Sunday, 2019-03-03

« Saturday, 2019-03-02 Index Monday, 2019-03-04 »
eandersson> Checking segment: NetworkSegment00:01
eanderssonThis call is extremly noisy with debug on00:02
eanderssonand we believe is extremly expensive00:03
*** tosky has quit IRC00:17
*** wolverineav has joined #openstack-neutron00:17
*** wolverineav has quit IRC00:21
*** wolverineav has joined #openstack-neutron00:22
*** wolverineav has quit IRC00:27
openstackgerritsean mooney proposed openstack/neutron master: do not skip ports with unset or invalid ofport  https://review.openstack.org/64025800:39
*** luksky has quit IRC00:45
*** ijw_ has quit IRC01:23
*** lujinluo has joined #openstack-neutron01:31
*** wolverineav has joined #openstack-neutron01:37
*** lujinluo has quit IRC01:38
*** wolverineav has quit IRC01:44
dougwigeandersson: from what release to what?02:11
eanderssonmitaka to rocky02:11
dougwigwe had massive cpu spikes from liberty -> pike.02:11
eanderssonDid you figure out the cause?02:12
dougwigmost of ours was around security groups; i've submitted a few patches for that, and have a few more to go. the switch from sqlalchemy at the api layer to neutron objects is more cpu time.  we use calico, so the other plugin operations weren't affected as much.02:13
dougwigwhich plugins are you using?02:13
dougwigthat's also why this change was submitted, so it's quicker to see which task is chewing the cpu: https://review.openstack.org/#/c/637019/02:14
eanderssonml2 / linuxbridge / plus l3 (cisco)/lbaas02:16
eanderssonWe are seeing some really expensive calls > Checking segment: NetworkSegment02:16
eanderssonfrom the ml2 driver02:16
dougwiglinuxbridge with flat, vlan, vxlan ?02:16
*** yamamoto has joined #openstack-neutron02:17
dougwigif you've got a way to run cProfile on the suspect calls, we can see what's taking all the time.02:17
eanderssonvlan02:18
eanderssonWe are seeing a couple of computes with02:19
eandersson> ; Stdout: ; Stderr: iptables-restore v1.4.21: unknown option "--dport"02:19
dougwigi've never seen that. i wonder if that could be causing spinning, if the expected state never matches up.02:20
*** yamamoto has quit IRC02:22
eanderssonYea - thinking that it could cause that02:24
*** yamamoto has joined #openstack-neutron02:26
openstackgerritYAMAMOTO Takashi proposed openstack/networking-midonet master: Pin astroid versions  https://review.openstack.org/64061402:36
eanderssondougwig, it looks to be failing at something like this > -s <ip>/32 -p vrrp --dport 112 -j RETURN02:36
eandersson*iptables -s <ip>/32 -p vrrp --dport 112 -j RETURN02:36
openstackgerritMerged openstack/neutron master: Cleanup DVR SNAT port list creation code  https://review.openstack.org/63699402:39
eanderssonSo looking at Mitaka it was not adding the dport or the source ip02:46
eandersson> iptables -s <ip>/32 -p vrrp --dport 112 -j RETURN02:46
eandersson> iptables -p vrrp -j RETURN02:46
eanderssonSo looks like neutron is generating bad iptables02:47
openstackgerritYAMAMOTO Takashi proposed openstack/networking-midonet master: Pin astroid versions  https://review.openstack.org/64061402:53
*** yamamoto has quit IRC02:53
*** yamamoto has joined #openstack-neutron02:57
*** yamamoto has quit IRC03:09
*** cheng1 has joined #openstack-neutron03:10
*** yamamoto has joined #openstack-neutron03:13
*** yamamoto has quit IRC03:16
*** yamamoto has joined #openstack-neutron03:16
*** yamamoto has quit IRC03:20
*** yamamoto has joined #openstack-neutron03:32
*** yamamoto has quit IRC03:32
*** yamamoto has joined #openstack-neutron03:33
*** yamamoto has quit IRC03:37
eanderssonSo still not sure why, but something or someone created a VRRP rule like this03:38
