Monday, 2024-09-02

« Saturday, 2024-08-31 Index Tuesday, 2024-09-03 »
opendevreviewrenliang proposed openstack/kolla-ansible master: Fix incorrect docker storage driver document link  https://review.opendev.org/c/openstack/kolla-ansible/+/92769603:07
opendevreviewIvan Vnučko proposed openstack/kolla-ansible master: Add backend TLS encryption between RabbitMQ management and HAProxy  https://review.opendev.org/c/openstack/kolla-ansible/+/91908607:20
*** MatejFeder|Outofofficeuntil020 is now known as MatejFeder[m]07:43
kevkoSo, let's backport elastic support :) https://www.elastic.co/blog/elasticsearch-is-open-source-again07:44
bbezak:)07:45
SvenKieskeit's nice that it's AGPL, but then again opensearch has security plugins like auth stuff open sourced, afaik elastic has those still as proprietary?07:53
SvenKieskegood morning btw :)07:53
SvenKieskekevko: maybe you can look at my notes for the rabbitmq streams vs quorum queues stuff? I tried to write the current state up in: https://etherpad.opendev.org/p/KollaWhiteBoard#L72 would be interested in your opinions.07:54
SvenKieskee.g. did anybody already use streams anywhere?07:55
bbezakkevko: could you please take a look into those two changes in the chain? https://review.opendev.org/c/openstack/kolla/+/92746108:09
kevkoSvenKieske: I tried streams and it didn't work 100 % I turned off09:09
kevkoI will check both folks ..but we are moving offices ..so it will be in hour or two 09:10
opendevreviewMatúš Jenča proposed openstack/kolla master: Change Manila container user to root  https://review.opendev.org/c/openstack/kolla/+/92772209:17
kevkoSvenKieske: yeah, but I think we can provide a way how to choose between opensearch/elastic 09:30
SvenKieskefine with me I guess, if it doesn't add a thousand lines ;)09:34
kevkoSvenKieske: bbezak: btw, we lastly forgot to discuss https://review.opendev.org/c/openstack/kolla/+/926744 vs https://review.opendev.org/c/openstack/kolla-ansible/+/926632   << My opinion is to just make images simpler than add some special role to fetch additional information to just render into some templates ... symlinks are normal way how to09:38
kevkohandle such stuff 09:38
opendevreviewMatúš Jenča proposed openstack/kolla-ansible master: Enable backend TLS for Manila  https://review.opendev.org/c/openstack/kolla-ansible/+/92772509:56
dougszuHey folks, do we still want to restore Zookeeper? (for Tooz)09:58
dougszuIf so, there is this for starters: https://review.opendev.org/c/openstack/kolla/+/92040509:59
opendevreviewMichal Arbet proposed openstack/kolla-ansible master: Add ansible-core as a dependency  https://review.opendev.org/c/openstack/kolla-ansible/+/92236912:32
kevkoSvenKieske: hmm, i am squashing my changes into one - for use of queue_manager  .... i think we need to share /dev/shm  between containers and set also oslo_concurrency lock 14:27
SvenKieskekevko: looking forward to that, I'm unfortunately very much blocked for most of the week with customer work and travel, so don't expect fast responses by me :)14:28
kevkoSvenKieske: hmm, btw i think the current implementation is not good from the beginning in kolla...14:36
kevkoSvenKieske: classic deployment (not containerized) take into account that processes (openstack service - nova, neutron as example) have shared /dev/shm for intercommunication (for now queue_manager as example ..accessing /dev/shm) ...but containerized deployment which kolla is don't do that. In kolla every container has shared memory of 64MB size14:40
kevko..and host /dev/shm is not accessible ..and also processes between (nova-scheduler, nova-api as example)  don't have /dev/shm same ... So i think we need to mount /dev/shm:/dev/shm OR create tmpfs for kolla_dev_shm and mount to all containers as shared /dev/shm ...14:40
SvenKieskemhm, what do the other deployments do? why would that be necessary? in a distributed system you can't take it for granted you can communicate with other processes via local shared memory? I must be missing something14:47
kevkoSvenKieske: https://github.com/openstack/oslo.messaging/blob/master/oslo_messaging/_drivers/amqpdriver.py#L45-L9914:47
kevkoSvenKieske: https://github.com/openstack/oslo.messaging/blob/master/releasenotes/notes/rabbit_queue_manager-363209285cbbe257.yaml14:49
