Wednesday, 2023-01-18

« Tuesday, 2023-01-17 Index Thursday, 2023-01-19 »
opendevreviewGhanshyam proposed openstack/tempest master: Introduce @serial test execution decorator  https://review.opendev.org/c/openstack/tempest/+/82173202:45
gmannkopecmartin: ^^ looks good to me now, please check02:46
*** yadnesh|away is now known as yadnesh04:43
*** jpena|off is now known as jpena08:21
*** yadnesh is now known as yadnesh|afk08:26
*** soniya29|rover is now known as soniya29|rover|lunch08:55
*** soniya29|rover|lunch is now known as soniya29|rover10:06
opendevreviewSylvain Bauza proposed openstack/tempest master: DNM: Test renaming OOMkilled test to be called earlier  https://review.opendev.org/c/openstack/tempest/+/87091310:19
opendevreviewBas de Bruijne proposed openstack/tempest master: tempest cleanup - don't initialize admin id's  https://review.opendev.org/c/openstack/tempest/+/87093012:31
*** gthiemon1e is now known as gthiemonge13:09
*** soniya29|rover is now known as soniya29|rover|brb13:20
opendevreviewBalazs Gibizer proposed openstack/tempest master: DNM: Test renaming OOM killed test to be called later  https://review.opendev.org/c/openstack/tempest/+/87094713:26
fricklerianw: do you plan to move devstack to f37? or should we rather deprecate fedora support due to lack of contributors keeping it up to date?13:28
dansmithgmann: so I got a fresh jammy,15:52
dansmithgot farther with that, had a config problem,15:53
dansmithunstack, restack, and I'm back at the version install problem!15:53
dansmithsure seems like there's something up with the keystone deps15:53
gmannhumm15:53
gmanndansmith: did you try clean.sh ? not 100% sure if that will help to cleanup deps15:54
dansmithyes always unstack and clean15:54
opendevreviewSylvain Bauza proposed openstack/tempest master: DNM: Test renaming OOMkilled test to be called earlier  https://review.opendev.org/c/openstack/tempest/+/87091315:55
opendevreviewBalazs Gibizer proposed openstack/tempest master: Skip test_attach_scsi_disk_with_config_drive  https://review.opendev.org/c/openstack/tempest/+/87097416:45
johnsomgmann Question for you related to grenade and SRBAC enforce new defaults. Nova just enabled that (and scoped tokens which I don't understand why), which now breaks all of the legacy accounts because they don't have the "member" role. So, on upgrade all non-admin accounts are blocked access to nova. How is upgrade supposed to work with  this? Does every installation have to modify every account's roles?16:47
dansmithgmann: okay, so the ceph OOM issue is because one test is downloading the entire image that we use into memory, so it can re-upload it16:50
dansmithgmann: on the ceph job, that's 1G, and of course anyone using tempest in a real cloud for verification is likely using more than a 16MB cirros image16:51
gmannjohnsom: accessing API via  non-'member' role and consider that token as owner of project is one of the bug we fixed in the new RBAC right16:51
gmannjohnsom: in grenade or devstack if we are doing the same we should add 'member' (or 'reader') role in the access creds 16:52
johnsomThe nova rule: https://github.com/openstack/nova/blob/master/nova/policies/base.py#L9416:52
johnsomThe grenade failure (after upgrade): https://zuul.opendev.org/t/openstack/build/4a98acf0e7a24967a2fa607547c0ecf0/log/job-output.txt#2200516:52
johnsomgmann Ok, so every deployment will have to modify every user role to include member/reader on or before upgrade to Antelope. Correct?16:53
gmannjohnsom: that is expectation but I am thinking what else we can do other than mentioning it in release notes. something in  upgrade-checks tool?16:54
johnsomYeah, I think upgrade-checks is 100% a good idea16:54
gmannjohnsom: because the bug was role 'foo' behave as owner of project and when we have 'reader' role it has to be fixed otherwise we cannot enforce 'reader' role capability 16:54
gmannjohnsom: sure, let me check on that. and will update you. 16:55
