Sunday, 2016-12-18

« Saturday, 2016-12-17 Index Monday, 2016-12-19 »
*** sacharya has quit IRC00:07
portdirect_SamYaple: i try i really do, but somtimes the crazy just demands to be free00:07
kfox1111portdirect_: they other voices in my head agree. ;)00:08
portdirect_kfox1111: you know the score :)00:08
kfox1111hehe.00:09
srwilkers;)00:11
*** williamcaban has quit IRC00:14
*** williamc_ has joined #openstack-kolla00:14
*** zhangshuai has quit IRC00:15
*** sayantan_ has joined #openstack-kolla00:22
v1k0d3naren't we all a little crazy?00:24
v1k0d3ni mean...it's the weekend...and yet...here we are.00:24
v1k0d3n:)00:24
*** n0isyn0ise has quit IRC00:26
*** n0isyn0ise has joined #openstack-kolla00:27
openstackgerritKevin Fox proposed openstack/kolla-kubernetes: WIP: neutron service package  https://review.openstack.org/41215500:30
*** eaguilar has quit IRC00:32
openstackgerritKevin Fox proposed openstack/kolla-kubernetes: WIP: helm build server  https://review.openstack.org/41210000:32
openstackgerritKevin Fox proposed openstack/kolla-kubernetes: WIP: helm build server  https://review.openstack.org/41210000:48
openstackgerritKevin Fox proposed openstack/kolla-kubernetes: WIP: helm build server  https://review.openstack.org/41210001:00
*** dave-mccowan has joined #openstack-kolla01:07
*** gomarivera has joined #openstack-kolla01:07
*** sacharya has joined #openstack-kolla01:08
*** brad[] has joined #openstack-kolla01:09
*** Pavo has quit IRC01:10
*** gomarivera has quit IRC01:12
*** sacharya has quit IRC01:13
openstackgerritKevin Fox proposed openstack/kolla-kubernetes: Fix rolling upgrades  https://review.openstack.org/41216201:15
openstackgerritKevin Fox proposed openstack/kolla-kubernetes: Fix rolling upgrades  https://review.openstack.org/41216201:42
openstackgerritMerged openstack/kolla-kubernetes: Helm chart for glance api pod  https://review.openstack.org/41048101:47
openstackgerritKevin Fox proposed openstack/kolla-kubernetes: Fix rolling upgrades  https://review.openstack.org/41216201:50
openstackgerritKevin Fox proposed openstack/kolla-kubernetes: WIP: helm build server  https://review.openstack.org/41210001:56
openstackgerritKevin Fox proposed openstack/kolla-kubernetes: WIP: helm build server  https://review.openstack.org/41210002:01
openstackgerritKevin Fox proposed openstack/kolla-kubernetes: WIP: helm build server  https://review.openstack.org/41210002:05
*** sacharya has joined #openstack-kolla02:09
*** sacharya has quit IRC02:14
*** sayantan_ has quit IRC02:17
openstackgerritJeffrey Zhang proposed openstack/kolla-ansible: Support multi key in merge_config module  https://review.openstack.org/41210102:27
*** sayantan_ has joined #openstack-kolla02:28
*** zhubingbing_ has joined #openstack-kolla02:28
openstackgerritKevin Fox proposed openstack/kolla-kubernetes: WIP: neutron service package  https://review.openstack.org/41215502:30
openstackgerritMerged openstack/kolla-kubernetes: Privileged cleanup  https://review.openstack.org/41209902:32
sbezverkportdirect: ping02:33
openstackgerritSteve Wilkerson proposed openstack/kolla-kubernetes: Helm chart for glance registry  https://review.openstack.org/41215402:41
srwilkersevening sbezverk02:41
sbezverksrwilkers: hey good evening02:43
sbezverksrwilkers: have you played with new storageclass?02:44
srwilkerssbezverk, i have not yet02:44
sbezverksrwilkers: I tried to use it, but fails with strange error. I heard portdirect has managed to get it working..02:45
*** zhubingbing_ has quit IRC02:48
*** zhubingbing has joined #openstack-kolla02:56
v1k0d3nhey srwilkers :) you still working!? lol03:04
srwilkersv1k0d3n, hey man. off and on ;)03:04
*** zhubingbing has quit IRC03:04
v1k0d3nsame. updating the rdb tools for the custom kubernetes controller in a minute.03:05
v1k0d3nfor 1.5.103:05
v1k0d3nand 1.5.003:05
srwilkersoh nice03:05
*** gomarivera has joined #openstack-kolla03:09
openstackgerritSteve Wilkerson proposed openstack/kolla-kubernetes: Helm charts for cinder keystone v1 endpoints  https://review.openstack.org/41092303:09
openstackgerritSteve Wilkerson proposed openstack/kolla-kubernetes: WIP -- Helm charts for cinder keystone v1 endpoints  https://review.openstack.org/41092303:10
*** dave-mccowan has quit IRC03:10
*** Pavo has joined #openstack-kolla03:12
*** Pavo has quit IRC03:12
*** Pavo has joined #openstack-kolla03:13
*** gomarivera has quit IRC03:13
*** Jeffrey4l has quit IRC03:22
*** zhubingbing_ has joined #openstack-kolla03:51
*** david-lyle_ has quit IRC03:54
*** david-lyle has joined #openstack-kolla03:56
*** sacharya has joined #openstack-kolla03:59
*** goldyfruit has joined #openstack-kolla04:00
*** sacharya has quit IRC04:01
*** sdake has joined #openstack-kolla04:06
*** Pavo has quit IRC04:14
*** david-lyle has quit IRC04:16
*** david-lyle has joined #openstack-kolla04:16
*** Pavo has joined #openstack-kolla04:18
zhubingbing_hi04:20
zhubingbing_sdake04:20
*** david-lyle has quit IRC04:22
*** sdake_ has joined #openstack-kolla04:23
*** david-lyle has joined #openstack-kolla04:24
*** sdake has quit IRC04:26
*** sdake_ has quit IRC04:27
*** awiddersheim has quit IRC04:31
openstackgerritzhubingbing proposed openstack/kolla-ansible: Fix aodh upgrade permission issue  https://review.openstack.org/41004604:35
*** srwilkers has quit IRC04:54
*** goldyfruit has quit IRC04:56
openstackgerritSteve Wilkerson proposed openstack/kolla-kubernetes: WIP -- Helm charts for cinder keystone v1 endpoints  https://review.openstack.org/41092304:57
*** sdake has joined #openstack-kolla05:00
portdirect_hey sbezverk05:03
portdirect_sbezverk: i have a working impementation of ceph using the new stroageclass, based on the work of docker-ceph and aic-helm that uses a helm plugin for configuration here: https://github.com/portdirect/marina05:06
*** v1k0d3n has quit IRC05:07
portdirect_to use this you need to both have acces to the k8s network from the host, and be using a controller manager image with rbd installed05:07
*** sp_ has quit IRC05:09
portdirect_I'm going to put in a ps for kolla to make a set of images for use with kubeadm as they can be customised in the current master, but unfortuantly they need to share the same name as the google provided ones, so I will build and retag them and put them at the docker.io/kollakube namespace if appropriate?05:10
*** gomarivera has joined #openstack-kolla05:10
*** gomarivera has quit IRC05:15
kfox1111portdirect_: lets call it something thats apropriate and just make it a documentation issue to retag locally until they get a better config option in place?05:19
*** sp_ has joined #openstack-kolla05:25
portdirect_no probs, I'm back on an almost sensible uk schedule, so will put in a ps for the k8s images after breakfast :)05:30
*** david-lyle has quit IRC05:30
*** david-lyle has joined #openstack-kolla05:32
kfox1111nice. thanks. :)05:37
*** sdake has quit IRC05:39
openstackgerritMerged openstack/kolla-kubernetes: Helm chart for glance registry  https://review.openstack.org/41215405:40
*** cinerama has quit IRC05:41
openstackgerritKevin Fox proposed openstack/kolla-kubernetes: Fix rolling upgrades  https://review.openstack.org/41216205:43
*** v1k0d3n has joined #openstack-kolla05:53
*** Pavo has quit IRC06:14
*** Pavo has joined #openstack-kolla06:18
*** senk has joined #openstack-kolla06:38
*** gomarivera has joined #openstack-kolla07:12
*** gomarivera has quit IRC07:17
*** Jeffrey4l has joined #openstack-kolla07:30
*** l4yerffeJ_ has quit IRC07:36
*** l4yerffeJ_ has joined #openstack-kolla07:36
*** saneax is now known as saneax-_-|AFK08:04
*** Pavo has quit IRC08:14
*** Pavo has joined #openstack-kolla08:19
*** david-lyle has quit IRC08:30
*** david-lyle has joined #openstack-kolla08:32
*** zhangqiankun has quit IRC08:51
*** zhangqiankun has joined #openstack-kolla08:52
*** matrohon has joined #openstack-kolla08:55
*** Jeffrey4l has quit IRC09:08
*** jrich523 has quit IRC09:10
*** gomarivera has joined #openstack-kolla09:11
*** gomarivera has quit IRC09:16
*** senk has quit IRC09:31
*** senk has joined #openstack-kolla10:03
*** david-lyle has quit IRC10:05
*** matrohon has quit IRC10:05
*** david-lyle has joined #openstack-kolla10:06
*** Pavo has quit IRC10:14
*** Pavo has joined #openstack-kolla10:19
*** sayantan_ has quit IRC10:20
*** l4yerffeJ__ has joined #openstack-kolla10:31
*** l4yerffeJ_ has quit IRC10:31
*** sayantan_ has joined #openstack-kolla10:33
*** l4yerffeJ__ has quit IRC10:34
*** l4yerffeJ__ has joined #openstack-kolla10:34
*** zhubingbing_ has quit IRC10:35
openstackgerritPete Birley proposed openstack/kolla: WIP: Add Kubernetes Images  https://review.openstack.org/41220511:04
openstackgerritPete Birley proposed openstack/kolla: WIP: Add Kubernetes Images  https://review.openstack.org/41220511:06
openstackgerritPete Birley proposed openstack/kolla: WIP: Add Kubernetes Images  https://review.openstack.org/41220511:08
openstackgerritPete Birley proposed openstack/kolla: Add Kubernetes Images for Kolla-Kubernetes  https://review.openstack.org/41220511:11
*** gomarivera has joined #openstack-kolla11:13
*** senk has quit IRC11:16
*** gomarivera has quit IRC11:17
openstackgerritPete Birley proposed openstack/kolla: Add Kubernetes Images for Kolla-Kubernetes  https://review.openstack.org/41220511:19
