Wednesday, 2017-11-22

« Tuesday, 2017-11-21 Index Thursday, 2017-11-23 »
*** rtjure has quit IRC00:00
*** rtjure has joined #openstack-containers00:03
*** hongbin has quit IRC00:10
*** yamamoto has joined #openstack-containers00:14
*** yamamoto has quit IRC00:20
*** itlinux has joined #openstack-containers00:24
*** itlinux has quit IRC00:50
*** Chealion has quit IRC00:57
*** Chealion has joined #openstack-containers00:58
*** oikiki has quit IRC01:07
*** oikiki has joined #openstack-containers01:07
*** oikiki has quit IRC01:10
*** daidv has joined #openstack-containers01:15
*** yamamoto has joined #openstack-containers01:16
*** yamamoto has quit IRC01:21
*** rcernin has quit IRC01:29
*** rcernin has joined #openstack-containers01:30
*** itlinux has joined #openstack-containers01:45
*** kiennt26 has joined #openstack-containers01:52
*** itlinux has quit IRC01:53
*** ramishra has joined #openstack-containers02:01
*** wangbo has joined #openstack-containers02:04
*** yamamoto has joined #openstack-containers02:17
*** yamamoto has quit IRC02:22
*** itlinux has joined #openstack-containers02:47
*** dpawar has joined #openstack-containers02:48
*** dpawar has quit IRC02:49
*** fragatina has quit IRC02:55
*** manheim has joined #openstack-containers02:56
*** fragatina has joined #openstack-containers02:59
*** fragatina has quit IRC02:59
*** fragatina has joined #openstack-containers03:00
*** fragatina has quit IRC03:01
*** manheim has quit IRC03:01
*** dpawar has joined #openstack-containers03:02
*** fragatina has joined #openstack-containers03:06
*** eliqiao_ has joined #openstack-containers03:09
*** yamamoto has joined #openstack-containers03:09
*** ricolin has joined #openstack-containers03:10
*** fragatina has quit IRC03:10
*** dpawar has quit IRC03:26
*** dpawar has joined #openstack-containers03:26
*** itlinux has quit IRC03:27
*** hongbin has joined #openstack-containers03:34
*** ramishra has quit IRC03:39
*** absubram has quit IRC03:59
*** itlinux has joined #openstack-containers04:01
*** mdnadeem has joined #openstack-containers04:12
*** ykarel|away has joined #openstack-containers04:12
*** ykarel|away is now known as ykarel04:31
*** janki has joined #openstack-containers04:32
*** ramishra has joined #openstack-containers04:35
*** dpawar has quit IRC04:46
*** wangbo has quit IRC04:49
*** kiennt26 has quit IRC04:58
*** dpawar has joined #openstack-containers05:01
*** hongbin has quit IRC05:05
*** wangbo has joined #openstack-containers05:06
*** fragatina has joined #openstack-containers05:08
*** fragatina has quit IRC05:09
*** fragatina has joined #openstack-containers05:10
*** manheim has joined #openstack-containers05:12
*** janonymous has joined #openstack-containers05:12
*** manheim has quit IRC05:17
*** janki has quit IRC05:17
*** yamamoto_ has joined #openstack-containers05:18
*** yamamoto has quit IRC05:21
*** fragatin_ has joined #openstack-containers05:25
*** fragatina has quit IRC05:27
*** janki has joined #openstack-containers05:35
*** ramishra has quit IRC06:11
*** ramishra has joined #openstack-containers06:18
*** lpetrut has joined #openstack-containers06:24
yaseminykarel, hi, i updated magnum service files about SSL problem, I followed https://review.openstack.org/#/c/447687/ , but i have a problem about swarm cluster06:27
yaseminmagum-conductor logs 23486 ERROR oslo_messaging.rpc.server InvalidParameterValue: ERROR: The Parameter (verify_ca) was not defined in template.06:27
yasemin06:27
yaseminany idea ?06:27
*** rtjure has quit IRC06:29
ykarelyasemin, looks like you missed some params06:30
*** rtjure has joined #openstack-containers06:32
ykarelyasemin, can you recheck your swarm templates are same as in https://review.openstack.org/#/c/447687/06:32
*** openstackgerrit has quit IRC06:33
yaseminykarel, okey06:34
*** ykarel_ has joined #openstack-containers06:36
*** ykarel has quit IRC06:38
*** ramishra has quit IRC06:38
*** dpawar has quit IRC06:57
*** ramishra has joined #openstack-containers06:59
*** absubram has joined #openstack-containers07:01
*** dpawar has joined #openstack-containers07:05
*** absubram has quit IRC07:05
*** hishh has joined #openstack-containers07:07
*** dsariel has joined #openstack-containers07:07
*** itlinux has quit IRC07:07
*** absubram has joined #openstack-containers07:09
*** mjura has joined #openstack-containers07:13
*** rcernin has quit IRC07:17
*** ykarel__ has joined #openstack-containers07:23
*** ykarel_ has quit IRC07:25
*** yamamoto_ has quit IRC07:27
*** manheim has joined #openstack-containers07:29
*** jberkus has quit IRC07:38
yaseminykarel,07:44
