the firewall, your user agent (browser) needs to be able to communicate with keystone, but keystone should not need access to your IDP. Looking at the flows https://docs.openstack.org/keystone/latest/admin/federation/introduction.html may be useful. Will need to get the documentation updated around D/default!13:02
*** sc has joined #openstack-ansible13:03
ptogshippey: Thanks for the clarifications. It works when the domain was changed from Default to default. I will make a pull request and update the docs when gerrit comes back13:13
-openstackstatus- NOTICE: We've confirmed that known compromised identities have been reset or had their accounts disabled, and we are auditing other service accounts for signs of compromise before we prepare to restore Gerrit to working order. We will update again in roughly 2 hours.13:31
*** ChanServ changes topic to "We've confirmed that known compromised identities have been reset or had their accounts disabled, and we are auditing other service accounts for signs of compromise before we prepare to restore Gerrit to working order. We will update again in roughly 2 hours."13:31
SecOpsNinjahi. in openstack_user_config.yml  is there any way, for example, shared-infra_hosts define 3 nodes but say for example that one of them shouln't install for example rabbitmq?13:38
jrosserSecOpsNinja: yes you can do that - the best way would be to not define shared-infra_hosts at all13:43
jrosserfor the example of rabbitmq you can see here https://github.com/openstack/openstack-ansible/blob/master/inventory/env.d/rabbitmq.yml#L25-L2613:44
jrosserrabbitmq containers are in the host group shared-infra_containers and mq_containers13:45
SecOpsNinjabut if i removed from openstack_user_config.yml i need to defined them for each service that is going to use it?13:46
jrosserthat means you could define mq_hosts to point to only two of your infra hosts and database_hosts to point to all three13:46
jrosseryes you would13:46
jrosserthis can be an easy config, look at this that was shared earlier https://github.com/pertoft/openstack-ansible-deployment/blob/master/openstack_deploy/openstack_user_config.yml#L104-L10513:47
SecOpsNinjabut can i maintain the existing shared-infra_hosts with 3 (because of galera cluster) and only for haproxy define only 2 on that override right?13:48
jrosseryou'd be replacing shared-infra_hosts with lines for database_hosts, mq_hosts, memcaching_hosts and operator_hosts13:49
SecOpsNinjaok that is interesting because i can reduce the number of times i define my infraestructure nodes in each group13:50
jrosserSecOpsNinja: i am confused about haproxy, i think that is defined by haproxy_hosts but not in the wider shared-infra_hosts group13:50
SecOpsNinjabut for the rabbitmq problem it seams that i need to overide so it doesnt install in one of the infraescture nodes?13:50
jrosserit's not an override13:50
jrossershared-infra_hosts is an ansible group which will contain all of galera/rabbit/memcached/utility *if* you define it13:51
jrosserif you want to change the service layout from that then you should not define it13:51
SecOpsNinjain the exmaple it says13:51
SecOpsNinja# galera, memcache, rabbitmq, utility13:51
SecOpsNinjashared-infra_hosts:13:51
jrosserthis link is important https://github.com/openstack/openstack-ansible/blob/master/inventory/env.d/rabbitmq.yml#L25-L2613:52
*** sshnaidm is now known as sshnaidm|afk13:52
jrosserthe hosts for rabbitmq containers are defined by either mq_hosts or shared-infra_hosts13:53
jrosserif you want a specific layout for rabbitmq then you should define mq_hosts and not shared-infra_hosts13:53
SecOpsNinjayep the problem is that i mess the instalation regarding rabbitmq before installing 2ª and 3ª nodes and now the first instalation is also failing. what i think was to try to override rabiitmq settings to think that only as 1 member that is the first node but mantain the setting of the 3 nodes in the shared-infra_hosts...13:53
*** wpp has quit IRC13:59
*** wpp has joined #openstack-ansible14:01
SecOpsNinjajrosser,  let me see if i can understand how can i resolve this without messing with the other service like galera that is using the shared-infra_hosts with 3 nodes. So the recomendation is not define any hosts in https://github.com/pertoft/openstack-ansible-deployment/blob/master/openstack_deploy/openstack_user_config.yml#L104-L105 but use mq_host?14:02