*** portdirect_ is now known as portdirect_away11:28
*** n0isyn0ise has quit IRC11:29
*** n0isyn0ise has joined #openstack-kolla11:40
*** JRobinson__ has quit IRC11:40
*** JRobinson__ has joined #openstack-kolla11:41
*** cmceniry_ has joined #openstack-kolla11:48
*** n0isyn0ise has quit IRC11:49
*** cmceniry has quit IRC11:50
*** dupengfei_ has joined #openstack-kolla11:58
*** dupengfei has quit IRC11:58
*** dupengfei_ is now known as dupengfei11:58
*** senk has joined #openstack-kolla11:59
*** l4yerffeJ__ has quit IRC12:04
*** l4yerffeJ__ has joined #openstack-kolla12:04
*** l4yerffeJ__ has quit IRC12:09
*** l4yerffeJ__ has joined #openstack-kolla12:09
*** l4yerffeJ__ has quit IRC12:11
*** l4yerffeJ__ has joined #openstack-kolla12:11
*** Pavo has quit IRC12:14
*** zhangshuai has joined #openstack-kolla12:18
*** Pavo has joined #openstack-kolla12:19
*** dupengfei has quit IRC12:19
*** dupengfei has joined #openstack-kolla12:20
*** sp_ has quit IRC12:21
*** dupengfei has quit IRC12:43
*** dupengfei has joined #openstack-kolla12:44
*** Jeffrey4l has joined #openstack-kolla13:01
*** gomarivera has joined #openstack-kolla13:14
*** gomarivera has quit IRC13:19
*** severion has joined #openstack-kolla13:20
*** v1k0d3n has quit IRC13:23
*** severion has quit IRC14:05
sbezverkportdirect: ping14:08
*** Pavo has quit IRC14:14
*** v1k0d3n has joined #openstack-kolla14:17
*** Pavo has joined #openstack-kolla14:18
SamYaplemorning14:20
sbezverkSamYaple: good morning14:26
*** senk has quit IRC14:35
*** senk has joined #openstack-kolla14:36
openstackgerritMerged openstack/kolla-kubernetes: Fix rolling upgrades  https://review.openstack.org/41216214:39
openstackgerritJeffrey Zhang proposed openstack/kolla-ansible: Optimized reconfigure action for glance  https://review.openstack.org/40697814:46
*** awiddersheim has joined #openstack-kolla15:08
v1k0d3nmorning everyone15:12
v1k0d3nhey portdirect_away or sbezverk are you guys seeing issues with tiller deploying via helm init for k8s 1.5.1 and helm 2.1.0?15:13
*** williamc_ has quit IRC15:13
v1k0d3nnew environment and i see a crashloop15:13
*** williamcaban has joined #openstack-kolla15:13
*** saneax-_-|AFK is now known as saneax15:14
*** gomarivera has joined #openstack-kolla15:16
*** gomarivera has quit IRC15:20
sbezverkv1k0d3n: morning.. you played with dynamic pvc and rbd storageclass right?15:22
sbezverkv1k0d3n: as per your helm question, it got installed fine in my test bed15:23
v1k0d3nsbezverk: some yes. we needed to build the container and add the appropriate tools to k8s-controller-manager for this.15:25
v1k0d3nsbezverk: when was the last time you installed?15:25
v1k0d3nand are you using the same versions? minikube/kubeadm?15:25
*** senk has quit IRC15:26
*** zhubingbing_ has joined #openstack-kolla15:29
*** senk has joined #openstack-kolla15:32
*** senk has quit IRC15:33
sbezverkv1k0d3n: I use baremetal and kubeadm helm 2.1.015:35
sbezverkv1k0d3n: for controller-manager have you pushed the fix upstream? I hit the same issue with missing rbd tool15:36
*** williamc_ has joined #openstack-kolla15:38
v1k0d3nah, yes we did actually. just change your /etc/kubernetes/manifests/kube-controller-manager.json to use the following "image"15:39
v1k0d3nquay.io/attcomdev/kube-controller-manager:1.5.115:40
v1k0d3ngive me one sec though sbezverk15:40
v1k0d3nlet me make absolute sure there are no typos for you.15:40
*** williamc_ has quit IRC15:40
sbezverkv1k0d3n: sure thank you15:40
*** kklimonda has quit IRC15:41
v1k0d3nabsolutely. quay.io/attcomdev/kube-controller-manager:1.5.115:41
v1k0d3nhttps://quay.io/repository/attcomdev/kube-controller-manager?tab=tags15:41
v1k0d3nlet me know if you need a 1.5.0 tag, and i can build/push it for you.15:41
v1k0d3nwe're using 1.5.1. i think you guys are too.15:41
v1k0d3nwe needed to skip 1.5.015:41
*** kklimonda has joined #openstack-kolla15:41
v1k0d3nbut plan on maintaining these. you're more than welcome to use them for the project. these will be long standing until a better (possibly native ceph tools container) comes along.15:42
sbezverkyeah, we use 1.5.1 too15:42
sbezverkI am surprised how kube community managed to miss this huge hick up with ceph15:43
v1k0d3nin fact, alan and i were just discussing the whole CI and maint issues last week.15:43
v1k0d3ni think they have other primary objects.15:43
v1k0d3ndifferent storage etc15:43
v1k0d3nobjectives15:43
v1k0d3nand this may have something to do with avoiding gpl ?15:44
*** zhubingbing_ has quit IRC15:44
v1k0d3nwe're trying to work these out. portdirect_away is doing a lot in this area too.15:44
*** zhubingbing_ has joined #openstack-kolla15:45
v1k0d3nit just requires a lot of assistance, teamwork, etc outside of the openstack community.15:45
v1k0d3n(learning too in my case...haha)15:45
sbezverkv1k0d3n: based on their doc, ceph support comes at the same level as other storage solutions..15:48
v1k0d3nhavn't tried many of the others. so do users need to package up their own supporting tools, like we're doing?15:49
v1k0d3nfor some reason, i was thinking some of the other tooling was included in controller-manager, whereas ceph tools are not.15:50
*** goldyfruit has joined #openstack-kolla15:50
openstackgerritJeffrey Zhang proposed openstack/kolla-ansible: Optimized reconfigure action for glance  https://review.openstack.org/40697815:50
openstackgerritJeffrey Zhang proposed openstack/kolla-ansible: Optimiztion reconfiguration for keystone  https://review.openstack.org/40893315:50
sbezverkv1k0d3n: it is clearly just a miss, as some rbd related things were in the controller manager15:51
v1k0d3nhmmm. one sec, let me check something15:51
v1k0d3noh you already submitted a ticket15:52
v1k0d3ni see15:52
*** saneax is now known as saneax-_-|AFK15:54
v1k0d3ncommented on your ticket as a workaround, just in case someone else notices and feels "stuck".15:55
*** n0isyn0ise has joined #openstack-kolla15:56
sbezverkv1k0d3n: when I try to use your image. it is not starting controller manager pod hmmm15:59
v1k0d3nwhoa, that's not good15:59
v1k0d3nmake sure saved the GCR image link just in case?16:00
v1k0d3ni can look into this16:00
v1k0d3ndo you have an error message?16:00
v1k0d3nand would you mine creating an issue? i can work it today.16:00
v1k0d3nyou can create the issue here: https://github.com/att-comdev/aic-helm/issues16:01
v1k0d3nand just link the docker container here: https://github.com/att-comdev/dockerfiles/tree/master/kube-controller-manager16:01
sbezverkv1k0d3n: http://paste.openstack.org/show/592736/16:03
sbezverkv1k0d3n: ok I know what happened. when controller-manager image gets changed in manifest, the cluster reboot is required16:08
v1k0d3nah!16:09
v1k0d3nit's funny you say that because i did that anyway because of updates on my host.16:09
v1k0d3ni think that's why i missed it.16:09
v1k0d3ni need to document that.16:09
v1k0d3nthanks for catching that and letting me know sbezverk :)16:09
sbezverkv1k0d3n: yep.. would be helpful for future generations ;-)16:10
v1k0d3nabsolutely.16:10
v1k0d3nwhat i'm going to do is submit the changes upstream in k8s (at least find out what it takes).16:10
v1k0d3nbeen hanging around that repo for two years. time i do something about it, and actually commit something.16:10
v1k0d3nlet me find out what it will take.16:11
v1k0d3nso it's just "fixed". we need this just the same as kolla.16:11
v1k0d3nnow i need to figure out what the heck is wrong with tiller16:12
v1k0d3nso sbezverk your environment sounds very much like the one i'm currently using.16:12
v1k0d3nbare metal, etc.16:12
v1k0d3nare you using CNI?16:13
v1k0d3nand what sdn?16:13
*** wcb has joined #openstack-kolla16:13
v1k0d3nalso, when you started your cluster, what did you include with your init statements for kubeadm? did you specify api-server (i did), or anything specific to networking?16:13
*** williamcaban has quit IRC16:14
*** Pavo has quit IRC16:14
v1k0d3nthe networking i left default, and i think this is what's biting me. nothing can talk back to 10.96.x.1 ;)16:14
*** Pavo has joined #openstack-kolla16:14
sbezverkkubeadm init --pod-network-cidr 10.57.0.0/19  --service-cidr 10.57.32.0/19 --service-dns-domain openstack.kolla.16:15
sbezverkv1k0d3n: missing binary issue is fixed with your image, but now I see another one :-(16:16
v1k0d3nuh oh.16:18
v1k0d3n?16:18
v1k0d3noh question too...how many interfaces are you using and what address range?16:19
openstackgerritJeffrey Zhang proposed openstack/kolla-ansible: Optimize reconfigure action for glance  https://review.openstack.org/40697816:20
openstackgerritJeffrey Zhang proposed openstack/kolla-ansible: Optimize reconfigure action for memcached  https://review.openstack.org/41222516:20
openstackgerritJeffrey Zhang proposed openstack/kolla-ansible: Optimize reconfigure action for memcached  https://review.openstack.org/41222516:20
openstackgerritJeffrey Zhang proposed openstack/kolla-ansible: Optimize reconfiguration for keystone  https://review.openstack.org/40893316:22
SamYapleJeffrey4l: wow youre up late16:24
*** bmace has quit IRC16:25
Jeffrey4lSamYaple, it is my 00:25 am ;(16:25
*** bmace has joined #openstack-kolla16:25
Jeffrey4lSamYaple, could u review the optimize reconfiguration patch i made https://review.openstack.org/406978 ?16:26
Jeffrey4lmade some big change and it is more optimal, imo.16:26
sbezverkv1k0d3n: I use single interface for management16:27
SamYapleJeffrey4l: looks ok16:31
Jeffrey4lthanks.16:31
SamYapleJeffrey4l: im mostly focused on salt at the moment though16:31
SamYapleJeffrey4l: i havent tested anything you have16:32
Jeffrey4li see.16:32
Jeffrey4lnp.16:32
SamYapleJeffrey4l: i need to get the static uid/gid implemented16:32
