Friday, 2019-12-13

« Thursday, 2019-12-12 Index Saturday, 2019-12-14 »
*** mattw4 has quit IRC00:01
*** igordc has quit IRC00:12
*** sgw has quit IRC00:25
*** tobberydberg has quit IRC00:35
*** johanssone has quit IRC00:36
*** tobberydberg has joined #zuul00:37
*** fdegir has quit IRC00:37
*** fdegir3 has joined #zuul00:37
*** johanssone has joined #zuul00:39
openstackgerritIan Wienand proposed zuul/nodepool master: Add container functional test  https://review.opendev.org/69346400:45
openstackgerritIan Wienand proposed zuul/nodepool master: Dockerfile: install nodepool-builder dependencies  https://review.opendev.org/69330600:45
openstackgerritIan Wienand proposed zuul/nodepool master: Add a releases container job  https://review.opendev.org/69881800:45
*** saneax has quit IRC00:51
*** sgw has joined #zuul00:52
*** jamesmcarthur has joined #zuul00:55
*** jamesmcarthur has quit IRC01:28
*** jamesmcarthur has joined #zuul02:09
openstackgerritIan Wienand proposed zuul/nodepool master: Add container with siblings functional test  https://review.opendev.org/69346402:29
openstackgerritIan Wienand proposed zuul/nodepool master: Dockerfile: install nodepool-builder dependencies  https://review.opendev.org/69330602:29
openstackgerritIan Wienand proposed zuul/nodepool master: Add a releases container job  https://review.opendev.org/69881802:29
*** jamesmcarthur has quit IRC02:44
*** swest has quit IRC02:45
*** jamesmcarthur has joined #zuul02:47
*** jamesmcarthur has quit IRC02:48
*** swest has joined #zuul03:01
*** bhavikdbavishi has joined #zuul03:09
*** jamesmcarthur has joined #zuul03:10
*** bhavikdbavishi has quit IRC03:13
*** jamesmcarthur has quit IRC03:34
*** jamesmcarthur has joined #zuul03:37
*** fdegir3 has quit IRC03:37
*** fdegir3 has joined #zuul03:38
*** jamesmcarthur has quit IRC03:53
*** rlandy has quit IRC04:07
*** mhu has quit IRC04:46
*** raukadah is now known as chkumar|rover05:08
openstackgerritIan Wienand proposed zuul/nodepool master: Add container-with-siblings functional test  https://review.opendev.org/69346405:11
openstackgerritIan Wienand proposed zuul/nodepool master: Dockerfile: install nodepool-builder dependencies  https://review.opendev.org/69330605:11
openstackgerritIan Wienand proposed zuul/nodepool master: Add a container-with-releases functional test  https://review.opendev.org/69881805:11
openstackgerritIan Wienand proposed zuul/nodepool master: Functional tests - use common verification script  https://review.opendev.org/69883405:28
*** swest has quit IRC05:32
openstackgerritIan Wienand proposed zuul/nodepool master: Add a container-with-releases functional test  https://review.opendev.org/69881805:47
openstackgerritIan Wienand proposed zuul/nodepool master: Functional tests - use common verification script  https://review.opendev.org/69883405:47
*** pcaruana has joined #zuul06:02
*** swest has joined #zuul06:55
*** logan- has quit IRC07:09
*** logan_ has joined #zuul07:10
*** logan_ is now known as logan-07:10
*** saneax has joined #zuul07:44
*** hashar has joined #zuul07:48
*** jcapitao has joined #zuul08:01
*** fdegir3 is now known as fdegir08:18
*** jangutter has joined #zuul08:33
*** tosky has joined #zuul08:40
*** jpena|off is now known as jpena08:54
*** themroc has joined #zuul09:21
tobiashmnaser: sorry for off topic here, do you know what's the process how we could revive this spec: https://review.opendev.org/572805 ?09:33
tobiashwe found that this (and the according implementation) is crucual for our cloud with higher load when combining ceph storage with local nvme disks09:34
tobiashit might be interesting for you as well09:34
openstackgerritIan Wienand proposed zuul/nodepool master: Dockerfile: install nodepool-builder dependencies  https://review.opendev.org/69330609:41
openstackgerritIan Wienand proposed zuul/nodepool master: Add a container-with-releases functional test  https://review.opendev.org/69881809:41
openstackgerritIan Wienand proposed zuul/nodepool master: Functional tests - use common verification script  https://review.opendev.org/69883409:41
