Thursday, 2015-07-16

« Wednesday, 2015-07-15 Index Friday, 2015-07-17 »
*** ijw has quit IRC00:02
*** ijw has joined #openstack-ironic00:03
*** Sukhdev has quit IRC00:03
*** Nisha_away has quit IRC00:09
*** mtanino has quit IRC00:13
*** naohirot has joined #openstack-ironic00:22
*** achanda_ has quit IRC00:26
*** ijw_ has joined #openstack-ironic00:31
*** mitchjameson has quit IRC00:32
*** ijw has quit IRC00:34
*** yuanying_ has joined #openstack-ironic00:36
*** yuanying has quit IRC00:40
*** yuanying_ has quit IRC00:42
*** yonglihe has joined #openstack-ironic00:43
*** yuanying has joined #openstack-ironic00:45
*** Pradip has quit IRC00:48
*** cing has joined #openstack-ironic00:50
*** ijw_ has quit IRC00:50
*** ijw has joined #openstack-ironic00:51
*** yuanying has quit IRC00:52
*** davideagnello has quit IRC00:52
*** davideagnello has joined #openstack-ironic00:54
*** yuanying has joined #openstack-ironic01:12
*** lazy_prince has joined #openstack-ironic01:14
*** openstack has joined #openstack-ironic01:25
*** ijw has quit IRC01:32
openstackgerritJim Rollenhagen proposed openstack/ironic: Remove requirements.txt from tox.ini deps  https://review.openstack.org/20234901:36
*** ijw has joined #openstack-ironic01:36
*** puranamr has joined #openstack-ironic01:36
*** lazy_prince has quit IRC01:43
*** ijw has quit IRC01:49
*** puranamr has quit IRC02:03
*** puranamr has joined #openstack-ironic02:18
*** ijw has joined #openstack-ironic02:24
jrolllifeless: am I doing this right https://review.openstack.org/#/c/202349/02:34
jrolltests passed, I assume that's a good thing :P02:34
lifelessjroll: yup, commented there for you02:37
jrollthanks02:37
jrolllifeless: yeah, I wondered about that02:37
jrollit's basically generating a picture in our docs02:37
jrolland it's late here02:37
jrollso I figured deal with it later02:38
lifelessyeah02:38
lifelessI'd just submit the g-r change to get the ball rolling on it02:39
lifelessnothing more can be done right away anyhow02:39
jrolllifeless: well the thing is, that never runs in CI02:40
jrolland devs likely never run it, maybe occassionally02:40
*** puranamr has quit IRC02:40
jrollI'll let others decide if they want to deal with that02:41
lifelessjroll: so its docs right?02:41
jrollkind of02:41
lifelessjroll: why wouldn't it get checked for validity in CI ?02:42
jrollI'm not 100% sure, I just learned about it02:42
lifelessanyhow, sure02:42
*** hakimo_ has joined #openstack-ironic02:53
*** hakimo has quit IRC02:54
*** ijw has quit IRC02:56
*** bradjones has quit IRC03:14
*** yuanying_ has joined #openstack-ironic03:16
*** yuanying_ has quit IRC03:18
*** yuanying has quit IRC03:18
*** yuanying_ has joined #openstack-ironic03:18
*** bradjones has joined #openstack-ironic03:19
*** bradjones has quit IRC03:19
*** bradjones has joined #openstack-ironic03:19
*** pal has joined #openstack-ironic03:26
openstackgerritZhenguo Niu proposed openstack/python-ironicclient: Filtering nodes by provision state  https://review.openstack.org/19701203:27
*** yuanying_ has quit IRC03:30
*** yuanying has joined #openstack-ironic03:32
*** hblixt has joined #openstack-ironic03:35
*** yuanying has quit IRC03:37
*** yuanying has joined #openstack-ironic03:38
*** lazy_prince has joined #openstack-ironic03:38
openstackgerritMerged openstack/bifrost: Minor README fix for supported drivers  https://review.openstack.org/20083703:42
openstackgerritMerged openstack/bifrost: Correct requirements  https://review.openstack.org/20229503:43
openstackgerritMerged openstack/bifrost: Sync with global requirements  https://review.openstack.org/20229703:43
*** zsmithnyc has quit IRC03:45
*** lekha has quit IRC03:45
*** h00327910_ has quit IRC03:46
*** Nisha has joined #openstack-ironic03:46
*** boris-42 has quit IRC03:46
*** Ng has quit IRC03:47
*** aweeks has quit IRC03:47
*** coolsvap|away is now known as coolsvap03:47
*** zsmithnyc has joined #openstack-ironic03:57
*** lekha has joined #openstack-ironic03:58
*** yuanying has quit IRC04:00
*** yuanying has joined #openstack-ironic04:01
*** achanda has joined #openstack-ironic04:02
*** yuanying has quit IRC04:02
*** aweeks has joined #openstack-ironic04:04
*** yuanying has joined #openstack-ironic04:07
*** boris-42 has joined #openstack-ironic04:07
*** ijw has joined #openstack-ironic04:10
*** Ng has joined #openstack-ironic04:10
*** h00327910_ has joined #openstack-ironic04:10
*** hblixt has quit IRC04:11
*** hemna has joined #openstack-ironic04:11
*** hblixt has joined #openstack-ironic04:14
openstackgerritMerged openstack/ironic: Updated from global requirements  https://review.openstack.org/20227904:14
openstackgerritMerged openstack/python-ironicclient: Updated from global requirements  https://review.openstack.org/20090304:20
*** cing has quit IRC04:27
*** hemna has quit IRC04:30
*** Nisha_away has joined #openstack-ironic04:33
*** Nisha has quit IRC04:33
*** rameshg87 has joined #openstack-ironic04:34
*** cing has joined #openstack-ironic04:35
*** sandhya has joined #openstack-ironic04:46
*** yog__ has joined #openstack-ironic04:47
openstackgerritRamakrishnan G proposed openstack/ironic: Refactor pxe - New PXEBoot and ISCSIDeploy interfaces  https://review.openstack.org/16651304:53
openstackgerritRamakrishnan G proposed openstack/ironic: Refactor pxe - New PXEBoot and ISCSIDeploy interfaces  https://review.openstack.org/16651304:53
openstackgerritRamakrishnan G proposed openstack/ironic: Refactor agent driver with pxe boot interface  https://review.openstack.org/16652105:07
*** hblixt_ has joined #openstack-ironic05:08
*** hblixt has quit IRC05:11
*** bigjools has quit IRC05:14
*** killer_prince has joined #openstack-ironic05:16
*** lazy_prince has quit IRC05:19
*** bigjools has joined #openstack-ironic05:27
*** praneshp has joined #openstack-ironic05:37
*** itamarl has joined #openstack-ironic05:39
*** praneshp_ has joined #openstack-ironic05:40
*** praneshp has quit IRC05:42
*** praneshp_ is now known as praneshp05:42
*** vishwana_ has joined #openstack-ironic05:43
*** vishwanathj has quit IRC05:47
*** puranamr has joined #openstack-ironic05:55
*** puranamr has quit IRC05:57
*** dlpartain has joined #openstack-ironic05:57
*** dlpartain has left #openstack-ironic05:57
*** dlpartain has joined #openstack-ironic05:58
*** dlpartain has quit IRC05:58
*** lazy_prince has joined #openstack-ironic05:59
*** e0ne has joined #openstack-ironic06:00
*** yuikotakada has joined #openstack-ironic06:01
*** killer_prince has quit IRC06:02
*** e0ne has quit IRC06:02
*** saripurigopi has joined #openstack-ironic06:07
saripurigopihello Ironic06:07
yuikotakadasaripurigopi, hi :)06:08
saripurigopiyuikotakada: o/06:10
*** degorenko has quit IRC06:10
*** Sukhdev has joined #openstack-ironic06:11
*** ifarkas has joined #openstack-ironic06:14
*** max_lobur has joined #openstack-ironic06:23
*** puranamr has joined #openstack-ironic06:26
*** praneshp has quit IRC06:39
*** praneshp has joined #openstack-ironic06:45
*** Sukhdev has quit IRC06:45
*** pal has quit IRC06:51
*** itamarl_ has joined #openstack-ironic06:51
*** itamarl has quit IRC06:52
*** itamarl_ is now known as itamarl06:52
*** ifarkas has quit IRC06:52
*** ifarkas has joined #openstack-ironic06:52
*** max_lobur has quit IRC06:53
*** puranamr has quit IRC06:55
*** dtantsur|afk is now known as dtantsur06:56
dtantsurMorning folks!06:56
yuikotakadadtantsur, o/06:56
dtantsuro/06:56
*** pal has joined #openstack-ironic07:05
*** itamarl has quit IRC07:18
*** itamarl has joined #openstack-ironic07:20
*** romainh has joined #openstack-ironic07:20
*** foexle has joined #openstack-ironic07:27
*** itamarl has quit IRC07:34
saripurigopidtantsur: o/07:35
dtantsuro/07:35
*** itamarl has joined #openstack-ironic07:35
*** max_lobur has joined #openstack-ironic07:37
*** itamarl has quit IRC07:41
*** pal_ has joined #openstack-ironic07:42
*** stendulker has joined #openstack-ironic07:42
*** pal has quit IRC07:44
dtantsurHaomeng, o/ could you please review/approve https://review.openstack.org/#/c/194722/ ?07:45
dtantsur2x +2 already, bunch of +107:45
*** yuikotak_ has joined #openstack-ironic07:45
*** dlpartain has joined #openstack-ironic07:45
*** achanda has quit IRC07:46
*** yuikotakada has quit IRC07:47
Haomengdtantsur: sure, let me have a look07:49
Nisha_awaydtantsur, inspector when used as a devstack plugin will place the ramdisk and kernel at what location ?07:51
*** itamarl has joined #openstack-ironic07:52
dtantsurNisha_away, the same as ironic one, lemme find07:52
dtantsurNisha_away, /opt/stack/data/ironic/tftpboot/07:53
Haomengdtantsur: Ramakrishnan think that his comments can be addressed with follow-up patch, so +a now:)07:58
dtantsurHaomeng, thanks!07:59
* dtantsur adds a reminder to address follow-up comments07:59
Haomengdtantsur: yw:)07:59
*** lucasagomes has joined #openstack-ironic08:00
*** dlpartain has quit IRC08:00
*** romcheg has joined #openstack-ironic08:01
*** pal_ has quit IRC08:07
*** UForgotten has quit IRC08:08
*** UForgotten has joined #openstack-ironic08:10
openstackgerritMerged openstack/ironic-python-agent: Updated from global requirements  https://review.openstack.org/20067408:11
openstackgerritMerged openstack/ironic: Remove deprecated code for driver vendor passthru  https://review.openstack.org/20054708:12
openstackgerritMerged openstack/ironic: Replace common.fileutils with oslo_utils.fileutils  https://review.openstack.org/20139708:13
*** enikanorov_ has joined #openstack-ironic08:15
*** jistr has joined #openstack-ironic08:16
*** itamarl has quit IRC08:17
*** enikanorov has quit IRC08:17
*** pal has joined #openstack-ironic08:18
*** itamarl has joined #openstack-ironic08:20
*** derekh has joined #openstack-ironic08:27
*** ifarkas has quit IRC08:30
openstackgerritCameron.C proposed openstack/ironic: Inspector driver in standalone mode doesn't work  https://review.openstack.org/20243508:30
*** ifarkas has joined #openstack-ironic08:31
*** dlpartain has joined #openstack-ironic08:32
*** boris-42 has quit IRC08:32
*** dlpartain has left #openstack-ironic08:32
*** itamarl has quit IRC08:37
*** saripurigopi has quit IRC08:38
*** itamarl has joined #openstack-ironic08:47
*** tiagogomes_ has joined #openstack-ironic08:47
openstackgerritLucas Alvares Gomes proposed openstack/ironic: Allow abort for {CLEAN,DEPLOY}WAIT states  https://review.openstack.org/20155208:48
openstackgerritLucas Alvares Gomes proposed openstack/ironic: Add CLEANWAIT state  https://review.openstack.org/20015208:48
openstackgerritMerged openstack/ironic: Start using new ENROLL state  https://review.openstack.org/19472208:50
tiagogomes_hi all, what is the status of integrating Cinder with Ironic?08:55
openstackgerritLucas Alvares Gomes proposed openstack/ironic: Allow abort for {CLEAN,DEPLOY}WAIT states  https://review.openstack.org/20155208:59
openstackgerritLucas Alvares Gomes proposed openstack/ironic: Add CLEANWAIT state  https://review.openstack.org/20015208:59
lucasagomestiagogomes_, we currently have no integration. There are some specs/ideas around it09:00
*** foexle has quit IRC09:00
lucasagomesit was also discussed in the vancouver summit, both teams are aligned about what needs to be done (re attaching a volume and booting from volume)09:00
lucasagomesbut I don't know if there's someone actually working on it09:00
*** foexle has joined #openstack-ironic09:01
tiagogomes_lucasagomes ok, thanks09:02