jrosserif you want a custom layout of the services then i think you need to define them individually rather than use shared-infra_hosts14:05
SecOpsNinjaok i will try to override my instalation with that to see if i can resolve my problem. thank jrosser14:06
jrosseri am not sure this is going to resolve a broken rabbitmq installation though?14:06
SecOpsNinjai have the rabbitmq runing in 1º node becuase i removed all the othe nodes. the problems is that i have all in shared-infra_hosts whe it runs TASK [rabbitmq_server : Apply rabbitmq policies]  tryies to apply to 2ª and 3ª nodes14:08
SecOpsNinjaand because i messed my instalation with ips in container is then worse... but i think i resolved that problm but was forced to reconfigure some service because of each container ip14:08
*** spatel has joined #openstack-ansible14:11
*** sshnaidm|afk is now known as sshnaidm14:12
*** cshen has quit IRC14:12
ptoI deleted all containers (lxc-container-destroy.yml) and ran everything again. This time keystone is breaking, because the table is locked by the sql trigger. Commenting out keystone_federation_sp_idp_setup.yml and running it later or running keystone-manage db_sync --contract will fix the problem. Any clues why this happes? I have cleaned the ansible facts on the host14:31
*** macz_ has joined #openstack-ansible14:48
*** cshen has joined #openstack-ansible14:51
-openstackstatus- NOTICE: Auditing is progressing but not particularly quickly. We'll keep updating every 2 hours or so.15:39
*** ChanServ changes topic to "Auditing is progressing but not particularly quickly. We'll keep updating every 2 hours or so."15:39
*** spatel has quit IRC15:46
*** klamath_atx has joined #openstack-ansible15:49
*** gyee has joined #openstack-ansible15:50
noonedeadpunk#startmeeting openstack_ansible_meeting16:00
openstackMeeting started Tue Oct 20 16:00:16 2020 UTC and is due to finish in 60 minutes.  The chair is noonedeadpunk. Information about MeetBot at http://wiki.debian.org/MeetBot.16:00
openstackUseful Commands: #action #agreed #help #info #idea #link #topic #startvote.16:00
*** openstack changes topic to " (Meeting topic: openstack_ansible_meeting)"16:00
openstackThe meeting name has been set to 'openstack_ansible_meeting'16:00
noonedeadpunk#topic office hours16:00
*** openstack changes topic to "office hours (Meeting topic: openstack_ansible_meeting)"16:00
noonedeadpunkwell, seems we can't discuss today our current status and patches that are due because of the gerrit situation16:01
*** klamath_atx has quit IRC16:01
noonedeadpunkbut we can probably discuss plan for ptg that will take place next monday16:02
noonedeadpunk#link https://etherpad.opendev.org/p/osa-wallaby-ptg16:02
*** miloa has quit IRC16:02
noonedeadpunkI've just placed topics in the doc we took for V16:02
noonedeadpunkwe didn't do much since we had really lot's of stuff on our hands with centos 8, ubuntu focal, new ceph and galera and etc16:03
jrossero/ hello16:04
noonedeadpunkI think we still can do several during this cycle:) like mark nspawn for removal for example16:06
jrosseri get kind of fed up trying to fix the roles there16:06
jrosserwe also have to do some migration on ansible group names16:07
noonedeadpunkso they have only underscore?16:07
noonedeadpunk`TRANSFORM_INVALID_GROUP_CHARS`?16:07
noonedeadpunkwell yes, this seems like important part16:08
jrosseryes was just looking at https://docs.ansible.com/ansible/latest/reference_appendices/config.html#transform-invalid-group-chars16:08
noonedeadpunkwell, I see nothing about it's deprecation....16:09
jrosseriirc it's in the warnings on the zuul logs :/16:09
jrossermaybe 2.12? cant remember16:10
jamesdentono/ hi16:10
*** cshen has quit IRC16:10
jrosserhello16:11
noonedeadpunkwell, there would be deprecated_in option then...16:11
noonedeadpunkhey!16:11
noonedeadpunks/option/field16:11
jamesdentoni see ironic listed as a broken role. what's broken? besides inspector...16:11
noonedeadpunkI think it was result of haproxy tbh16:13
