Thursday, 2011-09-29

« Wednesday, 2011-09-28 Index Friday, 2011-09-30 »
spikebikeI wonder if ubuntu natty + diablo is wise.00:00
spikebikemaybe 10.04 lts would be better?00:00
WormManI'm on Natty, 10.04 has some performance regressions with KVM00:02
WormManwell, ok, not regressions00:02
WormManit just sucks :)00:02
*** llang629_ has left #openstack00:02
WormMan(network was especially poor)00:02
WormManso we're having to start with 11.04, with a plan to move to the next LTS00:03
WormManI didn't feel like fighting to get a better performing kernel for KVM shoehorned into 10.0400:03
*** rods has joined #openstack00:07
*** ldlework has joined #openstack00:07
*** ldlework has quit IRC00:08
spikebikeWormMan: but you haven't tried diablo?00:12
WormMannope, still on D4, so about a month old00:13
spikebikeyeah figure since I don't have it working I'll try diablo + 11.0400:13
*** miclorb_ has joined #openstack00:25
*** miclorb_ has quit IRC00:27
*** miclorb_ has joined #openstack00:28
*** miclorb_ has quit IRC00:31
*** miclorb_ has joined #openstack00:32
rmkDoes nova-network automatically add routes between networks, if one project consumes many networks?00:35
*** nati2 has joined #openstack00:37
*** lorin1 has joined #openstack00:48
*** straylyon has quit IRC00:52
*** inbroker has joined #openstack00:52
inbrokerhey all....a newbie looking for an advice regarding if openstack can help me in my project....anyone willing to help?00:53
*** nati2_ has joined #openstack00:53
*** msivanes has quit IRC00:54
*** nati2 has quit IRC00:54
*** MarkAtwood has quit IRC00:56
*** inbroker has quit IRC00:56
*** tokuzfunpi has joined #openstack00:56
*** vladimir3p has quit IRC00:57
*** rods has quit IRC01:01
*** nati2_ has quit IRC01:01
*** neogenix has joined #openstack01:02
*** jakedahn has quit IRC01:02
*** rustam has quit IRC01:03
*** obino has quit IRC01:05
*** atkisc has joined #openstack01:09
*** jj0hns0n_ has joined #openstack01:11
*** livemoon has joined #openstack01:13
*** jdurgin has quit IRC01:23
*** ahasenack has quit IRC01:26
*** sdake has quit IRC01:27
*** ziyadb has quit IRC01:41
*** jakedahn has joined #openstack01:42
*** neogenix has quit IRC01:43
*** hadrian has quit IRC01:45
*** benner has quit IRC01:55
*** rsampaio has joined #openstack02:04
*** sdake has joined #openstack02:05
*** benner has joined #openstack02:09
*** GeoDud has quit IRC02:15
*** magg has joined #openstack02:15
magghello02:15
livemoonHi, How to save instance? snapshot or something others?02:17
maggwell i have keystone installed now and it works02:18
maggnow i have installed the dashboard02:18
maggaldo02:18
maggalso*02:18
maggthanks for the help earlier02:19
chadhmagg: you didn't get keystone working with 10.04?  are there just no packages?02:19
magg11.04, no with packages02:19
maggbut i having problems logging in to the dashboard, look http://pastebin.com/mF0kfDU202:19
*** fulanito has joined #openstack02:19
chadhmagg: I am trying to decide if I want to fight the same battle or not.  for right now, I am stuck on 10.0402:19
*** neogenix has joined #openstack02:19
maggchadh: well the packages were having problems earlier02:20
maggthey work now02:20
chadhstill doesn't seem to work with lucid, but my ubuntu skills are pretty low, so maybe I did something wrong02:21
maggmmm02:21
chadh(can't find package)02:21
maggadd the ppa02:21
livemoonDose anyone know how to save instance running as image or snapshot?02:22
chadhmagg: which one.  I did add the one from the docs, but maybe it is the wrong one02:22
*** ldlework has joined #openstack02:22
maggyep that one02:22
fulanitochadh: $> sudo add-apt-repository ppa:keystone-core/trunk $> sudo apt-get update02:23
*** chadh has quit IRC02:26
maggalso one question, "keystone-manage role" grant really exists. I mean the help for keystone-manage only lists add delete and disable02:28
maggthe problem i have with the dashboard and keystone is that I cant log in02:34
maggit says Error authenticating with keystone: [Errno 111] ECONNREFUSED02:34
magghalp plz02:34
*** hugokuo has joined #openstack02:38
*** fulanito has quit IRC02:41
*** nelson____ has quit IRC02:43
*** nelson____ has joined #openstack02:43
*** msivanes has joined #openstack02:46
*** ldlework has quit IRC02:48
*** ldlework has joined #openstack02:49
*** ldlework has quit IRC02:51
*** sdake has quit IRC02:53
*** obino has joined #openstack02:55
*** sdake has joined #openstack03:05
*** joonwon has quit IRC03:05
*** ldlework has joined #openstack03:05
magghey03:08
maggim getting this error now03:08
magghttp://pastebin.com/zXE4i0jk03:08
maggtesting keystone with curl03:08
*** osier has joined #openstack03:09
*** lorin1 has left #openstack03:09
*** fulanito has joined #openstack03:10
*** ldlework has quit IRC03:15
*** ldlework has joined #openstack03:15
magg/usr/keystone/content/service/version.json.tpl is installed on another path03:17
magghow do i change the path03:17
maggkeystone uses03:17
*** sdake has quit IRC03:18
*** wariola has joined #openstack03:19
*** ldlework has quit IRC03:21
magganybody???03:27
*** ldlework has joined #openstack03:29
*** wariola has quit IRC03:31
*** martine has joined #openstack03:32
*** sdake has joined #openstack03:33
*** joonwon has joined #openstack03:41
*** llang629_ has joined #openstack03:42
*** Ryan_Lane has joined #openstack03:42
*** llang629_ is now known as llang62903:42
*** ldlework has quit IRC03:43
*** ldlework has joined #openstack03:43
fulanitohow to fix this error "EC2_ACCESS_KEY environment variable must be set." (euca)03:49
*** ldlework has quit IRC03:50
*** ldlework has joined #openstack03:51
*** ldlework has joined #openstack03:53
*** ameade has quit IRC03:53
*** chadh has joined #openstack03:55
maggf u fulanito03:56
*** fulanito has quit IRC03:56
*** magg has quit IRC03:56
chadhwell, he left, but I added that repo, but apt-get install just says that keystone is not found (yes, did apt-get update)03:58
*** ldlework has quit IRC04:04
*** openpercept has joined #openstack04:10
*** jakedahn has quit IRC04:16
*** mkinitrd has quit IRC04:19
*** ldlework has joined #openstack04:21
*** valeriy has quit IRC04:21
*** valeriy has joined #openstack04:22
*** ldlework has quit IRC04:29
*** trent-g has quit IRC04:31
*** nelson____ has left #openstack04:34
*** ldlework has joined #openstack04:34
*** nelson____ has joined #openstack04:34
*** fysa_ has joined #openstack04:35
*** dirkx_ has quit IRC04:35
*** zorzar has quit IRC04:35
*** bourke has quit IRC04:35
*** RobertLaptop has quit IRC04:35
*** negronjl has quit IRC04:35
*** fysa has quit IRC04:35
*** ABLomas has quit IRC04:35
*** fujin has quit IRC04:35
*** cynb has quit IRC04:35
*** aurigus has quit IRC04:35
*** LanceHaig has quit IRC04:35
*** lynxman has quit IRC04:35
*** ipl31 has quit IRC04:35
*** sandywalsh has quit IRC04:35
*** Aurelgadjo has quit IRC04:35
*** chmouel has quit IRC04:35
*** cloud0 has quit IRC04:35
*** wxum_ has quit IRC04:35
*** karmabot has quit IRC04:35
*** rootard has quit IRC04:35
*** fysa_ is now known as fysa04:35
*** bourke has joined #openstack04:35
*** ldlework has quit IRC04:35
*** osier has quit IRC04:35
*** wxum has joined #openstack04:36
*** cynb has joined #openstack04:36
*** chmouel has joined #openstack04:37
*** cloud0 has joined #openstack04:37
*** karmabot has joined #openstack04:37
*** RobertLaptop has joined #openstack04:37
*** msivanes has quit IRC04:38
*** aurigus has joined #openstack04:38
*** aurigus has joined #openstack04:38
*** ipl31 has joined #openstack04:38
*** ldlework has joined #openstack04:38
*** rootard has joined #openstack04:39
*** sandywalsh has joined #openstack04:39
*** martine has quit IRC04:43
*** zorzar has joined #openstack04:44
*** negronjl has joined #openstack04:44
*** ABLomas has joined #openstack04:44
*** LanceHaig has joined #openstack04:44
*** fujin has joined #openstack04:44
*** Aurelgadjo has joined #openstack04:44
*** lynxman has joined #openstack04:44
*** clauden_ has quit IRC05:09
*** wariola has joined #openstack05:12
*** magg has joined #openstack05:21
*** hugokuo has quit IRC05:23
*** pquerna has quit IRC05:24
*** hugokuo has joined #openstack05:24
*** valeriy has quit IRC05:30
*** Ryan_Lane has quit IRC05:33
*** ewindisch has joined #openstack05:37
*** tzn has joined #openstack05:41
*** Jaesang has joined #openstack05:45
JaesangHI, all05:46
Jaesanganyone success nova deployment using flatdhcp mode and Xen server?05:47
*** pquerna has joined #openstack05:47
*** freeflying has quit IRC05:48
*** freeflying has joined #openstack05:49
*** reed has quit IRC05:51
*** TheOsprey has joined #openstack05:54
Jaesanganyone success nova deployment using flatdhcp mode and Xen server?05:56
*** zul has quit IRC05:56
*** TheOsprey has joined #openstack05:57
*** zul has joined #openstack05:58
*** tzn has quit IRC06:00
*** wariola has quit IRC06:02
*** nerens has joined #openstack06:04
*** nati2 has joined #openstack06:08
*** lionel has quit IRC06:12
*** lionel has joined #openstack06:12
*** nerens has quit IRC06:19
*** magg has quit IRC06:22
*** ldlework has quit IRC06:23
*** ewindisch has quit IRC06:28
*** jedi4ever has joined #openstack06:28
Jaesanganyone success nova deployment using flatdhcp mode and Xen server?TT06:29
*** baynaa has joined #openstack06:35
*** nati2_ has joined #openstack06:40
*** nati2 has quit IRC06:42
*** valeriy has joined #openstack06:44
*** koolhead17 has joined #openstack06:46
*** tzn has joined #openstack06:47
*** osier has joined #openstack06:50
*** adjohn has joined #openstack06:51
*** freeflyi1g has joined #openstack06:52
*** tzn has quit IRC06:53
*** popux has joined #openstack06:55
*** freeflying has quit IRC06:55
*** rocambol1 has quit IRC06:59
*** siwos has joined #openstack07:00
*** dobber has joined #openstack07:01
*** jdag has quit IRC07:04
*** Spirilis has quit IRC07:04
*** rocambol1 has joined #openstack07:06
*** magg has joined #openstack07:07
maggim getting this error after  installing keystone from the ppa in ubuntu 11.04: http://pastebin.com/zXE4i0jk07:08
*** reidrac has joined #openstack07:15
maggsomehow i can add users, tenants and roles07:15
maggbut the curl tests fail07:15
ttxviraptor: ask jeblair07:16
*** adjohn has quit IRC07:17
*** europa has joined #openstack07:26
europahello everyone07:26
europaI need some help with installation issues, can someone help me?07:27
