#openstack-meeting log

22:01:18 <armax> #startmeeting neutron_drivers
22:01:19 <openstack> Meeting started Thu May 12 22:01:18 2016 UTC and is due to finish in 60 minutes.  The chair is armax. Information about MeetBot at http://wiki.debian.org/MeetBot.
22:01:20 <openstack> Useful Commands: #action #agreed #help #info #idea #link #topic #startvote.
22:01:22 <openstack> The meeting name has been set to 'neutron_drivers'
22:01:33 <armax> welcome back to our long ‘vacation'
22:01:42 <armax> to->after
22:02:07 <armax> we are back at full speed I support
22:02:35 * njohnsto_ is on from his phone
22:02:43 <armax> njohnsto_: hi
22:02:56 <armax> let’s get back to chewing up at the triaged list of rfe bugs
22:03:05 <njohnsto_> Armax: hello!
22:03:12 <armax> #link https://bugs.launchpad.net/neutron/+bugs?field.status%3Alist=Triaged&field.tag=rfe&orderby=datecreated&start=0
22:03:29 <armax> during past meetings we agreed to skip the bgp ones
22:03:50 <armax> assuming that carl_baldwin et al would get them to resolution
22:04:08 <blogan> o/
22:04:30 <carl_baldwin> still working on them.
22:04:35 <armax> carl_baldwin: did you guys have any chance to sit out and run through the list to see which ones are sensible to tackle in the Newton timeframe?
22:04:38 <armax> carl_baldwin: ok
22:04:57 <carl_baldwin> mostly focused on split
22:05:32 <armax> carl_baldwin: ok, let’s take this offline, I am happy to help where I can
22:05:44 * carl_baldwin thinks the bgp rfes are multiplying
22:05:58 <HenryG> Why is bug 1537971 in triaged state targetted for M-3?
22:06:00 <openstack> bug 1537971 in neutron "[RFE] Add timestamp to neutron resources" [Wishlist,Triaged] https://launchpad.net/bugs/1537971 - Assigned to zhaobo (zhaobo6)
22:06:05 <armax> carl_baldwin: no
22:06:11 <armax> carl_baldwin: there’s 7 as usual :)
22:06:16 <armax> carl_baldwin: I am keeping count :)
22:06:46 <armax> HenryG: a snafus
22:07:06 <HenryG> armax: ok
22:07:18 <armax> but this should be released, so I’ll look into it
22:07:39 <armax> bug 1530331
22:07:39 <openstack> bug 1530331 in neutron "[RFE] [ipv6] Advertise tenant prefixes from router to outside" [Wishlist,Triaged] https://launchpad.net/bugs/1530331
22:08:18 <carl_baldwin> Not much activity on this one.
22:09:16 <armax> carl_baldwin: you were waiting for submitter feedback?
22:09:51 <armax> it seems this is not going anywhere
22:10:32 <carl_baldwin> So, we'd set something on an external network to say that routers should advertise.  And then the routers have to see that and emit router advertisements for the internal networks.
22:10:41 <armax> do we punt it until we have more IPv6 adoption?
22:10:54 <carl_baldwin> I'm okay with that.
22:10:57 <HenryG> +1
22:11:10 <HenryG> We don't know the demand for it yet
22:11:33 <armax> ok
22:11:45 <armax> let’s freeze it for now
22:11:53 <armax> bug 1552680
22:11:54 <openstack> bug 1552680 in neutron "[RFE] Add support for DLM" [Wishlist,Triaged] https://launchpad.net/bugs/1552680 - Assigned to John Schwarz (jschwarz)
22:12:15 <armax> at the summit it was agreed we’d experiment a little to see how beneficial this model is
22:12:34 <armax> amuller, kevinbenton: do I recall correctly?
22:12:52 <amuller> correct, jschwarz has an action item to do some benchmarking
22:13:06 <armax> it may turn out that we’d never gonna take this if experiments are not fruitful
22:13:18 <amuller> let's see what he comes up with :)
22:13:53 <armax> we could turn this RFE into an actual bug report to track what John is working on
22:14:30 <armax> I would like to see the results of his effort recorded somewhere
22:14:38 <amuller> of course
22:14:43 <armax> any idea on how he intended to do that? blog, wiki, devref?