Jeffrey4lbut only want u check the implementation direction ;)16:32
SamYapleJeffrey4l: I have new info from RDO packaging16:32
Jeffrey4lSamYaple, you will start this?16:32
SamYapleJeffrey4l: i suppose I can16:32
Jeffrey4lSamYaple, what's it?16:32
Jeffrey4lnice16:33
SamYapleJeffrey4l: so RDO is no longer assigning static uid/gid to any projects. however, the existing projects that have the static uid/gid stuff will stay16:33
Jeffrey4lSo?16:33
SamYapleso we can match RDO for existing things, and do our own16:33
Jeffrey4l;(16:33
SamYapleor just do entirely our own. i think community can be convinved of that16:33
SamYaplesince RDO isn't pursuing it further, i dont have a strong interest in following them16:34
Jeffrey4lyep. since rdo think static uid in RDO is bad ( at least not good ) , why we need follow him?16:34
Jeffrey4lcool16:34
SamYaplethis way we can just pick a range and work with that16:35
Jeffrey4lagree \o/16:35
Jeffrey4lhrm, do we have other disagreement, now? SamYaple16:35
Jeffrey4lupgrade migration script?16:36
Jeffrey4lin the future.16:36
SamYapleJeffrey4l: i would prefer a range of 400-500 rather than 1000016:36
Jeffrey4lhrm, let me check, 1 sec16:36
SamYapleif we do 10,000 it does break any chance of decent namespace remapping (makes it much more difficult)16:36
SamYapleif we keep it lower we "future proof"16:37
Jeffrey4lOK.16:37
SamYapleeven if we dont use user namespace remapping yet16:37
Jeffrey4l( checking the default linux uid range )16:37
SamYaple500-60000 on centos family16:37
SamYaple1000-60000 on ubuntu16:37
SamYaple /etc/login.defs16:37
Jeffrey4lgot.16:38
*** senk has joined #openstack-kolla16:38
Jeffrey4lis there any define for 400-500? it seems OK. no one use it, in default.16:39
Jeffrey4lfor < 50016:39
SamYapleright. its not commonly used unless you have ~400+ system users16:39
Jeffrey4lor for < 50016:39
Jeffrey4lcool.16:39
Jeffrey4li am agree on that. let's take from 400-50016:40
SamYaplethat keeps it low so if we do userns remapping we dont have to remap 10,000+ uid/gid16:40
Jeffrey4lyep.  ( i thought the UID_MAX=1000 ;(  )16:40
Jeffrey4l10000*16:40
SamYaplehaha nope16:40
SamYapleI think we should also make it configurable in the build. but that doesnt have to happen immediately16:41
v1k0d3nsbezverk: were you able to paste some info about the next issue?16:41
Jeffrey4lSamYaple, another thing is: will kolla support migration solution/script for user who change the user-uid mapping?16:42
SamYapleJeffrey4l: also, docker-py is now called 'docker', so its 'pip install docker'16:42
Jeffrey4lthanks for the info.16:42
SamYapleJeffrey4l: if we are writing the scripts to do it anyway (since we have to do an initial permissions change for upgrade) i dont see why we can't leave that mechanism in place16:42
PavoSamYaple isn't that only the python dependences for docker and not docker itself?16:43
Jeffrey4lBut in openstack requirements.txt. we still depends on docker-py=1.10.616:43
Jeffrey4lSamYaple, hrm. OK. lets keep this.16:43
SamYaplePavo: docker-py, the python lib,  was renamed to 'docker'. pypi now only updates docker16:43
SamYapleJeffrey4l: it will be a new requirements.txt line16:43
Pavooh ok16:43
Pavothx for the info16:44
SamYapleJeffrey4l: got to submit that to requirements repo16:44
PavoSamYaple where do you work? Since you are only like an hour from me me a few of my colleagues might come up and see you one day16:44
Jeffrey4lwe have keep the migration script at least for recent two cycle.16:44
Jeffrey4lwe can talk this in the future.16:44
Jeffrey4lcool.16:45
SamYaplePavo: I work remote for Rackspace16:45
SamYaplePavo: id be up for that16:45
SamYapleJeffrey4l: depending on how we do migration, i think it should be baked into our config script16:46
SamYapleJeffrey4l: in which case we dont even need to get rid of it16:46
Pavooh awesome then we really need to chat16:46
SamYapleim sure we will need it again16:46
Jeffrey4lwe implement kinda migration in set_config.py  check this https://github.com/openstack/kolla-ansible/blob/master/ansible/roles/nova/templates/nova-compute.json.j2#L2416:47
Jeffrey4lSamYaple,16:47
Jeffrey4lbut it only work for kolla-ansible.16:47
SamYapleJeffrey4l: yea i think we can reuse that I mean. maybe extend it a bit more16:47
SamYapleJeffrey4l: why?16:47
Jeffrey4lin kolla-ansible repo :)16:47
Jeffrey4lnova-compute.json.j216:47
SamYapleJeffrey4l: https://github.com/SamYaple/kolla-salt/blob/master/kolla/zookeeper/files/config.json.j216:48
SamYapleim using the config.json as well :)16:48
Jeffrey4lhrm, OK it works.16:48
SamYaplei think thats a really good entry point16:48
Jeffrey4lyep.16:48
Jeffrey4lset_config can be extend for more things.16:48
Jeffrey4li want to say, maintain migration script may be hard :). and after we implement fix uid,  only very few person may use this kind of thing.16:50
SamYapleJeffrey4l: are we agreed to implement all of the users inside the base container?16:50
Jeffrey4lSamYaple, hrm. no. i want to create the user when needed. rather than create all users in base image.16:50
Pavoso is there away to fix this qemu issue with Centos right now?16:50
Pavoassuming just use Centos < 7.3 correct?16:51
SamYapleJeffrey4l: im not sure thats the best path. that could lead to sharing uid/gid again16:51
Jeffrey4lSamYaple, no share. when creating nova user, we chose 400, when creating glance user we choose 401.16:51
Jeffrey4lwe may maintain a user/uid map in build.py16:52
SamYapleJeffrey4l: but containers sometimes see other files. like log files16:52
SamYaplethose will just be owned by numbers16:52
SamYapleIf we have a static list of uid/gid, it should be in base container16:52
SamYapleso all contaienrs have a consistent view16:52
Jeffrey4lSamYaple, i think it is the same put the creation in base or each container.16:53
openstackgerritSteve Wilkerson proposed openstack/kolla-kubernetes: WIP -- Helm charts for cinder keystone v1 endpoints  https://review.openstack.org/41092316:53
Jeffrey4lno effect.16:53
SamYapleputting it in the base is better for consistency16:54
Jeffrey4lfor example?16:54
SamYaple/var/log/kolla16:54
Jeffrey4l /var/log/kolla is owner by <user>:Kolla16:55
SamYapledon't you see a problem with that?16:55
Jeffrey4lwe can not solve the issue by creating all user in base.16:55
Jeffrey4lyep. it cause some issue.16:55
SamYapleno youre wrong16:55
SamYaplethat would be fixed16:55
Jeffrey4lhow?16:55
SamYaplebecause we log to /var/log/kolla/<service>16:56
SamYapleand not directly to /var/log/kolla16:56
SamYaplebut that means all the container see all the log files. they should also see the users they are owned by16:57
Jeffrey4lcurrently, mariadb create log with 660, which break the heka to read. but others are find.16:57
Jeffrey4lfine*16:57
SamYapleinstead of numbers16:57
SamYapleJeffrey4l: https://github.com/openstack/kolla-ansible/blob/master/ansible/roles/nova/templates/nova.conf.j2#L516:57
*** portdirects_lapt has joined #openstack-kolla16:57
Jeffrey4lSamYaple, it is useless to see the users.16:57
SamYaplei disagree. this would be useful to operators16:57
SamYapleseeing "401:401" isnt as useful as seeing "glance:glance"16:58
Jeffrey4llet me think this. any other reason?16:58
SamYaplethere is no reason not to do it in base16:58
SamYapleid like to think of one reason not to do it in base since we have static mappins16:58
portdirects_lapto/16:58
*** senk has quit IRC16:59
Jeffrey4llol16:59
SamYapleportdirects_lapt: o/16:59
*** haplo37_ has quit IRC16:59
portdirects_laptsup SamYaple16:59
*** fragatina has joined #openstack-kolla16:59
SamYapleportdirects_lapt: since RDO is abandoning uid/gid mapping, i think kolla should do its own16:59
*** portdirects_lapt is now known as portdirect_16:59
SamYapleportdirects_lapt: thats what we were tlaking about16:59
*** fragatina has quit IRC17:00
SamYaplei would normally say match RDO for what _does_ exist, but there are conflicts with that17:00
portdirect_oh ok - will need to read scrollback, but if they are dumping it that kinda changes things17:00
*** haplo37_ has joined #openstack-kolla17:00
SamYaplethats why RDO is moving away in the first place17:00
*** fragatina has joined #openstack-kolla17:00
portdirect_so uid/gid in 400-500 range?17:02
SamYapleportdirect_: yea.17:02
portdirect_works for me :)17:02
SamYaple500+ is used by centos as the start range for dynamic allocation17:03
Jeffrey4lOK. it seems OK. I am agree with that SamYaple17:03
*** goldyfruit has quit IRC17:03
portdirect_Nice thanks for looking into it SamYaple and Jeffrey4l :)17:04
sbezverkportdirect_: hey man. I am struggling with ceph dynamic pvc17:04
sbezverkhave you get it working?17:04
portdirect_yeah - just noticed that :(17:04
portdirect_yes17:04
SamYapleawesome portdirect_ and Jeffrey4l. glad we are in agreement. ill work on the patch post-haste17:04
portdirect_sbezverk , whats not working?17:04
sbezverkportdirect_: first issue was fixed by using v1k0d3n image17:05
Jeffrey4li am concerning that: if there any package creates the user again when the user exist ;(17:05
Jeffrey4lthanks SamYaple17:05
portdirect_nice I have a ps in for kolla, which adds rbd tools to controller manager as well17:05
portdirect_2nd issue?17:05
sbezverkportdirect_: second issue it does not see secrets17:06
*** zhubingbing_ has quit IRC17:06
Jeffrey4lbut we can do nothing before meet such issue. so ignore it.17:06
portdirect_sbezverk: could you check this, https://review.openstack.org/#/c/412205/17:06
