Friday, 2019-12-06

« Thursday, 2019-12-05 Index Saturday, 2019-12-07 »
*** xinliang has joined #openstack-containers00:02
xinliangHello, this is xinliang from Linaro Datercenter and Cloud Working Group.00:14
xinliangWe are working on make magnum running on arm64 now.00:14
xinliangThese are things need to do, acording to our ivestigation/validation:00:14
xinliang1, Build magnum heat agent and k8s images for arm64.00:15
xinliangWe found some dockerfiles are hard coded to amd64 arch.00:15
xinlianghttps://github.com/openstack/magnum/tree/master/dockerfiles00:15
xinliangWhat else might need to do for arm64, or other things arch specific?00:16
*** elenalindq has quit IRC00:40
*** ricolin has joined #openstack-containers01:10
flwangxinliang: at this moment, let's say fedora coreos will be the driver02:05
flwangfor that case, you need to make sure the hyperkube can run on arm6402:06
flwangand heat-container-agent02:06
flwangthe docker images you can see under https://github.com/openstack/magnum/tree/master/dockerfiles, some of them won't be used for fedora coreos02:07
flwangsince we will switch to podman02:07
flwangxinliang: ^02:07
xinliangflwang: Thanks for replying.02:07
xinliangI see from the release notes that federa coreos support is just add in train. And federa atomic official doc says coreos is replaing atomic.02:10
xinliangSo shall I start with fedora atomic or fedora coreos? flwang02:10
flwangfedora coreos02:11
flwangfedora atomic has been end of life since 26th Nov 201902:11
flwangthough it's still supported in Magnum02:11
flwangthat's why we are adding the new fedora coreos driver02:11
xinliangoh, I got it.02:11
xinliangso I need to set USE_PODMAN to 'true' right? when I create the cluster template02:13
xinliangflwang: Do you have any example or advice to support multiarch dockerfile?02:15
flwangxinliang: i don't have much experience in this area, but i'm happy to support you.02:19
flwangfirstly, i would suggest to have a workable magnum env02:19
flwangit doesn't need to be a arm64 env02:19
flwangjust make sure it works02:20
flwangand then you can start to get the arm64 based hyperkube and try to build an arm64 docker image for the heat-container-agent and upload to your personal dockerhub02:20
flwangthen start to test more02:20
xinliangok, thanks flwang.02:22
xinliangI now have a setup of magnum dev env deployed by kolla. Or if I need to use devstack to deploy magnum for developing?02:24
xinliangI will look into hyperkub then. thanks flwang :-)02:24
flwangas long as it works, it doesn't need to be a devstack, kolla is OK02:25
xinliangok, got it02:25
*** kevinz has joined #openstack-containers02:50
*** openstackstatus has joined #openstack-containers03:41
*** ChanServ sets mode: +v openstackstatus03:41
*** udesale has joined #openstack-containers04:00
*** ykarel|away has joined #openstack-containers04:01
*** dave-mccowan has quit IRC04:04
*** xinliang has quit IRC04:09
*** ricolin has quit IRC04:16
*** ricolin has joined #openstack-containers04:18
*** ykarel|away is now known as ykarel04:21
*** rcernin has quit IRC06:03
*** elenalindq has joined #openstack-containers06:33
openstackgerritAndrei Nistor proposed openstack/magnum stable/train: Change k8s-keystone-auth docker repo  https://review.opendev.org/69762407:08
*** xinliang has joined #openstack-containers07:15
openstackgerritAndrei Nistor proposed openstack/magnum stable/train: Change k8s-keystone-auth docker repo  https://review.opendev.org/69762407:24
*** rcernin has joined #openstack-containers07:25
andreinGood morning everyone!07:25
*** elenalindq has quit IRC07:27
*** ykarel is now known as ykarel|lunch07:46
xinliangmorning andrein07:58