yasemin2017-11-22 10:40:53.732 24086 ERROR oslo_messaging.rpc.server     raise e07:44
yasemin2017-11-22 10:40:53.732 24086 ERROR oslo_messaging.rpc.server InvalidParameterValue: ERROR: Failed to validate: Error parsing template: while parsing a block mapping07:44
yasemin2017-11-22 10:40:53.732 24086 ERROR oslo_messaging.rpc.server   in "<unicode string>", line 1, column 1:07:44
yasemin2017-11-22 10:40:53.732 24086 ERROR oslo_messaging.rpc.server     heat_template_version: 2014-10-1607:44
yasemin2017-11-22 10:40:53.732 24086 ERROR oslo_messaging.rpc.server     ^07:44
yasemin2017-11-22 10:40:53.732 24086 ERROR oslo_messaging.rpc.server expected <block end>, but found '<block mapping start>'07:44
yasemin2017-11-22 10:40:53.732 24086 ERROR oslo_messaging.rpc.server   in "<unicode string>", line 83, column 2:07:44
yasemin2017-11-22 10:40:53.732 24086 ERROR oslo_messaging.rpc.server      verify_ca:07:44
yasemin2017-11-22 10:40:53.732 24086 ERROR oslo_messaging.rpc.server      ^07:44
yasemin2017-11-22 10:40:53.732 24086 ERROR oslo_messaging.rpc.server07:44
yasemin^C07:44
yasemini didnt change this magnum-15.1.9/lib/python2.7/site-packages/magnum/conductor/handlers/cluster_conductor.py", line 81, in cluster_create07:44
yasemin07:45
yaseminbut it gives the error07:45
*** ykarel__ is now known as ykarel|lunch07:46
*** dsariel has quit IRC07:46
*** threestrands has quit IRC07:47
*** pcaruana has joined #openstack-containers07:49
*** lpetrut has quit IRC07:50
yaseminykarel, http://paste.openstack.org/show/627036/07:51
yaseminthis is my kubernetes cluster cloud-init-output :/07:52
*** mgoddard has joined #openstack-containers07:53
*** lpetrut has joined #openstack-containers07:55
*** manheim has quit IRC08:04
*** manheim has joined #openstack-containers08:04
*** manheim has quit IRC08:09
*** manheim has joined #openstack-containers08:17
*** manheim_ has joined #openstack-containers08:19
*** manheim has quit IRC08:19
*** manheim_ has quit IRC08:20
*** manheim has joined #openstack-containers08:21
*** lpetrut has quit IRC08:27
*** yamamoto has joined #openstack-containers08:27
*** dpawar has quit IRC08:27
*** ykarel|lunch is now known as ykarel08:35
*** yamamoto has quit IRC08:35
*** dpawar has joined #openstack-containers08:38
*** magicboiz has joined #openstack-containers08:40
*** oikiki has joined #openstack-containers08:40
*** oikiki has quit IRC08:51
yaseminykarel, hi08:56
*** oikiki has joined #openstack-containers09:00
*** srihas619 has joined #openstack-containers09:04
*** wangbo has quit IRC09:09
*** wangbo has joined #openstack-containers09:11
*** yamamoto has joined #openstack-containers09:11
*** oikiki has quit IRC09:14
ykarelyasemin, hi09:18
*** yamamoto has quit IRC09:19
*** dsariel has joined #openstack-containers09:19
*** yamamoto has joined #openstack-containers09:23
*** AlexeyAbashkin has joined #openstack-containers09:38
*** KwozyMan has joined #openstack-containers09:43
slunkadstrigazi: hello09:59
strigazislunkad: hi09:59
slunkadstrigazi: I just wanted to let you know about the opensuse image we decided to build it with dib rather than spending time with kiwi first10:00
slunkadstrigazi: https://review.openstack.org/#/c/520063/10:00
strigazislunkad: I saw the patch, is it passing?10:00
slunkadno not yet10:00
strigaziand locally on your dev environment?10:01
*** lpetrut has joined #openstack-containers10:01
srihasI have a doubt, why do we build images, cant we install / configure any image as per requirements via cloud-init ?10:02
strigazisrihas for fedora we don't build10:02
slunkadstrigazi: I'm on it now10:03
srihasstrigazi: I mean ubuntu, fedora, centOS etc can e chosen, right?10:03
strigazislunkad: cool10:03
strigazisrihas: each driver in magnum is tied to an operating system10:03
srihasstrigazi: yeah, thats what my doubt is, cant we have a generic driver, is there any downside?10:04
strigazisrihas: There is no generic option. If we have only one, we will have a bunch of conditions. eg each OS has different docker versions.10:07
strigazisrihas: cloud init works differently in coreos vs fedora10:07
srihasok10:07
srihasseems clear for me :)10:08
