Tuesday, 2025-04-15

« Monday, 2025-04-14 Index Wednesday, 2025-04-16 »
-@gerrit:opendev.org- Dong Zhang proposed wip: [zuul/zuul] 941081: WIP: Update documentation for Zuul as OIDC IDP https://review.opendev.org/c/zuul/zuul/+/94108106:59
@joao15130:matrix.orgHello, I'm trying to use a secret inside a playbook.08:46
I'm facing this error during freeze:
```
f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: [e: 4a96b8ed57be4c95acbc51c584ef8bbe] Error freezing job graph for <QueueItem e31a7658c491492fbf13e6bb29b89c71 live for [<Change 0x7bb8f4ac7650 openstack/manila 943233,7>] in dell-emc-powerscale-ci-check>
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: Traceback (most recent call last):
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: File "/usr/local/lib/python3.11/site-packages/zuul/manager/__init__.py", line 1789, in prepareItem
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: item.freezeJobGraph(self.getLayout(item),
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: File "/usr/local/lib/python3.11/site-packages/zuul/model.py", line 6183, in freezeJobGraph
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: results = layout.createJobGraph(context, self, skip_file_matcher,
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: File "/usr/local/lib/python3.11/site-packages/zuul/model.py", line 9526, in createJobGraph
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: self.extendJobGraph(
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: File "/usr/local/lib/python3.11/site-packages/zuul/model.py", line 9391, in extendJobGraph
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: final_job.setBase(self, semaphore_handler)
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: File "/usr/local/lib/python3.11/site-packages/zuul/model.py", line 3931, in setBase
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: self.pre_run = self.freezePlaybooks(
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: ^^^^^^^^^^^^^^^^^^^^^
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: File "/usr/local/lib/python3.11/site-packages/zuul/model.py", line 4154, in freezePlaybooks
104ed3bed237 2025-04-15 08:44:20,666 INFO zuul.ExecutorServer: [e: 4a96b8ed57be4c95acbc51c584ef8bbe] Merge <MergeRequest a387e1229adf4469b79fc53068de5c8b, job_type=merge, state=running, path=/zuul/merger/requests/a387e1229adf4469b79fc53068de5c8b> complete, merged: True, updated: False, commit: 483bc6c4bb761ba0e9339b756803f92f045e66d7, branches: []
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: pb.freezeSecrets(layout)
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: File "/usr/local/lib/python3.11/site-packages/zuul/model.py", line 2897, in freezeSecrets
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: encrypted_secret_data = secret.serialize()
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: ^^^^^^^^^^^^^^^^
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: AttributeError: 'NoneType' object has no attribute 'serialize'
```
Any idea?
The secret looks like this:
```
---
- secret:
name: private_logs
data:
fqdn: 10.228.225.15
path: /openstack
ssh_known_hosts: |
10.228.225.15 ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBGu3THBYAZdtgMg6BWSdAaJl3SWvef5gTmsB58KOamPIhXBXCDMJBrzqxl+C6+7sYf+5RHKop6DWM78h3+Vl5sY=
ssh_username: openstack_logs
ssh_private_key: |
-----BEGIN OPENSSH PRIVATE KEY-----
b3BlbnNzaC1rZXktdjEAAAAABG5vbmUAAAAEbm9uZQAAAAAAAAABAAAAMwAAAAtzc2gtZW
QyNTUxOQAAACDdw8MZeMEjSaP5hwc+c7dRni1VtyKTv7wNAT8zAPYE3QAAAJgqVLSyKlS0
sgAAAAtzc2gtZWQyNTUxOQAAACDdw8MZeMEjSaP5hwc+c7dRni1VtyKTv7wNAT8zAPYE3Q
AAAED19Wv8/cLocJWtExheWShN5Wilb4jxJaYpTT92QQtM7d3Dwxl4wSNJo/mHBz5zt1Ge
LVW3IpO/vA0BPzMA9gTdAAAAEXJvb3RAMTA0ZWQzYmVkMjM3AQIDBA==
-----END OPENSSH PRIVATE KEY-----
- secret:
name: public_logs
data:
fqdn: 128.221.210.203
path: /openstack
ssh_known_hosts: |
128.221.210.203 ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBNI7Op5T8mi1auEkZwRh6UG2t2wT9eQzF7vTVMsfq4z8DFNa2A0NascG1GdLWC4wQwJRN/RFnm/pBKHjSEVtRI0=
ssh_username: openstack_logs
ssh_private_key: |
-----BEGIN OPENSSH PRIVATE KEY-----
b3BlbnNzaC1rZXktdjEAAAAABG5vbmUAAAAEbm9uZQAAAAAAAAABAAAAMwAAAAtzc2gtZW
QyNTUxOQAAACDdw8MZeMEjSaP5hwc+c7dRni1VtyKTv7wNAT8zAPYE3QAAAJgqVLSyKlS0
sgAAAAtzc2gtZWQyNTUxOQAAACDdw8MZeMEjSaP5hwc+c7dRni1VtyKTv7wNAT8zAPYE3Q
AAAED19Wv8/cLocJWtExheWShN5Wilb4jxJaYpTT92QQtM7d3Dwxl4wSNJo/mHBz5zt1Ge
LVW3IpO/vA0BPzMA9gTdAAAAEXJvb3RAMTA0ZWQzYmVkMjM3AQIDBA==
-----END OPENSSH PRIVATE KEY-----
```
@joao15130:matrix.org* Hello, I'm trying to use a secret inside a playbook.08:48
I'm facing this error during freeze:
```
f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: [e: 4a96b8ed57be4c95acbc51c584ef8bbe] Error freezing job graph for <QueueItem e31a7658c491492fbf13e6bb29b89c71 live for [<Change 0x7bb8f4ac7650 openstack/manila 943233,7>] in dell-emc-powerscale-ci-check>
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: Traceback (most recent call last):
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: File "/usr/local/lib/python3.11/site-packages/zuul/manager/__init__.py", line 1789, in prepareItem