22:15:18 <HenryG> (please devref)
22:15:29 <armax> I guess we’ll keep this RFE on standby
22:15:36 <amuller> I think he was focusing on the content and not the medium
22:16:06 <armax> the medium may end up influencing the content a bit, but I hear you
22:16:20 <armax> what if we said we want to use tweeter?
22:16:31 <armax> he’s stuck with 160 chars at the time
22:16:35 <armax> anyhow
22:16:47 <armax> I look forward to hearing more about this
22:17:09 <amuller> As do I
22:17:21 <armax> bug 1566191
22:17:23 <openstack> bug 1566191 in neutron "[RFE] Allow multiple networks with FIP range to be associated with Tenant router" [Wishlist,Triaged] https://launchpad.net/bugs/1566191
22:17:51 <carl_baldwin> So, midonet wants this.
22:18:21 <carl_baldwin> Until recently, the API would allow connecting a router internal port to an external network with floating ips.
22:18:40 <carl_baldwin> And, you could assign floating ips from it to ports on other networks.
22:18:56 <carl_baldwin> But, this never worked with the reference implementation and the API loophole was closed.
22:19:11 <armax> um
22:19:41 <carl_baldwin> armax: that's not much of a comment.
22:20:14 <carl_baldwin> would you mind expanding on that?
22:20:16 <armax> carl_baldwin: I am looking that the patch that closed the loophole
22:20:48 <armax> carl_baldwin: in theory could we revert If054945eab058c7138aabbb22cda15890ccb502c?
22:20:50 <kevinbenton> carl_baldwin: so if their tenant routers are attaching internal interfaces directly to the network, doesn't that mean that the tenants had direct access to the network
22:22:27 <armax> and fix it differently?
22:22:27 <carl_baldwin> kevinbenton: I'm not following.
22:22:43 <kevinbenton> why would you need to allocate a floating IP from a network you have direct access to?
22:23:24 <kevinbenton> or can you attach a regular router interface to a 'router:external' network?
22:24:02 <carl_baldwin> kevinbenton: I think they could attach an internal interface to a router:external network.
22:24:16 <carl_baldwin> kevinbenton: I asked that question in the bug report but didn't get a clear answer.
22:24:50 <dougwig> this meeting has been entirely too businesslike and cordial today.
22:24:50 <kevinbenton> carl_baldwin: i see
22:24:58 <carl_baldwin> But, presumably, they needed NAT to communicate with the network.
22:25:13 <kevinbenton> which is what the floating IP would be for i suppose
22:25:20 <carl_baldwin> right
22:25:51 <carl_baldwin> armax: differently how?  Do you have another suggestion?
22:26:43 <armax> carl_baldwin: I am not sure I understand how the API lookhope was closed
22:26:48 <carl_baldwin> I was thinking that connecting a router port that's not the gateway to an external network would be new functionality that might need to be discoverable.
22:27:28 <armax> carl_baldwin: though I don’t quite understand how this might have broken midonet
22:27:29 <kevinbenton> armax: on floating IP associations it looks specifically for gateway ports now to find which router is responisble
22:27:41 <carl_baldwin> armax: The patch made it so that a floating ip had to go through the gateway interface.
22:27:55 <carl_baldwin> ... not just any old interface.
22:28:06 <armax> right, we could perhaps figure out a way to extra the logic in a way that midonet that overload to their liking
22:28:16 <armax> *extract
22:28:22 <kevinbenton> carl_baldwin: this might not need to be restricted to gateway interfaces
22:28:39 <kevinbenton> carl_baldwin: the bug this was solving was to find the correct router
22:28:48 <carl_baldwin> kevinbenton: I don't think it should.  But, if we open it up, will the reference implementation work right?
22:28:51 <kevinbenton> carl_baldwin: we could widen it to also search regular router interfaces
22:29:14 <armax> let
22:29:14 <carl_baldwin> kevinbenton: Yes.