sbezverkhttp://paste.openstack.org/show/592738/17:06
portdirect_sbezverk: was just going to ask :)17:06
portdirect_sbezverk: that from controller manager yes?17:07
portdirect_sbezverk: did you follow/use my helm package or aic's or start from scratch?17:08
sbezverkportdirect_: it is all in one bare metal installed by kubeadm17:08
v1k0d3nportdirect_: and this is why ceph needs to be ridiculously easy.17:09
v1k0d3n:-/17:09
portdirect_try the setup I have up on git :)17:09
v1k0d3nlooking forward to seeing how you can clean this up a bit.17:09
portdirect_but not for single node yet :(17:09
sbezverkportdirect_: the cluster itself is a separate cluster which is working fine for other applications17:09
portdirect_sweet  - that makes things easier :)17:10
*** zhugaoxiao has quit IRC17:10
portdirect_2 sec and I'll log into my workstation (at the folks)17:10
sbezverkthe issue is with controller-manager which by some reason do not see secret whihc DOES exist in kube-system namespace17:10
*** zhugaoxiao has joined #openstack-kolla17:10
portdirect_can you paste your storageclass yaml?17:12
*** fragatina has quit IRC17:13
sbezverkportdirect_: http://paste.openstack.org/show/592739/17:13
portdirect_sbezverk: and your secret looks somthing like this? http://paste.openstack.org/show/592740/17:15
SamYapleportdirect_: Jeffrey4l you think a range of 100 is enough?17:15
portdirect_SamYaple: I would have hoped so17:16
SamYapleportdirect_: i suppose because they are static mappings we can always expand it to like 350 if needed17:16
Jeffrey4lwe have 69 docker service now. i am afraid may be no :(17:16
sbezverkportdirect_: http://paste.openstack.org/show/592741/17:16
Jeffrey4lSamYaple, yep.17:16
SamYapleJeffrey4l: no we have 69 _containers_. most of those share the same users17:16
SamYapleJeffrey4l: im counting ~30 users17:16
Jeffrey4l69 folders in docker17:17
SamYapleah right. i wasnt counting non-openstack service users17:17
Jeffrey4land they won't share user.17:17
*** gomarivera has joined #openstack-kolla17:18
SamYaplelike mysql and rabbitmq17:18
SamYapleyea17:18
Jeffrey4lyep.17:18
SamYaplegood news is we can remove all of the usermod -a -G kolla stuff now17:21
SamYapledo it all in one place, one for loop17:21
Jeffrey4lhaha.17:22
*** gomarivera has quit IRC17:22
Jeffrey4lif you create all user in base, i think we can use a loop.  and maintain the parameters in build.py dict.17:22
*** sayantan_ has joined #openstack-kolla17:23
SamYapleJeffrey4l: thats what i was thinking17:23
Jeffrey4l;)17:23
portdirect_sbezverk: ok so everything looks ok with that :( could you post a bit more scrollback from the controller-manager pod17:23
Jeffrey4lneed get some sleep. bye buys17:25
sbezverkportdirect_: can you give me your email? will send you log by email17:25
portdirect_sbezverk: pete at port.direct17:25
portdirect_Jeffrey4l : have a good one :)17:26
Jeffrey4lthansk.17:26
portdirect_sbezverk: what version of k8s api you using 1.5?17:27
sbezverk1.5.117:27
SamYapleubuntu mistakenly packages with 'memcache' user rather than 'memcached'. since memcache doesnt use any files..... i say we standardize on memcached17:27
SamYapledo you think anyone will care or object?17:27
SamYapleas an ubuntu user, I certainly don't object17:27
sbezverkportdirect_: just sent you the log17:27
sbezverkportdirect_ one more strange thing is that it tried to get "auth: unable to find a keyring on /etc/ceph/ceph.client.admin.keyring"17:29
sbezverkkeyring file, but it should not since we use secret object for authentrication..17:29
portdirect_sbezverk thats normal behaviour, you could load the keyring there and it will fallback to that if there is no secret17:29
portdirect_sbezverk - got it!17:31
portdirect_I think17:31
SamYaplesecret object for authentication?17:31
portdirect_so you need to create a ceph-secret, with the same content as your admin-ceph-secret17:32
SamYapleare you talking about cephfs stuff?17:32
SamYapleor nova secret.xml?17:32
portdirect_SamYaple: neither17:32
portdirect_SamYaple: the secret is a k8s object container a base64 representation of the ceph.client.admin.keyring17:33
portdirect_*containing17:33
SamYapleah this a k8s specific thing17:34
sbezverkportdirect_: I have both17:35
portdirect_ok - in the kube-system namespace?17:35
sbezverkkubectl get secret --namespace kube-system17:35
sbezverkNAME                  TYPE                                  DATA      AGE17:35
sbezverkadmin-ceph-secret     Opaque                                1         1h17:35
sbezverkceph-secret           Opaque                                1         1d17:35
sbezverkI am not a complete dork ;-)17:35
portdirect_ok - what namespace is trying to consume the pvc?17:36
portdirect_sbezverk: dork is not a word i would ever use to describe you :)17:36
sbezverkportdirect_: the thing is, error message gets generated even when pvc request is not initiated17:37
sbezverkbut pvc would use default namespace17:37
sbezverkportdirect_: scratch that pvc request is also in kube-system namespace17:38
portdirect_the ceph-secret needs to exist in that ns as well, but the error you are getting in me in that case.. especially with what you are saying, in my setups it doen't try and access ceph config untill i have something that needs it.17:38
portdirect_sbezverk: was typing that as you replied17:38
portdirect_give me a min and I'll look through this properly17:39
sbezverkportdirect_: need to step out, snow shoveling time. will be back in 1 hour17:39
portdirect_np - I wish we had snow here, just loads of rain!... catch you soon - hopfully I'll have though of somthing other than the obvious that you've already done by then :)17:40
*** fragatina has joined #openstack-kolla17:51
portdirect_sbezverk: think I may have it, on line 12 of the secret you sent me the type is listed as "Opaque" this should be changed to "kubernetes.io/rbd" as I see the same logs as you when I set the secret type to this17:56
*** sayantan_ has quit IRC17:56
portdirect_sbezverk: logs from my test: http://paste.openstack.org/show/592743/17:58
*** sayantan_ has joined #openstack-kolla17:59
SamYaplewhats the command to gen kolla config17:59
portdirect_SamYaple: kolla-ansible genconfig?18:00
SamYaplenah. buildconf18:01
SamYaplei got it18:01
SamYapletox -e genconfig18:01
SamYapleour python code has just grown and grown :/ no pruning or refactoring18:02
SamYapleits a bit gangly18:02
portdirect_SamYaple: yeah it terrifies me a little bit, I'm sure that at some point it will become sentient18:04
SamYapleit could use a good refactoring for sure18:04
SamYapleits sorta setup like it can be imported.... but good luck importing it18:04
*** pbourke has quit IRC18:06
*** pbourke has joined #openstack-kolla18:06
SamYapleesh im about to add a whole buncha sections to the config files :P18:06
SamYaplenova-user, keystone-user, mysql-user....18:07
SamYapledont know another way to make this configurable18:07
portdirect_SamYaple, could do it by adding a file to the base image containing the mappings and a macro to do it?18:08
SamYapleportdirect_: yea but then will it be user configurable?18:09
SamYapleshouldnt it be in the conf file if its... configuration?18:09
portdirect_if you make it possible to override. then the user could just replace it, though your last point is spot on18:10
SamYaplethis would be an exceedingly rare thing to change I think portdirect_. might be best to do that18:11
*** fragatina has quit IRC18:12
SamYapleIM HERE TO CLAIM YOUR SOUL18:12
SamYaplekolla-conf sent me18:13
*** senk has joined #openstack-kolla18:13
portdirect_Too late dude, I sold it for these *AWSEOME* magic beans I've got18:13
SamYapledid.. did you just eat those.18:13
SamYapledude.18:13
*** Pavo has quit IRC18:14
portdirect_no comment.18:14
*** Pavo has joined #openstack-kolla18:14
portdirect_anyway better get back to dealing with the folks diy capers :) catch you soon18:15
SamYapleadidas18:15
portdirect_oh actaully was it you who was asking about the difference between Persistant Volumes and Persistant Volume Claims the other day?18:17
SamYaplePV vs PVC? if so yes18:17
portdirect_ok so some stoarge backends cannot create a volume automatically (eg NFS), so an admin needs to create a PV. A user can create a PVC that then claims this acloacted storage for them. If the storage type supports dynamic allocation (AWS/Ceph etc) then the user just needs to create a PVC and the PV is created for them.18:20
portdirect_so the first case is kinda similar to glusterfs in manila, where the admin needs to create glusterfs volumes to be mapped to shares18:21
portdirect_in k8s it seems a bit overkll at the moment so split them out into two objects when most clusters are single tennant, but will make much more sense when multitenancy takes off.18:22
SamYaplehmm. ok. that is more info18:22
SamYapleill keep commiting this info to memory until this clicks18:22
SamYaplethis is why list comprehenssion is bad18:23
SamYaple                for plugin in [match.group(0) for match in18:23
SamYaple                               (re.search('^{}-plugin-.+'.format(image.name),18:23
SamYaple                                          section) for section in18:23
SamYaple                                all_sections) if match]:18:23
SamYaplelike. what.18:23
SamYapleno one is reading and understanding that in one go18:23
portdirect_:/18:25
kfox1111morning.18:26
SamYaplemorning Mr Fox18:26
portdirect_kfox1111 morning! (though I need to go - back in an hour)18:27