noonedeadpunkand probably it's fixed nowadays - dunno....16:13
jamesdentonoh, the baremetal issue?16:13
noonedeadpunkhard to say without gerrit16:13
jamesdentonhah yeah16:13
jrosseroh hold on16:14
jamesdentonthe one day i have some patches to upload...16:14
jrosserthe logs still work16:14
jrosserif you've got emails from gerrit the links to job results are still working16:14
noonedeadpunkwell, I have 2700 emails from gerrit at the moment....16:14
jamesdentoni don't have them.16:15
jrosserheres what happened in the last os_ironic job http://paste.openstack.org/show/799220/16:15
noonedeadpunkhttps://zuul.opendev.org/t/openstack/build/f65e2435af0f448a8a13bfbcbea0de2316:15
noonedeadpunkok16:16
*** ianychoi_ is now known as ianychoi16:16
jrosserlooks like db setup?16:17
noonedeadpunklooks like swidft issue16:17
noonedeadpunkAccount POST failed: http://172.29.236.101:8080/v1/AUTH_3e09bb30f84c4e2d98c249da5a48bb14 503 Service Unavailable  [first 60 chars of response] b'<html><body><h1>503 Service Unavailable</h1>\\nNo server is av'"16:17
nurdieDoes anyone know of any writeups, additional help, or examples for deploying Magnum on an existing OSA cluster? I find the existing "openstack-ansible-os_magnum/latest" to be mildly daunting16:18
jamesdentonjrosser noonedeadpunk might be easier for me to pull down master and run tests locally16:18
noonedeadpunkoh, and swift can;'t work with bind-to-mgmt at the moment16:19
noonedeadpunkhttps://zuul.opendev.org/t/openstack/build/9e9e951822754be9b544bbce8066141a/log/logs/host/swift-proxy-server.service.journal-11-21-58.log.txt#6316:19
noonedeadpunkwell, seems we've missed it16:19
jrosseroh no! missed one16:19
jamesdentonis there no var set for that?16:19
jamesdentonkk16:19
noonedeadpunkwell, if it wasn;'t swift, I'd say we will easily fix that...16:20
noonedeadpunkbut at least we understand the issue:)16:20
jrosserhttps://github.com/openstack/openstack-ansible-os_swift/blob/master/templates/proxy-server.conf.j2#L616:22
noonedeadpunkyeah. the thing is it has more bindings:)16:22
noonedeadpunkbut probably we don't use haproxy for them....16:23
jrosserhttps://github.com/openstack/openstack-ansible-os_swift/blob/master/defaults/main.yml#L231-L23716:24
jamesdentonthere's a similar issue i found with the spicehtml5proxy service. i defaults to 0.0.0.0 and you need to set html5proxy_host (!= server_listen)16:24
jamesdentoni have a patching waiting16:24
noonedeadpunkawesome16:25
jrosserthats kind of interesting defauilting the swift ports to ansible_host16:25
jrosserthat means storage traffic on the mgmt network even though theres a storage interface? wonder what the intention is here16:25
noonedeadpunkyeah.... but anyway, the only problem should probably be swift-proxy, as we use only 8080 in haproxy16:26
noonedeadpunkjrosser: well, in aio we have storage traffic over mgmt anyway - ceph does exact same thing16:26
jrosserit does16:26
noonedeadpunknothing to be proud of but we have what we have16:27
noonedeadpunkbut agree that super weird16:28
jrossertheres storage and storage i guess16:28
jrosseriscsi != swift != ceph16:28
noonedeadpunkbut all of them are supposed to use storage net by default anyway? except swift proxy or rgw, which is under haproxy16:30
noonedeadpunkah, another question - have anyone played with new pip resolver?16:32
noonedeadpunkexcept placing patch which has shown that we don't fit16:32
noonedeadpunkas I wanted to look into it during this week16:33
*** mgariepy has quit IRC16:35
jrosseri've not done anything beyond the patch to test it16:36
jrosseri think i figured some new defaults/overrides need adding to python-venv-build16:36
jrosseras the existing var to enable things like the new resolver gets passed to the system python before you upgrade the one in the venv16:37
jrosserand the system python doesnt understand the new flags, so that needs splitting into two vars16:37
jrossersorry system pip16:38
*** rpittau is now known as rpittau|afk16:38
noonedeadpunksounds reasonable despite I didn't have much dive into the topic yet16:40
noonedeadpunkwell, moving to it might be challenging16:41
jrosserseems to be what we put in constraints for source git repos now needs to be in requirements, or similar16:41
noonedeadpunkyep16:41
