Thursday, 2024-03-21

« Wednesday, 2024-03-20 Index Friday, 2024-03-22 »
-@gerrit:opendev.org- Lukas Kranz proposed: [zuul/zuul-jobs] 910582: Make prepare-workspace-git fail faster. https://review.opendev.org/c/zuul/zuul-jobs/+/91058206:35
-@gerrit:opendev.org- Simon Westphahl proposed: [zuul/zuul] 913875: wip: Correctly limit buildsets with multiple refs https://review.opendev.org/c/zuul/zuul/+/91387509:11
-@gerrit:opendev.org- Simon Westphahl proposed: [zuul/zuul] 913875: wip: Correctly limit buildsets with multiple refs https://review.opendev.org/c/zuul/zuul/+/91387509:12
-@gerrit:opendev.org- Simon Westphahl proposed: [zuul/zuul] 913875: wip: Correctly limit buildsets with multiple refs https://review.opendev.org/c/zuul/zuul/+/91387509:20
@harbott.osism.tech:regio.chatseems the ensure-docker role is broken with upstream release of docker 26.0.0. see https://zuul.opendev.org/t/openstack/build/cb7357c58fca44dca88d952691a2d8de but having similar results downstream, too11:21
-@gerrit:opendev.org- Dr. Jens Harbott proposed: [zuul/zuul-jobs] 913897: DNM: testing ensure-docker role https://review.opendev.org/c/zuul/zuul-jobs/+/91389711:24
@harbott.osism.tech:regio.chat`Mar 21 11:28:14 np0037123857 dockerd[2606]: invalid DOCKER_MIN_API_VERSION: minimum supported API version is 1.24: 1.22`11:30
@harbott.osism.tech:regio.chatah, nice, this even mentions that this will break https://opendev.org/zuul/zuul-jobs/src/branch/master/roles/ensure-docker/tasks/docker-setup.yaml#L60-L7511:32
-@gerrit:opendev.org- Dr. Jens Harbott proposed: [zuul/zuul-jobs] 913808: Revert "Override DOCKER_MIN_API_VERSION for skopeo when installing docker" https://review.opendev.org/c/zuul/zuul-jobs/+/91380811:45
-@gerrit:opendev.org- Dr. Jens Harbott proposed: [zuul/zuul-jobs] 913808: Revert "Override DOCKER_MIN_API_VERSION for skopeo when installing docker" https://review.opendev.org/c/zuul/zuul-jobs/+/91380811:51
-@gerrit:opendev.org- Radosław Piliszek https://matrix.to/#/@yoctozepto:matrix.org proposed on behalf of Jens Harbott: [zuul/zuul-jobs] 913808: Revert "Override DOCKER_MIN_API_VERSION for skopeo when installing docker" https://review.opendev.org/c/zuul/zuul-jobs/+/91380812:00
-@gerrit:opendev.org- Radosław Piliszek proposed on behalf of Jens Harbott: [zuul/zuul-jobs] 913808: Revert "Override DOCKER_MIN_API_VERSION for skopeo when installing docker" https://review.opendev.org/c/zuul/zuul-jobs/+/91380812:28
-@gerrit:opendev.org- Radosław Piliszek proposed on behalf of Jens Harbott: [zuul/zuul-jobs] 913808: Revert "Override DOCKER_MIN_API_VERSION for skopeo when installing docker" https://review.opendev.org/c/zuul/zuul-jobs/+/91380812:55
@fungicide:matrix.orgzuul-maint: bringing discussion from #opendev irc back around to here, it looks like merging 913808 will probably require us to bypass gating since the zuul-jobs-test-registry-buildset-registry job running for it inherits from a definition in opendev/base-jobs (a trusted config repo) which includes the currently broken ensure-docker role from its pre-run playbook and therefore isn't testing the fix. opinions?12:57
@fungicide:matrix.orgalso what's a good way to know that the change won't break skopeo?12:57
@yoctozepto:matrix.orgfungi: I dropped testing that because it does not make sense to confuse committers that it is testing the right thing!12:58
@yoctozepto:matrix.organd I second the skopeo q12:58
@yoctozepto:matrix.orgI have no idea what impact we have with this revert w.r.t. skopeo12:58
@fungicide:matrix.orgmy reading of the code comments and discussion on the prior change would suggest that as long as we require the recent skopeo version from last month it will be compatible, but some confirmation would be swell13:01
@yoctozepto:matrix.orgmy understanding to that is also that some platforms might be affected while others not13:02
@yoctozepto:matrix.orgbut I don't have the time to go further on this on my own13:03
@fungicide:matrix.orgyoctozepto: as for removing zuul-jobs-test-registry-buildset-registry it looks like it was being run for use by other test-registry jobs, not merely to test that it worked13:03
@yoctozepto:matrix.orgfungi: oh! I have not noticed, argh13:03
@yoctozepto:matrix.orgwhich ones?13:04
@yoctozepto:matrix.orgah you mean the others I disable13:04
@yoctozepto:matrix.orghmm, hmm13:05
@fungicide:matrix.orgthe job description states "Run a buildset registry for the test-registry jobs"13:05
@yoctozepto:matrix.orgyeah, it was used byt zuul-jobs-test-registry-buildset-registry-k8s-microk8s and crio13:05
@yoctozepto:matrix.orgs/was/is - more precisely13:05
@yoctozepto:matrix.org:D13:05
@fungicide:matrix.orgyeah, it might make sense to disable temporarily in order to get that fix merged and then restore the jobs after, in order to avoid having to bypass gating13:05
@yoctozepto:matrix.orgok, so an immediate followup is to reenable that (sadly it is interdependent!) and its mk8s variant (as crio is independently b0rken)13:06
@fungicide:matrix.organd then discuss whether there are better ways to test those components in zuul-jobs without consuming some of them via a job defined in a config project13:06
@yoctozepto:matrix.orgyeah, I guess we could simplify the opendev-buildset-registry - it does not have to rely on ensure-docker...13:07
@yoctozepto:matrix.orgI mean, it's really only meant to run the registry 😅13:07
@fungicide:matrix.orgbut those are definitely not the only jobs run for zuul-jobs changes which inherit from config project jobs that in turn use roles from zuul-jobs (log collection and uploading for example)13:08