*** salmankhan has joined #openstack-containers10:08
strigazisrihas: we could have a generic option that could leverage kubespray for example. But if there is no interest for that and someone willing to drive it we can't procceed.10:09
srihasstrigazi: ok10:09
*** ramishra has quit IRC10:13
yaseminykarel, i have a problem about kubernetes10:16
strigaziyasemin: what is the problem?10:17
yaseminykarel, cloud-init-output.log -> http://paste.openstack.org/show/627036/10:17
yasemini followed this patch https://review.openstack.org/#/c/447687/ but it is not working10:17
yasemin<strigazi>10:17
yaseminwill it merge ?10:18
strigazican you do sh /var/lib/cloud/instance/scripts/part-005 ?10:18
strigaziit is working, I have tested it locally, you miss something, we can find out what10:18
ykarelyasemin, how you applied https://review.openstack.org/#/c/447687/10:19
ykarelon your environment10:19
ykarelyasemin, from the logs you shared earlier it looks you have wrongly updated templates10:19
strigazibtw, kubernetes was already doing insecure requests10:19
yasemin<strigazi> i run sh command, but it is any output10:20
yaseminykarel i updated magnum templates files10:21
yaseminykarel, my enviroment is openstack-ansible ocata10:21
yaseminand https://review.openstack.org/#/c/447687/38/magnum/drivers/common/templates/swarm/fragments/write-cluster-failure-service.yaml10:22
yaseminis different  -> ExecStart=/usr/bin/$WAIT_CUR part10:22
yaseminExecStart=/usr/bin/curl -k -i -X POST -H 'Content-Type: application/json' -H 'X-Auth-Token: $WAIT_HANDLE_TOKEN' \10:23
yasemin        --data-binary '{"status": "FAILURE", "reason": "$SERVICE service failed to start.", "data": "Failure"}' \10:23
yasemin        "$WAIT_HANDLE_ENDPOINT"10:23
yaseminhow can i change it ?10:23
ykarelthe patch is for master, may be we need to consider something for ocata10:23
strigaziykarel make everytihng insecure or backport 447687 ?10:24
ykarelyasemin, coming back to your question, issue is with kubernetes or swarm cluster10:24
*** wangbo has quit IRC10:24
*** openstackgerrit has joined #openstack-containers10:24
openstackgerritMerged openstack/python-magnumclient master: OSC: Add --master-flavor to coe cluster create  https://review.openstack.org/48962310:24
ykarelstrigazi, we can backport as it's a bug fix10:24
strigazisounds good for me10:25
yaseminykarel it is swarm files10:25
yaseminbut i have problems both of them :D10:26
ykarelOk if you see -k is there already so no change is required10:27
ykarelin ocata change is not required10:27
ykarelhttps://github.com/openstack/magnum/blob/stable/ocata/magnum/drivers/common/templates/swarm/fragments/write-cluster-failure-service.yaml#L1410:27
yaseminoooo i changed -k other files :/10:28
ykarelstrigazi, did you checked there is some issue in devstack setup in jobs10:29
srihasyasemin: can you reach heat endpoint manually from inside the VM ?10:29
ykarelhttp://logs.openstack.org/87/447687/38/check/magnum-functional-api/9ce7e2a/logs/devstacklog.txt.gz#_2017-11-22_09_57_06_56810:29
yasemin<srihas> how ?10:32
srihasyasemin: take the public endpoint from controller, ´openstack endpoint list´10:32
srihasor ´openstack catalog list´10:34
srihaslogin to your master node in the cluster; telnet <endpoint IP> <endpoint port>10:34
srihasgenerally port is 800410:35
yaseminykarel strigazi how can i solve my problems :/10:35
yasemin<srihas> my openstack enviroment installed with ansible10:35
srihasyasemin: its doesnot matter, just execute ´openstack catalog list´10:36
srihasand check for public endpoint of heat10:36
ykarelyasemin, first of all revert the changes you applied from review: https://review.openstack.org/#/c/447687/,10:39
ykarelas you have made some wrong changes10:39
ykarelthen we can fix drivers one by one10:39
ykarelif i remember correctly few days ago you shared issue with swarm and i shared two review: one large and one small with you, correct?10:40
*** magicboiz has quit IRC10:45
*** salmankhan has quit IRC10:46
*** salmankhan has joined #openstack-containers10:48
yaseminykarel, we reverted all changes10:52
yaseminykarel, we are ready :D10:53
ykarelyasemin, now we can start with swarm driver10:59
ykarelyasemin, could you apply following changes: https://review.openstack.org/#/c/518700/1/magnum/drivers/common/templates/swarm/fragments/make-cert.py11:00
yaseminykarel i did it and now i am trying11:01
ykarelyasemin, ok11:01
ykarelyasemin, changed only the affected lines or complete file11:01
