Tuesday, 2024-03-05

« Monday, 2024-03-04 Index Wednesday, 2024-03-06 »
opendevreviewmelanie witt proposed openstack/nova-specs master: Re-propose specs for ephemeral encryption  https://review.opendev.org/c/openstack/nova-specs/+/90765401:33
opendevreviewmelanie witt proposed openstack/nova-specs master: Re-propose specs for ephemeral encryption  https://review.opendev.org/c/openstack/nova-specs/+/90765403:02
opendevreviewmelanie witt proposed openstack/nova-specs master: Re-propose specs for ephemeral encryption  https://review.opendev.org/c/openstack/nova-specs/+/90765403:32
*** mklejn_ is now known as mklejn07:56
opendevreviewSylvain Bauza proposed openstack/nova master: libvirt: Cap with max_instances GPU types  https://review.opendev.org/c/openstack/nova/+/89962510:48
opendevreviewSylvain Bauza proposed openstack/nova master: vgpu: Allow device_addresses to not be set  https://review.opendev.org/c/openstack/nova/+/90208410:48
ratailorsean-k-mooney[m], gibi dtantsur could you please review https://review.opendev.org/c/openstack/openstacksdk/+/904490 and https://review.opendev.org/c/openstack/python-openstackclient/+/90456913:42
opendevreviewRajesh Tailor proposed openstack/nova master: Restore original AZ when unshelve fails  https://review.opendev.org/c/openstack/nova/+/91110814:22
opendevreviewSylvain Bauza proposed openstack/nova master: Add a functest for verifying multiple VGPU allocations  https://review.opendev.org/c/openstack/nova/+/84574715:15
opendevreviewSylvain Bauza proposed openstack/nova master: Support multiple allocations for vGPUs  https://review.opendev.org/c/openstack/nova/+/84575715:15
opendevreviewSylvain Bauza proposed openstack/nova master: document how to ask for more a single vGPU  https://review.opendev.org/c/openstack/nova/+/90615115:15
elodillesnova release liaisons, fyi: https://review.opendev.org/c/openstack/releases/+/91094015:56
bauzasyup I know15:59
bauzas#startmeeting nova16:00
opendevmeetMeeting started Tue Mar  5 16:00:53 2024 UTC and is due to finish in 60 minutes.  The chair is bauzas. Information about MeetBot at http://wiki.debian.org/MeetBot.16:00
opendevmeetUseful Commands: #action #agreed #help #info #idea #link #topic #startvote.16:00
opendevmeetThe meeting name has been set to 'nova'16:00
bauzas#link https://wiki.openstack.org/wiki/Meetings/Nova#Agenda_for_next_meeting16:01
bauzasheya everyone16:01
fwiesel\o16:01
bauzaswho's around ?16:01
Ugglao/16:02
gibio/16:03
elodilleso/16:03
bauzasmaybe we should skip if we don't have quorum16:03
auniyalo/16:03
bauzasokay, let's try then to have a quick meeting16:04
bauzas#topic Bugs (stuck/critical) 16:04
bauzas#info No Critical bug16:04
bauzas#link https://bugs.launchpad.net/nova/+bugs?search=Search&field.status=New 75 new untriaged bugs (+5 since the last meeting)16:04
bauzas#info Add yourself in the team bug roster if you want to help https://etherpad.opendev.org/p/nova-bug-triage-roster16:04
bauzas#info bug baton is bauzas16:04
bauzasit's my duty, I'll look this week at the bugs because of RC116:04
bauzasmoving on ?16:05
bauzaslooks so16:06
bauzas#topic Gate status 16:07
bauzas#link https://bugs.launchpad.net/nova/+bugs?field.tag=gate-failure Nova gate bugs 16:07
bauzas#link https://etherpad.opendev.org/p/nova-ci-failures-minimal16:07
bauzas#link https://zuul.openstack.org/builds?project=openstack%2Fnova&project=openstack%2Fplacement&pipeline=periodic-weekly Nova&Placement periodic jobs status16:07
bauzas#info Please look at the gate failures and file a bug report with the gate-failure tag.16:07
bauzasanything to report ?16:08
sean-k-mooneythere were some post job hook failures16:10
sean-k-mooneyim just looking at them now but not sure there is a pattern16:10