@yoctozepto:matrix.orgwe could even have a prebaked image for that13:08
@yoctozepto:matrix.orgyeah, sadly true, although those are less variable I guess13:08
@yoctozepto:matrix.orglike, copying files breaks lot less than docker install :D13:08
@yoctozepto:matrix.orgor at least I hope it does or else we are in some deep rabbit hole13:09
@fungicide:matrix.orgsure, i agree that it's possible to consider different approaches for each of them based on the degree of risk they pose and other factors13:09
@yoctozepto:matrix.orgas for the current change - I would love it if it merge it soon as everything-docker on opendev is very unhappy atm (including our awesome nebulous)13:10
@fungicide:matrix.orgwhen we knowingly make changes to things used by opendev/base-jobs we try to (as much as possible) set up shadow jobs with alternate inheritance to prove the proposals with before putting them into the critical path13:11
@yoctozepto:matrix.orgyeah, I saw that, your (opendev) practices are really some of the highest-quality in the public part of the world13:12
@yoctozepto:matrix.orgvery commendable13:12
@fungicide:matrix.orgwell, it's just being cautious really13:12
@fungicide:matrix.orgnobody wants to be the person who brings a gigantic developer collaboration engine to a grinding halt13:13
@yoctozepto:matrix.orghah, true that, but one has to take it serious to put the effort into life!13:16
@yoctozepto:matrix.orgotherwise it is just a wish13:16
@yoctozepto:matrix.orgok, the change is marked green by zuul13:24
-@gerrit:opendev.org- Radosław Piliszek proposed on behalf of Jens Harbott: [zuul/zuul-jobs] 913808: Revert "Override DOCKER_MIN_API_VERSION for skopeo when installing docker" https://review.opendev.org/c/zuul/zuul-jobs/+/91380813:31
-@gerrit:opendev.org- Radosław Piliszek proposed: [zuul/zuul-jobs] 913902: Reenable buildset-registry jobs https://review.opendev.org/c/zuul/zuul-jobs/+/91390213:34
@yoctozepto:matrix.orglet me know if now it's all right13:35
@fungicide:matrix.orgso... Clark mentioned in #opendev irc that the "skopeo as of february" mentioned in the comments as being compatible isn't buildable on the current ubuntu lts as it needs a newer golang toolchain. this is getting increasingly double-plus ungood13:35
@tristanc_:matrix.orgfungi: that's unfortunate, but if it's broken, then it seems like we should force push until it works13:36
@tristanc_:matrix.orgis there something we could change too to prevent this situation in the future?13:37
@yoctozepto:matrix.orgoh my dear13:37
@clarkb:matrix.org> <@harbott.osism.tech:regio.chat> ah, nice, this even mentions that this will break https://opendev.org/zuul/zuul-jobs/src/branch/master/roles/ensure-docker/tasks/docker-setup.yaml#L60-L7513:37
The expectation wasn't that the daemon would explode if the env var was set though. That's insane. The expectation was that skopeo would stop working again. A completely different failure mode
@yoctozepto:matrix.orgwell, they certainly follow the fail-fast methodology!13:38
@yoctozepto:matrix.orgwhich is not bad per se, can be helpful13:38
@yoctozepto:matrix.orgnonetheless, we not here to say bad things about docker (I know we can find plenty!) but fix the current situation13:39
@yoctozepto:matrix.orgreposting Clark in here:13:39
@yoctozepto:matrix.org14:35:22 <Clark[m]> Note those registry jobs will be broken because skopeo should be broken too.13:39
Clark[m]I think a recheck on the reenable change should expose that if we land the first change14:35
@clarkb:matrix.org> <@tristanc_:matrix.org> is there something we could change too to prevent this situation in the future?13:39
Stop using docker and skopeo as neither seem to be maintaining their software in a manner that is friendly to actual users?
More generally no as long as we update packages like docker (or anything else) when external updates are available we have to deal with incompatibilities and breakages when they arrive
@yoctozepto:matrix.orgyeah, I had this in mind that this might fail later13:39
@yoctozepto:matrix.orgbut can't confirm due to the zuul behaviour13:39
@yoctozepto:matrix.orgso let's merge13:39
@yoctozepto:matrix.organd check the followup13:39
@yoctozepto:matrix.orgwe will see how it fares13:39
@yoctozepto:matrix.organd proceed from that13:40
@yoctozepto:matrix.organy better ideas?13:40
@clarkb:matrix.org> <@yoctozepto:matrix.org> which is not bad per se, can be helpful13:41
I strongly disagree particularly in this case. Postel's law applies here.
@tristanc_:matrix.orgClark: I meant with regards to the opendev/base-jobs config preventing to use the gate13:41
@clarkb:matrix.orgI'm not sure what you mean by that? Preventing to use the gate?13:43
@yoctozepto:matrix.org> <@clarkb:matrix.org> I strongly disagree particularly in this case. Postel's law applies here.13:43
I mean, I get them in that I don't see how I would let operators know their option is ignored early other than via some hidden-somewhere warning (and then we bitch about it only after we find it breaking skopeo ;p)
@clarkb:matrix.org> <@yoctozepto:matrix.org> I mean, I get them in that I don't see how I would let operators know their option is ignored early other than via some hidden-somewhere warning (and then we bitch about it only after we find it breaking skopeo ;p)13:43
You would know if your clients fail. And if they don't fail no one cares and can move on with their lives.
