Tuesday, 2026-06-02

« Monday, 2026-06-01 Index Wednesday, 2026-06-03 »
opendevreviewMerged openstack/nova master: Disable interactive prompt on LVM image creation  https://review.opendev.org/c/openstack/nova/+/99057604:30
opendevreviewMerged openstack/nova master: Use tempest_concurrency=1 for nova-vtpm job  https://review.opendev.org/c/openstack/nova/+/98486404:30
opendevreviewMerged openstack/nova stable/2025.2: Fix resize to unpermitted flavors  https://review.opendev.org/c/openstack/nova/+/98815305:14
*** ralonsoh_ is now known as ralonsoh07:05
sean-k-mooneyhi folks are we ok with running my cirros experiemtn for the next 2 weeks https://review.opendev.org/c/openstack/nova/+/990728 i have also created the revert https://review.opendev.org/c/openstack/nova/+/990729/1 im planning to update my pr https://github.com/cirros-dev/cirros/pull/132 to creat a seperate qcow image that is pre populated isntead of updating the existing one as11:35
sean-k-mooneysugested by frickley but before we commit to that and look toward a release i want to actully confirm this fixes the issues11:35
sean-k-mooneyin terms of otehr reviews i woudl really love to close out https://review.opendev.org/c/openstack/nova/+/975872 and https://review.opendev.org/c/openstack/nova/+/984540 today if folks have time to reivew11:37
sean-k-mooneygibi: stephenfin if time permits can ye add those to your queue11:37
gibisean-k-mooney: I trade https://review.opendev.org/c/openstack/nova/+/984540 for https://review.opendev.org/c/openstack/nova/+/98628212:02
gibi:)12:02
sean-k-mooneysure, oh the eventlet poison ya i can look at that now12:03
sean-k-mooneythis still works the way we dicussed right your faking an import expection in the poison so that oslo continues to work but new imporat that dont explcitly guard against that fail12:04
gibiyepp it still raises ImportError12:08
sean-k-mooneyi would generally prefer if we didnt have get_eventlet() as that is allowing direct usage outside of the utils file12:12
sean-k-mooneybut that prefence is not enought to hold up the patch12:12
sean-k-mooneycan we consier if we can prevent leakign that as part of adressign the todo's you have in line12:12
sean-k-mooneygibi: commented and +2w the overall change looks good to me jsut aksed that we consider the feedback inlien as an addtion todo for the followups12:19
opendevreviewLajos Katona proposed openstack/nova master: Use SDK for Neutron security-groups  https://review.opendev.org/c/openstack/nova/+/98114113:34
*** sambork_ is now known as sambork13:47
opendevreviewAnton Iacobaeus proposed openstack/nova-specs master: Intel TDX support in libvirt driver  https://review.opendev.org/c/openstack/nova-specs/+/97960814:02
stephenfinsean-k-mooney: done14:31
stephenfin(the cirros change: gibi has +W'd the other two)14:32
sean-k-mooneystephenfin: thanks14:49
melwittgibi: thanks for hitting the unified limits fix15:06
sean-k-mooneyfrom a purely upsteam point of view is that somethign we would want to backport?15:11
sean-k-mooneyor master only15:11
sean-k-mooneymakeing unified limits work for cybrog/pci-passhtough/neutiron qos is both a bug and a feature15:12
sean-k-mooneyso while im happy that tis a bug that that was overlooked on master15:12
sean-k-mooneyim not sure it qualifies for the stabel policy as a backportable bug15:12
sean-k-mooneyso i was going to not backport premetivly and wait for someoen to ask for it15:13
sean-k-mooneyi do know there was at least some operator intest in this so im fine with either approch15:14
melwittyeah I guess that's true it was a known issue but also I think important for cloud operators, so I would lean toward being reasonable to backport upstream. that's just me though15:21
sean-k-mooneyya im not sure which operaors woudl find more suprising the knwo broken behvior ro that it now works if we backprot it. if elodilles  has any opions on the mater i would be happy to hear them but i guess we can wait for it to actully land and then dicuss next steps15:25
sean-k-mooneyone of those is i am planing to extend the cyborg tempest plugin to have some quota tests eventually.15:26
sean-k-mooneybut before i do that i need to intoduce the idea of serial tests to that plugin and build out some geneic testing infra in it15:27
opendevreviewdalekseev proposed openstack/nova master: Skip ironic instances in machine type check  https://review.opendev.org/c/openstack/nova/+/99113715:30
elodillessean-k-mooney: sorry, i don't have the context o:) though as you say, if something is more like a feature, then it should not be backported upstream. but if it can be considered as a bug fix and the patch is not that invasive and the stable cores agree, then the possibility is there to backport. o:)15:37