*** pcaruana has joined #openstack-containers08:11
*** elenalindq has joined #openstack-containers08:15
*** ykarel|lunch is now known as ykarel08:57
*** xinliang has quit IRC09:45
brtknrmorning all09:49
andreinhi brtknr!09:58
andreinany ideas why https://storyboard.openstack.org/#!/story/2006967 is not updating with the changes in gerrit?09:59
brtknrandrein: because you removed the reference to task10:00
andreinHmm, I think I never added that referencce in the first place :(10:00
brtknrandrein: actually, looks like the orginnal story never had a reference to task :)10:01
andreinis there any way to fix this?10:01
brtknryou can add it to the cherrypick10:01
andreinok10:01
openstackgerritAndrei Nistor proposed openstack/magnum stable/train: Change k8s-keystone-auth docker repo  https://review.opendev.org/69762410:04
andreinthat was it...10:05
andreinbrtknr: any thoughts on this? https://storyboard.openstack.org/#!/story/200699110:06
brtknrandrein: I think there is an CLI command to rotate certificates10:07
andreinbrtknr: 'rotate_ca_certificate' is not supported by this driver (HTTP 400) (Request-ID: req-4bd0ca58-0f9b-4b22-96e5-3354b7b43669)10:08
brtknrwhich driver are you using?10:10
brtknrcoreos?10:10
andreinusing fedora atomic10:11
andreinmy current use case is with terraform, I'd like to be able to request short-lived certificates (< 1h?) to authenticate to the kubernetes cluster created via terraform using the helm/kubernetes provider.10:11
*** rcernin has quit IRC10:12
andreinIdeally, I'd like an API endpoint to list/revoke certificates, but I don't think I'm up for that. Short-lived certificates is a good enough compromise for me.10:13
*** rcernin has joined #openstack-containers10:16
*** rcernin has quit IRC10:33
openstackgerritMerged openstack/magnum stable/train: bug: Use configured heat-container-agent tag  https://review.opendev.org/69688710:43
*** ramishra has quit IRC11:15
brtknrandrein: do you have use_podman enabled?11:22
openstackgerritBharat Kunwar proposed openstack/magnum master: Add compatibility matrix for kube_tag  https://review.opendev.org/68567511:24
*** ramishra has joined #openstack-containers11:31
openstackgerritMerged openstack/magnum stable/train: Change k8s-keystone-auth docker repo  https://review.opendev.org/69762411:43
openstackgerritBharat Kunwar proposed openstack/magnum master: Add compatibility matrix for kube_tag  https://review.opendev.org/68567511:45
openstackgerritMerged openstack/magnum master: bug: Only query Cinder API if volume size > 0  https://review.opendev.org/69523911:48
openstackgerritMerged openstack/magnum master: Add nginx_ingress_controller_chart_tag  https://review.opendev.org/69428611:48
openstackgerritMerged openstack/magnum master: [k8s] Fix rolling upgrade with podman  https://review.opendev.org/69620411:48
openstackgerritBharat Kunwar proposed openstack/magnum stable/train: bug: Only query Cinder API if volume size > 0  https://review.opendev.org/69765011:49
openstackgerritBharat Kunwar proposed openstack/magnum stable/train: [k8s] Fix rolling upgrade with podman  https://review.opendev.org/69765111:50
openstackgerritBharat Kunwar proposed openstack/magnum stable/train: Add nginx_ingress_controller_chart_tag  https://review.opendev.org/69765211:51
*** udesale has quit IRC12:00
openstackgerritBharat Kunwar proposed openstack/magnum master: Add compatibility matrix for kube_tag  https://review.opendev.org/68567512:11
*** mgoddard has quit IRC13:44
andreinbrtknr: no, I don't use podman. Is this related to the CA question earlier?13:58
brtknrandrein: yes thats right14:01