@yoctozepto:matrix.orgPostel's law is good in request-reply scenarios13:43
@clarkb:matrix.orgBut to break everyone regardless is just spiteful13:44
@yoctozepto:matrix.orgagreed13:44
@yoctozepto:matrix.orgnonetheless, let's fix what we can13:44
@fungicide:matrix.org> <@tristanc_:matrix.org> Clark: I meant with regards to the opendev/base-jobs config preventing to use the gate13:45
we could perhaps duplicate those job definitions in zuul-jobs instead of inheriting them, but i'm not sure if there might be a reason they have to be defined in a trusted config repo (which would explain why we didn't do that before now)
@yoctozepto:matrix.orgthe change is green again13:45
@yoctozepto:matrix.orgmerge/amend?13:46
@clarkb:matrix.orgtristanC: if you mean avoiding situations where trusted code can't be speculatively updated then you need to keep as much code out of trusted state as possible. It isn't always possible to do that though. I'm not sure if it would be here or not13:46
@yoctozepto:matrix.orgin this particular case, we can minimise our interdependencies13:46
@yoctozepto:matrix.orgbut it does not generalise 13:46
@clarkb:matrix.orgBut also I don't think this is a huge emergency. You can always set jobs to noop and effectively force merge a change to work around13:47
@fungicide:matrix.orgfor the roles that enable log collection and uploading, as a counterexample, we need them run from jobs with access to secrets so the duplicative solution wouldn't be an option13:47
@yoctozepto:matrix.orgcould we please focus on the matter at hand for now?13:48
@clarkb:matrix.orgWe are?13:48
@clarkb:matrix.orgWe have to decide what the best route around the testing problems is and that is what we are discussing?13:49
@yoctozepto:matrix.orgnot exactly, we try to devise solutions to more general issues that we discovered...13:49
@yoctozepto:matrix.orgas I see it at least13:49
@clarkb:matrix.orgWe need to understand the problem before we can prescribe a solution13:50
@yoctozepto:matrix.orgI say we follow the path of merging this and checking how buildset-registry jobs fare otherwise13:50
@clarkb:matrix.orgAnd I'm not sure I actually understand the testing issue yet13:50
@clarkb:matrix.orgIn particular everyone is acting like this is an emergency for all jobs but this only affects jobs using the container builds rogh13:51
@clarkb:matrix.org* In particular everyone is acting like this is an emergency for all jobs but this only affects jobs using the container builds right?13:51
@yoctozepto:matrix.orgyeah, it does affect only docker jobs so containers13:51
@clarkb:matrix.orgOk so the blast radius is reasonably well contained.13:51
@yoctozepto:matrix.orgwell, the blast radius is nebulous project halted to a grind13:52
@yoctozepto:matrix.orgso it is not the best containment I could imagine!13:52
@yoctozepto:matrix.orgI mean, if we merge this, we can actually proceed with debugging and devising solutions13:52
@yoctozepto:matrix.orgwe don't make it worse as the same jobs are b0rken now13:53
@clarkb:matrix.orgSort of we're just going to have broke skopeo13:53
@yoctozepto:matrix.orgwhich is broken now anyway13:53
@clarkb:matrix.orgBut yes no worse than now13:53
@yoctozepto:matrix.orgexactly my point13:53
@clarkb:matrix.orgWhy does the change delete and comment out jobs?13:54
@clarkb:matrix.orgIt should only stop running the jobs?13:54
@yoctozepto:matrix.orgI already answered that in the comments13:56
@yoctozepto:matrix.orgbecause it is what the automation wants from me13:56
@yoctozepto:matrix.orgthese are autogenerated13:56
@yoctozepto:matrix.orgat the bottom I mean13:56
@yoctozepto:matrix.orgbtw, I have a brain meltdown13:56
@yoctozepto:matrix.orghttps://codesearch.opendev.org/?q=ensure-skopeo&i=nope&literal=nope&files=&excludeFiles=&repos=13:56
@yoctozepto:matrix.orgensure-skopeo is actually not used beyond testing?13:57
@yoctozepto:matrix.org:D13:57
@yoctozepto:matrix.org(I tried figuring out the scope of testing the followup)13:57
@clarkb:matrix.orgThe builders registry jobs are also autogenerated or just the crio ones?13:58
@clarkb:matrix.org* The buildset registry jobs are also autogenerated or just the crio ones?13:59
@yoctozepto:matrix.orgseemingly all are just picked up from the definitions to their use13:59
@yoctozepto:matrix.orgI dropped the ones I am restoring in a different order (due to crio being bad...) in the followup13:59
@yoctozepto:matrix.org(please see there, that could shed some light too)13:59
@clarkb:matrix.orgI think the crio jobs are autogenerated from their abstract parent to add platform specific tests. But the buildset registry jobs may not be?14:01
@clarkb:matrix.orgI can't actually test that via tox until a little later14:02
@tristanc_:matrix.orgClark: yes, fungi mentioned that we might need to bypass the gate for 913808, but that no longer seems to be the case. But if we had to, then we might use this opportunity to also prevent that situation for occurring in the future, though I don't know how. Perhaps the offending job could be changed to non-voting?14:04
@yoctozepto:matrix.orgClark: we actually mean to reenable them so why would we need to know that exactly?14:05
@fungicide:matrix.orgtristanC: the options were to either bypass gating to merge the change, or temporarily take out the failing jobs and then restore them in a subsequent change, yes14:05
@clarkb:matrix.orgYes that was my point you can always elect to run the noop job or mark things non voting. You should never truly be stuck14:05
@yoctozepto:matrix.orgas for the skopeo - it seems we would test "our usage" with the followup just like Clark suggested14:05
@clarkb:matrix.orgyoctozepto: I have an allergy to unnecessarily large diffs14:05
@clarkb:matrix.orgI probably run `git log -p` more often than most but discipline in constructing diffs goes a long way to making that useful14:06
@yoctozepto:matrix.orgI also prefer them short and nice14:06
@yoctozepto:matrix.orgI can drop instead of commenting out14:06
@yoctozepto:matrix.orgbut I guess it will be easier later on14:06
@yoctozepto:matrix.orgas we keep crio for later14:06
@yoctozepto:matrix.org* crio reenablement14:07
@clarkb:matrix.orgNo you misunderstand me14:07
@yoctozepto:matrix.orgI truly do then14:07
@yoctozepto:matrix.org:D14:07
@tristanc_:matrix.orgfungi: I see, thanks for the explanation. I was worried that something in opendev/base-job was causing an issue.14:07
@clarkb:matrix.orgThe crio stuff is fine because it is autogenerated. The other jobs are not autogenerated I don't think. So why do we delete them?14:07
@clarkb:matrix.orgJust remove them from the list of jobs to run and then add them back to the list of jobs to run14:07
