Thursday, 2020-04-30

« Wednesday, 2020-04-29 Index Friday, 2020-05-01 »
openstackgerritMerged openstack/python-magnumclient master: Add py38 package metadata  https://review.opendev.org/72377100:36
*** k_mouza has joined #openstack-containers03:57
*** dasp_ has joined #openstack-containers03:58
*** dasp has quit IRC04:00
*** k_mouza has quit IRC04:01
*** ondrejburian has quit IRC04:15
*** ykarel|away is now known as ykarel04:15
*** ondrejburian has joined #openstack-containers04:17
*** vishalmanchanda has joined #openstack-containers05:07
*** jmlowe has quit IRC05:15
*** jmlowe has joined #openstack-containers05:26
*** sapd1_x has joined #openstack-containers05:30
*** udesale has joined #openstack-containers05:41
*** pcaruana has joined #openstack-containers06:20
*** sapd1_x has quit IRC06:22
*** xinliang has joined #openstack-containers06:33
openstackgerritFeilong Wang proposed openstack/magnum master: [k8s] Support CA certs rotate  https://review.opendev.org/72420306:51
*** belmoreira has joined #openstack-containers06:58
*** born2bake has joined #openstack-containers07:07
*** PrinzElvis has joined #openstack-containers07:13
born2bakebrtknr hello07:15
*** xinliang has quit IRC07:19
*** born2bake has quit IRC07:36
*** born2bake has joined #openstack-containers07:40
*** xinliang has joined #openstack-containers07:45
openstackgerritSpyros Trigazis proposed openstack/magnum stable/ussuri: Update .gitreview for stable/ussuri  https://review.opendev.org/72252608:02
openstackgerritSpyros Trigazis proposed openstack/magnum stable/ussuri: Update TOX_CONSTRAINTS_FILE for stable/ussuri  https://review.opendev.org/72252708:03
openstackgerritSpyros Trigazis proposed openstack/magnum master: Update master for stable/ussuri  https://review.opendev.org/72252808:03
openstackgerritSpyros Trigazis proposed openstack/magnum master: Add Python3 victoria unit tests  https://review.opendev.org/72252908:04
openstackgerritFeilong Wang proposed openstack/magnum master: Deprecation note for devicemapper and overlay  https://review.opendev.org/72216308:05
*** PrinzElvis has quit IRC08:07
*** PrinzElvis has joined #openstack-containers08:07
*** PrinzElvis has quit IRC08:11
*** PrinzElvis has joined #openstack-containers08:12
brtknrborn2bake: hi08:17
born2bakeyeah, sorry I left irc chat could not see if you responded or not.08:17
born2bakeI am wondering, https://github.com/stackhpc/magnum-terraform/blob/master/vars.tf - if something better to be changed in vars so I can create cluster08:18
born2bakeCurrently, its failing due to heat_container_agent_tag      = "ussuri-dev"08:18
born2bakeit cant find that image08:18
brtknrborn2bake: still there from what i can tell https://hub.docker.com/r/openstackmagnum/heat-container-agent/tags08:19
*** xinliang has quit IRC08:19
brtknrborn2bake: can your VM reach the internet?08:20
born2bakehm might be the case yeah...08:20
born2bakeAlso, I tested my octavia setup with kubespray and its working perfectly well. Thus, will try to troubleshoot why its not working with masters created by magnum.08:27
openstackgerritFeilong Wang proposed openstack/magnum master: [WIP] List all nodes of a cluster  https://review.opendev.org/72460908:29
openstackgerritMerged openstack/magnum master: Update master for stable/ussuri  https://review.opendev.org/72252808:29
*** ykarel is now known as ykarel|lunch08:39
*** yolanda has joined #openstack-containers08:41
*** k_mouza has joined #openstack-containers09:08
*** k_mouza has quit IRC09:20
*** k_mouza has joined #openstack-containers09:31
openstackgerritMerged openstack/magnum stable/ussuri: Update .gitreview for stable/ussuri  https://review.opendev.org/72252609:35
*** brtknr has quit IRC09:37
openstackgerritMerged openstack/magnum stable/ussuri: Update TOX_CONSTRAINTS_FILE for stable/ussuri  https://review.opendev.org/72252709:39
openstackgerritFeilong Wang proposed openstack/magnum master: [k8s] Fix docker storage of Fedora CoreOS  https://review.opendev.org/71829609:40
*** brtknr has joined #openstack-containers09:42
*** flwang1 has quit IRC09:48
openstackgerritMerged openstack/magnum master: Add Python3 victoria unit tests  https://review.opendev.org/72252909:49
openstackgerritSpyros Trigazis proposed openstack/magnum stable/train: Use cluster name for fixed_network instead of private  https://review.opendev.org/72228010:06
*** xinliang has joined #openstack-containers10:20
born2bakebrtknr when magnum automatically creates fixed networks, can I somehow specify what subnet I want to have in them?10:21
*** ykarel|lunch is now known as ykarel10:25
brtknrborn2bake: umm10:41
brtknras in specify the cidr?10:41
born2bakeyes10:41
born2bakecause by default its 10.0.0.0/2410:42