*** europa has quit IRC07:28
*** nicolas2b has joined #openstack07:32
*** kaigan_ has joined #openstack07:32
*** ejat has quit IRC07:36
*** nacx has joined #openstack07:43
*** koolhead17 has quit IRC07:44
*** ejat has joined #openstack07:44
*** ejat has joined #openstack07:45
*** openpercept has quit IRC07:45
*** ldlework has joined #openstack07:47
*** Spirilis has joined #openstack07:47
*** Ruetobas has quit IRC07:49
*** mgoldmann has joined #openstack07:53
*** jedi4ever has quit IRC07:54
*** magg has quit IRC07:59
*** MarcMorata has joined #openstack08:00
*** javiF has joined #openstack08:03
*** mgoldmann has quit IRC08:05
*** mgoldmann has joined #openstack08:05
*** FabriceB has joined #openstack08:08
*** ldlework has quit IRC08:09
*** nati2 has joined #openstack08:10
*** nati2_ has quit IRC08:12
*** vdo has joined #openstack08:22
*** pixelbeat has joined #openstack08:24
*** katkee has joined #openstack08:26
*** Jaesang has quit IRC08:28
vishymagg: looks like you're gone, but it should be curl http://0.0.0.0:5000/v2.0/08:31
vishyiirc08:31
livemoonHi, vm does not use virtio network though it has been defined in  libvirt.xml.template08:32
vishylivemoon: how do you know it isn't using it?08:32
*** nati2 has quit IRC08:33
livemoonI use 'dmesg' in vm and also see the nic is "RTL-8139C+"08:34
hugokuohello08:36
hugokuodoes dynamic vCPU of instance been implemented in Diablo ?08:36
*** vcjha has joined #openstack08:37
*** zz_bonzay is now known as bonzay08:42
livemoonvishy: can you help me about virtio network?08:44
vishylivemoon: are you sure that you have virtio on in libvirt08:44
vishylivemoon: there is a flag for it08:44
vishy--libvirt_use_virtio_for_bridges08:45
*** bonzay is now known as zz_bonzay08:45
*** jedi4ever has joined #openstack08:50
*** rustam has joined #openstack08:52
*** po has joined #openstack08:54
*** rsampaio_ has joined #openstack08:55
*** rsampaio has quit IRC08:55
livemoonvishy: In "libvirt.xml.template"?08:55
atkisclivemoon: nova.conf08:56
vishylivemoon: no the template will add virtio if you add that flag to nova.conf08:56
*** koolhead17 has joined #openstack08:56
livemoonvishy: atkisc: oh.it's my mistake. thank you.08:57
*** darraghb has joined #openstack08:58
baynaahi, trying to launch instances from hybridfox, but it gives error "Image emi-xxx could not be found."08:58
baynaanova-api.log -> ImageNotFound: Image emi-00000009 could not be found.08:59
baynaafrom cmdline, i can launch images with "euca-run-instances:08:59
livemoonvishy: set "--libvirt_use_virtio_for_bridges=TRUE" in nova.conf ?09:00
vishyyou don't need the =TRUE09:01
vishybut that should work, yes09:01
livemoonok09:01
*** mgoldmann has quit IRC09:01
*** mgoldmann has joined #openstack09:02
koolhead17hiall09:02
FabriceBthe dashboard and keystone seems out of synch09:09
FabriceBI build the dashboard from git09:09
FabriceBand used yum for keystone09:09
FabriceBfor authentication, the keystonde documentations says that the post data are :09:10
FabriceB{"passwordCredentials":{"username": "admin", "password": "admin"} }09:10
FabriceBwith tcpdump, I see that they are for the dashboard :09:10
FabriceB("auth" : {"passwordCredentials":{"username": "admin", "password": "admin"} , "tenandId": ""}09:11
FabriceBI'm getting a bad request with that09:11
koolhead17FabriceB: keystone is changing rapidly. It will be good if you will use keystone too from github09:11
FabriceBI'll try that09:15
livemoonvishy: thanks. nic works well with virto.09:16
FabriceBInstalling easy_install script to /usr/bin09:16
FabriceBouch thanks for overwritting the distro easy_installl09:16
*** miclorb_ has quit IRC09:19
*** popux has quit IRC09:19
atkiscvishy: instance N nics ,can you ?09:20
*** irahgel has joined #openstack09:23
*** openpercept has joined #openstack09:25
vishyFabriceB: you need the newest keystone from git09:27
vishyFabriceB: I have no idea what is in yum09:27
FabriceByum is the package manager for redhat09:27
vishyFabriceB: I know what yum IS.  I don't know what it contains09:28
FabriceBho sorry09:29
*** ldleworker has joined #openstack09:30
FabriceBthe release 0.20110823.223009:30
vishyFabriceB: yes so the older version used the first version you posted09:32
vishyFabriceB: the new version uses the new version09:32
FabriceBI'm upgrading to it now09:32
vishy* new json09:32
*** mgoldmann_ has joined #openstack09:35
*** mgoldmann has quit IRC09:37
FabriceBok, and don't forget to remove the old sqlite, the schema changed09:39
*** po has quit IRC09:42
*** kkm432 has joined #openstack09:46
*** Rajaram has joined #openstack09:46
viraptorso in gerrit - how do you submit a correction for a previous submission?09:47
*** newsbad_com has quit IRC09:54
Rajaramviraptor; amend the previous commit and then run git review again09:54
viraptorso as long as I don't change the Change-Id, everything should be fine?09:55
Rajaramyep09:55
viraptorcool, thanks09:55
*** reidrac has quit IRC09:58
*** ldleworker has quit IRC10:00
uvirtbotNew bug: #862202 in openstack-qa "nova.network.manager" [Undecided,New] https://launchpad.net/bugs/86220210:02
*** mgoldmann_ has quit IRC10:02
livemoonHi, which storage do you use where instances running ? volume or somethins else?10:03
*** mgoldmann has joined #openstack10:04
*** mgoldmann has joined #openstack10:05
*** atkisc has quit IRC10:05
*** joonwon has quit IRC10:08
*** nerens has joined #openstack10:09
*** tokuzfunpi has quit IRC10:19
*** jedi4ever has quit IRC10:20
*** nicholi has quit IRC10:20
*** nicholi has joined #openstack10:20
*** jedi4ever has joined #openstack10:20
*** livemoon has quit IRC10:29
*** miclorb_ has joined #openstack10:30
*** reidrac has joined #openstack10:34
*** rsampaio_ has quit IRC10:35
siwoslivemoon: volume10:35
*** rsampaio has joined #openstack10:36
*** mgoldmann has quit IRC10:39
*** mgoldmann has joined #openstack10:40
FabriceBstill fighting with dashboard and keystone10:43
FabriceBhttp://pastie.org/261041310:43
FabriceBthe user has role, is in a tenant10:44
FabriceBbut dashboard failes10:44
FabriceBif I play with curl the keystone querie, :10:45
FabriceBhttp://pastie.org/261041810:45
*** openpercept has quit IRC10:50
*** mkinitrd has joined #openstack10:55
*** openpercept has joined #openstack10:59
*** mgoldmann has quit IRC10:59
*** GeoDud has joined #openstack11:00
*** GeoDud has quit IRC11:06
*** tryggvil_ has joined #openstack11:07
*** tzn has joined #openstack11:14
tznhi there, anybody knows how to remove swauth data form swift11:14
tznand reinitialize it from scratch11:14
*** rods has joined #openstack11:17
*** Vek has quit IRC11:26
FabriceBI don't get how keystone works11:28
FabriceBI created a user and specify a tenant for him11:28
FabriceBbut curl http://hosts:5001/v2.0/tenants/111:29
FabriceBreturns an empty list11:29
FabriceB1 is the ID for the user's tenant11:29
*** mkinitrd has quit IRC11:29
*** dirkx_ has joined #openstack11:35
andyandy_I upgrade to the diablo release but now when I run the "nova-compute" it crashes, this is the last line in the log: "(nova): TRACE: ConnectTimeout", have you never seen this problem? thank you11:45
*** zatix has joined #openstack11:46
andyandy_another guy has the same problem: https://lists.launchpad.net/openstack/msg04163.html, but I can't figure out what is the problem11:49
hugokuofailed to start nova services and nothing in log file , how come :<11:53
*** kkm432 has quit IRC11:54
siwoshi12:02
siwosI have some issues with glance service after upgrading to diablo12:02
siwosI've run into database issues with glance.sqlite from my cactus installation12:02
siwosI get errors "unknown error has occured" from euca-describe-images12:03
siwosanyone ?12:03
*** javiF has quit IRC12:03
hugokuo"Access denied for user 'root'@'10.103.1.130' (using password: YES)"12:08
hugokuowhile I run nova-manage to create nova db12:08
vishysigh, more db pool issues12:15
vishyhugokuo: you have bad permissions in mysql12:15
hugokuogot it :>12:15
hugokuoI was too lazy and using my previous nova.conf ...12:17
hugokuowow btw , I saw nova-compute.conf in /etc/nova12:17
hugokuois that means nova-compute will load nova-compute.conf instead of nova.conf12:17
vishyhugokuo: i think it is included from nova.conf12:18
vishyhugokuo: unless the packages have changed recently12:18
hugokuook , let me have some more test . thanks12:19
*** hadrian has joined #openstack12:20
vishyhugokuo: last i checked there was --flagfile=nova-compute.conf in nova.conf12:22
vishyhugokuo: but they may have switched it to --flagfile=nova.conf in nova-compute.conf and run nova-compute with the nova-compute.conf flagfile12:22
*** Eyk^off is now known as Eyk12:23
*** alekibango has quit IRC12:27
tznsiwos: Can you check the version of python-glance on your nova node12:27
*** zatix has quit IRC12:29
tznsiwos: did you try to change "glance_api_servers" to "glance_host" and "glance_port" in nova.conf?12:29
*** nerdstein has joined #openstack12:29
siwosyep12:29
siwosbut this seems to be a db bug12:30
siwosthis one12:30
siwoshttps://bugs.launchpad.net/glance/+bug/77931112:30
siwosglance works with an empty database12:30
*** lts has joined #openstack12:31
siwosso I guess the best way to work it around is to upload new ami-s from scratch12:31
vishysiwos: looks like it is failing to upgrade the db12:31
siwosyeah12:31
siwosthats it12:31
siwosalso my sqlite client says "qlite glance.sqlite12:31
siwosUnable to open database "glance.sqlite": file is encrypted or is not a database"12:31
vishysiwos: I seem to remember there being an issue with some versions.  You could ask jaypipes if there is a workaround12:32
vishysiwos: sqlite312:32
siwosaaah12:32
siwosyeah12:32
vishy(once he gets up that is)12:32
siwosI was just googling for this12:32
siwosseems like I was using an old client12:32
siwosvishy: it'd be great if you asked12:32
siwosI'll try to ping jaypipes directly on this12:33
vishyhe will see this when he gets up12:33
vishy:)12:33
siwosdefinitely'12:33
siwosthanks a lot12:33
uvirtbotNew bug: #862319 in glance "pip install glance fails if python-distutils-extra is installed" [Undecided,New] https://launchpad.net/bugs/86231912:33
*** osier has quit IRC12:35
*** axisys has quit IRC12:39
*** livemoon has joined #openstack12:41
hugokuoso in diablo . I must have to specify --bridge for create project network ?12:44
*** dendrobates is now known as dendro-afk12:46
*** cereal_bars has joined #openstack12:52
vishyhugokuo: or put it in your flafile12:52
*** axisys has joined #openstack12:53
*** jtanner has joined #openstack12:53
hugokuogot it XD , so there's no default bridge anymore12:54
hugokuobtw , I love your FlatDHCP HA12:54
*** miclorb_ has quit IRC12:54
*** osier has joined #openstack12:56
*** openpercept1 has joined #openstack12:56
*** openpercept has quit IRC12:57
*** Vadim has joined #openstack12:57
livemoonHi, what tech can be used in vm HA or instance backup?12:57
