#openstack-meeting-4 log

15:00:03 <EmilienM> #startmeeting puppet-openstack
15:00:07 <openstack> Meeting started Tue Mar 31 15:00:03 2015 UTC and is due to finish in 60 minutes.  The chair is EmilienM. Information about MeetBot at http://wiki.debian.org/MeetBot.
15:00:08 <openstack> Useful Commands: #action #agreed #help #info #idea #link #topic #startvote.
15:00:10 <openstack> The meeting name has been set to 'puppet_openstack'
15:00:25 <gchamoul> o/
15:00:41 <EmilienM> #topic last weeks action items
15:01:09 <EmilienM> so we did not get a lot of feedback from sbadia's emails
15:01:40 <EmilienM> sbadia: thanks for your e-mail
15:02:27 <EmilienM> well, I guess he's not around now
15:02:42 <mgagne> o/
15:03:13 <EmilienM> if you have any feedback to share about "Coordinator(s)/PTL tasks description" thread, it's time
15:03:39 <EmilienM> same thing about "Moving under the big tent" thread
15:04:06 <EmilienM> I guess everybody agreed to move under the big tent finally
15:04:15 <gchamoul> yes!
15:04:29 <Hunner> It's not if, just when & how :)
15:04:36 <mgagne> yep
15:05:00 <EmilienM> I think the next step is to document what sbadia suggested in PTL tasks description
15:05:05 <EmilienM> so we can contribute on it on the wiki
15:05:20 <EmilienM> or maybe write a spec for it, I have no preference
15:05:44 <EmilienM> so we will agree on what we actually expect from PTL
15:06:04 <crinkle> I think just copying what was in sbadia's email into a wiki page is probably fine
15:06:11 <EmilienM> even though I'm convinced everything is already in official PTL document
15:06:15 <EmilienM> crinkle: ack
15:06:28 <EmilienM> #action EmilienM to document sbadia's email in the wiki
15:06:39 <dvorak> EmilienM: I wonder how much of that is that people don't read openstack-dev
15:07:09 <EmilienM> and then, we need to elect a PTL, so first we open the position. People can send their candidacy on the ML
15:07:18 <crinkle> dvorak: this was cross-posted to both lists
15:07:24 <dvorak> ah, nm then :)
15:08:17 <EmilienM> anything to add about this topic?
15:08:40 <crinkle> should we set a date to start submitting nominations?
15:09:22 <EmilienM> crinkle: well, I guess from today until next meeting we are waiting for candidacies and then if we have more than one candidate, we will have to figure out how to elect
15:09:35 <crinkle> EmilienM: mmk
15:09:43 <EmilienM> crinkle: does it make sense?
15:09:43 <mfisch> the ability to subscribe only to the puppet tag should remove any objections to the openstack-dev ml
15:09:57 <crinkle> EmilienM: sure, so it's open now
15:10:01 <EmilienM> yep
15:10:22 <EmilienM> I switch to next topic then
15:10:38 <EmilienM> #topic Defaults for new config file parameters
15:10:48 <EmilienM> #link https://review.openstack.org/#/c/169066/
15:11:02 <EmilienM> mgagne: dvorak ^
15:11:11 <mgagne> I posted my opinion on the subject in the review
15:11:31 <sbadia> hi! (sorry I'm late)
15:11:31 <EmilienM> and I +1 the comment.
15:11:37 <dvorak> We don't seem to handle this consistently.  In some places we're putting defaults into config files if they're not specified i other places we're ensuring absent if they're not specified
15:11:54 <EmilienM> we may need a new blueprint, that will affect all modules
15:12:01 <mgagne> We don't have a policy in place regarding default value. Until we have one (or not), I suggest we do not block the change.
15:12:53 <gchamoul> I suggest to open a blueprint on that because I am agree with mgagne that it will be time consuming!
15:12:54 <mgagne> some values need to be ensure => absent if some features are disabled. This isn't really because of default value.
15:13:19 <mgagne> well, I'm wrong I guess
15:13:21 <EmilienM> ok so, we move forward for ongoing patches and we create a blueprint for future
15:13:31 <mgagne> 10 lines below: volume_tmp_dir is ensure => absent
15:13:52 <EmilienM> who want to start working on the BP ?