openstackgerritTobias Henkel proposed zuul/zuul master: Log apscheduler triggers  https://review.opendev.org/69885809:51
*** mhu has joined #zuul09:52
tobiashzuul-maint: we're trying to hunt down occasionally missed timer triggers. This should aid with debugging ^09:59
tobiashit might be some sort of race wrt reconfigurations but we want to rule out missing triggers from apscheduler10:01
openstackgerritTobias Henkel proposed zuul/zuul master: Don't set ansible_python_interpreter if in vars  https://review.opendev.org/69877410:48
*** yolanda has quit IRC10:53
openstackgerritMerged zuul/zuul master: Fix exceptions on reconfig with changing window  https://review.opendev.org/69702311:06
openstackgerritMerged zuul/zuul master: Fix data return child jobs not skipped on failure  https://review.opendev.org/69871211:07
*** yolanda has joined #zuul11:25
openstackgerritTobias Henkel proposed zuul/zuul master: Support podman for test setup  https://review.opendev.org/69888411:45
*** jangutter has quit IRC11:47
*** jangutter_ has joined #zuul11:47
*** mauved has quit IRC11:50
openstackgerritTobias Henkel proposed zuul/zuul master: Fix canceling builds in starting phase  https://review.opendev.org/68441411:52
*** mauved has joined #zuul11:52
*** jcapitao is now known as jcapitao|afk11:54
openstackgerritTobias Henkel proposed zuul/zuul master: Enforce sql connections for scheduler and web  https://review.opendev.org/63047211:57
*** rfolco has joined #zuul11:58
openstackgerritTobias Henkel proposed zuul/zuul master: Defer setting build result to event queue  https://review.opendev.org/66664312:03
openstackgerritTobias Henkel proposed zuul/zuul master: Add support for smart reconfigurations  https://review.opendev.org/65211412:06
openstackgerritMerged zuul/zuul master: Don't process builds not longer in job graph  https://review.opendev.org/69742012:12
*** EmilienM has quit IRC12:12
*** EmilienM has joined #zuul12:13
*** EmilienM is now known as EvilienM12:17
*** jpena is now known as jpena|lunch12:29
*** mgoddard has quit IRC12:30
*** reiterative has joined #zuul12:31
*** hashar has quit IRC12:50
mnasertobiash: i think someone would have to work on that spec, i think it's very useful tbh.  there has been talks of adding precaching images in nova13:02
mnaserwhich would indirectly solve this too13:02
tobiashmnaser: I guess I'll start to work on that spec next year or at least support my collegues13:04
mnasertobiash: awesome!  yeah, this would have a huge impact in off-loading the glance server in that scenario you describe13:04
tobiashyes, we have a version of that running in one of our clouds and the impact is dramatic13:05
tobiashmnaser: so to start reviving it I need to restore that change and move the file to specs/ussuri/approved?13:07
mnasertobiash: yep, that's step 0 :)13:08
*** jcapitao|afk is now known as jcapitao13:08
tobiashmnaser: I don't have the restore buttin, shall I upload it as a new change?13:11
mnasertobiash: good question.. yes i would repropose (like https://review.opendev.org/#/c/683002/ )13:13
AJaegertobiash: that's in nova-specs? Any nova-specs core has the restore button, check https://review.opendev.org/#/admin/groups/302,members13:13
AJaegertobiash: so, any nova-core plus a few more...13:14
mnaseri think the thing is you're supposed to repropose it (even nova-spec cores are doing that)13:14
tobiashok, then I'll repropose and add a link back to the original one for earlier discussion?13:15
*** mgoddard has joined #zuul13:21
mnasertobiash: yep seems fair (and use the same topic so it can be referenced there too)13:22
tobiashI asked in #openstack-nova about the preferred way13:23
tobiasha nova core already restored it13:23
*** jamesmcarthur has joined #zuul13:26
*** jangutter_ is now known as jangutter13:30
*** jamesmcarthur has quit IRC13:34
openstackgerritMatthieu Huin proposed zuul/zuul master: [WIP] Docker compose example: add keycloak authentication  https://review.opendev.org/66481313:34