*** portdirect_ has quit IRC18:27
sbezverkportdirect: where do you change the type of secret?18:27
sbezverkkfox1111: good morning18:27
sbezverkportdirect_: man that was it!!!!! I have not seen in docs that we need to specify type of secret, we always used opaque...18:32
kfox1111sbezverk: https://review.openstack.org/#/c/412004 wf please.18:35
kfox1111nice. https://review.openstack.org/#/c/412159/ merged.18:36
*** portdirects_lapt has joined #openstack-kolla18:36
kfox1111so we have a check-experimental now for testing helm-entrypoint service packages.18:37
portdirects_laptsbezverk: so my folks are till debating where to install the new sockets :) / :(18:37
portdirects_laptsbezverk unfortunatly you will need to delete the secret and create it again, kubectl edit will not work here :(18:38
*** portdirects_lapt is now known as portdirect_18:38
sbezverkportdirects_lapt: it is not a problem. I am experimenting so rebuilding everything is not big deal. What is important is the recipe18:39
openstackgerritMerged openstack/kolla-kubernetes: Cleanup ceph_workflow  https://review.openstack.org/41200418:40
kfox1111sbezverk: thanks.18:40
sbezverkkfox1111: link to track https://github.com/kubernetes/kubernetes/issues/38923#issuecomment-26782169018:41
kfox1111sbezverk: did you see the nested global patched merged to h18:41
kfox1111helm?18:41
sbezverkkfox1111: it is supposed to be in canary18:42
sbezverkno kubernetes ceph issue18:42
portdirect_sbezverk: I've got some images in ps here that have rbd https://review.openstack.org/#/c/412205/18:42
kfox1111sbezverk: I havent' seen any issues with rbd like that except for dynamic provisioning.18:43
sbezverkportdirect_: yeah I saw but I use kubeadm and I am sure tons of other folks will use it as well18:43
*** rsjethani has joined #openstack-kolla18:43
sbezverkso these images are only useful if you use kolla to install kube cluster18:43
kfox1111sbezverk: I think the images are only for if you want to use dynamic pvc's with ceph, and don't have a differnet solution handy.18:44
kfox1111so, batteries included option.18:44
portdirect_sbezverk, actualy kubeadm now allows you to specify the images used - only namespace at the moment, but should allow full path. If you can get rbd in the upstream images though thats a total win :)18:44
openstackgerritKevin Fox proposed openstack/kolla-kubernetes: WIP: helm build server  https://review.openstack.org/41210018:46
sbezverkportdirect_: for now we could use att image for dynamic pvc, but since other folks hit the same issue I think kube community fix it18:46
kfox1111sbezverk: +1 for kube community to provide maintined images.18:47
portdirect_yeah if they do thats great - I'll still continue with adding the k8s images though as a workaround for now though?18:47
*** senk has quit IRC18:48
kfox1111sbezverk: is att committed to keeping an up to date image?18:48
kfox1111sbezverk: otherwise, I think we should have kolla repo should provide the build stuff. so users can keep it up to date.18:48
portdirect_kfox1111: they are the same boat as us on that front, so I'd see no reason why not18:48
sbezverkportdirect_: sure I was not aware about kubeadm option to use custom image..18:48
*** senk has joined #openstack-kolla18:49
portdirect_sbezverk: only in master at the moment, but should come through pretty quick, its not possible to use in china at the moment...18:49
sbezverkportdirect_: are you serious about your last comment? or it was a joke about china?18:50
kfox1111sbezverk: that may be an enterprise use case.18:50
kfox1111firewall blocks pulling from some places.18:50
portdirect_sbezverk I think serious, I'm reporting what people have told me18:50
portdirect_google servers?18:51
kfox1111probably.18:51
sbezverk portdirect_: wow18:51
portdirect_:(18:51
kfox1111portdirect_: tengentially, I was thinking maybe we provide a job that builds gainst trunk,18:51
kfox1111then does a docker save at the very end of a successfull job of all containers on the system.18:51
kfox1111would make a good cache for subsequent runs.18:52
kfox1111other jobs could then docker load that tarball and not have to pull any containers.18:52
kfox1111same trick could work for the enterprise use case.18:52
v1k0d3nsbezverk: we're using kubeadm in our lab as well. this is why i asked the question earlier today.18:53
portdirect_kfox1111: that sounds good - be good to have a bleeding edge gate18:53
sbezverkv1k0d3n: right, but you change manifest after kubeadm finish right? to point to your image18:54
v1k0d3nand kfox1111 yes, in our case currently ceph is a requirement...so we will definitely be maintaining those.18:54
kfox1111portdirect_: +1. would be harder then the rest, but totally doable.18:54
v1k0d3nwelcome to call me out to answer some of these questions.18:54
portdirect_sbezverk: or preload the image and retag it - this is the current recomendation from upstream18:54
kfox1111portdirect_: +1 for preload/retag the image solution until image can be specified.18:55
kfox1111v1k0d3n: k.18:55
v1k0d3nin fact, this week i am going to add to an automatic CI build for each release. the only thing i'm going a little bit around about, is storing the compiled bin in the repo. i really don't like carrying the extra weight in git.18:55
portdirect_v1k0d3n i dont get why you do that - why not just curl it in?18:56
portdirect_or are you using a cutomised binary?18:56
kfox1111v1k0d3n: yeah. I don't think goog'es going to drop the binaries so just linking to it is probably pretty safe.18:56
v1k0d3nsbezverk: "sure I was not aware about kubeadm option to use custom image" this is also critical functionality to us. one of the reasons why we're throwing support in kubeadm...it just seems to be the path for k8s going forward, even though it still lacks some features today (like self-hosted, which we want to move to).18:57
v1k0d3nportdirect_away: yup, we pull, retag, use. that's the way to go.18:58
v1k0d3nportdirect_away: totally fine with curling in. just need to set up the external server and slap an att domain name on it :)18:59
kfox1111I do kind of like the idea of putting the container in the kolla container build system for the reason of,18:59
kfox1111the rbd can be made to match the release.18:59
v1k0d3nportdirect_away: no, not customized, just built for each release.18:59
kfox1111so 2.0.2 ceph hamer, 3.0.1 ceph jewel.18:59
kfox1111though I don't think that will matter much longer.18:59
sbezverkbb in 1 hour18:59
SamYapleat the rate its going, kolla 6.0 ceph kraken18:59
v1k0d3nLOL19:00
kfox1111SamYaple: not sure we dont want to stick to lts.19:00
SamYaplemight even be 7.019:00
kfox1111so jewel would be around for  while.19:00
SamYaplekfox1111: you _dont_ want lts?19:00
kfox1111SamYaple: sorry. worded badly. I think we mgiht want to stick to lts?19:00
SamYapleyea id agree19:01
SamYaplekraken has just taken a long time19:01
kfox1111yeah. now that jewel is out, they get to play with a bunch of stuff. so they are in play mode I think.19:01
v1k0d3nare you guys using ceph the same way; as a requirement for multi-node shared store in the kube (by default)?19:03
v1k0d3nbeen a little while since i've looked honestly.19:04
openstackgerritKevin Fox proposed openstack/kolla-kubernetes: WIP: neutron service package  https://review.openstack.org/41215519:04
kfox1111v1k0d3n: yeah.19:04
v1k0d3ncool19:04
kfox1111nothings blocking someone else from implementing a different solution though.19:04
kfox1111I'm just most familior with ceph.19:04
v1k0d3nso they just use a different helm chart of their own? that simple?19:05
kfox1111the pv/pvc charts are tepmlated out so you can select different backends.19:05
v1k0d3ncool19:05
kfox1111you could use aws block storage for example.19:05
openstackgerritPete Birley proposed openstack/kolla: Add Kubernetes Images for Kolla-Kubernetes  https://review.openstack.org/41220519:06
kfox1111portdirect_: don't you have to specify the binary to the command?19:06
v1k0d3nbe really interested to see those usecase and documented.19:07
v1k0d3ni feel like that could get really messy19:07
kfox1111yean.19:07
portdirect_kfox1111, no these are the same as the upstreams19:07
kfox1111upstream just sets them blank? then always overrides them on launch?19:07
portdirect_kfox1111 yup19:08
kfox1111k. +1 then. :)19:08
portdirect_weird i know19:08
kfox1111makes some sence. it may be pretty unusable without at least some args.19:08
kfox1111they really should at least specify the binary though.19:09
portdirect_yeah thou i'd kind expect them to have the binary as entrypoint so you could just provide the args, but thats how they roll19:10
portdirect_they used to do it with hyperkube, but dont think they ever had for the broken out images19:10
kfox1111ah.19:12
SamYapledoes anyone know if this static uid/gid stuff has a blueprint?19:13
openstackgerritSam Yaple proposed openstack/kolla: [WIP] static uid/gid in Dockerfiles  https://review.openstack.org/41223119:15
portdirect_v1k0d3n: we are using ceph slightly differently from aic at the moment, as we were supporting 1.4, but i want us to move over to dynamic pvc by default now we are on k8s 1.5, but leave the manual creation in for users who want the extra controll19:15
SamYapleportdirect_: would appreciate a once over https://review.openstack.org/#/c/412231/119:16
SamYapleended up using config file19:16
v1k0d3nportdirect_away: that's what i thought actually. that's one of the reasons we moved to 1.5, so i figured there were differences.19:16