*** openpercept1 has quit IRC12:58
*** openpercept has joined #openstack12:59
VadimHi all! At this moment Diablo + OpenStack Dashboard + Keystone work?13:02
*** osier has quit IRC13:02
*** osier has joined #openstack13:03
FabriceBVadim: i'm on the verge of failing Dashboard + keystone13:03
*** ahasenack has joined #openstack13:03
FabriceBthey seems to be out of sync13:03
*** mkinitrd has joined #openstack13:03
Vadimat dashboard config i dont see OPENSTACK_ADMIN_TOKEN options13:03
*** dirkx_ has quit IRC13:04
*** nacx has quit IRC13:04
VadimFabriceB what problem you have?13:04
FabriceBthe keystone API is a moving target13:06
FabriceBthe documentation is scare13:06
FabriceBand I'm getting incoherent response13:06
*** openpercept1 has joined #openstack13:06
hugokuo WARNING nova.api.openstack [-] User not found with provided API key.       but I do source the novarc .....13:06
*** nacx has joined #openstack13:07
Vadim<FabriceB> what about OPENSTACK_ADMIN_TOKEN you use this option?13:08
hugokuo...!!! the source file give wrong access key !?   hugo:hugo is the access key ??? but it's different from DB13:08
FabriceBI created one13:08
*** openpercept1 has quit IRC13:08
*** axisys has quit IRC13:08
*** kaigan_ has quit IRC13:08
*** rocambol1 has quit IRC13:08
*** zul has quit IRC13:08
*** TheOsprey has quit IRC13:08
*** karmabot has quit IRC13:08
*** ohadlevy has quit IRC13:08
*** aa has quit IRC13:08
*** nijaba has quit IRC13:08
*** odyi has quit IRC13:08
*** Xenith has quit IRC13:08
*** BuZZ-T has quit IRC13:08
*** ChrisAM has quit IRC13:08
*** shroud has quit IRC13:08
*** pasik has quit IRC13:08
*** rnts has quit IRC13:08
*** cbeck has quit IRC13:08
*** arun has quit IRC13:08
*** martin has quit IRC13:08
*** msivanes has joined #openstack13:08
FabriceBhttp://pastie.org/261041313:08
*** openpercept has quit IRC13:10
*** axisys has joined #openstack13:10
*** 14WAAFJRZ has joined #openstack13:10
*** rocambol1 has joined #openstack13:10
*** zul has joined #openstack13:10
*** TheOsprey has joined #openstack13:10
*** karmabot has joined #openstack13:10
*** ohadlevy has joined #openstack13:10
*** aa has joined #openstack13:10
*** nijaba has joined #openstack13:10
*** odyi has joined #openstack13:10
*** shroud has joined #openstack13:10
*** Xenith has joined #openstack13:10
*** BuZZ-T has joined #openstack13:10
*** ChrisAM has joined #openstack13:10
*** pasik has joined #openstack13:10
*** rnts has joined #openstack13:10
*** cbeck has joined #openstack13:10
*** arun has joined #openstack13:10
*** martin has joined #openstack13:10
*** mkinitrd has quit IRC13:11
Spirilishmm quick Q... does Swift allow you to use IPv6 addresses for its storage nodes?13:12
*** 14WAAFJRZ is now known as kaigan_13:12
*** osier has quit IRC13:13
Vadim<FabriceB> you create some toke like "999888777666" you use this toke at dashboard config??13:13
*** PotHix has joined #openstack13:13
*** pquerna has quit IRC13:14
*** pquerna has joined #openstack13:14
Vadim*token13:14
FabriceByes13:14
Vadim<FabriceB> in what options?13:14
FabriceBOPENSTACK_ADMIN_TOKEN = "999888777666"13:14
Vadimin new version of dashboard i dont see OPENSTACK_ADMIN_TOKEN13:15
FabriceBVadim: the git one ?13:15
Vadimyeap13:15
FabriceBhttp://docs.openstack.org/diablo/openstack-compute/admin/content/build-and-configure-openstack-dashboard.html13:15
FabriceBhttp://wiki.openstack.org/OpenStackDashboard13:16
Vadimhttps://github.com/4P/openstack-dashboard/blob/master/openstack-dashboard/local/local_settings.py.example13:16
FabriceBit needs to be added I think, because when I look with tcpdump, I see it used13:17
*** nerdstein has quit IRC13:19
hugokuo EC2_ACCESS_KEY="hugo:pro1"   is this normal in novarc ???13:20
Vadimwhen i enter login and password dashboard say Error authenticating: You are not authorized to make this call13:21
FabriceByou created the user ?13:22
FabriceBand give him a role admin13:22
Vadim<FabriceB> yes and grant Admin role13:22
Vadimwith tenant13:23
FabriceBVadim: how did you do that ?13:23
hugokuoInvalid OpenStack Nova credentials.  @@13:23
FabriceBcurl -H "X-Auth-Token:999888777666" http://keystonehost:5001/v2.0/tenants/1/users13:24
Vadimi do that like you13:24
FabriceBwhat is the answer ?13:24
Vadim{"unauthorized": {"message": "You are not authorized to make this call", "code": "401"}}13:25
Vadim((13:25
*** ahasenack has quit IRC13:25
*** ahasenack has joined #openstack13:26
FabriceBkeystone-manage token add 999888777666 admin AdminTenant 2015-02-05T00:0013:26
*** Vek has joined #openstack13:26
*** Rajaram_ has joined #openstack13:27
FabriceByou need to use an existing token13:27
hugokuohttps://answers.launchpad.net/nova/+question/169804  got the answer of my issue XD13:28
Vadimhttp://pastie.org/261108513:28
*** Rajaram has quit IRC13:29
*** Rajaram_ is now known as Rajaram13:29
*** nerdstein has joined #openstack13:30
FabriceBso you didn't setup the permanent token13:30
FabriceBtry my comment but with token 1f8a7f26-3ad7-4554-b679-c7d4a9bc7a9913:30
*** martine has joined #openstack13:30
Vadimcurl -H "X-Auth-Token:1f8a7f26-3ad7-4554-b679-c7d4a9bc7a99" http://192.168.1.24:5001/v2.0/tenants/1/users {"unauthorized": {"message": "You are not authorized to make this call", "code": "401"}}13:31
Vadim=(13:31
Vadimof course i change token13:31
FabriceBmm strange your token is in tenant 213:31
FabriceBbut for me the token is not in a tenant13:32
FabriceBabac1884-656e-4d03-bdca-274de0edcc7d    1       2011-09-30 13:41:54.005966      None13:32
vishyi think you need to pass an admin token to use 500113:35
*** bluetux has joined #openstack13:36
Vadimyesy this is strange i create new token and he have tenant id13:37
Vadimhttp://pastie.org/261108513:37
*** clopez has joined #openstack13:38
*** ziyadb has joined #openstack13:40
*** jdurgin has joined #openstack13:42
FabriceBthe user don't have the admin role I think13:42
FabriceBkeystone-admin-role = Admin13:42
*** kbringard has joined #openstack13:42
FabriceBin /etc/keystone/keystone.conf13:42
FabriceBthat is match you're user role ?13:42
FabriceBwhen the admin token is not specified in the dashboard it uses the created token13:43
FabriceBand that fails if the token is created for a user without admin role i think13:43
nhmugh, I think internal politics is going to force me into vlan networking.13:44
Vadimyes keystone-admin-role = Admin13:44
*** dendro-afk is now known as dendrobates13:44
*** lborda has joined #openstack13:45
*** vdo has quit IRC13:45
Vadimyes you are right13:46
Vadimi gran only Admin role for tenant13:46
*** vdo has joined #openstack13:47
FabriceB# keystone-manage user delete  113:47
FabriceBERROR: unrecognized command user delete13:47
FabriceBwhat the fuck13:47
lynxmansoren: ping13:47
Vadim<FabriceB> yes delete didnt work =)13:47
lynxmansoren: oops sorry, I meant ttx13:47
lynxmanttx: ping13:47
Vadimrm keystone.db =)13:48
ttxlynxman: brb13:48
lynxmanttx: okay :)13:48
*** bsza has joined #openstack13:48
Vadimnow i have another error13:49
Vadimdo you have something like that Error authenticating with keystone: Invalid attribute(s): [u'tokenId'] or Expecting token13:50
*** nerdstein has quit IRC13:51
FabriceBno not this one13:51
FabriceBwhat is the last queries in the keystone logs ?13:51
*** Eyk is now known as Eyk^off13:52
annegentlespikebike: would love to have your edits, all doc are on Github13:52
Vadimtail -n 1 keystone.log  2011-09-29 16:50:42  WARNING [eventlet.wsgi.server] 127.0.0.1 - - [29/Sep/2011 16:50:42] "POST /v2.0/tokens HTTP/1.1" 400 231 0.00049013:53
*** bsza has quit IRC13:54
*** robbiew has joined #openstack13:55
*** siwos has quit IRC13:56
*** benrodrigue has joined #openstack13:56
Vadimyou can authorise in your dashboard?13:58
FabriceBthat's juste the authentication part13:59
FabriceBcurl -d '{"auth": {"passwordCredentials": {"username": "admin", "password": "admin"}, "tenantId": ""}}' -H "Content-type: application/json" http://localhost:5001/v2.0/tokens14:00
FabriceBit's playing that14:00
*** PerlStalker has joined #openstack14:00
*** nyeates has joined #openstack14:01
*** joesavak has joined #openstack14:01
*** joshua_d has joined #openstack14:02
*** Ruetobas has joined #openstack14:02
*** bsza has joined #openstack14:03
*** dendrobates is now known as dendro-afk14:04
*** mfer has joined #openstack14:04
*** ziyadb has quit IRC14:05
*** neogenix has quit IRC14:05
*** glenc has joined #openstack14:07
*** nicolas2b has quit IRC14:07
*** rocambol1 has quit IRC14:07
*** cereal_bars has quit IRC14:09
*** Joonwon has joined #openstack14:12
*** ziyadb has joined #openstack14:13
*** FabriceB has quit IRC14:14
Vadimi have error like you have =)14:16
VadimUnexpected error: 'NoneType' object has no attribute 'id'14:17
*** dolphm has joined #openstack14:17
*** lorin1 has joined #openstack14:17
*** dolphm has left #openstack14:18
*** dolphm has joined #openstack14:18
*** MarkAtwood has joined #openstack14:19
*** nyeates has quit IRC14:19
*** nyeates has joined #openstack14:20
*** gnu111 has joined #openstack14:21
viraptorin the swift package on ppa (for 2011.3), the man pages for swauth-* are packaged, but the commands aren't - has something changed, or is it a packaging mistake?14:23
notmynameviraptor: probably a packaging mistake14:24
notmynameviraptor: swauth is no longer part of the swift codebase14:24
viraptornotmyname: ok, so assuming I have swift installed, how do I create users nowadays? instead of doing swauth-add-user ....14:25
notmynameviraptor: you can use the included tempauth auth system. or you can separately install swauth14:26
*** dolphm has quit IRC14:26
*** jfluhmann has joined #openstack14:26
viraptorok, found the new url in the release notes14:26
viraptorthanks14:26
notmynameviraptor: http://swift.openstack.org/misc.html#module-swift.common.middleware.tempauth  <-- also see the sample proxy config for more info on tempauth14:27
kbringarddoes anyone know if NTT ever released a followup nova-network HA doc showing their findings with keepalived?14:30
*** rsampaio has quit IRC14:31
*** LiamMac has joined #openstack14:32
*** rsampaio has joined #openstack14:33
koolhead17hi all14:34
*** rsampaio_ has joined #openstack14:34
*** rsampaio has quit IRC14:34
annegentlekbringard: hm, I haven't seen one.14:34
annegentlehey koolhead1714:34
koolhead17annegentle: hello there14:35
kbringardannegentle: cool, yea, I didn't see anything either14:35
*** Tsel has joined #openstack14:35
kbringardI was revisiting their Linux-HA failover option14:35