@yoctozepto:matrix.orgbecause the automation sticks them in nonetheless14:07
@yoctozepto:matrix.orgor let me check again14:08
@yoctozepto:matrix.orgyeah, it wants to put everything visible in the list14:08
@yoctozepto:matrix.orgso we need to either drop or comment out the definitions14:08
@yoctozepto:matrix.organd I agree this is not elegant but it's not mine automation...14:08
@yoctozepto:matrix.org;-)14:08
@yoctozepto:matrix.organyhow, to me this is "good enough" (TM)14:09
@clarkb:matrix.orgOk so in addition to autogenerated platform jobs we put all jobs in the run list14:09
@fungicide:matrix.orgtristanC: indirectly, yes. basically ensure-docker is currently broken by a new docker release. a job we're running to test some parts of zuul-jobs inherits from a job definition in opendev/base-jobs which relies on the ensure-docker role from zuul/zuul-jobs so that job when testing the change to fix the ensure-docker role ends up using the broken current ensure-docker instead (which is fine, if inconvenient, as the job's purpose isn't to test ensure-docker exactly)14:09
@yoctozepto:matrix.orgfungi: tristanC another take at this would be to treat ensure-docker as a job that has very minimal logic that is much less likely to fail14:10
@yoctozepto:matrix.orgthat customised API version was just too much for today14:10
@yoctozepto:matrix.org:D14:10
@yoctozepto:matrix.orgin other words: anything in base jobs needs to be very carefully handled14:11
@yoctozepto:matrix.orgwhich you all know already anyways14:11
@yoctozepto:matrix.orgit is just that it is not always that obvious where the dependencies are14:11
@yoctozepto:matrix.orgin the meantime, I will create a followup that reenables that poor crio14:12
@yoctozepto:matrix.orgas well14:12
@jim:acmegating.comanyone have a link to an example of a broken crio job?14:12
@fungicide:matrix.orgsure, we could duplicate a strictly necessary subset of things from zuul/zuul-jobs in opendev/base-jobs rather than reusing them, though that also increases the maintenance burden14:12
@clarkb:matrix.org> <@yoctozepto:matrix.org> that customised API version was just too much for today14:13
I'll happily cede all fixing of these issues to others
@yoctozepto:matrix.orgfungi: well, all IT boils down to tradeoffs at the end of the day :D14:14
@jim:acmegating.comthe commit msg says "disables crio jobs because they have their repo seemingly broken" and that's a little thin to follow up on.  i don't think we need to make a new patchset, but i'd at least like to have a comment in gerrit describing how it's broken so whatever fix happens can refer back to that.14:15
@clarkb:matrix.orgcorvus: https://zuul.opendev.org/t/zuul/build/5c4166d3ad044522b9b006dcecde290c looks like one14:15
-@gerrit:opendev.org- Radosław Piliszek proposed: [zuul/zuul-jobs] 913905: Reenable crio jobs https://review.opendev.org/c/zuul/zuul-jobs/+/91390514:15
@jim:acmegating.comClark: thanks14:15
@yoctozepto:matrix.org^ that of mine will need including the fix for crio of course14:16
@clarkb:matrix.orglooks like it may be trying to use xenial packages on jammy and the xenial packages have gone away so the apt update fails14:16
@jim:acmegating.comyeah, so that may be something we need to fix in the job14:16
@jim:acmegating.comnot necessarily that the repo itself is broken14:16
@yoctozepto:matrix.orgyeah, more as in "repo entry" in apt config14:17
@fungicide:matrix.orginteresting that a run on jammy is trying to get a package index that claims to be for xenial14:17
@yoctozepto:matrix.orgcould we simply iterate on https://review.opendev.org/c/zuul/zuul-jobs/+/913905/114:17
@yoctozepto:matrix.organd merge the sad docker's fix 14:17
@jim:acmegating.comyoctozepto: i'm helping you complete the work on the docker fix so that i can merge it14:18
@yoctozepto:matrix.orgcorvus: I'm optimising for the number of jobs retried (considering the vast amount on that base change vs the children)14:19
@jim:acmegating.comyoctozepto: i understand, which is why i added the information in a comment, and did not request an update to the commit message.  i said as much above.14:19
@yoctozepto:matrix.orgah, sorry, i misunderstoo clearly, thank you!14:20
@yoctozepto:matrix.orgok, we wait for this to merge14:20
@yoctozepto:matrix.orgthen recheck the first child14:20
@jim:acmegating.comi approved 808, thanks frickler yoctozepto 14:20
@yoctozepto:matrix.orgexpect skopeo breakage in mk8s job14:20
@yoctozepto:matrix.org🎊14:21
@yoctozepto:matrix.orgnow, back to skopeo, I saw ensure-skopeo is not actually used - does it mean we have skopeo prebaked in the images?14:26
@clarkb:matrix.orgno I think we have things just not using ensure-skopeo14:27
@jim:acmegating.comskopeo is installed in the zuul-executor image, but i don't know if that's relevant14:27
@jim:acmegating.comwhere are we looking?14:27
@yoctozepto:matrix.orgcorvus: I mean I am preparing for its potential breakage as foreseen by Clark14:28
@yoctozepto:matrix.orgso looking for the place where it gets in14:28
@yoctozepto:matrix.orgso as to know where to start fixing14:28
@yoctozepto:matrix.org:D14:28
@jim:acmegating.comyoctozepto: you said: `I saw ensure-skopeo is not actually used` -- show me where you saw that14:28
@yoctozepto:matrix.orgcorvus: ah, meaning in opendev, no hits except for tests https://codesearch.opendev.org/?q=%5Cbensure-skopeo%5Cb&i=nope&literal=nope&files=&excludeFiles=&repos=14:29
@yoctozepto:matrix.orgso skopeo must be getting in a different way14:29
@yoctozepto:matrix.organd now I know it's preinstalled in the image14:29
@yoctozepto:matrix.orgso thanks for that14:29
@clarkb:matrix.orgskopeo 1.14 bumped the golang requirement from golang 1.12 to golang 1.19. Ubuntu jammy has 1.18. Debian Bookworm has 1.19.14:29
@clarkb:matrix.orgThe fix for skopeo's docker api version negotiation is in 1.14.x or 1.15.x. I'm trying to find an exact version now14:30
@clarkb:matrix.orgOne workaround we may be able to live with temporarily is to simply move testing that relies on skopeo to debian instead of ubuntu and then compile a working skopeo14:30
@yoctozepto:matrix.orgClark: but since we build the images, we can use any any toolkit we want... it's not python that we need to have it installed for skopeo to work afterwards14:31
@clarkb:matrix.orghttps://github.com/containers/skopeo/issues/2202 says this was fixed in skopeo 1.14.214:31
@fungicide:matrix.orgit may also be possible to run a skopeo binary on ubuntu jammy that was built on debian bookworm, i thought golang executables were generally statically linked and relocatable, but i don't really know that much about the runtime14:31