v1k0d3n*that those were some of /the differences19:16
portdirect_SamYaple: so every user in every container?19:17
SamYapleportdirect_: yep19:17
kfox1111v1k0d3n: they are wrapped up in the pvc abstraction we're using.19:17
kfox1111so adding ceph rbd dynamic provisioning support is pretty trivial.19:18
SamYapleportdirect_: remember, they share a common log dir /var/log/kolla. so they do "share" files. its worth having proper accounts attached to those files19:18
SamYapleinstead of seeing it is owned by 401:401, its owned by nova:nova, no matter the contaienr youre in19:18
portdirect_good point, wfm19:18
kfox1111v1k0d3n: see: https://github.com/openstack/kolla-kubernetes/blob/master/helm/kolla-common/templates/_common_pvc.yaml19:19
*** gomarivera has joined #openstack-kolla19:20
portdirect_kfox1111: so in that file it's only https://github.com/openstack/kolla-kubernetes/blob/master/helm/kolla-common/templates/_common_pvc.yaml#L8, we need to update, to 'beta' and 'general'19:20
kfox1111portdirect_: yup.19:21
SamYapleportdirect_: also baking it into the config allows user defined 'users' for whatever they are doing to extend these files should they wany19:21
kfox1111and make the storage class specified by variable.19:21
portdirect_kfox1111: yup - though I'm not sure (never tried) how helm will reposnd to an empty pv.yaml?19:22
kfox1111portdirect_: I think we probably should leave the pv's out of helm super packages.19:22
kfox1111maybe just the pvc's.19:22
portdirect_right, being fed, back soon :)19:22
kfox1111k. :)19:23
portdirect_kfox1111: yeah that makes sense19:23
*** portdirect_ is now known as portdirect_away219:23
kfox1111I've always seen the pv's as an admin thing.19:23
kfox1111so having pv scripts are just batteries.19:23
kfox1111http://logs.openstack.org/00/412100/14/check/gate-kolla-kubernetes-deploy-centos-binary-external-ovs-nv/a575d01/console.html is really confusing me. :/19:24
*** gomarivera has quit IRC19:24
kfox1111helm search # shows the package.19:24
kfox1111but helm install cant find it. :/19:24
kfox1111very weird...19:28
*** portdirect_away2 has quit IRC19:33
openstackgerritSam Yaple proposed openstack/kolla: [WIP] static uid/gid in Dockerfiles  https://review.openstack.org/41223119:38
openstackgerritKevin Fox proposed openstack/kolla-kubernetes: WIP: neutron service package  https://review.openstack.org/41215519:41
*** jmccarthy has quit IRC19:41
v1k0d3nportdirect_away: have you played with some of the other charts, like jenkins upstream?19:42
*** jmccarthy has joined #openstack-kolla19:42
v1k0d3nthis imagePullPolicy nonsense is really annoying stuff.19:42
kfox1111yeah. I don't know why they started enforcing it on init containers but not the rest.19:45
kfox1111seems silly.19:45
v1k0d3nwell, referring to the bugs for not having a default ipp19:52
v1k0d3nfrustrating to work around it.19:52
kfox1111yeah.19:53
kfox1111had to touch almost all of the kolla-kubernetes tempaltes to fix for 1.5.19:53
v1k0d3nsame here19:55
kfox1111seems silly not to require bumping to v2 and adding imagepullpolicy to all the other containers too.19:55
v1k0d3nand caught up on a strange failure on the k8s side too19:55
kfox1111if your goint to touch them all, might as well do them all. :/19:55
v1k0d3nhahaha19:55
v1k0d3nso everything breaks19:55
kfox1111yeah. break them all if your going to basically break all the pods anyway. get it over with. just pul the bandade off all at once. :)19:56
v1k0d3n@dims hey man19:56
v1k0d3nyou around?19:56
v1k0d3ni noticed you're a core member over there? is there any way to get some eyes on this one? https://github.com/kubernetes/kubernetes/pull/3857419:57
openstackgerritKevin Fox proposed openstack/kolla-kubernetes: WIP: neutron service package  https://review.openstack.org/41215520:01
openstackgerritKevin Fox proposed openstack/kolla-kubernetes: WIP: helm build server  https://review.openstack.org/41210020:03
openstackgerritSam Yaple proposed openstack/kolla: [WIP] static uid/gid in Dockerfiles  https://review.openstack.org/41223120:04
*** fragatina has joined #openstack-kolla20:05
*** Pavo has quit IRC20:14
*** portdirects_lapt has joined #openstack-kolla20:15
*** matrohon has joined #openstack-kolla20:16
*** fragatina has quit IRC20:17
*** Pavo has joined #openstack-kolla20:18
v1k0d3nkfox1111 i missed your message earlier about the binaries. you mean just download from the release (all binaries), unpack them, and throw out what you don't need inside the container?20:19
kfox1111v1k0d3n: yeah. I think you were debating putting the binary for the contianer in git, or just curling and throwing out what you don't need during build?20:20
kfox1111was saying the latter seems relatively safe to me.20:20
v1k0d3ni think that's fine, just makes the container a bit more....more. be better for us to just CI them, and add a single bin.20:20
v1k0d3nfaster, less clutter.20:20
kfox1111that works too.20:21
kfox1111sticking binaries in git just always felt grungy to me. :/20:21
kfox1111I can see some use cases that might fit though.20:21
v1k0d3nwe make the container much smaller by just pre-building, and packing the bin in there.20:21
v1k0d3nthere are different ways of doing it. none really wrong.20:21
kfox1111yeah.20:21
v1k0d3neventually we want to be extremely (ultra) efficient.20:22
kfox1111+120:22
kfox1111same with kolla.20:22
v1k0d3nfor the size of our cloud...size really matters and adds up.20:22
v1k0d3nok20:22
v1k0d3nnot sure kolla can exactly do that. different case.20:22
kfox1111portdirects: wants to try a alpine based kolla distro too at some point.20:23
kfox1111thin it down as much as possible.20:23
v1k0d3nthat got brought up20:23
v1k0d3nin BCN20:23
v1k0d3nwe want to do it without having to go to alpine.20:23
v1k0d3nit can be done, but it requires a different method than what kolla is doing.20:23
kfox1111yeah. I think super thin containers are orthoganal to alpine.20:23
v1k0d3nfor 70-80% out there, alpine would probably be just fine :)20:24
kfox1111both can/should be done I think.20:24
v1k0d3nfor audits or anyone concerned about CVE....no way.20:24
kfox1111yeah. I get that. :)20:24
v1k0d3nalpine is a total mess.20:24
kfox1111I prefer centos myself.20:24
kfox1111so a thinned out centos woudl be awesome.20:24
v1k0d3nyeah, that's tough with kolla today. not sure how you'd get there exactly while keeping the keystone > keystone-base > openstack-base model.20:25
v1k0d3ni see both sides entirely20:25
sbezverkwhat could be better than fresh 40 cm of snow :-)20:25
v1k0d3nlol20:25
v1k0d3ncar won't start AND 40 cm of snow?20:25
sbezverksorry for interrupting your highly technical talk ;-)20:26
v1k0d3n"highly" ha!20:26
v1k0d3nplease do :)20:26
kfox1111v1k0d3n: I think kolla shoudl provide all the above options. it fits in kolla's mission to provide usable openstack containers for all interested in it.20:26
v1k0d3nok. that's cool.20:26
*** portdirects_lapt has quit IRC20:27
sbezverkv1k0d3n: entrypoint can block on pvc state?20:29
kfox1111sbezverk: no. :/20:29
kfox1111sbezverk: entnrypoint needs to run in a container. pvc's have no container.20:30
openstackgerritKevin Fox proposed openstack/kolla-kubernetes: WIP: neutron service package  https://review.openstack.org/41215520:30
kfox1111helm treats the 'local' repo differently then the rest of repo's for some reason. :/20:30
kfox1111its "magic"20:30
sbezverkkfox1111: I do not see a difference, if it can check for a job to be present , why it cannot check for pvc state? am I missing something?20:30
kfox1111sbezverk: oh. you mean, check if a pvc is created?20:31
sbezverklike when it block of mariadb service or mariadb bootstrap job to be completed20:31
sbezverkwhy not to check for a state of specific pvc?20:31
kfox1111sbezverk: its not in the list here: https://github.com/stackanetes/kubernetes-entrypoint20:32
kfox1111should probably put in a feature request.20:32
kfox1111on the other hand,20:32
kfox1111I think the pod will naturally block while its not in existence?20:32
kfox1111same with configmaps/secrets.20:33
sbezverkkfox1111: not saure if it is sufficient I got pvc in pending state20:33
kfox1111sbezverk: https://review.openstack.org/#/c/412100/ looks like its getting close. can you please have a look and let me konw what you think?20:33
sbezverksure thing20:34
kfox1111sbezverk: it does a more helm native build. with all the infrastructure to do so.20:34
sbezverkkfox1111: what builds requirements.yaml?20:35
kfox1111sbezverk: nothing. they are checked in.20:35
kfox1111it doesnt' change microservice building. at least for now.20:35
sbezverkI am just curious the port used you picked it up or what is the deal20:35
kfox1111completely random.20:36
kfox1111I really hate that part. :/20:36
kfox1111feels like it will be a bit fragile.20:36
kfox1111but helm doesn't support sane building there yet. :/20:36
kfox1111but once that localpath dep feature makes it in, we can get rid of a lot of it and get back to something more sane. :/20:37
sbezverkyeah would be much safer to pull packages frm the path20:39
kfox1111v1k0d3n: if you can help push that through faster, that would be great.20:39
kfox1111v1k0d3n: this: https://github.com/kubernetes/helm/issues/163920:40
kfox1111sbezverk: an exaple of a package with requirements here:20:41
kfox1111https://review.openstack.org/#/c/412155/20:41
v1k0d3nwe don't think we have the same issue.20:41
v1k0d3nwe're building charts differently.20:41
v1k0d3nnot that it wouldn't be useful.20:42
v1k0d3njust saying...20:42