15:14:05 <crinkle> EmilienM: but what policy should the blueprint put forward?
15:14:11 <dvorak> is there any concensus about what the BP should say?
15:14:15 <crinkle> ^
15:14:20 <dvorak> I think the answer is not obvious
15:14:24 <mgagne> IMO, there is no right answer
15:14:36 <mgagne> because you NEED some reasonable default values to have a working setup.
15:14:46 <dvorak> and I think the if defined { set option} else { ensure absent } pattern is pretty gross, but it's generally the behavior I prefer
15:14:49 <EmilienM> crinkle: only default values for Puppet params
15:15:06 <dvorak> mgagne: yes, but personally I'm opposed to hard coding upstream defaults in puppet modules
15:15:06 <mgagne> I think the issue is that we lag behind master when it comes to default values
15:15:44 <mgagne> dvorak: volume_tmp_dir is ensure => absent because the default value in openstack is None
15:15:47 <dvorak> it's a huge maintnance hassle that we're pretty much always going to be behind on with no automated testing
15:16:01 <mgagne> dvorak: "with no automated testing" lets fix that part?
15:16:24 <dvorak> that might be possible with openstack projects, but probably not with things like 3rd party drivers
15:16:50 <mgagne> dvorak: which 3rd party drivers are you referring to?
15:17:05 <dvorak> for example, storage backends, like solid fire, etc
15:17:18 <dvorak> or there was an issue with the Cisco Nexus 1K recently
15:17:22 <mgagne> dvorak: I don't see the problem
15:17:47 <mgagne> dvorak: they provide configs (and default values) just like any other openstack components
15:18:38 <mfisch> my frustration with encoding defaults is that the default change upstream and then puppet doesn't
15:18:40 <Hunner> dvorak: I think defaults should be sane, not just copied upstream. However upstream is usually pretty sane
15:18:41 <dvorak> fair enough, but developing that tooling is a huge task.  I don't think we should necessarily assume it will be developed in a policy we put together in the near future.
15:18:48 <mfisch> that doesnt have anything to do with 3rd party modules
15:18:51 <dvorak> Hunner: my concern is more when upstream defaults change.
15:19:15 <mfisch> The issue is whether upstream means Openstack, RedHat, or Ubuntu
15:19:24 <Hunner> dvorak: Yeah, but there isn't really any way around that. Software changes, and modules adapt to it
15:19:25 <EmilienM> should we dev a tool to detect it ?
15:19:34 <EmilienM> mfisch: OpenStack.
15:19:36 <gchamoul> i think yes !
15:19:45 <mgagne> dvorak: including NO default values defeat the whole purpose of our modules. I better use file resource to manage my configs then
15:20:05 <gchamoul> and being able to detect all the deprecated parameters as well!
15:20:11 <mfisch> +1000 for a tool
15:20:15 <dvorak> mgagne: specifically my concern is situations like this rbd patch, where there are already built-in defaults that take effect if the module sets nothing
15:20:21 <dvorak> I guess I should have been more clear
15:20:45 <mgagne> gchamoul: it isn't that hard. ask openstack projects to dump config definitions in a consumable format and we parse from there
15:21:05 <mgagne> dvorak: it's all over the place alright, rbd isn't the first one
15:21:25 <mgagne> dvorak: I could say you are opening a pandora's box
15:21:33 <gchamoul> mgagne: no it's too hard! That's something I was thinking about for a while now
15:21:35 <EmilienM> gchamoul: there is already a python tool to generate .conf files, we can re-use it?
15:21:45 <EmilienM> it's in oslo somewhere
15:21:51 <dvorak> right, and my conern specifically with this sort of patch, is that if the default schange in the next version of RBD, then you potentially have a non-optimal or even unsupported config w/ceph
15:22:11 <gchamoul> EmilienM: the doc team are using something too but I didn't find it
15:22:15 <mgagne> dvorak: is ceph any different than any other drivers or core openstack components?