brtknryes https://github.com/openstack/magnum/blob/master/magnum/drivers/k8s_fedora_coreos_v1/templates/kubecluster.yaml#L17310:43
*** k_mouza has quit IRC10:43
brtknrsadly this is not document, would love to have this in there if you are happy to contribute: https://docs.openstack.org/magnum/latest/user/#flannel-network-cidr10:46
*** k_mouza has joined #openstack-containers10:55
*** rcernin has quit IRC11:06
*** xinliang has quit IRC11:07
*** udesale_ has joined #openstack-containers11:12
*** udesale has quit IRC11:15
openstackgerritMerged openstack/magnum stable/train: Use cluster name for fixed_network instead of private  https://review.opendev.org/72228012:03
*** k_mouza has quit IRC12:03
born2bakefor some reason i have keypair in my cluster template, in my cluster, and still isntances are created without key O_O12:03
*** rcernin has joined #openstack-containers12:31
*** ramishra has quit IRC12:41
*** k_mouza has joined #openstack-containers12:49
openstackgerritMerged openstack/python-magnumclient master: Fix raw_request of SessionClient  https://review.opendev.org/72424313:03
*** ykarel is now known as ykarel|afk13:14
*** rcernin has quit IRC13:29
*** ramishra has joined #openstack-containers13:36
*** ramishra has quit IRC13:44
*** ramishra has joined #openstack-containers13:57
*** ykarel|afk is now known as ykarel14:09
*** colin- has joined #openstack-containers14:26
*** ramishra has quit IRC14:31
born2bakebrtknr how could I fix Error from server (Forbidden): nodes is forbidden: User "Magnum User" cannot list resource "nodes" in API group "" at the cluster scope ?14:34
brtknri think you need to configure k8s_keystone_auth_policy.json file14:35
*** ricolin has quit IRC14:37
born2bakein keystone?14:42
brtknrno /etc/magnum/14:56
brtknrdid you use --use-keystone flag?14:56
brtknrI dont know where you are seeing this error14:56
*** ricolin has joined #openstack-containers15:01
*** k_mouza has quit IRC15:04
born2bakeusing terraform scripts of yours15:05
born2bakeit export config files15:05
born2bakein the end15:05
born2bakebrtknr http://paste.openstack.org/show/792953/15:08
brtknrborn2bake: ok15:09
brtknrand thats not working?15:09
*** k_mouza has joined #openstack-containers15:10
born2bakethen i go to cd ~/.kube/k8s-calico-coreos15:10
born2bakeError from server (Forbidden): nodes is forbidden: User "Magnum User" cannot list resource "nodes" in API group "" at the cluster scope15:10
born2bakewhere can I specify that flag ? --use-keystone flag15:12
brtknrborn2bake: i really dont understand your issue?15:13
brtknrwhy do you cd ~/.kube/k8s-calico-coreos?15:13
brtknrdid you do export KUBECONFIG=~/.kube/k8s-calico-coreos/config?15:13
born2bakeKUBECONFIG=~/.kube/k8s-calico-coreos/config15:16
born2bakebn@WINDOWS-MMBRA93:~/.kube/k8s-calico-coreos$ kubectl get node15:16
born2bakeError from server (Forbidden): nodes is forbidden: User "Magnum User" cannot list resource "nodes" in API group "" at the cluster scope15:16
brtknrborn2bake: is this devstack?15:16
born2bakekolla15:17
*** ricolin has quit IRC15:17
brtknrwhat do you have in your /etc/kolla/magnum/15:17
born2bakeyou mean conf file?15:30
born2bakebrtknr in magnum I have keystone_auth_default_policy.sample file15:36
born2bakeI assume for kolla it needs to be reconfigured yeah?15:36
*** sapd1_x has joined #openstack-containers15:37
brtknryes i think so15:38
born2bakealso wondering, if autoscale is working fine for you? cause I am getting E0430 15:39:10.561649       1 leaderelection.go:320] error retrieving resource lock kube-system/cluster-autoscaler: leases.coordination.k8s.io "cluster-autoscaler" is forbidden: User "system:serviceaccount:kube-system:cluster-autoscaler-account" cannot get resource "leases" in API group "coordination.k8s.io" in the namespace "kube-system"15:39
born2bakedeploy is up and running but not functioning15:39
*** ioni has quit IRC15:43
*** sapd1_x has quit IRC15:44
*** belmoreira has quit IRC15:49
born2bakewith 1.18.1 auto-scaler, rbac needs to be updated.15:54
brtknrborn2bake: are you trying to use magnum as a non-admin user?15:54
born2bakenope, i am authorized...using openstack cli without any issues15:55
born2bakeI think cosmicsound had the same problem... he is using k-a as well15:55
born2bakewe cant use kubectl externally...only on master node15:56
brtknrborn2bake: this is basically what you need to do: https://github.com/openstack/magnum/blob/master/devstack/lib/magnum#L24516:06
born2bakebut its in devstack only right?16:06
brtknrborn2bake: well, yes but also generally applicable.16:06
brtknrits quite a permissive setting, you can make it more restrictive if you like16:07
brtknrgives the user who created the cluster admin rights on the cluster16:07