gmanndansmith: ohk, which test. I thought test create/download the smaller image not the actual or 1 G image16:56
dansmithgmann: https://github.com/openstack/tempest/blob/6fa213cc0fcab744b46109e5f07cb58b0df4a314/tempest/api/compute/admin/test_volume.py#L52-L6316:56
johnsomYeah, I get it. Thanks for the info. I will propose fixes for tempest-plugin in Octavia to deal with the grenade issue. Easy enough16:57
dansmithgmann: so I was looking into making our image download client able to do the chunked download like the upload,16:57
dansmithbut there's a loooot of plumbing to the actual http client.. I didn't realize this was all so custom16:57
gmannjohnsom: thanks16:57
dansmithgmann: so we're going to skip that test for now (see gibi's patch above)16:57
dansmithgmann: I figured the right thing is to make the download chunk-able, but please confirm before I go try to do that :)16:58
dansmithor if there's some way I'm missing16:58
gmanndansmith: +1 I think that is better. 16:59
gmanndansmith: ok for skipping it for now, patch you mean this one? https://review.opendev.org/c/openstack/tempest/+/87097416:59
dansmithgmann: yeah17:00
dansmithgmann: okay so we have chunkable upload but just confirming, no chunkable download that you know of? I'm thinking this needs to be some sort of "just give me the raw response so I can chunk it" flag, if you think that's okay17:00
gmanndansmith: yeah, not aware of  chunkable download. I think doing it based on flag seems better and we can do if test needs to do it17:02
dansmithgmann: okay, lemme see what I can work out17:03
dansmithgmann: btw, my latest stack failed due to the same keystone "no compute registered" thing locally17:03
dansmithso that's clearly a problem not just related to the gate17:03
gmanndansmith: thanks17:04
gmanndansmith: not sure why endpoint issue happening. and it is at the start itself right? not just compute endpoint missing17:07
*** yadnesh|afk is now known as yadnesh|away17:13
dansmithgmann: I haven't debugged it but compute is running and keystone shows no errors in the log17:26
dansmithgmann: the gate jobs show some amount of 404 talking to keystone I think17:27
dansmithI guess if I hit it again I'll try to dig in17:27
gmannack17:28
dansmithand just like that, my stack is about to fail here17:28
dansmithguh17:28
*** gmann is now known as gmann_afk17:29
dansmithokay, my local reason is different than the one slaweq posted17:35
dansmithhis is because the second compute worker can't access rabbit:17:36
dansmithJan 13 15:16:45.704745 np0032723689 nova-compute[56832]: ERROR oslo.messaging._drivers.impl_rabbit [None req-655fe0a4-5254-4f7e-aa3b-4e8fe744637b None None] Connection failed: [Errno 111] ECONNREFUSED (retrying in 15.0 seconds): ConnectionRefusedError: [Errno 111] ECONNREFUSED17:36
dansmithhowever, mine is because placement can't start (which means compute can't start) and I can't believe it, but it's related to this weird keystone version problem:17:36
dansmithJan 18 17:25:19 jammy devstack@placement-api.service[108112]: ERROR placement     raise InvalidVersion(f"Invalid version: '{version}'")17:36
dansmiththis is on a completely clean jammy17:36
dansmithit's where keystone goes to generate the user-agent, looks up package versions of distro-info, and chokes on an invalid version17:37
dansmiththis package:17:37
dansmithii  python3-distro-info                   1.1build1                               all          information about distributions' releases (Python 3 module)17:37
*** gmann_afk is now known as gmann17:41
*** jpena is now known as jpena|off17:42
dansmithgmann: full trace: https://paste.opendev.org/show/b8rr5zVkr3D2uSXZQDpo/17:43
dansmithbasically the same I was seeing while trying to install keystone in devstack before I cleaned my system17:44
dansmithlogstash says we're not hitting this in the gate anywhere, but I don't know why17:44
clarkbwe use a fairly minimal image in nodepool. It may not include python3-distro-info. The devstack jobs log a dpkg -l which should confirm17:45