yasemini added verify lines11:02
yaseminykarel, it is working :D11:03
ykarelyasemin, Great11:05
ykarelyasemin now try k8s fedora11:07
yaseminykarel magnum/drivers/common/templates/kubernetes/fragments/make-cert.sh ?11:09
ykarelyasemin, it looks correct11:10
ykarelit has -k11:10
*** wangbo has joined #openstack-containers11:10
yaseminykarel, USER_TOKEN=`curl -k -s -i -X POST -H "$content_type" -d "$auth_json" $url \11:10
yasemin    | grep X-Subject-Token | awk '{print $2}' | tr -d '[[:space:]]'`11:10
yasemin?11:10
ykarelyasemin, yes it;s correct11:11
*** magicboiz has joined #openstack-containers11:12
yaseminykarel, where i add verify=false  ? or what can i do ?11:12
*** eliqiao_ has quit IRC11:13
ykarelyasemin, no change required11:13
ykarelit's already covered in fedora atomic11:14
ykareljust deploy feora-atomic and see how it goes11:14
yaseminykarel, i am trying fedora atomic 2511:18
yaseminykarel, cloud-init-output.log -> http://paste.openstack.org/show/627059/11:19
ykarelyasemin, from where you took the fedora-atomic image11:22
yaseminykarel, i didnt remember11:22
ykarelcan you try the latest one, i think atomic 25 has some issues11:23
ykarelyasemin, https://download.fedoraproject.org/pub/alt/atomic/stable/Fedora-Atomic-26-20170723.0/CloudImages/x86_64/images/Fedora-Atomic-26-20170723.0.x86_64.qcow211:24
*** aluria has joined #openstack-containers11:26
*** AlexeyAbashkin has quit IRC11:31
*** adisky_ has quit IRC11:32
*** AlexeyAbashkin has joined #openstack-containers11:34
srihascannot create cluster-config for a cluster launched with --tls-disabled, can someone help me with it?11:37
strigazisrihas: magnum --version11:38
srihas2.3.011:39
srihasnewton on ubuntu11:39
*** dsariel has quit IRC11:40
strigazisrihas: for a swarm cluster?11:40
strigazisrihas: I guess you need this patch https://review.openstack.org/#/c/425259/11:42
srihasstrigazi: for swarm, yes11:46
srihaslet me see the patch11:46
srihasstrigazi: I have the environment variables set11:47
srihasbut the .pem files are not created in --dir11:47
yaseminykarel, i cant create a new magnum cluster templates on horizon.11:48
yaseminykarel, horizon error.log -11:49
yaseminhttp://paste.openstack.org/show/627065/11:49
strigazisrihas with tls-disabled there are no pem files :)11:50
srihasstrigazi: ofcourse, but if i try to launch a container its complaining11:51
srihasthat there are no certs to connect to docker daemon11:52
strigazican you login to the master and check it docker is started with cers?11:53
strigazican you login to the master and check it docker is started with certs?11:53
strigazisystemctl cat docker11:54
srihasstrigazi: http://paste.openstack.org/show/627067/11:57
srihasI have only that info, nothing mentioned about TLS11:58
ykarelyasemin, while creating image you need to set os_distro12:00
*** ianychoi has quit IRC12:00
yaseminykarel, we updated image metadata12:00
*** ianychoi has joined #openstack-containers12:00
ykarelyasemin, now can you create template?12:01
*** dsariel has joined #openstack-containers12:01
strigaziykarel: devstack fix https://review.openstack.org/#/c/522077/312:01
yaseminykarel, yes12:02
yaseminykarel, creating kubernetes cluster12:02
ykarelyasemin, Ok12:02
strigazisrihas check /etc/sysconfig/docker12:02
ykarelstrigazi, ack12:02
* strigazi is going to a meeting but he will try to be online12:03
srihasstrigazi: there is docker cert path in /etc/sysconfig/docker and there are redhat certs in /etc/docker/certs.d/12:06
*** janki has quit IRC12:08
yaseminykarel, i cant connect swarm nodes with ssh12:12
ykarelsrihas, what's the content in /etc/sysconfig/docker12:13
strigaziand ls /etc/docker12:13
ykarelyasemin, what's the error12:13
*** ramishra has joined #openstack-containers12:14
srihasykarel / strigazi I need some time please. have to fix connectivity12:15
ykarelsrihas, ok12:16
yaseminykarel, i tried swarm cluster with fedora 26 image12:18
yaseminWaitConditionFailure: resources.swarm_masters.resources[0].resources.master_wait_condition: swarm-manager service failed to sta12:18
yaseminit gave error 2 minutes12:19
*** yamamoto has quit IRC12:20
yaseminykarel but created successfully with fedora 25 about 4 minutes12:20
ykarelyasemin, login to master node and check status12:21
yasemini cant login master node with ssh12:21
ykarelyasemin, what's the Error?12:21
yaseminykarel, i dont know error about ssh connection12:24