sean-k-mooneyhave others seen issues with post failtures16:10
sean-k-mooneyi saw  echo 'Creating ephemeral test server on subnode' fail in two diffent test befauce we didnt get a list of flavors16:11
sean-k-mooneyHttpException: 500: Server Error for url: https://158.69.64.59/compute/v2.1/flavors/detail?is_public=True, Internal Server Error16:11
bauzasyeah I did a couple of rechecks16:11
bauzasthe ones I saw were for ceph-live-migration16:12
sean-k-mooneyok i guess we can see if that continues16:12
sean-k-mooneythe ones i was looking at just now were in nova-live-migration nova-next and nova-ovs-hybrid-plug 16:13
bauzasack16:13
bauzasmoving on then16:13
sean-k-mooneyoh POST_FAILURE in 19m 30s16:13
sean-k-mooneyso they failed on something else because that way to fast for a devstack job to be in post16:13
sean-k-mooneyso the post playbooks are failign becuase we didnt install perperly is my guess16:14
sean-k-mooneywe can move on16:15
bauzassure16:15
bauzas#topic Release Planning 16:16
bauzas#link https://releases.openstack.org/caracal/schedule.html#nova16:16
bauzas#info Caracal-3 (and feature freeze) delivered16:16
bauzas#info RC1 in 1.5 weekqs16:16
bauzasthat's basically itr16:16
bauzaswe'll have a caracal retro in the next PTG16:16
bauzasanything else ?16:17
bauzas#topic Review priorities 16:18
bauzas#link https://etherpad.opendev.org/p/nova-caracal-status16:18
bauzasI amended the etherpad16:18
bauzasfor this week and the next one, please look at the bugfixes 16:18
bauzasI'll prepare a specific etherpad for RC116:18
bauzasany questions ?16:19
bauzasok, moving on16:20
bauzas#topic Stable Branches 16:20
bauzaselodilles: floor is yours16:20
elodilles#info stable gates seem to be OK16:20
elodillesstable/2023.2, stable/2023.1 and stable/zed respectively16:21
elodillesxena, wallaby and victoria will go to unmaintained in #minutes :)16:21
elodilles#info stable branch status / gate failures tracking etherpad: https://etherpad.opendev.org/p/nova-stable-branch-ci16:21
elodillesthat's all i think16:22
bauzaselodilles: and as I said, I'll look at the paperwork :)16:22
elodillesbauzas: ACK, thanks in advance :]16:22
bauzasok, moving on16:24
opendevreviewsean mooney proposed openstack/nova master: add pyproject.toml to support pip 23.1  https://review.opendev.org/c/openstack/nova/+/89975316:24
bauzas#topic vmwareapi 3rd-party CI efforts Highlights 16:25
fwiesel#info FIPS instablility caused by MAC learning issue, still debugging16:25
bauzasfwiesel: floor is yours :p16:25
bauzasfwiesel: ack16:25
fwieselDigging down and learning things about OVS, but not much progress there to report16:25
fwiesel#info Proposed bug fixes https://review.opendev.org/c/openstack/nova/+/909474 and https://review.opendev.org/c/openstack/nova/+/910627 would bring tempest failures down to one16:25
fwieselif you retry often enough, due to the MAC learning issue16:26
fwiesel#link http://openstack-ci-logs.global.cloud.sap/sapcc-nova-ib3088cfce4f7a0b24f05d45e7830b011c4a39f42-jf2kd/tempest.html16:26
fwieselThat's how it should look like then16:26
bauzasfwiesel: don't hesitate to ping me for reviews16:26
fwieselSure, I will. The first proposal is probably introducing a new bug, I have to dig into that first.16:27
sean-k-mooneyfwiesel: thanks for posting the ci links in https://review.opendev.org/c/openstack/nova/+/91062716:27
fwieselWhich brings us to the last one:16:27
fwiesel#info Outstanding failure likely not vmware specific: https://bugs.launchpad.net/nova/+bug/2055700. Rebuild + bfv + reimage-boot-volume: First driver.destroy, then driver.detach_volume (then driver.spawn)16:27
sean-k-mooneyis VMware NSX CI the old ci acconut16:27
fwieselsean-k-mooney: Yes, the VMware NSX CI is the old account from Vmware.16:28
sean-k-mooneyack do we have an eta for when your ci will start commenting16:28