*** kaigan_ has quit IRC14:36
*** rsampaio_ has quit IRC14:36
kbringardthe thing I don't love is the gratuitous ARP broadcast, so I was looking for something that had VMAC support to avoid such a thing14:37
*** reed has joined #openstack14:38
*** jdag has joined #openstack14:39
*** ziyadb has quit IRC14:39
*** Razique has joined #openstack14:39
*** ziyadb has joined #openstack14:39
*** jdag has quit IRC14:40
livemoonhi, kbringard14:40
*** shoof has joined #openstack14:41
*** Razique has quit IRC14:41
kbringardhey livemoon14:41
*** mgoldmann has joined #openstack14:41
gohko_https://lists.launchpad.net/openstack/msg02099.html14:41
livemoonkbringard: can you give me some suggestion about vm HA or vm backup?14:42
*** jsavak has joined #openstack14:42
gohko_ha14:42
*** llang629 has left #openstack14:42
*** dolphm has joined #openstack14:43
*** alandman has joined #openstack14:43
kbringardgohko_: yea, there is another message about that too14:43
kbringardhttps://lists.launchpad.net/openstack/msg01994.html14:43
*** dirkx_ has joined #openstack14:43
*** Ryan_Lane has joined #openstack14:44
*** joesavak has quit IRC14:45
lynxmankoolhead17: hey man ;)14:46
koolhead17lynxman: all well. howdy?14:46
*** ziyadb has quit IRC14:46
lynxmankoolhead17: good good, waiting on ttx :)14:46
koolhead17lynxman: hehe. :)14:47
*** nati2 has joined #openstack14:47
Vadimanybody have work dashboard + diablo + keystone?14:47
ttxlynxman: oops14:47
*** code_franco has joined #openstack14:47
ttxlynxman: wassup ?14:48
koolhead17Vadim: not me. let me know once your done :)14:48
* koolhead17 smiles14:48
*** ziyadb has joined #openstack14:48
lynxmanttx: hey there o/14:48
koolhead17hey ttx14:48
*** rnirmal has joined #openstack14:48
Vadim<koolhead17> what say about this dashboard developers you know? =)14:48
lynxmanttx: just a question, we're trying to implement openstack through juju, and we're having huge issues with keystone on diablo, would you recommend us to skip keystone for now and come back at it in some weeks?14:48
dolphmlynxman: what issues are you having?14:49
dolphm<- keystone dev14:49
lynxmandolphm: pleased to meet you14:49
ttxlynxman: you should wait for the "officially-compatible-with-diablo" keystone14:49
lynxmandolphm: for starters the SQL deployment is broken if you enforce foreign keys14:49
lynxmanttx: kinda thought so :)14:49
* jsavak applauds super-dolph14:49
*** lorin1 has quit IRC14:50
dolphmjsavak: /salute14:50
*** lorin1 has joined #openstack14:50
dolphmlynxman: i believe that bug was just fixed in the ubuntu package, and it's been fixed for a while in trunk14:50
lynxmandolphm: we had a couple of hours hitting at this issue, not an issue in mysql under myisam but when you enforce innodb it breaks badly14:50
* koolhead17 looks at dolphm :D14:51
lynxmandolphm: also keystone integration with swift looks a bit "on the rocks" right now :)14:51
lynxmandolphm: was just looking for a pointer to know if I had to skip it for the moment14:51
dolphmjsavak: i went to install keystone as an end-user this morning... downloaded virtualbox, and was reaching to download a copy of ubuntu 11.04 server, before i realized where i worked, and in what department14:51
notmynamelynxman: how so? the docs are old (bad), but basic functionality can be done14:51
notmynamelynxman: unless something has changed that I don't know about :-)14:52
lynxmandolphm: lol :)14:52
dolphmlynxman: anything specific you can give me i can fix!14:52
lynxmannotmyname: basic yeah but let's say prod ready deployment... not yet :)14:52
jsavakdolphm: ha. Yeah : )14:52
*** bcwaldon has joined #openstack14:52
lynxmandolphm: oh, I'll ask the team to contact you ;) be ready for it14:52
dolphmlynxman: i'll be here all day14:53
lynxmandolphm: lovely, thank you so much14:53
*** dirkx_ has quit IRC14:53
notmynamelynxman: ah. for prod with swift, I'd recommend integrating with your own auth system or using swauth14:53
lynxmannotmyname: that's what we're doing :)14:53
lynxmannotmyname: was just looking for a pointer on trying swift + keystone or just move on14:54
dolphmlynxman: i'd agree, if you're going to production, keystone is *not* ready, but if you're just looking to experiment, keystone needs feedback :)14:55
dolphmjsavak: just noticed that rackspace/keystone is 404'ing, yay!14:57
*** cmagina has quit IRC14:57
*** cmagina_ has joined #openstack14:57
doudeHi all, I get error to get metadata in cloud-init of UEC image. I use VLAN mode. In iptables rules, I can see in PREROUTING table a DNAT for 169.254.169.254:80 to <nova-api IP>:80, that's good. But after in POSTROUTING table, I can see the SNAT rule from IP fixed range to public IP (IP of nova-network)14:57
jsavakdolphm: good. LP updated to point to openstack/keystone. Hopefully that will resolve some confusion.14:58
*** Ruetobas has quit IRC14:58
dolphmjsavak: ooh, yeah, that might have been a source of trouble14:58
*** adjohn has joined #openstack14:58
dolphmjsavak: who wrote this? http://docs.openstack.org/diablo/openstack-identity/admin/os-identity-starter-guide-trunk.pdf14:59
doudeSo the metadata request is, in first time DNATed and secondly SNATed. But nova-api doesn't know the public IP of nova-network and cannot associate it with a running instance14:59
*** cmagina_ has quit IRC14:59
doudeSo the instance failled to get metadata from the API server14:59
*** cmagina has joined #openstack15:00
jsavakdolphm: I know Anne was working on some of that. Maybe Yogi provided input too15:00
*** Ruetobas has joined #openstack15:02
*** arun_ has quit IRC15:02
*** dragondm has joined #openstack15:03
lynxmandolphm: oh you'll get feedback from us, for sure :)15:05
*** TheOsprey has quit IRC15:07
*** Tsel has quit IRC15:07
PerlStalkerWill someone point me at docs for putting an instance on multiple network?15:07
PerlStalkers/network/networks/15:07
*** reidrac has quit IRC15:08
*** tzn has quit IRC15:08
doudePerlStalker: http://wiki.openstack.org/Quantum?action=AttachFile&do=get&target=quantum-admin-guide.pdf15:09
PerlStalkerThank you15:09
*** v0id has joined #openstack15:10
*** Razique has joined #openstack15:10
*** nati2 has quit IRC15:12
*** nati2 has joined #openstack15:13
*** rnorwood has joined #openstack15:13
*** jedi4ever_ has joined #openstack15:15
*** livemoon has quit IRC15:16
*** jedi4ever has quit IRC15:19
*** littleidea has joined #openstack15:19
*** mgoldmann has quit IRC15:20
*** mgoldmann has joined #openstack15:20
*** ziyadb has quit IRC15:22
*** dirkx_ has joined #openstack15:22
*** marrusl has joined #openstack15:25
*** alekibango has joined #openstack15:26
*** po has joined #openstack15:26
*** PiotrSikora has quit IRC15:26
*** PiotrSikora has joined #openstack15:28
*** jtanner has quit IRC15:29
spikebikeannegentle: ?15:30
gnu111can someone look at my diablo config: http://paste.openstack.org/show/2608/15:32
*** mies_ has joined #openstack15:33
chmoueldolphm: hello, did roleRefs changes to roles in latest keystone?15:34
*** mies has quit IRC15:34
dolphmchmouel: yes, there should no longer be anything exposed as a "roleRef" in trunk15:36
dolphmchmouel: although that nomenclature is still used under the covers for data modeling purposes15:37
chmouelcool okay, well i fixed the swift middleware then and its working now with trunk with s/rolesRef/roles/;15:38
annegentlespikebike: hey was just scrolling through early early morning Qs about the docs and wanted to let you know they're all written collaboratively, hope I didn't sound grumpy :)15:38
annegentlespikebike: I just always invite people to collaborate on the docs when there's an area of interest.15:38
spikebikeoh, sure15:38
uvirtbotNew bug: #862475 in nova "terminated instances count against quota" [Undecided,New] https://launchpad.net/bugs/86247515:38
spikebikeI was just wishing there was a single method that was docuented to work for diablo15:39
spikebikeseems like of the 4 or 5 known methods I keep finding "Oh, yeah that doesn't work with diablo"15:39
spikebikeBut if I find one that works I'll add a "it works with diablo" mention15:39
spikebikeunfortunately the documentation URLs are under /diablo which falsely implies they are for diablo15:40
annegentlespikebike: yes it's a difficult time to be labelled diablo right now :)15:43
spikebikeheh15:43
annegentlespikebike: I can move it all to /trunk but that seems also mean :)15:43
doudedoude: Ok I found my mistake, I forget to set flag use_forwarded_for, but I still have problem. Cloud-init didn't set the HTTP header x_forwarde_for so cloud-init fails15:44
spikebikeheh, well, I don't feel comfortable changing anything till I get things working15:44
spikebikebut I'm close, once that happens I'll help improve whatever problems I find15:44
annegentlespikebike: are you on the OpenStack mailing list? there's the list of repos that work together here: https://lists.launchpad.net/openstack/msg04393.html15:45
*** bluetux has quit IRC15:45
annegentlespikebike: and completely understood about wanting to gain comfort/confidence prior to contrib :)15:45
*** bluetux has joined #openstack15:45
*** koolhead17 is now known as koolhead17|afk15:46
*** rsampaio has joined #openstack15:46
spikebikesimilarly complex project often release a VPS image15:47
spikebikeit helps quite a bit to be able to prod a working setup when you are incrementally changing your own in an attempt to get it working15:48
*** dobber has quit IRC15:48
annegentlespikebike: yep15:49
*** Razique has quit IRC15:50
*** vdo has quit IRC15:51
dolphmjsavak: can we borrow your services?15:51
jsavakdolphm: possibly - what's up?15:52
dolphmjsavak: we'd like to hear back from each project (nova, swift, dashboard, etc) that what's in keystone *right now* works for them *right now*... any chance you could reach out to them at get a thumbs up from each?15:52
jsavakdolphm: sure15:53
jsavakdolphm: one question - can it handle validate token with tenant name (instead of tenant id)?15:53
dolphmjsavak: the implementation is there, yes15:53
jsavakdolphm: I know we authN with tenant name or tenant id today - what you worked on earlier - but it does validate token too?15:54
dolphmjsavak: i haven't heard of any project testing it yet, though15:54
jsavakdolphm: i think swift will use it15:54
*** Ryan_Lane has quit IRC15:54
dolphmjsavak: validate token? like GET /tokens/{token_id}?belongsTo={tenant_name} ??15:54
jsavakdolphm: yup15:55
notmynamedolphm: jsavak: I'm currently testing the 2.0 spec internal to RAX.15:55
dolphmjsavak: no, that's the first i've heard of that15:55
jsavakdolphm: ok15:55
notmynamedolphm: the problem we have not is having to make an extra call to get that {tenant_name}15:55