*** yamamoto has joined #openstack-containers12:24
srihasyasemin: try ssh -vv12:25
*** AlexeyAbashkin has quit IRC12:29
*** KwozyMan has quit IRC12:30
yaseminykarel, OpenSSH_6.6.1, OpenSSL 1.0.1f 6 Jan 201412:31
yasemindebug1: Reading configuration data /etc/ssh/ssh_config12:31
yasemindebug1: /etc/ssh/ssh_config line 19: Applying options for *12:31
yasemindebug2: ssh_connect: needpriv 012:31
yasemindebug1: Connecting to 10.1.65.28 [10.1.65.28] port 22.12:31
yasemindebug1: connect to address 10.1.65.28 port 22: Connection timed out12:31
yaseminssh: connect to host 10.1.65.28 port 22: Connection timed out12:31
*** KwozyMan has joined #openstack-containers12:32
ykarelyasemin, is swarm-worker node created?12:33
*** AlexeyAbashkin has joined #openstack-containers12:44
*** mkuiper has joined #openstack-containers12:45
*** mdnadeem has quit IRC12:46
mkuiperHi I have cretaed a 1 master , 2 nodes kubernetes cluster. The template was created with: magnum cluster-template-create kubernetes-cluster-tpl3 --volume-driver cinder --keypair mkuix3 --fixed-network xxxxx --fixed-subnet yyyyyy --registry-enabled --image fedora-atomic-ocata --external-network floating-ip-pool-1 --dns-nameserver 169.254.169.7 --master-flavor 2C-4G-20G-V1-S --flavor 2C-4G-20G-V1-S --coe kubernetes --tls-d12:49
srihasykarel: content in /etc/sysconfig/docker is http://paste.openstack.org/show/627072/12:51
srihasstrigazi: ls /etc/docker/12:52
srihascerts.d  key.json12:52
mkuiperthe client apparently does not accept --floating-ip-enabled False so I set that field to 0 in the magnum cluster_template table12:52
mkuiperI then created the cluster with magnum cluster-create kubernetes-cluster --cluster-template kubernetes-cluster-tpl3 --master-count 1 --node-count 2 --keypair mkuix312:53
mkuiperThe cluster comes up and I can run for example kubernetes-bootcamp. However the coredns and dashboard pod fail to start. If I look at the kubernetes logs for coredns I get : [root@ku-asmp4rp5id-0-iaxh4sk4saur-kube-master-ag3diqa2vmgw ~]# kubectl logs coredns-3034292617-pt0kh -n kube-system 2017/11/22 12:53:22 middleware/kubernetes: open /var/run/secrets/kubernetes.io/serviceaccount/token: no such file or directory12:55
yaseminykarel, yes just only created swarm master node12:55
mkuiperIf I look at the docker logs I get: /go/src/github.com/docker/distribution/cmd/registry/main.go:24 +0x2d panic: No username parameter provided12:55
mkuipermagnum version is pike. ANyone got any pointers to get these pods in the running state12:56
yaseminykarel, i tried fedora atomic latest , swarm cluster create successfully but not connect with ssh12:56
ykarelsrihas, can you try restarting docker by comment DOCKER_CERT_PATH Line12:58
yaseminykarel, i restarted swarm nodes (fedora 25), i can connect but docker engine not running12:58
yaseminykarel, is it related SSL or image ?13:00
ykarelyasemin, what's the error for docker, systemctl status docker13:00
yaseminykarel, http://paste.openstack.org/show/627077/13:03
ykarelyasemin, ps -eaf|grep docker13:07
*** dsariel has quit IRC13:07
yaseminykarel, root       812     1  0 12:56 ?        00:00:00 /usr/libexec/docker/docker-containerd-current --listen unix:///run/containerd.sock --shim /usr/libexec/docker/docker-containerd-shim-current --start-timeout 2m13:09
yaseminfedora    1287  1255  0 13:08 pts/0    00:00:00 grep --color=auto docker13:09
ykarelyasemin, strange error, i need to reproduce it to check13:11
ykarelyasemin, can you create a new cluster to see if you face SSH issue again13:11
yaseminykarel, which image ?13:12
ykarelyasemin, you faced SSH issue on both images?13:12
yaseminykarel, in fedora 26 cluster not created just only create master node13:13
ykarelyasemin, Ok first try 2513:14
yaseminin fedora 25 cluster create but not connect ssh, after rebooting nodes i can connect13:14
*** wangbo has quit IRC13:14
*** ramishra has quit IRC13:16
*** ramishra has joined #openstack-containers13:16
yaseminykarel, okey i try it13:16
*** ykarel is now known as ykarel|afk13:18
*** dsariel has joined #openstack-containers13:21
*** yamamoto has quit IRC13:21
*** yamamoto has joined #openstack-containers13:22
*** janki has joined #openstack-containers13:26
*** vijaykc4 has joined #openstack-containers13:27
*** ykarel|afk is now known as ykarel13:37
srihasykarel: no success still! its looking for keys13:37