lucasagomesthere's an etherpad,trying to find the link09:02
*** killer_prince has joined #openstack-ironic09:03
lucasagomestiagogomes_, https://etherpad.openstack.org/p/ironic-and-cinder09:04
*** yonglihe has quit IRC09:06
*** sandhya has quit IRC09:06
*** lazy_prince has quit IRC09:06
*** lazy_prince has joined #openstack-ironic09:07
*** killer_prince has quit IRC09:08
openstackgerritCameron.C proposed openstack/ironic: Allow inspector driver to work in standalone mode  https://review.openstack.org/20243509:09
*** rvasilets_ has left #openstack-ironic09:12
*** ndipanov has joined #openstack-ironic09:14
tiagogomes_thanks lucasagomes. So currently, is there a nice way to update the baremetal OS without destroying its user data?09:18
*** athomas has quit IRC09:20
*** dtantsur is now known as dtantsur|brb09:24
*** alex_xu_ is now known as alex_xu09:27
*** athomas has joined #openstack-ironic09:27
lucasagomestiagogomes_, I wouldn't say nice... But the way tripleo does it is by suing ephemeral partition09:32
lucasagomesyou can preserve an ephemeral partition when you rebuild the instance09:32
*** yog__ has quit IRC09:32
lucasagomesusing*09:33
openstackgerritRoman Podoliaka proposed openstack/ironic: db: use new EngineFacade feature of oslo.db  https://review.openstack.org/19180109:33
*** ukalifon1 has joined #openstack-ironic09:35
*** lazy_prince has quit IRC09:39
openstackgerritMerged openstack/ironic: Remove requirements.txt from tox.ini deps  https://review.openstack.org/20234909:41
*** degorenko has joined #openstack-ironic09:46
*** Nisha_away has quit IRC09:49
sambettsMorning all09:50
yuikotak_sambetts, o/09:50
sambettsyuikotak_: o/ Hey109:50
sambettsHey!09:50
*** yuikotak_ is now known as yuikotakada09:51
*** naohirot has quit IRC09:54
lucasagomessambetts, yuikotakada good ugt morning09:56
*** yog__ has joined #openstack-ironic09:56
tiagogomes_lucasagomes won't node cleaning erase all the partitions?09:56
sambettsHey lucasagomes09:57
lucasagomestiagogomes_, it will but only when the instance is unprovisioned09:57
lucasagomestiagogomes_, rebuild happens with an ACTIVE instance and it goes to deploying again09:57
lucasagomesit doesn't pass through cleaning09:58
*** pal has quit IRC09:59
*** praneshp has quit IRC09:59
*** e0ne has joined #openstack-ironic10:02
*** zhenguo has quit IRC10:03
tiagogomes_lucasagomes ah, so will ` nova rebuild --preserver-ephemeral` not format the partitions on the baremetal?10:07
lucasagomestiagogomes_, nop, it will keep the ephemeral one10:07
tiagogomes_lucasagomes ok thanks!10:08
lucasagomesit will basically replace the OS image with a new one10:08
tiagogomes_overwriting existing files?10:11
*** lazy_prince has joined #openstack-ironic10:12
openstackgerritShivanand Tendulker proposed stackforge/proliantutils: Add RIS support for updating boot device  https://review.openstack.org/20142010:14
*** pal has joined #openstack-ironic10:17
lucasagomestiagogomes_, it just copy the image onto the root partition10:19
*** e0ne is now known as e0ne_10:25
*** e0ne_ is now known as e0ne10:28
*** amotoki has joined #openstack-ironic10:32
*** stendulker has quit IRC10:34
openstackgerritLucas Alvares Gomes proposed openstack/python-ironicclient: Allow 'abort' verb for node-set-provision-state  https://review.openstack.org/20218410:45
*** coolsvap has quit IRC10:58
*** coolsvap has joined #openstack-ironic10:58
*** yog__ has quit IRC11:07
rameshg87lucasagomes: h11:08
rameshg87hi11:08
lucasagomesrameshg87, hi there11:11
rameshg87lucasagomes: regarding https://review.openstack.org/#/c/193439/23/ironic/api/controllers/v1/port.py11:12
TheJuliaGood morning11:12
lucasagomesTheJulia, good ugt morning11:12
rameshg87lucasagomes: that patch was actually meant just to allow node name also to be passed while creating a new port, right ?11:12
lucasagomesrameshg87, I think that is the intention, use the node name to be able to create a port11:13
lucasagomesbut it will later be translated into the node's uuid11:13
lucasagomesthat's what I got from that patch at least11:13
rameshg87lucasagomes: yeah, so why do we really need to deprecate the node_uuid ?11:13
*** e0ne is now known as e0ne_11:13
lucasagomesrameshg87, the patch says it does "and deprecate 'node_uuid'."11:14
lucasagomesin the commit message11:14
lucasagomesmaybe we should just allow one inputing the name in "node_uuid"11:14
rameshg87lucasagomes: oh, but that conflicts in mind (_uuid accepting something not a uuid) :)11:15
lucasagomesyeah, that's why he added "node"11:15
lucasagomesmy point is that by keeping node_uuid "deprecated" doesn't work for API11:15
lucasagomesbecause the user can't see it's deprecated11:15
*** Haomeng|2 has joined #openstack-ironic11:15
rameshg87lucasagomes: yeah11:16
rameshg87lucasagomes: and as per that patch it is supposed to allow only while POSTing11:16
lucasagomesrameshg87, yeah that's my understanding11:16
rameshg87lucasagomes: so I suggested that *hack* to just put getter for node attribute return wtypes.Unset always, so that it's never returned, but always accepted in POST11:17
rameshg87but I don't think it's a neat way11:17
lucasagomesI see the value on it, when scripting it may be easier to do a "node-create -name 'blah'" "port-create -n 'blah'"11:17
rameshg87yeah,11:17
lucasagomesrameshg87, yeah :-/ it's hacky... with the API microversions I can see we remoiving node_uuid in favor of node11:18
rameshg87lucasagomes: but what what do we really return for node when it's a GET ?11:18
lucasagomesas a break change, but we need to gather info see if this is a change that people wants to do11:18
rameshg87lucasagomes: a uuid or a name ?11:18
*** Haomeng has quit IRC11:18
*** thrash|g0ne is now known as thrash11:18
lucasagomesrameshg87, hmm it's hard. The thing I like about the UUID is that it doesn't change11:19
lucasagomesthat's the canonical identification for a resource11:19
lucasagomesthe name on the other hand is complicated11:19
*** pal has quit IRC11:19
lucasagomescause it can change11:19
lucasagomesrameshg87, I haven't thought deeply about that change tho11:20
*** yog__ has joined #openstack-ironic11:20
lucasagomesmaybe we should bring it up on the next meeting and discuss it with more people11:20
rameshg87lucasagomes: yeah, I think so11:20
lucasagomescause I can see some benefit with it, but again... it's not like a huge thing...11:21
rameshg87lucasagomes: to not to cause such a confusion, I kind of thought we can add a new node_name attribute where we can both get and set values with it11:21
lucasagomesright, yeah that may be a way then11:21
*** sambetts has quit IRC11:21
lucasagomeshave both there11:21
lucasagomesand in the db we just keep the numeral id11:21
lucasagomesnumeric*11:22
rameshg87lucasagomes: yeah, it's just in the API, returning current values11:22
rameshg87exactly11:22
rameshg87people who want to keep seeing names, let them see names11:22
lucasagomesyeah11:22
rameshg87people who want to continue seeing uuids, they are not affected11:22
lucasagomesindeed11:22
rameshg87anyway, let's wait for other's opinions :)11:22
rameshg87lucasagomes: thanks for the feedback11:23
rameshg87need to leave now ..11:23
* rameshg87 goes home 11:23
lucasagomesrameshg87, thank you! I will ocmment on the patch11:23
*** rameshg87 has quit IRC11:23
*** dtantsur|brb is now known as dtantsur11:24
*** lucasagomes is now known as lucas-hungry11:25
*** hblixt_ has quit IRC11:30
*** e0ne_ is now known as e0ne11:30
*** sambetts has joined #openstack-ironic11:37
*** Haomeng has joined #openstack-ironic11:51
*** Haomeng|2 has quit IRC11:53
*** lazy_prince has quit IRC11:59
*** lazy_prince has joined #openstack-ironic12:01
*** cing has quit IRC12:02
*** dprince has joined #openstack-ironic12:02
*** amotoki has quit IRC12:04
*** ifarkas has quit IRC12:06
*** ifarkas has joined #openstack-ironic12:09
*** [1]cdearborn has joined #openstack-ironic12:17
*** jcoufal has joined #openstack-ironic12:19
openstackgerritDmitry Tantsur proposed openstack/ironic-inspector: Create a handler for uncaught 404 errors  https://review.openstack.org/20253212:30
*** jjohnson2 has joined #openstack-ironic12:34
*** trown|outttypeww is now known as trown12:42
openstackgerritDmitry Tantsur proposed openstack/ironic-inspector: Provide more meaningful message for error 500  https://review.openstack.org/20253512:42
*** krtaylor has quit IRC12:44
*** jjohnson2 has quit IRC12:46
*** lucas-hungry is now known as lucasagomes12:49
*** jcoufal has quit IRC12:50
lucasagomesjroll, http://mjg59.dreamwidth.org/35969.html should we worry? (re canonical IP and distributing IPA with ubuntu)12:50
*** krtaylor has joined #openstack-ironic12:51
*** mjturek1 has joined #openstack-ironic12:52
openstackgerritDmitry Tantsur proposed openstack/ironic: Address minor comments on the ENROLL patch  https://review.openstack.org/20254012:53
*** jcoufal has joined #openstack-ironic12:55
*** jcoufal has quit IRC12:59
*** zhenguo has joined #openstack-ironic13:01
openstackgerritDmitry Tantsur proposed openstack/ironic: DO NOT MERGE  https://review.openstack.org/20254413:01
*** jjohnson2 has joined #openstack-ironic13:03
*** pal has joined #openstack-ironic13:05
*** pal_ has joined #openstack-ironic13:08
*** pal has quit IRC13:10
*** jjohnson2 has quit IRC13:10
*** coolsvap is now known as coolsvap|away13:13
*** bnemec has joined #openstack-ironic13:14
*** bizarrochristy has joined #openstack-ironic13:22
NobodyCamgood morning ironicers13:25
lucasagomesNobodyCam, good ugt morning13:26
yuikotakadaNobodyCam, o/13:27
yuikotakadalucasagomes, o/13:27
BadCubmorning folks13:29
openstackgerritDmitry Tantsur proposed openstack/ironic: Allow upgrading shared mock to an exclusive one  https://review.openstack.org/20255813:29
sambettso/ BadCub13:30
NobodyCamgood ugt morning lucasagomes yuikotakada dtantsur sambetts jroll and everyone not mentioned13:30
dtantsurmorning NobodyCam, BadCub, jroll, TheJulia, sambetts, and everyone else :)13:30
NobodyCamhehehe :)13:30
BadCubheya13:30
sambettsNobodyCam o/13:30
NobodyCam:)13:32
*** jcoufal has joined #openstack-ironic13:33
*** jaypipes has joined #openstack-ironic13:35
openstackgerritDmitry Tantsur proposed openstack/ironic: [WIP] Only take exclusive lock in sync_power_state if node is updated  https://review.openstack.org/20256213:39
openstackgerritLucas Alvares Gomes proposed openstack/python-ironicclient: Fix version negotiation  https://review.openstack.org/20256513:41
lucasagomesNobodyCam, dtantsur devananda ^ funny one for you guys13:41
dtantsuroh lol13:42
* lucasagomes fixes pep813:42
openstackgerritLucas Alvares Gomes proposed openstack/python-ironicclient: Fix version negotiation  https://review.openstack.org/20256513:42
dtantsurIn the meanwhile I've started converting https://etherpad.openstack.org/p/ironic-locking-reform to patches :)13:43
devanandag'morning!13:43
dtantsurdevananda, morning13:43
devanandalucasagomes, dtantsur: either if you coming to the midcycle?13:44
*** e0ne is now known as e0ne_13:44
dtantsurdevananda, not me13:44
lucasagomesdevananda, I don't think so :-(13:44
devananda:-(13:44
lucasagomesdevananda, good morning13:44
dtantsurwere it not for 2 long travels to the summit this year...13:44
dtantsuranyway, could you folks have a quick look at https://review.openstack.org/#/c/202562/ despite it being wip?13:44