andreinhmmmm14:02
brtknri havent used the rotate ca option14:02
brtknrperhaps its a bug?14:02
andreinI think it was never implemented: https://opendev.org/openstack/magnum/src/branch/master/magnum/drivers/common/driver.py#L23714:05
andreinI can't find an implementation on any driver14:06
*** ignaziocassano1 has joined #openstack-containers14:08
ignaziocassano1Hello, kubernetes containers on magnum stein is not working. Pods in kube-system are in pending state ... An help, PLEASE ?14:10
brtknrandrein: looking at the code, the api exists but no implementation14:11
brtknrandrein: ah you're already on the case :)14:12
brtknrignaziocassano1: what version kube_tag are you trying to run?14:12
brtknrignaziocassano1: please provide more context14:12
*** mgoddard has joined #openstack-containers14:13
ignaziocassano1on mailing list they suggested to use: heat_container_agent_tag=train-stable,kube_tag=v1.14.814:13
ignaziocassano1I do not know why they suggested train-stable14:15
brtknrignaziocassano1: it is easier to debug14:16
brtknrbecause it produces output to log14:16
brtknrwhat is your output of kubectl get pods -A14:16
brtknrkubectl get all -A14:16
brtknrignaziocassano1: btw that was me who suggest using train-stable :)14:17
ignaziocassano1on the kube master the cloud-init logs does not reports erros14:17
ignaziocassano1I am sorry, I did not know who you are by you nick name :-)14:19
ignaziocassano1kubectl get nodes reports two nodes but without roles :-(14:20
ignaziocassano1[centos@kubectl ~]$ kubectl get nodes14:20
ignaziocassano1NAME                         STATUS   ROLES    AGE   VERSION14:20
ignaziocassano1kube-qw7jw4ko7ykc-master-0   Ready    <none>   59m   v1.14.814:20
ignaziocassano1kube-qw7jw4ko7ykc-minion-0   Ready    <none>   59m   v1.14.814:20
ignaziocassano1[centos@kubectl ~]$ kubectl get pod -n kube-system14:21
ignaziocassano1NAME                                   READY   STATUS    RESTARTS   AGE14:21
ignaziocassano1coredns-865bd969f-gdt88                0/1     Pending   0          62m14:21
ignaziocassano1heapster-7bf5794cc7-gm6bs              0/1     Pending   0          62m14:21
ignaziocassano1kube-dns-autoscaler-57bd7f54d5-vdn6r   0/1     Pending   0          62m14:21
ignaziocassano1kube-flannel-ds-amd64-gjdp5            1/1     Running   0          62m14:21
ignaziocassano1kube-flannel-ds-amd64-mqpdn            1/1     Running   0          62m14:21
ignaziocassano1kubernetes-dashboard-d48c76949-ng4qb   0/1     Pending   0          62m14:21
ignaziocassano1[centos@kubectl ~]$ kubectl get pods -A14:22
ignaziocassano1NAMESPACE     NAME                                   READY   STATUS    RESTARTS   AGE14:22
ignaziocassano1kube-system   coredns-865bd969f-gdt88                0/1     Pending   0          63m14:22
ignaziocassano1kube-system   heapster-7bf5794cc7-gm6bs              0/1     Pending   0          63m14:22
ignaziocassano1kube-system   kube-dns-autoscaler-57bd7f54d5-vdn6r   0/1     Pending   0          63m14:22
ignaziocassano1kube-system   kube-flannel-ds-amd64-gjdp5            1/1     Running   0          63m14:22
ignaziocassano1kube-system   kube-flannel-ds-amd64-mqpdn            1/1     Running   0          63m14:22
ignaziocassano1kube-system   kubernetes-dashboard-d48c76949-ng4qb   0/1     Pending   014:22
ignaziocassano1NAMESPACE     NAME                                       READY   STATUS    RESTARTS   AGE14:24
ignaziocassano1kube-system   pod/coredns-865bd969f-gdt88                0/1     Pending   0          65m14:24
ignaziocassano1kube-system   pod/heapster-7bf5794cc7-gm6bs              0/1     Pending   0          65m14:24