srihasis the problem with docker client? :/13:38
ykarelsrihas, from where are you running comands13:38
*** dsariel has quit IRC13:38
srihascontroller node13:38
ykarelsrihas, try from swarm master node13:39
ykarelit may be a client issue13:39
*** magicboiz has quit IRC13:40
yaseminykarel, how can i reconfigure docker network cidr ?13:40
srihasykarel: worked for "busybox container" but didnt work for "helloworld"13:40
*** dave-mccowan has joined #openstack-containers13:41
*** mgoddard has quit IRC13:42
ykarelyasemin, no idea13:42
ykarelsrihas, what's the error13:42
*** AlexeyAbashkin has quit IRC13:43
srihasykarel: Trying to pull repository docker.io/library/helloworld ...13:44
*** dave-mcc_ has joined #openstack-containers13:44
srihas/usr/bin/docker-current: unauthorized: authentication required.13:44
ykarelsrihas, check netstat -tnlp13:45
*** dave-mccowan has quit IRC13:45
srihasI wonder how its working for other containers, let me check13:46
srihasykarel: http://paste.openstack.org/show/627084/13:47
ykarelsrihas, sudo docker ps13:48
srihasykarel: only the ubuntu container I have created. because busybox exits after executing echo13:49
ykarelsrihas, magnum cluster-show <swarm cluster name>13:49
*** AlexeyAbashkin has joined #openstack-containers13:50
ykarelsrihas, from netstat output it seems swarm-manager is not running13:51
ykarelcan you also check systemctl status swarm-manager13:51
srihasykarel: cluster-show http://paste.openstack.org/show/627086/13:52
srihasykarel: you are true, its in failed statie13:53
ykarelsrihas, tcp://MASTER-IP:2376, port 2376 should be open on master node13:53
ykarelyes13:53
srihasyeah13:53
srihasnoticed it13:53
ykarelso need to fix failure of swarm-manager for things to work13:55
yaseminykarel, we solved ssh problem, docker is running but now swarm manager not running13:55
ykarelyasemin, what't the error13:55
yaseminykarel, Dependency failed for Swarm Manager.13:56
srihassame error for me as well ^13:56
strigazimkuiper you are using a cluster with tls enabled right?13:57
ykarelyasemin, check if etcd is running in your env13:57
ykarelsrihas, in your it is running, etcdctl ls13:58
yaseminykarel, yes it is running13:58
mkuiperno I sepcifically added --tld-disabled13:58
ykarelyasemin, and docker?13:59
strigazimkuiper service accounts do not work without tls. When tls is disabled we don't generate any CAs13:59
mkuipersorry --tls-disabled as you can see from my cluster-template-create command13:59
mkuiperso what is dat parameter for then?14:00
mkuiperanyway I will setup a cluster with tls enabled then. thx14:01
ykarelyasemin, systemctl list-unit-files, check for failed services14:01
*** salmankhan has quit IRC14:16
*** mgoddard has joined #openstack-containers14:22
mkuiperstrigazi, not getting any better. I changed template creation by removein --tls-disabled and added --docker-volume-size to match admin guide on secure cluster building. The commandline now looks like: magnum cluster-template-create kubernetes-cluster-tpl4 --network-driver flannel --volume-driver cinder --keypair mkuix3 --fixed-network xxxxxx --fixed-subnet yyyyyy --registry-enabled --image fedora-atomic-oca14:23
mkuiperWHen I now create a cluster with: magnum cluster-create kubernetes-cluster --cluster-template kubernetes-cluster-tpl4 --master-count 1 --node-count 2 --keypair mkuix314:24
*** salmankhan has joined #openstack-containers14:24
mkuiperit fails pretty fast. heat stack-show says: stack_status_reason   | Resource CREATE failed: StackValidationFailed: resource                                                                                                                 | |                       | s.kube_masters.resources[0].resources.docker_volume:14:24
mkuipermmm that does not paste very well ;)14:25
strigaziremove docker-volume-size14:25
mkuiper will do14:25
strigazifor paste use paste.openstack.org14:25
mkuiperok14:25
*** KwozyMan has quit IRC14:29
*** ramishra has quit IRC14:46
*** ramishra has joined #openstack-containers14:46
*** ykarel is now known as ykarel|away14:48
*** rcernin has joined #openstack-containers14:51
*** ramishra has quit IRC15:05
*** ramishra has joined #openstack-containers15:07
mkuiperstrigazi it is still building which tells me it will fail on a waitcondition. The master vm has booted but kube-apiserver is not running.15:08