*** rlandy has joined #zuul13:35
*** jpena|lunch is now known as jpena13:37
*** jamesmcarthur has joined #zuul13:44
*** Goneri has joined #zuul13:45
pabelangeris zuul.artifacts passed down to all child jobs? eg: I have a use case for a buildset with JobA->JobB->JobC, where both A and B build artifacts and zuul_return. I'd like JobC to have access to both.13:47
pabelangerI plan to test, but figured I ask first13:47
pabelangertobiash: re: glance, I always though torrents was a good idea too, then compute nodes could share them13:50
tobiashpabelanger: interesting idea, but ceph is already a distributed storage system so I guess that's a layer too much (but might be useful in a non-ceph glance store)13:53
pabelangertobiash: yah, this was mostly in infra-cloud that we ran a few years ago. no ceph, single glance13:55
pabelangerbut this idea sounds good too13:55
Shrewscorvus: your gce change lgtm. my initial review was lacking coffee as i was laser focused on one class and how it interacted with the common code, so please ignore it.   :)13:57
*** mhu has quit IRC14:04
*** mhu has joined #zuul14:05
mnasertobiash: a cool idea btw if you are looking to implement it is https://github.com/dragonflyoss/Dragonfly14:07
*** jamesmcarthur has quit IRC14:16
*** jamesmcarthur has joined #zuul14:17
mordredmnaser: you know - back in the day we were pitching the idea of doing something like back behind glance/nova14:21
*** jamesmcarthur has quit IRC14:21
*** jamesmcarthur has joined #zuul14:21
mordredbut I haven't read backscroll yet14:21
mnaseri think there is like actual bittorrent code tha twas recently removed from nova14:21
mordredyeah - it's the sort of thing that needs users14:23
mordredwe were looking at it when I had the team of folks inventing tripleo and working on how to make hp public cloud better ... bittorrent image distribution seemed like a good idea :)14:23
mordredmnaser: re: the above - I though if you had ceph drivers for nova and glance that nova was already doing zero-copy ceph operations to boot an image - is that only if you're doing BFV?14:24
pabelanger++ bittorrent14:25
mnasermordred: we do, thats all good, but this is the case where your nova-compute is using local storage (something like fast nvme's for CI?) but glance is your image storage.  in order to download an image from glance, you need to hit the HTTP API14:25
mnaserthat spec proposes that if nova-compute sees that the image lives on ceph, and it has access to that cluster, it will download it via ceph instead of hitting the glance API14:26
mnasersorry, *ceph is your image storage*14:26
mnaserso short-circuiting the download via glance api if the image is on ceph and nova-compute is using local storage14:27
tobiashyes, fast local nvme for ci is our use case :)14:27
mordredmnaser: ahhh. cool14:28
mnasertobiash: i figured ;)14:34
mordredShrews, tobiash, corvus: patch looked good to me - and with 3x+2 I went ahead and landed it. I figured that means it's good enough and we can always improve things as we move forward14:34
*** dmellado has quit IRC14:36
*** dmellado has joined #zuul14:39
*** igordc has joined #zuul14:40
openstackgerritAlbin Vass proposed zuul/zuul-jobs master: Ensure logs dir exists  https://review.opendev.org/69892414:53
*** jamesmcarthur has quit IRC15:02
*** jamesmcarthur has joined #zuul15:02
*** themroc has quit IRC15:06
*** jamesmcarthur has quit IRC15:09
openstackgerritMerged zuul/nodepool master: Add Google Cloud provider  https://review.opendev.org/69834215:12
*** jamesmcarthur has joined #zuul15:17
*** rfolco is now known as rfolco|doctor15:27
*** dtroyer has quit IRC15:52
*** chkumar|rover is now known as raukadah15:53
*** igordc has quit IRC16:15
*** mattw4 has joined #zuul16:21
*** sgw has quit IRC16:24
*** sgw has joined #zuul16:39
clarkbtristanC: for https://review.opendev.org/#/c/695594/1 that only updates the test playbook. Did a file get missed on git add?16:46
clarkbAJaeger: ^ fyi on that?16:47
clarkber s/\?//16:47
