#openstack-kolla log

15:00:15 <mgoddard> #startmeeting kolla
15:00:15 <openstack> Meeting started Wed Aug 26 15:00:15 2020 UTC and is due to finish in 60 minutes.  The chair is mgoddard. Information about MeetBot at http://wiki.debian.org/MeetBot.
15:00:16 <openstack> Useful Commands: #action #agreed #help #info #idea #link #topic #startvote.
15:00:19 <openstack> The meeting name has been set to 'kolla'
15:00:28 <mgoddard> #topic rollcall
15:00:33 <mgoddard> \o
15:00:36 <Wasaac> o/
15:03:19 <JamesBenson> \o
15:03:23 <jovial[m]> 0/
15:03:28 <mgoddard> mgoddard mnasiadka hrw egonzalez yoctozepto rafaelweingartne cosmicsound osmanlicilegi bbezak
15:03:29 <dougsz> \o
15:03:35 <mnasiadka> o/
15:03:39 <bbezak> o/
15:03:54 <yoctozepto> o/
15:05:17 <mgoddard> #topic agenda
15:05:25 <mgoddard> * Roll-call
15:05:26 <mgoddard> * Announcements
15:05:28 <mgoddard> ** Kolla feature freeze fast approaching: Sep 28 - Oct 02
15:05:30 <mgoddard> * Review action items from the last meeting
15:05:32 <mgoddard> * CI status
15:05:34 <mgoddard> * Mundane priorities: need to enact kolla-cli deprecation
15:05:36 <mgoddard> ** https://review.opendev.org/730431 -> https://docs.openstack.org/project-team-guide/repository.html#deprecating-a-repository
15:05:36 <patchbot> patch 730431 - project-config - Retire kolla-cli project - step 1 end project gating - 2 patch sets
15:05:38 <mgoddard> * Victoria release planning (kayobe)
15:05:40 <mgoddard> * Victoria release planning (kolla ansible)
15:05:42 <mgoddard> * Victoria release planning (kolla)
15:05:44 <mgoddard> #topic announcements
15:06:17 <mgoddard> Kolla feature freeze fast approaching: Sep 28 - Oct 02
15:06:21 <mgoddard> #info https://review.opendev.org/#/c/728448/
15:06:22 <patchbot> patch 728448 - kolla-ansible - Support TLS encryption of RabbitMQ client-server t... - 8 patch sets
15:06:26 <mgoddard> #undo
15:06:27 <openstack> Removing item from minutes: #info https://review.opendev.org/#/c/728448/
15:06:31 <mgoddard> #info Kolla feature freeze fast approaching: Sep 28 - Oct 02
15:07:01 <mgoddard> Any others?
15:08:06 <mgoddard> #topic Review action items from the last meeting
15:08:20 <mgoddard> mgoddard to message openstack-discuss about focal & victoria upgrade
15:08:25 <mgoddard> This is getting silly now
15:08:28 <mgoddard> #action mgoddard to message openstack-discuss about focal & victoria upgrade
15:08:49 <mgoddard> #topic CI status
15:09:48 <mgoddard> ok, how are we looking?
15:10:02 <mgoddard> kolla train & earlier not happy
15:10:13 <mgoddard> I did start looking at the bifrost issue but didn't finish
15:10:55 <mgoddard> the ironic conductor issue looks similar
15:11:38 <mgoddard> #action mgoddard to investigate bifrost CI issue on train
15:11:52 <mgoddard> I have a feeling the ironic issue is a similar root cause
15:11:57 <mgoddard> possibly ansible related
15:12:07 <mgoddard> kolla ansible looks green
15:12:30 <mgoddard> kayobe is better now
15:13:57 <mgoddard> #topic Mundane priorities: need to enact kolla-cli deprecation
15:14:05 <mgoddard> yoctozepto: this sounds like one of yours
15:14:37 <yoctozepto> yes
15:14:40 <yoctozepto> https://review.opendev.org/730431 -> https://docs.openstack.org/project-team-guide/repository.html#deprecating-a-repository
15:14:41 <patchbot> patch 730431 - project-config - Retire kolla-cli project - step 1 end project gating - 2 patch sets
15:14:57 <mgoddard> so we need to announce to the mailing list?
15:14:58 <yoctozepto> we should follow the deprecation procedure and drop kolla-cli master branch
15:15:06 <yoctozepto> we already have a deprecation notice
15:15:17 <yoctozepto> need to move with patchsets
15:16:20 <mgoddard> ok. who wants to do this?
