Wednesday, 2023-10-04

« Tuesday, 2023-10-03 Index Thursday, 2023-10-05 »
noonedeadpunkMoha not sure I'm getting where you lead to07:01
opendevreviewJonathan Rosser proposed openstack/openstack-ansible master: WIP - test Vexxhost CAPI driver for magnum  https://review.opendev.org/c/openstack/openstack-ansible/+/89324008:04
opendevreviewMerged openstack/openstack-ansible master: Gather extra networking facts for keepalived  https://review.opendev.org/c/openstack/openstack-ansible/+/89663410:53
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible-os_octavia master: Add security rule for octavia healthmanager  https://review.opendev.org/c/openstack/openstack-ansible-os_octavia/+/89731610:57
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible-os_octavia master: Adopt for usage openstack_resources role  https://review.opendev.org/c/openstack/openstack-ansible-os_octavia/+/88987911:09
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible stable/2023.1: Gather extra networking facts for keepalived  https://review.opendev.org/c/openstack/openstack-ansible/+/89728311:10
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible stable/zed: Gather extra networking facts for keepalived  https://review.opendev.org/c/openstack/openstack-ansible/+/89728411:10
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible stable/yoga: Gather extra networking facts for keepalived  https://review.opendev.org/c/openstack/openstack-ansible/+/89728511:10
NeilHanlonbtw - https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege-escalation-glibc-ld-so.txt12:02
mgariepyfun with recent glibc ! 12:33
jrosserhmm config_template is still broken for raw13:16
jrosserrather it's patched but we don't use the patched version in OSA13:16
noonedeadpunkYeah, we don't :(13:35
ayushhi Team, when can we expect solution for the bug which i mentioned yesterday13:46
ayush203831513:47
ayushis is stopping upgrade, because we are unable to bootstrap the ansible13:47
jrosseri think we gave a workround?13:48
ayushwhat is the workaround13:49
jrosserhttps://meetings.opendev.org/irclogs/%23openstack-ansible/%23openstack-ansible.2023-10-03.log.html#t2023-10-03T15:17:2413:49
ayushThis does not work, it fails13:50
jrosserits a broken release of the ansible netcommon collection13:50
ayushi tried13:50
jrossercan you describe exactly what you did?13:50
ayushi made a user collection file and used the same line as mentioned13:51
ayushand bootstrapped it13:51
jrosserwhere did you put that file?13:51
ayushi  have done it before, i know the trick13:51
ayushunder openstack_deploy13:52
jrosseri will take a look13:54
jrosserjust to be clear it is brokenness from the ansible collection13:54
jrossernot openstack-ansible itself13:54
jrosserwe have to workaround their mess13:54
ayushyeah that i m aware, but we are dependant in OSA13:54
ayushthat is the truth13:55
NeilHanlonjrosser: is there a place where the `ANSIBLE_GALAXY_SERVER` env var (or ansible config var) could be set for the deployment? if i am reading correctly, setting this should use the old galaxy https://docs.ansible.com/ansible/latest/reference_appendices/config.html#galaxy-server13:56
NeilHanloni.e. to https://old-galaxy.ansible.com/13:57
jrosseralmost certainly yes13:57
ayushi tried it for bootstrap.sh, but that is also failing13:58
ayushmay be my command is not right13:58
ayush`ANSIBLE_GALAXY_SERVER_GALAXY_URL'="https://old-galaxy.ansible.com/" ./scripts/bootstrap-ansible.sh13:58
ayushi tried this13:58
jrosseri wonder if it's actually ANSIBLE_GALAXY_SERVER_LIST14:00
jrosserthe documentation is a little vague but ANSIBLE_GALAXY_SERVER talks about roles and  ANSIBLE_GALAXY_SERVER_LIST about collections14:01
jrosserayush: what branch are you trying to bootstrap? xena?14:03
ayushxena yes14:06
ayush24.6.0 to be precise14:06
jrosserayush: can you try `ANSIBLE_GALAXY_SERVER=https://old-galaxy.ansible.com ./scripts/bootstrap-ansible.sh`14:18
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible-os_octavia master: Add security rule for octavia healthmanager  https://review.opendev.org/c/openstack/openstack-ansible-os_octavia/+/89731614:20
ayushok14:20
ayushyes it works, but i will test it more14:30
ayushas i have to test in a scarion in a upgrade14:31
noonedeadpunkdamiandabrowski: ^ just in case you've missed :)14:58
noonedeadpunkI wonder though how we should patch that 14:59
noonedeadpunkAs using old-galaxy is kinda... meh14:59
noonedeadpunkjust switch to github right away might be a better option I guess14:59
damiandabrowskiyup, I'm gathering more information about this situation, hopefully I will be able to suggest some fix tonight14:59