fwieselWell, I haven't prioritized it, as it is fairly instable.16:29
sean-k-mooneyack i guess we can look at http://openstack-ci-logs.global.cloud.sap/16:29
fwieselIt would be probably just a days work to make it comment, but the output would be a bit random16:29
sean-k-mooneyand seach by the change id16:29
sean-k-mooneyfwiesel: basically instead of pinging you for the link on each patch i just want to find a way to look for the ci result16:30
fwieselThat should work. I have to check, if I haven't broken it.16:30
sean-k-mooneyack that will help us understand if the patches we are reviewing are fixing the probelmn and or breakign other things16:31
fwieselYes, but the CI is not yet stable for reasons outside of the patches.16:32
sean-k-mooneyack16:32
bauzasack too16:32
fwieselIf you look at it the way that a test succeeds, then it really fixed, but if it fails, that it could be due to reasons not related to the patch, then it should be fine.16:33
sean-k-mooneyyep we cant know if a fialure is infra related or not 16:33
sean-k-mooneybut if a previsoly broken functionlity passes we know ti appears to work16:33
fwieselack16:34
fwieselTomorrow, I'll make then sure that the index is still correctly updated.16:34
fwieselThat's from my side then. Any other questions?16:35
fwieselback to you then, bauzas16:36
bauzascool16:36
bauzas#topic Open discussion 16:36
bauzas.16:36
bauzasanything else ?16:36
sean-k-mooneyare we going to merge https://review.opendev.org/c/openstack/nova/+/902687 and the patch beloew16:37
sean-k-mooneyyou said you wanted to wait until after FF16:37
sean-k-mooneyhttps://review.opendev.org/c/openstack/nova/+/899753/11 for pyproject.toml supprot need a devstack patch so that can wait until D16:38
sean-k-mooneybut shall we proceed with the addtion of supprot for wsgi module loading16:38
bauzasI'll look at those patches indeed16:39
sean-k-mooneycool that was all i wanted to raise16:39
bauzasand I'll move those in the etherpad to the bugfixes section16:39
bauzasanything else before we close ?16:40
bauzaslooks not16:40
bauzasthanks all16:40
bauzas#endmeeting16:40
opendevmeetMeeting ended Tue Mar  5 16:40:34 2024 UTC.  Information about MeetBot at http://wiki.debian.org/MeetBot . (v 0.1.4)16:40
opendevmeetMinutes:        https://meetings.opendev.org/meetings/nova/2024/nova.2024-03-05-16.00.html16:40
opendevmeetMinutes (text): https://meetings.opendev.org/meetings/nova/2024/nova.2024-03-05-16.00.txt16:40
opendevmeetLog:            https://meetings.opendev.org/meetings/nova/2024/nova.2024-03-05-16.00.log.html16:40
elodillesthanks o/16:40
fwieselthanks16:40
auniyalsean-k-mooney, bauzas can you please have another look on these https://review.opendev.org/c/openstack/nova/+/89128916:41
sean-k-mooneyi was holding off on that because it was conflicting with the manila share and ephmeral encyption series16:42
sean-k-mooneyit has both object and rpc bumps16:43
sean-k-mooneyso we should wait until we reopen master for deveopment after RC116:43
sean-k-mooneythe previous patch however https://review.opendev.org/c/openstack/nova/+/877446 could be reviewd16:44
sean-k-mooneythats a valid backportable bug fix so ill take a look but ill defer to bauzas wither we want to incldued it for rc116:44
* bauzas clicks16:45
bauzassounds to me a bugfix16:45
bauzasso yeah looks a possible RC1 patch16:45
sean-k-mooneythis is an enhancemnt based on feed back form gorka and other using the volume refrsh commands16:46
sean-k-mooneyit adresses one of the issues they had when they actully tried to use it so its a nice addtion16:47
bauzasI don't see it in the etherpad16:47
bauzasso I'll add it16:47
auniyalsean-k-mooney, bauzas ack thanks16:48