dtantsurjust wanna sanity-check the idea13:45
* dtantsur goes afk for an hour13:45
jrollmorning all :)13:45
*** jjohnson2 has joined #openstack-ironic13:46
openstackgerritDmitry Tantsur proposed openstack/ironic: [WIP] Only take exclusive lock in sync_power_state if node is updated  https://review.openstack.org/20256213:46
lucasagomesjroll, morning13:47
jrolllucasagomes: holy cow that port-by-node-name patch13:48
lucasagomesjroll, heh I know13:48
*** e0ne_ is now known as e0ne13:49
NobodyCamgood morning devananda13:49
*** jcoufal has quit IRC13:52
*** jjohnson2 has quit IRC13:52
lucasagomesjroll, btw take also a look at http://mjg59.dreamwidth.org/35969.html I worry about us building IPA on every commit and making it available due the ubuntu IP13:52
lucasagomescanonical IP*13:53
openstackgerritLucas Alvares Gomes proposed openstack/python-ironicclient: Fix version negotiation  https://review.openstack.org/20256513:54
jrolllucasagomes: oh my god13:54
* jroll rages13:54
jrollmordred: ^^ thoughts?13:54
jrollwe can hit the legal list if needed13:54
lucasagomesI want to talk to you before going to -infra13:54
lucasagomesyeah13:54
jrollyeah, let's bounce over there13:55
lucasagomesbecause we make it available I wonder that it's considered "distributing", tho I believe so13:55
jrollI believe so too13:55
jrollit's a coreos image with a ubuntu container inside13:55
lucasagomesexactly13:56
devanandaoh srsly13:57
devanandayah, we'll almost definitely need to stop that, even just because ...13:57
jrollsoooo who is up for converting that to fedora?13:59
jrolland/or debian13:59
lucasagomescentos13:59
lucasagomes++13:59
jrollI'm going to push a patch to switch it to debian13:59
jrolljust because I don't have to think about yum13:59
jrolllucasagomes: wanna file a bug?14:00
lucasagomesjroll, sure will do14:00
trownjroll: I have been hacking on the DIB element for fedora/centos14:00
NobodyCamlucasagomes: why did you take out 1.10 from test14:00
trownstill WIP though14:00
lucasagomesNobodyCam, it wasn't actually testing anything with that 1.10, it was left over14:00
lucasagomesNobodyCam, + that version of the client the default version is 1.814:01
jrolltrown: I'm (personally) not really interested in DIB, and really the coreos images we provide are the concern here14:01
* TheJulia reads the post and feels very sad14:01
jrolltrown: but I appreciate the work :)14:01
NobodyCambut testing for 1.10 >  1.8, at least to me is a valid test14:02
openstackgerritRoman Podoliaka proposed openstack/ironic: db: use new EngineFacade feature of oslo.db  https://review.openstack.org/19180114:03
openstackgerritJim Rollenhagen proposed openstack/ironic-python-agent: Change Dockerfile to use Debian as a base  https://review.openstack.org/20257814:05
jrolllet's see how that goes14:05
*** kkoski has joined #openstack-ironic14:06
lucasagomesjroll, https://bugs.launchpad.net/ironic/+bug/147532514:07
openstackLaunchpad bug 1475325 in Ironic "IPA: Stop using ubuntu by default as the base OS" [Undecided,New]14:07
lucasagomesNobodyCam, right, I can add it back if u want14:08
jrollthanks lucasagomes14:08
* jroll adds14:08
NobodyCamlucasagomes: only becayse it was oe of the examples you point out in the commit message14:08
lucasagomesNobodyCam, ++ ok14:08
NobodyCam:)14:08
openstackgerritJim Rollenhagen proposed openstack/ironic-python-agent: Change Dockerfile to use Debian as a base  https://review.openstack.org/20257814:08
mordredjroll, lucasagomes: moving to debian - fine by me -however, I do want to repeat what I said in infra, that I do _not_ think there is an actual problem here14:10
mordredthat said - I think moving to debian is an awesome choice14:11
NobodyCammordred: thank you great info here and what in -infra :)14:14
mordredNobodyCam: my pleasure!14:15
NobodyCam:)14:15
lucasagomesyeah thanks14:15
openstackgerritLucas Alvares Gomes proposed openstack/python-ironicclient: Fix version negotiation  https://review.openstack.org/20256514:29
*** pal has joined #openstack-ironic14:29
lucasagomesNobodyCam, ^ that test would actually fail with the old code14:29
*** pal_ has quit IRC14:30
lucasagomesIn [8]: min('99.99', '1.6')14:31
lucasagomesOut[8]: '1.6'14:31
lucasagomesIn [9]: min('1.10', '1.6')14:31
lucasagomesOut[9]: '1.10'14:31
lucasagomesjust for ref14:31
jrollhmm, when did we add py34 to the ipa dockerfile?14:36
jrollalso E: Unable to locate package python3.414:36
jrollwith debian14:36
* lucasagomes no idea14:36
*** dlpartain has joined #openstack-ironic14:36
lucasagomescurrently IPA doesn't even work with py3, so I believe it can be deleted14:36
*** e0ne is now known as e0ne_14:36
jrolloh heh14:37
jrollwe purge python3, not install it14:37
lucasagomesoh it's purge yeah14:38
lucasagomesit's grand to not list it there14:38
jrollyeah, doing it14:39
jrolltesting before I post it14:39
NobodyCamlucasagomes: ya14:39
NobodyCamlucasagomes: hummm: http://logs.openstack.org/65/202565/4/check-tripleo/gate-tripleo-ironic-undercloud-precise-nonha/811bd26/console.html#_2015-07-16_14_36_42_68614:41
jrollsurprise, tripleo ci is still broke as heck14:42
openstackgerritJim Rollenhagen proposed openstack/ironic-python-agent: Change Dockerfile to use Debian as a base  https://review.openstack.org/20257814:42
jrolllucasagomes: ^ that built fine for me, I haven't ran it but don't expect surprises14:42
lucasagomesNobodyCam, yeah ooo CI has been broken14:42
lucasagomesfor a while actually14:43
NobodyCam:(14:43
lucasagomesjroll, w00t! the gate will build from source and run it for us14:43
jrolllucasagomes: indeed :)14:43
*** itamarl has left #openstack-ironic14:44
lucasagomesNobodyCam, lemme ping #tripleo14:47
*** cing has joined #openstack-ironic14:49
*** dlpartain has quit IRC14:50
*** pal_ has joined #openstack-ironic14:59
*** pal has quit IRC14:59
*** cing has quit IRC15:00
*** karimb has joined #openstack-ironic15:02
*** pal_ has quit IRC15:05
*** e0ne_ is now known as e0ne15:05
*** coolsvap|away is now known as coolsvap15:06
*** pal has joined #openstack-ironic15:07
*** amotoki has joined #openstack-ironic15:10
*** absubram has joined #openstack-ironic15:11
dtantsurso about hardware: got a report from QE about HP Proliant DL170e G6 where power on via pxe_ipmitool takes around 25 seconds of exclusive locking15:14
*** pal has quit IRC15:14
dtantsurwhich is enough to get some troubles to the next command in the script, if it checks for "reservation" without using task_manager...15:15
*** pal has joined #openstack-ironic15:17
*** hemna has joined #openstack-ironic15:18
*** trown is now known as trown|brb15:19
*** hemna has quit IRC15:20
*** trown|brb is now known as trown15:24
*** pal_ has joined #openstack-ironic15:24
*** pal has quit IRC15:25
devanandadtantsur: holding the lock internally? or blocking the conductor process / api response?15:25
devanandadtantsur: also yes, we should always assume that any actual call to the BMC might be VERY SLOW15:25
*** e0ne has quit IRC15:26
*** e0ne has joined #openstack-ironic15:26
devanandadtantsur: but I see your point -- anything could have changed in 25 seconds if a non-exclusive lock was used15:26
*** e0ne has quit IRC15:27
*** e0ne has joined #openstack-ironic15:27
*** e0ne has quit IRC15:28
*** _________ has joined #openstack-ironic15:30
*** _________ has quit IRC15:31
*** e0ne has joined #openstack-ironic15:32
*** yog__ has quit IRC15:34
openstackgerritLucas Alvares Gomes proposed openstack/python-ironicclient: Allow 'abort' verb for node-set-provision-state  https://review.openstack.org/20218415:35
*** pal has joined #openstack-ironic15:36
*** pal_ has quit IRC15:36
dtantsuryeah, right.15:37
lucasagomespeople can you look and post ur opnions at https://review.openstack.org/#/c/193495/ ?15:38
lucasagomestl;dr it's basically renaming pxe.http_root to deploy.http_server_root (same for http_url). While changing groups from 'pxe' to 'deploy' is fine because other drivers can use the same http server15:39
lucasagomesI find it the name inconsistent with other config options such as tftp_root15:39
lucasagomesanyway, if you have a time please take a look and post ur opnions there15:39
*** ig0r_ has quit IRC15:40
* dtantsur agrees with http_root15:41
*** dprince has quit IRC15:42
*** ifarkas has quit IRC15:43
* TheJulia ponders15:45
*** vishwanathj has joined #openstack-ironic15:45
lucasagomesfolks and if u have more free time, please take a look https://review.openstack.org/#/c/197141/ :-)15:47
lucasagomesthe fix for the agent_* drivers are already merged15:47
lucasagomesis*15:47
*** vishwana_ has quit IRC15:47
jrolldevananda: btw, the ENROLL change landed, so much for waiting until after a release :P15:49
devanandaurgh15:49
devanandai knew i should have -2'd that15:49
*** pal_ has joined #openstack-ironic15:50
devanandaoh jeez15:50
devanandai just found the tab15:50
lucasagomesdevananda, jroll yeah I noticed it was merged this morning... The idea was to do a release prior to merging it?15:51
devanandai have a comment written and just didn't hit send :(15:51
* devananda fails15:51
devanandalucasagomes: yes15:51
jrolllol15:51
lucasagomesoh lol15:51
devanandaThe change itself LGTM, however, I would like us to hold it back until:15:51
devananda- we fully embrace the new release process15:51
openstackgerritSatoru Moriya proposed openstack/ironic-specs: Add attributes about volume conneciton into nodes table  https://review.openstack.org/20049615:51
devananda- we do a server and client release that are API compatible with Kilo15:51
devananda- then roll this (and perhaps other API incompatible changes) into the subsequent server release, along with a major release version bump15:51
*** pal has quit IRC15:51
devanandais what i THOUGHT I POSTED :(15:51
dtantsurdevananda, eek? you didn't want to release ENROLL?15:51
devanandanot yet15:52
dtantsurbut why, we're still backward compatible15:52
jrollyeah, I don't see a problem with releasing this now, I just remembered devananda mentioning he didn't want to15:52
devanandabecause it isn't15:52
jrollit is15:52
jrollversioning15:52
devanandasee my updates to the versioning spec. i know ya'll dont agree yet though15:53
jrollit isn't compatible for folks using 'latest'15:53
dtantsurdevananda, sorry, I don't get you. We got through all this versioning fun to make sure we're always and absolutely compatible15:53
jrolllink?15:53
devanandait isn't compatible the moment we release a new client15:53
devanandathat starts using the new version #15:53
lucasagomesjroll, https://review.openstack.org/#/c/196320/15:53
devanandawhich we all know15:53
dtantsurdevananda, on another note, what prevents you from tagging release from a previous commit?15:53
devanandais going to break people15:53
devanandadtantsur: good question ...15:54
jrolldevananda: release notes, or there's the option of, ya know, not defaulting to the highest possible version15:54
dtantsurdevananda, I dunno how it works for you, but for inspector relase is $ git push gerrit TAG15:54
jrollI still think the client should require a version from the user15:54
dtantsurwhich means it's not necessary HEAD15:54
devanandadhellmann: is it possible to tag a release at an (arbitrary, recent, not tip-of-master) commit SHA ?15:54
devanandadtantsur: yea, there's more automation around release-managed services15:55
jrolldevananda: please make sure it includes https://review.openstack.org/#/c/200153/ whatever you do15:55