born2bakeI am not really familiar with repo yet :) not sure where to add it if not in devstack16:07
brtknr/etc/kolla/magnum/16:13
brtknrto /etc/kolla/magnum/16:14
born2bakewhich file it should be? there is no magnum file like you have in devstack16:17
born2bakelxkong https://github.com/openstack/magnum/blob/df3d5a31502304a61ec53ac7dc65ee3ff3d45001/magnum/drivers/common/templates/kubernetes/fragments/enable-auto-scaling.sh I think needs to be updated if using 1.18 version. Its failing due to https://github.com/kubernetes/autoscaler/issues/2628 ; Once I ve added coordination.k8s.io  - "leases.coordination.k8s.io "cluster-autoscaler" is forbidden: User "system:serviceaccount:kube-system:cluster-a16:26
born2bakeutoscaler-account" cannot get resource "leases" in API group "coordination.k8s.io" in the namespace "kube-system" error was gone. However, I am still getting: E0430 16:25:53.824519       1 reflector.go:178] k8s.io/client-go/informers/factory.go:135: Failed to list *v1.CSINode: csinodes.storage.k8s.io is forbidden: User "system:serviceaccount:kube-system:cluster-autoscaler-account" cannot list resource "csinodes" in API group16:26
born2bake"storage.k8s.io" at the cluster scope16:26
*** ykarel is now known as ykarel|afk16:31
brtknrplease propose a patch if you think that will fix the issue :)16:33
brtknrborn2bake: i can also see the issue16:33
brtknrits an easy first patch :)16:33
brtknrborn2bake: ^16:34
*** ykarel|afk is now known as ykarel|away16:36
*** ioni has joined #openstack-containers16:36
*** udesale_ has quit IRC16:39
born2bakeI wd add it but it still didnt fix the whole issue16:50
born2bakejust tested also auto-healer...and got error http://paste.openstack.org/show/792962/16:51
born2bakeso node has been deleted... but new node didnt come up. while autoscaler sends - W0430 16:50:11.579712       1 scale_up.go:383] Node group default-worker is not ready for scaleup - backoff16:52
brtknryou should look at why the new node cannot be added17:08
brtknrdo you have enough capacity?17:08
*** vishalmanchanda has quit IRC17:29
*** k_mouza has quit IRC18:12
*** jmlowe has quit IRC18:24
*** jmlowe has joined #openstack-containers18:27
born2bakebrtknr is there any way I can delay autoscaler yaml file deployment?18:55
born2bakeI noticed that autoscaler is failing if its applied instantly when cluster is created18:55
brtknrborn2bake: do you have nested virt enabled?19:01
born2bakeI assume, if my env was deployed via kolla-ansible, it should have added it...19:06
born2bakecat /sys/module/kvm_intel/parameters/nested19:08
born2bakeY19:08
*** markguz_ has joined #openstack-containers19:43
markguz_Hi container folks.  Quick question. can i run the latest version of magnum (10rc) with a downlevel keystone (rocky) ?19:44
*** k_mouza has joined #openstack-containers19:57
*** k_mouza has quit IRC20:02
*** k_mouza has joined #openstack-containers20:13
born2bakebrtknr checked twice... autoscaler is failing for me if its instantly applied once cluster is created but not all worker nodes are ready yet20:15
born2bakeso need to put some delay on it i guess somehow :)20:15
born2bakeso manifest will be applied after some time20:16
*** k_mouza has quit IRC20:17
*** mgariepy has quit IRC20:22
*** mgariepy has joined #openstack-containers20:32
brtknrborn2bake: ok i will test again tomorrow but i have never seen this issue before20:50
brtknrplease file a bug on storyboard describing how to reproduce this20:51
*** Jeffrey4l has quit IRC20:53
*** johanssone has quit IRC20:53
*** openstackgerrit has quit IRC20:53
*** Jeffrey4l has joined #openstack-containers20:53
*** johanssone has joined #openstack-containers20:54
born2bakebrtknr actually, no I just started autoscaler after cluster was up-to-date setup....and it still failing with http://paste.openstack.org/show/792970/21:12
born2bakeso the only way I can make it working....I start cluster with autoscaler enabled but with lease and csi nodes apigroups errors....once i fix them, then scaling is working properly21:13
*** rcernin has joined #openstack-containers22:04
*** openstackgerrit has joined #openstack-containers22:27
openstackgerritFeilong Wang proposed openstack/magnum master: Deprecation note for devicemapper and overlay  https://review.opendev.org/72216322:27
*** rcernin has quit IRC22:33
*** rcernin has joined #openstack-containers22:34
born2bakepretty sure its something related to cloud provider...not autoscaler22:48
born2bakesometimes when I deploy autoscaler....cloud provider fails with errors...crash and then autoscaler crash afterwards22:48
*** born2bake has quit IRC23:26
« Wednesday, 2020-04-29 Index Friday, 2020-05-01 »

Generated by irclog2html.py 2.17.2 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!