auniyalbauzas, its there at the end, earlier I had added only the top one 891289, now added other one as well16:50
sean-k-mooneybauzas: stephenfin is +2 and i just reviewd it and my previous comments have been adressed so i approved https://review.opendev.org/c/openstack/nova/+/87744616:51
sean-k-mooneyhttps://review.opendev.org/c/openstack/nova/+/891289/10 however need more care. we could include the change in RC1 but this is not backporatble16:52
sean-k-mooneyso there is an agument to be made that we shoudl try and include it in the slurp release16:52
dansmithmelwitt: sean-k-mooney trying to deploy the EE set locally and I get this: nova.exception.KeyManagerError: Key manager error: cannot store arbitrary keys16:55
dansmithfrom n-cpu16:55
dansmithI didn't apply the barbican policy changes from the jobs, which I think are just for admin access during unshelve16:55
sean-k-mooneyyou dont need the policy chnage16:55
sean-k-mooneybut you do need to enable barbican in nova's config16:56
sean-k-mooney[key_manager]16:56
sean-k-mooneyfixed_key = bae3516cc1c0eb18b05440eba8012a4a880a2ee04d584a9c1579445e675b12defdc716ec16:56
sean-k-mooneybackend = barbican16:56
sean-k-mooneyyou do not need the fixed_key line16:56
dansmithahh, okay that must be it16:56
sean-k-mooneyjust backend = barbican16:57
dansmithI was asking melwitt what all I needed from those jobs, and I thought it was just the devstack plugin for barbican16:57
dansmiththat should probably go in either in the plugin or in lib/nova and not just be in the job def itself16:57
sean-k-mooney[[post-config|$NOVA_CONF]]16:57
sean-k-mooney[key_manager]16:57
sean-k-mooneybackend = barbican16:57
sean-k-mooneyi have that in my local.conf16:57
dansmithack16:57
sean-k-mooney[[post-config|$NOVA_CPU_CONF]] woudl be more correct but both will work in this case16:58
sean-k-mooneyhttps://termbin.com/i869 that my local.conf form my comptue althoug hi think i made some changes after the fact i.e. i checkout diffent nova banches and restarted the services17:00
dansmithI'm kinda wondering about the whole unshelve-by-admin thing and the required policy change17:01
sean-k-mooneyi have a lot of stuff set in that local.conf since i used the one form the ci job as a base17:01
sean-k-mooneywell admins proably should not be able to unshleve17:01
dansmiththat seems like the kind of thing that security people would discourage, so I wonder if we can just block that case and say "the user has to do it"17:01
dansmithright exactly17:01
sean-k-mooneythey cant as far as ia aware with cinder encypted volumes17:01
dansmith++17:01
sean-k-mooneyright os melaniy was just checkign that it could work but not suggesting that we should do that17:02
sean-k-mooneyi gave similar feedback before that i would prefer not to use custom policy for barbican in the final jobs17:02
dansmiththere's existing plumbing to make it work, no?17:02
sean-k-mooneyand just skip the admin tests that dont work17:02
sean-k-mooneymels code in nova would support the usecase if barbican's policy allowed it, if that is what you mean17:03
dansmithI haven't made it past the create patch, but IIRC there was stuff in there to support the admin case I thought17:03
sean-k-mooneyonly if you teak the policy17:03
dansmithright, but see what I'm saying is, maybe we should refuse it early at the api or conductor level and not fail only when we can't access the key17:04
sean-k-mooneyit will only work for an admin otherwise if they own the vm17:04
sean-k-mooneyya thats a possibelity i was doing most of my testing as admin demo17:04
sean-k-mooneyby the way did no know devstack generate a clouds.yaml with multipel diffent profiles/users17:05
dansmithI think, if we can tell from the api, a "409: Can't unshelve this encrypted instance" would be much nicer17:05