noonedeadpunkthat the only thing I brought out of this actually16:42
jrosserand i guess we have to be careful to keep python2 support there for the os_tempest role16:42
noonedeadpunkI'm wondering if tripleo uses py3 for centos7 there16:43
noonedeadpunkas probably we shouldn't be so carefull:)16:43
noonedeadpunkarxcruz: have any insights?:)16:47
noonedeadpunkwell, will ask them later then16:54
noonedeadpunk#endmeeting16:54
*** openstack changes topic to "Auditing is progressing but not particularly quickly. We'll keep updating every 2 hours or so."16:54
openstackMeeting ended Tue Oct 20 16:54:53 2020 UTC.  Information about MeetBot at http://wiki.debian.org/MeetBot . (v 0.1.4)16:54
openstackMinutes:        http://eavesdrop.openstack.org/meetings/openstack_ansible_meeting/2020/openstack_ansible_meeting.2020-10-20-16.00.html16:54
openstackMinutes (text): http://eavesdrop.openstack.org/meetings/openstack_ansible_meeting/2020/openstack_ansible_meeting.2020-10-20-16.00.txt16:54
openstackLog:            http://eavesdrop.openstack.org/meetings/openstack_ansible_meeting/2020/openstack_ansible_meeting.2020-10-20-16.00.log.html16:54
*** mgariepy has joined #openstack-ansible17:09
arxcruznoonedeadpunk: sorry, late here, i'm pretty sure it has python3 but i can double check tomorrow17:10
*** gyee has quit IRC17:10
noonedeadpunkwell, then we can at least don't care about py2 in tempest17:12
noonedeadpunk*os_tempest17:12
*** cshen has joined #openstack-ansible17:18
*** gyee has joined #openstack-ansible17:21
*** cshen has quit IRC17:23
*** SecOpsNinja has left #openstack-ansible17:27
-openstackstatus- NOTICE: Gerrit is offline due to a security compromise. Please refer to https://review.opendev.org/maintenance.html or #opendev for the latest updates.17:59
*** ChanServ changes topic to "Gerrit is offline due to a security compromise. Please refer to https://review.opendev.org/maintenance.html or #opendev for the latest updates."17:59
recycleherojrosser: hi, do u have the patch u made for nova allocation ratios at hand?18:01
*** cshen has joined #openstack-ansible18:03
*** andrewbonney has quit IRC18:09
*** cshen has quit IRC18:11
*** MickyMan77 has joined #openstack-ansible18:29
noonedeadpunkthe latest gerrit news are super sad18:31
noonedeadpunkwe've landed tons of things for the last 3 weeks....18:31
*** MickyMan77 has quit IRC18:37
guilhermespnoonedeadpunk: yeah that's pretty sad , lets hope things gets less damaged18:45
*** tosky has quit IRC19:54
*** cshen has joined #openstack-ansible20:07
*** cshen has quit IRC20:11
*** thefish has joined #openstack-ansible20:11
thefishjrosser: thank you that makes sense (i ended up rerunning them all as per your first comment, but ill use this next time) - I guess also these are all idempotent as well, is that right?20:13
*** yolanda has quit IRC20:24
*** yolanda has joined #openstack-ansible20:24
jrosserthefish: yes, they should be idempotent20:48
*** rfolco has quit IRC20:56
*** MickyMan77 has joined #openstack-ansible21:01
MickyMan77How can I solve this issue that I have with boto3,  Could not load 'glance.store.s3.Store': No module named 'boto3'   ---> http://paste.openstack.org/show/799233/21:06
jrosserMickyMan77: i do not think that boto3 missing is causing it to fail, see a similar thing here https://bugs.launchpad.net/kolla/+bug/188425921:18
openstackLaunchpad bug 1884259 in kolla "Glance Ussuri missing boto3 after S3 backend addition" [Undecided,Invalid]21:18
jrosseri would be much more trying to find out what is causing "rados.PermissionDeniedError: [errno 13] RADOS permission denied (error connecting to the cluster)"21:18
*** yann-kaelig has quit IRC21:46
*** cshen has joined #openstack-ansible22:07
*** cshen has quit IRC22:11
*** gshippey has quit IRC22:18
*** nurdie has quit IRC22:53
*** jbadiapa has quit IRC22:54
*** thefish has quit IRC23:00
*** macz_ has quit IRC23:13
*** spatel has joined #openstack-ansible23:18
*** spatel has quit IRC23:23
*** MickyMan77 has quit IRC23:24
*** spatel has joined #openstack-ansible23:34
*** renich has joined #openstack-ansible23:56
« Monday, 2020-10-19 Index Wednesday, 2020-10-21 »

Generated by irclog2html.py 2.17.2 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!