*** armstrongs has joined #zuul16:51
AJaegerclarkb: I should have +2, the other files don't have this hardcoded, this is obvious once I digged deeper. The commit message could be clearer ;(16:55
AJaegerI left a message16:55
clarkbok so just a test cleanup then16:55
clarkbwfm16:55
AJaegerclarkb: hope so ;) We can wait for tristanC to confirm...16:56
clarkbnah I approved.16:56
clarkbif there was a missed file a followup change is fine too16:56
AJaegerThat works as well...16:57
*** jcapitao is now known as jcapitao|off17:02
clarkbmordred: you probably know the answer to my question in https://review.opendev.org/#/c/691114/10 does go test imply go build?17:03
*** jcapitao|off has quit IRC17:07
openstackgerritFabien Boucher proposed zuul/zuul master: Gitlab - Implement the note event and the comment trigger action  https://review.opendev.org/69896417:07
*** michael-beaver has joined #zuul17:09
mordredclarkb: I believe so17:10
clarkbcool does anyone else want to review the go job and role additions to zuul-jobs or should I approve it?17:12
clarkbcorvus: ^ possible you are interested but I'm happy to approve as is17:12
corvusclarkb: yeah, i'll give it a quick pass and +3 since it's a new group; thanks to you and mordred for doing the hard work :)17:13
openstackgerritMerged zuul/zuul-jobs master: fetch-zuul-cloner: replace /home/zuul by ansible_user_dir  https://review.opendev.org/69559417:18
*** jangutter has quit IRC17:25
*** openstackgerrit has quit IRC17:29
corvusclarkb: did you mean to +2 691114?17:32
clarkbcorvus: yes I did17:37
corvusclarkb: +2 from me, feel free to +#17:38
clarkbin fact I completely failed at posting my question there when I asked mordred17:38
clarkbdone17:38
clarkbthere were a couple other minor docs things that we can address in a followup17:38
mordredclarkb: I was wondering about your reference to "your question" earlier17:40
*** hashar has joined #zuul17:49
*** openstackgerrit has joined #zuul17:50
openstackgerritMerged zuul/zuul-jobs master: Adds go jobs and roles.  https://review.opendev.org/69111417:50
*** jpena is now known as jpena|off17:53
Shrewsianw: i left you a question on 694845. i cannot figure out what that ARG option is supposed to do17:57
Shrewstobiash: should https://review.opendev.org/695001 have a release note? seems like a new feature maybe?18:10
Shrewshrm, at least needs a doc update for the new endpoint18:14
tobiashShrews: yes, I'll add that18:16
openstackgerritTobias Henkel proposed zuul/nodepool master: Add ready endpoint to webapp  https://review.opendev.org/69500118:27
openstackgerritTobias Henkel proposed zuul/nodepool master: Remove uneeded shebang and exec bit on some files  https://review.opendev.org/69210018:30
*** hashar has quit IRC18:33
tristanCclarkb: no file got missed, i was chasing another issue and thought this was used by the job. the commit message could have been clearer18:35
*** yolanda has quit IRC18:43
openstackgerritMerged zuul/nodepool master: Ensure both kubernetes and openshift token are b64decoded  https://review.opendev.org/68743518:48
*** saneax has quit IRC18:48
openstackgerritTobias Henkel proposed zuul/zuul master: Keep task stdout/stderr separate in result object  https://review.opendev.org/65027618:49
openstackgerritTobias Henkel proposed zuul/zuul master: Optionally support mitogen for job execution  https://review.opendev.org/65702418:53
clarkbtobiash: ^ I believe pabelanger uses mitogen and it works18:54
pabelangeryes, we do on bastion host to deploy zuul.a.c., we get much faster deploys18:55
pabelangerI think it would be worth while to test it for zuul jobs18:55
*** tosky has quit IRC18:57
*** igordc has joined #zuul19:05
openstackgerritMerged zuul/nodepool master: Remove uneeded shebang and exec bit on some files  https://review.opendev.org/69210019:07
corvusi thought someone *did* test it for zuul jobs and found it didn't help?19:10
corvusiirc, the description of what mitogen does doesn't actually suggest that it would be very beneficial for zuul19:11
corvusbut i'd love to have a current real-world report19:12
corvus(with zuul)19:13