eanderssonopenstack security group rule create xxx --protocol vrrp --ingress --remote-ip <ip> --dst-port 11203:38
eanderssonThis breaks the compute, as it can no longer apply the iptables03:38
eanderssonProbably a pretty critical bug, as it allows you to break computes03:39
*** tbachman has quit IRC03:54
*** lujinluo has joined #openstack-neutron04:02
*** lujinluo has quit IRC04:06
*** wolverineav has joined #openstack-neutron04:24
*** wolverineav has quit IRC04:32
dougwigYes, did you file it?04:36
*** yamamoto has joined #openstack-neutron04:44
eanderssondougwig, https://bugs.launchpad.net/neutron/+bug/181838504:44
openstackLaunchpad bug 1818385 in neutron "It's possible to add a security group rule for VRRP with a dport" [Undecided,New]04:44
*** yamamoto has quit IRC04:48
dougwigAwesome, thanks05:00
*** sapd1 has quit IRC05:09
*** sapd1 has joined #openstack-neutron05:10
*** cbrumm_ has joined #openstack-neutron05:11
*** yamamoto has joined #openstack-neutron05:18
*** yamamoto has quit IRC05:23
openstackgerritDoug Wiegley proposed openstack/neutron master: For vrrp sg rules, do not emit dport option  https://review.openstack.org/64061905:38
*** colin- has joined #openstack-neutron06:07
*** wolverineav has joined #openstack-neutron06:13
*** colin- has quit IRC06:27
*** gcheresh_ has joined #openstack-neutron06:30
*** yamamoto has joined #openstack-neutron06:35
openstackgerritDoug Wiegley proposed openstack/neutron master: When converting sg rules to iptables, do not emit dport if not supported  https://review.openstack.org/64061906:36
*** yamamoto has quit IRC06:40
*** colin- has joined #openstack-neutron06:41
*** yamamoto has joined #openstack-neutron06:45
*** yamamoto has quit IRC06:58
*** yamamoto has joined #openstack-neutron06:58
*** cheng1 has quit IRC07:19
*** cheng1 has joined #openstack-neutron07:20
*** abaindur has joined #openstack-neutron07:27
*** wolverineav has quit IRC07:27
*** pck has quit IRC07:29
*** slaweq has joined #openstack-neutron07:37
*** yamamoto has quit IRC07:45
*** yamamoto has joined #openstack-neutron07:51
*** yamamoto has quit IRC07:51
*** yamamoto has joined #openstack-neutron07:52
*** yamamoto has quit IRC07:57
*** wolverineav has joined #openstack-neutron07:59
*** colin- has quit IRC08:07
*** lujinluo has joined #openstack-neutron08:15
*** lujinluo has quit IRC08:20
*** cheng1 has quit IRC08:25
*** luksky has joined #openstack-neutron08:25
*** abaindur has quit IRC08:25
*** yamamoto has joined #openstack-neutron08:36
*** yamamoto has quit IRC08:41
*** wolverineav has quit IRC08:47
openstackgerritKailun Qin proposed openstack/neutron master: Support Network Segment Range CRUD as extensions  https://review.openstack.org/62470808:59
openstackgerritKailun Qin proposed openstack/neutron master: Use network segment ranges for segment allocation  https://review.openstack.org/62470908:59
openstackgerritKailun Qin proposed openstack/neutron master: Devstack plugin for network-segment-range api  https://review.openstack.org/63838608:59
*** wolverineav has joined #openstack-neutron09:17
*** wolverineav has quit IRC09:18
*** wolverineav has joined #openstack-neutron09:19
*** abaindur has joined #openstack-neutron09:23
*** abaindur has quit IRC09:27
*** hjensas has quit IRC09:35
*** hjensas has joined #openstack-neutron09:37
*** wolverineav has quit IRC09:39
*** yamamoto has joined #openstack-neutron10:24
*** yamamoto has quit IRC10:29
openstackgerritAdrian Chiris proposed openstack/neutron master: Delete port binding level for deleted bindings  https://review.openstack.org/63427610:30