15:22:24 <dvorak> no, it's just an example
15:22:31 <mgagne> dvorak: we just can't make exceptions based on the "feeling" of reviewers
15:22:52 <mgagne> dvorak: it has to be a project wide policy
15:23:12 <dvorak> That's exactly why I added it to the agenda.
15:23:21 <mgagne> alright
15:23:31 <mgagne> lets work on it then
15:23:50 <mgagne> but I suggest we do not block this change otherwise it might never merge, well not before months
15:24:02 <dvorak> I -1'ed it, it's not blocking anything.
15:24:08 <EmilienM> mgagne: +1
15:24:26 <gchamoul> well we have a lot of reviews in gerrit since a while!
15:24:27 * EmilienM comes again with a blueprint suggestion
15:25:09 <gchamoul> that's why I am harrassing core people for 3 weeks!
15:25:13 <dvorak> EmilienM: I see no consensus, so I'm not going to waste time writing a BP when there isnt' even agreement on what the problem is.
15:25:31 <EmilienM> dvorak: right
15:25:46 <EmilienM> that's the purpose of this topic and I don't want to close it until we got one
15:26:05 <dvorak> ok, fair enough
15:26:07 <mgagne> can we come up with a tool to detect default values provided by our modules and compare them with upstream? lets compile a basic catalog, blacklist/ignore any username/password/connection configs and see what comes up as different from upstream
15:26:51 <gchamoul> mgagne: +1
15:26:55 <EmilienM> gchamoul: out of topic now, can you raise it by the end of this meeting (open discussion)
15:27:13 <dvorak> when there is a default provided by the underlying software, what is the value of having the puppet module also write it in the config file?
15:27:41 <gchamoul> EmilienM: I know I was just answering to "but I suggest we do not block this change otherwise it might never merge, well not before months
15:27:43 <dvorak> specifically in the common case where the end user doesn't want to chagne the default.
15:27:47 <gchamoul> from mgagne
15:28:27 <mgagne> lets create a ML thread and continue here?
15:28:34 <crinkle> ++
15:28:37 <EmilienM> +1
15:28:40 <gchamoul> +!
15:28:42 <gchamoul> 1
15:28:58 <EmilienM> #action mgagne or dvorak runs a new thread on ML about Defaults for new config file parameters
15:29:21 <EmilienM> dvorak: mgagne : can we go to next topic? anything else to add ?
15:29:29 <mgagne> not for me
15:29:40 <dvorak> sure.
15:29:42 <EmilienM> #topic Support for recent changes to nova-novncproxy service
15:29:45 <EmilienM> #link https://review.openstack.org/#/c/168545
15:29:49 <EmilienM> larsks: ping
15:29:52 <larsks> pong!
15:30:21 <EmilienM> nothing much to say in a meeting, we just need some feedback on gerrit about https://review.openstack.org/#/c/168545
15:30:40 <EmilienM> larsks: go ahead if you want to explain the problem, and solutions
15:30:48 <larsks> For information on why we are doing this, take a look @ https://bugs.launchpad.net/nova/+bug/1409142.
15:30:49 <openstack> Launchpad bug 1409142 in OpenStack Compute (nova) juno "[OSSA 2015-005] Websocket Hijacking Vulnerability in Nova VNC Server (CVE-2015-0259)" [High,Fix committed] - Assigned to Dave McCowan (dave-mccowan)
15:30:51 <larsks> The tl;dr is:
15:31:22 <larsks> Those changes in nova made the value of novncproxy_base_url required both for nova-compute *and* for nova-novncproxy, where previously it was only required by nova-compute.
15:31:53 <EmilienM> so novnc support in our puppet-nova is broken in kilo
15:32:47 <larsks> We have gone through several iterations of the fix; I'm reasonably happy with what we have right now, but open to alternative suggestions.
15:33:16 <larsks> It will require changes to tools that use the puppet-nova module (packstack, staypuft, etc)
15:33:30 <EmilienM> the major thing is, where to put vncproxy common params
15:33:43 <mgagne> in nova::vncproxy::common =)
15:33:53 <larsks> mgagne: I am happy to rename _ to :: :)
15:34:01 <mgagne> and find a way to inform the use about the new location
15:34:04 <mgagne> user*
15:34:21 <larsks> I was thinking about that earlier.  In theory, the user doesn't need to know about the module; it used by either nova::compute or nova::vncproxy
15:34:27 <EmilienM> I was thinking about using nova::vncproxy and add a boolean to manage the proxy service or not
15:34:53 <larsks> EmilienM: I like that less, because just about everything else (I think) has separate modules for "providing the service" vs "client of that service".