SvenKieskeok, so that is namespaced per host already and it's only relevant for the queue manager itself, got it.14:50
kevkoSvenKieske: yes - which also means streams ...14:51
SvenKieskeok, so this really requires same /dev/shm/ per container per service per host..14:51
kevkoSvenKieske: but, i can't confirm IF some other services in a code not using /dev/shm in a code ...  14:51
kevkoSvenKieske: what i am trying to say that if code using /dev/shm (in  this case oslo.messaging) and assumes it's shared ...it's bad from the kolla beginning ... because every container has own /dev/shm of 64m 14:53
opendevreviewMatúš Jenča proposed openstack/kolla master: Gnocchi: Bump to 4.6.3  https://review.opendev.org/c/openstack/kolla/+/92774114:53
SvenKieskesure, that's the point of containers. But imho it's more problematic from the design pov of openstack as a whole: everybody says it's a "distributed system" and designed for scale etc and then someone comes around and just assumes distinct service processes can read each others ram..doesn't make a lot of sense tbh.14:54
SvenKieskeeither say "it must be deployed on the same host" or "we are distributed for scale, we don't assume local access to different processes of the same service" you can't have both without pain14:55
SvenKieskeseems we chose pain :)14:56
kevkoSvenKieske: I din't implement shared memory in my testing deployment ... and I see this for example in heat_engine ... (queue_manager on )14:57
kevkoSvenKieske: (heat-engine)[root@controller0 /]# cat /dev/shm/controller0_heat-engine_qmanager 14:57
kevko1:36(heat-engine)[root@controller0 /]# 14:57
SvenKieskewell skimming that queue manager code I would expect any openstack service using it will need /dev/shm then.14:58
kevkoafter restart heat_engine it's the same ...but as I said before ...streams didn't work for me on my testing stack ...so I started wondering if it is not about this ....14:58
SvenKieskeinteresting blog post: https://hynek.me/articles/docker-virtualenv/15:00
kevkoSvenKieske: ^^ yep, as you said ... but I am now wondering if i add /dev/shm:/dev/shm to kolla-ansible .... OR create tmpfs for kolla usage and mount to all containers15:00
SvenKieskeyou might want to check if /dev/shm sharing even works in podman, might be troublesome :)15:00
kevkoSvenKieske: hmm, it looks like only oslo.messaging using this https://codesearch.opendev.org/?q=%2Fdev%2Fshm&i=nope&literal=nope&files=&excludeFiles=&repos=15:02
kevko*this approach15:02
SvenKieskeI guess most people communicate..well over rabbitmq? :D oslo can't do that for rabbit coordination itself I guess15:04
opendevreviewMatúš Jenča proposed openstack/kolla master: Gnocchi: Bump to 4.6.3  https://review.opendev.org/c/openstack/kolla/+/92774115:04
kevkoSvenKieske: is it problem to just mount /dev/shm of host to /dev/shm of containers ? 15:05
SvenKieskeI don't know, but there where problems with some other low level mount points in the past imho15:09
SvenKieskeI guess CI will tell us ;)15:09
kevkoSvenKieske: Haha, CI works at about 80 percent :) 15:12
opendevreviewMartin Hiner proposed openstack/kolla-ansible master: Move to high level client in DockerWorker  https://review.opendev.org/c/openstack/kolla-ansible/+/90829515:38
opendevreviewMichal Arbet proposed openstack/kolla-ansible master: [DNM] Use host's shared memory  https://review.opendev.org/c/openstack/kolla-ansible/+/92775217:19
opendevreviewMerged openstack/kolla-ansible master: Drop prometheus-msteams support  https://review.opendev.org/c/openstack/kolla-ansible/+/92700117:52
opendevreviewVerification of a change to openstack/kolla master failed: Drop prometheus-msteams container images  https://review.opendev.org/c/openstack/kolla/+/92700018:02
fricklermeh, kevko jinxed it ;-)18:05
*** priteau_ is now known as priteau19:12
opendevreviewMerged openstack/kolla master: Drop prometheus-msteams container images  https://review.opendev.org/c/openstack/kolla/+/92700020:56
mnasiadkafrickler, kevko: how about https://review.opendev.org/c/openstack/kolla/+/927461 ? ;-)22:31
« Saturday, 2024-08-31 Index Tuesday, 2024-09-03 »

Generated by irclog2html.py 2.17.3 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!