@yoctozepto:matrix.orga different story would be with ensure-skopeo because we would have to host the binaries...14:31
@jim:acmegating.comthe latest zuul-executor image has skopeo 1.9.314:31
@clarkb:matrix.orgfungi: yes another option is to build the binary elsewhere and copy it14:32
@yoctozepto:matrix.orgfungi: they are14:32
@yoctozepto:matrix.orgI ++ any flavor of that approach14:32
@clarkb:matrix.orgI'm not a huge fan of that approach because it requires a lot of coordination14:32
@yoctozepto:matrix.orgClark: I am not following where you get that problem from14:33
@clarkb:matrix.orgeither build locally using a new enough golang or build locally using a container with new enough golang I think14:33
@fungicide:matrix.orgyes, i agree building on one platform for use on another is messy and involves solving other problems like storing and redistributing14:33
@clarkb:matrix.org> <@yoctozepto:matrix.org> Clark: I am not following where you get that problem from14:33
I'd like to avoid building and hosting skopeo binaries longer term
@fungicide:matrix.orgi mentioned it mostly out of completeness14:34
@yoctozepto:matrix.orgClark: yeah, but I understood we ship the images anyways, so I get that we don't need to have a temporary place to ship the binaries14:34
@fungicide:matrix.org * i mentioned it mostly for the sake of completeness14:34
@jim:acmegating.comseems like the proposal on the table is: ignore ensure-skopeo because opendev and zuul are not using it, and then build skopeo in the executor dockerfile using a builder image (i think mordred suggested that)  does that sound right?14:34
@yoctozepto:matrix.orgor, wait, I don't know your image build process well enough to understand how you would be impacted14:34
@yoctozepto:matrix.orgI was thinking in terms of docker multi-stage builds14:34
@yoctozepto:matrix.orgso sorry if I am pushing the thinking in the wrong direction!14:34
@yoctozepto:matrix.orgcorvus: very right, sir!14:35
@jim:acmegating.comyoctozepto: yes multi-stage builds is an option for updating the skopeo in the executor image14:35
@yoctozepto:matrix.orgif you point me in the place to deliver, I am happy to14:35
@clarkb:matrix.orgcorvus: I think the executor docker file is debian bookworm so doesn't need a different builder platform. But ya a separate builder multistage step could be a good option. But I don't think that will address other places we found broken skopeo which was in those buildset registry jobs14:35
@clarkb:matrix.orgin the buildset registry jobs maybe we convert the testing to debian and then build locally14:35
@yoctozepto:matrix.orgClark: but they are getting skopeo from that image14:35
@yoctozepto:matrix.orgor are not?14:36
@clarkb:matrix.orgno14:36
@yoctozepto:matrix.orgbecause I don't see how else they do get it in the end14:36
@jim:acmegating.comokay point me to those :)14:36
@clarkb:matrix.orgthey install it from the distro and/or build skoeo14:36
@mordred:waterwanders.comMulti-stage builds ftw!14:36
@yoctozepto:matrix.orgthe point is I see only ensure-skope installing skopeo14:37
@yoctozepto:matrix.org * the point is I see only ensure-skopeo installing skopeo14:37
@yoctozepto:matrix.organd it's not used14:37
@yoctozepto:matrix.orgso otherwise I am blind14:37
@yoctozepto:matrix.orgas to where this happens14:37
@clarkb:matrix.org`zuul-jobs/test-playbooks/registry/test-registry-pre.yaml`14:37
@clarkb:matrix.orgwhich appears to use ensure-skopeo14:37
@yoctozepto:matrix.orgthat's only for tests14:37
@yoctozepto:matrix.orgjust my point14:37
@yoctozepto:matrix.orgthe actual jobs do not use it14:37
@jim:acmegating.comtest jobs are actual jobs14:37
@yoctozepto:matrix.orgbut nebulous does not use test jobs14:38
@yoctozepto:matrix.organd we somehow have skopeo in there :S14:38
@yoctozepto:matrix.orgnor do we use ensure-skopeo14:38
@jim:acmegating.comokay if you only want talk about nebulous this is not the right place.14:38
@yoctozepto:matrix.orgno, no14:38
@yoctozepto:matrix.orgI want to talk general usage of these jobs14:39
@jim:acmegating.comgreat :)14:39
@yoctozepto:matrix.orgbeyond testing14:39
@yoctozepto:matrix.org;-)14:39
@jim:acmegating.comback to the issue, i don't think ensure-skopeo is necessary for that test.  so i think we can entertain alternate ways of getting skopeo there14:39
@yoctozepto:matrix.orgin other words, they do have skopeo but the test jobs try to install it nonetheless14:39
-@gerrit:opendev.org- Joseph Kostreva proposed: [zuul/zuul] 913595: Change allow_pre_fail phases if will_retry https://review.opendev.org/c/zuul/zuul/+/91359514:39
@yoctozepto:matrix.orgso maybe we drop it14:39
@yoctozepto:matrix.organd are happy14:39
@yoctozepto:matrix.org:D14:39
@clarkb:matrix.orgyoctozepto: you are misunderstanding what the executor image's skopeo is for14:40
@yoctozepto:matrix.orgClark: I clearly am!14:40
@yoctozepto:matrix.orgplease teach me14:40
@jim:acmegating.comthe point of that stanza is to simulate an executor, so i'm open to any way of getting a skopeo, and honestly, the closer to the way we do it in the executor the better14:40
@clarkb:matrix.orgthat puts a skopeo binary on the zuul executor for shuffling container image bits around so that you can safely publish container images at the end of builds14:40
@clarkb:matrix.orgthat does not put a skopeo binary on the "workload" side of your jobs14:40
@clarkb:matrix.orgin the case of the buildset registry jobs we have a workload that uses skopeo and that needs to be addressed as well.14:41
@clarkb:matrix.orgto be clear I think both things need addressing not one or the other14:41
@jim:acmegating.comso in that job, on our simulated executor -- is that node running jammy?  if we switch it to bookworm will the ensure-skopeo role work and produce the correct updated skopeo version?14:42
@jim:acmegating.comalternatively, we could probably just replace that stanza with "copy skopeo from the real executor to the fake one"14:42
@clarkb:matrix.orgcorvus: yes, except we need to also bump the default version of skopeo built by ensure-skopeo or override it in the job (same as bumping the version on the executor itself)14:42
@jim:acmegating.comsince it's statically linked golang, right?14:42
@jim:acmegating.comClark: ack14:42
@clarkb:matrix.organd we want at least 1.14.2 if we want skopeo to negotiate the docker api version instead of hardcoding it to something from 201414:43
@yoctozepto:matrix.orgcorvus: Clark thanks, I get it now14:44
@yoctozepto:matrix.orgthese jobs exercise the tasks that are otherwise executed on the executor on the workload side of things instead14:45
@yoctozepto:matrix.orgfor some reason14:45