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: item.freezeJobGraph(self.getLayout(item),
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: File "/usr/local/lib/python3.11/site-packages/zuul/model.py", line 6183, in freezeJobGraph
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: results = layout.createJobGraph(context, self, skip_file_matcher,
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: File "/usr/local/lib/python3.11/site-packages/zuul/model.py", line 9526, in createJobGraph
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: self.extendJobGraph(
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: File "/usr/local/lib/python3.11/site-packages/zuul/model.py", line 9391, in extendJobGraph
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: final_job.setBase(self, semaphore_handler)
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: File "/usr/local/lib/python3.11/site-packages/zuul/model.py", line 3931, in setBase
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: self.pre_run = self.freezePlaybooks(
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: ^^^^^^^^^^^^^^^^^^^^^
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: File "/usr/local/lib/python3.11/site-packages/zuul/model.py", line 4154, in freezePlaybooks
104ed3bed237 2025-04-15 08:44:20,666 INFO zuul.ExecutorServer: [e: 4a96b8ed57be4c95acbc51c584ef8bbe] Merge <MergeRequest a387e1229adf4469b79fc53068de5c8b, job_type=merge, state=running, path=/zuul/merger/requests/a387e1229adf4469b79fc53068de5c8b> complete, merged: True, updated: False, commit: 483bc6c4bb761ba0e9339b756803f92f045e66d7, branches: []
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: pb.freezeSecrets(layout)
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: File "/usr/local/lib/python3.11/site-packages/zuul/model.py", line 2897, in freezeSecrets
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: encrypted_secret_data = secret.serialize()
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: ^^^^^^^^^^^^^^^^
5f3b411462e2 2025-04-15 08:44:20,783 ERROR zuul.Pipeline.openstack.dell-emc-powerscale-ci-check: AttributeError: 'NoneType' object has no attribute 'serialize'
```
Any idea?
The secret looks like this:
```
---
- secret:
name: private_logs
data:
fqdn: 10.228.225.15
path: /openstack
ssh_known_hosts: |
10.228.225.15 ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBGu3THBYAZdtgMg6BWSdAaJl3SWvef5gTmsB58KOamPIhXBXCDMJBrzqxl+C6+7sYf+5RHKop6DWM78h3+Vl5sY=
ssh_username: openstack_logs
ssh_private_key: |
xxx
- secret:
name: public_logs
data:
fqdn: 128.221.210.203
path: /openstack
ssh_known_hosts: |
128.221.210.203 ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBNI7Op5T8mi1auEkZwRh6UG2t2wT9eQzF7vTVMsfq4z8DFNa2A0NascG1GdLWC4wQwJRN/RFnm/pBKHjSEVtRI0=
ssh_username: openstack_logs
ssh_private_key: |
xxx
```
-@gerrit:opendev.org- Dong Zhang proposed wip: [zuul/zuul] 941081: WIP: Update documentation for Zuul as OIDC IDP https://review.opendev.org/c/zuul/zuul/+/94108110:51
-@gerrit:opendev.org- Dong Zhang proposed wip: [zuul/zuul] 941081: WIP: Update documentation for Zuul as OIDC IDP https://review.opendev.org/c/zuul/zuul/+/94108111:20
-@gerrit:opendev.org- Dong Zhang proposed wip: [zuul/zuul] 941081: WIP: Update documentation for Zuul as OIDC IDP https://review.opendev.org/c/zuul/zuul/+/94108111:50
-@gerrit:opendev.org- Dong Zhang proposed wip: [zuul/zuul] 941081: Update documentation for Zuul as OIDC ID Provider https://review.opendev.org/c/zuul/zuul/+/94108112:22
-@gerrit:opendev.org- Dong Zhang proposed wip: [zuul/zuul] 941081: Update documentation for Zuul as OIDC ID Provider https://review.opendev.org/c/zuul/zuul/+/94108112:35
-@gerrit:opendev.org- Dong Zhang marked as active: [zuul/zuul] 941081: Update documentation for Zuul as OIDC ID Provider https://review.opendev.org/c/zuul/zuul/+/94108112:36
-@gerrit:opendev.org- Simon Westphahl proposed: [zuul/zuul] 947238: Fix issue with parse context w/o scheduler https://review.opendev.org/c/zuul/zuul/+/94723812:52
@fungicide:matrix.orgjoao15130: first, i hope that ssh private key isn't the real one you're using, or you just gave your keys away to a public discussion channel13:39
@fungicide:matrix.orgsecond, it looks like you haven't encrypted the sshprivatekey with zuul-client encrypt ... https://zuul-ci.org/docs/zuul/latest/project-config.html#encryption13:40
@fungicide:matrix.orgi see you edited the value after you pasted it, but for example my matrix client allows me to see what the value was before you edited your message to redact it13:41
@blart_versenwald_3:matrix.orgI could not find any documentation for it, but maybe my query was wrong. Hopefully someone here understand what I want, and can answer if it is possible or not :) 14:02
Can you point out what version of the parent job you inherit? I want our users to be able to control what version of our job they use. Maybe I can use the job.override-checkout attribute, the parent in this case is never in the same repository as child. Hmm...