22:29:15 <kevinbenton> carl_baldwin: if not, we can have the reference implementation bail with an error
22:30:00 <armax> let’s discuss strategies on how to tackle this offline
22:30:01 <carl_baldwin> Should we treat this as new functionality that should be discoverable through the API?
22:30:19 <kevinbenton> carl_baldwin: possibly.
22:30:21 <kevinbenton> armax: ack
22:30:41 <armax> I see two approach: one we revert the behavior as it was and we make it possible for different implementations to behave differently
22:30:45 <carl_baldwin> We can move on.  That's my only question ^
22:30:52 <armax> it’s not ideal, but it’s one possibility
22:31:02 <kevinbenton> armax: well that revert fixed another bug
22:31:10 <kevinbenton> armax: so we can't just revert
22:31:28 <armax> kevinbenton: revert to take a different route, but yes
22:31:31 <carl_baldwin> ++
22:31:45 <kevinbenton> ok, next topic! :)
22:31:55 <armax> the other is, as carl_baldwin suggested is to figure out a way to expose this to the user
22:31:56 <armax> ok
22:31:59 <carl_baldwin> Let's continue on the bug.
22:32:05 <armax> moving on, more brainstorming needed
22:32:27 <armax> bug 1577488
22:32:28 <openstack> bug 1577488 in neutron "[RFE]"Fast exit" for compute node egress flows when using DVR" [Wishlist,Triaged] https://launchpad.net/bugs/1577488
22:33:45 <carl_baldwin> Here, the idea is that when we have a routing protocol with host routes for DVR and internal ports, we need DVR to route egress traffic from the port straight to the external network instead of to the network node.
22:34:27 <armax> this does not involve FIP though, right?
22:34:35 <carl_baldwin> armax: right
22:35:26 <armax> so this RFE is about direct connectivity to fixed ip traffic if I understood correctly
22:35:28 <kevinbenton> so for this i think enable_snat or membership to same address scope should inform the agent to skip redirect to central node
22:35:47 <kevinbenton> -1 for yet another config mode on the agent
22:35:49 <carl_baldwin> kevinbenton: Yep, that's the first part.
22:36:01 <carl_baldwin> kevinbenton: I already essentially -2d that.
22:36:13 <carl_baldwin> ... at least in discussions with Ryan.
22:36:19 <amuller> carl_baldwin: the new l3_agent mode?
22:36:34 <carl_baldwin> amuller: -2 to that!
22:36:39 <amuller> ok
22:37:01 <carl_baldwin> My thought was to have a simple way for BGP to register with Neutron as a routing provider.  Then neutron asks it if routing is enabled for the path.
22:37:39 <carl_baldwin> We just need a way to match the egress path with the ingress path.
22:38:04 <carl_baldwin> That seems to indicate asking the routing provider if there is direct routing.
22:38:08 <carl_baldwin> Other thoughts?
22:38:41 <armax> I am wondering what the exact network topology looks like
22:38:43 <kevinbenton> so if we just separate the two, you will get asymmetric routing
22:38:58 <amuller> armax +1
22:39:02 <armax> because this sounds to me like another flavors of provider networks
22:39:05 <kevinbenton> if we fast_exit on the compute node but upstream still sends everything back to the central node
22:39:05 <amuller> the RFE could really use a diagram
22:39:17 <armax> *flavor
22:39:22 <kevinbenton> carl_baldwin: right?
22:39:23 <carl_baldwin> kevinbenton: you're on the right track.
22:40:13 <carl_baldwin> armax: I'm not getting the flavors idea for this.
22:40:43 <carl_baldwin> I'm sure we can whip up some diagrams.  Want to try again later?
22:40:47 <armax> I’ll expand on the bug, but I wonder if we’d end up conflating two different modes of operations
22:41:17 <kevinbenton> ok, let's discuss more later then
22:41:25 <carl_baldwin> ok
22:41:31 <armax> bug 1580239
22:41:33 <openstack> bug 1580239 in neutron "[RFE] Add agent extension framework for L3 agent" [Wishlist,Triaged] https://launchpad.net/bugs/1580239 - Assigned to Nate Johnston (nate-johnston)
22:42:16 <carl_baldwin> So, this one is about creating something to allow FWaaS to register as an extension with the L3 agent.