jrollthat fixes a major bug in upgrades with agent driver15:55
devanandacool15:56
jrollactually, shit, that might not fix it15:56
devananda:(15:56
jrollso here's the thing:15:56
jrollwhen conductor starts, it assumes anything in DEPLOYING has a lock, it releases it's own locks and kills anything in DEPLOYING that isn't locked15:57
jrollthis kills most ongoing agent deploys, until that patch is applied that makes it use DEPLOYWAIT15:57
devanandadtantsur: so the main thing is, i want us to do a release using the new numbering system, post-kilo, that is in fact compatible with kilo15:57
jrollso upgrading to get that fix will also kill deploys in flight :(15:58
jrolldevananda: it's totally compatible. the problem is you want to release a *client* that is *by default* compatible with kilo15:58
dtantsurdevananda, in a sense of backward compatibility? yeah, got it15:58
*** trown is now known as trown|lunch15:58
jrolldevananda: so to accomplish this, you should release tip of ironic + client that defaults to (version before ENROLL)15:59
jrollright?15:59
dtantsurdevananda, if there are not other options, I can only suggest quick revert, followed by quick revert of revert after release15:59
dtantsurdevananda, what I don't wanna do is to chase after reviewers again :(15:59
devanandadtantsur: totally -- no need for that :)15:59
devananda(chasing reviewers15:59
devanandajroll: the very question of "is this client compatible with that server" is the problem16:00
devanandawe should never release a client that isn't compatible *by default* with all server versions we support16:02
jrolldevananda: so release a client that doesn't know about ENROLL yet16:02
dtantsurclient is compatible, it's user that will break :D16:02
devanandadtantsur: heh, well put16:02
lucasagomesyeah the only problem I forsee with that is if we decide to include the clean stuff in the release16:03
lucasagomeswith the abort etc, because that's also bumping the api version16:03
*** kozhukalov__ has joined #openstack-ironic16:03
dtantsurdevananda, so you want to release a version that will work as expected even with a new client, right?16:03
dtantsurdevananda, so the client would default to 1.11 but server will ask to downgrade, and everything will work as before?16:04
lucasagomesdevananda, jroll re version negotiation in the client https://review.openstack.org/#/c/202565/16:04
lucasagomesit's actually broken16:04
devanandadtantsur: as you said, it's not the client<->server that fails, it's user's expectation16:04
devanandalucasagomes: yea, saw that, waiting for tests16:04
*** coolsvap is now known as coolsvap|away16:05
lucasagomesack16:05
dtantsurversioning is hard, negotiation is even harder...16:05
*** pal_ has quit IRC16:05
*** ijw has quit IRC16:07
devanandahttp://specs.openstack.org/openstack/ironic-specs/specs/liberty/enroll-node-state.html16:08
devanandaso this was called out several times as a breaking change16:08
*** pal has joined #openstack-ironic16:09
devanandameh. i'm never happy breaking users16:10
dtantsurnobody is..16:10
jrollsorry, got pulled into a meeting16:11
devanandagetting pulled into a meeting now() too :(16:11
jrollso IMO we should release a new version of the server, including enroll.16:11
jrollinclude really fantastic messaging about the impact of the api version stuff. YOU NEED TO THINK ABOUT THIS etc16:12
jrollif you want to make breaking things harder, release the new client with a default of 1.10 or whatever that will not do ENROLL by default16:12
jrolldevananda: dtantsur ^16:13
devanandalucasagomes: https://review.openstack.org/#/c/196320/16:13
tiagogomes_does file injection work on the baremetal?16:13
devanandatiagogomes_: nope16:13
jrolland we also need to update our docs on "how to enroll nodes"16:13
jrolldevananda: what, yes it does16:13
lucasagomesdevananda, yes? reading it now16:14
jrolltiagogomes_: it should, there was a bug in nova kilo where it did not but I think it was backported16:14
devanandajroll: modifying files in the guest image after deployment?16:14
lucasagomestiagogomes_, if you mean injecting file in the configdrive yes it does16:15
jrolldevananda: ok let's back up16:15
jroll^ that16:15
devanandaconfigdrive != nova file injection16:15
jrollhere was the stable backport https://review.openstack.org/#/c/176396/16:15
tiagogomes_without config drive16:15
jrolloh no, not without configdrive16:15
* devananda goes afk for reals16:15
lucasagomestiagogomes_, so no16:15
*** yuikotakada has quit IRC16:15
*** absubram has quit IRC16:15
lucasagomesjroll, https://review.openstack.org/#/c/197141/ (if you have time)16:16
jrolllooking16:17
tiagogomes_out of curiosity, if I use the config-drive and the OS has cloud-init, will the file be placed where I intended16:17
jrolltiagogomes_: yep :)16:18
*** mitchjameson has joined #openstack-ironic16:18
jrolllucasagomes: +A16:18
lucasagomesw00t!16:18
dtantsursee you tomorrow16:23
NobodyCamnight dtantsur16:23
dtantsurlemme know what you folks decide about ENROLL patch16:23
*** dtantsur is now known as dtantsur|afk16:23
*** pal has quit IRC16:25
lucasagomesdtantsur|afk, night16:27
TheJuliagoodnight dtantsur|afk16:28
*** achanda has joined #openstack-ironic16:28
*** achanda has quit IRC16:29
*** Nisha has joined #openstack-ironic16:29
*** romcheg has quit IRC16:31
*** Nisha has quit IRC16:34
*** Nisha has joined #openstack-ironic16:35
*** achanda has joined #openstack-ironic16:35
*** praneshp has joined #openstack-ironic16:42
*** rwsu has quit IRC16:44
*** Pradip has joined #openstack-ironic16:44
lucasagomesfolks I'm calling it a day here. Have a good night everyone16:47
*** lucasagomes is now known as lucas-dinner16:47
NobodyCamnight lucas-dinner16:48
*** absubram has joined #openstack-ironic16:53
openstackgerritDevananda van der Veen proposed openstack/ironic: Allow upgrading shared lock to an exclusive one  https://review.openstack.org/20255816:54
*** romainh has left #openstack-ironic16:56
*** derekh has quit IRC17:00
*** jistr has quit IRC17:00
openstackgerritOpenStack Proposal Bot proposed openstack/ironic: Updated from global requirements  https://review.openstack.org/20269917:01
openstackgerritOpenStack Proposal Bot proposed openstack/ironic-inspector: Updated from global requirements  https://review.openstack.org/20270017:01
*** kozhukalov_ has quit IRC17:03
*** kozhukalov__ is now known as kozhukalov_17:03
*** jcoufal has joined #openstack-ironic17:09
*** e0ne has quit IRC17:09
*** kozhukalov has joined #openstack-ironic17:10
NobodyCamTheJulia: is this about how far you expected I would get? http://paste.openstack.org/show/BP5m1xQcRxMPTeBbJUgx/17:10
*** absubram has quit IRC17:12
*** krtaylor has quit IRC17:13
TheJuliasweet17:15
TheJuliaNobodyCam: base os missing ansible?17:15
TheJuliaerr17:15
TheJuliamaybe guest?17:15
* TheJulia has never really used vagrant17:15
NobodyCamTheJulia: looking into it now17:16
*** kozhukalov has quit IRC17:16
jrollNobodyCam: looks like your host doesn't have ansible installed17:16
NobodyCamsi17:16
NobodyCam:)17:16
*** tiagogomes_ has quit IRC17:19
*** praneshp has quit IRC17:20
*** praneshp has joined #openstack-ironic17:20
PradipHi, i was reading this blueprint https://review.openstack.org/#/c/188528/6/specs/liberty/ironic-ml2-integration.rst. I have question. in this context, are the bare metal servers needs to be connected to a switch? I mean can there be scenarios where the bare metals are connected to the controller using hub or direct connection17:21
jrollPradip: it would need to be a managed switch17:21
*** athomas has quit IRC17:22
Pradipjroll: that's what i thought. thanks17:22
jrollnp17:22
Pradipjroll: another thing is how are you planning to identify the provisioning network17:22
jrollPradip: in the config file17:22
jrollPradip: see also http://specs.openstack.org/openstack/ironic-specs/specs/liberty/network-provider.html17:23
*** praneshp has quit IRC17:24
*** achanda has quit IRC17:25
*** mtanino has joined #openstack-ironic17:25
Pradipjroll: what i mean is, when the dhcp for the pxe boots comes in, you need to feed it to the provisioning network dhcp, but when you are switching to tenant network it needs to be fed to the tenant dhcp. for that i beleive you will need to tag the packets differently, am i right?17:25
*** kozhukalov has joined #openstack-ironic17:25
jrollPradip: this will only be supported for instances that boot from disks, we can't rely on being able to control DHCP on the tenant network17:26
*** mitchjameson has quit IRC17:26
*** athomas has joined #openstack-ironic17:26
Pradipjroll: okay but you need the dhcp for the provisioning network, right?17:26
jrollPradip: yes, ironic will put the node on the provisioning network and configure dhcp17:27
jrollthe switch will probably need a dhcp relay set up; that's up to the operator and out of scope here17:27
Pradipjroll: okay got it. the only thing unclear to me is, how the baremetal is gonna get a tenant ip then17:28
*** ukalifon1 has quit IRC17:28
Pradipis the pexe boot going to set it up?17:28
Pradip*pxe boot17:28
*** puranamr has joined #openstack-ironic17:29
jrollPradip: nova (or the user, in the case without nova) will initially create a neutron port on the tenant network, which allocates the IP. after deployment, ironic will remove the provisioning network port and tell the tenant port to activate17:30
jrolland the configuration may get to the instance via configdrive or metadata service17:30
*** karimb has quit IRC17:30
Pradipjroll: ah got it. thanks a lot for clearing this up :)17:30
jrollyep np :)17:31
Pradip:)17:31
*** achanda has joined #openstack-ironic17:35
*** max_lobur has quit IRC17:39
*** achanda has quit IRC17:40
*** davideagnello has quit IRC17:40
*** lazy_prince has quit IRC17:41
*** puranamr has quit IRC17:42
Pradipjroll: just another question. will the interfaces file on the baremetal will also be properly set during the pxe boot so that it doesn't send any dhcp packets after the bootup17:42
devanandaJoshNang: so https://review.openstack.org/#/c/152703/5 seems to be doing not what i expected us to do17:42
mordreddevananda: so - here's my use case17:42
mordreddevananda: I have 48 machines in a rack in a data center17:43
*** lucas-dinner has quit IRC17:43
mordreddevananda: they are all connected to a switch/router I do not control, and that has all of the machines connected to vlan2517:43
*** zhenguo has quit IRC17:43
mordreddevananda: I want to boot those machines using ironic/bifrost17:43
mordreddevananda: so, as part of booting them, I need to communicate to them that they are/should be associated with vlan2517:44
mordreddevananda: I'm communicating the _rest_ of their network info via network_info.json that bifrost creates compatibly with the nova spec above17:44
devanandaahh17:44
mordred(assuming I might at some point want to use nova instead of bifrost)17:44
devananda(right - but that's irrelevant)17:45
mordredsure - just being complete as to why I care about teh nova spec if I'm using bifrost17:45
devanandaso the difference between this patch and, say, https://review.openstack.org/#/c/187829/6 or https://review.openstack.org/#/c/188528/617:46
*** achanda has joined #openstack-ironic17:46
devanandais that you don't control the switch in any way, shape, or form -- and certainly not through neutron17:46