dansmithyes, that's how I get admin now, because that's the "proper way" AFAIK17:05
sean-k-mooneyi dont think we can detect that17:05
dansmithwe have the image properties in instance system meta right? if we haven't updated it with the encryption secret, we could/should right?17:06
sean-k-mooneyyes but that not enough17:06
sean-k-mooneywhat we actully need to know is if barbican is using custom policy or not17:07
sean-k-mooneyand we need to know that the admin that is making the request is doing so with a token that does not have access17:07
dansmithwe can grab the secret uuid and see if we can show it, or we can say "you don't own this and its encrypted so I'm not even going to try"17:07
sean-k-mooneyso really we would have to try and get the secret in the api17:07
sean-k-mooneyand bail early if that fails17:07
sean-k-mooneyya17:07
sean-k-mooneyso if your fine with doing a secret show or simialr in the api17:08
sean-k-mooneythen we can rejct it early17:08
dansmithwhat I'm saying is, we should do that early and not fail deep in nova-compute once we have downloaded the image and discover we can't see the key17:08
dansmithit would be nice to do that from the api I think, and is similar to what we do with neutron ports and things, so I don't think it's a big deal17:08
sean-k-mooneyyep thats fair17:08
dansmithespecially since unshelve is a very infrequent operation compared to something like boot17:09
sean-k-mooneyya its simialr to the decorators we have for cybrog ectra to check api mivroversion or neutron extentions17:09
sean-k-mooneyi dont think there was a check like that in the relevent patch but i dont recall so ya proably good to capture in a comment17:10
dansmithso now that I have that in my config, I see that devstack didn't actually deploy barbican :)17:11
dansmithtypo, I guess17:14
sean-k-mooneyso on the comptue you do not need the barbica plugin bu ton the contoler you do17:16
sean-k-mooneyi can past my contoler local.conf too for reference17:17
sean-k-mooneyhttps://termbin.com/6iyt17:17
sean-k-mooneyso all i have is 17:18
sean-k-mooneyenable_service barbican17:18
sean-k-mooneyand17:18
sean-k-mooneyLIBS_FROM_GIT=barbican,devstack,glance,keystone,neutron,nova,placement,requirements,tempest17:18
sean-k-mooneyenable_plugin barbican https://opendev.org/openstack/barbican17:18
sean-k-mooney+ the keymanager thing i mentioned eariler17:18
sean-k-mooneyoh17:19
sean-k-mooneyi think im useing melwitt's devtack patch17:19
dansmithyeah I typo'd the enable_service17:19
sean-k-mooneyoh that just creats flavors https://review.opendev.org/c/openstack/devstack/+/864160/10/lib/nova17:19
sean-k-mooneyso you dont need that17:20
opendevreviewPavlo Shchelokovskyy proposed openstack/nova master: Add debug logging to can_fit_pagesize  https://review.opendev.org/c/openstack/nova/+/89994217:47
opendevreviewOpenStack Release Bot proposed openstack/nova master: reno: Update master for unmaintained/victoria  https://review.opendev.org/c/openstack/nova/+/91127018:47
opendevreviewOpenStack Release Bot proposed openstack/os-vif master: reno: Update master for unmaintained/victoria  https://review.opendev.org/c/openstack/os-vif/+/91127218:48
opendevreviewOpenStack Release Bot proposed openstack/osc-placement master: reno: Update master for unmaintained/victoria  https://review.opendev.org/c/openstack/osc-placement/+/91127418:48
opendevreviewOpenStack Release Bot proposed openstack/placement master: reno: Update master for unmaintained/victoria  https://review.opendev.org/c/openstack/placement/+/91127618:48
opendevreviewOpenStack Release Bot proposed openstack/python-novaclient master: reno: Update master for unmaintained/victoria  https://review.opendev.org/c/openstack/python-novaclient/+/91127818:48