15:18:15 <mgoddard> #action mgoddard to continue kolla-cli deprecation
15:19:35 <wuchunyang> retire kolla-cli ？
15:20:04 <mgoddard> yes
15:20:08 <mgoddard> well deprecate first
15:20:17 <wuchunyang> maybe i can help
15:21:56 <mgoddard> ok, thanks
15:22:25 <mgoddard> #topic Victoria release planning (kayobe)
15:22:43 <mgoddard> jovial[m] dougsz mnasiadka bbezak  Wasaac
15:23:07 <mgoddard> I went through the V features on the whiteboard
15:23:09 <mgoddard> #link https://etherpad.opendev.org/p/KollaWhiteBoard
15:23:17 <mgoddard> L355
15:23:32 <dougsz> thx
15:23:40 <mgoddard> let's say kayobe has not made much progress on its priorities this cycle :)
15:24:00 <mgoddard> we have 1 month until feature freeze
15:24:12 <dougsz> yeah, other time pressures unfortunately
15:24:15 <jovial[m]> luckily ussuri was a great release ;-)
15:24:25 <mgoddard> indeed, ussuri was good
15:24:54 <mgoddard> I think we should definitely do the documented config walk though
15:25:06 <Wasaac> +1
15:25:27 <dougsz> Others like bikolla are pushing it
15:25:28 <mgoddard> multiple environments would be nice, if priteau (or anyone) gets time
15:25:43 <mgoddard> but I think docs are a must
15:25:49 <mgoddard> so plan of action
15:26:19 <mgoddard> I think we should get a few heads together to work out how best to do it
15:26:50 <mgoddard> perhaps in the kolla klub meeting slot tomorrow (15:00 UTC)
15:26:59 <mgoddard> who is interested?
15:27:12 <Wasaac> Happy to help
15:27:30 <dougsz> I have a meeting clash tomorrow
15:27:35 <mnasiadka> I'll try to join Kolla Klub for the first time :)
15:27:36 <mgoddard> I think bbezak expressed an interest
15:27:51 <mgoddard> mnasiadka: no actual kolla klub this time
15:27:59 <mnasiadka> mgoddard: damn
15:28:00 <mgoddard> summer break
15:28:17 <mnasiadka> mgoddard: but yes, Bartosz expressed interest, so I think he'll be tehre
15:28:20 <mnasiadka> *there
15:28:22 <mgoddard> ok
15:28:32 <mgoddard> dougsz: are you keen to join? If so I can send out a doodle
15:28:54 <bbezak> Sure
15:29:00 <mgoddard> I guess priteau is busy with dougsz tomrrow
15:29:18 <mgoddard> not that I wanted this to become a committee meeting :)
15:29:41 <mgoddard> but it would be good to agree on a direction before setting off
15:30:12 <mgoddard> I'll send a doodle to the mailing list
15:30:16 <dougsz> I have quite a large existing backlog so I can't commit to much apart from reviewing - feel free to host the meeting tomorrow
15:30:33 <mgoddard> ok
15:31:41 <mgoddard> we have some open reviews, if anyone has time: https://review.opendev.org/#/q/project:openstack/kayobe+status:open
15:32:12 <mgoddard> any other kayobe things?
15:33:15 <dougsz> nothing from me
15:33:39 <mgoddard> #topic Victoria release planning (kolla ansible)
15:33:41 <mgoddard> ok
15:34:11 <mgoddard> again, I have added my best guess at status updates to the whiteboard for our V prioritie
15:34:18 <mgoddard> feel free to update them
15:34:52 <mgoddard> https://etherpad.opendev.org/p/KollaWhiteBoard
15:34:54 <mgoddard> L250
15:35:02 <mgoddard> let's go through
15:35:07 <mgoddard> lets encrypt
15:35:20 <mgoddard> needs some reviews
15:35:34 <mgoddard> I did a quick skim earlier but not enough
15:36:05 <mgoddard> seems like there is a bit of a bootstrapping question about how to initially deploy haproxy
15:36:59 <headphoneJames> also, where should cert bot run? anisble controller or openstack deploy
15:37:13 <mgoddard> next to haproxy?
15:37:29 <mgoddard> ansible controller should be assumed to be ephermal
15:37:37 <mgoddard> ephemeral
15:37:42 <headphoneJames> can cert bot retrieve the same certificate across many nodes?
15:38:23 <mgoddard> could you expand?
15:40:32 <headphoneJames> how we do get the initial certificate and distribute to all the nodes? Once we want to refresh an expired certificate, how does happen across all the nodes at the same time?
15:40:51 <headphoneJames> or maybe I don't understand the problem correctly
15:42:19 <mgoddard> these are good questions
15:42:27 <mgoddard> to which I don't know the answer right now
15:42:59 <headphoneJames> would it be worth have a separate meeting about this?
15:43:01 <mgoddard> you could look at how OSA does it
15:43:03 <mgoddard> https://docs.openstack.org/openstack-ansible/latest/user/security/ssl-certificates.html#letsencrypt-certificates
15:43:25 <mgoddard> https://github.com/openstack/openstack-ansible-haproxy_server
15:44:17 <mgoddard> we could have a meeting. I think the main obstacle is that I don't know enough about it to be too helpful
15:46:19 <mgoddard> I will try to spend some time brushing up on it
15:46:25 <mgoddard> perhaps others are more familiar
15:46:32 <mgoddard> have you spoken to diurnalist about it?
