| gebz | is there a special flag I need to pass to the SCENARIO environment variable to make the installation a bare metal install instead of LXC? | 07:25 |
|---|---|---|
| noonedeadpunk | gebz: just `metal` instead of `lxc` | 08:14 |
| gebz | yup, figured that much :D | 08:14 |
| gebz | hey man | 08:14 |
| noonedeadpunk | o/ | 08:15 |
| gebz | check this out if you got the time: paste.opendev.org/show/823537 | 08:15 |
| noonedeadpunk | gebz: regarding proxy questions you better ping jrosser - he uses them heavily | 08:16 |
| gebz | Alright, thanks :D | 08:17 |
| noonedeadpunk | gebz: but I think `http://172.29.236.101:8181` should never attempt to go through proxy | 08:17 |
| noonedeadpunk | as it's an mgmt network | 08:17 |
| noonedeadpunk | iirc - that should have been an internal VIP | 08:17 |
| gebz | I have a no_proxy variable with all the private IPs | 08:17 |
| gebz | even added that particular IP in the no_proxy variable, and it's still failing | 08:18 |
| noonedeadpunk | so you're able to curl http://172.29.236.101:8181/constraints/upper_constraints_cached.txt for instance? | 08:18 |
| gebz | Yup | 08:18 |
| noonedeadpunk | there was smth more for PIP to work through proxy I guess | 08:18 |
| gebz | pip.conf? | 08:19 |
| gebz | crap | 08:19 |
| noonedeadpunk | gebz: you have smth like that, right? https://opendev.org/openstack/openstack-ansible/src/branch/master/etc/openstack_deploy/user_variables.yml#L144-L156 | 08:22 |
| noonedeadpunk | sorry, missed also `no_proxy_env` on the L143 | 08:23 |
| gebz | yyyup | 08:24 |
| noonedeadpunk | as these are register-dependent | 08:24 |
| noonedeadpunk | hm | 08:25 |
| noonedeadpunk | I don't really know then :( | 08:25 |
| gebz | you mean in /etc/openstack_deploy/user_variables.yml? | 08:25 |
| noonedeadpunk | we're not using proxies in our air-gapped environements | 08:25 |
| noonedeadpunk | yeah | 08:26 |
| gebz | it's not there no | 08:26 |
| gebz | weird | 08:26 |
| noonedeadpunk | yeah, ok, gate-check-commit.sh is probably not suitable, as in your case you'd need to adjust user_variables .yml with proxy setup after bootstrap-aio.sh | 08:27 |
| noonedeadpunk | we do have proxy scenario as well, but it will install proxy as well | 08:28 |
| noonedeadpunk | which is not needed in your case I guess :D | 08:28 |
| gebz | wait, can i include the variables from the repo as they are, or do i have to fill in the blanks? | 08:30 |
| noonedeadpunk | well, except proxy_env_url ? | 08:32 |
| noonedeadpunk | that's basically correct selection: https://opendev.org/openstack/openstack-ansible/src/branch/master/etc/openstack_deploy/user_variables.yml#L131-L156 | 08:33 |
| noonedeadpunk | so you'd need to setup `proxy_env_url` and rest can be "as is" I believe | 08:33 |
| gebz | yikes | 08:33 |
| gebz | hey, at least it's more progress than yesterday :D | 08:34 |
| noonedeadpunk | yeah, well, we for air-gapped env mirror quite some repos insteead of using proxies | 08:35 |
| gebz | Haven't done that before.. is there a playbook/role to do that? | 08:36 |
| noonedeadpunk | m. I don't think so... We didn't contributed that part, as it wasn't spawned by ansible at all | 08:36 |
| noonedeadpunk | and I can't even recall what tools we used lol | 08:37 |
| gebz | Well, I could personally work on that as a contribution | 08:37 |
| noonedeadpunk | but can find out - they're for DEB though | 08:38 |
| noonedeadpunk | aha, it was pulp for github mirrorring and pypi | 08:39 |
| gebz | Also setting up a local mirror is something security folks like | 08:39 |
| gebz | since it's one place they can scan | 08:39 |
| gebz | why rhel/satellite are popular in air-gapped environments | 08:39 |
| gebz | it's plug-and-play | 08:40 |
| noonedeadpunk | well, depending on setup, you might need more then that I guess | 08:40 |
| noonedeadpunk | it's probably fine until you don't need to install smth from pypi I assume | 08:40 |
| noonedeadpunk | while we do have asbility to setup from distro packages (and folks like ThiagoCMC does that), not all roles are covered | 08:41 |
| gebz | Is there a list of all the other repos openstack-ansible pulls from? | 08:42 |
| gebz | like pypi, github, etc.. | 08:42 |
| noonedeadpunk | well | 08:50 |
| noonedeadpunk | there's a list of roles: https://opendev.org/openstack/openstack-ansible/src/branch/master/ansible-role-requirements.yml | 08:50 |
| noonedeadpunk | the collections: https://opendev.org/openstack/openstack-ansible/src/branch/master/ansible-collection-requirements.yml | 08:51 |
| noonedeadpunk | previously we had a better view about upstream services, but now they're split into small chunks... | 08:51 |