*** yamamoto has joined #openstack-neutron10:58
*** yamamoto has quit IRC11:02
*** wolverineav has joined #openstack-neutron11:03
*** wolverineav has quit IRC11:08
openstackgerritKailun Qin proposed openstack/neutron master: Support Network Segment Range CRUD as extensions  https://review.openstack.org/62470811:10
openstackgerritKailun Qin proposed openstack/neutron master: Use network segment ranges for segment allocation  https://review.openstack.org/62470911:10
openstackgerritKailun Qin proposed openstack/neutron master: Devstack plugin for network-segment-range api  https://review.openstack.org/63838611:10
*** yamamoto has joined #openstack-neutron11:21
*** yamamoto has quit IRC11:28
*** yamamoto has joined #openstack-neutron11:30
*** yamamoto has quit IRC11:30
*** yamamoto has joined #openstack-neutron11:30
*** tosky has joined #openstack-neutron11:35
openstackgerritKailun Qin proposed openstack/neutron master: Support Network Segment Range CRUD as extensions  https://review.openstack.org/62470811:40
openstackgerritKailun Qin proposed openstack/neutron master: Use network segment ranges for segment allocation  https://review.openstack.org/62470911:40
openstackgerritKailun Qin proposed openstack/neutron master: Devstack plugin for network-segment-range api  https://review.openstack.org/63838611:40
*** salmankhan has joined #openstack-neutron11:48
*** yamamoto has quit IRC11:53
*** yamamoto has joined #openstack-neutron12:00
*** lujinluo has joined #openstack-neutron12:12
*** lujinluo has quit IRC12:17
openstackgerritKailun Qin proposed openstack/neutron-lib master: standard-attr for network-segment-range api-ref  https://review.openstack.org/64063312:18
*** yamamoto_ has joined #openstack-neutron12:19
*** yamamoto has quit IRC12:22
*** salmankhan has quit IRC12:27
*** dayou has quit IRC12:48
*** dayou has joined #openstack-neutron12:50
openstackgerritKailun Qin proposed openstack/neutron-lib master: standard-attr for network-segment-range api-ref  https://review.openstack.org/64063313:03
*** elod has quit IRC13:04
*** elod has joined #openstack-neutron13:04
*** elod has quit IRC13:06
*** elod has joined #openstack-neutron13:11
*** yamamoto_ has quit IRC13:27
openstackgerritSlawek Kaplonski proposed openstack/neutron master: Revert "Restart all L3 agents in test that check no packet loss in HA routers"  https://review.openstack.org/64063413:31
*** cheng1 has joined #openstack-neutron13:42
*** cheng1 has quit IRC13:48
*** yamamoto has joined #openstack-neutron13:54
*** dayou has quit IRC14:02
*** dayou has joined #openstack-neutron14:03
openstackgerritMerged openstack/neutron master: DVR edge router: avoid accidental centralized floating IP remove  https://review.openstack.org/63864814:21
*** cshen has joined #openstack-neutron14:35
*** cshen has quit IRC14:57
openstackgerritMerged openstack/neutron master: Placement reporting service plugin  https://review.openstack.org/58067214:57
*** cshen has joined #openstack-neutron15:05
*** snapiri has quit IRC15:09
*** cshen has quit IRC15:10
*** cshen has joined #openstack-neutron15:20
*** cshen has quit IRC15:25
*** gcheresh_ has quit IRC15:57
openstackgerritRyan Tidwell proposed openstack/neutron-dynamic-routing master: Implement DVR-aware fixed IP lookups  https://review.openstack.org/58109816:00
*** lujinluo has joined #openstack-neutron16:14
*** lujinluo has quit IRC16:18
*** yamamoto has quit IRC16:33
openstackgerritMerged openstack/neutron master: [Functional tests] Change way how conntrack entries are checked  https://review.openstack.org/63863516:40