tobiashin theory it reduces the resources consumed by ansible and improves job runtime19:15
pabelangeryes, we see that19:15
mnaseris there any docs when y'all went through the pain of dealing with setting up a swift backed docker registry?19:15
tobiashpabelanger: are you using mitogen in zuul?19:16
mnaserthe authurl it's listing is: "https://storage.myprovider.com/v3/auth" which makes no sense, and /v3/auth is not even a valid endpoint in keystone?19:16
clarkbcorvus: tobiash pabelanger mitogen claims to reuse processes rather than forking a new one for each playbook task. I would expect that bit would make jobs run quicker19:16
clarkbmnaser: isn't your keystone auth endpoint arbitrary?19:16
clarkbthe cloud can make it whatever they like. I'm sure someone just typed in an example off the top of their head19:17
* clarkb looks for our configs19:17
pabelangertobiash: no, we have zuul run a promote job, on our bastion host, the nested ansible does use it19:17
tobiashclarkb: yes that's true as well although the benefit in my first tests one and a half years ago was less impressive than expected19:17
mnaserright, but the docs list: URL for obtaining an auth token. https://storage.myprovider.com/v2.0 or https://storage.myprovider.com/v3/auth19:17
mnaserso that seems to imply "please put the explicit version name"19:17
tobiashclarkb: but it might be that our executor itself was too much bottlenecked because it was on ceph back then19:17
*** jamesmcarthur has quit IRC19:18
clarkbmnaser: we use an explict v2.0 url19:19
clarkbmnaser: similar to https://storage.myprovider.com/v2.019:19
mnaserwelp that won't work cause we don't even have v2.0 anymore  \o/19:19
mnaseri found the upstream library though https://github.com/ncw/swift19:20
clarkbmnaser: and you've tried using an explicit v3 url?19:20
mnaseri tried a couple of combos and figured i'd ask now19:20
*** jamesmcarthur has joined #zuul19:20
corvus+registry_swift_authurl: https://identity.api.rackspacecloud.com/v2.0/19:20
mnaserhmm ill try /v319:21
corvusmnaser: ^ that's from our git history for when we used swift backed docker registry2.019:21
corvusmnaser: that was the value we passed to "storage.swift.authurl" in config.yml19:21
mnaser"Swift authentication failed: HTTP Error: 404: 404 Not Found" -- ill just dig some more, i think there might be something else im missing19:21
corvusmnaser: https://opendev.org/opendev/system-config/src/commit/f357e5cdab3f54f4a2cbf8e327dcff943a3ac7b3/playbooks/roles/registry/templates/config.yml.j219:22
mnaserauthversion19:22
corvusmnaser: that's what that file looked like at the time19:22
mnaserthere we go we went into "panic: Swift authentication failed: Bad Request" with /v319:23
mnaserand authversion: 319:23
tobiashin real live zuul_console seems to be broken with mitogen in https://review.opendev.org/65702419:23
clarkbI'm betting the zuul registry would just work with keystone v3 auth19:24
corvusmnaser: nb that we had problems with that in production; it mostly worked, but occasionally blobs went missing.  we never triaged whether it was the docker registry swift driver or in interaction with the non-standard "swift" that rax runs19:24
clarkbdepending on what your use cases are19:24
mnaseryeah.. i'm checking out harbor which has a whole UI, oidc for auth, etc.. and it uses the docker registry19:25
*** jamesmcarthur has quit IRC19:25
clarkband ya we would get empty objects19:26
openstackgerritTobias Henkel proposed zuul/zuul master: Optionally support mitogen for job execution  https://review.opendev.org/65702419:36
*** michael-beaver has quit IRC19:37
*** sgw has quit IRC19:38
openstackgerritTobias Henkel proposed zuul/zuul master: Optionally support mitogen for job execution  https://review.opendev.org/65702419:51
*** gmann is now known as gmann_afk20:13
tobiashclarkb: do you want the tenant setting in 657024 or would a followup be ok?20:16
*** hashar has joined #zuul20:18
clarkbfollowup should be ok20:24
tobiashkkkkkkkkkkkkkkkkkkkk20:25
tobiashwhoops20:25