-@gerrit:opendev.org- Zuul merged on behalf of Jens Harbott: [zuul/zuul-jobs] 913808: Revert "Override DOCKER_MIN_API_VERSION for skopeo when installing docker" https://review.opendev.org/c/zuul/zuul-jobs/+/91380814:45
@yoctozepto:matrix.orgwhat confuses me still, why we test this way and not using the executor still?14:45
@yoctozepto:matrix.orgok, recheck in14:46
@jim:acmegating.comokay, so 2 things need fixing:14:46
1) multi-stage build in zuul/Dockerfile to build new skopeo (let's still use multi-stage even though the platform supports it just to keep things clean)
2) fix test-playbooks/registry/test-registry-pre.yaml to either:
a) run on bookworm and build later version of skopeo
b) copy skopeo from the real executor to the fake one
@clarkb:matrix.orgso I think there are two things there. The first is that you should be able to run skopeo in your workload regardless of what the executor does14:46
@yoctozepto:matrix.orgso it should fail on the fact that it's installing the old skopeo14:46
@clarkb:matrix.orgthats perfectly acceptable. We don't have a rule that says "the only skopeo that should work is the executor".14:47
@yoctozepto:matrix.orgClark: agreed14:47
@clarkb:matrix.orgThe other is that I think these jobs may have been written before we loosened the rules on what can run on the executor which meant we had not choice but to emulate on the workload side of things14:47
@yoctozepto:matrix.orgcould be14:47
@jim:acmegating.comyoctozepto: yes that's correct; the reason for the fake executor is that they likely predate the ability to run arbitrary code on the executor.  it's possible they could be reworked to just use the real executor at this point, but that's not clear.  they may still need it for other reasons though.14:47
@yoctozepto:matrix.orgbecause now they are testing a different thing that the actual jobs do14:48
@jim:acmegating.comClark: jinx14:48
@clarkb:matrix.orgcorvus: matrix actually interleaved our messages after the fact. Neat14:48
@yoctozepto:matrix.orgcorvus: so we need to amend the (2) from your idea list14:48
@jim:acmegating.comClark: i agree that ensure-skopeo should ideally work anywhere, but there's a good possibility that no one is using it except for us in that role, so if we drop our only use of it, we can see if anyone is using it and wants to fix it.  otherwise i don't feel like we need to maintain it. 14:50
@clarkb:matrix.orgthats fair14:50
@yoctozepto:matrix.orgyeah, less maintenance burden is always a good thing (TM)14:50
@jim:acmegating.comyoctozepto: what's your suggested amendment to (2) ?14:51
@yoctozepto:matrix.org2024-03-21 14:51:12.140342 | TASK [Push test image into fake buildset registry]14:52
2024-03-21 14:51:12.740850 | ubuntu-jammy | time="2024-03-21T14:51:12Z" level=fatal msg="initializing source docker-daemon:zuul/testimage:latest: loading image from docker engine: Error response from daemon: {\"message\":\"client version 1.22 is too old. Minimum supported API version is 1.24, please upgrade your client to a newer version\"}"
@yoctozepto:matrix.orgfails as expected, folks14:52
@yoctozepto:matrix.orgcorvus: following your discussion with Clark, (2) should be to make the tests use the executor as the non-test jobs do14:52
@yoctozepto:matrix.orgwithout any other faking/simulating/whatever14:53
@jim:acmegating.comyoctozepto: i think that's too big of a bite to take now14:53
@jim:acmegating.comi think we should fix the job minimally first, then refactor it later if possible14:53
@yoctozepto:matrix.orgcorvus: hmm, you mean it's not as simple as changing some all->localhost? could be, have not checked much14:54
@yoctozepto:matrix.orgso for now I guess let's copy the binary14:54
@yoctozepto:matrix.organd forget about ensure-skopeo14:54
@jim:acmegating.comgetting an updated skopeo on the fake executor is a bite sized piece of work we can do now and get the jobs working again; anything bigger will likely open a can of worms, which is worth doing, but will be much easier once the jobs are actually working agin14:55
@yoctozepto:matrix.orgI have to go make myself some food and then go help my mom with her doctor's appointment so I will be out for some larger period of time (possibly till tomorrow)14:55
@yoctozepto:matrix.orgcorvus: got it!14:55
@clarkb:matrix.orgI would try updated the job to run on bookworm and bump the version of skopeo we compile14:55
@jim:acmegating.comyeah, so 2b -- copy the binary, is probably easiest, though it does mean we have to finish 1 and get it into production first; 2a could probably happen in parallel with 1.14:55
@clarkb:matrix.orgthat may just work14:55
@jim:acmegating.comClark: cool, if you think that stands a shot, let's try 2a first; we'll have time to switch to 2b after we finish 1 anyway14:56
@clarkb:matrix.org++14:57
@clarkb:matrix.orgshould I write the change?14:57
@jim:acmegating.comClark: that'd be great; i can try starting work on item #1 unless anyone else wants that14:57
@clarkb:matrix.orgok I'm doing 2a to be clear14:58
-@gerrit:opendev.org- Simon Westphahl proposed: [zuul/zuul] 913914: Don't reset buildset when cycle dependency merged https://review.opendev.org/c/zuul/zuul/+/91391415:01
-@gerrit:opendev.org- Clark Boylan proposed on behalf of Radosław Piliszek:15:07
- [zuul/zuul-jobs] 913902: Reenable buildset-registry jobs https://review.opendev.org/c/zuul/zuul-jobs/+/913902
- [zuul/zuul-jobs] 913905: Reenable crio jobs https://review.opendev.org/c/zuul/zuul-jobs/+/913905
-@gerrit:opendev.org- James E. Blair https://matrix.to/#/@jim:acmegating.com proposed: [zuul/zuul] 913917: Build a new skopeo for the zuul-executor container image https://review.opendev.org/c/zuul/zuul/+/91391715:27
@jim:acmegating.comClark: i think https://opendev.org/zuul/zuul-jobs/src/branch/master/zuul-tests.d/container-roles-jobs.yaml#L242 may need updating?15:31
@jim:acmegating.comClark: (i think that happens 3 times -- maybe that should be a yaml anchor15:31
-@gerrit:opendev.org- James E. Blair https://matrix.to/#/@jim:acmegating.com proposed: [zuul/zuul] 913917: Build a new skopeo for the zuul-executor container image https://review.opendev.org/c/zuul/zuul/+/91391715:34
@jim:acmegating.comClark: i'll update the patch15:38
-@gerrit:opendev.org- James E. Blair https://matrix.to/#/@jim:acmegating.com proposed on behalf of Radosław Piliszek:15:41
- [zuul/zuul-jobs] 913902: Reenable buildset-registry jobs https://review.opendev.org/c/zuul/zuul-jobs/+/913902
- [zuul/zuul-jobs] 913905: Reenable crio jobs https://review.opendev.org/c/zuul/zuul-jobs/+/913905
-@gerrit:opendev.org- Clark Boylan proposed on behalf of Radosław Piliszek:15:48