*** trown|lunch is now known as trown17:46
*** krtaylor has joined #openstack-ironic17:47
devanandarather than integrate ironic with a tool that configures the switch, you need to tell ironic-managed instances about the unchangeable switch they're attached to17:47
*** puranamr has joined #openstack-ironic17:47
devanandayes?17:47
*** jcoufal has quit IRC17:48
*** igordcard has joined #openstack-ironic17:50
jrollPradip: yes, that's what configdrive and metadata service is for, + cloud-init or similar17:52
*** puranamr has quit IRC17:53
jrollmordred: devananda: what problems are you seeing here?17:53
devanandajroll: discussing https://review.openstack.org/#/c/152703/517:54
jrollright...17:54
devanandajroll: i initially misunderstood the intent, as I thought it was part o the ml2 work17:54
jrolldevananda: well, it's kind of a dependency, otherwise the instance has no way to learn what vlan it is on17:54
jrollthe info needs to be in the configdrive -- this defines a format for that, and also populates it if you're using nova17:55
devanandajroll: uhh... well, with ml2 integration, the instance shouldn't know17:55
jrollum, it needs to know?17:55
jrollif you're using vlan, the instance needs to be configured with that vlan no?17:55
devanandathe switch should be tagging and/or filtering packets coming from the machine's phys interfaces17:55
devanandanot simply trusting them17:56
jrollit has to tag outgoing packets17:56
jrollwell, sure17:56
jrollthe switch should also do security on that.17:56
devanandaso17:56
mordreddevananda: so - in my end, I don't care as much about how the vlans stuff gets configured - purely how I know about that state in the instance17:56
jrollbut for the machine to tag the packet it needs to know what vlan to tag17:56
mordredI understand other people _do_ care about how they get configued17:56
devanandathe instance does not need to tag packets IF the switch is configured properly17:56
mordredand that's important17:56
*** lucas-dinner has joined #openstack-ironic17:56
jrolldevananda: what about with multiple vlans?17:57
mordreddevananda: the instance needs to know what vlan tag is associated with the nic17:57
devanandamordred: totally. in your case (we can't change the switch config AND all traffic needs to be tagged)17:57
devanandamordred: then yea, this is needed17:57
mordredk17:57
mordredI mean - I imagine it's _use_ will be low17:57
mordredin broad sense17:57
devanandaright17:57
jrollI'm confused if there's a problem here, and if so what the problem is17:57
devanandafor network isolation of multiple tenants in the same bare metal pool (rack, what ever) -- the instances should not need to knkow or care about the cloud's vlans or the switch config17:58
devanandapassing this data in is leaky and shouldn't be needed most of the time, assuming ironic<->neutron<->switch integration17:58
jrollI believe that's really up to the operator17:58
jrollour cloud does need to care17:59
devananda17:55:58 < jroll> if you're using vlan, the instance needs to be configured with that vlan no?17:59
devanandajroll: ^ that's my concern17:59
devanandabut it may be a miscommunication because it's not clear to me whether you're talking about the ML2 integration or not17:59
jrollthat's my impression, I could be wrong. in some cases it does need to know, I'm not 100% sure if that's always a deployer decision or what17:59
TheJuliaThere is a difference between the cloud's infrastucture and what the tenant is being handed18:00
jrollin our deployment, wthe instance does need to be configured, so there is clearly a use case18:00
devanandajroll: yes. mordred is in the same boat right now18:00
jrollmorgabra: you may or may not be interested in this discussion18:00
*** amotoki has quit IRC18:00
devanandajroll: but the ML2 work AIUI is designing something different18:00
devanandawhich we all would like to converge on18:01
jrolldevananda: the ML2 work is defining a framework for how this works -- how the switch is configured is up to the ML2 mechanism for that switch18:01
jrollwe're defining the interactions, not the exact switch configs, because that's impossible18:02
devananda"Neutron ML2 mechanism drivers should support this feature by using the data passed in binding profile to dynamically configure relevant ports and port-channels on the relevant switch(es)."18:02
jrollmhmm18:03
jrolland that configuration may require the server to tag its packets.18:03
devananda"VLAN provisioning on switch(es) is dependent on ML2 driver functionality being developed to support this feature."18:03
devanandagah18:03
devanandaso we need to explicitly call that out18:03
jrollyeah, that one really makes me sad18:03
devanandaas I think that's going to be, well, problematic18:03
devanandato put it politely18:04
jrollwell18:04
morgabrajroll: devananda: ML2 functionality needing to be developed?18:04
jrollthat's calling out that VLAN work is happening in a separate spec, AIUI18:04
morgabranot really18:04
*** Sukhdev has joined #openstack-ironic18:04
morgabraif you add a vlan to the provider network it's already visible to nova18:04
devanandajroll: link to that spec?18:04
morgabra'segmentation_id'18:04
jrolldevananda: the source is right where you got the quote from18:05
* jroll double checks18:05
devanandajroll: sorry, i meant, is there a spec for the ML2 work? I only see lnks to your network-provider spec18:05
jrolldevananda: oh, I misunderstood18:05
jrolldevananda: no, that's saying that the ML2 mechanisms for thse need to understand VLANs and how to configure the switchport, I believe18:06
*** Marga_ has quit IRC18:06
*** davideagnello has joined #openstack-ironic18:06
devanandaright - so that, to me, seems to conflict with "it may require the server to tag its packets"18:06
devanandawhat am I missing?18:06
*** Marga_ has joined #openstack-ironic18:07
jrolldevananda: but I believe it is related to https://review.openstack.org/#/c/94612/ as well18:07
*** kozhukalov_ has quit IRC18:07
jrollso18:07
jrollmorgabra: our instances require the vlan to be configured, right?18:07
jrolldeva contests that isn't necessary18:07
*** degorenko has quit IRC18:07
morgabraright, you have sort of 2 rough options:18:07
jrollI'm not sure if that's a technical decision that we explicitly made18:07
morgabra1) if you bond your interfaces, you have to trunk vlans if you want to access multiple networks18:08
jrollor a switch feature thing we lack18:08
morgabra2) if not, you can attach X networks to X interfaces18:08
morgabraand set the access vlan ^18:08
jrollright, so with (2) you could refrain from the host knowing about the vlan and do it all on the switch18:08
jrollfor (1) you need the host to know the vlans18:08
jrollright?18:08
morgabracorrect, because it can assume all traffic is for the configured vlan18:09
morgabrabecause there's only 118:09
jrollok, cool18:09
jrollso, we certainly need a way for the instance to know about the vlans18:09
jrolldevananda: does that answer your question as to why we pass it to the host?18:09
jrolldevananda: and what problems do you see with passing it to the host?18:10
jrollor mordred, even ^18:10
devanandahrm18:11
openstackgerritMerged openstack/ironic: Periodically checks the status of nodes in DEPLOYING state  https://review.openstack.org/19714118:11
devanandai do not understand (1)'s logic18:11
jrollsorry for misunderstanding on the 1:1 case18:11
mordredso - it's not just about bonding18:12
mordredthe switch could still be configured in such a way that you need to know about the vlan for access purposes on the host18:12
jrolldevananda: so let's say you have two nics, bonded. you want four vlans to ride on that bond. how does the instance/switch decide which vlan to send which packets on?18:12
devanandajroll: agreed on that.18:13
devanandahowever18:13
jrollmordred: sure, I can agree with that18:13
devanandawhy do we need 4 vlan's for a single neutron network?18:13
jrollyou don't18:13
jrollyou need 4 vlans for 4 neutron networks18:13
devanandaaiui, we only support 1 net :: 1 port-group18:13
jrollfor *now*, that's correct18:14
devanandaok18:14
jrollbecause software is hard and baby steps18:14
devanandaso for now, we don't need the instance to know anyhting about VLANs, even for bonded NICs18:14
jrollthat depends on the switch config. which depends on the ML2 implementation for that switch.18:14
devanandablah18:14
jrollbut in general yes that should be able to be avoided18:15
devanandacool18:15
jrollassuming driver authors are capable of doing that :)18:15
jrollthat said, I don't think it does any harm to pass the vlan to the instance18:15
devanandaif the switch strips the vlan tag, then yes, it does18:16
*** achanda has quit IRC18:16
devanandaso we need to be super clear to the ML2 drivers re: when they should trunk vs when they should tag/strip18:16
jrollbecause an instance could access other vlans that way?18:17
devanandayup18:17
jrollyeah18:17
jrollml2 drivers should use port security features etc18:17
devanandawhich is why I'm really saying: we should always require the switch to strip vlan tags18:17
jroll"drop all packets for this port that are not on vlan X"18:18
jrollwait, always require it to strip tags? isn't that what causes things to be able to break out?18:19
devanandaI mean "strip tags going to the host, replace tags coming from the host"18:19
jrollso that is to say the host shouldn't be configuring its own VLANs?18:20
devanandatrunking + filtering out other VLANs works, but exposes the VLAN data to the tenant, meaning bits of your physical net infrastructure are now known by the tenant18:20
devanandajroll: correct18:20
jrollwhich means we can't do trunking at all.18:20
devanandaright18:20
jrollwhich is a fail IMO18:21
jrollpartially for the fact that we'll ALWAYS have to carry patches downstream.18:21
jrolland partially because nobody else will be able to do trunking without also carrying patches18:21
TheJuliafor all the user knows, it is qinq or the switch is changing the tag number.  Tenant machine knowing they need to use a tag number doesn't mean that tag is used anywhere else really.18:22
*** mtanino has quit IRC18:22
morgabraI'm confused why exposing vlan ids is so bad?18:22
jrollyep18:22
jrolland hiding the vlan is just security by obscurity18:22
TheJuliaindeed18:22
morgabrait's true, information leak18:22
TheJuliaindeed18:23
jrollthere's only 4096, it is trivial to brute force them18:23
morgabrabut if you configure your switchports, you can't just emit tagged traffic for another vlan and have it work18:23
TheJuliabut you can't make assumptions that it means much :)18:23
TheJuliayup18:23
jrollmorgabra: right, so I think the concern is that ML2 authors may write their plugin to be insecure in this case18:23
jrollwhich is a non-argument IMO18:24
TheJuliait requires clear, conconcise documentation.18:24
morgabraI mean, if you are allowing your hosts on vlans it's not supposed to be on18:25
morgabrayou're gonna see traffic18:25
devanandai agree the security can be handled in other ways - and yah, driver authors need to be aware of and adhere to those, so we should make it simple to do good, and hard to do poorly18:25
morgabrabroadcasts, etc18:25
jrollwe can't just completely block useful features on the premise vendors might do it insecurely18:25
devanandabut also, I dont think the instance should have to know about the infrastructure provider18:25
devanandathat's really where i'm coming from here18:25