tobiashkeyboard hung20:25
*** Goneri has quit IRC20:27
*** rfolco|doctor is now known as rfolco20:31
*** michael-beaver has joined #zuul20:38
* tobiash is benchmarking a new openstack cloud using a check loop pipeline with short running multinode jobs. It's saturating at 150 instances per minute :)20:50
mordredtobiash: one of nodepool's most successful uses is in destroying clouds20:55
mordredI mean, it's good at CI - but it's REALY good at load-testing openstack apis20:56
*** EvilienM is now known as EmilienM20:57
*** hashar has quit IRC21:07
corvusmordred, tobiash, Shrews: i just created a GKE cluster, made a deployment with a pod with nodepool-launcher and zk, dropped in a nodepool.yaml and watched it spin up a GCE vm.  here's the config and output: http://paste.openstack.org/show/787573/21:10
*** rlandy has quit IRC21:10
corvusnote there is no auth info there; it's using a service account which is automatically installed and picked up by the client lib21:11
corvus(i redacted nothing from that paste)21:11
tobiashcorvus: awesome :)21:11
corvus(and, incidentally, if you're curious like i was, it looks like gce is about 60 seconds from create to ready)21:12
clarkbgce hasreally consistebt boot times. I think they use the google version of ceph21:13
tobiash60s is plausible, we have that in our clouds as well most of the time21:13
corvusi'm exploring options for how to set up zuul for the upstream gerrit project.  and it looks like "run zuul in k8s and use it to run workloads on gce" might be a really good fit, and the service account should make that even easier21:13
corvusyeah, 60s i think is on par with the fastest openstack clouds opendev has21:13
Shrewsneat21:16
Shrewscorvus: looking at that example, I think we should make the config ‘driver’ value match the driver directory name: gce21:20
Shrewsto be consistent21:20
corvusShrews: oh whoops, it is.  i accidentally copied rev-1 of the config to the paste21:21
mordredI thought we did?21:21
mordredah21:21
corvusShrews: "host: localhost" and "driver: gce" are the changes21:21
mordredcorvus: that's pretty awesome21:21
Shrewsoh good21:21
corvushere's the real config: http://paste.openstack.org/show/787574/21:21
corvussorry about that21:21
clarkbcorvus: out if curiousity is there areason a gce driver would be preferable to the gerrit project over running jobs in k8s?21:26
clarkb(since it soundslike they have k8s to run zuul in anyway)21:26
corvusclarkb: i'd like to do both.  but i have little experience with jobs in pods, and we know that image building will be important, so i'd like to start with gce for the greatest chance of initial success.21:28
mordredyah21:29
mordredsame here - although corvus is doing all the work21:29
*** igordc has quit IRC21:30
corvuswell, i'm thinking we're about at a place where it doesn't have to just be me :)21:31
clarkbcontainer image building you mean?21:32
corvusnext week i'll confirm the plan with han-wen at google, send an email to the list, and ask the gerrit maintainers for some repos.21:32
corvusclarkb: yeah; sometime's that's squirrely in containers21:32
clarkbya and its squirrely all the time with docker and buildah right? need a special builder like img to do it iirc21:32
mordredor special permissions21:33
mordredlike - it can be done and all ... but it's _really_ easy to do it in a vm21:33
corvusthe perms are probably okay?  i think it's maybe the same as for zuul-exec?  but yeah21:33
mordredit's the poster child for tasks that are _not_ easier in a container21:33
fungisorry for being on silent running all day, i've been here but trying to get some stuff done. stepping out for an early dinner now, but if anyone needs me for something i should be back in an hour-ish21:33
corvusi just don't want to be making excuses for why something is hard or isn't working with zuul the first time out21:34
clarkbmordred: in my head its still "run iscsid" in fact this came up today in #openstack-qa :)21:34
fungier, i guess i meant to say that in #openstack-infra, but it's reasonably applicable here ;)21:34