| noonedeadpunk | basically under https://opendev.org/openstack/openstack-ansible/src/branch/master/inventory/group_vars/*/source_git.yml | 08:52 |
| gebz | I can start working on a role that sets up a local mirror | 08:52 |
| noonedeadpunk | ie https://opendev.org/openstack/openstack-ansible/src/branch/master/inventory/group_vars/neutron_all/source_git.yml | 08:52 |
| gebz | But I'll have to do some research on my own :D | 08:52 |
| gebz | oooh I see | 08:52 |
| gebz | that will make things easier | 08:52 |
| noonedeadpunk | well, we mainly build things from source, when it comes to openstack services | 08:53 |
| noonedeadpunk | except when `install_method: distro` | 08:53 |
| gebz | you telling me there are distro packages ready to deploy for ubuntu for example? that don't need some license? | 08:53 |
| noonedeadpunk | when `install_method: source` (default), we install from distro packages not so much things | 08:53 |
| noonedeadpunk | gebz: yes | 08:54 |
| noonedeadpunk | and for rhel | 08:54 |
| gebz | rhel one needs a license | 08:54 |
| noonedeadpunk | ubuntu ones provided by Ubuntu CLoud Archive, EL by RDO project | 08:54 |
| noonedeadpunk | it does not | 08:54 |
| gebz | :O | 08:54 |
| gebz | I'll give that a try | 08:54 |
| noonedeadpunk | but we don't have full coverage of distro path | 08:54 |
| noonedeadpunk | due to historically limited interest | 08:54 |
| gebz | you said rocky and ubuntu, right? | 08:55 |
| noonedeadpunk | rocky, ubuntu, centos stream, debian | 08:55 |
| gebz | Perfect | 08:55 |
| noonedeadpunk | but in CI mostly we test rocky and ubuntu | 08:55 |
| gebz | Rocky's the new CentOS :D | 08:55 |
| noonedeadpunk | yeah, Neil as Rocky maintainer helps us a lot with it | 08:56 |
| jrosser | gebz: my strong advice to you is to use “deployment_environment_variables” for setting proxies and absolutely do not put these things persistently in /etc/environment | 09:24 |
| jrosser | make minimal specific config for the package manager and pip, but nothing else | 09:25 |
| jrosser | this is all discussed on the “limited connectivity” documentation | 09:25 |
| opendevreview | Dmitriy Rabotyagov proposed openstack/openstack-ansible-os_skyline master: Re-add Zuul testing to the project https://review.opendev.org/c/openstack/openstack-ansible-os_skyline/+/912333 | 09:38 |
| opendevreview | Dmitriy Rabotyagov proposed openstack/openstack-ansible-os_skyline master: Add EL distro support https://review.opendev.org/c/openstack/openstack-ansible-os_skyline/+/912370 | 09:38 |
| opendevreview | Dmitriy Rabotyagov proposed openstack/openstack-ansible master: [Feature] Add skyline deployment capability https://review.opendev.org/c/openstack/openstack-ansible/+/859446 | 09:39 |
| opendevreview | Dmitriy Rabotyagov proposed openstack/openstack-ansible master: [Feature] Add skyline deployment capability https://review.opendev.org/c/openstack/openstack-ansible/+/859446 | 11:38 |
| noonedeadpunk | so. I've spawned aio with horizon+skyline and things look pretty much nice | 11:40 |
| noonedeadpunk | I guess last thing left - deal with nginx | 11:40 |
| noonedeadpunk | if we wanna deal with it now ofc... | 11:40 |
| noonedeadpunk | it can be really trivial though..... | 11:41 |
| noonedeadpunk | well... it looks less trivial now once I've tried :D | 12:09 |
| noonedeadpunk | it's really doing smth different then just pointing to API endpoint | 12:10 |
| noonedeadpunk | so I guess I'd leave that alone for now | 12:10 |
| gebz | paste.opendev.org/show/823546 | 14:35 |
| gebz | HostVarsVars must be a type no? | 14:36 |
| gebz | actually might be because it's hostvars[groups[*group_name*]]..etc, shouldn't it be groupvars? | 14:37 |
| noonedeadpunk | gebz: it sounds like this issue is 5y old or so.... | 15:00 |
| noonedeadpunk | discovered_interpreter_python is supposed to be ansible "internal" variable IIRC | 15:01 |
| noonedeadpunk | that get's auto-discovered assigned by it depending on the OS version | 15:01 |
| noonedeadpunk | (basically made for py2/3 compatibility iirc) | 15:01 |
| noonedeadpunk | I haven't seen that issue for a while frankly speaking | 15:02 |
| noonedeadpunk | you catch it on... Rocky? | 15:02 |
| noonedeadpunk | I will try to spawn a sandbox with ceph and some EL on monday to check.... | 15:03 |
| noonedeadpunk | but like I was quite sure that today rocky should be fully known by ansible.... | 15:03 |
| gebz | rocky 9 | 15:20 |
| ThiagoCMC | noonedeadpunk, how can I try the Horizon+Skyline on AIO? | 15:26 |
| gebz | @noonedeadpunk apparently It flagged rocky as Centos stream 9 | 18:53 |
Generated by irclog2html.py 2.17.3 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!