ignaziocassano1kube-system   pod/kube-dns-autoscaler-57bd7f54d5-vdn6r   0/1     Pending   0          65m14:24
ignaziocassano1kube-system   pod/kube-flannel-ds-amd64-gjdp5            1/1     Running   0          65m14:24
ignaziocassano1kube-system   pod/kube-flannel-ds-amd64-mqpdn            1/1     Running   0          65m14:24
ignaziocassano1kube-system   pod/kubernetes-dashboard-d48c76949-ng4qb   0/1     Pending   0          65m14:24
ignaziocassano1NAMESPACE     NAME                           TYPE        CLUSTER-IP       EXTERNAL-IP   PORT(S)                  AGE14:24
ignaziocassano1default       service/kubernetes             ClusterIP   10.254.0.1       <none>        443/TCP                  65m14:24
ignaziocassano1kube-system   service/heapster               ClusterIP   10.254.103.116   <none>        80/TCP                   65m14:24
ignaziocassano1kube-system   service/kube-dns               ClusterIP   10.254.0.10      <none>        53/UDP,53/TCP,9153/TCP   65m14:24
ignaziocassano1kube-system   service/kubernetes-dashboard   ClusterIP   10.254.164.121   <none>        443/TCP                  65m14:24
ignaziocassano1NAMESPACE     NAME                                                DESIRED   CURRENT   READY   UP-TO-DATE   AVAILABLE   NODE SELECTOR                     AGE14:24
ignaziocassano1kube-system   daemonset.apps/k8s-keystone-auth                    0         0         0       0            0           node-role.kubernetes.io/master=   65m14:24
ignaziocassano1kube-system   daemonset.apps/kube-flannel-ds-amd64                2         2         2       2            2           beta.kubernetes.io/arch=amd64     65m14:24
ignaziocassano1kube-system   daemonset.apps/npd                                  0         0         0       0            0           <none>                            65m14:24
ignaziocassano1kube-system   daemonset.apps/openstack-cloud-controller-manager   0         0         0       0            0           node-role.kubernetes.io/master=   65m14:24
ignaziocassano1NAMESPACE     NAME                                   READY   UP-TO-DATE   AVAILABLE   AGE14:24
ignaziocassano1kube-system   deployment.apps/coredns                0/1     1            0           65m14:24
ignaziocassano1kube-system   deployment.apps/heapster               0/1     1            0           65m14:24
ignaziocassano1kube-system   deployment.apps/kube-dns-autoscaler    0/1     1            0           65m14:24
ignaziocassano1kube-system   deployment.apps/kubernetes-dashboard   0/1     1            0           65m14:24
ignaziocassano1NAMESPACE     NAME                                             DESIRED   CURRENT   READY   AGE14:24
ignaziocassano1kube-system   replicaset.apps/coredns-865bd969f                1         1         0       65m14:24
ignaziocassano1kube-system   replicaset.apps/heapster-7bf5794cc7              1         1         0       65m14:25
ignaziocassano1kube-system   replicaset.apps/kube-dns-autoscaler-57bd7f54d5   1         1         0       65m14:25
ignaziocassano1kube-system   replicaset.apps/kubernetes-dashboard-d48c76949   1         1         0       65m14:25
ignaziocassano1[centos@kubectl ~]$14:25
ignaziocassano1Do you need I share my cluster template ?14:28
ignaziocassano1help /nick14:31
brtknrI know what your problem is14:34
brtknrignaziocassano1: you need to use stein-8.2.0 release14:34
brtknrwe have the fix for  your issue there14:34
ignaziocassano1I installed stein via yum tool .....Is there any rpm package update ?14:36
ignaziocassano1I am using centos14:37
brtknrignaziocassano1: yep https://trunk.rdoproject.org/centos7-stein/1d/ce/1dcedf17314ff111ce5458896a447c2dd2e7f50d_9591888a/rpmbuild.log14:37