15:34:56 <mgagne> larsks: values used to be passed to nova::compute, it's now nova::vncproxy::common. they need to move their configs
15:35:16 <larsks> mgagne: what? I don't think there exists a nova:vncproxy::common right now...
15:35:24 <mgagne> larsks: in the proposed change: yes
15:35:40 <larsks> Errr...in the proposed change, which I wrote, there is a nova::vncproxy_common module.
15:36:02 <mgagne> I suggested renaming nova::vncproxy_common for nova::vncproxy::common
15:36:09 <larsks> Right, i agree with that change.
15:36:11 <mgagne> We don't use underscore much in our class name
15:36:12 <EmilienM> sounds fair
15:36:18 <larsks> Works for me.
15:36:21 <EmilienM> cool!
15:36:28 <EmilienM> let's continue the discussion on gerrit
15:36:32 <EmilienM> thanks a lot larsks
15:36:36 <larsks> Sure thing.
15:36:36 <mgagne> alright
15:36:39 <EmilienM> #topic Open Discussion, Bug and Review triage
15:36:50 <EmilienM> gchamoul: shoot
15:36:59 <EmilienM> you were worry about that before.
15:37:25 <gchamoul> No I was just reacting to mgagne sentence
15:37:27 <gchamoul> :D
15:37:47 <gchamoul> so we have some patches needing Approvals
15:37:48 <mgagne> I closed a bunch of released bugs. Some are still targeted to 6.0.0 (kilo) and others to unreleased versions (5.1.0, 4.3.0)
15:37:52 <EmilienM> if some people have specific patches to highlight, shoot here
15:37:59 <gchamoul> https://review.openstack.org/#/dashboard/?foreach=%28project%3Astackforge%2Fpuppet%252Dcinder+OR%0Aproject%3Astackforge%2Fpuppet%252Dnova+OR%0Aproject%3Astackforge%2Fpuppet%252Dswift+OR%0Aproject%3Astackforge%2Fpuppet%252Dmanila+OR%0Aproject%3Astackforge%2Fpuppet%252Dceilometer+OR%0Aproject%3Astackforge%2Fpuppet%252Dironic+OR%0Aproject%3Astackforge%2Fpuppet%252Dheat+OR%0Aproject%3Astackforge%2Fpu
15:38:01 <crinkle> thank you for working on that mgagne
15:38:01 <gchamoul> ppet%252Dneutron+OR%0Aproject%3Astackforge%2Fpuppet%252Dglance+OR%0Aproject%3Astackforge%2Fpuppet%252Dceph+OR%0Aproject%3Astackforge%2Fpuppet%252Dmonasca+OR%0Aproject%3Astackforge%2Fpuppet%252Dgnocchi+OR%0Aproject%3Astackforge%2Fpuppet%252Dtripleo+OR%0Aproject%3Astackforge%2Fpuppet%252Dkeystone+OR%0Aproject%3Astackforge%2Fpuppet%252Dhorizon+OR%0Aproject%3Astackforge%2Fpuppet%252Ddesignate+OR%0Apr
15:38:02 <EmilienM> mgagne: thanks a lot for this work
15:38:03 <gchamoul> oject%3Astackforge%2Fpuppet%252Dmurano+OR%0Aproject%3Astackforge%2Fpuppet%252Dn1k%252Dvsm+OR%0Aproject%3Astackforge%2Fpuppet%252Dsahara+OR%0Aproject%3Astackforge%2Fpuppet%252Dvswitch+OR%0Aproject%3Astackforge%2Fpuppet%252Dtrove+OR%0Aproject%3Astackforge%2Fpuppet%252Dtempest+OR%0Aproject%3Astackforge%2Fpuppet%252Dopenstacklib+OR%0Aproject%3Astackforge%2Fpuppet%252Dopenstack+OR%0Aproject%3Astackfor
15:38:05 <gchamoul> ge%2Fpuppet%252Dopenstack%252Dspecs%29+status%3Aopen+NOT+label%3AWorkflow%3C%3D%252D1+NOT+label%3ACode%252DReview%3C%3D%252D2&title=Puppet+Openstack+Modules+Inbox&My+Patches+Requiring+Attention=owner%3Aself+%28label%3AVerified%252D1%252cjenkins+OR+label%3ACode%252DReview%252D1%29&Puppet+Openstack+Specs=NOT+owner%3Aself+project%3Astackforge%2Fpuppet%252Dopenstack%252Dspecs&Needs+Approval=label%3AV