jsavaknotmyname: aka john?15:55
notmynamethe same :-)15:55
*** bsza has quit IRC15:56
jsavaknotmyname: so the workaround is an extra call which may be ok for diablo/2.0?15:56
*** mgoldmann_ has joined #openstack15:57
notmynamejsavak: it can be done, but it increases latency for the client (customer) and doubles the number of requests to the keystone instance15:57
notmynamejsavak: I don't think it's acceptable15:57
dolphmjsavak: that would require wadl changes (maybe xsd changes too?), new docs, new samples, new tests, plus implementation lol15:57
jsavakdolphm: so we miss the friday deadline if we do it?15:57
dolphmjsavak: not necessarily, but it's a new feature at the last minute that will effect every other team15:58
jsavakdolphm: yeah.15:58
jsavaknotmyname: can we deliver e-1?15:58
dolphmjsavak: it's certainly a backwards compatible addition, but it bubbles all the way up to the contract level15:58
notmynamejsavak: dolphm: the basic idea is that we need to be able to determine auth status with one call to the auth system with only what we have in a single request to swift15:59
notmynamejsavak: from a swift perspective, that's ok. I don't think anyone is actually using keystone in prod now15:59
dolphmjsavak: actually..... the way i outlined it above, we'd be overloading belongsTo with both tenant names & tenant ID's... something we've avoided everywhere else in the API, but it wouldn't take wadl changes to do it like that..16:00
jsavaknotmyname: thanks - our goal is to close off of keystone diablo by end of week. We'll work on this first thing after summit. Is there a bug open on it?16:00
*** mgoldmann has quit IRC16:00
notmynamejsavak: we may have a different answer for internal to RAX, but that's a discussion we can have in a different forum :-)16:00
jsavaknotmyname: i agree16:00
*** ameade has joined #openstack16:00
*** Tsel has joined #openstack16:01
notmynamejsavak: dolphm: I don't think there are any hard requirements in openstack for swift/keystone until essex final. of course, everyone is clamoring for it asap :-)16:01
*** jtanner has joined #openstack16:01
*** jtanner has quit IRC16:01
*** jtanner has joined #openstack16:01
*** scalability-junk has quit IRC16:02
*** Rajaram has quit IRC16:04
*** mdomsch has joined #openstack16:05
vishynotmyname: can you explain why you need a second call in the existing model?16:05
*** valeriy has quit IRC16:05
vishynotmyname: do clients pass more than just the token usually?16:06
*** cereal_bars has joined #openstack16:07
*** openpercept has joined #openstack16:07
vishyor jsavak, dolphm ^^ if you guys know the answer16:08
*** clauden has joined #openstack16:08
*** clauden_ has joined #openstack16:09
*** clauden has joined #openstack16:10
*** littleidea has quit IRC16:10
notmynamejsavak: dolphm: there may be a way around the second call (sorry, still learning the 2.0 api). give me a moment....16:11
*** clauden has quit IRC16:11
notmynamevishy: ^16:11
jsavaknotmyname: ok16:12
dolphmvishy: notmyname: reading back..16:12
vishynotmyname: cool.  we haven't needed to make a second request in nova, so I was hoping that was the case16:12
vishynotmyname: but your requirements might be different.  I just want to make sure we haven't missed something major :)16:13
dolphmnotmyname: vishy: yeah, i don't think you actually need to make two calls, unless you want the validation call to be a HEAD16:13
dolphmnotmyname: vishy: the validate call, GET /tokens/{token_id} should return the token's tenant id & name, so you can validate it based on the response16:14
vishydolphm: does the replacement string %tenant_name% work in the nedpoint templates16:14
notmynamedolphm: vishy: ya, just looking at that (not passing the ?belongsTo query16:14
*** clauden_ has joined #openstack16:14
dolphmnotmyname: vishy: HEAD /tokens/{token_id}?belongsTo={tenant_name} would be useful if A) you were very concerned about performance, B) knew the tenant name but not the tenant ID16:14
dolphmvishy: i'm not familiar enough with endpoints to answer16:15
dolphmvishy: i haven't written a test for that.. i can say that much :P16:15
vishydolphm: just tested, doesn't look like it16:15
vishydolphm: i guess we have to decide which we should use for our urls16:16
notmynamedolphm: jsavak: vishy: ok, I was wrong on 2 counts :-)16:16
notmynamefirst, what I thought was working wasn't actually properly authorizing anything16:16
jsavaknotmyname: not needed?16:16
notmynamejsavak: dolphm: vishy: we still need a change16:16
*** sdake has quit IRC16:17
vishydolphm: IMO urls seems like they would be much nicer with tenant_name vs tenant_id but I'll have to think through the ramifications16:17
*** jkoelker_ has quit IRC16:17
*** europa has joined #openstack16:17
*** sdake has joined #openstack16:17
notmynamejsavak: dolphm: vishy: I can make a request to /tokens/ without ?belongsTo, but the returned data needs to have the endpoints (so I can compare the swift account on my side)16:17
*** jkoelker has joined #openstack16:17
dolphmvishy: notmyname: jsavak: check out test_auth_with_role_on_tenant in https://github.com/openstack/keystone/blob/master/keystone/test/functional/test_auth.py16:17
dolphmvishy: notmyname: jsavak: the last call in that test asserts that tenant id and tenant name come back on the token16:18
vishynotmyname: interesting.  Can't you generate the endpoint with the account_id?16:18
dolphmliterally, last two lines of the test16:18
*** TheOsprey has joined #openstack16:18
vishy* tenant_id16:18
europahello i am having trouble with creating images: when executing  "uec-publish-tarball ttylinux-uec-amd64-12.1_2.6.35-22_1.tar.gz mybucket" I get an error that says "Unable to run euca--describe-images.  Is environment for euca- set up?"16:19
notmynamevishy: I need to match that the token is good for that swift account. nothing currently in the auth system matches the swift account and the swift account isn't in anything that's returned so that I can match it16:19
europai have verified that euca2ools is installed16:19
vishynotmyname: I mean endpoints is just generating a url based on tenant_id from a template, so can't you just make the same generation?16:19
notmynamevishy: the swift account =/= tenant_id, at least as currently implemented in keystone16:20
*** mgoldmann_ has quit IRC16:20
vishynotmyname: for example the endpoint template we use is https:/proxyhost:proxyport/AUTH_%tenant_id%16:20
dolphmnotmyname: swift_account == tenant_name ?16:20
vishyif you want them to be ==, just take out the AUTH_, no?16:21
*** jtanner has quit IRC16:21
*** mgoldmann has joined #openstack16:21
gnu111europa: did you create the authentication keys? nova-manage project zipfile16:21
dolphmvishy: notmyname: i'm going to be bringing up extensions at the summit to support all this different nomenclature lol16:22
vishynotmyname, the idea has been up until now that tenant_id == swift.account_id == nova.project_id16:22
*** jtanner has joined #openstack16:22
vishyalthough whether it should actually be tenant_name = account_id = project_id is debatable16:22
*** jtanner has quit IRC16:22
*** Ruetobas has quit IRC16:23
*** jtanner has joined #openstack16:23
notmynamevishy: ah. the tenant_name == swift account16:23
dolphmvishy: does, for example, swift login to keystone and utilize the same tenant_id's as nova?16:23
*** preston has joined #openstack16:23
vishynotmyname: that seems like it makes more sense since the id would be a uuid or a db primary key of some sort16:24
notmynamedolphm: can I pass the tenant_name in the belongsTo query?16:24
europajtaner: yes, I did, but i let me do it again16:24
dolphmnotmyname: no16:24
vishynotmyname: and you probably would prefer a friendly name in the url16:24
dolphmbut you'll get back the tenant.name without using belongsTo16:24
vishynotmyname: you get tenant_name back16:24
notmynamevishy: I don't care how pretty it is, I just want to do it all with one request :-)16:24
prestonanyone here using openstack for bioinformatics clouds?16:25
notmynamedolphm: ok, so don't use belongsTo and then I get back a list of tenants?16:25
*** dirkx_ has quit IRC16:25
vishynotmyname: each token is valid for one tenant16:25
notmynameso I get back the tenant. checking...16:25
gnu111europa: did you do source novarc? Do you see the EC_ variables when you type env?16:26
*** zul has quit IRC16:26
vishynotmyname: fyi chmouel just proposed an updated middleware that seems to work fine16:26
europagnu111: yes, I do16:26
notmynamevishy: dolphm: without the belongsTo, all I get is and access block. nothing about tenants16:27
*** Ruetobas has joined #openstack16:27
europagnu111: the EC variables are there16:27
vishynotmyname: in case you don't feel like redoing it yourself16:27
jsavaknotmyname: was the token scoped upon authN?16:27
*** bsza has joined #openstack16:27
notmynamevishy: I need to look at that. this all started when I was trying to see what it takes to change the internal rax stuff16:27
vishyyeah sounds like you requested an unscoped token16:27
notmyname?16:28
*** adjohn has quit IRC16:28
jsavaknotmyname: upon authn if you don't pass in a tenant id, you'll get an unscoped token16:28
*** code_franco has quit IRC16:28
jsavaknotmyname: then you do GET /tenants with that token to see what tenants that token may access16:28
notmynamejsavak: swift only has access to a token and account string16:29
jsavaknotmyname: then authN passing in a tenantID to get a scoped token16:29
jsavaknotmyname: nova passes you the token?16:29
notmynamejsavak: I'm simulating the data that swift has access to. the client gives us a token, not the tenant id (the client shouldn't have to do anything beyond what they do today)16:30
*** obino has quit IRC16:30
vishynotmyname: when a user hits keystone16:30
*** code_franco has joined #openstack16:30
vishynotmyname: do they just pass in a username and password?16:30
*** morfeas has joined #openstack16:30
vishynotmyname: because if you create the user with a default tenant, then it should give you back a scoped token16:31
notmynameclient gets token, client sends token with request to swift (swift account in that url). swift then needs to ask the auth system if the token has access to that account (or simply what accounts that token can access and we can do the compare)16:31
vishydolphm: unless that has changed recently16:31
*** nerens has quit IRC16:31
vishynotmyname: it is in the getting token part that the token is scoped16:31
*** openpercept has quit IRC16:31
notmynamevishy: I'm not changing anything from what the client does today16:31