opendevreviewOpenStack Release Bot proposed openstack/nova master: reno: Update master for unmaintained/wallaby  https://review.opendev.org/c/openstack/nova/+/91128018:49
opendevreviewOpenStack Release Bot proposed openstack/os-vif master: reno: Update master for unmaintained/wallaby  https://review.opendev.org/c/openstack/os-vif/+/91128218:50
opendevreviewOpenStack Release Bot proposed openstack/osc-placement master: reno: Update master for unmaintained/wallaby  https://review.opendev.org/c/openstack/osc-placement/+/91128418:50
opendevreviewOpenStack Release Bot proposed openstack/placement master: reno: Update master for unmaintained/wallaby  https://review.opendev.org/c/openstack/placement/+/91128618:50
opendevreviewOpenStack Release Bot proposed openstack/python-novaclient master: reno: Update master for unmaintained/wallaby  https://review.opendev.org/c/openstack/python-novaclient/+/91128818:50
opendevreviewOpenStack Release Bot proposed openstack/nova master: reno: Update master for unmaintained/xena  https://review.opendev.org/c/openstack/nova/+/91129018:51
opendevreviewOpenStack Release Bot proposed openstack/os-vif master: reno: Update master for unmaintained/xena  https://review.opendev.org/c/openstack/os-vif/+/91129218:51
opendevreviewOpenStack Release Bot proposed openstack/osc-placement master: reno: Update master for unmaintained/xena  https://review.opendev.org/c/openstack/osc-placement/+/91129418:51
opendevreviewOpenStack Release Bot proposed openstack/placement master: reno: Update master for unmaintained/xena  https://review.opendev.org/c/openstack/placement/+/91129618:52
opendevreviewOpenStack Release Bot proposed openstack/python-novaclient master: reno: Update master for unmaintained/xena  https://review.opendev.org/c/openstack/python-novaclient/+/91129818:52
melwittdansmith, sean-k-mooney: are things working ok by now or are you still having issues?19:27
sean-k-mooneyi havent update my devstack in a week or two but it was workign fine for me19:27
sean-k-mooneymelwitt: i think dansmith just had a typo so i assume its working ok now or htey havent gotten aroudn to restacking19:28
melwittthanks sean-k-mooney 19:28
melwittalso, regarding the policy changes in the DNM tempest jobs patch, I did that to cover as many tests as possible, so that _if_ someone had their policy set that way, to verify whether it works19:30
stblatzheimsean-k-mooney: Can you give a W vote for https://review.opendev.org/c/openstack/nova/+/910616 ? It's stuck before gate tests :)19:30
melwittit's not a statement about it being the right thing to do19:30
sean-k-mooneystblatzheim: it need another stabel core to reveiw19:31
stblatzheimWho could I ping for this? :)19:31
sean-k-mooneymelwitt: would you have 5 mins for ^19:31
dansmithmelwitt: yeah I had a typo, not sure if it finished re-stacking or not19:31
melwittsean-k-mooney: sure, will look19:32
melwittdansmith: ack19:32
dansmithsean-k-mooney: I looked at that yesterday and wanted to hear your take on your change of opinion19:33
dansmithI read the bug and see neutron people saying it was wrong and implying the patch is correct,19:33
dansmithbut I didn't see any indication of "and yes this should be backported" since it presumably depends on what version(s) of neutron are in use in an older release19:34
sean-k-mooneyso the orginal patch tried to fix it by lookging for additon aports with a diffent device owner string19:34
sean-k-mooneyand i did not like that approch because it was wack a mole for every backend19:35
sean-k-mooneythe current patch checks if the subnet has dhcp enabled19:35
dansmithoh I didn't see that it was a different approach earlier19:35
sean-k-mooneyand then use the enable_dhcp option to tell cloud init to use dhcp19:35