15:46:44 <mgoddard> headphoneJames:
15:48:02 <mgoddard> ok, I think we need to move on
15:48:10 <mgoddard> wuchunyang: around?
15:48:17 <wuchunyang> ?
15:48:21 <mgoddard> hi
15:48:40 <mgoddard> looks like good progress with octavia, and you had some good feedback from johnsom
15:48:42 <wuchunyang> :-)
15:48:58 <mgoddard> I will put it in my browser tab queue
15:49:22 <wuchunyang> i don't get some new feedback now
15:49:58 <mgoddard> at this point in the release, I think we need to focus on features that already have good progress, and octavia is a good example
15:50:10 <johnsom> Let me know if there are patches you would like me to look at. I did an initial pass, but haven't kept up with updates.
15:50:44 <mgoddard> thanks johnsom o
15:50:55 <mgoddard> looks like no progress on designate
15:51:16 <mgoddard> federated keystone has made good progress, let's try to land it
15:51:17 <wuchunyang> johnsom i have updated ps follow up  your comments thanks
15:51:23 <mgoddard> https://review.opendev.org/695432
15:51:24 <patchbot> patch 695432 - kolla-ansible - Add support to OpenID Connect Authentication flow - 31 patch sets
15:51:48 <mgoddard> container health checks needs an update
15:52:14 <mgoddard> Ansible handlers bug is blocked on whether ansible accepts the fix
15:52:33 <mgoddard> Lots of patches up for performance & scalability.
15:52:40 <mgoddard> #link https://review.opendev.org/#/q/topic:bp/performance-improvements
15:52:43 <mgoddard> reviews appreciated
15:52:59 <mgoddard> ironic TLS backend needs an update to fix ubuntu
15:53:15 <mgoddard> rabbitMQ TLS needs reviews https://review.opendev.org/#/c/728448/
15:53:15 <patchbot> patch 728448 - kolla-ansible - Support TLS encryption of RabbitMQ client-server t... - 8 patch sets
15:53:27 <mgoddard> Anything else we should discuss for kolla ansible?
15:53:36 <mgoddard> anything not on the priority list?
15:54:41 <mgoddard> #topic Victoria release planning (kolla)
15:54:45 <mgoddard> last one
15:54:52 <mgoddard> https://etherpad.opendev.org/p/KollaWhiteBoard
15:54:54 <mnasiadka> I think it would be good to follow up to doc updates we agreed on Kolla Kall
15:54:56 <mgoddard> L204
15:55:00 <mgoddard> mnasiadka: agreed
15:55:41 <mgoddard> I think we need to organise the notes into a set of changes to be made, and each pick some up
15:56:06 <mgoddard> #link https://etherpad.opendev.org/p/kollakall
15:56:06 <headphoneJames> I might try to enable tls for neutron api
15:56:43 <headphoneJames> seems like one of the last core services without tls
15:56:48 <mgoddard> headphoneJames: ok. non-trivial as it needs the RPC worker splitting out
15:56:58 <headphoneJames> copy that
15:56:59 <mgoddard> but yes, that would I think complete the core set
15:57:45 <mgoddard> mariadb TLS seems quite important also
15:58:31 <mgoddard> anyone want to volunteer to organise the docs notes into a set of changes to be made?
15:59:12 <mgoddard> alternatively, just make some changes
15:59:55 <mgoddard> but let's focus on useful improvements, given the backlog of code reviews
16:00:10 <mgoddard> on kolla
16:00:15 <mgoddard> we have infra images
16:00:47 <mgoddard> https://review.opendev.org/#/q/topic:bp/infra-images+(status:open+OR+status:merged)
16:00:55 <mgoddard> a few patches to review
16:01:06 <mgoddard> I think the main blocker is that the CI job is now non-voting for all
16:02:06 <mgoddard> Image tiering not started
16:02:12 <mgoddard> Focal complete (ish)
16:02:22 <mgoddard> Stable branch life-cycle
16:02:26 <mgoddard> https://review.opendev.org/738906
16:02:27 <patchbot> patch 738906 - kolla - version-check: handle using of stable branch tarballs - 3 patch sets
16:02:33 <mgoddard> let's try to get that merged soon
16:04:04 <mgoddard> we're over time
16:04:15 <mgoddard> thanks everyone
16:04:22 <mgoddard> not the most interactive meeting
16:04:32 <headphoneJames> <><><>
16:04:43 <mgoddard> but the summary is, please help to review existing priority patches
16:05:04 <mgoddard> as the freeze will be here soon
16:05:08 <mgoddard> #endmeeting