kfox1111v1k0d3n: I talked to alen. he's doing somethign similar to the review.20:42
kfox1111v1k0d3n: thats why I'm proposing that as a solutionk rather then something far less complicated but less helm native.20:42
kfox1111v1k0d3n: to keep the two solutions more similar.20:43
v1k0d3ngotcha20:43
sbezverkkfox1111: you add base distro at the end of globals.yaml, what if before there is a conflicting setting, how does it get parsed? latest setting wins?20:43
SamYapleesh. huge security problem20:44
kfox1111sbezverk: in which file/review?20:44
*** portdirect has joined #openstack-kolla20:45
SamYapleGAHH inc0 and pbourke20:45
kfox1111portdirect: this is looking pretty close to ready: https://review.openstack.org/#/c/412100/ can you please weighin on the aproach?20:45
SamYaplethey broke all security20:45
v1k0d3ni think it's already slated for 2.2.0, but the impact for us isn't quite as great. we worked around it. just different ways to solving issue (which is totally fine).20:45
SamYaplehttps://review.openstack.org/#/c/241438/9/docker/base/sudoers20:46
SamYapleanyone see a problem with that?20:46
v1k0d3nour biggest thing was 2.1.0 and 1.5, just a bit different stages and solving different ways.20:46
sbezverkkfox1111: line 7  https://review.openstack.org/#/c/412100/15/tests/bin/setup_config.sh20:46
kfox1111v1k0d3n: says 2.3.0 which is further out.20:46
openstackgerritSam Yaple proposed openstack/kolla: [WIP] static uid/gid in Dockerfiles  https://review.openstack.org/41223120:46
v1k0d3nwhoa! SamYaple20:46
kfox1111sbezverk: ah. thats just letting it checkout as it normaly does, rather then rename kolla-ansible to kolla.20:47
kfox1111it was a quick hack origionally to work around the repo split.20:47
kfox1111I thought it was breaking helm though.20:47
kfox1111but not sure anymore.20:47
portdirectv1k0d3n: biggest thing i've noticed re helm charts repo vs aic so far is that most charts in the k8s repo use generic whereas the suff in your repo uses general for the default storage class20:47
kfox1111I could undo that part.20:48
v1k0d3ni thought it was 2.2.0 triage20:48
kfox1111says 2.3.0 triage for me.20:48
SamYaplewho is online that is a core member?20:48
v1k0d3nreally? that's strange: technosophos added this to the 2.2.0-Triage milestone 12 days ago20:49
v1k0d3nin that ticket you posted.20:49
portdirectkfox1111: looking now, but cant test for a few hours20:49
kfox1111portdirect: ok. coo. thanks.20:49
kfox1111v1k0d3n: oh. I see that in the log, yeah. but on the sidebar it still says 2.3.0. weird.20:50
*** lrensing has joined #openstack-kolla20:50
v1k0d3n2.3.0 roadmap, triage for 2.2.0 is how i took that :)20:50
kfox1111ah. ok. thanks.20:50
v1k0d3nwho knows. maybe not.20:50
openstackgerritSam Yaple proposed openstack/kolla: Remove /usr/bin/install from allowed commands  https://review.openstack.org/41223520:50
v1k0d3nhaven't spoke directly to matt about it.20:51
SamYaplepeople should review ^ that20:51
v1k0d3nperhaps when we get the calls started...we can bring it up.20:51
v1k0d3ni am supposed to talk to lachie about this on monday.20:51
kfox1111v1k0d3n: +1.20:51
kfox1111v1k0d3n: I just filed this one too: https://github.com/kubernetes/helm/issues/171920:51
kfox1111v1k0d3n: which I think would let us get rid of most of the prebuild stuff we've been doing.20:52
sbezverkkfox1111: look really nice!! I like the idea of runnign helm serve in the background..20:53
kfox1111sbezverk: ok. cool.20:54
sbezverkkfox1111: it could probably get merged as is and then fine tuned later20:55
sbezverkthere is one failure though with cents..20:55
portdirectkfox1111: so helm_build_all.sh, builds all microservices, then reindexes the repo and builds all services? then helm_buildrepo.sh takes all those packages and throws them into the final repo?20:55
kfox1111sbezverk:I'll pull the wip off of it and then recheck.20:56
sbezverkkfox1111: sounds good, thanks20:56
kfox1111portdirect: essentially yeah. it builds the microservices and the services.20:56
v1k0d3nkfox1111: cool. once we get an agenda going, we can bring that up as well.20:57
kfox1111v1k0d3n: sounds good. :)20:57
v1k0d3nit would be nice to get everyone on the same page as far as design, but i've thought about this a lot lately...having differences is cool.20:58
portdirectkfox1111, the hard deps still scare me :) but lgtm dude :)20:58
v1k0d3njust opens up opportunity to make the used project stronger (in this case helm).20:58
kfox1111portdirect: you and me both. :/ but its a stopgap. :/20:58
kfox1111portdirect: should be much better as soon as helm gets a better sollution in place.20:58
v1k0d3nbtw...to SamYaple point...why would we ever commit something like that to sudo'ers?20:59
SamYaplev1k0d3n: it was buried in a very very large patch20:59
SamYapleand clearly not reviewed well enough20:59
portdirectkfox1111 : well whatta we gonna do? :D20:59
v1k0d3nnoticed that. maybe an oversight?20:59
SamYapleyea20:59
portdirectkfox1111: in summary: LGTM20:59
v1k0d3nmake sense.20:59
SamYaplev1k0d3n: kolla-mesos, blame that21:00
v1k0d3nLOL21:00
v1k0d3nthat's always my default21:00
v1k0d3n:)21:00
kfox1111portdirect: ok. cool. thanks for reviewing.21:01
v1k0d3nit'll be interesting to see how helm folks take some of thoughts.21:01
v1k0d3natm there are three different helm-openstack based projects, all approaching them differently.21:02
kfox1111v1k0d3n: yeah. and I think each prpoject aproaching it from different angles will help show helm where its dificiencies are.21:02
v1k0d3nmaybe21:03
kfox1111each project seems ahead on one way or another. so if they merge features that each project is concerned with,21:03
kfox1111helm should  be much more flexible.21:03
v1k0d3nthey could always say "have you tried this"21:03
v1k0d3nwhich is a perfectly reasonable response.21:03
kfox1111true. and thats ok. so long as they wil llisten when someone says, yeah, but ....21:03
v1k0d3ni mean, they are very detailed in talking through how to set up very useful, consumable charts.21:04
v1k0d3nthat's the whole point of the SIG, and why i wanted it.21:04
kfox1111yeah. my goal is both consumable and modular,21:04
kfox1111which they haven't seem to have put too much thought into yet.21:04
kfox1111+121:04
v1k0d3nthe break down between the approaches wasn't healthy. meeting in helm is the best solution...talking directly with the authors.21:05
v1k0d3nkfox1111: everyone's goal21:05
v1k0d3ndifferent approaches still.21:05
v1k0d3nand honestly, sometimes it's ok not to be everything to everyone.21:05
v1k0d3nat our sides...bite size is the only thing we can do.21:06
v1k0d3notherwise we don't know how to fit an 8x8' box into a 3x3' hole.21:06
v1k0d3n*size21:07
kfox1111yeah.21:07
openstackgerritKevin Fox proposed openstack/kolla-kubernetes: Helm build server  https://review.openstack.org/41210021:08
*** portdirect has quit IRC21:13
sbezverkkfox1111: will ack as soon as the gate results will show up21:14
kfox1111sbezverk: cool. thanks. :)21:14
*** matrohon has quit IRC21:16
*** portdirect has joined #openstack-kolla21:16
*** senk has quit IRC21:16
*** goldyfruit has joined #openstack-kolla21:22
*** goldyfruit has quit IRC21:22
v1k0d3nportdirect_away: are you using the direct chart for jenkins in helm?21:24
v1k0d3nit's a great upstream chart.21:24
v1k0d3nesp for kuberntes builds.21:25
openstackgerritKevin Fox proposed openstack/kolla-kubernetes: Helm entrypoint hooks  https://review.openstack.org/41215521:25
*** goldyfruit has joined #openstack-kolla21:29
*** goldyfruit has quit IRC21:30
*** goldyfruit has joined #openstack-kolla21:30
*** flaper87 has quit IRC21:32
*** l4yerffeJ has joined #openstack-kolla21:32
*** portdirect has quit IRC21:33
*** l4yerffeJ__ has quit IRC21:34
*** Jeffrey4l has quit IRC21:35
*** Jeffrey4l has joined #openstack-kolla21:36
sbezverkkfox1111: in prep to your building tools I am pushing mariadb service, which is less complex and will be easy to test..21:37
kfox1111sbezverk: https://review.openstack.org/#/c/412100/ looks to be ready.21:38
kfox1111oh. either way.21:39
sbezverkkfox1111: nice !!!!!21:39
openstackgerritMerged openstack/kolla-kubernetes: Helm build server  https://review.openstack.org/41210021:41
sbezverkkfox1111: so for testing service deployment we need to build values.yaml file with parameters of the gate instance and feed it to service in command line?21:41
kfox1111yeah.21:41
v1k0d3nkfox1111: green gates look good :)21:42
kfox1111sbezverk: https://review.openstack.org/#/c/412155/9/tests/bin/ceph_workflow.sh has an example.21:43
kfox1111sbezverk: once I get a little further along, I wana try that helm trunk build with globals and see if we can use your nested globals idea.21:44
kfox1111would make it a bit easier.21:44
kfox1111sbezverk: there's a check experimental for helm-entrypoint now so should be able to start testing a bit like in that review.21:44
openstackgerritSerguei Bezverkhi proposed openstack/kolla-kubernetes: Mariadb service deployment  https://review.openstack.org/41223721:48
sbezverkkfox1111: sounds good21:49
openstackgerritKevin Fox proposed openstack/kolla-kubernetes: Helm entrypoint hooks  https://review.openstack.org/41215521:54
openstackgerritSerguei Bezverkhi proposed openstack/kolla-kubernetes: Mariadb service deployment  https://review.openstack.org/41223721:57
*** msimonin has joined #openstack-kolla22:02
*** srwilkers has joined #openstack-kolla22:04
srwilkersafternoon o/22:05
SamYapleo/22:05
*** portdirect_away is now known as portdirect22:06
portdirectevening all o/22:07