sean-k-mooneyelodilles: the tl;dr is our unified limits check didnt consider resouces form pci_passhtough, cybrog or neutron when it was computing the resouce requests15:38
sean-k-mooneyelodilles: so if you condiufred the limits they were not being enfoced15:38
sean-k-mooneyelodilles: i fixed that but it not clear if that is backportable or not15:38
sean-k-mooneythese resouce shoudl have been condiserd in the past but its been that way for quite a while15:39
sean-k-mooneywhat this means in partice is the pci_in_placement spec assuemed/asserted that unified limite woudl provide quota for pci passhtough device when using pci in placment15:40
sean-k-mooneyin practice it never has15:40
sean-k-mooneyhttps://specs.openstack.org/openstack/nova-specs/specs/zed/approved/pci-device-tracking-in-placement.html#dependencies """The unified limits feature exists in an opt-in, experimental state and will allow defining limits for the new PCI resources if enabled.""" but we eiarl defiend makign tha twork out of scope of this spec15:41
sean-k-mooney"""Device quotas would require unified limits to be implemented. Implementing quotas is out of the scope of this spec beyond enabling the use case by modeling PCI devices in Placement."""15:42
elodilleshmmm. okay, this really sounds something on the border whether it is OK to backport or not o:)15:43
sean-k-mooneyelodilles: so its just one of those things we inteneded it to work but just neer got around to doing it till now15:44
sean-k-mooneyya so that why i was saying i wont premetivly backport15:44
sean-k-mooneyand just wait until someone asks and we can deciend then15:44
elodillesso then it depends on the patch and whether the team agree to backport15:44
sean-k-mooneyya this is very much a case of "if operators ask for it and the team agrees im ok to do it" but i dont feel strongly one way or anohter15:46
elodillessean-k-mooney: yepp, i have the same feeling15:48
sean-k-mooneyelodilles: https://review.opendev.org/c/openstack/nova/+/975872 is the change we were dicussing by the way15:49
sean-k-mooneyits still in the gate behind a bunch of openstack client changes15:50
sean-k-mooneyso it might be a while15:50
sean-k-mooney*openstacksdk15:50
melwittyeah, that's a fair point bc backporting it could cause "sudden" unexpected quota enforcement if we're thinking of a stable environment so yeah... maybe that might be too much15:51
sean-k-mooneyyep15:51
sean-k-mooneywith my downstream hat on i was also going to advocate for not backporting this for a similar reason15:52
sean-k-mooneyobviously if a customer screams that they must have this we could consider it but i woudl prefer not to15:53
elodillessean-k-mooney: but it somewhat feels then to me that is not appropriate for upstream backport, rather should be done downstream :/ as melwitt says, we change behavior :/ (even if most of the users were benefit from it...)15:58
elodillesanyway, this can be discussed and evaluated within the team, how safe the team feels regarding having no regression in case of backport, etc.16:00
sean-k-mooneyelodilles: ya so im maninly jsut askign is i twork my time and everyone else for me to create teh backports and plan to do it or just punt it for now16:01
sean-k-mooneyi think we have setteled on master only for this one16:01
elodilles(and maybe if we do backport, even then it should not happen immediately when the fix lands on master... we should give time this to settle and prove that things work fine)16:02
elodillessean-k-mooney: so i'd say let's focus now on fixing it on master o:) but it just my opinion o:)16:03
melwittyeah I'd have to double check but it _might_ be ok bc of the change we made to make only the essential resources (vcpu, ram, disk) required for enforcement and the rest treated as unlimited16:03
melwitt(i.e. the required for enforcement resource list is configurable)16:04
melwittyeah I think we all agree for now let it bake on master and backport is not an immediate thought16:05
elodillesmelwitt: +116:08
melwittCI has seemed so unhappy lately 😩 16:17
opendevreviewTakashi Kajinami proposed openstack/nova-specs master: libvirt: AMD SEV-SNP support  https://review.opendev.org/c/openstack/nova-specs/+/98337616:38
opendevreviewMerged openstack/nova master: Fix unified limits to include all resource types  https://review.opendev.org/c/openstack/nova/+/97587218:35
opendevreviewMerged openstack/nova master: Poison eventlet import in native threading mode  https://review.opendev.org/c/openstack/nova/+/98628218:36
opendevreviewMerged openstack/nova stable/2026.1: Add reproducer test for bug 2105896  https://review.opendev.org/c/openstack/nova/+/98951918:36
opendevreviewMerged openstack/nova stable/2026.1: Fix error when multiple security group in a project with same name  https://review.opendev.org/c/openstack/nova/+/98952018:43