brtknrit was released this afternoon14:37
brtknr2 hours ago14:37
ignaziocassano1OK14:37
ignaziocassano1I will test it. Many thanks14:38
ignaziocassano1mmmm ... if I run yum updtate on my controllers it reports no updates are available :-(14:40
*** goldyfruit___ has joined #openstack-containers14:41
ignaziocassano1If I understood well I must enable delorean stein ?14:42
*** ykarel is now known as ykarel|afk14:50
brtknrignaziocassano1: i am not sure how long releases take to get published14:51
andreinbrtknr: is there a reason most tags can't be updated on a running cluster?14:51
ignaziocassano1Many thanks for your help. I'll check when updates will be released14:54
andreinbrtknr: I've read in the 9.1.0 release notes that kube_tag can be changed during a cluster upgrade, why can't we do the same for tags like min_node_count, max_node_count, autoscaling_enabled, monitoring_enabled etc14:56
openstackgerritBharat Kunwar proposed openstack/magnum master: bug: cluster creation without docker_volume_size  https://review.opendev.org/69767114:58
openstackgerritBharat Kunwar proposed openstack/magnum master: bug: cluster creation without docker_volume_size  https://review.opendev.org/69767115:00
brtknrandrein: those pieces of code get deployed during cluster bootstrapping15:01
brtknrI didnt design this :)15:01
brtknrThe way things work under the hood, its imperative, not declaritive like kubernetes15:01
brtknrthere is no "controller-manager" that tries to converge desired state with actual state15:02
brtknrit would be possible to do but would require time and commitment15:02
brtknrhence some things can be changed like node_count etc.15:03
andreinwhere can I read more about how magnum works internally?15:03
brtknrbut things like max_node_count, are cluster variables etc. cannot be changed by magnum15:03
brtknryou can still edit the autoscaling daemonset15:03
brtknrand change the min/max node count15:03
brtknror deployment...15:04
brtknrnot sure what it is15:04
brtknrandrein: probably the docs?15:04
*** dave-mccowan has joined #openstack-containers15:05
*** goldyfruit___ is now known as goldyfruit15:07
*** dave-mccowan has quit IRC15:10
andreindocs are pretty dry on the internals, unfortunately15:13
brtknrstrigazi: need a quick review for a semi-urgent bugfix: https://review.opendev.org/69767115:13
brtknrandrein: can you show me an example of what a good internals doc looks like for another openstack project?15:17
andreinbrtknr: that's a good question, I've found https://docs.openstack.org/octavia/latest/reference/introduction.html enlightening when installing octavia for the first time :)15:19
brtknrandrein: the wiki might be useful, there is a diagram of the architecture: https://wiki.openstack.org/wiki/Magnum15:20
andreinthanks!15:22
*** ignaziocassano1 has quit IRC15:24
*** KeithMnemonic has joined #openstack-containers15:29
*** ykarel|afk is now known as ykarel|away15:38
*** ykarel|away has quit IRC15:49
*** elenalindq has quit IRC16:26
*** lpetrut has quit IRC16:35
*** ykarel|away has joined #openstack-containers17:16
*** KeithMnemonic has quit IRC17:22
*** pcaruana has quit IRC17:23
*** ricolin has quit IRC17:55
*** lpetrut has joined #openstack-containers20:11
*** lpetrut has quit IRC20:56
*** irclogbot_3 has quit IRC21:45
*** elenalindq has joined #openstack-containers22:04
*** ykarel|away has quit IRC22:11
*** goldyfruit has quit IRC22:12
*** ramishra has quit IRC23:48
« Thursday, 2019-12-05 Index Saturday, 2019-12-07 »

Generated by irclog2html.py 2.15.3 by Marius Gedminas - find it at mg.pov.lt!