mkuiperjournal log says:  kube-apiserver[5462]: F1122 15:03:57.997560    5462 universal_validation.go:104] Validate server run options failed: unable to load client CA file: error reading /etc/kubernetes/certs/ca.crt: could not read any certificates15:08
mkuiper /etc/kubernetes/certs/ca.crt is there but size is 015:09
*** ykarel|away has quit IRC15:09
strigazimkuiper this is with or without tls15:09
strigazi?15:09
mkuiperthis is with tls. I now recall I ran into this the last time I tried, that's why I started using --tls-disabled15:10
strigazimkuiper: can the nodes reach the api?15:10
strigazimkuiper: can the nodes reach the openstack api?15:11
mkuiperthe nodes will not be build15:11
mkuiperah yes they can15:11
mkuiperwith --tld-disabled the nodes get build and I can even schedule a pod. Only then dashboard and coredns fail to (re)start15:11
strigazimkuiper: what is in /var/log/cloud-init-output?15:11
strigaziin the master node15:12
mkuiperhope I got his right?! http://paste.openstack.org/show/627098/15:14
strigaziThe script that sets the certs failed /var/lib/cloud/instance/scripts/part-00515:15
strigaziI know part-005 is that script by heart in case you are wondering15:15
mkuiperhahaha I was15:16
strigaziYou can see the line : 2017-11-22 14:34:14,555 - util.py[WARNING]: Failed running /var/lib/cloud/instance/scripts/part-005 [1]15:16
*** rcernin has quit IRC15:18
mkuiperthe curl on https://magnum.ams1.cloud.ecg.so/v1/certificates/uuid fails with:15:22
mkuiper{"errors": [{"status": 500, "code": "server", "links": [], "title": "Remote error: BadRequest Invalid input for field 'identity/password/user/password': None is not of type 'string' (HTTP 400) (Request-ID: req-695c5c7b-8b08-4c48-94e6-fb455bc560e1)\n[u'", "detail": "Remote error: BadRequest Invalid input for field 'identity/password/user/password': None is not of type 'string' (HTTP 400) (Request-ID: req-695c5c7b-8b08-4c415:22
*** salmankhan has quit IRC15:22
mkuiperwill have a look at the magnum logs15:22
strigazimkuiper content of /var/lib/cloud/instance/scripts/part-005  and /etc/sysconfig/heat-params ?15:23
*** salmankhan has joined #openstack-containers15:23
*** hongbin has joined #openstack-containers15:24
mkuiperhttp://paste.openstack.org/show/627101/ and http://paste.openstack.org/show/627102/15:29
*** marst has joined #openstack-containers15:36
mkuiperstrigazi i pasted the requested info15:36
strigaziI don't think it is related but try to add this in your magnum.conf15:37
strigazicluster_user_trust = false15:39
strigazihttps://docs.openstack.org/magnum/latest/configuration/sample-config.html15:39
strigazii the trust section15:39
*** ramishra has quit IRC15:39
strigaziin the trust section15:39
mkuiperwill give that a try.15:41
*** ykarel|away has joined #openstack-containers15:42
mkuiperstarted a build again. What is the option supposed to do?15:47
*** AlexeyAbashkin has quit IRC15:49
mkuiperstrigazi, same result. ca.crt is 0 bytes. I also see that some package upgrades fail due to yum not available on the system15:55
mkuiperdon't know whether that is related15:55
mkuiperis there a specific fedoara-atomic image that you would advice to use?15:56
*** magicboiz has joined #openstack-containers15:58
*** hishh has quit IRC15:59
strigaziwith pike?16:01
*** vijaykc4 has quit IRC16:02
strigazimkuiper https://download.fedoraproject.org/pub/alt/atomic/stable/Fedora-Atomic-26-20170723.0/CloudImages/x86_64/images/Fedora-Atomic-26-20170723.0.x86_64.qcow216:02
*** vijaykc4 has joined #openstack-containers16:03
*** vijaykc4 has quit IRC16:03
*** mkuiper has quit IRC16:05
*** haint has quit IRC16:07
*** manheim has quit IRC16:07
*** magicboiz has quit IRC16:08
*** manheim has joined #openstack-containers16:11
strigazimkuiper check again cloud-init-output16:12
strigaziif the error is again on part005 try to reproduce all the step of that file16:12