jrolleven when the infrastructure provider causes it to automatically know?18:25
jrolltake cinder integration for example, to do it in-band the instance needs to know about the infra provider18:26
jrolleven just /b 6018:26
jrollurgh18:26
*** achanda has joined #openstack-ironic18:26
TheJuliayup, at some point thats an operator choice to allow to occur18:26
jrollit's hardware, it needs to know about the infrastructure to do certain things.18:27
devanandais there an openstack API where I could query the VLAN configuration that my instance also got from cloudinit?18:27
jrollyes, all of this is also in the metadata service18:27
jrolland neutron18:27
devanandaright - ok. then i'm cool with it18:27
devanandaI knew it's in metadata18:27
devanandabut if it's also exposed in neutron API, great18:27
jrollit comes directly forom the neutron network18:28
jrollfrom*18:28
morgabramight want to check with a neutron guy18:28
jrolland soon the port :P18:28
morgabraI don't know if I just YOLOd putting vlan id in the sementation_id18:28
devanandajroll: so that's the part that seems weird to me18:28
jrollmorgabra: lol18:28
devanandamorgabra: you did :)18:28
devanandathat seems quite odd to me18:28
jrollmorgabra: you're the only bare metal ml2 mech author right now, sooo18:28
morgabragod18:28
morgabrahelp us18:28
jroll:D18:28
devanandas/only/original/18:28
jrolldevananda: which part seems weird, the port?18:28
jrolldevananda: s/only/only open source/18:29
jrollor the fact that it's on the network object instead of the port?18:29
devanandajroll: no. exposing the vlan id in neutron's API18:29
devanandabut then, many things about neutron seem wierd to me :)18:30
jrolldevananda: I mean, you have to do it to enable this stuff18:30
devanandajroll: oh -- to be clear, can the non-admin user see it?18:30
devanandaI'm sure the admin user can :)18:31
jrolldevananda: I'm 99% sure18:31
jrollplease hold :P18:31
devanandahttp://docs.openstack.org/admin-guide-cloud/content/provider_api_workflow.html18:31
*** ukalifon has joined #openstack-ironic18:31
devanandaTo use the provider extension with the default policy settings, you must have the administrative role.18:31
morgabraoh, it is supposed to be a vlan id18:31
morgabrayay18:31
*** jcoufal has joined #openstack-ironic18:32
*** jcoufal has quit IRC18:32
devanandamordred: probably ya'll already know how to do the neutron side of what you need to do, but i do not, and i found this, which looks very similar, so i'm sharing: http://www.s3it.uzh.ch/blog/openstack-neutron-vlan/18:34
devanandajroll: also ^ says that all this is, by default, only available to admin18:34
devanandaperhaps a question for Sukhdev ?18:34
*** absubram has joined #openstack-ironic18:34
mordreddevananda: actually - I have not gotten to that part yet18:35
jrolldevananda: hmm, this is just net-show18:35
* Sukhdev lurking around18:35
mordreddevananda: I actually do not need any vlan info exposed to my vms18:35
mordreddevananda: but right now, I'm just focusing on installing an OS with ssh access onto my ironic-controlled baremetal18:36
devanandamordred: oh, gotcha.18:36
mordreddevananda: (thanks those - that's helpful)18:36
morgabraso the actual question is do we want to support the features that require leaking vlans18:36
mordreddevananda: although we're planning on using linuxbridge and not ovs forneutron18:36
morgabraor at least not block it so hard its hard to hold a downstream patch for us crazy folk18:36
devanandamorgabra: indeed18:37
mordredmorgabra: well, sometimes it's not leaking - sometimes it's just a physical reality of the environment that your bare metal resides in18:37
devanandawhat bothers me is requiring the instance to know something (in order to get on the network) that we (afaik) do not share (via a REST API) with the user that created it18:37
devanandaand by bothers, i mean, i will block it if I see it18:37
mordreddevananda: yes. I agree that the information should be availabe via a REST API18:38
jrollI also agree18:38
mordreddevananda: if it is also available to the instance18:38
devanandagreat :)18:38
*** achanda has quit IRC18:38
mordredas long as the result of that is that I can get the information somehow into my instance :)18:38
devanandaif we have to expose the phys vlan id to the instance for $reasons -- I'm willing to accept that. there are clearly cases that do require that, though I also want us to handle the cases that do NOT require it18:38
*** romcheg has joined #openstack-ironic18:39
jrollso how does this sound:18:39
jrollprovider:segmentation_id is an admin thing. that's the canonical place for the vlan18:39
mordreddevananda: yes! zomg - I think that most things probably do not need to know anything about the phys vlan id18:40
jrollan ML2 driver that configures a port in such a fashion that it needs the instance to know the vlan, may place that data in a non-admin place on the port itself.18:40
jrolland then the user can get that data when needed, from the port object that relates to the interface that needs to be configured.18:40
mordredjroll: those words sound sane to me18:41
devanandajroll: and that data will also be passed in to cloud-init18:41
devanandas/may place/must place/18:42
mordreds/cloud-init/config-drive or metadata service/ and yes18:42
mordredand yes to must place18:42
devanandamordred: right18:42
jrolldevananda: well18:42
jrollat the time the metadata is built18:42
jrollthe ml2 mechanism may not have configured things yet18:42
mordredif there is a vlan that must be known about, it must be in teh metadata place18:42
jrollor almost certainly will not have18:42
mordredjroll: oh - that's a whole other can of fish btw18:42
jrollbecause that is at the last moment18:42
mordredwhich one should not get me started upon18:43
jrollmordred: idk if I want to knwo18:44
mordredjroll: well, the nova thing I sent you yesterday where I was getting vms from the cloud that did not yet have network info even though they were ACTIVE18:44
SukhdevThis is very long discussion - hard for me to follow, if you have a specific question about provider nets or tenant nets, I can try to clarify18:45
jrollmordred: oh, that, that's a completely different thing (also did that get resolved?)18:45
mordredjroll: combined with an environment that does not believe in dhcp == HOW AM I SUPPOSED TO CONFIGURE THE NETWORK ON THAT VM???? *headdesk*18:45
mordredjroll: dunno - I wrote  patch to not consider the machien active until it has addresses18:45
jrollmordred: yeah let's not get started on this other than a sincere apology from me18:45
mordredjroll: no worries - it's certainly not your fault!18:46
jrollit could be!18:46
jroll:P18:46
mordredjroll: although actually I think I abandoned the patch after realizing what you just said above18:46
mordred(Which si the reason I brought it up)18:46
mordrednamely - if an instance can boot before the  network config has been created and thus the  metadata will have already been built18:46
mordredthen there is a fundamental problem with the boot sequence18:47
Sukhdevmordred: when you launch a first instance on a given network (i.e. neutron port-create) the DHCP instance is attached to the network at that moment18:47
mordredSukhdev: well, in the cloud in question, there is no dhcp18:47
morgabrajroll: so, fun story, binding:profile is admin_only by default too18:47
mordredSukhdev: which means the instances can only get network config via static config in config-drive18:47
morgabraI don't see a place to stick the vlan on the port18:47
*** mtanino has joined #openstack-ironic18:47
morgabralike, assuming tenants can hit the neutron api anyway18:48
* devananda takes a stab at rewriting this more formally18:48
devanandahttp://paste.openstack.org/raw/381557/18:48
devanandajroll: ^18:48
morgabraobviously nova can figure it out18:48
openstackgerritjxiaobin proposed openstack/ironic: Retry ipmi commands unless the failure is not retriable  https://review.openstack.org/20274218:48
jrolldevananda: +118:49
clif_hdevananda: is your shared lock patch something that's complete or is it a WIP?18:49
devanandaSukhdev: would appreciate your eyes on that pastelink too18:49
devanandaclif_h: which one?18:49
morgabrajroll: devananda: I'm not sure it's correct to require it on the port object18:49
Sukhdevdevananda: reading18:49
morgabralots of stuff doesn't live on the port object, like the subnet definition18:49
morgabraetc18:49
clif_hhttps://review.openstack.org/#/c/202558/18:49
devanandamorgabra: hm, ok.18:49
jrollmorgabra: I'm not sure either - that's just an initial proposal from me18:49
devanandaclif_h: oh - not my patch. it's dtantsur|afk's -- i just fixed a typo18:50
morgabrabeing a part of the network is fine, already a mechanism there, it just so happens viewing it is admin_only by default :/18:50
clif_hdevananda: oh18:50
jrollCI passed on this if anyone else isn't a fan of ubuntu today :) https://review.openstack.org/#/c/202578/ /cc mordred18:50
jrollmorgabra: so maybe it's up to the deployer to make that happen?18:51
mordredjroll: \o/18:51
* devananda stamps it18:51
openstackgerritjxiaobin proposed openstack/ironic: Retry ipmi commands unless the failure is not retriable  https://review.openstack.org/20274218:51
morgabrasort of a bummer, but yeah. There's some fine-grained controls there that would make it sane ('if network is shared or you own it or you are an admin)18:51
NobodyCamlol quick +a :-p18:52
Sukhdevdevananda: when a nova boot request will be generated, the physical port where the server connects can be put in the access mode or trunk mode - this is a configurable option18:52
Sukhdevdevananda: if the BM will be used to provide multi-tenancy, then it should be put into trunk port mode otherwise in the access mode18:53
Sukhdevdevananda: one of the customers requested that they want the port in access mode during the boot operation, and in the trunk mode when the network flip takes place18:55
openstackgerritjxiaobin proposed openstack/ironic: Retry ipmi commands unless the failure is not retriable  https://review.openstack.org/20274718:57
Sukhdevdevananda: am I making sense or confusing the issue? Obviously I do not have full context of your discussion :-):-)18:57
*** puranamr has joined #openstack-ironic18:58
*** rbrooker has joined #openstack-ironic19:01
*** kkoski has quit IRC19:02
*** kkoski has joined #openstack-ironic19:02
*** trown is now known as trown|outttypeww19:03
*** cdearborn has joined #openstack-ironic19:04
openstackgerritThiago Paiva Brito proposed openstack/ironic-specs: OneView Driver for Ironic  https://review.openstack.org/18776219:06
*** kkoski has quit IRC19:07
openstackgerritjxiaobin proposed openstack/ironic: Retry ipmi commands unless the failure is not retriable  https://review.openstack.org/20275119:08
*** puranamr has quit IRC19:08
*** pal has joined #openstack-ironic19:14
*** [1]cdearborn has quit IRC19:18
openstackgerritjxiaobin proposed openstack/ironic: Retry ipmi commands unless the failure is not retriable  https://review.openstack.org/20275119:22
devanandaback now - sorry, pulled away by things briefly19:23
devanandaSukhdev: so, the BM node needs access to some services (ironic, glance, swift) within the cloud control plane while it is being provisioned.19:24
devanandaSukhdev: after provisioning, it should be in the tenant network(s)19:24