15:38:07 <gchamoul> erified%3E%3D1%252cjenkins+NOT+owner%3Aself+label%3ACode%252DReview%3E%3D2+NOT+label%3ACode%252DReview%252D1&5+Days+Without+Feedback=label%3AVerified%3E%3D1%252cjenkins+NOT+owner%3Aself+NOT+project%3Astackforge%2Fpuppet%252Dopenstack%252Dspecs+NOT+label%3ACode%252DReview%3C%3D2+age%3A5d&No+Negative+Feedback=label%3AVerified%3E%3D1%252cjenkins+NOT+owner%3Aself+NOT+project%3Astackforge%2Fpuppet%252
15:38:09 <EmilienM> oh dear..
15:38:09 <gchamoul> Dopenstack%252Dspecs+NOT+label%3ACode%252DReview%3C%3D%252D1+NOT+label%3ACode%252DReview%3E%3D2+limit%3A50&Other=label%3AVerified%3E%3D1%252cjenkins+NOT+owner%3Aself+NOT+project%3Astackforge%2Fpuppet%252Dopenstack%252Dspecs+label%3ACode%252DReview%252D1+limit%3A20
15:38:13 <gchamoul> sorry for the link
15:38:13 <crinkle> -_-
15:38:16 <larsks> Ouch.
15:38:29 <EmilienM> gchamoul: can you short the link ?
15:38:36 <EmilienM> with bit.ly or...
15:38:41 <mgagne> also, I would like to know if we are planning on actively supporting legacy branches or not?
15:38:42 <gchamoul> sure
15:38:44 <mgagne> like grizzly =)
15:38:50 <EmilienM> hum...
15:39:05 <EmilienM> we should ask on ML about that I think
15:39:17 <crinkle> if people backport things to those branches I don't see a problem with making bugfix releases to them
15:39:33 <mgagne> because although we might think it's free, it still has a cost where we have to update rspec framework to make tests pass
15:39:59 <EmilienM> yes
15:40:17 <dvorak> depending on how you define "support" it's a huge amount of work even aside from the unit tests
15:40:51 <mgagne> dvorak: so far, stable branches have been a scratch your own itch thing
15:41:31 <dvorak> I'm curious, who here is using the stable branches?
15:41:35 <mgagne> I am
15:41:42 <EmilienM> me too
15:42:04 <mgagne> but I'm seriously thinking about running from master with a branchless puppetmaster
15:42:23 <mgagne> I'm not sure how yet but the idea is out there
15:42:31 <gchamoul> so https://goo.gl/
15:42:35 <dvorak> we're running from master, and plan to keep doing so until we run into kilo/juno compat issues
15:42:41 <EmilienM> with good CI, all is possible...
15:42:49 <crinkle> there are already kilo/juno compat issues
15:42:52 <gchamoul> can you have a look under 'Needs Approvals'
15:42:53 <EmilienM> yep
15:43:00 <dvorak> crinkle: none that have affected us
15:43:09 <mgagne> EmilienM: especially if I can detect deprecated configs or not yet introduced configs =)
15:43:40 <crinkle> dvorak: there are a couple in neutron that try to install packages that don't exist yet
15:43:41 <EmilienM> gchamoul: the url is incomplete..
15:43:46 <gchamoul> https://goo.gl/hKTmf1
15:44:30 <EmilienM> if people could have a look at https://goo.gl/hKTmf1 and do some reviews, gchamoul would be very happy :è)
15:45:15 <crinkle> ...those are all the patches...