SamYapleJeffrey4l: you aroung?22:07
openstackgerritSteve Wilkerson proposed openstack/kolla-kubernetes: Helm charts for cinder keystone v1 endpoints  https://review.openstack.org/41092322:08
srwilkershey SamYaple portdirect, hows it going gents?22:08
SamYaplealright, yourself?22:08
srwilkerseh. lazy sunday22:08
*** matrohon has joined #openstack-kolla22:09
portdirectbeen diy'ing down at the folks... back in the pad now - living the dream, not sure who's dream, but living it :)22:10
kfox1111portdirect: hehe22:12
srwilkershey kfox1111 :)22:12
kfox1111srwilkers: hey. :)22:12
kfox1111srwilkers: that ps looks good to me.22:12
v1k0d3nhey portdirect where you ever away...seems like you're always here.22:12
v1k0d3nand this is pretty much the kfox1111 and portdirect chan :)22:13
v1k0d3nlike 24x722:13
v1k0d3ni don't even know when you sleep portdirect22:13
*** Pavo has quit IRC22:14
srwilkersv1k0d3n, he doesnt22:15
portdirectlol - feels that way - I'm pretty light on sleep, generally try and consume 31 hours of media a day mobile comms are a dangerous thing - I've basicly reverted into a coffee fueled moody teenager with a keyboard, looking forward to some d/t over the next few weeks and reconnecting with reality22:15
srwilkersi think this is the first day i havent had my laptop running all day within an arms distance, and i feel weird about it22:15
*** goldyfruit has quit IRC22:15
SamYaplefreakin adicts22:16
*** goldyfruit has joined #openstack-kolla22:16
srwilkerscan confirm, am junkie22:16
*** matrohon has quit IRC22:16
*** Pavo has joined #openstack-kolla22:18
*** goldyfruit has quit IRC22:24
*** msimonin has quit IRC22:25
kfox1111sbezverk: I fixed the macro thing, and the tests are all green. so should be good to go? https://review.openstack.org/#/c/412155/22:27
sbezverkkfox1111: will do. can you check this link. It looks like Chart.yaml does not get generated22:28
sbezverkhttp://logs.openstack.org/37/412237/2/check/gate-kolla-kubernetes-deploy-centos-binary-external-ovs-nv/c2c8b4f/console.html#_2016-12-18_22_09_30_01225822:28
kfox1111thx.22:28
kfox1111k. will do22:28
kfox1111ah. yeah. Chart.yaml isn't generated. like with the microservices. so gota check one in.22:29
kfox1111gota head out for a few min. be back in ~ 20 min.22:30
sbezverkkfox1111: ok got it byt some reason I thought it gets generated ..22:30
openstackgerritMerged openstack/kolla-kubernetes: Helm entrypoint hooks  https://review.openstack.org/41215522:31
*** msimonin has joined #openstack-kolla22:32
*** sayantan_ has quit IRC22:34
*** awiddersheim has quit IRC22:35
v1k0d3nSamYaple: you're here quite a bit too again.22:35
SamYapleim not here22:36
v1k0d3ni remember seeing you a ton a while back when kolla kicked off.22:36
v1k0d3nbut you left for a while. now you're back all the time.22:36
openstackgerritSerguei Bezverkhi proposed openstack/kolla-kubernetes: Mariadb service deployment  https://review.openstack.org/41223722:36
srwilkerssbezverk, mariadb looking good :) going to start looking at some of the other services this next week22:43
kfox1111back.22:47
srwilkerswb kfox111122:47
kfox1111thx. :)22:49
kfox1111srwilkers: +1 for looking at other services. I think we should play around with a bunch in parallel but not try and merge yet.22:58
kfox1111not sure some common patterns we should be adopting, and they might fall out once we have enough in revew.22:58
srwilkerskfox1111, i agree22:59
kfox1111I'm going to try and push all the infra from the one I've been working on down into trunk though, so we can easily play in parallel.23:00
kfox1111most is merged now. but still needs a bit to make it easy to hook into the experimental gate.23:00
kfox1111then we can test in gate.23:00
srwilkersawesome23:02
openstackgerritSerguei Bezverkhi proposed openstack/kolla-kubernetes: Mariadb service deployment  https://review.openstack.org/41223723:03
*** awiddersheim has joined #openstack-kolla23:11
sbezverkkfox1111: I did not get your comment about init-element, could you please clarify..23:11
kfox1111sbezverk: saying, can you make the changes in helm/microservices/mariadb/.... instead of in the copied subchart?23:14
kfox1111I think we can avoid forking the files at this point.23:15
kfox1111makes it easier to review the changes.23:15
sbezverkkfox1111: got it23:19
*** dave-mccowan has joined #openstack-kolla23:22
openstackgerritSam Yaple proposed openstack/kolla: [WIP] static uid/gid in Dockerfiles  https://review.openstack.org/41223123:22
*** sayantan_ has joined #openstack-kolla23:23
openstackgerritKevin Fox proposed openstack/kolla-kubernetes: Helm-entrypoint git hooks  https://review.openstack.org/41223823:25
*** dave-mcc_ has joined #openstack-kolla23:25
kfox1111k. that should be the last of the infra that can be shared I think.23:25
*** msimonin has quit IRC23:25
*** dave-mccowan has quit IRC23:27
*** dave-mc__ has joined #openstack-kolla23:27
*** sayantan_ has quit IRC23:27
*** dave-mcc_ has quit IRC23:29
sbezverkkfox1111: yes yes yes.. nested in globals are working now :-)23:31
sbezverk{{- define "common_macro" }}23:31
sbezverk{{- $microservice := index .Values.global .microserviceName }}23:31
sbezverk{{- $variable_1 := index $microservice "variable_1" }}23:31
sbezverkname_global: {{ $variable_1 }}23:31
sbezverk{{- end }}23:31
kfox1111awesome.23:31
kfox1111that with their test release?23:31
sbezverkyep canary image23:32
srwilkerssbezverk, :)23:32
kfox1111cool.23:32
srwilkersthats awesome23:32
kfox1111we should snapshot that somewhere until the 2.1.1 release cuts.23:32
kfox1111that way we dont have it break on us suddenly.23:32
kfox1111is it just a client thing, or a server thing too?23:33
openstackgerritSam Yaple proposed openstack/kolla: [WIP] static uid/gid in Dockerfiles  https://review.openstack.org/41223123:33
openstackgerritSam Yaple proposed openstack/kolla: [WIP] static uid/gid in Dockerfiles  https://review.openstack.org/41223123:34
*** mattmceuen has joined #openstack-kolla23:36
srwilkershey mattmceuen o/23:36
mattmceuenyo srwilkers!23:36
openstackgerritKevin Fox proposed openstack/kolla-kubernetes: WIP: neutron service package  https://review.openstack.org/41223923:36
SamYaplei wish nova-libvirt was just named 'libvirtd'23:36
kfox1111there we go... taht would be a little more reviewable..23:37
kfox1111SamYaple: +1. :/23:37
kfox1111SamYaple: and +1 for optional. :/23:37
kfox1111there's a few places where I'd like to run kolla, but have libvirt alrady on the host.23:38
SamYapleat one point it was options :P23:38
SamYapleoptional*23:38
kfox1111lack of gate testing probably. :/23:38
SamYaplebut since ansible didnt bind to the host... eh23:38
SamYapleno23:38
kfox1111easy to break that kind of thing.23:38
SamYapleits just not really usable unless you bind /var/lib/nova to the host23:38
kfox1111thats an option though.23:39
SamYaplesomething kolla didnt really want to do23:39
SamYapleyea but it wasnt when libvirt was also optional lol23:39
SamYapleanyway. we can rename nova-libvirt by doing it with tags and a deprecation cycle23:39
*** cliles has quit IRC23:39
kfox1111yeah.23:40
SamYaplebasically produce ubuntu-source-libvirtd:4.0.0 and ubuntu-source-nova-libvirt:4.0.023:40
kfox1111srwilkers: nice. :)23:42
SamYaplebtw, if anyone wants to comment on my implementation of the static uid/gid... nows the time https://review.openstack.org/#/c/412231/23:43
kfox1111SamYaple: yeah. that would work.23:43
SamYapleif i need to change it I would like to know sooner rather than later23:43
kfox1111sounds good to me.23:44
sbezverkkfox1111: I did both23:44
openstackgerritMerged openstack/kolla-kubernetes: Helm charts for cinder keystone v1 endpoints  https://review.openstack.org/41092323:44
kfox1111sbezverk: ah. would be much more complicated cloning the docker container too. :/23:45
kfox1111sbezverk: would be nice if it was a client only thing.23:46
kfox1111sbezverk: but am kind of thinking vars are processed on the server.23:46
*** dave-mc__ has quit IRC23:46
mattmceuenmultinode kolla-ansible question -- one of my nodes is not like the others w.r.t. interface names.  I'm trying to override its interface names in my inventory like so:23:47
mattmceuen192.168.1.3 network_interface=enp1s0f1 neutron_external_interface=enp1s0f0 kolla_external_vip_interface=enp1s0f0 api_interface=enp1s0f0 storage_interface=enp1s0f1 tunnel_interface=enp1s0f123:47
mattmceuen123:47
mattmceuenbut I'm still getting an error during deployment that that node doesn't have the "default" api_interface (eno1 in my case).   Can anyone tell me if that's the correct way to specify per-host interface names?23:48
openstackgerritKevin Fox proposed openstack/kolla-kubernetes: Helm-entrypoint git hooks  https://review.openstack.org/41223823:49
*** l4yerffeJ has quit IRC23:51
*** l4yerffeJ has joined #openstack-kolla23:51
openstackgerritKevin Fox proposed openstack/kolla-kubernetes: WIP: neutron service package  https://review.openstack.org/41223923:51
openstackgerritSerguei Bezverkhi proposed openstack/kolla-kubernetes: Mariadb service deployment  https://review.openstack.org/41223723:55
sbezverkkfox1111: not really because I always run --dry-run and I doubt tiller is participating here23:56
sbezverkkfox1111: I did both just in case ;-)23:57
openstackgerritSerguei Bezverkhi proposed openstack/kolla-kubernetes: Mariadb service deployment  https://review.openstack.org/41223723:59
« Saturday, 2016-12-17 Index Monday, 2016-12-19 »

Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!