Sukhdevdevananda: The provisioning network can be provider network (which is admin network) and could be plumbed in a way to provide the services that are desired19:26
devanandaexactly19:26
*** dguerri` is now known as dguerri19:26
*** Nisha has quit IRC19:26
devanandaalso not the question we were tackling :)19:26
devanandaSukhdev: we were discussing the mechanism for that BM node to attach to the tenant network, and whether the switchport should "trunk and filter" or whether it should strip tags as they leave the switchport19:27
devanandaSukhdev: *to attach once the user's instance is booting19:27
Sukhdevdevananda: and, when nova boot request (i.e. port-create) comes to neutron, the ML2 plugin can plumb the switch port19:27
devanandaif the switchport is in trunk mode, then the INSTANCE must know the correct segmentation IDs19:27
devanandabut how do we get that data to the instance? -- JoshNang's patch to Nova addresses that19:28
devanandaby passing the data via configdrive or cloud metadata service to the instance during boot19:28
devanandaSukhdev: that patch is here: https://review.openstack.org/#/c/152703/519:29
devanandaSukhdev: our discussion ended with this conclusion: http://paste.openstack.org/raw/381557/19:29
* Sukhdev looking19:30
devanandanote that none of this discussion hsa to do with the provisioning of the node, or how it gets access into the cloud control plane19:30
devanandait's _all_ about the tenant's instance19:30
*** pal has quit IRC19:31
*** mitchjameson has joined #openstack-ironic19:36
Sukhdevdevananda: So, during the boot cycle, since server does not know about the segmentation-id, we use native VLAN (which is same as the provider network id)19:37
Sukhdevdevananda: and when the server moves to the tenant network, ML2 driver will dynamically add tenant VLAN on the same port to support the tenant isolation - for, this server needs to be able to deal with the tagged packets19:38
Sukhdevdevananda: and I think that is what this seems to be doing - however, I have not looked at it carefully19:39
Sukhdevs/this/this patch19:39
devanandaSukhdev: so we must remove provider network id from the switch at that point19:40
devanandaSukhdev: and pass the correct tenant VLAN id into the instance via the mechanism which that patch uses19:41
devanandaSukhdev: and we must expose that tenant VLAN id through neutron's REST API to the user who owns that instance19:41
Sukhdevdevananda: correct -19:41
devanandaI attempted to capture that conclusion in the pastebin I linked19:42
Sukhdevdevananda: when the port-update or port-create is invoked it has a network ID in it, and network has the VLAN Id in it, this is how ML2 driver knows configure the port correctly19:42
devanandaSukhdev: that is invoked by nova or ironic, right?19:43
devanandaSukhdev: my concern is that it appears that the end-user-of-nova doesn't have access this information19:43
Sukhdevdevananda: correct - presently it is done by nova - but, my understanding is jroll is going to look into doing it from ironic driver as a part of the network flip logic19:44
jrollno, nova will still do the port-create19:44
jrollironic will do a port-update to pass the switchport info19:44
devanandaah, right -- nova creates it but doesn't bind it19:45
jrollSukhdev: the concern is: when a user does "port-show" the response will not have the vlan id19:45
Sukhdevjroll: you mean neutron port-show ?19:46
jrollSukhdev: yes19:46
openstackgerritMerged openstack/ironic-python-agent: Change Dockerfile to use Debian as a base  https://review.openstack.org/20257819:46
jroll^ rip ubuntu19:46
Sukhdevjroll: I believe the neutron net-show will show the VLAN ID19:46
jrollSukhdev: no, it's provider:segmentation_id19:46
jrollprovider: is admin only19:47
jrollas I understand it -- I haven't verified this myself19:47
Sukhdevjroll: oh I see what you are saying19:47
Sukhdevjroll: let make sure I understand the requirement correctly - then I can play around with it and provide answer/data19:48
Sukhdevjroll: so, you want to use the provider-net for provisioning network? why not tenant network?19:48
jrollSukhdev: no19:49
jrollfor the tenant network19:49
jrollI want the nova end user to be able to query neutron and get the vlan info.19:49
*** harlowja has joined #openstack-ironic19:49
*** harlowja_ has quit IRC19:49
jrolltoday I am under the impression that does not work because the fields under "provider:*" are admin-only.19:49
jrollbut I may be wrong19:49
Sukhdevjroll: So, this is how it works (best way to understand this is to use horizon) - as an admin, you can create a provider network and specify a project (which is tenant)19:50
Sukhdevjroll: then it is visible to that tenant - even though it is created by admin.19:51
jrollSukhdev: will the provider:segmentation_id fields be visible to the user?19:51
SukhdevjrollL the tenant then can launch VMs on that network (i.e. port-creates)19:51
Sukhdevjroll: user being the tenant, right?19:51
jrollSukhdev: yes, the tenant19:52
Sukhdevjroll: then the answer is yes19:52
Sukhdevjroll - we can confirm it -19:52
*** harlowja has quit IRC19:52
*** harlowja has joined #openstack-ironic19:53
jrollSukhdev: ok, great. thanks!19:53
Sukhdevjroll: Here is the quick way to verify it - use horizon and go to admin mode, create a provider network and specify the project and see if it is visible to the tenant (under tenant tab)19:53
Sukhdevjroll: I do it for shared networks all the time - have not played around with provider networks - but, my understanding is that it works the same way -19:54
Sukhdevjroll: hence, I said I can verify it and provide the answer - or if you have a stack up, simply try it from horizon19:54
devanandaBadCub: fyi, we're up to 20 signups for the midcycle now20:03
*** achanda has joined #openstack-ironic20:03
NobodyCamw00t :)20:03
BadCubdevananda: coolness20:04
*** Sukhdev has quit IRC20:04
* BadCub goes to check the food thing20:04
BadCubonly 16 responses for feeding20:05
BadCubdevananda: when do we shut down registration?20:06
*** achanda has quit IRC20:09
devanandaBadCub: a week before? I'll send another reminder next week, including "hey i'm going to close reg on the 3rd" or something20:10
* TheJulia calls it and goes off to drink20:10
BadCubdevananda: should we maybe close two weeks before? I need time to coordinate with the office for lunch and [allthethings] to make sure everyone has something they can eat20:11
BadCubTheJulia: drink well!20:11
devanandaBadCub: we can try :)20:12
devanandaBadCub: though experience tells me we will have some folks who just show up unannounced, no matter what we do20:13
devananda*probably20:13
BadCubdevananda: okay20:13
BadCubdevananda: indeed. My main concern is lead time for food places. I am coordinating three different food types, so we have variety20:14
*** Sukhdev has joined #openstack-ironic20:15
*** ukalifon has quit IRC20:17
BadCubspeaking of food... I really need to eat20:17
devanandaso do I :)20:17
BadCublol20:18
*** achanda has joined #openstack-ironic20:19
*** igordcard has quit IRC20:25
*** e0ne has joined #openstack-ironic20:27
*** krtaylor has quit IRC20:36
devanandamordred: quick question - does cloud-init (or simple-init) today have the capability to understand the segmentation id's being passed in by JoshNang's patch?20:42
devanandamordred: also, what about port bonding?20:43
mordreddevananda: neither - but they're next on my list and should take about 20 minutes to add20:44
devanandacool20:44
mordreddevananda: I added support for explicit dhcp interfaces yesterday in about 1020:44
devanandabut i would not be incorrect to say "these dont exist today"20:44
mordreddevananda: I mean - I coudl have them exist today - what do you want to accomplish?20:45
mordreddevananda: it's literally liek "if key in dict, write 2 lines to file"20:45
mordredI've just been waiting to make sure that we're all good with the format before I add it20:46
devanandamordred: sure - but that's distro specific, right?20:46
mordredthe two lines?20:46
mordredkinda - so sorry - I have to do that bit twice - once for rh and once for deb :)20:46
devanandaheh20:47
lifelessmordred: are you collaborating with dprince's os-net-config on the network wireup stuff?20:51
lifelessmordred: because, that might avoid glean bloat20:52
lifelessmordred: (just a thought in passing)20:52
mordredlifeless: no, I am not20:52
mordredlifeless: it has too many dependencies last I checked20:52
*** max_lobur has joined #openstack-ironic20:52
mordredyes. way too many depends - doesn't solve the problem glean is solving20:53
lifelessk20:53
mordredhttp://paste.openstack.org/show/381728 <-- the list of things onc installs20:54
lifelesswat20:54
lifelessthats surprising20:54
jrolldevananda: we have patches for cloud-init to understand the vlan stuff, fwiw, idk what the status of upstreaming them is20:59
jrollthey are in the open, somewhere20:59
mgagnejroll: somewhere here: https://github.com/jayofdoom/cloud-init-fedora-pkg/blob/master/cloud-init-0.7.5-onmetal-configdrive.patch21:01
jrollyes, ty mgagne21:01
mgagnejroll: patch works fine except that the link name has to be ethN instead of linkN to work on centos. unless it got fixed since.21:02
zer0c00lAre the disk images used for ironic (With IPA) is anyway different from the one that is used for VMs?21:02
*** absubram has quit IRC21:02
zer0c00lI mean can i re-use a qcow2 imaged used for VM with ironic-ipa?21:02
jrollmgagne: centos what? we're using it on 6/721:02
mgagneor I got something wrong on my side21:02
mgagnejroll: I didn't get a chance to look at your implementation of network_info.json so don't know if it's link0 or eth0 you are injecting.21:03
mgagnejroll: might just be me that fudged something in my baremetal config21:03
zer0c00lAlso another question is the ironic-ipa installs grub2 by default, OS like RHEL6 uses grub1. Do you guys tested and found any implication for using grub2 on a OS that inherently uses grub1?21:03
jrollmgagne: mmm, maybe it's different with the upstream network_info.json, our patch is likely slightly different21:03
mgagneyours inject stuff in vendor_data.json =)21:04
jrollright21:04
jrollbut surely that doesn't affect the link names :P21:04
mgagneyea I can't remember if it was me or not that fudge it21:04
mgagneI hate myself for not leaving meaningful comment in my commit :-/21:06
*** ijw has joined #openstack-ironic21:06
mgagne"Refresh Add network_info to vendor_data.json" yea like it helps...21:06
mgagnewhat I'm wondering now is how to expose the provider network info the right way21:07
jrollyeah21:08
jrollare you at the nova midcycle next week?21:08
jrollmgagne: ^21:08
*** thiagop has joined #openstack-ironic21:08
mgagneno, I'm only an operator hacking stuff. I don't know enough to feel like I *need* to get there21:09
jrollgotcha21:09
jrollI have some other networking things that are "if baremetal: else:"21:09
mgagnehehe21:09
jrollso I feel like this might come up next week21:09
mgagneyea, I'm trying to upstream stuff as much as I can. currently forward porting my patches and it's a pain as always21:10
jrollbut if you have opinions I can put them in my luggage to bring them along21:10
jrollmhmmm21:10
mgagneabout ~100 patches across all projects to triage ;)21:11
mgagnethanks god, most are ubuntu patches or backports21:11
zer0c00ljroll: Ping.21:15
zer0c00lSorry to bother you, but do you know if i need to use any special disk images for IPA?21:15