*** yamamoto has joined #openstack-neutron17:13
*** jmlowe has quit IRC17:15
*** yamamoto has quit IRC17:18
*** cshen has joined #openstack-neutron17:21
*** cshen has quit IRC17:25
*** jmlowe has joined #openstack-neutron17:36
*** njohnston_ has joined #openstack-neutron17:42
*** njohnston_ has quit IRC17:44
*** vishwanathj has joined #openstack-neutron18:15
*** lujinluo has joined #openstack-neutron18:18
*** lujinluo has quit IRC18:22
*** colin- has joined #openstack-neutron18:28
*** armax has quit IRC18:34
*** lujinluo has joined #openstack-neutron18:50
*** tidwellr has quit IRC18:54
*** lujinluo has quit IRC18:55
*** rkukura has quit IRC18:55
*** cshen has joined #openstack-neutron19:00
*** cshen has quit IRC19:04
*** wolverineav has joined #openstack-neutron19:07
*** wwriverrat has joined #openstack-neutron19:09
*** cshen has joined #openstack-neutron19:13
*** cshen has quit IRC19:18
*** igordc has joined #openstack-neutron19:23
*** dsneddon has quit IRC19:24
*** wolverineav has quit IRC19:41
*** hongbin has joined #openstack-neutron20:09
*** dsneddon has joined #openstack-neutron20:12
*** dsneddon has quit IRC20:17
*** lujinluo has joined #openstack-neutron20:34
*** hongbin has quit IRC20:39
*** hongbin_ has joined #openstack-neutron20:39
*** dave-mccowan has joined #openstack-neutron20:54
*** wolverineav has joined #openstack-neutron21:02
*** wolverineav has quit IRC21:07
*** ijw has joined #openstack-neutron21:07
*** ijw_ has joined #openstack-neutron21:10
*** ijw has quit IRC21:12
*** cshen has joined #openstack-neutron21:14
*** cshen has quit IRC21:18
*** tbachman_ has joined #openstack-neutron21:25
*** lujinluo has quit IRC21:33
*** ijw_ has quit IRC21:37
*** jmlowe has quit IRC21:37
*** ijw has joined #openstack-neutron21:38
*** ijw has quit IRC21:49
*** ijw_ has joined #openstack-neutron21:49
*** jmlowe has joined #openstack-neutron21:50
*** jmlowe has quit IRC21:50
*** ijw has joined #openstack-neutron21:51
*** abaindur has joined #openstack-neutron21:51
*** ijw_ has quit IRC21:54
*** ijw_ has joined #openstack-neutron21:58
*** ijw has quit IRC22:01
*** dsneddon has joined #openstack-neutron22:13
*** wolverineav has joined #openstack-neutron22:14
*** dsneddon has quit IRC22:17
*** wolverineav has quit IRC22:19
*** mlavalle has joined #openstack-neutron22:27
openstackgerritSlawek Kaplonski proposed openstack/neutron master: Spawn metadata proxy on dvr ha standby routers  https://review.openstack.org/63997922:37
*** abaindur has quit IRC22:39
*** jmlowe has joined #openstack-neutron22:39
*** dave-mccowan has quit IRC22:45
*** jmlowe has quit IRC22:47
*** wolverineav has joined #openstack-neutron22:54
*** tkajinam has joined #openstack-neutron22:55
*** hongbin_ has quit IRC22:55
*** wolverineav has quit IRC22:58
*** slaweq has quit IRC23:00
*** rkukura has joined #openstack-neutron23:03
*** slaweq has joined #openstack-neutron23:08
*** slaweq has quit IRC23:13
*** cshen has joined #openstack-neutron23:14
*** cshen has quit IRC23:19
*** ijw_ has quit IRC23:29
*** ijw has joined #openstack-neutron23:29
*** tosky has quit IRC23:30
*** tbachman_ has quit IRC23:32
*** ijw has quit IRC23:34
mlavalledougwig: please see what you think of my comments to https://review.openstack.org/#/c/64061923:50
mlavalledougwig: thanks for proposing a fix so quickly for that bug23:50
mlavalledougwig: I think we can simplify a bit23:50
*** wolverineav has joined #openstack-neutron23:55
*** sapd1 has quit IRC23:56
*** vishwanathj has quit IRC23:57
*** wolverineav has quit IRC23:59
« Saturday, 2019-03-02 Index Monday, 2019-03-04 »

Generated by irclog2html.py 2.15.3 by Marius Gedminas - find it at mg.pov.lt!