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible-os_octavia master: Fix example playbook linters  https://review.opendev.org/c/openstack/openstack-ansible-os_octavia/+/89735016:28
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible-os_octavia master: Add security rule for octavia healthmanager  https://review.opendev.org/c/openstack/openstack-ansible-os_octavia/+/89731616:28
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible-os_octavia master: Adopt for usage openstack_resources role  https://review.opendev.org/c/openstack/openstack-ansible-os_octavia/+/88987916:28
opendevreviewDamian Dąbrowski proposed openstack/openstack-ansible stable/yoga: Use github to fetch ansible collections  https://review.opendev.org/c/openstack/openstack-ansible/+/89735116:29
damiandabrowskinoonedeadpunk jrosser NeilHanlon ^ (i also included an explanation what exactly happened to galaxy and why it's broken only for older ansible versions)16:33
noonedeadpunkwell... Maybe we update ansible version on Yoga?16:38
noonedeadpunkAnd then I can apply this switch to branches in EM?16:38
noonedeadpunkas 2.12.6 -> 2.12.8 sounds not bad16:39
noonedeadpunkdamiandabrowski: jrosser wdyt?16:39
noonedeadpunkalso, was you able to workaround the issue with user-collection-requirements?16:40
noonedeadpunkor you haven't tried this?16:40
NeilHanlonayush said they tried it but it did not work. i have no tried, personally16:41
NeilHanlonupgrading seems not unreasonable16:41
NeilHanlonespecially for a minor rev16:41
noonedeadpunkJust switching to git had it's own downside and that's why wasn't done at the first place16:42
damiandabrowskii'll test 2.12.8 in a moment, need a break16:42
damiandabrowskinoonedeadpunk: what downside?16:42
noonedeadpunkdamiandabrowski: there's a note about it in ansible-collection-requirements, but I realized it's not clear.16:49
noonedeadpunkdamiandabrowski: what's your output of ansible-galaxy collection list -p /etc/ansible ?16:50
noonedeadpunkAs I guess it's either `null` or `*` - can't recall exactly16:50
noonedeadpunkwhen installed from Git of these versions16:50
noonedeadpunk(specifically for these 3 collections)16:51
damiandabrowskihttps://paste.openstack.org/show/bU3DbxKN3WYyNENSrl5r/17:00
damiandabrowskiahh, so maybe it would be better to use old-galaxy.ansible.com17:00
* damiandabrowski testing ansible 2.12.817:00
noonedeadpunkNot sure it's better though :D Would be perfect if 2.12.8 just works...17:03
noonedeadpunkIt doesn't solve the Xena issue though... But for Xena I guess we can live with * instead of version , as it's EM, so best effort kinda17:04
noonedeadpunkespecially is user-collection-requirements work properly there :p17:05
noonedeadpunk*if17:06
damiandabrowski2.12.8 seems to be working fine17:07
damiandabrowskiso bump 2.12.8 for yoga, and switch to github for all EM versions(up to stein)?17:07
noonedeadpunkdamiandabrowski: not sure about stein specifically, as it should have went to EOL... But as it's not (still), might be worth if backports are straightforward17:24
noonedeadpunk(I guess they're not though)17:24
damiandabrowskiokok, I'll push patches. Let's see how many EM branches will pass through gating :D 17:30
noonedeadpunkNone17:38
noonedeadpunkI can answert that right away17:38
noonedeadpunkall of them have rabbit/erlang repo issues17:38
noonedeadpunkI was going to look into that though soonish17:39
opendevreviewDamian Dąbrowski proposed openstack/openstack-ansible stable/yoga: Bump ansible-core to 2.12.8  https://review.opendev.org/c/openstack/openstack-ansible/+/89735517:54
opendevreviewDamian Dąbrowski proposed openstack/openstack-ansible stable/yoga: Bump ansible-core to 2.12.8  https://review.opendev.org/c/openstack/openstack-ansible/+/89735117:56
opendevreviewDamian Dąbrowski proposed openstack/openstack-ansible stable/xena: Use github to fetch ansible collections  https://review.opendev.org/c/openstack/openstack-ansible/+/89735617:59
opendevreviewDamian Dąbrowski proposed openstack/openstack-ansible stable/wallaby: Use github to fetch ansible collections  https://review.opendev.org/c/openstack/openstack-ansible/+/89735718:01
damiandabrowskiok, proposed patches for yoga, xena and wallaby. I also tested ussuri but it's not affected(ansible 2.9.9), probably this version was not affected yet18:14
noonedeadpunk++ makes sense18:16
opendevreviewMerged openstack/openstack-ansible master: Allow deployment on debian bookworm hosts  https://review.opendev.org/c/openstack/openstack-ansible/+/89456019:13
jrosserI think we are still broken on bookworm with ova?19:34
jrosserargh19:34
jrosserovs19:34
« Tuesday, 2023-10-03 Index Thursday, 2023-10-05 »

Generated by irclog2html.py 2.17.3 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!