- [zuul/zuul-jobs] 913902: Reenable buildset-registry jobs https://review.opendev.org/c/zuul/zuul-jobs/+/913902
- [zuul/zuul-jobs] 913905: Reenable crio jobs https://review.opendev.org/c/zuul/zuul-jobs/+/913905
@clarkb:matrix.orgoh shoot did I just push over what corvus pushed?15:48
-@gerrit:opendev.org- Clark Boylan proposed on behalf of Radosław Piliszek:15:56
- [zuul/zuul-jobs] 913902: Reenable buildset-registry jobs https://review.opendev.org/c/zuul/zuul-jobs/+/913902
- [zuul/zuul-jobs] 913905: Reenable crio jobs https://review.opendev.org/c/zuul/zuul-jobs/+/913905
-@gerrit:opendev.org- Clark Boylan proposed on behalf of Radosław Piliszek:16:18
- [zuul/zuul-jobs] 913902: Reenable buildset-registry jobs https://review.opendev.org/c/zuul/zuul-jobs/+/913902
- [zuul/zuul-jobs] 913905: Reenable crio jobs https://review.opendev.org/c/zuul/zuul-jobs/+/913905
@clarkb:matrix.orgskopeo 1.15 actually requires golang 1.20. Their docs are not up to date /me pins back to 1.14.216:32
-@gerrit:opendev.org- Clark Boylan proposed on behalf of Radosław Piliszek:16:35
- [zuul/zuul-jobs] 913902: Reenable buildset-registry jobs https://review.opendev.org/c/zuul/zuul-jobs/+/913902
- [zuul/zuul-jobs] 913905: Reenable crio jobs https://review.opendev.org/c/zuul/zuul-jobs/+/913905
@clarkb:matrix.orgif 1.14.2 also requires golang 1.20 then this attempt at fixing it won't work16:36
@clarkb:matrix.orgI do think that skopeo should strongly consider backporting the api version negotiation fix if anyone knows anyone at skopeo that they can suggest thsi to16:36
@yoctozepto:matrix.orgbtw, the current setup of things works just fine with skopeo on the executor (as tested in nebulous)16:37
@clarkb:matrix.orgskopeo + docker basically does not work on any stable distro release any longer16:37
@clarkb:matrix.orgyoctozepto: this would only be an issue if skopeo had to fetch images (possibly for publication) from docker in your job16:37
@yoctozepto:matrix.orgI think it does pull and push images16:39
@clarkb:matrix.orghrm I half wonder then if older skopeo did negotiate versions then they had a regression that stopped that16:40
@yoctozepto:matrix.orgI think it does this only registry-registry16:41
@clarkb:matrix.orgbookworm has skopeo 1.9.316:41
@clarkb:matrix.orgoh ya registry to registry would be fine16:41
@clarkb:matrix.orgits only talking to the docker daemon that breaks16:41
@yoctozepto:matrix.orgI mean in this job it only would be doing that, I think16:41
@clarkb:matrix.orgso if your jobs use docker cli to push the image to the registry then skopeo talks to the registry all is well16:42
@clarkb:matrix.orgbut as soon as you try to have skopeo talk to docker directly it explodes16:42
@yoctozepto:matrix.orgyeah, I figured16:42
@yoctozepto:matrix.orgbut then it seems this can be well avoided16:43
@yoctozepto:matrix.orgas if only the test jobs were meant to break 🤣16:43
@clarkb:matrix.orgI'm not sure that is a good attitude to take. The registries could start enforcing the same api limits to follow dockers lead16:45
@clarkb:matrix.orgdocker maintains one of the most popular registries too16:45
@yoctozepto:matrix.orgno, that is well standardised now16:48
@yoctozepto:matrix.orgunlike docker api16:48
@yoctozepto:matrix.orgI mean that many people using skopeo will be doing so in tandem with the other oci tools, like podman16:49
@clarkb:matrix.orgisn't it the same API for pushing and pulling images?16:49
@yoctozepto:matrix.orgno16:50
@yoctozepto:matrix.orgthe docker api is for its internal image cache/store16:50
@clarkb:matrix.orgI see. odd that they would invent two apis that do the same thing though16:51
@clarkb:matrix.orgNot that I am surprised16:51
@yoctozepto:matrix.orgalmost the same thing, it has more operations I think16:51
@yoctozepto:matrix.orgthe problem is it has this microversioning now and whatnot16:52
@yoctozepto:matrix.organyhow, good that the real blast radius is very minimal16:52
-@gerrit:opendev.org- Clark Boylan proposed on behalf of Radosław Piliszek:17:02
- [zuul/zuul-jobs] 913902: Reenable buildset-registry jobs https://review.opendev.org/c/zuul/zuul-jobs/+/913902
- [zuul/zuul-jobs] 913905: Reenable crio jobs https://review.opendev.org/c/zuul/zuul-jobs/+/913905
@clarkb:matrix.orgI think that may actually have a chance at succeeding17:02
@clarkb:matrix.organd if so we probably want to refactor a bit to pull out the ensure-skopeo support for debian effort into its own change17:02
@clarkb:matrix.orgbut I'll defer to reviewers on all that17:03
-@gerrit:opendev.org- Simon Westphahl proposed: [zuul/zuul] 913914: Don't reset buildset when cycle dependency merged https://review.opendev.org/c/zuul/zuul/+/91391417:08
@yoctozepto:matrix.orgClark: two little comments from me17:24
-@gerrit:opendev.org- Clark Boylan proposed on behalf of Radosław Piliszek:17:30
- [zuul/zuul-jobs] 913902: Reenable buildset-registry jobs https://review.opendev.org/c/zuul/zuul-jobs/+/913902
- [zuul/zuul-jobs] 913905: Reenable crio jobs https://review.opendev.org/c/zuul/zuul-jobs/+/913905
@yoctozepto:matrix.orgAnother little comment on the last one. That is how much I see on the little screen of my phone. I will have a deeper look later on.17:36
@yoctozepto:matrix.orghave you figured out what the crio repos need?19:00
@clarkb:matrix.orgNo haven't looked yet19:02
@yoctozepto:matrix.orgok, let me see then19:03
@yoctozepto:matrix.orghttps://opendev.org/zuul/zuul-jobs/src/branch/master/roles/ensure-kubernetes/tasks/main.yaml19:04
@yoctozepto:matrix.orgwell, it explicitly asks for xenial huh19:04
@yoctozepto:matrix.orghttps://kubernetes.io/blog/2023/08/31/legacy-package-repository-deprecation/#can-i-continue-to-use-the-legacy-package-repositories19:06
@yoctozepto:matrix.orgUPDATE: The legacy packages are expected to go away by the end of February 2024.19:06
@yoctozepto:matrix.orgoh well!19:06
@yoctozepto:matrix.orghmm19:06
@yoctozepto:matrix.orgI do wonder why it was adding those19:07
@yoctozepto:matrix.orgas it tries to do minikube19:07
@yoctozepto:matrix.orgprobably for kubectl19:07
@yoctozepto:matrix.orghmm19:07
@yoctozepto:matrix.orgI know just the fix19:08
-@gerrit:opendev.org- Radosław Piliszek proposed: [zuul/zuul-jobs] 913905: Reenable crio jobs https://review.opendev.org/c/zuul/zuul-jobs/+/91390519:16
@yoctozepto:matrix.orglet's see this19:17
@jim:acmegating.comClark: https://review.opendev.org/913917 to upgrade the executor skopeo is ready; i reckon we can merge it today and let the opendev executors start running it this weekend?19:21
@jim:acmegating.comClark: oh i see you changed to 1.14.2 in the zuul-jobs change; should i match that in the dockerfile?19:23