zer0c00lor a qcow2 is enough ?21:15
*** e0ne has quit IRC21:16
zer0c00lfrom the looks of it, ipa supports a diskimage and a partition image?21:17
zer0c00lis there any docs on how to create them?21:17
jrollzer0c00l: the agent_* driver can use any whole disk image in qcow2 format21:18
jrollwhether that image boots is an exercise to the user :)21:18
jrolland maybe check out disk-image-builder, or I think NobodyCam might have a command line for building images handy21:19
zer0c00ljoll: i see21:19
zer0c00lThanks21:19
jrollnp21:19
NobodyCamhuh21:20
NobodyCamme21:20
jrollheh21:20
jrollI can dig it up, don't worry21:20
jrollsomething like:21:21
jrollfreenode_#openstack-ironic_20150714.log:[14:07:59] <NobodyCam> disk-image-create -a amd64 -o "{{http_boot_folder}}/{{deploy_image_filename}}" -t qcow2 "{{21:21
jrollfreenode_#openstack-ironic_20150714.log-[14:08:02] <NobodyCam> dib_os_element}}" vm serial-console simple-init "{{ extra_dib_elements}}"21:21
jrollzer0c00l: ^^21:21
NobodyCamlol21:21
NobodyCamTY jroll :)21:21
jrollzer0c00l: that should at least give you the right direction21:22
zer0c00li see21:22
*** zz_natorious is now known as natorious21:22
jrollzer0c00l: the 'vm' part makes it a whole disk image21:23
jrolldib_os_element is ubuntu or whatever21:23
zer0c00ljroll: i see.21:23
jrollyou should be able to use the same images as your VM images, maybe with some driver tweaks or something21:23
jrollif it's a whole disk image IPA won't install grub21:23
zer0c00laah, because grub is already in the full disk image21:24
zer0c00land it is just a dd ?21:24
TheJuliazer0c00l: yeah, vm loads grub up in the image21:24
TheJuliazer0c00l: a little more than dd, a write out of a qcow2 to the device21:24
TheJuliabasically going from qcow2 to raw format on the disk21:24
zer0c00lTheJulia: Cool!21:29
zer0c00lTheJulia: Sometimes the disk image size could be small right? IS it expanded to the size of the target disk as well?21:30
jrollnot via ironic21:30
jrollthat's generally handled via cloud-init or something else inside the process21:30
TheJuliazer0c00l: Ironic just writes out the image, and maybe writes a configdrive if defined.21:31
* TheJulia has a 2/3rd written limited grow script open in another terminal she is working on 21:31
gabriel-bezerrajroll: thanks for the hand in the meeting.21:33
jrollgabriel-bezerra: totes21:34
jrollI don't think I actually helped, but happy to help!21:34
*** krtaylor has joined #openstack-ironic21:37
*** boris-42 has joined #openstack-ironic21:42
*** bnemec has quit IRC21:46
*** max_lobur1 has joined #openstack-ironic21:57
*** max_lobur has quit IRC21:57
*** lucas-dinner has quit IRC21:59
*** davideagnello has quit IRC22:04
*** cing has joined #openstack-ironic22:05
*** ijw_ has joined #openstack-ironic22:06
Sukhdevjroll: Hey - I just tried what I told you about the provider network - it works the way I explained it to you22:07
jrollSukhdev: awesome, ty sir22:07
jrollmordred: devananda: ^^ user can read provider fields22:07
jroller, morgabra ^22:07
*** puranamr has joined #openstack-ironic22:08
Sukhdevjroll - I created a network for a tenant -then, as a tenant, I was able  to create a subnet - i.e. able to assign the CIDR and see the vain ID, etc22:08
morgabrahttps://github.com/openstack/neutron/blob/master/etc/policy.json#L4022:08
morgabramaybe this doesn't mean what I think it means22:08
morgabralol22:08
*** ijw has quit IRC22:09
jrollmorgabra: heh22:09
jrollSukhdev: did you test on devstack or what?22:09
mordredjroll: aroo?22:09
Sukhdevmorgabra: best way to do is to try yourself using horizon - I tend to use horizon (over CLI)22:10
jrollmordred: tab complete is hard22:10
jrollignore me22:10
*** achanda has quit IRC22:10
*** lucas-dinner has joined #openstack-ironic22:11
Sukhdevmorgabra jroll: See this paste - http://paste.openstack.org/show/381893/22:13
Sukhdevmorgabra jroll : See the very last command - I changed the role to demo tenant and was able to see the VLAN ID22:13
jrollSukhdev: I'm skeptical of source ~/devstack/openrc admin demo22:13
jrollSukhdev: can you try with "demo demo"22:13
jrolljust to be sure22:13
Sukhdevjroll: hang on - let me give that a shot as well22:14
*** Sukhdev has quit IRC22:14
*** kkoski has joined #openstack-ironic22:16
*** Sukhdev has joined #openstack-ironic22:16
*** natorious is now known as zz_natorious22:16
Sukhdevjroll: interesting - http://paste.openstack.org/show/381894/22:16
jrollSukhdev: yep, that's about what I expected22:17
Sukhdevjroll: I do not see see VLAN ID - however, when I am on horizon, from demo tenan's view I can see it22:17
Sukhdevhow interesting - and, I always use horizon :-)22:17
jrollwell, I think you're using an admin user on the demo tenant22:17
jrollor something22:17
*** kkoski has quit IRC22:18
Sukhdevjroll: perhaps -22:18
Sukhdevjroll: so, what does it mean then - is it a blocker?22:18
jrollSukhdev: not sure, let me ask a neutron person22:19
jrollowait22:19
jroll:P22:19
jrollit isn't a total blocker, but22:19
jrollit is something that needs to happen.22:19
jrollSukhdev: hah http://lists.openstack.org/pipermail/openstack-dev/2015-July/069791.html22:20
Sukhdevjroll: seems to make sense22:22
mgagneyha, you have to update policy.json22:23
Sukhdevjroll: what is the reason that for BM provisioning, we need to use provider network?22:23
jrollSukhdev: well, there might be a reason to put an instance on the provider network22:24
jrollfor example to connect to cinder22:24
*** puranamr has quit IRC22:24
*** achanda has joined #openstack-ironic22:27
Sukhdevjroll: so, you are saying cinder (or similar services) will not be under the same OpenStack controller - and hence, they will be put on the provider network ?22:28
jrollSukhdev: how else would the BM node reach cinder?22:29
Sukhdevjroll: generally, provider networks are used to patch-in the existing legacy networks22:29
*** sinval has joined #openstack-ironic22:29
jrollok, sure22:29
*** puranamr has joined #openstack-ironic22:30
jrollthere might be a reason to attach a provider network22:30
jrollsay, the server needs to reach that legacy network22:30
Sukhdevjroll: so, you are saying cinder falls into legacy network category?22:30
Sukhdevjroll- if server needs to reach to the legacy network - that can be accomplished by adding the server to provider network after it has booted up -22:31
Sukhdevjroll: server can connect to multiple network, if it needs to22:32
*** puranamr has quit IRC22:33
Sukhdevjroll: typical provider network use-case is that there is a BM server or storage cluster that is sitting on a legacy network in the DC and the VMs (from the virtual world) need to access those servers22:34
jrollsure22:35
Sukhdevjroll: and those servers are not visible to the openstack controller - hence the segmentation-id is specified (as those services are already sitting on that VLAN)22:35
jrollSukhdev: so if you add the server to the provider network (for any reason, not just cinder), and need a vlan configured, you need to be able to get the vlan from the provider network object in neutron22:36
jrollSukhdev: another use case: public cloud providers that use the provider network to specify the shared 10.x space that is internal to a datacenter22:37
*** cdearborn has quit IRC22:37
Sukhdevjroll: understood22:38
jrollSukhdev: in any case, even for non-provider networks, we need a place to put segmentation id that the user can access22:38
Sukhdevjroll: I think for non-provider networks, that is visible -22:39
jrollwhat is the field, just segmentation_id?22:39
morgabrawell, it's complicated a little bit22:39
morgabratenants would have to create the network with the relevant provider:* keys22:40
morgabra(type vlan, etc)22:40
Sukhdevjroll: let me look it up on my setup - I have it running - give me a sec22:40
morgabrathere's a mechanism in the extension to allocate vlans for you22:40
jrollmorgabra: for the purposes of nova or?22:40
jrollrephrasing, why provider:*22:40
morgabrahow else are you going to allocate vlans?22:40
jrollidk22:41
morgabraif tenants are creating their own networks22:41
jrolljust asking why because idk22:41
morgabrayeah, afaik it's the only mechanism that exists already22:41
jrollok22:41
*** achanda has quit IRC22:41
morgabraI was thinking about this completely from the perspective of granting access to large shared networks22:41
morgabrawhoops22:41
jrollwhen? like in the initial plugin?22:42
morgabrasuggesting using the provider extension22:42
morgabrait actually maps pretty well, it's just admin only by default.22:43
jrollah, yeah22:44
*** ijw_ has quit IRC22:44
Sukhdevjroll: yeah - I just checked - VLAN ID is not visible to tenant - unless tenant admin context22:45
jrollright22:45
*** foexle has quit IRC22:46
*** lucas-dinner has quit IRC22:46
Sukhdevjroll: Hey Jim. - to change the subject on you - take a look at this paste - when I restart (or start from devstack) ir-api, I get this traceback - I see  the same for ir-cond as well - http://paste.openstack.org/show/382015/]\22:56
SukhdevAny idea what could be missing/wrong?22:56
jrollSukhdev: I believe that's a known issue and not an actual problem22:57
jrollI forget the fix but there's patches around for it22:57
Sukhdevjroll: thanks - let me do some googling to see if I can find something22:58
jrollSukhdev: I'd just ignore it22:59
jrollit doesn't actually break things22:59
Sukhdevjroll: I do not see any ironic ports or nodes - I thought this was causing it23:00
jrollhmm23:01
jrollshouldn't be23:01
Sukhdevjroll: when I run devstack, doesn't it create some default nodes?23:01
jrollSukhdev: it should, probably depends on your localrc23:01
jrollSukhdev: also may depend on which user, make sure to admin all the things23:02
Sukhdevjroll - see this - http://paste.openstack.org/show/382017/23:03
Sukhdevjroll: this should be sufficient - isn't it?23:04
jrolllooks correct23:04
Sukhdevjroll: yeah - when devstack completes, it gives the error which I posted - and when I list nodes, ports - it is empty list - hence, I thought that this error was causing some issue :-)23:08
*** achanda has joined #openstack-ironic23:09
jrollSukhdev: right, that isn't the issue23:11
openstackgerritOpenStack Proposal Bot proposed openstack/ironic: Updated from global requirements  https://review.openstack.org/20269923:16
openstackgerritOpenStack Proposal Bot proposed openstack/ironic-lib: Updated from global requirements  https://review.openstack.org/20181923:16
openstackgerritMichael Krotscheck proposed openstack/ironic: Added CORS support middleware to Ironic  https://review.openstack.org/19976923:17
*** athomas has quit IRC23:21
*** zigo has quit IRC23:21
*** zigo has joined #openstack-ironic23:22
*** cing has quit IRC23:23
*** zz_natorious is now known as natorious23:23
*** openstackstatus has joined #openstack-ironic23:34
*** ChanServ sets mode: +v openstackstatus23:34
*** bizarrochristy has quit IRC23:34
*** natorious is now known as zz_natorious23:34
*** bizarrochristy has joined #openstack-ironic23:34
*** bizarrochristy has quit IRC23:38
*** ijw has joined #openstack-ironic23:38
*** jaypipes has quit IRC23:50
*** max_lobur1 has quit IRC23:53
*** max_lobur has joined #openstack-ironic23:53
*** dguerri is now known as dguerri`23:54
*** barra204 has joined #openstack-ironic23:54
« Wednesday, 2015-07-15 Index Friday, 2015-07-17 »

Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!