corvusbut i'm very keen to add gke as a second nodepool launcher and start experimenting with it there.21:34
corvusfungi: nice to hear from you :)21:34
clarkbcorvus: on the positive side of things gce/gke don't ipv6 so you'll avoid that entire class of problems21:34
fungi:D21:35
clarkbwhcih is funny becaus aiui all of googles infrastructure runs on ipv6 only. So its ipv4 on ipv6 and you can't ipv6 as a user :/21:35
corvusclarkb: yes, "positive".  apparently ipv6 in gcloud is "you can terminate ipv6 with the load balancer product and connect it to your service running on ipv4"21:35
clarkbcorvus: yup21:35
corvusclarkb: naturally they run on ipv6 -- so they can give all their ipv4 addrs to cloud users :)21:36
corvusbut that reminds me, i was thinking in this configuration, we could probably be nice netizens and only request internal addrs.21:36
corvushuh, well it's looking like there's no pnat.  either 1:1 nat or no connection to outside network at all.21:52
corvusdo any of the nodepool drivers have a "prefer internal address" option?21:57
corvusi want to say that for openstack we pushed that out to clouds.yaml?21:57
mordredcorvus: yeah - we havea . private: true option in clouds.yaml22:01
corvusok, i think i'll add a 'use-internal-ip' option to the gce provider22:02
mordredcorvus: which is intended to be used in the similar use case - you're running in the same network context as the vms are coming from22:02
corvusit's looking like launching a vm without an external ip is not practical (i mean, you could do it, but it would either access zero network resources, or you would need to set up you own network/proxy).  that's not exciting enough for me to implement support for right now.  but i think it would be a benefit to have zuul use the internal ip for its part, to route traffic better (and save money)22:03
*** logan- has quit IRC22:04
*** logan- has joined #zuul22:06
mordredcorvus: ++22:06
mordredcorvus: is there a way for the driver to detect if it's running ,.. wait - that's a dumb question22:07
corvusmordred: probably, actually.22:07
mordredcorvus: I was GOING to say "is there a way for the driver to detect if it's running local to the vms and not need the option"22:07
corvusyeah22:07
mordredcorvus: but - it's irrelevant - becasue what you want to know is if the executor is running there22:08
corvusi mean, maybe something about the network, or the project, or...22:08
corvusmordred: that's true22:08
mordredso I think "use-internal-ip" is more corrector22:08
mordredand maybe we could something something autodetect something in the future as an enhancement something22:08
corvusi think you're right, and this should just be expressed by the user22:09
corvushuh, i just noticed, 'region' isn't actually used22:10
corvus(zone implies region)22:10
*** jamesmcarthur has joined #zuul22:17
*** rfolco has quit IRC22:19
*** jamesmcarthur has quit IRC22:28
*** jamesmcarthur has joined #zuul22:28
*** Goneri has joined #zuul22:34
openstackgerritJames E. Blair proposed zuul/nodepool master: GCE: add use-internal-ip option  https://review.opendev.org/69904122:47
corvusapparently i have used $0.20 worth of google cloud to develop that driver22:47
*** michael-beaver has quit IRC22:48
*** pcaruana has quit IRC22:48
*** rfolco has joined #zuul22:50
*** rfolco has quit IRC22:55
*** jamesmcarthur has quit IRC22:57
*** mattw4 has quit IRC22:58
*** jamesmcarthur has joined #zuul23:15
*** jamesmcarthur has quit IRC23:18
*** jamesmcarthur has joined #zuul23:37
*** jamesmcarthur has quit IRC23:41
*** rfolco has joined #zuul23:49
clarkbcorvus: for ^ that implies the test environment can get everything locally right? If so should that be added to the documentation?23:53
clarkbor maybe I've misunderstood and the publci IP is still there but zuul and nodepool will rpefer the private ip for their comms23:54
corvusclarkb: it's for the second thing23:59
« Thursday, 2019-12-12 Index Saturday, 2019-12-14 »

Generated by irclog2html.py 2.15.3 by Marius Gedminas - find it at mg.pov.lt!