*** manheim has quit IRC16:13
*** mjura has quit IRC16:13
*** manheim has joined #openstack-containers16:13
*** janki has quit IRC16:13
*** manheim has quit IRC16:17
*** nguyentrihai has joined #openstack-containers16:20
*** magicboiz has joined #openstack-containers16:21
*** magicboiz has quit IRC16:26
*** magicboiz has joined #openstack-containers16:26
*** itlinux has joined #openstack-containers16:26
*** dpawar has quit IRC16:30
*** vijaykc4 has joined #openstack-containers16:31
*** manheim has joined #openstack-containers16:32
*** manheim has quit IRC16:37
*** ykarel|away has quit IRC16:42
*** manheim has joined #openstack-containers16:42
*** fragatin_ has quit IRC16:45
*** itlinux has quit IRC16:47
*** nguyentrihai has quit IRC16:52
*** dsariel has joined #openstack-containers17:00
*** itlinux has joined #openstack-containers17:02
*** salmankhan has quit IRC17:08
*** jberkus has joined #openstack-containers17:08
*** salmankhan has joined #openstack-containers17:10
*** srihas619 has quit IRC17:12
*** salmankhan has quit IRC17:14
*** fragatina has joined #openstack-containers17:15
*** dsariel has quit IRC17:15
*** itlinux has quit IRC17:15
*** jberkus has quit IRC17:17
*** fragatin_ has joined #openstack-containers17:17
*** pcaruana has quit IRC17:18
*** vijaykc4 has quit IRC17:20
*** fragatina has quit IRC17:22
*** salmankhan has joined #openstack-containers17:25
*** AlexeyAbashkin has joined #openstack-containers17:33
*** manheim has quit IRC17:34
*** dpawar has joined #openstack-containers17:35
*** dpawar has quit IRC17:36
*** dpawar has joined #openstack-containers17:36
*** AlexeyAbashkin has quit IRC17:38
*** absubram has quit IRC17:39
*** jberkus has joined #openstack-containers17:40
*** manheim has joined #openstack-containers17:45
*** itlinux has joined #openstack-containers17:48
*** yamamoto_ has joined #openstack-containers17:51
*** yamamoto has quit IRC17:55
*** vijaykc4 has joined #openstack-containers17:55
*** yamamoto has joined #openstack-containers17:57
*** lpetrut has quit IRC17:59
*** yamamoto_ has quit IRC17:59
*** mgoddard has quit IRC18:04
*** janonymous has quit IRC18:12
*** ricolin has quit IRC18:12
*** dpawar has quit IRC18:21
*** jberkus has quit IRC18:30
*** fragatin_ has quit IRC18:30
*** fragatina has joined #openstack-containers18:30
*** vijaykc4 has quit IRC18:32
*** vijaykc4 has joined #openstack-containers18:32
*** vijaykc4 has quit IRC18:33
*** vijaykc4 has joined #openstack-containers18:36
*** jberkus has joined #openstack-containers18:42
*** jberkus has quit IRC18:47
*** vijaykc4 has quit IRC18:51
*** vijaykc4 has joined #openstack-containers18:52
*** vijaykc4 has quit IRC18:54
*** vijaykc4 has joined #openstack-containers18:59
*** vijaykc4 has quit IRC19:00
openstackgerritMerged openstack/magnum master: Add verify_ca configuration parameter  https://review.openstack.org/44768719:15
*** oikiki has joined #openstack-containers19:18
*** lpetrut has joined #openstack-containers19:19
*** mgoddard has joined #openstack-containers19:21
oikikistrigazi: just saw my first patch was merged!!!!!19:23
*** dsariel has joined #openstack-containers19:25
*** salmankhan has quit IRC19:33
*** jberkus has joined #openstack-containers19:34
*** flwang has quit IRC19:38
*** mgoddard has quit IRC19:49
*** vijaykc4 has joined #openstack-containers19:50
*** flwang has joined #openstack-containers19:51
*** salmankhan has joined #openstack-containers20:07
*** salmankhan has quit IRC20:11
*** jberkus has quit IRC20:19
*** itlinux has quit IRC20:25
*** oikiki has quit IRC20:31
*** vijaykc4 has quit IRC20:55
*** mgoddard has joined #openstack-containers21:06
*** linkmark has joined #openstack-containers21:13
*** jmlowe has joined #openstack-containers21:32
*** dave-mcc_ has quit IRC21:39
*** mgoddard has quit IRC21:44
*** threestrands has joined #openstack-containers21:45
*** threestrands has quit IRC21:45
*** threestrands has joined #openstack-containers21:45
*** fragatina has quit IRC21:45
*** jmlowe has quit IRC21:45
*** fragatina has joined #openstack-containers21:45
*** fragatina has quit IRC21:47
*** fragatina has joined #openstack-containers21:48
*** lpetrut has quit IRC21:57
*** AlexeyAbashkin has joined #openstack-containers22:09
*** Dinesh_Bhor has quit IRC22:11
*** AlexeyAbashkin has quit IRC22:13
*** rcernin has joined #openstack-containers22:20
*** fragatina has quit IRC22:27
*** fragatina has joined #openstack-containers22:29
*** jmlowe has joined #openstack-containers22:32
*** fragatin_ has joined #openstack-containers22:36
*** fragatin_ has quit IRC22:37
*** fragatina has quit IRC22:37
*** fragatina has joined #openstack-containers22:38
*** marst has quit IRC22:46
*** dsariel has quit IRC22:54
*** AlexeyAbashkin has joined #openstack-containers23:08
*** AlexeyAbashkin has quit IRC23:12
*** manheim has quit IRC23:55
« Tuesday, 2017-11-21 Index Thursday, 2017-11-23 »

Generated by irclog2html.py 2.15.3 by Marius Gedminas - find it at mg.pov.lt!