15:45:17 <mgagne> EmilienM: btw, my bug tools are there: https://github.com/mgagne/openstack-puppet-release-tools
15:45:39 <EmilienM> crinkle: yeah... just to highlight the "need approvals" things..
15:45:45 <gchamoul> crinkle: the priority is the 'Needs Approvals' list
15:45:51 <EmilienM> gchamoul: I was waiting more from specific patches...
15:46:00 <EmilienM> gchamoul: how come it's a priority?
15:46:03 <gchamoul> and '5 days without Feedback
15:46:36 <dvorak> gchamoul: thanks for that, I like the way the dashboard is done, I've been meaning to do something similar
15:46:57 <gchamoul> EmilienM: I think all is urgent!
15:46:58 <EmilienM> mgagne: that's a nice tool, I think we would need it to move it under openstack repo
15:47:15 <EmilienM> gchamoul: well, I disagree with you. We have different point of view I think.
15:47:29 <EmilienM> we have some very urgent things and some less urgent.
15:47:53 <EmilienM> the idea of this topic is to highlight some blocked patches, that needs discussion or just reviews... same for bugs
15:48:06 <crinkle> ++
15:48:12 <EmilienM> not putting a BIG url
15:48:20 <EmilienM> with all patches that are under review
15:48:53 <EmilienM> mfisch: we have 10 min left, would you like to talk about Bug Triage for a specific module?
15:49:32 <mfisch> I have again failed to prepare for this
15:49:42 <mfisch> Lets discuss puppet-nova next week
15:49:45 <gchamoul> EmilienM: I just want to help!
15:49:47 <EmilienM> no problem.
15:49:47 <gchamoul> ok
15:50:00 <EmilienM> gchamoul: your help is highly appreciated
15:50:04 <gchamoul> we have a lot of patches in review
15:50:11 <EmilienM> we just want to be efficient and this URL does not help much
15:50:42 <EmilienM> ok, so we can ask officially here to let core people know that they may do more review if they have time
15:50:46 <gchamoul> and I am quite disappointed when I am seeing some new contrib ... without feedbacks, without reviews after 3 weeks
15:51:15 <EmilienM> it's a good feedback
15:51:27 <gchamoul> that's why I am spamming all the core people!
15:51:35 <EmilienM> spamming won't help much I guess
15:51:42 <gchamoul> mfisch likes that!
15:51:49 <EmilienM> are we done?
15:52:02 <gchamoul> so What to do ?
15:52:04 <EmilienM> if you have something else to add, rise your and now
15:52:10 <mfisch> We need more cores then
15:52:10 <EmilienM> hand*
15:52:10 <gchamoul> doing the same on IRC?
15:52:29 <EmilienM> mfisch: indeed, what do you suggest?
15:53:49 <mfisch> EmilienM: well I wish I had an answer
15:53:53 <EmilienM> hehe
15:53:54 <dvorak> gchamoul: I'd remove puppet-ceph from that dashboard, since the core list is separate
15:54:02 <EmilienM> dvorak: +1
15:54:06 <mfisch> I'd certainly like to get feedback for new commiters
15:54:09 <dvorak> same for monasca
15:54:15 <gchamoul> dvorak: ack
15:54:17 <mfisch> yes +1 for monasca
15:54:18 <EmilienM> mfisch: we can discuss about that later (offline?) to see if someone could be proposed
15:54:33 <EmilienM> mfisch: we are core on monasca now, right ? ( cc sbadia )
15:55:33 <mfisch> I am for sure
15:55:42 <EmilienM> cool
15:55:58 <mfisch> those guys still work very closely with the HP team, changes so much
15:56:48 <EmilienM> yeah... the module will need some work I think
15:56:53 <mfisch> I agree
15:56:59 <EmilienM> I think we are done
15:57:03 <EmilienM> thanks everyone
15:57:07 <mfisch> they're still fighting with stuff like upstream forcing keystone v3 without warning for exampple
15:57:09 <mfisch> thanks
15:57:18 <EmilienM> #endmeeting