vishynotmyname: right but the client will be hitting keystone instead of old-auth16:32
*** clauden_ has quit IRC16:32
jsavaknotmyname: you can do GET /tenants to see what "accounts" the token can access both for scoped & unscoped tokens16:32
*** bsza has quit IRC16:32
*** clauden_ has joined #openstack16:32
notmynamejsavak: that's a second request16:32
vishynotmyname: so if you create the user in keystone with a default tenant, it will give you back scoped tokens16:32
gnu111europa: do you have to run the command with sudo?16:32
vishynotmyname: even if you don't pass one in to the request16:33
notmyname(I'm really not trying to be difficult here :-)  )16:33
europagnu111: yes16:33
jsavaknotmyname: so when you get the response back on the validate call without tenants, then that token is unscoped and has no access to a tenant -16:34
*** katkee has quit IRC16:34
notmynamejsavak: the initial client request? I have not control over that16:34
*** jtanner has quit IRC16:34
europagnu111: with sudo, i was able to execute "sudo euca-add-keypair mykey > mykey.priv", but when I look at "mykey.priv", I see the following "EC2_ACCESS_KEY environment variable must be set. Connection failed", however, when I look at "env" the EC2_ACCESS_KEY is there16:35
vishydolphm, jsavak: default tenant still exists, right?16:35
jsavaknotmyname: which service calls keystone with the username/password to authN? It's not swift?16:35
notmynamejsavak: the end user does that16:36
dolphmvishy: yes16:36
vishynotmyname: the end user has the option of using auth2.0 and passing a tenant16:36
dolphmvishy: and yes on your default tenant => scoped token question16:36
dolphmauto-scoped16:36
vishynotmyname: but if you want things to work with 1.016:36
vishynotmyname: then you just need to create the user with a default tenant16:37
kbringarddoes nova do anything to prevent oversubscription to resources?16:37
*** dprince has joined #openstack16:37
vishynotmyname: and your token will be scoped by default and you will get tenant_id and tenant_name back from validation16:37
*** aliguori has quit IRC16:37
kbringardI know it didn't in the past, but I was wondering if something had changed in the new scheduler16:37
notmynamevishy: so change the initial client request?16:37
vishynotmyname: no, change the way you create users in keystone16:38
*** barnes has joined #openstack16:38
*** bluetux has quit IRC16:38
vishynotmyname: should be transparent to the client16:38
gnu111europa: anything helpful in the nova logs? I am out of ideas.16:38
*** ewindisch has joined #openstack16:38
notmynamevishy: let me play a little more (and eat lunch). to be continued...16:38
jsavaknotmyname: if the end user calls keystone directly to authN - they should pass in a tenant to make it a scoped token that they pass to you. Swift should operate under the assumption that it is a scoped token - and if an unscoped token is passed then the access to tenant resources is denied16:39
vishynotmyname: I just realized that it isn't validating in the current middleware16:39
*** hggdh has quit IRC16:40
*** irahgel has left #openstack16:40
*** jtanner has joined #openstack16:40
vishynotmyname: we will submit a patch to validate the tenant_id / account_id16:40
*** bsza has joined #openstack16:40
vishynotmyname: cancel that, it is checking the path using some simple logic16:41
vishynotmyname: so it should actually just work with the existing middleware16:41
*** hggdh has joined #openstack16:42
vishydolphm: is tenant_name unique?16:42
*** mgoldmann has quit IRC16:42
dolphmvishy: yes16:44
dolphmvishy: not sure why though..16:44
*** bsza-I has joined #openstack16:44
vishydolphm: well i'm trying to decide what to do with urls16:44
vishyhttp://somecloud.com/1.0/myusername/servers/16:45
vishyis a lot nicer than16:45
vishyhttp://somecloud.com/1.0/xxxx-xxxxx-xxxx-xxxx/servers16:45
vishyso if we want to use username in that case, it has to be unique16:46
*** jdg has joined #openstack16:46
*** hggdh has quit IRC16:46
vishy+ it gives us the ability to move resources to a different id by just making a change in keystone16:46
vishywhich could be useful16:46
dolphmvishy: fair enough16:47
*** zul has joined #openstack16:47
vishythat's the only reason that i can think of16:47
*** hggdh has joined #openstack16:47
*** koolhead17|afk has quit IRC16:47
dolphmvishy: if we're going to use names like that, i think keystone should automatically slugify names AND guarantee uniqueness, so that you don't have to do any url-encoding etc16:48
dolphmvishy: right now, names are full UTF-816:48
vishyinteresting16:48
vishyok i guess we should keep using id then :)16:48
jdgAnybody know why I'm getting "Unable to run euca--describe-images.  Is environment for euca- set up?" error when trying to do uec-publish-tarball?16:48
dolphmi'll include slugs in identity 3.0 :)16:49
vishyjdg: did you source creds?16:49
vishyjdg: and is the ip in your creds correct?16:49
jdgvishy:Nope, I must have missed that in the doc (http://wiki.openstack.org/RunningNova#NovaStartInstance)16:49
jdgvishy: appears I've missed a number of steps16:50
vishyThen type or copy/paste the following to source the novarc file in your current working directory.16:50
vishy. novarc16:50
vishythat is the part where you source creds :)16:50
jdgOk, I'll give that a try THANKS!!16:50
jdgvishy: I must have done something horribly wrong, I have no .creds or .novarc file16:52
jdgPerhaps I need to start at the beginning of the install doc again16:52
*** zul has quit IRC16:53
vishyjdg: perhaps :)16:54
*** nati2 has quit IRC16:54
*** nati2 has joined #openstack16:55
*** zul has joined #openstack16:56
*** aliguori has joined #openstack16:57
europajdg: I'm having the same problem16:58
vishyeuropa, jgd: do you have any errors in your nova-manage.log?16:59
europajdg: it occurs as I am trying to upload a virtual disk image17:00
*** zul has quit IRC17:00
*** zul has joined #openstack17:00
*** marrusl has quit IRC17:00
europavishy: on tail, it says, "1146, "Table 'nova.networks' doesn't exist"17:00
vishyeuropa: how did you install?17:01
vishyit looks like your db has not been created17:01
europavishy: hmm, i followed the instructions from http://www.rhonabwy.com/wp/2011/09/23/installing-openstack-diablo-release-nova-and-glance/17:02
vishydid you change db configuration at some point?17:02
vishyeuropa: did you do this part?17:03
vishymysql -popenstack -e 'CREATE DATABASE nova;'17:03
vishynova-manage db sync17:03
europavishy: yes17:03
europavishy: let me check the db17:03
vishythat should have created the tables for you17:03
vishyperhaps look at the beginning of your nova-manage.log17:03
vishyand see if there is an error during migration17:04
europavishy: OK17:04
*** jtanner has quit IRC17:05
*** cereal_bars has quit IRC17:07
*** rustam has quit IRC17:08
*** localhost has quit IRC17:08
*** localhost has joined #openstack17:09
*** zul has quit IRC17:10
*** zul has joined #openstack17:10
*** obino has joined #openstack17:14
uvirtbotNew bug: #862574 in glance "glance-api.conf defines a filesystem_store_datadir variable" [Undecided,Invalid] https://launchpad.net/bugs/86257417:16
uvirtbotNew bug: #862576 in openstack-ci "PassLib- Keystone Additional package dependency" [Undecided,New] https://launchpad.net/bugs/86257617:16
*** koolhead17 has joined #openstack17:17
*** zul has quit IRC17:17
*** nyeates has quit IRC17:21
*** jtanner has joined #openstack17:22
*** zul has joined #openstack17:25
*** nacx has quit IRC17:27
*** dolphm has quit IRC17:27
*** alandman has quit IRC17:28
*** bcwaldon has quit IRC17:29
*** dolphm has joined #openstack17:30
enmandI've got a second nova-compute node yet up, and it can run vms, but vms on the second nova-compute node can't seem to access the Internet, and if I assocaite a public address with it, no other machines can access it17:30
enmandBut I can ssh into it from the main server with nova-compute, nova-api, nova-network, etc.17:30
*** jollyxen has joined #openstack17:31
*** zul has quit IRC17:32
*** dprince has quit IRC17:32
*** zul has joined #openstack17:38
*** nati2 has quit IRC17:39
*** nati2 has joined #openstack17:39
*** adjohn has joined #openstack17:41
*** mrjazzcat has joined #openstack17:45
*** ejat has quit IRC17:45
*** dghditc has joined #openstack17:45
*** mrjazzcat has left #openstack17:45
*** jhtran has joined #openstack17:46
*** joshua_d has quit IRC17:46
*** dolphm has quit IRC17:48
*** GeoDud has joined #openstack17:48
*** dysinger has joined #openstack17:50
*** Eyk^off is now known as Eyk17:50
*** MarcMorata has quit IRC17:53
*** cp16net has joined #openstack17:56
cp16netwhoops17:56
*** dysinger has quit IRC17:59
jhtrananyone with large openstack deployments have any issue of network controller robustness or scalability?17:59
*** dysinger has joined #openstack17:59
*** jollyxen has quit IRC18:01
vishyjhtran: i think most people have switched over to ha mode18:01
vishyjhtran: so no "network-controller"18:01
jhtranvishy:   you can do that in nova?18:02
jhtranyou have any documents referencing that?18:02
vishyjhtran: yup18:02
vishyjhtran: create the network with multi_host=T18:02
jhtraninteresting!18:02
vishyand run a nova-network on all compute hosts instead of the node with api/etc18:02
*** rustam has joined #openstack18:03
vishyjhtran: http://unchainyourbrain.com/openstack/13-networking-in-nova18:03
jhtranah i see.  so that way all the public interfaces come up local to each of the dom018:03
*** mattray has joined #openstack18:03
vishyjhtran: this is w/ kvm btw18:03
vishyjhtran: it theoretically works with xenserver as well but it is a bit hard to set up18:03
jhtranis this the 'New HA option' section?18:03
jhtranin the link18:03
vishyyeah18:04
vishygtg18:04
vishygl18:04
*** vishy is now known as vishy-afk18:04
jhtranexcellent.  thanks!18:04
*** neogenix has joined #openstack18:06
*** mdomsch has quit IRC18:07
*** tzn has joined #openstack18:08
*** johnmark has joined #openstack18:08
*** cereal_bars has joined #openstack18:10
*** rustam has quit IRC18:10
*** darraghb has quit IRC18:11
uvirtbotNew bug: #862629 in nova "tests fail with newer kombu versions" [Undecided,New] https://launchpad.net/bugs/86262918:11
uvirtbotNew bug: #862633 in nova "OS API consoles create() fails because of an extra arg" [Undecided,New] https://launchpad.net/bugs/86263318:11
*** rustam has joined #openstack18:11
*** fabiand__ has joined #openstack18:15
*** tzn has quit IRC18:15
uvirtbotNew bug: #862637 in nova "FLAGS.instance_name_template needs to be more flexible" [Undecided,New] https://launchpad.net/bugs/86263718:16