@clarkb:matrix.orgcorvus: 1.14.2 was necessary because 1.15.0 actually requires golang 1.20. I think you can use 1.15.0 if you have golang 1.20 but keeping them in sync may be nice. I also had to change the make commands to run a make install in order to install the default policy.json which is now required19:24
@clarkb:matrix.orgI think that the docker change may work until we run skopeo then it will explode. Also need to copy /etc/containers/policy.json or whatever the file is to the other host19:25
@clarkb:matrix.organd maybe into the bwrap env?19:25
@jim:acmegating.comoh yeah that.... how do we determine that works?  can we just do a skopeo copy from a registry?19:25
@jim:acmegating.com(the extent of manual testing i have done is "skopeo --version")19:26
@jim:acmegating.comi don't think we need to worry about bwrap because i think we bind mount all that in, but i'll double check19:26
@clarkb:matrix.orgcorvus: I think so it was the registry job that tripped on it19:26
@jim:acmegating.comokay, i'll test my current build to see if it breaks, then change to 1.14 copy missing files and test again19:27
@clarkb:matrix.orgsounds good19:27
@jim:acmegating.com(also, back burner item: we might want to think about some validation tests for the image since it's getting more complex than is represented in the unit tests)19:28
@yoctozepto:matrix.orgcrio is very happy now19:28
@jim:acmegating.combtw i guess we can abandon https://review.opendev.org/907100 and https://review.opendev.org/90691619:34
-@gerrit:opendev.org- James E. Blair https://matrix.to/#/@jim:acmegating.com proposed: [zuul/zuul] 913917: Build a new skopeo for the zuul-executor container image https://review.opendev.org/c/zuul/zuul/+/91391719:48
@jim:acmegating.comi built that locally and ran: `zuul-bwrap /tmp skopeo copy docker://quay.io/zuul-ci/zuul:latest oci:test`  and it worked19:49
@jim:acmegating.com(and i confirmed the previous version did not for several reasons all of which you can see in the inter-patchset diff)19:49
-@gerrit:opendev.org- James E. Blair https://matrix.to/#/@jim:acmegating.com proposed: [zuul/zuul] 913931: Add container image sanity checks https://review.opendev.org/c/zuul/zuul/+/91393120:01
@jim:acmegating.com^ is an attempt to automate that20:01
-@gerrit:opendev.org- James E. Blair https://matrix.to/#/@jim:acmegating.com proposed on behalf of Simon Westphahl: [zuul/zuul] 913914: Don't reset buildset when cycle dependency merged https://review.opendev.org/c/zuul/zuul/+/91391420:55
@yoctozepto:matrix.orgooh, I found an issue in the reenabler change21:03
@yoctozepto:matrix.orgit is by chance that the microk8s job work - the minikube path is not prepared for non-ubuntu at all21:04
@yoctozepto:matrix.orgso that override from ubuntu to debian should not have been made21:04
@yoctozepto:matrix.orgI think let this gate but i will undo this in the last followup21:05
@yoctozepto:matrix.orgfor consistency21:05
@jim:acmegating.comyoctozepto: oh i just yanked my +w from 902; feel free to update the stack21:05
@yoctozepto:matrix.orgoh21:06
@yoctozepto:matrix.orgok21:06
@jim:acmegating.com(i was already looking into the crio failure and noticing the lack of a crio-debian file there)21:06
-@gerrit:opendev.org- Radosław Piliszek proposed: [zuul/zuul-jobs] 913902: Reenable buildset-registry jobs https://review.opendev.org/c/zuul/zuul-jobs/+/91390221:08
@fungicide:matrix.orgwhoops, thanks for catching that!21:08
-@gerrit:opendev.org- Radosław Piliszek proposed: [zuul/zuul-jobs] 913902: Reenable buildset-registry jobs https://review.opendev.org/c/zuul/zuul-jobs/+/91390221:09
-@gerrit:opendev.org- Radosław Piliszek proposed: [zuul/zuul-jobs] 913905: Reenable crio jobs https://review.opendev.org/c/zuul/zuul-jobs/+/91390521:09
-@gerrit:opendev.org- Radosław Piliszek proposed: [zuul/zuul-jobs] 913905: Reenable crio jobs https://review.opendev.org/c/zuul/zuul-jobs/+/91390521:09
@yoctozepto:matrix.orgit should be fine now21:10
@yoctozepto:matrix.orglet's wait for tests21:10
@yoctozepto:matrix.orgnonetheless, I call it a day now21:11
@yoctozepto:matrix.orghave a good rest of the day and good night sleep21:11
@clarkb:matrix.orgfwiw I think the ubnutu based job will fail21:12
@clarkb:matrix.orgbecause skopeo on ubuntu is 1.13.321:13
@clarkb:matrix.orgbut we can wait and see21:13
@clarkb:matrix.orgmaybe we just drop the job in that case21:13
@vlotorev:matrix.orgHi, i'm running Zuul 9.2 and want to upgrade to 9.5.22:37
Zuul 9.3 release note notifies that there is SQL db migration.
Should I upgrade 9.2 -> 9.3 -> 9.5, or 9.2 -> 9.5 is acceptable?
@vlotorev:matrix.org* Hi, i'm running Zuul 9.2 and want to upgrade to 9.5.22:38
Zuul 9.3 release note notifies that there is SQL db migration required.
Should I upgrade 9.2 -> 9.3 -> 9.5, or 9.2 -> 9.5 is acceptable?
@jim:acmegating.comvlotorev: i'm not in a position to recommend an upgrade procedure for your circumstances, but if you're asking whether the sql migration in 9.3 will run when you start 9.5, the answer is yes.22:49
@clarkb:matrix.orgI think the intention is that you should only have to stop at major release boundaries. However, stepping through can't hurt. The db migration should run either way though? Didn't one of those versions require a zk data clear too?22:49
@clarkb:matrix.orgOr no that was 1022:50
@jim:acmegating.comyes that's in the notes for 1022:50
@jim:acmegating.com * vlotorev: i'm not in a position to recommend an upgrade procedure for your circumstances, but if you're asking whether the sql migration in 9.3 will run when version 9.5 is started, the answer is yes.22:50
@jim:acmegating.comfwiw, i typically don't recommend to acme gating clients to step through versions when upgrading.  in general it should be fine to jump within or up one major version, if more than that, clear the zk state. upgrade notes control though, and can override that (as in the case of 10 which requires a state clear in all cases).22:56
@vlotorev:matrix.orgThanks.23:00
-@gerrit:opendev.org- James E. Blair https://matrix.to/#/@jim:acmegating.com proposed:23:57
- [zuul/zuul] 913727: Record merger operations https://review.opendev.org/c/zuul/zuul/+/913727
- [zuul/zuul] 913938: Store a repo state file in the log directory https://review.opendev.org/c/zuul/zuul/+/913938
-@gerrit:opendev.org- James E. Blair https://matrix.to/#/@jim:acmegating.com proposed on behalf of Tobias Henkel: [zuul/zuul] 785562: WIP: Save the repo state in the job log dir https://review.opendev.org/c/zuul/zuul/+/78556223:58
« Wednesday, 2024-03-20 Index Friday, 2024-03-22 »

Generated by irclog2html.py 2.17.3 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!