Friday, 2025-11-21

« Thursday, 2025-11-20 Index Saturday, 2025-11-22 »
opendevreviewOpenStack Proposal Bot proposed openstack/openstack-ansible master: Imported Translations from Zanata  https://review.opendev.org/c/openstack/openstack-ansible/+/96779403:15
opendevreviewAndrew Bonney proposed openstack/openstack-ansible master: Add minimal AIO files for k8s clusters  https://review.opendev.org/c/openstack/openstack-ansible/+/96666608:25
opendevreviewAndrew Bonney proposed openstack/openstack-ansible master: ci: add nova console log collection and fix repo file collection  https://review.opendev.org/c/openstack/openstack-ansible/+/96796108:25
opendevreviewMerged openstack/openstack-ansible-rabbitmq_server master: Switch erlang repo to deb1.rabbitmq.com  https://review.opendev.org/c/openstack/openstack-ansible-rabbitmq_server/+/96752311:28
andrewbonneynoonedeadpunk: I've just been debugging why nova VMs in an AIO don't have working Internet connectivity. I think this is down to https://github.com/openstack/openstack-ansible/commit/31f12f54eaccd3ff5a458cb8593897a46b2d923a but I'd appreciate a sanity check11:33
andrewbonneyComparing a master and 2025.1 AIO, 2025.1 has a nat postrouting iptables rule, but master doesn't. It appears it's maybe getting applied to the wrong interface in the aio networks template11:34
noonedeadpunk[e]I think there should be a Nat rule allowing access, and a network IP assigned on fake vlan11:34
noonedeadpunk[e]Magnum needs an internet access I guess?11:36
andrewbonneyYeah that's right11:36
andrewbonneyI seem to have to apply the missing postrouting rule to the management interface rather than the public one to make it work, and that doesn't sound quite right11:38
noonedeadpunkhm, it does not for sure....11:45
noonedeadpunkI could totally introduce some bug in there....11:45
noonedeadpunkI'd need to spawn some fresh env to check on that...11:46
andrewbonneySorry, I'm wrong there, using the public interface is fine, but the rule didn't seem to apply11:50
andrewbonneyI'll keep digging anyway11:51
noonedeadpunkI was thinking that adding a gateway IP on the vlan was also needed11:56
andrewbonneyCould it be to do with the trigger? I see the command in networking-post-up.service, but that doesn't seem to be triggered when (for example) restarting systemd-networkd11:58
noonedeadpunkah12:01
noonedeadpunkindet is wrong https://opendev.org/openstack/openstack-ansible/src/branch/master/tests/roles/bootstrap-host/templates/aio1_networks.yml.j2#L167-L17012:02
noonedeadpunkandrewbonney: it should be https://paste.openstack.org/show/bO9wBYSMFIL6Nik9A7ro/12:03
andrewbonneyOh12:03
noonedeadpunkas it ends up adding DEFAULT section and fail to load the unit at all12:04
noonedeadpunk`networking-post-up.service:1: Unknown section 'DEFAULT'. Ignoring`12:04
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible stable/2024.1: Bump rabbitmq SHA and stop using infra mirror for mariadb  https://review.opendev.org/c/openstack/openstack-ansible/+/96786412:38
noonedeadpunkandrewbonney: should I propose the patch or you on it?12:57
andrewbonneyI'm happy to do it - just been on lunch12:58
noonedeadpunkah, ok :D12:58
opendevreviewAndrew Bonney proposed openstack/openstack-ansible master: Fix indentation for aio networking-post-up service  https://review.opendev.org/c/openstack/openstack-ansible/+/96798613:01
noonedeadpunkandrewbonney: huh.... I think this is another mistake?13:06
noonedeadpunkie `- "-{{ bootstrap_host_ip_path }} link set eth13 up"`13:06
noonedeadpunkwhy 2 `-`?13:06
andrewbonneyI did wonder, but that seemed to be in the original code pre-change13:07
noonedeadpunkwell... systemd seems to be able to handle it indeed....13:08
noonedeadpunkand remove this second -13:08
andrewbonneyI can remove if there's no reason for it though13:09
noonedeadpunkI don;t think there's any?13:09
opendevreviewAndrew Bonney proposed openstack/openstack-ansible master: Fix indentation for aio networking-post-up service  https://review.opendev.org/c/openstack/openstack-ansible/+/96798613:14