*** rustam has quit IRC18:16
uvirtbotNew bug: #862634 in nova "euca-register does not respect --kernel" [Undecided,Confirmed] https://launchpad.net/bugs/86263418:17
*** dirkx_ has joined #openstack18:18
*** MarkAtwood has quit IRC18:18
*** preston has quit IRC18:24
*** fabiand__ has quit IRC18:24
*** mies_ has quit IRC18:25
*** mies has joined #openstack18:25
*** adam_g has joined #openstack18:25
*** Ryan_Lane has joined #openstack18:26
*** lionel has quit IRC18:26
*** lionel has joined #openstack18:27
*** dirkx_ has quit IRC18:28
*** fabiand__ has joined #openstack18:37
johnmark443[A[A[B[B[A[A[A[A[A[A[A[A3418:37
notmynamejohnmark: looks like my 3 year-old got a hold of your irc client :-)18:37
kbringardyou OK there, johnmark?18:37
johnmarknotmyname: oops :)18:37
johnmarkdamn ssh session was hung, and random typing ensued18:38
*** baynaa has quit IRC18:38
* johnmark facepalms18:38
*** marrusl has joined #openstack18:41
*** nati2_ has joined #openstack18:42
*** ziyadb has joined #openstack18:43
*** krow has joined #openstack18:43
uvirtbotNew bug: #862649 in nova "OpenStack v1.1 API: cloudServersFault should be computeFault " [Medium,Confirmed] https://launchpad.net/bugs/86264918:44
*** nati2 has quit IRC18:44
*** dprince has joined #openstack18:45
uvirtbotNew bug: #862653 in nova "'VDI resize failed' errors on nova-compute (XenServer)" [Critical,Confirmed] https://launchpad.net/bugs/86265318:46
*** dprince has quit IRC18:47
*** adjohn has quit IRC18:47
*** MarkAtwood has joined #openstack18:50
*** rustam has joined #openstack18:50
*** nerdstein has joined #openstack18:51
*** po has quit IRC18:52
*** marrusl has quit IRC18:54
*** Tsel has quit IRC18:56
uvirtbotNew bug: #862658 in nova "fixed_ips.address = ARRAY cast errors with Postgres" [Critical,Confirmed] https://launchpad.net/bugs/86265818:57
uvirtbotNew bug: #862664 in glance "Repeated connection reset errors when returning ChunkedFile" [Medium,Confirmed] https://launchpad.net/bugs/86266418:57
*** ewindisch has quit IRC18:59
*** ewindisch has joined #openstack19:00
*** pquerna has quit IRC19:01
*** fabiand__ has left #openstack19:02
*** WormMan has quit IRC19:05
*** ziyadb has quit IRC19:05
*** ldlework has joined #openstack19:06
uvirtbotNew bug: #862672 in nova "OSAPI 'create image' location header is missing tenant ID " [Medium,Confirmed] https://launchpad.net/bugs/86267219:06
*** neogenix has quit IRC19:06
*** pquerna has joined #openstack19:06
*** johnmark has quit IRC19:08
*** johnmark has joined #openstack19:09
*** MarcMorata has joined #openstack19:10
*** mattrobinson has quit IRC19:11
*** pquerna has quit IRC19:11
*** adjohn has joined #openstack19:11
*** bcwaldon has joined #openstack19:11
*** mattrobinson has joined #openstack19:11
*** pquerna has joined #openstack19:12
*** MarkAtwood has quit IRC19:16
*** dysinger has quit IRC19:17
*** MarcMorata has quit IRC19:18
uvirtbotNew bug: #862680 in nova "EC2 api call TerminateInstances returns the wrong response" [Undecided,New] https://launchpad.net/bugs/86268019:19
*** Ryan_Lane has quit IRC19:20
*** bourke_ has joined #openstack19:20
*** Ryan_Lane has joined #openstack19:21
*** wilmoore has joined #openstack19:22
*** cloud0 has quit IRC19:23
*** cloud0_ has joined #openstack19:23
*** bourke has quit IRC19:23
*** bz has quit IRC19:23
*** blakeyeager has quit IRC19:23
*** bz has joined #openstack19:24
*** clopez has quit IRC19:24
*** blakeyeager has joined #openstack19:24
*** ldlework has quit IRC19:24
*** jamespage has quit IRC19:25
*** ldlework has joined #openstack19:25
*** pquerna has quit IRC19:25
*** code_franco has quit IRC19:25
*** enmand has quit IRC19:25
*** enmand has joined #openstack19:25
*** pquerna_ has joined #openstack19:26
*** dysinger has joined #openstack19:26
*** rnorwood has quit IRC19:26
*** mjfork has joined #openstack19:26
*** nyeates has joined #openstack19:26
mjforki have a new glance + nova + swift installation. i am able to boot the ttylinux image, but my image built using "Creating a Linux Image19:29
mjfork" section of the documentation fails to boot with"could not read the boot disk" "no bootable device"19:29
*** bradm has quit IRC19:29
*** bradm has joined #openstack19:30
*** pquerna_ has quit IRC19:30
gnu111mjfork: that usually means there were some problems with the disk image. do you see any files at /var/lib/nova/instances ?19:31
mjforkyes, there is   10GB file in _base that was qcow2 backing file and then disk and disk.local in the instance dir19:32
mjforkmy base image uploaded to glance is only 5GB though19:32
*** ldlework has quit IRC19:34
*** MarkAtwood has joined #openstack19:35
*** reed has quit IRC19:35
*** reed has joined #openstack19:35
*** ldlework has joined #openstack19:36
*** pquerna has joined #openstack19:37
*** rnorwood has joined #openstack19:38
gnu111mjfork: did you upload another image? or just the tty one?19:39
mjforki have done TTY (AMI) and this custom one I built which is a RAW19:39
mjforkwell, i assume it is raw, i used glance add name=<name> < serverfinal.img19:40
mjforkwhich marked it as raw19:40
gnu111libvirtd started properly?19:40
mjforkyes, from what i can tell, at least a tty image comes up and can be SSHed too19:40
*** jdg has quit IRC19:41
*** reed has quit IRC19:41
*** wilmoore has quit IRC19:43
*** pquerna has quit IRC19:44
*** pquerna has joined #openstack19:44
mjforki downloaded one of the Ubuntu AMIs from http://wiki.openstack.org/RunningNova#Get_an_image, uploaded it, and it works great.19:45
uvirtbotNew bug: #862702 in openstack-manuals "link for keystone on front page is mislinked" [Undecided,New] https://launchpad.net/bugs/86270219:46
*** preston has joined #openstack19:48
*** nati2_ has quit IRC19:49
*** jedi4ever has joined #openstack19:49
chadhI'm having problems with a simple multinode installation.  Anyone willing to help?  I have some details on the forums: http://forums.openstack.org/viewtopic.php?f=9&t=34719:50
*** Tsel has joined #openstack19:51
*** reed has joined #openstack19:53
*** europa has quit IRC19:53
*** shoof has quit IRC19:53
*** Xenith has quit IRC19:53
mjforkchadh = is this diablo?19:54
*** bradm has quit IRC19:54
chadhmjfork: yes (guess I should have mentioned that).  from the 2011.3 repo19:54
*** johnmark has quit IRC19:55
*** mattrobinson has quit IRC19:55
*** holoway has quit IRC19:55
mjforkok, i think you need to use --glance_api_servers=<host>:929219:55
*** jedi4ever has quit IRC19:55
mjforkin place of --glance_host19:55
*** pquerna has quit IRC19:56
*** PerlStalker has left #openstack19:56
*** mattrobinson has joined #openstack19:56
*** johnmark has joined #openstack19:57
*** bradm has joined #openstack19:57
chadhmjfork: awesome.  went a lot further that time.  getting a connection timeout related to greenlet now19:57
chadh"nova [-] model server went away"19:58
*** crito_ has joined #openstack19:58
*** llang629 has joined #openstack19:58
*** Joonwon has quit IRC19:59
chadhAlso, I am getting this "dead loop on virtual device vlan100, fix it urgently" message.  is that normal?20:00
crito_hey, if use nova client with the 1.1 api i don't retrieve any ip address of the server20:00
*** dolphm has joined #openstack20:00
mjforkno idea on that - looks like you are doing flat networking?20:00
*** pquerna has joined #openstack20:00
chadhmjfork: yes, for now20:00
crito_http://pastebin.com/8bsULAFf#20:00
mjforksounds benign to me..but no idea20:00
*** holoway has joined #openstack20:00
*** pquerna has quit IRC20:01
*** pquerna has joined #openstack20:01
*** preston has quit IRC20:01
crito_I get a private_ip and public_ip against the 1.0 api20:01
*** jamespage has joined #openstack20:01
crito_i use the git repository of python-novaclient20:02
crito_the instances do have the ip20:02
crito_i can ping20:02
*** Chat4099 has joined #openstack20:03
crito_how can i retrieve the ip adresses of my instance with the 1.1 api?20:04
*** holoway has quit IRC20:05
*** mattrobinson has quit IRC20:05
*** bradm has quit IRC20:05
*** Chat4099 has quit IRC20:07
mjforkyour paste bin doesn't have 1.1 output, assuming it is not there?20:07
*** pquerna has quit IRC20:07
*** bradm has joined #openstack20:07
*** mattrobinson has joined #openstack20:07
*** johnmark_ has joined #openstack20:08
crito_the second output is 1.120:08
*** johnmark has quit IRC20:08
crito_i just copy and pasted the novarc parts wrong20:08
crito_there are 2 outputs20:08
crito_the upper one is 1.020:08
crito_the lower one is 1.120:08
mjforkok20:08
mjforkdiablo release install?20:09
*** llang629 has left #openstack20:09
*** Xenith has joined #openstack20:09
crito_yes20:09
*** holoway has joined #openstack20:09
*** sm has joined #openstack20:09
crito_is this a bug of novaclient?20:09
*** sm is now known as Guest4776420:09
crito_if so i would look into the code and open a bug report20:09
crito_but i just started using novaclient20:10
mjforki don't know, did you search launchpad?20:10
mjforktheres where i am going now20:10
crito_k20:10
*** objectiveous has joined #openstack20:10
*** johnmark_ is now known as johnmark20:11
*** marrusl has joined #openstack20:11
*** pquerna has joined #openstack20:12
*** cp16net has quit IRC20:13
crito_i also looked at https://github.com/rackspace/python-novaclient for bug reports20:15
*** koolhead17 has quit IRC20:15
mjforktry euca-describe-instances20:16
uvirtbotNew bug: #862730 in keystone "password hashing should support bcrypt" [Undecided,New] https://launchpad.net/bugs/86273020:16
*** MarkAtwood has quit IRC20:17
*** dolphm has quit IRC20:17
*** johnmark has quit IRC20:17
*** nerens has joined #openstack20:18
*** johnmark has joined #openstack20:18
*** MarcMorata has joined #openstack20:18
*** MarkAtwood has joined #openstack20:21
*** dolphm has joined #openstack20:21
*** MarkAtwood has quit IRC20:23
crito_mjfork: http://paste.openstack.org/show/2613/20:24
crito_euca-describe-instances on the server returns me several lines of similar output20:24
crito_i can see the correct ip addresses20:25
*** AhmedSoliman has joined #openstack20:29
*** xtor_ has quit IRC20:32
*** extor has joined #openstack20:33
*** MarcMorata has quit IRC20:33
crito_if I understand the novaclient code correct, it iterates over the _info dict and sets the attributes on the server instance20:38
crito_there it retrieves the addresses dict20:39
crito_but it is empty for me if I run the command on the python interpreter20:39
crito_http://paste.openstack.org/show/2616/20:39
*** dirkx_ has joined #openstack20:46
*** dirkx_ has quit IRC20:46
*** dirkx_ has joined #openstack20:47
chadhI am following the cssoss blog about how to set up openstack, and I wonder if there is a network bug in there instructions.20:47