opendevreviewMerged openstack/nova master: Disconnecting volume from the compute host  https://review.opendev.org/c/openstack/nova/+/87744619:36
dansmithsean-k-mooney: yeah but it changes what it's looking at from neutron, but the assertion is the thing it's looking for (the dhcp flag I guess) is nowhere near new enough to be a problem for a backport?19:37
sean-k-mooneydansmith: os thats why i changed my mind. im fine with looking at the dhcp_enabled field on the subnet to determin if we configure cloud init for static ips or dhcp19:37
sean-k-mooneydansmith: let me read the bug i didnt see them respond19:38
sean-k-mooneyok so quickly readin gthey change this bevhiro in vitoria19:39
sean-k-mooneyhttps://review.opendev.org/c/openstack/neutron/+/73236419:39
stblatzheimenable_dhcp flag is there at least for 5 years (there was a try to fix this but not very well)19:39
sean-k-mooneyso that change broke the nova intengration19:39
sean-k-mooneybut i belive dhcp_enabled is much much older then that19:40
dansmithsean-k-mooney: the patch description sort of sounds like this fixes it for OVN instead of OVS, so it just kinda seemed like this might be a "make it work for my situation" sort of thing19:40
sean-k-mooneyits part of the core subnet resouce https://github.com/openstack/neutron-lib/blob/master/neutron_lib/api/definitions/subnet.py#L10919:40
stblatzheimhttps://github.com/openstack/nova/commit/c7f572d65b57e034c1391ed49d84f6e5f1d672ad19:41
dansmithsean-k-mooney: cool, fair enough, just wanted to confirm.. I saw you were "hell no" and then suddenly +2 so just wanted to make sure I understood :)19:41
sean-k-mooneydansmith: the pach makes use not use "does the  a subnet has a dhcp port"  be how we determin if the subnet has dhcp enabled19:41
sean-k-mooneyinstead we directly read the enable_dhcp field19:41
sean-k-mooneyso we have test coverage for ml2/ovs in the ci as well19:42
sean-k-mooneywith the ovs_hybrid_plug job19:42
sean-k-mooneyfrom what i can tell enable_dhcp has been a vaild field since the creation of the api defintion in neutron-lib in 2017 and if im being honestly i think this was in quantum19:44
sean-k-mooneyso ya i think we are good19:44
sean-k-mooneydansmith: thanks for follwoing up your right that i orgignally marked this as invalid19:44
sean-k-mooneybecause i do think neutron broke there api contract when they change the poer owner but it was reasonable for use to fix in nova19:45
dansmithyeah exactly :)19:45
dansmithsean-k-mooney: stblatzheim: got it19:49
stblatzheim:)19:50
melwittdansmith: the only other thing you will need to do is make sure that whatever user you want to work with encrypted local disks has the "creator" role assigned to them. the barbican devstack plugin adds it to some users it creates https://github.com/openstack/barbican/blob/master/devstack/lib/barbican#L278 but if you use a different user you will need to add the role to that user20:08
dansmithoh interesting okay20:13
melwittthe "creator" role is what barbican uses to allow creation of secrets20:17
dansmithyeah I gathered :)20:17
dansmithquite the intuitive name ;P20:17
opendevreviewmelanie witt proposed openstack/nova master: docs: Remove warning about quota driver default change  https://review.opendev.org/c/openstack/nova/+/91137420:23
opendevreviewMerged openstack/nova stable/2023.2: Fix nova-metadata-api for ovn dhcp native networks  https://review.opendev.org/c/openstack/nova/+/91061622:29
opendevreviewSteven Blatzheim proposed openstack/nova stable/2023.1: Fix nova-metadata-api for ovn dhcp native networks  https://review.opendev.org/c/openstack/nova/+/91107022:54
« Monday, 2024-03-04 Index Wednesday, 2024-03-06 »

Generated by irclog2html.py 2.17.3 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!