opendevreviewMerged openstack/nova master: Add agentic coding guidance and docs  https://review.opendev.org/c/openstack/nova/+/98454018:44
fricklersean-k-mooney: looks like you have uncovered a new failure mode on https://zuul.opendev.org/t/openstack/build/79d870c283264c169171f3a7a332ba3c already (ssh auth fail), maybe that's the next thing that can happen when the first boot is interrupted and the cloud-init process doesn't properly finish?19:21
melwittI think I have seen that failure mode before but couldn't figure out whether or how it doesn't have the right authorized_keys19:25
melwittseems like it's there, unless that doesn't mean what I thought it means19:28
melwitt=== sshd host keys ===19:28
melwitt-----BEGIN SSH HOST KEY KEYS-----19:28
melwittssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCk9qvrsW4suQOSW7BD+7S6v5Fakm6C6e6bxhoWpAi5nH7LRsFbzYj7M+bSvE0mQ64/qwoZaT6lmXFexmdfIkUSevz18TWecvg45bi4nx+sCEK25jtBXaqdGo1Bz7TU44/M4Bsj8rE1yiSHasoZ/qMrEJ4maMFZkSaub0CvqIe1NaRXRR1T/T9JLmA4IXGLN6gOKkw8NXfIRHbVwnQuNpcvCjifJlIKxWJXQq+Ttwq94apHZ0vqyg1/KMygHz6DUCU7kdRGv3/51ROKvJuwmLStjkwB8SyfcvJzQcjwkazX6DYWY7C/VEteP4ng2RfGouIOJRpjQxscsNdTG4aWgs0n root@tempest-serveractionstestothera-server-19041745619:28
melwittecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBCOxWzqADqCihEY+t+o3XDe0hEIagEoU8YZYIjgdXuuJhvdz3NMiyaWJ4iYnFlL1ewByK/CzXuSJCQLzLOQJjtM= root@tempest-serveractionstestothera-server-19041745619:28
melwitt-----END SSH HOST KEY KEYS-----19:28
sean-k-mooneyfrickler: that migh tnae sesne if we dont inject ths ssh key or ornly partly confirue dhcp or similar19:30
fricklerthat's host key, not authorized_keys. there's "Printing cirros user authorized keys" before with no actual key shown, but I'll need to compare against a log for a successful boot19:30
sean-k-mooneyfrickler: i also found one of the ohter kernel panics the other day but its a very very rare one19:31
melwittoh. mah bad19:31
sean-k-mooneyhttps://storage.gra.cloud.ovh.net/v1/AUTH_dcaab5e32b234d56b626f72581e3644c/zuul_opendev_logs_17d/openstack/17d6defdcff648cbbe950cf0137c7906/testr_results.html19:32
frickler"cirros-apply-local already run per instance" might be a hint supporting my theory19:32
sean-k-mooneyhttps://paste.opendev.org/show/bd4gViIvUmb0CjIUcvh4/19:32
sean-k-mooneyfrickler: right so if we got far enough to touch the file sayign we are runing or have run our first init script19:32
sean-k-mooneybut we have not sync'd the file system or completeded it19:33
sean-k-mooneyit possibel the dhcp or other config wont survive the reboot19:33
sean-k-mooneyfrickler: so the patch to use my custom image is currently in the gate queu19:34
sean-k-mooneyso we shoudl start geting data soon on if prepoulating the root fs helps19:34
sean-k-mooneyoh no19:35
sean-k-mooneyit failed19:35
fricklersean-k-mooney: no, the failure above occured in gate, so you'd need to recheck19:35
sean-k-mooneyah i tought htis was form a diffent patch19:35
sean-k-mooneyok os ya that either the fact that that sometime just fails anyway19:36
sean-k-mooneyor that reason athat sometimes fails is also interupted first boot19:36
sean-k-mooneyits kind of undortuet we dont caure the console before and after the reboot19:37
sean-k-mooney/dev/root resized successfully [took 0.34s]19:40
sean-k-mooneyPrinting cirros user authorized keys19:40
sean-k-mooney=== system information ===19:40
sean-k-mooneyso it does not appare to have pritned any authorised keys19:40
fricklerwell ... we might be able to save the console data before we issue the resize/reboot and only dump it in case of a failure?19:40
sean-k-mooneyand since we are not passign a fallback password19:40
sean-k-mooneytempest.lib.exceptions.SSHTimeout: Connection to the 172.24.5.241 via SSH timed out.19:41
sean-k-mooneyUser: cirros, Password: None19:41
sean-k-mooneyits failing19:41
frickleranyway, I'm out for today, will check back tomorrow19:41
sean-k-mooneyfrickler: i dont see why we could19:41
sean-k-mooneynot 19:41
sean-k-mooneyfrickler: no worres ill recheck this for now and ill try and take a look at the cirros-init path so wee where we are markign the first boot as done vs wehre we have actuly sotre the autorisze dkeys ectra19:42
sean-k-mooneywe could mask the issue by providing the defautl cirros users pass word in the tempest config but i woudl prefer not too if we can avoid that19:43
opendevreviewDan Smith proposed openstack/nova master: Avoid reading 4GiB of reason text from RFB  https://review.opendev.org/c/openstack/nova/+/99122020:43
opendevreviewDan Smith proposed openstack/nova master: Avoid reading 4GiB of reason text from RFB  https://review.opendev.org/c/openstack/nova/+/99122020:50
« Monday, 2026-06-01 Index Wednesday, 2026-06-03 »

Generated by irclog2html.py 4.1.0 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!