22:42:17 <SridarK> armax: some background : With the merge of #link https://review.openstack.org/#/c/223343/ - removing the albeit ugly inheritance model with FWaaS - the FWaaS repo is broken. We are looking for an alternate clean model to do this - as none exist today - the RFE was filed.
22:42:22 <armax> I think the devil is in the detals
22:42:23 <njohnsto_> So since FWaaS code is out of L3 agent, the idea is to build a plugin system for L3 agent similar to L2 agent
22:42:28 <carl_baldwin> This one came up because of my patch that broke FWaaS.
22:42:38 <armax> in the sense that I am sure everyone agrees with the intent
22:42:55 <armax> it’s a matter of figuring how on to best achieve the intent
22:43:10 <armax> so this sounds it needs a spec to allow us to iterate and brainstorm on gerrit
22:43:21 <njohnsto_> Armax: agreed totally
22:43:23 <carl_baldwin> armax: +1
22:43:27 <SridarK> armax: +1
22:43:33 <kevinbenton> yeah, i think this is ok. we just need to argue about how it will be done
22:43:38 <armax> a little was already done back in Liberty
22:43:55 <SridarK> armax: we will also need a quick path fwd as fwaas repo is broken now
22:43:59 <carl_baldwin> armax: I showed njohnsto_ what was done then with callbacks.
22:43:59 <armax> with the callback registry to decouple some bits and pieces but definitely more needs to be done
22:44:28 <SridarK> carl_baldwin: with the callback registry i think we can get notifications on router events
22:44:38 <amuller> SridarK: you prolly a different solution to 'fwaas is broken'
22:44:39 <armax> SridarK: you’re not advocating to fix the existing model that assumes that rules are applied at the router level?
22:44:46 <amuller> need*
22:45:28 <SridarK> armax: yes we are on that path we just need a cleaner model to be a part of L3Agent
22:45:32 <carl_baldwin> I think we're talking about two different kinds of broken.
22:46:02 <SridarK> amuller: broken in the sense that the repo is broken and nothing can merge until we get past this
22:46:09 <armax> SridarK: so I would suggest to focus on the relationship that the l3 agent needs to have with fwaas
22:46:12 <armax> in the new model
22:46:20 <SridarK> armax: yes that is correct
22:46:23 <amuller> SridarK: yeah, if the repo is broken I don't think the fix should wait for a spec to be discussed to death
22:46:37 <armax> we can resolve by skipping broken tests :)
22:46:52 <armax> or are we wildly broken?
22:47:01 <njohnsto_> That would be all of the unit tests
22:47:10 <armax> like broken broken? I thought only a bunch of them were not passing
22:47:11 <njohnsto_> Yes we are wildly broken ATM
22:47:11 <armax> ic
22:47:19 <SridarK> i probab am skating on very thin ice if i ask for a revert of 223343 ?
22:47:42 <SridarK> yes basically there is no FWaaS agent now as we are out of L3Agent
22:47:43 <armax> but that’d set you back to a place you don’t wanna be
22:47:59 <armax> so I may be asking a silly question
22:48:19 <SridarK> armax: if we can remove the ugly inheritance once we have a model in place for Services to be part of L3Agent
22:48:32 <armax> but do we know how in the new model how FWaaS is supposed to interact with the L3 agent?
22:48:34 <SridarK> basically after we address this RFE
22:49:07 <armax> because L3 agent handles routers, if rules are applied at port level, I’d almost argue that FWaaS needs to talk to the L2 agent
22:49:10 <SridarK> armax: in the new model on L3 ports it will essentially apply rules on qr interfaces
22:49:41 <SridarK> armax: and on L2 ports there is a part that will be functionality in L2Agent
22:49:42 * carl_baldwin thinks SridarK and armax have *very* different ideas of what "new model" means.