chadhThe ip address for the bridge is configured on 192.168.0.0/16, but the network added to nova-network is 192.168.3.0/24.20:48
chadhOn my system, that creates two route table entries, and I think is causing my "dead loop" log entries20:48
*** jollyxen has joined #openstack20:48
*** Vadim has quit IRC20:49
*** imsplitbit has joined #openstack20:49
*** dirkx_ has quit IRC20:50
*** imsplitbit has quit IRC20:50
*** bsza has quit IRC20:50
*** imsplitbit has joined #openstack20:50
*** jollyxen_ has joined #openstack20:52
uvirtbotNew bug: #862752 in keystone "Auth call returns None as TenantId" [Undecided,New] https://launchpad.net/bugs/86275220:53
*** jsavak has quit IRC20:54
*** wilmoore has joined #openstack20:55
*** mjfork has quit IRC20:55
*** jollyxen has quit IRC20:55
*** cp16net has joined #openstack20:56
*** cp16net has quit IRC20:57
*** cp16net has joined #openstack20:58
*** dirkx_ has joined #openstack21:03
*** WormMan has joined #openstack21:06
*** cereal_bars has quit IRC21:12
*** TheOsprey has quit IRC21:13
*** bcwaldon has quit IRC21:13
*** koolhead17 has joined #openstack21:14
*** dirkx_ has quit IRC21:16
*** cereal_bars has joined #openstack21:21
*** hbetts has quit IRC21:22
*** ameade has quit IRC21:23
*** hbetts has joined #openstack21:23
*** gnu111 has left #openstack21:23
*** PotHix has quit IRC21:24
*** robbiew is now known as robbiew-afk21:25
*** jtanner has quit IRC21:25
*** marrusl has quit IRC21:26
*** marrusl has joined #openstack21:27
*** martine has quit IRC21:28
*** Eyk is now known as Eyk^off21:29
*** imsplitbit has quit IRC21:30
*** mkinitrd has joined #openstack21:32
*** heckj has joined #openstack21:36
*** AhmedSoliman has quit IRC21:36
*** benrodrigue has quit IRC21:37
*** dirkx_ has joined #openstack21:38
*** jtanner has joined #openstack21:38
*** pothos has quit IRC21:39
*** ziyadb has joined #openstack21:40
*** pothos_ has joined #openstack21:41
*** pothos_ is now known as pothos21:42
*** rnirmal has quit IRC21:43
*** ohnoimdead has joined #openstack21:43
*** msivanes has quit IRC21:43
*** jtanner_ has joined #openstack21:44
*** pothos has quit IRC21:44
*** pothos_ has joined #openstack21:44
*** blakeyeager has quit IRC21:45
*** mkinitrd has quit IRC21:45
*** pothos_ is now known as pothos21:46
*** pquerna has quit IRC21:47
*** pquerna has joined #openstack21:47
*** sgd has joined #openstack21:48
*** ziyadb has quit IRC21:50
sgdIs it possible to deploy nodes that do not have virtualization using openstack?21:50
*** nerens has quit IRC21:51
*** ziyadb has joined #openstack21:52
kbringardsgd: you mean like, images that don't have virtio?21:52
sgdkbringard: yes, exactly21:52
kbringardyea, but you'll have to make some changes to the libvirt.xml.template21:53
kbringardthe main one being you'll need to change the driver to ide or scsi21:53
kbringardand then make sure the root images are hda or sda or whatever21:53
kbringardbut I've done it before, yes21:53
sgdok thank you.21:54
kbringardif you've got a mix of both, then you won't want to change the template, you'll have to come up with a way (maybe using zones and zone capabilities?) to determine where machines that do or don't need virtio go21:54
sgdYes, I think we have a general grouping of nodes we want using no virtio.  If we need more flexibility, then I will investigate zones.21:57
kbringardok, yea, then you should be able to change the libvirt.xml.tempate21:57
kbringardmake sure you change it on all the compute nodes, not just your controller21:57
kbringard:-)21:57
sgdIs it against recommendation to host the template from shared storage?21:58
kbringardhmmm, shouldn't be a problem21:59
kbringardbut I've never tried it, so I don't know what kind of issues you may or may not encounter21:59
kbringardok, i'm out22:01
kbringardhave a good day all22:01
*** kbringard has quit IRC22:01
*** jtanner_ is now known as jtanner|g7322:02
*** rods has quit IRC22:03
*** dysinger has quit IRC22:06
*** dysinger has joined #openstack22:07
*** LiamMac has quit IRC22:08
*** mfer has quit IRC22:09
*** aliguori has quit IRC22:11
*** jdurgin has quit IRC22:12
*** ohnoimdead has quit IRC22:13
*** jfluhmann has quit IRC22:14
uvirtbotNew bug: #862839 in nova "listing of instances takes progressively longer the more instances there are" [Undecided,New] https://launchpad.net/bugs/86283922:15
*** Razique has joined #openstack22:16
RaziqueHi all22:16
Raziquequick question, in nova wiki, there is : Next, push your changes for review with:22:16
Raziquegit review22:16
RaziqueGo to the review site itself to request a merge with the openstack-manuals project, at review.openstack.org.22:16
RaziqueWhere is the option for requesting a merge ? :D22:16
dolphmRazique: what are you looking to accomplish exactly?22:17
RaziqueI've updated a file22:18
Raziquemy commit appears on review.openstack.org22:18
Raziquebut the wiki says now I've to request a merge with the project$22:18
Razique"Go to the review site itself to request a merge with the openstack-manuals project, at review.openstack.org."22:18
RaziqueI can't find the option for merging my changes with the project22:18
*** sgd has quit IRC22:20
*** nyeates has quit IRC22:22
dolphmRazique: if it appears at review.openstack.org, you're done - until it's reviewed22:23
Raziqueah ok, so http://wiki.openstack.org/Documentation/HowTo contains an extra step, which is wrong in fact22:23
dolphmRazique: after proposing a review, if your review is approved, jenkins will step in and perform the merge for you22:24
Raziqueohh ok22:24
Raziquecool then22:24
Raziqueon the wiki, we should remove the line then22:24
dolphmRazique: i think that how to implies there's a step there, but there's nothing you necessarily need to do, unless your review is rejected and needs to be revised22:25
Raziqueok22:25
Raziquethanks a ton for the clarification :)22:25
dolphmnp22:25
*** crito_ has quit IRC22:25
RaziqueI pretty new to this way of working so :D22:25
dolphmRazique: everyone is :)22:25
dolphmbut I think i was the guinea pig for a lot of it lol, so i can probably answer a lot of questions22:26
Raziqueahah, nice :) the wiki is pretty well explained though22:26
Raziquethere is just a small mistake on the gerrit hook22:27
Raziquebackticks are escaped, thus the line ain't interpreted22:27
RaziqueI'll see with Anne for that I guess22:27
Raziquetime to sleep, thanks dolphm22:28
Raziquecya :)22:28
*** andy-hk has joined #openstack22:28
*** Razique has quit IRC22:28
*** lborda has quit IRC22:30
*** slriv`` has quit IRC22:32
*** slriv has joined #openstack22:33
*** cereal_bars has quit IRC22:36
*** andy-hk has quit IRC22:37
*** dirkx_ has quit IRC22:43
*** dirkx_ has joined #openstack22:43
*** ohnoimdead has joined #openstack22:44
*** haji has joined #openstack22:45
*** haji is now known as magg22:45
*** slriv has quit IRC22:45
*** mattray has quit IRC22:45
*** jamespage has quit IRC22:46
*** jamespage has joined #openstack22:47
*** jamespage has joined #openstack22:47
*** andy-hk has joined #openstack22:47
*** dirkx_ has quit IRC22:47
*** reed has quit IRC22:48
*** rustam_ has joined #openstack22:49
*** rustam has quit IRC22:49
*** reed has joined #openstack22:50
*** hbetts has quit IRC22:53
*** infinite-scale has joined #openstack22:53
*** infinite-scale is now known as scalability-junk22:53
*** ziyadb has quit IRC22:53
chadhcan you specify a subnet larger than a /8 to nova-manage network create ?22:55
*** marrusl has quit IRC22:56
uvirtbotNew bug: #862853 in nova "Excessive number of calls to keystone auth on instance boot" [Undecided,New] https://launchpad.net/bugs/86285322:56
*** vishy-afk is now known as vishy22:58
*** ohnoimdead has quit IRC22:58
adam_gis there any way to cast a new instance to a specific  compute node?22:59
vishychadh: larger than a /8?23:02
vishyyou have a /7 lying around?23:02
chadhvishy: heh, sorry.  /2423:02
vishyah smaller23:02
vishyyes23:02
vishyjust make sure num_networks * network_size fits in your cidr23:03
*** marrusl has joined #openstack23:04
chadhvishy: I tried 192.168.0.0/16 101 65434, and nova-manage through an exception: "count outside of current IP subnet boundary"23:05
tjoyso that's 100 networks of 65k IPs each23:06
tjoythat's like a /1423:06
chadhShould be 255 networks of 255 each23:06
chadhminus a few23:06
*** lts has quit IRC23:06
*** rnorwood has quit IRC23:06
chadherr, 256*256 - a little bit23:07
*** v0id has quit IRC23:07
tjoyso use 192.168.0.0/16 250 25023:07
chadhoh, the first argument is the number of subnets?23:08
chadhI thought it was the dhcp_start23:08
tjoynope23:10
tjoyi forget which is which but one is the number of networks, the other is the number of IPs per network23:10
maggis the keystone ppa fixed already?23:15
*** marrusl has quit IRC23:15
*** scalability-junk has quit IRC23:15
*** krow has quit IRC23:15
*** tryggvil_ has quit IRC23:15
*** kernelfreak has quit IRC23:15
chadhactually, is there any documentation for nova-manage's network functionality.23:16
*** scalability-junk has joined #openstack23:16
dolphmmagg: yes? it's kept up to date with trunk23:18
*** krow has joined #openstack23:18
*** tryggvil_ has joined #openstack23:18
*** kernelfreak has joined #openstack23:18
*** kernelfreak has quit IRC23:18
*** koolhead17 has quit IRC23:20
maggdolphm: oh ok, but i was getting another error yesterday i thought maybe it got fixed23:26
magglook: http://pastebin.com/zXE4i0jk23:26
maggbrb23:27
*** magg has quit IRC23:27
*** pixelbeat has quit IRC23:29
*** lorin1 has quit IRC23:30
*** magg has joined #openstack23:30
maggi think its a problem with the path again23:31
chadhhmm, when I try to create a single network with 65536 ips, only a /17 is created.  weird23:31
*** wilmoore has quit IRC23:32
*** rsampaio has quit IRC23:33
*** dolphm has quit IRC23:34
maggkeystone from the ppa doesn't install its files in /usr/keystone/ but it looks for files there23:35
maggweird23:36
*** heckj has quit IRC23:36
*** miclorb_ has joined #openstack23:38
*** nati2 has joined #openstack23:41
*** nyeates has joined #openstack23:43
*** jeblair has quit IRC23:43
*** ahasenack has quit IRC23:43
*** mfer has joined #openstack23:45
*** sto has quit IRC23:49
*** jeblair has joined #openstack23:53
*** anotherjesse has joined #openstack23:53
*** adjohn has quit IRC23:54
*** adjohn has joined #openstack23:54
*** Ryan_Lane has quit IRC23:54
*** nati2 has quit IRC23:54
*** sto has joined #openstack23:55
« Wednesday, 2011-09-28 Index Friday, 2011-09-30 »

Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!