opendevreviewAndrew Bonney proposed openstack/openstack-ansible-ops master: Update mcapi to test against latest versions  https://review.opendev.org/c/openstack/openstack-ansible-ops/+/96656313:21
opendevreviewAndrew Bonney proposed openstack/openstack-ansible-ops master: mcapi_proxy: notify handler on k8s config change  https://review.opendev.org/c/openstack/openstack-ansible-ops/+/96801513:21
opendevreviewDamian DÄ…browski proposed openstack/ansible-role-pki master: Add hashi_vault backend  https://review.opendev.org/c/openstack/ansible-role-pki/+/94888113:24
opendevreviewDamian DÄ…browski proposed openstack/openstack-ansible master: Add support for hashi_vault PKI backend  https://review.opendev.org/c/openstack/openstack-ansible/+/94888813:24
noonedeadpunkdamiandabrowski: sooo. what are we going to do with https://review.opendev.org/c/openstack/openstack-ansible/+/948886/8 ?13:46
damiandabrowskiahh sorry, I missed this comment13:48
damiandabrowskiwell, this patch just changes the format of this variable13:49
damiandabrowskiadding ansible_facts['fqdn'] seems like a good idea, but it's probably something for a separate patch13:49
noonedeadpunkso the point is, that alternative could be to drop this var instead of changing its format13:50
noonedeadpunkAs now it's not different from in-role defaults13:50
noonedeadpunkSo just changing the format does not make much sense to me13:51
damiandabrowskiis it really different from in-role defaults?13:53
noonedeadpunknow it's exactly the same. so why to have it?13:54
damiandabrowskiahh, "not different" sorry13:54
damiandabrowskiwell, to let customers override just  `openstack_pki_san`  instead of `<service>_pki_san` for all services13:55
damiandabrowskithat's how I see it13:55
noonedeadpunkso what prevents them to do so, if it's not defined?13:56
noonedeadpunkin integrated repo13:56
damiandabrowskiahhh, that's what you mean. I thought that we're talking about completely dropping a support for openstack_pki_san13:57
noonedeadpunkI was talking about this specific patch :)13:57
damiandabrowskii think it makes sense then13:57
noonedeadpunkAs imo it should either do some smart thing, or remove smth we don't need13:58
noonedeadpunkif it's actually the same, and then it makes zookeeper not to use this var13:58
noonedeadpunk(https://review.opendev.org/c/openstack/ansible-role-zookeeper/+/949422/3/defaults/main.yml)13:59
noonedeadpunkand same for ovn certs13:59
noonedeadpunkso if we can't or don't want to do smart, I think we still should use `openstack_pki_san` and let users to implement smart things if they want to.... but document a note that there're cases like this, they need to think about14:00
opendevreviewAndrew Bonney proposed openstack/openstack-ansible master: ci: add nova console log collection and fix repo file collection  https://review.opendev.org/c/openstack/openstack-ansible/+/96796114:12
opendevreviewAndrew Bonney proposed openstack/openstack-ansible master: Add minimal AIO files for k8s clusters  https://review.opendev.org/c/openstack/openstack-ansible/+/96666614:12
opendevreviewDmitriy Rabotyagov proposed openstack/ansible-role-systemd_networkd master: Restart systemd-udev on link changes  https://review.opendev.org/c/openstack/ansible-role-systemd_networkd/+/95487615:15
damiandabrowskiack, I'll work on that15:47
opendevreviewDmitriy Rabotyagov proposed openstack/ansible-role-systemd_networkd master: Add Debian 13 support  https://review.opendev.org/c/openstack/ansible-role-systemd_networkd/+/96803416:04
opendevreviewIvan Anfimov proposed openstack/openstack-ansible master: docs: Installing with limited connectivity - updates URLs for mirrors  https://review.opendev.org/c/openstack/openstack-ansible/+/96792117:26
« Thursday, 2025-11-20 Index Saturday, 2025-11-22 »

Generated by irclog2html.py 4.0.0 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!