22:50:02 <SridarK> the new model is on ports (both L3 and L2)
22:50:23 <armax> SridarK: ok, understood, I think it should be possible to break the tie altogether
22:50:39 <armax> I see no reason why in the new model the fwaas agent needs to inherit from the L3 agent
22:51:10 <SridarK> armax: that is fine - we will need access to the router ns on fw CRUD operations done thru the agent
22:51:35 <armax> ack
22:51:40 <carl_baldwin> armax: The fwaas inheriting from L3 agent isn't up for discussion afaic
22:51:47 <armax> carl_baldwin: ok
22:52:15 <armax> what I am saying is that I don’t see a need for the short term plan which would entail a revert
22:52:25 <SridarK> carl_baldwin: armax: yes agreed - not long term - my plea was more for the immediate term until we flush out the new relationship with L3Agent
22:52:44 <amuller> armax: you're OK with the fwaas being completely broken for a couple of weeks?
22:52:54 <amuller> fwaas repo*
22:53:07 <armax> but what would you need to merge in the meantime if the end result is gonna look drastically different?
22:53:34 <kevinbenton> armax: well the repo is unusable to make changes
22:53:44 <SridarK> armax: we are in a bit of chicken and egg as we cannot really work thru existing changes
22:53:46 <carl_baldwin> We discussed breaking the inheritance in Paris and nothing was ever done to do it gracefully.  I'm not keen on reverting 223343.
22:53:48 <kevinbenton> armax: are you saying to just shut off all of the tests?
22:53:51 <armax> the fact that we need a v2 makes fwaas unusable
22:53:52 <dougwig> if we don't revert it, you could make a neutron WIP change that was the revert, and make fwaas work that isn't related to that particular bit Depends-On that, and get your jobs working again.
22:54:08 <kevinbenton> dougwig: but they can never merge that way
22:54:43 <dougwig> not until the inheritance issue is resolved, no.
22:54:43 <armax> what I am  saying is that it should be possible to work on a patch that would change the existing architecture and as a result would fix the tests
22:54:56 <armax> surely this means we can merge any changes that affect the server side for fwaas
22:55:14 <armax> so the question is: how long do you guys think that this agent side fix can be done?
22:55:21 <SridarK> armax: yes that can be worked on for sure - the first patch to merge will have to fix this
22:55:43 <SridarK> armax: we are trying to figure this out - but will need help from the L3 team
22:56:05 <armax> I am not opposed to the revert, all I am saying is that I am not sure the revert is gonna buy anything
22:56:16 <armax> SridarK: let me look into the failures
22:56:27 <armax> but the RFE has definitely legs IMO
22:56:50 <SridarK> armax: ok the UT failures showing up are vendor stuff but the basic guts of fwaas is broken
22:56:53 <armax> do you have a bug tracking the UT failures?
22:57:07 <njohnsto_> armax: We can send you what we found about the errors
22:57:14 <SridarK> armax: not yet will open one and link that to the RFE
22:57:26 <armax> was ever the intention of preseving fwaas v1?
22:57:57 <SridarK> armax: it seemed in discussions over M cycle it was felt there could some users so we decided to leave it alone for now
22:58:17 <armax> they can use Mitaka
22:58:26 <armax> :)
22:58:40 <armax> but I hear you
22:58:46 <SridarK> armax: ok we can may be discuss more offline too as we nearing the end
22:58:49 <SridarK> armax: thx
22:58:54 <armax> I suppose that if we want to keep the two approaches work side by side
22:58:59 <armax> that’s a lot more involved
22:59:04 <carl_baldwin> Building on dougwig 's thoughts.  Could fwaas repo use mitaka for tests?
22:59:27 <armax> carl_baldwin: they could pin to stable/mitaka in their requirements file
22:59:34 <armax> but I would cringe at the idea
22:59:49 <SridarK> carl_baldwin: hmm - yes ^^^ armax this may be the only thing that could work
22:59:51 <dougwig> that sounds like madness, since it gets shoved into the guts of neutron-server.  conflicting requirements.txt files
23:00:02 <armax> dougwig: indeed
23:00:10 <SridarK> +1
23:00:18 <armax> ok, we’re at time, thanks we’ll continue offline
23:00:20 <armax> #endmeeting