@jim:acmegating.comblart_versenwald_3: https://zuul-ci.org/docs/zuul/latest/config/job.html#attr-job.required-projects.override-checkout maybe this documentation will help, especially the last pgraph14:40
@blart_versenwald_3:matrix.orgcorvus: Yeah, maybe :) Well actually I am not sure, it talks about variants here, and I am not sure a parent is a variant in this context... (parent and child resides in different repositories)14:51
@mordred:waterwanders.comnode:22-bookworm doesn't exist in the mirror14:53
-@gerrit:opendev.org- James E. Blair https://matrix.to/#/@jim:acmegating.com proposed on behalf of Clark Boylan: [zuul/zuul] 944183: Implement pre-timeout for pre-run playbooks https://review.opendev.org/c/zuul/zuul/+/94418315:43
@joao15130:matrix.orgThat's a test environment so no big deal. 17:07
I didn't encrypt the keys, you're right and I'll look into it.
But any ideas on where this error can come from? I have no issue working with a single secret but it doesn't once I added it
-@gerrit:opendev.org- Zuul merged on behalf of Simon Westphahl: [zuul/zuul] 943385: Remove deprecated status_url config and format https://review.opendev.org/c/zuul/zuul/+/94338517:08
@joao15130:matrix.org* That's a test environment so no big deal. 17:12
I didn't encrypt the keys, you're right and I'll look into it.
But any ideas on where this error can come from? I have no issue working with a single secret but it doesn't once I added it.
The idea here is to add a second fileserver and this is why I'm trying to add a second secret which holds all data for the second server
-@gerrit:opendev.org- Zuul merged on behalf of Clark Boylan: [zuul/zuul] 944183: Implement pre-timeout for pre-run playbooks https://review.opendev.org/c/zuul/zuul/+/94418317:12
-@gerrit:opendev.org- James E. Blair https://matrix.to/#/@jim:acmegating.com proposed on behalf of Simon Westphahl: [zuul/zuul] 947238: Fix issue with parse context w/o scheduler https://review.opendev.org/c/zuul/zuul/+/94723817:50
-@gerrit:opendev.org- James E. Blair https://matrix.to/#/@jim:acmegating.com proposed on behalf of Simon Westphahl: [zuul/zuul] 947238: Fix issue with parse context w/o scheduler https://review.opendev.org/c/zuul/zuul/+/94723819:14
-@gerrit:opendev.org- Zuul merged on behalf of Felix Edel: [zuul/zuul] 939699: UI: Include queue.branch in expansionKey for queues on status page https://review.opendev.org/c/zuul/zuul/+/93969919:17
@nitarek123:matrix.orgIf I'm writing a new role for a config repo, is there anyway to run playbooks that test it on the config repo itself without merging it and hoping it works?22:10
-@gerrit:opendev.org- Zuul merged on behalf of Simon Westphahl: [zuul/zuul] 947238: Fix issue with parse context w/o scheduler https://review.opendev.org/c/zuul/zuul/+/94723822:50
-@gerrit:opendev.org- James E. Blair https://matrix.to/#/@jim:acmegating.com proposed: [zuul/zuul] 947293: Update documentation for Zuul as OIDC ID Provider https://review.opendev.org/c/zuul/zuul/+/94729323:38
@clarkb:matrix.orgNot really. One approach that can be taken is running the role outside of the trusted repo context with things mocked out if necessary too. Another approach is to have a testing role that is applied to a test job that you can make changes in, merge, then run to check. If things look good you duplicate to the primary role23:42
« Monday, 2025-04-14 Index Wednesday, 2025-04-16 »

Generated by irclog2html.py 2.17.3 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!