dansmithit's in ubuntu-minimal17:45
clarkbubuntu-minimal as defined by?17:45
clarkbI mean its easy to check /me looks17:46
dansmiththat's a dpkg install group17:46
dansmithso I figured we were probably at least at that17:46
clarkbhttps://zuul.opendev.org/t/openstack/build/cc2fc794eef7491fbfc2b36df1684b31/log/controller/logs/dpkg-l.txt its not in there17:47
dansmithokay, lemme try to purge it17:47
dansmithI would imagine anyone running in production will have that installed so...17:47
dansmithwith that gone, it now chokes on python3-debian17:48
clarkbhow is it breaking?17:48
clarkbpip saying it can't uninstall the package or something?17:48
dansmithbecause pkg_resources now enforces python's definition of a valid version number17:48
dansmithclarkb: placement is crashing at startup when it loads the keystoneclient,17:49
dansmithbut earlier I saw it failing to install keystone from pip/source yeah17:49
dansmithclarkb: see my pastebin above?17:49
clarkboh neat, thats basically going to explode against all the distro python versions due to how distros version things17:49
dansmithokay, with all that gone I can get it started17:49
dansmithclarkb: right it explodes everything17:49
clarkbanother reason to move devstack into a venv, but seems we can never get critical mass to push that over the hump17:50
dansmiththis is the first time I'm seeing it explode in openstack land, but it's been exploding other stuff17:50
dansmithI understand why they want consistent version numbers for dep checking, for non-dep things, they hard explode things, which is really uncool17:51
dansmithso non-library application type things, it's a real effing pain17:51
fricklerI see this deprecation warning on my local jammy https://paste.opendev.org/show/bvOoK1yKsbVCqGnGncar/17:55
fricklerso I wonder how you got a newer pkg_resources version17:55
dansmithfrickler: yeah that's what you get before you upgrade past a certain version of some tools I think17:55
dansmithfrickler: I dunno, clean jammy, fully upgrade'd17:55
knikolla[m]living on the edge17:55
dansmithI fully upgraded to try to fix this problem, fwiw17:56
dansmithso I think we must be pulling in some other stuff as a result17:56
fricklerthat's what I have here, too. from the warnings I see, that looks like an ubuntu packaging issue, though. might want to check with ubuntu python team17:56
dansmithperhaps I started with a more conventional jammy install than you?17:56
fricklerI started from impish a year ago or so17:56
dansmithbecause if you have a very barebones one, you won't have that package (apparently)17:57
fricklerand it's a full desktop install, so I have that package, hence the warning17:57
dansmithit's not a packaging problem, it's a packaging convention that python libraries aren't going to tolerate anymore,17:57
dansmithit's us loading the distro-info package, presumably so we can put "ubuntu/jammy" in the user-agent string, but pkg_resources won't tolerate ubuntu's own version number of the package17:58
dansmithfrickler: ack, I didn't see the package name in there, but I see17:58
*** gmann is now known as gmann_afk18:06
dansmithnow I'm getting this in devstack setup:18:43
dansmithhttps://paste.opendev.org/show/bRQHzgFYiohYMcXQRRrV/18:43
dansmithunable to create tempest's venv18:43
dansmithI think maybe I'll just skip 202318:43
dansmithokay maybe tox4 issues18:47
*** gmann_afk is now known as gmann18:56
ianwfrickler: yeah i would like to update to f37, hopefully "soon"20:58
opendevreviewDan Smith proposed openstack/tempest master: TURBOWIP: Chunked download  https://review.opendev.org/c/openstack/tempest/+/87100021:06
opendevreviewGhanshyam proposed openstack/tempest master: Skip test_attach_scsi_disk_with_config_drive  https://review.opendev.org/c/openstack/tempest/+/87097421:08
*** dmellado_ is now known as dmellado22:31
« Tuesday, 2023-01-17 Index Thursday, 2023-01-19 »

Generated by irclog2html.py 2.17.3 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!